Convert Microsoft Secure Score to OHDF #6007
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
meme112233
commented
Jul 18, 2024
|
Amndeep7
requested changes
Jul 18, 2024
charleshu-8
reviewed
Jul 19, 2024
libs/hdf-converters/test/mappers/forward/msft_secure_score_mapper.spec.ts
Outdated
Show resolved
Hide resolved
libs/hdf-converters/test/mappers/forward/msft_secure_score_mapper.spec.ts
Outdated
Show resolved
Hide resolved
libs/hdf-converters/test/mappers/forward/msft_secure_score_mapper.spec.ts
Outdated
Show resolved
Hide resolved
libs/hdf-converters/test/mappers/forward/msft_secure_score_mapper.spec.ts
Outdated
Show resolved
Hide resolved
libs/hdf-converters/test/mappers/forward/msft_secure_score_mapper.spec.ts
Outdated
Show resolved
Hide resolved
…tags, add passthrough partial wroking
meme112233
commented
Jul 19, 2024
This reverts commit 8a003c8.
Signed-off-by: Charles Hu <[email protected]>
charleshu-8
reviewed
Jul 22, 2024
…port in combined_input
Amndeep7
requested changes
Aug 6, 2024
Signed-off-by: Amndeep Singh Mann <[email protected]>
…unction don't all need to do the search Signed-off-by: Amndeep Singh Mann <[email protected]>
Amndeep7
approved these changes
Aug 7, 2024
Amndeep7
added
the
ready-to-merge
|
aaronlippold
pushed a commit
that referenced
this pull request
Nov 20, 2024
* draft of the microsoftSecureScore converter * bugfix: reading of secureScoreProfiles doc needed field for the array * minor update map/filter * add threats to tags from profile matching controlScore * add testing and update status check to use scoreInPercentage * update testing and fingerprinting * update fingerprinting for accept combined msftSecureScore document via UX * lint fix * msft-config-mapper-2.ts renamed without 2, cleanup commented out code * code cleanup. delete unused code * tslint allow commented out code in test suite * revert jest version bump * revert package.json to minimal requirements being added (only typing from MSFT) * rename mapper for consistency. msft_secure_score_mapper * update test name and remove linting inline disble block for commented out code * rename files for org per PR comments * update tags. fix array of array issue. add tiers,services,userImpact tags, add passthrough partial wroking * bugfix: replace missed exports due to rename to MsftSecureScoreMapper * bugfix/ typo * console debugging * Revert "console debugging" This reverts commit 8a003c8. * Passthrough fix; minor styling changes Signed-off-by: Charles Hu <[email protected]> * actual sample msft secureScore.json test doc updated to have value: [] * bugfix/populate code with control data and optionally profiles data * Update libs/hdf-converters/src/msft-secure-score-mapper.ts Co-authored-by: Charles Hu <[email protected]> * remove 'summary' field as no value available * Update libs/hdf-converters/src/msft-secure-score-mapper.ts Co-authored-by: Charles Hu <[email protected]> * improve names of parameters in arrow functions * Update libs/hdf-converters/src/msft-secure-score-mapper.ts Co-authored-by: Charles Hu <[email protected]> * remove unuded profile.version field as no value known from Microsoft * code cleanup. remove unused import * lint and update test expected results * update test data * Missed argument name change Signed-off-by: Charles Hu <[email protected]> * Linting Signed-off-by: Charles Hu <[email protected]> * implementationStatus -> controls.results.code_desc, remediation -> descriptions. data/label fix , leave controls.code blank * update test data for changes to mapper * Update msft-secure-score-mapper.ts * lint fix and update test data * relocate NIST to be in tags * sort exports per PR comment * add Msft_Secure_mapper to supported formats README.md * typo fixed * add run_time to mapper. required for downstream transformations that require start and end times. * update delimeter on control title from ... to \n * rename tag: group->category in dederence to msft naming * utilize lodash.uniq for tag.threats[] * add profiles[].remediationImpact as descriptions[label:rationale] * add secure score to FileReader.vue * update merge of records by id/cat * fix rawdata passthrough * update profiles.title include runID * handle output readability better * track secureScoreControlProfile.rank as control.tag.rank * remove run_time * cleanup inports * lint fix * conditional includsion of tags * secureScoreResults used to output full OHDF report per secureScore report in combined_input * bugfix/ exports from msft-secure-score-mapper fixed * update exports msftSecureMapper * export MsftSecureScoreMapper * add unmapped fields as tags or passthrough data * update MsftSecureScoreResult type hints * update MsftSecureScoreResult type hints * add withRaw parameter to msft secure score results * use utils.global constants for default NIST tags * remove duplicate tag 'rank' * convert forEach to for ... of * convert forEach to map(..) * delete extra copy of combined_msft.json * lint fix * private keyword isn't that useful Signed-off-by: Amndeep Singh Mann <[email protected]> * memoized the getProfiles function so that the repeated calls to the function don't all need to do the search Signed-off-by: Amndeep Singh Mann <[email protected]> --------- Signed-off-by: Charles Hu <[email protected]> Signed-off-by: Amndeep Singh Mann <[email protected]> Co-authored-by: Charles Hu <[email protected]> Co-authored-by: Charles Hu <[email protected]> Co-authored-by: Eugene Aronne <[email protected]> Co-authored-by: Amndeep Singh Mann <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR introduces the converter for Microsoft SecureScore to OHDF.
Mapping is performed using the output of two Microsoft Graph API endpoints:
The mapper takes the output of the two endpoints as a single json document. Each document is included as an object under the keys
profilesandsecureScore.This combined file can be built with
jqSample combined secureScore/profiles document for testing:
combined_msft.json
Mapper design decisions of interest
maxScorefield of any matching ProfileA matching PR for the SAF-CLI is expected early next week that will support: