wazuh-notify/wazuh-notify-go/services/init.go

package services

import (
	"bufio"
	"encoding/json"
	"flag"
	"github.com/BurntSushi/toml"
	"github.com/joho/godotenv"
	"os"
	"path"
	"slices"
	"strings"
	"wazuh-notify/log"
	"wazuh-notify/types"
)

var inputParams types.Params
var configParams types.Params
var wazuhData types.WazuhMessage

func InitNotify() types.Params {
	BaseFilePath, _ := os.Executable()
	BaseDirPath := path.Dir(BaseFilePath)

	log.OpenLogFile(BaseDirPath)

	err := godotenv.Load(path.Join(BaseDirPath, "../../etc/.env"))
	if err != nil {
		log.Log("env failed to load")
		godotenv.Load(path.Join(BaseDirPath, ".env"))
	} else {
		log.Log("env loaded")
	}

	tomlFile, err := os.ReadFile(path.Join(BaseDirPath, "../../etc/wazuh-notify-config.toml"))
	if err != nil {
		log.Log("toml failed to load")
		tomlFile, err = os.ReadFile(path.Join(BaseDirPath, "wazuh-notify-config.toml"))
	}
	err = toml.Unmarshal(tomlFile, &configParams)
	if err != nil {
		print(err)
	}

	log.Log("yaml loaded")
	configParamString, _ := json.Marshal(configParams)
	log.Log(string(configParamString))

	flag.StringVar(&inputParams.Url, "url", "", "is the webhook URL of the Discord server. It is stored in .env.")
	flag.StringVar(&inputParams.General.Click, "click", configParams.General.Click, "is a link (URL) that can be followed by tapping/clicking inside the message. Default is https://google.com.")
	flag.IntVar(&inputParams.Priority, "priority", 0, "is the priority of the message, ranging from 1 (highest), to 5 (lowest). Default is 5.")
	flag.StringVar(&inputParams.General.Sender, "sender", configParams.General.Sender+" Golang", "is the sender of the message, either an app name or a person. The default is \"Security message\".")
	flag.StringVar(&inputParams.Tags, "tags", "", "is an arbitrary strings of tags (keywords), seperated by a \",\" (comma). Default is \"informational,testing,hard-coded\".")
	flag.StringVar(&inputParams.General.Targets, "targets", "", "is a list of targets to send notifications to. Default is \"discord\".")

	flag.Parse()

	log.Log("params loaded")
	inputParamString, _ := json.Marshal(inputParams)
	log.Log(string(inputParamString))

	inputParams.General.Targets = configParams.General.Targets
	inputParams.General.FullAlert = configParams.General.FullAlert
	inputParams.General.ExcludedAgents = configParams.General.ExcludedAgents
	inputParams.General.ExcludedRules = configParams.General.ExcludedRules
	inputParams.PriorityMap = configParams.PriorityMap
	inputParams.MarkdownEmphasis = configParams.MarkdownEmphasis

	wazuhInput()

	return inputParams
}

func wazuhInput() {
	reader := bufio.NewReader(os.Stdin)

	json.NewDecoder(reader).Decode(&wazuhData)

	inputParams.Tags += strings.Join(wazuhData.Parameters.Alert.Rule.Groups, ",")

	inputParams.WazuhMessage = wazuhData

	for i, _ := range configParams.PriorityMap {
		if slices.Contains(configParams.PriorityMap[i].ThreatMap, wazuhData.Parameters.Alert.Rule.Level) {
			if inputParams.WazuhMessage.Parameters.Alert.Rule.Firedtimes%inputParams.PriorityMap[i].NotifyThreshold != 0 {
				os.Exit(0)
			}
			inputParams.Color = inputParams.PriorityMap[i].Color
			if inputParams.WazuhMessage.Parameters.Alert.Rule.Firedtimes >= inputParams.PriorityMap[i].MentionThreshold {
				inputParams.Mention = "@here"
			}
			inputParams.Priority = 5 - i
		}
	}

