온-프레미스 관리 콘솔의 사용자 지정 열에 대한 샘플 자동화 스크립트
이 문서에서는 온-프레미스 관리 콘솔 디바이스 인벤토리 페이지에 사용자 지정 열을 추가할 때 사용할 샘플 스크립트를 보여 줍니다.
자세한 내용은 디바이스 인벤토리 데이터에 추가 및 향상을 참조하세요.
사용자 지정 열에 대한 샘플 스크립트
다음 코드를 로컬 파일에 복사한 다음 필요에 따라 수정하여 샘플 열을 만듭니다.
#!/usr/local/bin/python
# coding: utf8
from cyberx.custom_columns.custom_column import CustomColumnCommand
from cyberx.custom_columns.utils import TimeoutError
import requests
VA_SCORE = '0'
score = 'Secure Device'
class Impl(CustomColumnCommand):
""" Here you can define global script-wise variables
For example:
name = ""
In order to access those variable you should prefix it with "self." (self.name). """
""" This method runs only once, before traversing all the assets in the inventory.
You should use it to fetch global script-wise data from an external resource and store it in memory
in order to prevent from the script to perform costly operation for each asset in the inventory. """
def pre_calculation(self):
self.log_info ("Start Pre-Calc")
AccessToken = '27b2b023d6924a9d8885c07eace30478'
self.VA_SCORE = requests.get(url = 'https://10.10.3.11/api/v1/reports/vulnerabilities/devices', headers = {'Authorization':AccessToken}, verify = False).json()
self.log_info ("End Pre-Calc")
pass
""" This method runs only once, after traversing all the assets in the inventory.
You should use it to clean resources created or opened in the pre_calculation method.
Such resources could be temporary files or db connections for example. """
def post_calculation(self):
pass
""" This method runs for each asset in the inventory.
Here you should compute the requested value and return it using the valid_result or error_result utility methods (explained below).
In order to access the asset data use the following list:
asset inventory column name - data key (data type)
=========================== - ====================
Appliances - 'xsenses' (array of strings)
Business Units - 'businessUnits' (array of strings)
Discovered - 'discovered' (date)
Firmware Version - 'firmwareVersion' (string)
IP Address - 'ipAddress' (string)
Is Authorized - 'isAuthorized' (boolean)
Is Known as Scanner - 'isScanner' (boolean)
Is Programming Asset - 'isProgramming' (boolean)
Last Activity - 'lastActivity' (date)
MAC Address - 'macAddress' (string)
Model - 'model' (string)
Module Address - 'moduleAddress' (string)
Name - 'name' (string)
Operating System - 'operatingSystem' (string)
Protocols - 'protocols' (array of strings)
Rack - 'rack' (string)
Region - 'region' (string), 'regionId' (integer)
Serial - 'serial' (string)
Site - 'site' (string), 'siteId' (integer)
Slot - 'slot' (string)
Type - 'type' (string)
Unhandled Alerts - 'unhandledAlerts' (integer)
Vendor - 'vendor' (string)
Zone - 'zone' (string), 'zoneId' (integer)
For example, in order to get the asset's IP address you should use asset['ipAddress'] and you will get it as a string. """
def calculate(self, asset):
self.log_info ("Start Calculate")
ipAddress = asset['ipAddress']
score = 'Secure Device'
for device in self.VA_SCORE:
if ipAddress in device['ipAddresses']:
score = device['securityScore']
self.log_info ("End Calculate")
return self.valid_result(score)
""" This method is for testing the script functionality.
You should use it in order to test that you are able to access an external resource or perform a complex computation.
A good practice will be to at least run the pre_calculation and post_calculation methods and validate they work as expected.
You should use the valid_result or error_result utility methods (explained below) when returning the test result. """
def test(self):
return self.valid_result(score)
""" This method return TCP ports to open for outgoing communication (if needed).
It should just return an array of port numbers, for example [234, 334, 3562]. """
def get_outgoing_tcp_ports(self):
return []
""" This method return TCP ports to open for incoming communication (if needed).
It should just return an array of port numbers, for example [234, 334, 3562]. """
def get_incoming_tcp_ports(self):
return []
""" This method return UDP ports to open for outgoing communication (if needed).
It should just return an array of port numbers, for example [234, 334, 3562]. """
def get_outgoing_udp_ports(self):
return []
""" This method return UDP ports to open for incoming communication (if needed).
It should just return an array of port numbers, for example [234, 334, 3562]. """
def get_incoming_udp_ports(self):
return []
""" Utility methods at your disposal:
self.valid_result(result):
This method receives the result and indicates that the computation went well.
self.error_result(error_message):
This method receives an error message and indicates that the computation did not went well.
self.log_info(message):
This method will log the message in the dedicated custom columns log file named '/var/cyberx/logs/custom-columns.log'
self.log_error(error_message):
This method will log the error message as an error in the dedicated custom columns log file named '/var/cyberx/logs/custom-columns.log' """
다음 단계
자세한 내용은 온-프레미스 관리 콘솔에서 OT 디바이스 인벤토리 관리를 참조하세요.