scanners/test-scan/parser/parser.js
// SPDX-FileCopyrightText: the secureCodeBox authors
//
// SPDX-License-Identifier: Apache-2.0
async function parse() {
if (process.env["PRODUCE_INVALID_FINDINGS"] === "true")
return getInvalidFindings()
else
return getValidFindings()
}
function getInvalidFindings(){
return [
{
//missing name and category to be a valid finding
description: "Found a host",
location: "hostname",
severity: "INFORMATIONAL",
osi_layer: "NETWORK",
attributes: {
ip_addresses: ["10.0.0.1"],
hostname: "hostname",
operating_system: "osNmap",
},
}
]
}
function getValidFindings(){
return [{
name: "Test read-write-hook service",
description: `Port is using protocol.`,
category: "Open Port",
location: `tcp://rw-hook-test:80`,
osi_layer: "NETWORK",
severity: "INFORMATIONAL",
attributes: {
port: 80,
state: "Open",
ip_addresses: ["10.0.0.1"],
mac_address: "hostInfo.mac",
protocol: "openPort.protocol",
hostname: "hostInfo.hostname",
method: "openPort.method",
operating_system: "hostInfo.osNmap",
service: "openPort.service",
serviceProduct: "openPort.serviceProduct",
serviceVersion: "openPort.serviceVersion",
scripts: "openPort.scriptOutputs",
},
},
{
name: `Host: hostname`,
category: "Host",
description: "Found a host",
location: "hostname",
severity: "INFORMATIONAL",
osi_layer: "NETWORK",
attributes: {
ip_addresses: ["10.0.0.1"],
hostname: "hostname",
operating_system: "osNmap",
},
},
];
}
module.exports.parse = parse;