def Regular_Expression_Management_List():
logUtil.addLog(request.remote_addr,1,'ELK > Regular_Expression_Management')
#whitelist = wl_maintenance_period.query.filter_by(datatype='days').first()
return render_template('integratedELK/Regular_Expression_Management.html'
# ,
# whiteListPeriod = whitelist.wl_maintenance_period
)
def type_category_List():
logUtil.addLog(request.remote_addr,1,'ELK > Type_Category_Management')
#whitelist = wl_maintenance_period.query.filter_by(datatype='days').first()
return render_template('integratedELK/Type_Category_Management.html'
# ,
# whiteListPeriod = whitelist.wl_maintenance_period
)
def whitelist_List():
logUtil.addLog(request.remote_addr, 1, 'rules > white-list ')
pattern_list = CommonCode.query.filter_by(
GroupCode='rul_input_source').all()
return render_template('rules/whitelist_list.html',
pattern_list=pattern_list)
def snort_List():
logUtil.addLog(request.remote_addr, 1, 'rules > snort-list ')
pattern_list = CommonCode.query.filter_by(
GroupCode='rul_input_source').all()
myorder = [2, 1, 0]
pattern_list = [pattern_list[i] for i in myorder]
return render_template('rules/snort_list.html', pattern_list=pattern_list)
def getIpUriMap():
logUtil.addLog(request.remote_addr, 1, 'ip-uri-maps')
timefrom = (datetime.datetime.now() -
datetime.timedelta(minutes=5)).strftime("%Y-%m-%d %H:%M")
timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M")
return render_template('ip_uri_map/list.html',
timefrom=timefrom,
timeto=timeto)
def Customer_Category_List():
logUtil.addLog(request.remote_addr, 1,
'CUSTOMER > Customer_Category_Management')
whitelist = wl_maintenance_period.query.filter_by(datatype='days').first()
return render_template(
'customerPages/Customer_Category_Management.html'
# ,
# whiteListPeriod = whitelist.wl_maintenance_period
)
def getCncLog():
nowtime = datetime.datetime.now()
start_of_day = datetime.datetime(nowtime.year, nowtime.month, nowtime.day)
logUtil.addLog(request.remote_addr, 1, 'secure-log/cnc')
timefrom = start_of_day.strftime("%Y-%m-%d %H:%M")
timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M")
logUtil.addLog(request.remote_addr, 1, 'rules > c&c ')
type_list = CommonCode.query.filter_by(GroupCode='an_data_from_url').all()
return render_template('secure_log/cnc_list.html',timefrom = timefrom, timeto=timeto\
, type_list = type_list)
def accountList():
logUtil.addLog(request.remote_addr, 1, 'system>account')
ip_allow = db_session.query(GlobalSetting).filter_by(
key="ALLOW_IP").first()
ip_allow_value = ip_allow.value
role_list = CommonCode.query.filter(
CommonCode.GroupCode == "role_type").all()
return render_template('system/account.html',
ip_allow=ip_allow_value,
role_list=role_list)
def profile_List():
logUtil.addLog(request.remote_addr, 1, 'rules > profile ')
pattern_list = CommonCode.query.filter_by(
GroupCode='rul_input_source').all()
typeList = CommonCode.query.filter_by(GroupCode="DATA_TYPE").all()
analyzer_timespan = CommonCode.query.filter_by(
Name='anlyzer setting').first().EXT1
return render_template('rules/profile_list.html',
pattern_list=pattern_list,
typeList=typeList,
analyzer_timespan=analyzer_timespan)
def getFileLog():
nowtime = datetime.datetime.now()
start_of_day = datetime.datetime(nowtime.year, nowtime.month, nowtime.day)
logUtil.addLog(request.remote_addr, 1, 'secure-log/cnc')
timefrom = start_of_day.strftime("%Y-%m-%d %H:%M")
#timefrom = (datetime.datetime.now() - start_of_day).strftime("%Y-%m-%d %H:%M")
timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M")
logUtil.addLog(request.remote_addr, 1, 'security log > file analysis ')
type_list = CommonCode.query.filter_by(GroupCode='an_data_from').all()
#type_list.remove(type_list[0])
return render_template('secure_log/file_analysis_list.html', timefrom=timefrom, timeto=timeto \
, type_list=type_list)
def Company_IP_Management_List():
logUtil.addLog(request.remote_addr, 1, 'CUSTOMER > Company_IP_Management')
whitelist = wl_maintenance_period.query.filter_by(datatype='days').first()
# query = Integrated_Customer_Category.query
#customerCategory = db_session.query(Integrated_Customer_Category.Customer_Category.distinct().label("Customer_Category"))
#customerCategoryList = [row.Customer_Category for row in customerCategory.all()]
return render_template(
'customerPages/Company_IP_Management.html'
