def NistSearch(request):#模糊搜索
RequestLogRecord(request, request_api="nist_search")
if request.method == "POST":
try:
Token=json.loads(request.body)["token"]
NumberOfPages = json.loads(request.body)["number_of_pages"] # 页数
Severity = json.loads(request.body)["severity"] # 严重性等级
Key = json.loads(request.body)["key"] # 查询关键字
Uid = UserInfo().QueryUidWithToken(Token) # 如果登录成功后就来查询UID
if Uid != None: # 查到了UID
UserOperationLogRecord(request, request_api="nist_search", uid=Uid) # 查询到了在计入
if int(NumberOfPages)<1:
return JsonResponse({'message': "你家有小于1的页码?", 'code': 503, })
elif Key=="":
return JsonResponse({'message': "咋了?查询不知道传数据吗?", 'code': 505, })
else:
Data= NistData().Search(number_of_pages=int(NumberOfPages),key=Key,severity=Severity) # 对查询分页数据
return JsonResponse({'message': Data, 'code': 200, })
else:
return JsonResponse({'message': "小宝贝这是非法查询哦(๑•̀ㅂ•́)و✧", 'code': 403, })
except Exception as e:
ErrorLog().Write("Web_CVE_NistMonitoring_Nist_NistSearch(def)", e)
else:
return JsonResponse({'message': '请使用Post请求', 'code': 500, })
def NistStatistics(request):#对当前的CVE个数进行统计
RequestLogRecord(request, request_api="nist_statistics")
if request.method == "POST":
try:
Token=json.loads(request.body)["token"]
Uid = UserInfo().QueryUidWithToken(Token) # 如果登录成功后就来查询UID
if Uid != None: # 查到了UID
UserOperationLogRecord(request, request_api="nist_statistics", uid=Uid) # 查询到了在计入
SearchResult=NistData().StatisticalData()#统计的个数
return JsonResponse({'message': SearchResult, 'code': 200, })
else:
return JsonResponse({'message': "小宝贝这是非法查询哦(๑•̀ㅂ•́)و✧", 'code': 403, })
except Exception as e:
ErrorLog().Write("Web_CVE_NistMonitoring_Nist_NistStatistics(def)", e)
return JsonResponse({'message': '自己去看报错日志!', 'code': 169, })
else:
return JsonResponse({'message': '请使用Post请求', 'code': 500, })
def NistDataDetailedQuery(request):#查询单个CVE细节数据
RequestLogRecord(request, request_api="nist_data_detailed_query")
if request.method == "POST":
try:
Token=json.loads(request.body)["token"]
CommonVulnerabilitiesAndExposures = json.loads(request.body)["common_vulnerabilities_and_exposures"]#CVE编号
Uid = UserInfo().QueryUidWithToken(Token) # 如果登录成功后就来查询UID
if Uid != None: # 查到了UID
UserOperationLogRecord(request, request_api="nist_data_detailed_query", uid=Uid) # 查询到了在计入
SearchResult=NistData().DetailedQuery(common_vulnerabilities_and_exposures=CommonVulnerabilitiesAndExposures)#获取数据
return JsonResponse({'message':ast.literal_eval(SearchResult), 'code': 200, })
else:
return JsonResponse({'message': "小宝贝这是非法查询哦(๑•̀ㅂ•́)و✧", 'code': 403, })
except Exception as e:
ErrorLog().Write("Web_CVE_NistMonitoring_Nist_NistDataDetailedQuery(def)", e)
