Release catalyst

2025-12-06 23:32:47 +01:00 · 2021-12-13 00:39:15 +01:00
commit 15cf0ebd49
339 changed files with 111677 additions and 0 deletions
--- a/database/playbookutils_test.go
+++ b/database/playbookutils_test.go
@@ -0,0 +1,135 @@
+package database
+
+import (
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+
+	"github.com/SecurityBrewery/catalyst/generated/models"
+)
+
+var playbook2 = &models.Playbook{
+	Name: "Phishing",
+	Tasks: map[string]*models.Task{
+		"board": {Next: map[string]string{
+			"escalate":    "boardInvolved == true",
+			"aquire-mail": "boardInvolved == false",
+		}},
+		"escalate": {},
+		"aquire-mail": {Next: map[string]string{
+			"extract-iocs":         "schemaKey == 'yes'",
+			"block-sender":         "schemaKey == 'yes'",
+			"search-email-gateway": "schemaKey == 'no'",
+		}},
+		"extract-iocs":         {Next: map[string]string{"fetch-iocs": ""}},
+		"fetch-iocs":           {Next: map[string]string{"block-iocs": ""}},
+		"search-email-gateway": {Next: map[string]string{"block-iocs": ""}},
+		"block-sender":         {Next: map[string]string{"block-iocs": ""}},
+		"block-iocs":           {Next: map[string]string{"block-ioc": ""}},
+		"block-ioc":            {},
+	},
+}
+
+var playbook3 = &models.Playbook{
+	Name: "Phishing",
+	Tasks: map[string]*models.Task{
+		"board": {Next: map[string]string{
+			"escalate":    "boardInvolved == true",
+			"aquire-mail": "boardInvolved == false",
+		}, Data: map[string]interface{}{"boardInvolved": true}, Done: true},
+		"escalate": {},
+		"aquire-mail": {Next: map[string]string{
+			"extract-iocs":         "schemaKey == 'yes'",
+			"block-sender":         "schemaKey == 'yes'",
+			"search-email-gateway": "schemaKey == 'no'",
+		}},
+		"extract-iocs":         {Next: map[string]string{"fetch-iocs": ""}},
+		"fetch-iocs":           {Next: map[string]string{"block-iocs": ""}},
+		"search-email-gateway": {Next: map[string]string{"block-iocs": ""}},
+		"block-sender":         {Next: map[string]string{"block-iocs": ""}},
+		"block-iocs":           {Next: map[string]string{"block-ioc": ""}},
+		"block-ioc":            {},
+	},
+}
+
+var playbook4 = &models.Playbook{
+	Name: "Malware",
+	Tasks: map[string]*models.Task{
+		"file-or-hash": {Next: map[string]string{
+			"enter-hash": "file == 'Hash'",
+			"upload":     "file == 'File'",
+		}},
+		"enter-hash": {Next: map[string]string{
+			"virustotal": "hash != ''",
+		}},
+		"upload": {Next: map[string]string{
+			"hash": "malware",
+		}},
+		"hash":       {Next: map[string]string{"virustotal": ""}},
+		"virustotal": {},
+	},
+}
+
+func Test_canBeCompleted(t *testing.T) {
+	type args struct {
+		playbook *models.Playbook
+		taskID   string
+	}
+	tests := []struct {
+		name    string
+		args    args
+		want    bool
+		wantErr bool
+	}{
+		{"playbook2 board", args{playbook: playbook2, taskID: "board"}, true, false},
+		{"playbook2 escalate", args{playbook: playbook2, taskID: "escalate"}, false, false},
+		{"playbook2 aquire-mail", args{playbook: playbook2, taskID: "aquire-mail"}, false, false},
+		{"playbook2 block-ioc", args{playbook: playbook2, taskID: "block-ioc"}, false, false},
+		{"playbook3 board", args{playbook: playbook3, taskID: "board"}, false, false},
+		{"playbook3 escalate", args{playbook: playbook3, taskID: "escalate"}, true, false},
+		{"playbook3 aquire-mail", args{playbook: playbook3, taskID: "aquire-mail"}, false, false},
+		{"playbook3 block-ioc", args{playbook: playbook3, taskID: "block-ioc"}, false, false},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got, err := activePlaybook(tt.args.playbook, tt.args.taskID)
+			if (err != nil) != tt.wantErr {
+				t.Errorf("activePlaybook() error = %v, wantErr %v", err, tt.wantErr)
+				return
+			}
+			if got != tt.want {
+				t.Errorf("activePlaybook() got = %v, want %v", got, tt.want)
+			}
+		})
+	}
+}
+
+func Test_playbookOrder(t *testing.T) {
+	type args struct {
+		playbook *models.Playbook
+	}
+	tests := []struct {
+		name    string
+		args    args
+		want    []string
+		wantErr bool
+	}{
+		{"playbook4", args{playbook: playbook4}, []string{"file-or-hash", "enter-hash", "upload", "hash", "virustotal"}, false},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got, err := toPlaybookResponse(tt.args.playbook)
+			if (err != nil) != tt.wantErr {
+				t.Errorf("activePlaybook() error = %v, wantErr %v", err, tt.wantErr)
+				return
+			}
+
+			names := make([]string, len(got.Tasks))
+			for name, task := range got.Tasks {
+				names[task.Order] = name
+			}
+
+			assert.Equal(t, tt.want, names)
+		})
+	}
+}