def __init__(self,
agent_id,
offset,
limit,
sort,
search,
select,
query,
count,
get_data,
default_query=default_query_sca,
default_sort_field='policy_id',
filters={},
fields=fields_translation_sca,
count_field='policy_id'):
self.default_query = default_query
self.count_field = count_field
WazuhDBQuery.__init__(self,
offset=offset,
limit=limit,
table='sca_policy',
sort=sort,
search=search,
select=select,
fields=fields,
default_sort_field=default_sort_field,
default_sort_order='DESC',
filters=filters,
query=query,
count=count,
get_data=get_data,
date_fields={'end_scan', 'start_scan'},
backend=WazuhDBBackend(agent_id))
def __init__(self, agent_id, default_sort_field='mtime', *args, **kwargs):
super().__init__(backend=WazuhDBBackend(agent_id),
default_sort_field=default_sort_field,
count=True,
get_data=True,
date_fields={'mtime', 'date'},
*args,
**kwargs)
def __init__(self, array, nested, agent_id, *args, **kwargs):
super().__init__(backend=WazuhDBBackend(agent_id),
default_sort_field='scan_id',
get_data=True,
count=True,
*args,
**kwargs)
self.array = array
self.nested = nested
def __init__(self,
agent_id,
offset,
limit,
sort,
search,
select,
query,
count,
get_data,
default_query=default_query_sca,
default_sort_field='policy_id',
filters={},
fields=fields_translation_sca,
count_field='policy_id'):
self.default_query = default_query
self.count_field = count_field
self.special_fields = ('title', 'rationale', 'description',
'remediation', 'reason')
# Replace characters with special meaning in SQL with wildcards.
for field in self.special_fields:
if field in filters:
filters[field] = filters[field].replace("'",
"_").replace('"', "_")
WazuhDBQuery.__init__(self,
offset=offset,
limit=limit,
table='sca_policy',
sort=sort,
search=search,
select=select,
fields=fields,
default_sort_field=default_sort_field,
default_sort_order='DESC',
filters=filters,
query=query,
count=count,
get_data=get_data,
date_fields={'end_scan', 'start_scan'},
backend=WazuhDBBackend(agent_id))
def __init__(self,
offset: int = 0,
limit: int = 10,
query: str = '',
count: bool = True,
get_data: bool = True,
table: str = 'attack',
sort: dict = None,
default_sort_field: str = 'id',
fields=None,
search: dict = None,
select: dict = None,
min_select_fields=None):
"""Create an instance of WazuhDBQueryMitre query."""
if min_select_fields is None:
min_select_fields = {'id'}
if fields is None:
fields = mitre_fields
WazuhDBQuery.__init__(self,
offset=offset,
limit=limit,
table=table,
sort=sort,
search=search,
select=select,
fields=fields,
default_sort_field=default_sort_field,
default_sort_order='ASC',
filters=None,
query=query,
count=count,
get_data=get_data,
min_select_fields=min_select_fields,
backend=WazuhDBBackend(query_format='mitre'))