# ,
# customerCategoryList = customerCategoryList
)
def getLinkDnaLog():
logUtil.addLog(request.remote_addr, 1, 'link-dna/log')
timefrom = (datetime.datetime.now() -
datetime.timedelta(minutes=5)).strftime("%Y-%m-%d %H:%M")
timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M")
profileList = Rules_Profile.query.all()
typeList = CommonCode.query.filter_by(GroupCode="DATA_TYPE").all()
return render_template('linkdna_log/list.html',
timefrom=timefrom,
timeto=timeto,
profileList=profileList,
typeList=typeList)
def getMaliciousFileLog():
nowtime = datetime.datetime.now()
start_of_day = datetime.datetime(nowtime.year, nowtime.month, nowtime.day)
logUtil.addLog(request.remote_addr, 1, 'secure-log/maliciousCodeAnalysis')
timefrom = start_of_day.strftime("%Y-%m-%d %H:%M")
timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M")
logUtil.addLog(request.remote_addr, 1,
'security log > maliciousCodeAnalysis ')
type_list = CommonCode.query.filter_by(GroupCode='an_data_from').all()
max_window_value = CommonCode.query.filter_by(
GroupCode='max_window_value').first()
return render_template('secure_log/maliciousCodeAnalysisNew.html', timefrom=timefrom, timeto=timeto \
, type_list=type_list, max_window_value = max_window_value)
def blacklist_List():
nowtime = datetime.datetime.now()
start_of_day = datetime.datetime(nowtime.year, nowtime.month, nowtime.day)
logUtil.addLog(request.remote_addr, 1, 'rules > black-list ')
pattern_list = CommonCode.query.filter_by(
GroupCode='rul_input_source').all()
type_list = CommonCode.query.filter_by(GroupCode='an_data_from').all()
timefrom = start_of_day.strftime("%Y-%m-%d %H:%M")
timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M")
return render_template('secure_log/blacklist_list.html',
pattern_list=pattern_list,
timefrom=timefrom,
timeto=timeto,
type_list=type_list)
def malList():
nowtime = datetime.datetime.now()
start_of_day = datetime.datetime(nowtime.year, nowtime.month, nowtime.day)
logUtil.addLog(request.remote_addr, 1, 'rules > c&c ')
#type_list = CommonCode.query.filter_by(GroupCode = 'RULE_CNC_TYPE').all()
# type_list = CommonCode.query.filter_by(GroupCode='an_data_from').all()
pattern_list = CommonCode.query.filter_by(
GroupCode='rul_input_source').all()
timefrom = start_of_day.strftime("%Y-%m-%d %H:%M")
timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M")
return render_template('secure_log/malCodeCollectionNew.html',
timefrom=timefrom,
timeto=timeto,
pattern_list=pattern_list)
def getConClient():
logUtil.addLog(request.remote_addr, 1, 'link-dna/con-server-list')
start_time = request.args['start_time']
end_time = request.args['end_time']
con_from = request.args['con_cli_from']
con_to = request.args['con_cli_to']
doc = GetLinkDnaTuple2(start_time, end_time, con_from, con_to)
es = Elasticsearch([{
'host': app.config['ELASTICSEARCH_URI'],
'port': int(app.config['ELASTICSEARCH_PORT'])
}])
res = es.search(index=app.config['ELASTICSEARCH_INDEX'],
doc_type="link_dna_tuple2",
body=doc)
return render_template('linkdna_log/client_con.html',
listServerCon=res['hits']['hits'])
def ipcollection_List():
logUtil.addLog(request.remote_addr, 1, 'rules > ip-collection')
return render_template('rules/ip_collection.html')
def getGetherLog():
logUtil.addLog(request.remote_addr, 1, 'gather-log')
kibana_uri = app.config['KIBANA_URI']
return render_template('gather_log/list.html', kinana_uri=kibana_uri)
def crawlingList():
logUtil.addLog(request.remote_addr, 1, 'system>crawling')
crawl = SystemCrawler()
crawl.getOptions()
return render_template('system/crawling.html', crawl=crawl)
def standardLog():
logUtil.addLog(request.remote_addr, 1, 'index')
strdate = datetime.datetime.now().strftime("%Y-%m-%d")
return render_template('standard_log/standard_log.html', now=strdate)
def whiteip_url_List():
logUtil.addLog(request.remote_addr, 1, 'rules > ip-url-white-list')
whitelist = wl_maintenance_period.query.filter_by(datatype='days').first()
return render_template('rules/whiteip_list_url.html',
whiteListPeriod=whitelist.wl_maintenance_period)
def whiteip_List():
logUtil.addLog(request.remote_addr, 1, 'rules > white-ip ')
return render_template('rules/whiteip_list.html')
def filesnalysis_List():
logUtil.addLog(request.remote_addr, 1, 'rules > file-analysis ')
return render_template('rules/file_analysis_list.html')