return JsonResponse({'message': '自己去看报错日志!', 'code': 169, })
else:
return JsonResponse({'message': '请使用Post请求', 'code': 500, })
def NistDataBulkQuery(request):#查询Nist的基础数据监控数据
RequestLogRecord(request, request_api="nist_data_bulk_query")
if request.method == "POST":
try:
Token=json.loads(request.body)["token"]
NumberOfPages = json.loads(request.body)["number_of_pages"]#页数
Uid = UserInfo().QueryUidWithToken(Token) # 如果登录成功后就来查询UID
if Uid != None: # 查到了UID
UserOperationLogRecord(request, request_api="nist_data_bulk_query", uid=Uid) # 查询到了在计入
if int(NumberOfPages)<0:
return JsonResponse({'message': "你家有小于0的页码?", 'code': 503, })
else:
SearchResult=NistData().BulkQuery(number_of_pages=int(NumberOfPages))#获取数据
return JsonResponse({'message': SearchResult, 'code': 200, })
else:
return JsonResponse({'message': "小宝贝这是非法查询哦(๑•̀ㅂ•́)و✧", 'code': 403, })
except Exception as e:
ErrorLog().Write("Web_CVE_NistMonitoring_Nist_NistDataBulkQuery(def)", e)
return JsonResponse({'message': '自己去看报错日志!', 'code': 169, })
else:
return JsonResponse({'message': '请使用Post请求', 'code': 500, })
def NistSearchStatistics(request):#模糊搜索数据统计
RequestLogRecord(request, request_api="nist_search_statistics")
if request.method == "POST":
try:
Token=json.loads(request.body)["token"]
Severity = json.loads(request.body)["severity"] # 严重性等级
Key = json.loads(request.body)["key"] # 查询关键字
Uid = UserInfo().QueryUidWithToken(Token) # 如果登录成功后就来查询UID
if Uid != None: # 查到了UID
UserOperationLogRecord(request, request_api="nist_search_statistics", uid=Uid) # 查询到了在计入
if Key=="":
return JsonResponse({'message': "咋了?查询不知道传数据吗?", 'code': 505, })
else:
Total = NistData().SearchStatistics(key=Key,severity=Severity) # 查询漏洞总数
return JsonResponse({'message': Total, 'code': 200, })
else:
return JsonResponse({'message': "小宝贝这是非法查询哦(๑•̀ㅂ•́)و✧", 'code': 403, })
except Exception as e:
ErrorLog().Write("Web_CVE_NistMonitoring_Nist_NistSearchStatistics(def)", e)
return JsonResponse({'message': '自己去看报错日志!', 'code': 169, })
else:
return JsonResponse({'message': '请使用Post请求', 'code': 500, })
def NistUpdateProcessing(ZipFilePath, ZipFileData): #更新数据库处理函数
try:
StartingTime = time.time()
Nist = NistData() #初始化连接
zipFile = zipfile.ZipFile(ZipFilePath, 'r') #获取下载好的数据
ZipData = zipFile.read(ZipFileData).decode(
'utf-8') #读取到的byte类型进行转换到字符串类型
ExtractData = json.loads(ZipData)["CVE_Items"] #提取需要的数据
if len(ExtractData) == 0: #判断文件是否下载错误
NistUpdateDownload(TempFilePath) # 如果下载错误就重新下载
return 0
DataSet = [] #存放所有tuple类型数据容器
UpdateData = [] # 存放所有需要更新的数据
InsertData = [] # 存放所有需要插入的数据
UpdateCount = 0 #更新数据计数
InsertCount = 0 #插入数据计数
for Data in ExtractData:
VulnerabilityNumber = Data["cve"]["CVE_data_meta"]["ID"] #提取CVE编号