	Filter()

	log.Log("Wazuh data loaded")
	inputParamString, _ := json.Marshal(inputParams)
	log.Log(string(inputParamString))
}
semi-final python go final 2024-05-09 15:27:45 +02:00			`package services`
go functional mirror added 2024-05-08 01:56:48 +02:00
			`import (`
semi-final python go final 2024-05-09 15:27:45 +02:00			`"bufio"`
			`"encoding/json"`
go functional mirror added 2024-05-08 01:56:48 +02:00			`"flag"`
yaml to toml 2024-05-27 13:01:39 +02:00			`"github.com/BurntSushi/toml"`
go functional mirror added 2024-05-08 01:56:48 +02:00			`"github.com/joho/godotenv"`
			`"os"`
file location fix 2024-05-09 17:52:16 +02:00			`"path"`
alot of ifs to loop 2024-05-13 16:03:00 +02:00			`"slices"`
priority + tags fix 2024-05-09 21:00:24 +02:00			`"strings"`
semi-final python go final 2024-05-09 15:27:45 +02:00			`"wazuh-notify/log"`
go functional mirror added 2024-05-08 01:56:48 +02:00			`"wazuh-notify/types"`
			`)`

semi-final python go final 2024-05-09 15:27:45 +02:00			`var inputParams types.Params`
go functional mirror added 2024-05-08 01:56:48 +02:00			`var configParams types.Params`
semi-final python go final 2024-05-09 15:27:45 +02:00			`var wazuhData types.WazuhMessage`
go functional mirror added 2024-05-08 01:56:48 +02:00
semi-final python go final 2024-05-09 15:27:45 +02:00			`func InitNotify() types.Params {`
fix path 2024-05-09 23:19:59 +02:00			`BaseFilePath, _ := os.Executable()`
			`BaseDirPath := path.Dir(BaseFilePath)`
import fix 2024-05-09 23:20:52 +02:00
fix path 2024-05-09 23:19:59 +02:00			`log.OpenLogFile(BaseDirPath)`
file location fix 2024-05-09 17:52:16 +02:00
fix path 2024-05-09 23:19:59 +02:00			`err := godotenv.Load(path.Join(BaseDirPath, "../../etc/.env"))`
go functional mirror added 2024-05-08 01:56:48 +02:00			`if err != nil {`
semi-final python go final 2024-05-09 15:27:45 +02:00			`log.Log("env failed to load")`
fix path 2024-05-09 23:19:59 +02:00			`godotenv.Load(path.Join(BaseDirPath, ".env"))`
semi-final python go final 2024-05-09 15:27:45 +02:00			`} else {`
			`log.Log("env loaded")`
go functional mirror added 2024-05-08 01:56:48 +02:00			`}`

yaml to toml 2024-05-27 13:01:39 +02:00			`tomlFile, err := os.ReadFile(path.Join(BaseDirPath, "../../etc/wazuh-notify-config.toml"))`
file location fix 2024-05-09 17:52:16 +02:00			`if err != nil {`
yaml to toml 2024-05-27 13:01:39 +02:00			`log.Log("toml failed to load")`
			`tomlFile, err = os.ReadFile(path.Join(BaseDirPath, "wazuh-notify-config.toml"))`
file location fix 2024-05-09 17:52:16 +02:00			`}`
yaml to toml 2024-05-27 13:01:39 +02:00			`err = toml.Unmarshal(tomlFile, &configParams)`
mentions added priority map refactor 2024-05-13 14:44:32 +02:00			`if err != nil {`
			`print(err)`
			`}`
yaml update 2024-05-08 15:09:35 +02:00
semi-final python go final 2024-05-09 15:27:45 +02:00			`log.Log("yaml loaded")`
log improve 2024-05-09 23:27:21 +02:00			`configParamString, _ := json.Marshal(configParams)`
			`log.Log(string(configParamString))`
semi-final python go final 2024-05-09 15:27:45 +02:00
			`flag.StringVar(&inputParams.Url, "url", "", "is the webhook URL of the Discord server. It is stored in .env.")`
yaml to toml 2024-05-27 13:01:39 +02:00			`flag.StringVar(&inputParams.General.Click, "click", configParams.General.Click, "is a link (URL) that can be followed by tapping/clicking inside the message. Default is https://google.com.")`
go functional mirror added 2024-05-08 01:56:48 +02:00			`flag.IntVar(&inputParams.Priority, "priority", 0, "is the priority of the message, ranging from 1 (highest), to 5 (lowest). Default is 5.")`
message builder refactor 2024-05-27 14:16:50 +02:00			`flag.StringVar(&inputParams.General.Sender, "sender", configParams.General.Sender+" Golang", "is the sender of the message, either an app name or a person. The default is \"Security message\".")`
go functional mirror added 2024-05-08 01:56:48 +02:00			`flag.StringVar(&inputParams.Tags, "tags", "", "is an arbitrary strings of tags (keywords), seperated by a \",\" (comma). Default is \"informational,testing,hard-coded\".")`
yaml to toml 2024-05-27 13:01:39 +02:00			`flag.StringVar(&inputParams.General.Targets, "targets", "", "is a list of targets to send notifications to. Default is \"discord\".")`
go functional mirror added 2024-05-08 01:56:48 +02:00
			`flag.Parse()`
semi-final python go final 2024-05-09 15:27:45 +02:00
file location fix 2024-05-09 17:52:16 +02:00			`log.Log("params loaded")`
log improve 2024-05-09 23:27:21 +02:00			`inputParamString, _ := json.Marshal(inputParams)`
			`log.Log(string(inputParamString))`

