def test_summary_office2(self, p, request):
s = Static()
s.set_task({
"category": "file",
"package": "doc",
"target": "createproc1.docm",
})
s.file_path = "tests/files/createproc1.docm"
p._get_report.return_value = {
"static": s.run(),
}
r = AnalysisRoutes.detail(request, 1, "static").content
assert "ThisDocument" in r
assert "Sub AutoOpen" in r
assert "process.Create" in r
assert "notepad.exe" in r
def test_summary_pdf_nometadata(self, p, request):
s = Static()
s.set_task({
"category": "file",
"package": "pdf",
"target": __file__,
})
s.set_options({
"pdf_timeout": 10,
})
s.file_path = __file__
p._get_report.return_value = {
"static": s.run(),
}
r = AnalysisRoutes.detail(request, 1, "static").content
assert "No PDF metadata could be extracted!" in r
def test_summary_pdf_nometadata(self, p, request):
s = Static()
s.set_task({
"category": "file",
"package": "pdf",
"target": __file__,
})
s.set_options({
"pdf_timeout": 10,
})
s.file_path = __file__
p._get_report.return_value = {
"static": s.run(),
}
r = AnalysisRoutes.detail(request, 1, "static").content
assert "No PDF metadata could be extracted!" in r
def test_summary_office2(self, p, request):
s = Static()
s.set_task({
"category": "file",
"package": "doc",
"target": "createproc1.docm",
})
s.file_path = "tests/files/createproc1.docm"
p._get_report.return_value = {
"static": s.run(),
}
r = AnalysisRoutes.detail(request, 1, "static").content
assert "ThisDocument" in r
assert "Sub AutoOpen" in r
assert "process.Create" in r
assert "notepad.exe" in r
def test_summary_pdf_metadata(self, p, request):
s = Static()
s.set_task({
"category": "file",
"package": "pdf",
"target": "pdf-sample.pdf",
})
s.set_options({
"pdf_timeout": 10,
})
s.file_path = "tests/files/pdf-sample.pdf"
p._get_report.return_value = {
"static": s.run(),
}
r = AnalysisRoutes.detail(request, 1, "static").content
assert "Microsoft Word 8.0" in r
assert "This is a test PDF file" in r
def test_summary_pdf_metadata(self, p, request):
s = Static()
s.set_task({
"category": "file",
"package": "pdf",
"target": "pdf-sample.pdf",
})
s.set_options({
"pdf_timeout": 10,
})
s.file_path = "tests/files/pdf-sample.pdf"
p._get_report.return_value = {
"static": s.run(),
}
r = AnalysisRoutes.detail(request, 1, "static").content
assert "Microsoft Word 8.0" in r
assert "This is a test PDF file" in r
def test_summary_office1(self, p, request):
p._get_report.return_value = {
"static": {
"office": {
"macros": [
{
"filename": "MACRO FILENAME",
"stream": "MACRO STREAM",
"orig_code": "MACRO CODE OBFUSCATED",
"deobf": "MACRO CODE DEOBFUSCATED",
},
],
},
},
}
r = AnalysisRoutes.detail(request, 1, "static").content
assert "MACRO FILENAME" in r
assert "MACRO STREAM" in r
assert "MACRO CODE OBFUSCATED" in r
assert "MACRO CODE DEOBFUSCATED" in r
def test_summary_office1(self, p, request):
p._get_report.return_value = {
"static": {
"office": {
"macros": [
{
"filename": "MACRO FILENAME",
"stream": "MACRO STREAM",
"orig_code": "MACRO CODE OBFUSCATED",
"deobf": "MACRO CODE DEOBFUSCATED",
},
],
},
},
}
r = AnalysisRoutes.detail(request, 1, "static").content
assert "MACRO FILENAME" in r
assert "MACRO STREAM" in r
assert "MACRO CODE OBFUSCATED" in r
assert "MACRO CODE DEOBFUSCATED" in r
