Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Vulnerability rule #2286

Merged
merged 13 commits into from
Aug 26, 2024
Merged

Vulnerability rule #2286

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
a62b59a
Add all vulnerability rules in neo4j
ramanan-ravi Aug 8, 2024
d2d3690
add concrete type to stub
noboruma Aug 15, 2024
b98df54
add arrays to vuln struct
noboruma Aug 15, 2024
ecded6e
fix report
noboruma Aug 19, 2024
98dfd31
backport df ingestion (#2288)
noboruma Aug 19, 2024
949290d
fix rule_id in Secret rule report
noboruma Aug 19, 2024
4aa6b35
separate arrays from single values
noboruma Aug 22, 2024
e82e010
add indexing mechanism to populate vuln data
noboruma Aug 22, 2024
49b4854
remove exploit poc
noboruma Aug 22, 2024
0e4972e
use correct field
noboruma Aug 22, 2024
8b709c8
backport rules changes
noboruma Aug 26, 2024
be4b6a1
add missing functions
noboruma Aug 26, 2024
e08b915
fix secret rule_id
noboruma Aug 26, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion deepfence_agent/plugins/cloud-scanner
Open in desktop
Submodule cloud-scanner updated 53 files
+73 −0 Dockerfile
+5 −5 Dockerfile.steampipe
+12 −5 Makefile
+0 −10 README.md
+60 −44 cloud_resource_changes/cloud_resource_changes_aws/cloudtrail.go
+19 −8 cloud_resource_changes/cloud_resource_changes_aws/type.go
+12 −17 cloud_resource_changes/cloud_resource_changes_aws/util.go
+85 −0 cloudformation/deepfence-cloud-scanner-members.template
+109 −58 cloudformation/deepfence-cloud-scanner-org-common.template
+42 −55 cloudformation/deepfence-cloud-scanner-org-mgmt-console.template
+3 −14 cloudformation/deepfence-cloud-scanner-roles.template
+80 −91 cloudformation/deepfence-cloud-scanner.template
+4 −6 ...n/deepfence-managed/automated-deployment/deepfence-cloud-scanner-automated-organization-deployment.template
+2 −2 ...ormation/deepfence-managed/manual-deployment/deepfence-managed-cloud-scanner-organization-iam-role.template
+5 −5 ...ormation/deepfence-managed/manual-deployment/deepfence-managed-cloud-scanner-organization-stackset.template
+0 −35 ...rmation/deepfence-managed/single-account-deployment/deepfence-managed-cloud-scanner-single-account.template
+11 −0 entrypoint.sh
+4 −4 exportcontrols/aws/main_aws.go
+7 −7 exportcontrols/azure/main_azure.go
+3 −17 exportcontrols/gcp/main_gcp.go
+8 −58 go.mod
+17 −193 go.sum
+1 −1 golang_deepfence_sdk
+0 −2 helm-chart/.gitignore
+0 −23 helm-chart/deepfence-cloud-scanner/.helmignore
+0 −24 helm-chart/deepfence-cloud-scanner/Chart.yaml
+0 −3 helm-chart/deepfence-cloud-scanner/templates/NOTES.txt
+0 −62 helm-chart/deepfence-cloud-scanner/templates/_helpers.tpl
+0 −98 helm-chart/deepfence-cloud-scanner/templates/deployment.yaml
+0 −11 helm-chart/deepfence-cloud-scanner/templates/secret.yaml
+0 −13 helm-chart/deepfence-cloud-scanner/templates/serviceaccount.yaml
+0 −109 helm-chart/deepfence-cloud-scanner/values.yaml
+0 −14 helm-chart/index.yaml
+156 −34 internal/deepfence/client.go
+59 −0 internal/deepfence/diagnosis.go
+27 −0 internal/deepfence/util.go
+88 −55 main.go
+1 −1 output/file_output.go
+41 −27 output/output.go
+578 −847 query_resource/aws.go
+451 −440 query_resource/azure.go
+0 −51 query_resource/find_column_names/find_column_names.go
+168 −186 query_resource/gcp.go
+84 −80 query_resource/query.go
+0 −157 query_resource/query_service.go
+9 −9 scanner/parser.go
+123 −28 scanner/scanner.go
+246 −533 service/service.go
+0 −18 util/query_table_columns/README.md
+0 −32 util/query_table_columns/extract_cloud_resource_types.py
+0 −42 util/query_table_columns/format_cloud_resource_types.py
+75 −76 util/type.go
+21 −65 util/util.go
2 changes: 1 addition & 1 deletion deepfence_agent/plugins/package-scanner
Open in desktop
Submodule package-scanner updated 7 files
+1 −1 Makefile
+3 −3 README.md
+2 −2 go.mod
+4 −4 go.sum
+0 −1 output/output.go
+1 −1 scanner/grype/grype.go
+4 −1 scanner/types.go
2 changes: 1 addition & 1 deletion deepfence_agent/plugins/yara-rules
Open in desktop
Submodule yara-rules updated 2 files
+1 −1 build-timestamp
+114,552 −28,086 malware.yar
4 changes: 2 additions & 2 deletions deepfence_bootstrapper/assets/config.ini
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,13 +21,13 @@ autostart=true
autorestart=true