yaml to toml 2024-05-27 13:01:39 +02:00			`inputParams.General.Targets = configParams.General.Targets`
			`inputParams.General.FullAlert = configParams.General.FullAlert`
			`inputParams.General.ExcludedAgents = configParams.General.ExcludedAgents`
			`inputParams.General.ExcludedRules = configParams.General.ExcludedRules`
			`inputParams.PriorityMap = configParams.PriorityMap`
message builder refactor 2024-05-27 14:16:50 +02:00			`inputParams.MarkdownEmphasis = configParams.MarkdownEmphasis`
semi-final python go final 2024-05-09 15:27:45 +02:00
priority + tags fix 2024-05-09 21:00:24 +02:00			`wazuhInput()`

semi-final python go final 2024-05-09 15:27:45 +02:00			`return inputParams`
			`}`

			`func wazuhInput() {`
			`reader := bufio.NewReader(os.Stdin)`

			`json.NewDecoder(reader).Decode(&wazuhData)`

hmmmmmmmmmmmmmmmmmmmm 2024-05-17 18:42:16 +02:00			`inputParams.Tags += strings.Join(wazuhData.Parameters.Alert.Rule.Groups, ",")`

			`inputParams.WazuhMessage = wazuhData`

yaml to toml 2024-05-27 13:01:39 +02:00			`for i, _ := range configParams.PriorityMap {`
			`if slices.Contains(configParams.PriorityMap[i].ThreatMap, wazuhData.Parameters.Alert.Rule.Level) {`
notify threshold 2024-05-27 13:25:16 +02:00			`if inputParams.WazuhMessage.Parameters.Alert.Rule.Firedtimes%inputParams.PriorityMap[i].NotifyThreshold != 0 {`
			`os.Exit(0)`
			`}`
yaml to toml 2024-05-27 13:01:39 +02:00			`inputParams.Color = inputParams.PriorityMap[i].Color`
			`if inputParams.WazuhMessage.Parameters.Alert.Rule.Firedtimes >= inputParams.PriorityMap[i].MentionThreshold {`
alot of ifs to loop 2024-05-13 16:03:00 +02:00			`inputParams.Mention = "@here"`
			`}`
			`inputParams.Priority = 5 - i`
			`}`
			`}`
priority + tags fix 2024-05-09 21:00:24 +02:00
exclude rules added full message added 2024-05-10 14:23:54 +02:00			`Filter()`

log improve 2024-05-09 23:27:21 +02:00			`log.Log("Wazuh data loaded")`
			`inputParamString, _ := json.Marshal(inputParams)`
			`log.Log(string(inputParamString))`
go functional mirror added 2024-05-08 01:56:48 +02:00			`}`