VulnerabilityDescription = Data["cve"]["description"][
"description_data"][0]["value"] # 漏洞说明
#上述两个必定存在的值,下面的参数不一定存在
try:
V3BaseScore = Data["impact"]["baseMetricV3"]["cvssV3"][
"baseScore"] #CVSS v3版本分值
except:
V3BaseScore = ""
try:
V3BaseSeverity = Data["impact"]["baseMetricV3"]["cvssV3"][
"baseSeverity"] # CVSS v3等级分类
except:
V3BaseSeverity = ""
try:
V2BaseScore = Data["impact"]["baseMetricV2"]["cvssV2"][
"baseScore"] # CVSS v2版本分值
except:
V2BaseScore = ""
try:
V2BaseSeverity = Data["impact"]["baseMetricV2"][
"severity"] # CVSS v2等级分类
except:
V2BaseSeverity = ""
try:
LastUpDate = Data["lastModifiedDate"].partition('T')[
0] #最后修改日期
except:
LastUpDate = ""
try:
ConfigurationsNodes = Data["configurations"]["nodes"]
Vendors = [] #存放供应商
VendorsTmp = [] # 存放未进行大小写转换的供应商数据
Products = [] #存放产品
ProductsTmp = [] # 存放未进行大小写转换的产品数据
for i in ConfigurationsNodes:
VendorsTmp.append(i["cpe_match"][0]["cpe23Uri"].split(":")
[3]) #对供应商数据进行提取分割
ProductsTmp.append(i["cpe_match"][0]["cpe23Uri"].split(":")
[4]) #对产品数据进行提取分割
for i in VendorsTmp: #对供应商数据进行处理
Tmp = [] #临时数据
for x in i.split("_"): #进行数据分割
Tmp.append(x.capitalize()) #首字母大写化
Vendors.append(' '.join(Tmp)) #对数据进行拼接后发送到容器
for i in ProductsTmp: #对供产品据进行处理
Tmp = [] #临时数据
for x in i.split("_"): #进行数据分割
Tmp.append(x.capitalize()) #首字母大写化
Products.append(' '.join(Tmp)) #对数据进行拼接后发送到容器
except:
Vendors = ""
Products = ""
if len(Vendors) == 0: #判断是否有数据
Vendors = ""
if len(Products) == 0:
Products = ""
DataSet.append(
(VulnerabilityNumber, V3BaseScore, V3BaseSeverity, V2BaseScore,
V2BaseSeverity, LastUpDate, VulnerabilityDescription,
str(Vendors), str(Products), str(Data)))
for i in DataSet:
SearchResult = Nist.UniqueInquiry(
vulnerability_number=i[0]) #获取查询结果
if SearchResult: #如果有数据
UpdateData.append(
i + (i[0], )) #在后面添加上vulnerability_number值用来作为更新的key
else:
InsertData.append(i)
if len(UpdateData) == 500: #500写入一次数据库
Nist.Update(UpdateData)
UpdateCount += 500
UpdateData.clear() #写入后清空数据库
if len(InsertData) == 500: #500写入一次数据库
Nist.Write(InsertData)
InsertCount += 500
InsertData.clear() #写入后清空数据库
#不足500的数据写入
Nist.Update(UpdateData)
UpdateCount += len(UpdateData)
UpdateData.clear() #写入后清空数据库
Nist.Write(InsertData)
InsertCount += len(InsertData)
InsertData.clear() #写入后清空数据库
if nist_update_banner:
print("[ ~ ] 更新文件来源:\033[36m" + ZipFilePath +
"\033[0m 耗时:\033[34m" + str(time.time() - StartingTime) +
"S \033[0m 更新数据:\033[32m" + str(UpdateCount) + "\033[0m条" +
" 插入数据:\033[32m" + str(InsertCount) + "\033[0m条")
zipFile.close()
except Exception as e:
NistUpdateDownload(TempFilePath) #如果文件不是zip文件,就是表明可能下载错误了
ErrorLog().Write(
"Web_CVE_NistMonitoring_NistUpdata_NistUpdateProcessing(def)", e)