[process:secret_scanner]
command=/bin/bash -c "rm -f $DF_INSTALL_DIR/tmp/secret-scanner.sock && exec $DF_INSTALL_DIR/home/deepfence/bin/secret-scanner/SecretScanner --config-path $DF_INSTALL_DIR/home/deepfence/bin/secret-scanner/config --rules-path $DF_INSTALL_DIR/home/deepfence/bin/secret-scanner/rules/secret-yara-rules --socket-path=$DF_INSTALL_DIR/tmp/secret-scanner.sock"
command=/bin/bash -c "rm -f $DF_INSTALL_DIR/tmp/secret-scanner.sock && exec $DF_INSTALL_DIR/home/deepfence/bin/secret-scanner/SecretScanner --config-path $DF_INSTALL_DIR/home/deepfence/bin/secret-scanner/config --rules-path $DF_INSTALL_DIR/home/deepfence/bin/secret-scanner/rules --socket-path=$DF_INSTALL_DIR/tmp/secret-scanner.sock"
path=$DF_INSTALL_DIR/home/deepfence/bin/secret-scanner/SecretScanner
autostart=true
autorestart=true

[process:malware_scanner]
command=/bin/bash -c "rm -f $DF_INSTALL_DIR/tmp/yara-hunter.sock && exec $DF_INSTALL_DIR/home/deepfence/bin/yara-hunter/YaraHunter --config-path $DF_INSTALL_DIR/home/deepfence/bin/yara-hunter/config.yaml --rules-path $DF_INSTALL_DIR/home/deepfence/bin/yara-hunter/yara-rules --socket-path=$DF_INSTALL_DIR/tmp/yara-hunter.sock --enable-updater=false"
command=/bin/bash -c "rm -f $DF_INSTALL_DIR/tmp/yara-hunter.sock && exec $DF_INSTALL_DIR/home/deepfence/bin/yara-hunter/YaraHunter --config-path $DF_INSTALL_DIR/home/deepfence/bin/yara-hunter/config.yaml --rules-path $DF_INSTALL_DIR/home/deepfence/bin/yara-hunter/rules --socket-path=$DF_INSTALL_DIR/tmp/yara-hunter.sock --enable-updater=false"
path=$DF_INSTALL_DIR/home/deepfence/bin/yara-hunter/YaraHunter
autostart=true
autorestart=true
27 changes: 27 additions & 0 deletions deepfence_bootstrapper/go.mod
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -34,6 +34,8 @@ require (
require (
aead.dev/minisign v0.2.0 // indirect
github.com/Azure/go-ansiterm v0.0.0-20170929234023-d6e3b3328b78 // indirect
github.com/VirusTotal/gyp v0.9.0 // indirect
github.com/XSAM/otelsql v0.31.0 // indirect
github.com/c9s/goprocinfo v0.0.0-20151025191153-19cb9f127a9c // indirect
github.com/cenkalti/backoff/v4 v4.3.0 // indirect
github.com/cespare/xxhash/v2 v2.3.0 // indirect
Expand All @@ -44,6 +46,12 @@ require (
github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f // indirect
github.com/docker/docker v1.4.2-0.20180827131323-0c5f8d2b9b23 // indirect
github.com/docker/go-units v0.4.0 // indirect
github.com/dustin/go-humanize v1.0.1 // indirect
github.com/glebarez/go-sqlite v1.21.2 // indirect
github.com/glebarez/sqlite v1.11.0 // indirect
github.com/go-chi/jwtauth/v5 v5.3.1 // indirect
github.com/go-logr/logr v1.4.1 // indirect
