home *** CD-ROM | disk | FTP | other *** search
/ HPAVC / HPAVC CD-ROM.iso / pc / SATAN11.ZIP / PERL / SEVERITI.PL < prev    next >
Encoding:
Text File  |  1995-04-11  |  2.8 KB  |  111 lines
  1. #
  2. # update_severities - classify vulnerabilities.
  3. #
  4. # type is taken from the $service_info field; level is taken from the
  5. # $severity field.
  6. #
  7. # Output to: 
  8. #
  9. # $severity_type_host_info{type}{host}: all SATAN records on that topic.
  10. #
  11. # $severity_type_count{type}: number of hosts with this severity.
  12. #
  13. # $severity_host_type_info{host}{type}: all SATAN records on that topic.
  14. #
  15. # $severity_host_count{host}: number of vulnerabilities per host.
  16. #
  17. # $severity_levels{severity}: host names per severity level.
  18. #
  19. # $severity_flag: reset whenever the tables are updated. To recalculate,
  20. # invoke make_severity_info().
  21. #
  22. # Standalone usage: perl severities.pl [satan_record_files...]
  24.  
  25. sub update_severities {
  26.     if ($trusted =~ /\bANY\b/) {
  27.     $type = "other vulnerabilities" if ($type = $service_output) eq "";
  28.     if (index($severity_host_type_info{$target}{$type}, $_) < $[) {
  29.         $severity_host_type_info{$target}{$type} .= $_ . "\n";
  30.         $severity_type_host_info{$type}{$target} .= $_ . "\n";
  31.         $severity_levels{$severity}{$target} .= $_ . "\n";
  32.         $severity_host_count{$target}++;
  33.         $severity_flag = 0;
  34.     }
  35.     }
  36. }
  37.  
  38. #
  39. # Generate severities-dependent statistics.
  40. #
  41. sub make_severity_info {
  42.     local($severity, $host, %junk);
  43.  
  44.     if ($severity_flag > 0) {
  45.     return;
  46.     }
  47.     $severity_flag = time();
  48.  
  49.     print "Rebuild severity type statistics...\n" if $debug;
  50.  
  51.     for $severity (keys %severity_type_host_info) {
  52.     %junk = %{$severity_type_host_info{$severity}};
  53.     $severity_type_count{$severity} = sizeof(*junk);
  54.     }
  55. }
  56.  
  57. #
  58. # Reset all severity information
  59. #
  60. sub clear_severity_info {
  61.     %severity_host_type_info = ();
  62.     %severity_type_host_info = ();
  63.     %severity_levels = ();
  64.     %severity_host_count = ();
  65.     %severity_type_count = ();
  66.     $severity_flag = 0;
  67. }
  68.  
  69. #
  70. # Some scaffolding for stand-alone operation
  71. #
  72. if ($running_under_satan == 0) {
  73.     $running_under_satan = -1;
  74.     $debug = 1;
  75.     require 'perl/misc.pl';
  76.     warn "severities.pl running in stand-alone mode";
  77.  
  78.     #
  79.     # Sort severity information and do some counting.
  80.     #
  81.     while (<>) {
  82.     chop;
  83.     if (&satan_split($_) == 0) {
  84.         &update_severities($_);
  85.     }
  86.     }
  87.     &make_severity_info();
  88.  
  89.     print "Hosts grouped by severity\n";
  90.     for $severity (sort keys %severity_type_host_info) {
  91.        print "$severity ($severity_type_count{$severity})\n";
  92.     for (sort keys %{$severity_type_host_info{$severity}}) {
  93.         print "\t$_\n";
  94.     }
  95.     }
  96.  
  97.     print "Severities grouped by host\n";
  98.     for $host (sort keys %severity_host_type_info) {
  99.     print "$host\n";
  100.     for $type (sort keys %{$severity_host_type_info{$host}}) {
  101.         for (split(/\n/, $severity_host_type_info{$host}{$type})) {
  102.         print "\t$_\n";
  103.         }
  104.     }
  105.     }
  106. }
  107.  
  108. # UPC Code:
  109.  
  110. 1;
  111.