app.objects namespace¶
Subpackages¶
- app.objects.secondclass namespace
- Submodules
- app.objects.secondclass.c_fact module
- app.objects.secondclass.c_instruction module
- app.objects.secondclass.c_link module
- app.objects.secondclass.c_parser module
- app.objects.secondclass.c_parserconfig module
- app.objects.secondclass.c_relationship module
- app.objects.secondclass.c_requirement module
- app.objects.secondclass.c_result module
- app.objects.secondclass.c_rule module
- app.objects.secondclass.c_variation module
- app.objects.secondclass.c_visibility module
Submodules¶
app.objects.c_ability module¶
-
class
app.objects.c_ability.
Ability
(ability_id, tactic=None, technique_id=None, technique=None, name=None, test=None, description=None, cleanup=None, executor=None, platform=None, payloads=None, parsers=None, requirements=None, privilege=None, timeout=60, repeatable=False, access=None, variations=None)¶ Bases:
app.utility.base_object.BaseObject
-
RESERVED
= {'payload': '#{payload}'}¶
-
display
¶
-
classmethod
from_json
(json)¶
-
replace_cleanup
(encoded_cmd, payload)¶
-
store
(ram)¶
-
test
¶
-
unique
¶
-
which_plugin
()¶
-
app.objects.c_adversary module¶
app.objects.c_agent module¶
-
class
app.objects.c_agent.
Agent
(sleep_min, sleep_max, watchdog, platform='unknown', server='unknown', host='unknown', username='unknown', architecture='unknown', group='red', location='unknown', pid=0, ppid=0, trusted=True, executors=(), privilege='User', exe_name='unknown', contact='unknown', paw=None)¶ Bases:
app.utility.base_object.BaseObject
-
class
AgentSchema
(*, only: Union[Sequence[str], Set[str]] = None, exclude: Union[Sequence[str], Set[str]] = (), many: bool = False, context: Dict[KT, VT] = None, load_only: Union[Sequence[str], Set[str]] = (), dump_only: Union[Sequence[str], Set[str]] = (), partial: Union[bool, Sequence[str], Set[str]] = False, unknown: str = None)¶ Bases:
marshmallow.schema.Schema
-
opts
= <marshmallow.schema.SchemaOpts object>¶
-
remove_nulls
(in_data, **_)¶
-
-
RESERVED
= {'agent_paw': '#{paw}', 'exe_name': '#{exe_name}', 'group': '#{group}', 'location': '#{location}', 'payload': re.compile('#{payload:(.*?)}', re.DOTALL), 'server': '#{server}'}¶
-
all_facts
()¶
-
bootstrap
(data_svc)¶
-
calculate_sleep
()¶
-
capabilities
(ability_set)¶
-
display
¶
-
display_name
¶
-
classmethod
from_dict
(dict_obj)¶ Creates an Agent object from parameters stored in a dict. AgentSchema is used to validate inputs.
-
gui_modification
(**kwargs)¶
-
heartbeat_modification
(**kwargs)¶
-
kill
()¶
-
privileged_to_run
(ability)¶
-
replace
(encoded_cmd, file_svc)¶
-
store
(ram)¶
-
task
(abilities, facts=())¶
-
unique
¶
-
class
app.objects.c_obfuscator module¶
app.objects.c_operation module¶
-
class
app.objects.c_operation.
Operation
(name, agents, adversary, id=None, jitter='2/8', source=None, planner=None, state='running', autonomous=True, atomic_enabled=False, obfuscator='plain-text', group=None, auto_close=True, visibility=50, access=None)¶ Bases:
app.utility.base_object.BaseObject
-
class
Reason
¶ Bases:
enum.Enum
An enumeration.
-
EXECUTOR
= 1¶
-
FACT_DEPENDENCY
= 2¶
-
OP_RUNNING
= 4¶
-
PLATFORM
= 0¶
-
PRIVILEGE
= 3¶
-
UNTRUSTED
= 5¶
-
-
active_agents
()¶
-
add_link
(link)¶
-
all_facts
()¶
-
all_relationships
()¶
-
apply
(link)¶
-
close
()¶
-
display
¶
-
get_active_agent_by_paw
(paw)¶
-
has_fact
(trait, value)¶
-
is_closeable
()¶
-
is_finished
()¶
-
link_status
()¶
-
report
(file_svc, output=False, redacted=False)¶
-
run
(services)¶
-
set_start_details
()¶
-
states
¶
-
store
(ram)¶
-
unique
¶
-
update_operation
(services)¶
-
wait_for_completion
()¶
-
wait_for_links_completion
(link_ids)¶ Wait for started links to be completed :param link_ids: :return: None
-
class