* along with this package; if not, write to the Free Software * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, * MA 02110-1301 USA * * * On Debian GNU/Linux systems, the complete text of the GNU General * Public License can be found in `/usr/share/common-licenses/GPL-2'. * * Otherwise you can read it here: http://www.gnu.org/licenses/gpl-2.0.txt * */ require_once 'av_init.php'; //First we check we have session active Session::useractive(); //Then we check the permissions if (!Session::logcheck_bool('environment-menu', 'PolicyHosts')) { $response['error'] = TRUE; $response['msg'] = _('You do not have permissions to see this section'); echo json_encode($response); exit - 1; } define('ITEMS_PER_PAGE', 30); /* * * <------------------------ BEGINNING OF THE FUNCTIONS ------------------------> * */ /* * Function to get the list of networks * * @param $conn object DB Connection.
$d_c_from = $filters[1]->get_from(); $d_c_to = $filters[1]->get_to(); //Vulnerabilities $flag_vulns = $filters[5]->is_active(); $vulns_from = $flag_vulns ? $filters[5]->get_to() : 7; $vulns_to = $flag_vulns ? $filters[5]->get_from() : 1; //Asset Value $flag_av = $filters[6]->is_active(); $av_from = $flag_av ? $filters[6]->get_from() : 0; $av_to = $flag_av ? $filters[6]->get_to() : 5; // Getting Filter Legends $f_legend = Filter_list::get_filter_legends(); // Getting Permissions: $perm_add = Session::can_i_create_assets(); // Getting Permissions: $perms = array('admin' => Session::am_i_admin(), 'create' => $perm_add, 'delete' => $perm_add, 'vulnerabilities' => Session::logcheck_bool('environment-menu', 'EventsVulnerabilitiesScan'), 'alarms' => Session::logcheck_bool('analysis-menu', 'ControlPanelAlarms'), 'events' => Session::logcheck_bool('analysis-menu', 'EventsForensics'), 'availability' => Session::logcheck_bool('environment-menu', 'MonitorsAvailability'), 'deploy_agents' => Session::logcheck_bool('environment-menu', 'EventsHidsConfig'), 'nmap' => Session::logcheck_bool('environment-menu', 'ToolsScan')); switch ($notif) { case 'delete': $msg = _('Network has been permanently deleted.'); show_notif($msg, 'nf_success'); break; } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html> <head> <title><?php echo _('AlienVault ' . (Session::is_pro() ? 'USM' : 'OSSIM')); ?> </title> <meta http-equiv="Content-Type" content="text/html;charset=iso-8859-1"/>
* GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this package; if not, write to the Free Software * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, * MA 02110-1301 USA * * * On Debian GNU/Linux systems, the complete text of the GNU General * Public License can be found in `/usr/share/common-licenses/GPL-2'. * * Otherwise you can read it here: http://www.gnu.org/licenses/gpl-2.0.txt * */ require_once 'av_init.php'; if (!Session::logcheck_bool("configuration-menu", "PluginGroups")) { $response['error'] = true; $response['output'] = _('You do not have permissions to see this section'); echo json_encode($response); exit - 1; } function modify_plugingroup_plugin($conn, $data) { $plugin_group = $data['plugin_group']; $plugin_id = $data['plugin_id']; $sids_str = $data['plugin_sids']; ossim_valid($plugin_id, OSS_DIGIT, 'illegal:' . _("Plugin ID")); ossim_valid($plugin_group, OSS_HEX, 'illegal:' . _("Plugin GroupID")); if (ossim_error()) { $info_error = "Error: " . ossim_get_error(); ossim_clean_error();
* along with this package; if not, write to the Free Software * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, * MA 02110-1301 USA * * * On Debian GNU/Linux systems, the complete text of the GNU General * Public License can be found in `/usr/share/common-licenses/GPL-2'. * * Otherwise you can read it here: http://www.gnu.org/licenses/gpl-2.0.txt * */ require_once 'av_init.php'; //First we check we have session active Session::useractive(); //Then we check the permissions if (!Session::logcheck_bool("dashboard-menu", "ControlPanelExecutive")) { $response['error'] = TRUE; $response['msg'] = _('You do not have permissions to see this section'); echo json_encode($response); exit - 1; } require_once '../sections/widgets/widget_common.php'; function get_tabs_data_aux() { $user = Session::get_session_user(); $edit = $_SESSION['_db_show_edit'] != '' ? $_SESSION['_db_show_edit'] : FALSE; return array($user, $edit); } /****************************************************************************************************************/ /* */ /************************************************ TABS FUNTIONS *************************************************/
* along with this package; if not, write to the Free Software * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, * MA 02110-1301 USA * * * On Debian GNU/Linux systems, the complete text of the GNU General * Public License can be found in `/usr/share/common-licenses/GPL-2'. * * Otherwise you can read it here: http://www.gnu.org/licenses/gpl-2.0.txt * */ require_once 'av_init.php'; //First we check we have an active session Session::useractive(); //Then we check the permissions if (!Session::logcheck_bool("analysis-menu", "ControlPanelAlarms")) { $response['error'] = TRUE; $response['msg'] = _('You do not have permissions to see this section'); echo json_encode($response); exit - 1; } /* * * <------------------------ BEGINNING OF THE FUNCTIONS ------------------------> * */ /* * This function close a single alarm. * * @param $conn object DB Connection * @param $data array Backlog ID of the alarm to be closed
* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, * MA 02110-1301 USA * * * On Debian GNU/Linux systems, the complete text of the GNU General * Public License can be found in `/usr/share/common-licenses/GPL-2'. * * Otherwise you can read it here: http://www.gnu.org/licenses/gpl-2.0.txt * */ require_once 'av_init.php'; //First we check we have session active Session::useractive(); //Then we check the permissions $cond1 = Session::logcheck_bool("dashboard-menu", "ControlPanelExecutive"); $cond1 = $cond1 && Session::logcheck_bool("dashboard-menu", "ControlPanelExecutiveEdit"); $cond2 = !Session::am_i_admin(); $cond3 = Session::is_pro() && !Acl::am_i_proadmin(); if (!$cond1 && $cond2 && $cond3) { $response['error'] = TRUE; $response['msg'] = _('You do not have permissions to see this section'); echo json_encode($response); exit - 1; } require_once AV_MAIN_ROOT_PATH . '/dashboard/sections/widgets/widget_common.php'; /****************************************************************************************************************/ /* */ /************************************************ TABS FUNTIONS *************************************************/ /* */ /****************************************************************************************************************/ function clone_tab($data)
* along with this package; if not, write to the Free Software * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, * MA 02110-1301 USA * * * On Debian GNU/Linux systems, the complete text of the GNU General * Public License can be found in `/usr/share/common-licenses/GPL-2'. * * Otherwise you can read it here: http://www.gnu.org/licenses/gpl-2.0.txt * */ set_time_limit(300); require_once 'av_init.php'; Session::logcheck("dashboard-menu", "IPReputation"); Reputation::flush_raputation_from_session(); $perms = array('admin' => Session::am_i_admin(), 'alarms' => Session::logcheck_bool('analysis-menu', 'ControlPanelAlarms'), 'events' => Session::logcheck_bool('analysis-menu', 'EventsForensics'), 'pro' => Session::is_pro()); ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html lang="en"> <head> <title><?php echo _('Open Threat Exchange Dashboard'); ?> </title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/> <meta http-equiv="Pragma" content="no-cache"/> <?php //CSS Files $_files = array(array('src' => 'jquery-ui.css', 'def_path' => TRUE), array('src' => '/js/jqplot/jquery.jqplot.css', 'def_path' => FALSE), array('src' => 'tipTip.css', 'def_path' => TRUE), array('src' => 'av_common.css', 'def_path' => TRUE)); Util::print_include_files($_files, 'css');
$edit = FALSE; } try { $delete = $gobj->can_delete_group($conn); } catch (Exception $err) { $delete = FALSE; } $p_plugin = Session::am_i_admin(); $deploy_agent = FALSE; } else { $error = _('Invalid Asset ID'); Av_exception::throw_error(Av_exception::USER_ERROR, $error); } } } $perms = array('admin' => Session::am_i_admin(), 'delete' => $delete, 'edit' => $edit, 'vulnerabilities' => Session::logcheck_bool('environment-menu', 'EventsVulnerabilitiesScan'), 'alarms' => Session::logcheck_bool('analysis-menu', 'ControlPanelAlarms'), 'events' => Session::logcheck_bool('analysis-menu', 'EventsForensics'), 'netflows' => Session::logcheck_bool('environment-menu', 'MonitorsNetflows'), 'nmap' => Session::logcheck_bool('environment-menu', 'ToolsScan'), 'availability' => Session::logcheck_bool('environment-menu', 'MonitorsAvailability'), 'hids' => Session::logcheck_bool('environment-menu', 'EventsHids') || Session::logcheck_bool('environment-menu', 'EventsHidsConfig'), 'deploy_agent' => $deploy_agent, 'plugins' => $p_plugin); Filter_list::save_items($conn, $asset_type, $assets = array($id)); $db->close(); ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html> <head> <title><?php echo _('Asset Details'); ?> </title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/> <meta http-equiv="Pragma" content="no-cache"/> <?php
* GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this package; if not, write to the Free Software * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, * MA 02110-1301 USA * * * On Debian GNU/Linux systems, the complete text of the GNU General * Public License can be found in `/usr/share/common-licenses/GPL-2'. * * Otherwise you can read it here: http://www.gnu.org/licenses/gpl-2.0.txt * */ require_once 'av_init.php'; if (!Session::logcheck_bool('configuration-menu', 'PolicyServers') || !Session::is_pro()) { $return['error'] = TRUE; $return['msg'] = _('You do not have permission to achieve this action'); } $mssp = intval($conf->get_conf('alienvault_mssp')); if (!$mssp) { $return['error'] = TRUE; $return['msg'] = _("Only MSSP configuration is allowed to achieve this action"); } function change_ctx_engine($conn, $data) { $old_engine = $data['old_engine']; $new_engine = $data['new_engine']; $ctx = $data['ctx']; ossim_valid($old_engine, OSS_HEX, 'illegal:' . _('Prev Engine ID')); ossim_valid($new_engine, OSS_HEX, 'illegal:' . _('New Engine ID'));