Hugging Face's logo

Spaces:
avid-ml
/
report-vuln-research
Running

App Files Community
report-vuln-research
File size: 2,411 Bytes 
3b232e3
 
 
 
 
 
 
 
 
d523c31
 
 
 
 
 
 
 
 
 
 
 
3b232e3
 
 
 
 
d523c31
 
 
 
 
 
 
 
 
 
 
 
3b232e3
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
 
import requests
import yaml

from avidtools.datamodels.report import Report
from avidtools.datamodels.components import *

ATLAS_HOME = 'https://raw.githubusercontent.com/mitre-atlas/atlas-data/main/data/case-studies/'

def import_case_study(case_study_id):
    """Import a case study from the MITRE ATLAS website and return an yaml object.
        
        Parameters
        ----------
        case_study_id : str
            Identifier of the case studies to be imported. Has the format AML.CSXXXX

        Returns
        --------
        case_study : dict
            Dictionary containing the imported case study.
    """
    req = requests.get(ATLAS_HOME+case_study_id+'.yaml')
    case_study = yaml.safe_load(req.content)
    return case_study
    
def convert_case_study(case_study):
    """Convert a case study in the ATLAS schema into an AVID report object.
        
        Parameters
        ----------
        case_study : dict
            Dictionary containing the imported case study.
        
        Returns
        --------
        report : Report
            an AVID report object containing information in the case study.
    """
    report = Report()
    
    report.affects = Affects(
        developer = [],
        deployer = [case_study['target']],
        artifacts = [Artifact(
            type = ArtifactTypeEnum.system,
            name = case_study['target']
        )]
    )    
    
    report.problemtype = Problemtype(
        classof = ClassEnum.atlas,
        type = TypeEnum.advisory,
        description = LangValue(
            lang = 'eng',
            value = case_study['name']
        )
    )
    
    report.references = [
        Reference(
            type = 'source',
            label = case_study['name'],
            url = 'https://atlas.mitre.org/studies/'+case_study['id']
        )
    ] + [
        Reference(
            type = 'source',
            label = ref['title'],
            url = ref['url']
        )
        for ref in case_study['references']
    ]
    
    report.description = LangValue(
        lang = 'eng',
        value = case_study['summary']
    )
    
    if 'reporter' in list(case_study.keys()):
        report.credit = [
            LangValue(
                lang = 'eng',
                value = case_study['reporter']
            )
        ]
        
    report.reported_date = case_study['incident-date']
    
    return report