mirror of https://github.com/MISP/MISP
Christophe Vandeplas
parent
b7dbc01e47
commit
27d5788f89
|
|
@ -10,7 +10,8 @@ class EventsController extends AppController {
|
|||
)
|
||||
);
|
||||
var $components = array('Security', 'Email');
|
||||
|
||||
var $helpers = array('Xml');
|
||||
|
||||
function beforeFilter() {
|
||||
$this->Auth->allow('xml');
|
||||
$this->Auth->allow('snort');
|
||||
|
|
@ -385,26 +386,40 @@ class EventsController extends AppController {
|
|||
|
||||
function xml($key) {
|
||||
// check if the key is valid -> search for users based on key
|
||||
$this->loadModel('Users');
|
||||
$this->loadModel('User');
|
||||
// no input sanitization necessary, it's done by model
|
||||
$user = $this->Users->findByAuthkey($key);
|
||||
$user = $this->User->findByAuthkey($key);
|
||||
if (empty($user))
|
||||
$this->cakeError('error403', array('message' => 'Incorrect authentication key'));
|
||||
// display the full xml
|
||||
$this->header('Content-Type: text/xml'); // set the content type
|
||||
$this->layout = 'xml/xml';
|
||||
$this->set('events', $this->Event->findAllByAlerted(1)); // find events that are finished
|
||||
$this->header('Content-Disposition: attachment; filename="cydefsig.xml"');
|
||||
|
||||
$conditions = array("Event.alerted" => 1);
|
||||
$fields = array('Event.id', 'Event.org', 'Event.date', 'Event.risk', 'Event.info');
|
||||
// $this->Event->Behaviors->attach('Containable');
|
||||
// $contain = array('Signature.id', 'Signature.type', 'Signature.value', 'Signature.to_snort');
|
||||
$params = array('conditions' => $conditions,
|
||||
'recursive' => 1,
|
||||
'fields' => $fields,
|
||||
// 'contain' => $contain
|
||||
);
|
||||
$result = $this->Event->find('all', $params);
|
||||
$this->set('events', $result);
|
||||
|
||||
}
|
||||
|
||||
function snort($key) {
|
||||
// check if the key is valid -> search for users based on key
|
||||
$this->loadModel('Users');
|
||||
$this->loadModel('Signatures');
|
||||
$this->loadModel('User');
|
||||
// no input sanitization necessary, it's done by model
|
||||
$user = $this->Users->findByAuthkey($key);
|
||||
$user = $this->User->findByAuthkey($key);
|
||||
if (empty($user))
|
||||
$this->cakeError('error403', array('message' => 'Incorrect authentication key'));
|
||||
// display the full snort rulebase
|
||||
$this->header('Content-Type: text/plain'); // set the content type
|
||||
$this->header('Content-Disposition: attachment; filename="cydefsig.rules"');
|
||||
$this->layout = 'xml/xml'; // LATER better layout than xml
|
||||
|
||||
$rules= array();
|
||||
|
|
|
|||
|
|
@ -1,17 +1,4 @@
|
|||
<?php echo "<?xml version=\"1.0\" encoding=\"UTF-8\" ?>\n"; ?>
|
||||
<?php echo $this->Xml->header(); ?>
|
||||
<CyDefSIG>
|
||||
<?php foreach ($events as $event): ?>
|
||||
<event>
|
||||
<id><?php echo $event['Event']['id']; ?></id>
|
||||
<org><?php echo Sanitize::html($event['Event']['org']); ?></org>
|
||||
<date><?php echo $event['Event']['date']; ?></date>
|
||||
<risk><?php echo $event['Event']['risk']; ?></risk>
|
||||
<info><?php echo Sanitize::html($event['Event']['info']); ?></info>
|
||||
<?php if (!empty($event['Signature'])):
|
||||
$i = 0;
|
||||
foreach ($event['Signature'] as $signature): ?>
|
||||
<sig type="<?php echo $signature['type'];?>"><?php echo Sanitize::html($signature['value']);?></sig>
|
||||
<?php endforeach; ?><?php endif; ?>
|
||||
</event>
|
||||
<?php endforeach; ?>
|
||||
<?php echo $this->Xml->serialize($events, array('format' => 'tags')); ?>
|
||||
</CyDefSIG>
|
||||
Loading…
Reference in New Issue