def Regular_Expression_Management_List(): logUtil.addLog(request.remote_addr,1,'ELK > Regular_Expression_Management') #whitelist = wl_maintenance_period.query.filter_by(datatype='days').first() return render_template('integratedELK/Regular_Expression_Management.html' # , # whiteListPeriod = whitelist.wl_maintenance_period )
def type_category_List(): logUtil.addLog(request.remote_addr,1,'ELK > Type_Category_Management') #whitelist = wl_maintenance_period.query.filter_by(datatype='days').first() return render_template('integratedELK/Type_Category_Management.html' # , # whiteListPeriod = whitelist.wl_maintenance_period )
def whitelist_List(): logUtil.addLog(request.remote_addr, 1, 'rules > white-list ') pattern_list = CommonCode.query.filter_by( GroupCode='rul_input_source').all() return render_template('rules/whitelist_list.html', pattern_list=pattern_list)
def snort_List(): logUtil.addLog(request.remote_addr, 1, 'rules > snort-list ') pattern_list = CommonCode.query.filter_by( GroupCode='rul_input_source').all() myorder = [2, 1, 0] pattern_list = [pattern_list[i] for i in myorder] return render_template('rules/snort_list.html', pattern_list=pattern_list)
def getIpUriMap(): logUtil.addLog(request.remote_addr, 1, 'ip-uri-maps') timefrom = (datetime.datetime.now() - datetime.timedelta(minutes=5)).strftime("%Y-%m-%d %H:%M") timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M") return render_template('ip_uri_map/list.html', timefrom=timefrom, timeto=timeto)
def Customer_Category_List(): logUtil.addLog(request.remote_addr, 1, 'CUSTOMER > Customer_Category_Management') whitelist = wl_maintenance_period.query.filter_by(datatype='days').first() return render_template( 'customerPages/Customer_Category_Management.html' # , # whiteListPeriod = whitelist.wl_maintenance_period )
def getCncLog(): nowtime = datetime.datetime.now() start_of_day = datetime.datetime(nowtime.year, nowtime.month, nowtime.day) logUtil.addLog(request.remote_addr, 1, 'secure-log/cnc') timefrom = start_of_day.strftime("%Y-%m-%d %H:%M") timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M") logUtil.addLog(request.remote_addr, 1, 'rules > c&c ') type_list = CommonCode.query.filter_by(GroupCode='an_data_from_url').all() return render_template('secure_log/cnc_list.html',timefrom = timefrom, timeto=timeto\ , type_list = type_list)
def accountList(): logUtil.addLog(request.remote_addr, 1, 'system>account') ip_allow = db_session.query(GlobalSetting).filter_by( key="ALLOW_IP").first() ip_allow_value = ip_allow.value role_list = CommonCode.query.filter( CommonCode.GroupCode == "role_type").all() return render_template('system/account.html', ip_allow=ip_allow_value, role_list=role_list)
def profile_List(): logUtil.addLog(request.remote_addr, 1, 'rules > profile ') pattern_list = CommonCode.query.filter_by( GroupCode='rul_input_source').all() typeList = CommonCode.query.filter_by(GroupCode="DATA_TYPE").all() analyzer_timespan = CommonCode.query.filter_by( Name='anlyzer setting').first().EXT1 return render_template('rules/profile_list.html', pattern_list=pattern_list, typeList=typeList, analyzer_timespan=analyzer_timespan)
def getFileLog(): nowtime = datetime.datetime.now() start_of_day = datetime.datetime(nowtime.year, nowtime.month, nowtime.day) logUtil.addLog(request.remote_addr, 1, 'secure-log/cnc') timefrom = start_of_day.strftime("%Y-%m-%d %H:%M") #timefrom = (datetime.datetime.now() - start_of_day).strftime("%Y-%m-%d %H:%M") timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M") logUtil.addLog(request.remote_addr, 1, 'security log > file analysis ') type_list = CommonCode.query.filter_by(GroupCode='an_data_from').all() #type_list.remove(type_list[0]) return render_template('secure_log/file_analysis_list.html', timefrom=timefrom, timeto=timeto \ , type_list=type_list)
def Company_IP_Management_List(): logUtil.addLog(request.remote_addr, 1, 'CUSTOMER > Company_IP_Management') whitelist = wl_maintenance_period.query.filter_by(datatype='days').first() # query = Integrated_Customer_Category.query #customerCategory = db_session.query(Integrated_Customer_Category.Customer_Category.distinct().label("Customer_Category")) #customerCategoryList = [row.Customer_Category for row in customerCategory.all()] return render_template( 'customerPages/Company_IP_Management.html' # , # customerCategoryList = customerCategoryList )