github.com/go-logr/stdr v1.2.2 // indirect
github.com/goccy/go-json v0.10.2 // indirect
github.com/godbus/dbus/v5 v5.0.4 // indirect
github.com/golang/protobuf v1.5.4 // indirect
Expand All @@ -52,8 +60,12 @@ require (
github.com/hashicorp/go-cleanhttp v0.5.2 // indirect
github.com/hashicorp/go-retryablehttp v0.7.5 // indirect
github.com/hibiken/asynq v0.24.1 // indirect
github.com/jellydator/ttlcache/v3 v3.2.0 // indirect
github.com/jinzhu/inflection v1.0.0 // indirect
github.com/jinzhu/now v1.1.5 // indirect
github.com/k-sone/critbitgo v1.2.0 // indirect
github.com/klauspost/compress v1.17.8 // indirect
github.com/klauspost/cpuid/v2 v2.2.6 // indirect
github.com/kr/pty v1.1.1 // indirect
github.com/lestrrat-go/blackmagic v1.0.2 // indirect
github.com/lestrrat-go/httpcc v1.0.1 // indirect
Expand All @@ -64,10 +76,16 @@ require (
github.com/lib/pq v1.10.9 // indirect
github.com/mattn/go-colorable v0.1.13 // indirect
github.com/mattn/go-isatty v0.0.20 // indirect
github.com/minio/md5-simd v1.1.2 // indirect
github.com/minio/minio-go/v7 v7.0.70 // indirect
github.com/neo4j/neo4j-go-driver/v5 v5.20.0 // indirect
github.com/opentracing/opentracing-go v1.1.0 // indirect
github.com/pierrec/lz4/v4 v4.1.21 // indirect
github.com/raito-io/neo4j-tracing v0.0.5 // indirect
github.com/redis/go-redis/v9 v9.5.1 // indirect
github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec // indirect
github.com/robfig/cron/v3 v3.0.1 // indirect
github.com/rs/xid v1.5.0 // indirect
github.com/segmentio/asm v1.2.0 // indirect
github.com/sirupsen/logrus v1.9.3 // indirect
github.com/spf13/cast v1.6.0 // indirect
Expand All @@ -78,12 +96,21 @@ require (
github.com/weaveworks/common v0.0.0-20200310113808-2708ba4e60a4 // indirect
github.com/weaveworks/ps v0.0.0-20160725183535-70d17b2d6f76 // indirect
github.com/willdonnelly/passwd v0.0.0-20141013001024-7935dab3074c // indirect
go.opentelemetry.io/otel v1.26.0 // indirect
go.opentelemetry.io/otel/metric v1.26.0 // indirect
go.opentelemetry.io/otel/trace v1.26.0 // indirect
golang.org/x/crypto v0.22.0 // indirect
golang.org/x/exp v0.0.0-20230224173230-c95f2b4c22f2 // indirect
golang.org/x/net v0.24.0 // indirect
golang.org/x/sync v0.1.0 // indirect
golang.org/x/sys v0.20.0 // indirect
golang.org/x/text v0.15.0 // indirect
golang.org/x/time v0.5.0 // indirect
google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1 // indirect
google.golang.org/protobuf v1.34.0 // indirect
gorm.io/gorm v1.25.11 // indirect
modernc.org/libc v1.22.5 // indirect
modernc.org/mathutil v1.5.0 // indirect
modernc.org/memory v1.5.0 // indirect
modernc.org/sqlite v1.23.1 // indirect
)
Loading
Loading