def NistFirsRunProcessing(ZipFilePath,ZipFileData):#第一次运行数据处理
try:
StartingTime = time.time()
Nist=NistData()#初始化连接
zipFile = zipfile.ZipFile(ZipFilePath, 'r')#获取下载好的数据
ZipData = zipFile.read(ZipFileData).decode('utf-8')#读取到的byte类型进行转换到字符串类型
ExtractData=json.loads(ZipData)["CVE_Items"]#提取需要的数据
if len(ExtractData)==0:#判断文件是否下载错误
ReportAnErrorAndRestartTheDownload(ZipFilePath[:-9], ZipFilePath[:-24]) # 如果下载错误就重新下载
return 0
DataSet=[]#存放500条tuple类型数据容器
for Data in ExtractData:
VulnerabilityNumber =Data["cve"]["CVE_data_meta"]["ID"]#提取CVE编号
VulnerabilityDescription = Data["cve"]["description"]["description_data"][0]["value"] # 漏洞说明
#上述两个必定存在的值,下面的参数不一定存在
try:
V3BaseScore=Data["impact"]["baseMetricV3"]["cvssV3"]["baseScore"]#CVSS v3版本分值
except:
V3BaseScore=""
try:
V3BaseSeverity = Data["impact"]["baseMetricV3"]["cvssV3"]["baseSeverity"] # CVSS v3等级分类
except:
V3BaseSeverity=""
try:
V2BaseScore = Data["impact"]["baseMetricV2"]["cvssV2"]["baseScore"] # CVSS v2版本分值
except:
V2BaseScore=""
try:
V2BaseSeverity = Data["impact"]["baseMetricV2"]["severity"] # CVSS v2等级分类
except:
V2BaseSeverity=""
try:
LastUpDate= Data["lastModifiedDate"].partition('T')[0] #最后修改日期
except:
LastUpDate=""
try:
ConfigurationsNodes = Data["configurations"]["nodes"]
Vendors=[]#存放供应商
VendorsTmp= [] # 存放未进行大小写转换的供应商数据
Products=[]#存放产品
ProductsTmp = [] # 存放未进行大小写转换的产品数据
for i in ConfigurationsNodes:
VendorsTmp.append(i["cpe_match"][0]["cpe23Uri"].split(":")[3])#对供应商数据进行提取分割
ProductsTmp.append(i["cpe_match"][0]["cpe23Uri"].split(":")[4])#对产品数据进行提取分割
for i in VendorsTmp:#对供应商数据进行处理
Tmp=[]#临时数据
for x in i.split("_"):#进行数据分割
Tmp.append(x.capitalize())#首字母大写化
Vendors.append(' '.join(Tmp))#对数据进行拼接后发送到容器
for i in ProductsTmp:#对供产品据进行处理
Tmp=[]#临时数据
for x in i.split("_"):#进行数据分割
Tmp.append(x.capitalize())#首字母大写化
Products.append(' '.join(Tmp))#对数据进行拼接后发送到容器
except:
Vendors=""
Products=""
if len(Vendors)==0:#判断是否有数据
Vendors=""
if len(Products)==0:
Products = ""
DataSet.append((VulnerabilityNumber, V3BaseScore, V3BaseSeverity, V2BaseScore,
V2BaseSeverity, LastUpDate, VulnerabilityDescription, str(Vendors), str(Products), str(Data)))
if len(DataSet)==500:#500写入一次数据库
Nist.Write(DataSet)
DataSet.clear()#写入后清空数据库
Nist.Write(DataSet)#函数循环结束后也写入一次数据库,防止不足500的数据没写入
Nist.con.close()#关闭数据库连接
print("[ ~ ] 写入文件:\033[36m"+ZipFilePath+"\033[0m 耗时:\033[34m" + str(time.time() - StartingTime) + "S \033[0m 数据量:\033[32m"+str(len(ExtractData))+"\033[0m条")
zipFile.close()
except Exception as e:
ReportAnErrorAndRestartTheDownload(ZipFilePath[-13:-9], ZipFilePath[:-24])#如果文件不是zip文件,就是表明可能下载错误了
ErrorLog().Write(
"Web_CVE_NistMonitoring_NistInitialization_FirsRunProcessing(def)", e)