def getLinkDnaLog(): logUtil.addLog(request.remote_addr, 1, 'link-dna/log') timefrom = (datetime.datetime.now() - datetime.timedelta(minutes=5)).strftime("%Y-%m-%d %H:%M") timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M") profileList = Rules_Profile.query.all() typeList = CommonCode.query.filter_by(GroupCode="DATA_TYPE").all() return render_template('linkdna_log/list.html', timefrom=timefrom, timeto=timeto, profileList=profileList, typeList=typeList)
def getMaliciousFileLog(): nowtime = datetime.datetime.now() start_of_day = datetime.datetime(nowtime.year, nowtime.month, nowtime.day) logUtil.addLog(request.remote_addr, 1, 'secure-log/maliciousCodeAnalysis') timefrom = start_of_day.strftime("%Y-%m-%d %H:%M") timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M") logUtil.addLog(request.remote_addr, 1, 'security log > maliciousCodeAnalysis ') type_list = CommonCode.query.filter_by(GroupCode='an_data_from').all() max_window_value = CommonCode.query.filter_by( GroupCode='max_window_value').first() return render_template('secure_log/maliciousCodeAnalysisNew.html', timefrom=timefrom, timeto=timeto \ , type_list=type_list, max_window_value = max_window_value)
def blacklist_List(): nowtime = datetime.datetime.now() start_of_day = datetime.datetime(nowtime.year, nowtime.month, nowtime.day) logUtil.addLog(request.remote_addr, 1, 'rules > black-list ') pattern_list = CommonCode.query.filter_by( GroupCode='rul_input_source').all() type_list = CommonCode.query.filter_by(GroupCode='an_data_from').all() timefrom = start_of_day.strftime("%Y-%m-%d %H:%M") timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M") return render_template('secure_log/blacklist_list.html', pattern_list=pattern_list, timefrom=timefrom, timeto=timeto, type_list=type_list)
def malList(): nowtime = datetime.datetime.now() start_of_day = datetime.datetime(nowtime.year, nowtime.month, nowtime.day) logUtil.addLog(request.remote_addr, 1, 'rules > c&c ') #type_list = CommonCode.query.filter_by(GroupCode = 'RULE_CNC_TYPE').all() # type_list = CommonCode.query.filter_by(GroupCode='an_data_from').all() pattern_list = CommonCode.query.filter_by( GroupCode='rul_input_source').all() timefrom = start_of_day.strftime("%Y-%m-%d %H:%M") timeto = datetime.datetime.now().strftime("%Y-%m-%d %H:%M") return render_template('secure_log/malCodeCollectionNew.html', timefrom=timefrom, timeto=timeto, pattern_list=pattern_list)
def getConClient(): logUtil.addLog(request.remote_addr, 1, 'link-dna/con-server-list') start_time = request.args['start_time'] end_time = request.args['end_time'] con_from = request.args['con_cli_from'] con_to = request.args['con_cli_to'] doc = GetLinkDnaTuple2(start_time, end_time, con_from, con_to) es = Elasticsearch([{ 'host': app.config['ELASTICSEARCH_URI'], 'port': int(app.config['ELASTICSEARCH_PORT']) }]) res = es.search(index=app.config['ELASTICSEARCH_INDEX'], doc_type="link_dna_tuple2", body=doc) return render_template('linkdna_log/client_con.html', listServerCon=res['hits']['hits'])
def ipcollection_List(): logUtil.addLog(request.remote_addr, 1, 'rules > ip-collection') return render_template('rules/ip_collection.html')
def getGetherLog(): logUtil.addLog(request.remote_addr, 1, 'gather-log') kibana_uri = app.config['KIBANA_URI'] return render_template('gather_log/list.html', kinana_uri=kibana_uri)
def crawlingList(): logUtil.addLog(request.remote_addr, 1, 'system>crawling') crawl = SystemCrawler() crawl.getOptions() return render_template('system/crawling.html', crawl=crawl)
def standardLog(): logUtil.addLog(request.remote_addr, 1, 'index') strdate = datetime.datetime.now().strftime("%Y-%m-%d") return render_template('standard_log/standard_log.html', now=strdate)
def whiteip_url_List(): logUtil.addLog(request.remote_addr, 1, 'rules > ip-url-white-list') whitelist = wl_maintenance_period.query.filter_by(datatype='days').first() return render_template('rules/whiteip_list_url.html', whiteListPeriod=whitelist.wl_maintenance_period)
def whiteip_List(): logUtil.addLog(request.remote_addr, 1, 'rules > white-ip ') return render_template('rules/whiteip_list.html')
def filesnalysis_List(): logUtil.addLog(request.remote_addr, 1, 'rules > file-analysis ') return render_template('rules/file_analysis_list.html')