Skip to content

Commit

Permalink
Merge branch 'tkt_310_add_terraform_plugin' into 'dev'
Browse files Browse the repository at this point in the history 
Add terraform plugin

Closes #310

See merge request faradaysec/faraday-plugins!233
  • Loading branch information
Gonzalo Martinez committed Aug 23, 2023
2 parents fa6bd3b + d953bef commit e2a6fb2
Show file tree
Hide file tree
Showing 4 changed files with 82 additions and 1 deletion.
1 change: 1 addition & 0 deletions CHANGELOG/current/310.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
[ADD] Add Terrascan and TFSec plugins. #310
3 changes: 2 additions & 1 deletion faraday_plugins/plugins/repo/arachni/plugin.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -445,8 +445,9 @@ def parseOutputString(self, output):
resol = str(issue.remedy_guidance)

references = issue.references
cwe = []
if issue.cwe != 'None':
cwe = ['CWE-' + str(issue.cwe)]
cwe.append('CWE-' + str(issue.cwe))
if resol == 'None':
resol = ''

Expand Down
6 changes: 6 additions & 0 deletions faraday_plugins/plugins/repo/terraform/__init__.py
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
"""
Faraday Penetration Test IDE
Copyright (C) 2013 Infobyte LLC (http://www.infobytesec.com/)
See the file 'doc/LICENSE' for the license information
"""
73 changes: 73 additions & 0 deletions faraday_plugins/plugins/repo/terraform/plugin.py
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,73 @@
"""
Faraday Penetration Test IDE
Copyright (C) 2013 Infobyte LLC (http://www.infobytesec.com/)
See the file 'doc/LICENSE' for the license information
"""
from faraday_plugins.plugins.plugin import PluginJsonFormat
from json import loads

__author__ = "Gonzalo Martinez"
__copyright__ = "Copyright (c) 2013, Infobyte LLC"
__credits__ = ["Gonzalo Martinez"]
__version__ = "1.0.0"
__maintainer__ = "Gonzalo Martinez"
__email__ = "[email protected]"
__status__ = "Development"


class TerraformPlugin(PluginJsonFormat):

def __init__(self, *args, **kwargs):
super().__init__(*args, **kwargs)
self.id = "TerraformPluginJson"
self.name = "Terraform Plugin JSON Output Plugin"
self.plugin_version = "1"
self.version = "1"
self.json_keys = {'results'}
self.framework_version = "1.0.0"
self._temp_file_extension = "json"

def parseOutputString(self, output):
report = loads(output)
if isinstance(report.get('results'), list):
self.id = "TFsecPlugin_Json"
self.name = "TFsec Plugin JSON Output Plugin"
for result in report.get('results'):
host_id = self.createAndAddHost(result.get('location', {}).get("filename", "No filename"))
data = f"Rule Provider: {result.get('rule_provider')}\n"\
f"Rule Service: {result.get('rule_service')}\n"\
f"Rule Impact: {result.get('impact')}\n"\
f"Long Id: {result.get('long_id')}\n" \
f"Line Start/End: {result.get('location').get('start_line')}"\
f"/{result.get('location').get('end_line')}"
self.createAndAddVulnToHost(
host_id,
name=result.get('rule_description')[:50],
desc=result.get('rule_description'),
severity=result.get('severity','').lower(),
data=data,
external_id=result.get('rule_id'),
ref=result.get('links'),
resolution=result.get('resolution')
)
else:
self.id = "TerrascanPlugin_Json"
self.name = "Terrascan Plugin JSON Output Plugin"
for violation in report.get('results', {}).get("violations"):
host_id = self.createAndAddHost(violation.get('file'), description=violation.get('resource_name'))
data = f"Category: {violation.get('category', '')}\n"\
f"Resource Type: {violation.get('resource_type', '')}\n"\
f"Line: {violation.get('line', 0)}"
self.createAndAddVulnToHost(
host_id,
name=violation.get('rule_name'),
desc=violation.get('description'),
severity=violation.get('severity','').lower(),
data=data,
external_id=violation.get('rule_id')
)


def createPlugin(*args, **kwargs):
return TerraformPlugin(*args, **kwargs)

0 comments on commit e2a6fb2

Please sign in to comment.