Update app.py

app.py

@@ -1518,16 +1518,6 @@ class AttackGraphEngine:
         return fig
 
 
-#═══════════════════════════════════════════════════════════════════════════════
-    #PRIVATE RED TEAM WEB RECONNAISSANCE FRAMEWORK v3.0 - PART 2
-    #─────────────────────────────────────────────────────────────────────────
-    #Bölümler: 8-10 (Reporting Engine, Main Orchestrator, Gradio Interface)
-#═══════════════════════════════════════════════════════════════════════════════
-"""
-
-# Part 1'deki importları ve sınıfları tekrar etmek için:
-# Bu dosyayı çalıştırmadan önce Part 1'i import edin veya birleştirin
-
 # ════════════════════════════════════════════════════════════════════════════
 # SECTION 8: COMPREHENSIVE REPORTING ENGINE
 # ════════════════════════════════════════════════════════════════════════════
@@ -1556,14 +1546,12 @@ Target: {target}
 Assessment Date: {datetime.now().strftime('%Y-%m-%d %H:%M:%S')}
 Assessed By: Red Team Framework v3.0 (Private Space)
 Classification: CONFIDENTIAL
-Assessment Type: Comprehensive Web Application Security Assessment
 
 RISK OVERVIEW
 ─────────────────────────────────────────────────────────────────────────
 Critical Findings: {len([t for t in vulns if t.cvss_score >= 9.0])}
 High Findings: {len([t for t in vulns if 7.0 <= t.cvss_score < 9.0])}
 Medium Findings: {len([t for t in vulns if 4.0 <= t.cvss_score < 7.0])}
-Low Findings: {len([t for t in vulns if t.cvss_score < 4.0])}
 
 Overall Risk Level: {"🔴 CRITICAL" if len([t for t in vulns if t.cvss_score >= 9.0]) > 0 else "🟠 HIGH" if len([t for t in vulns if t.cvss_score >= 7.0]) > 0 else "🟡 MEDIUM"}
 
@@ -1581,274 +1569,21 @@ TECHNOLOGIES DETECTED
 Web Server: {recon_data.get('technologies', {}).get('web_server', 'Unknown')}
 CMS: {', '.join(recon_data.get('technologies', {}).get('cms', ['None detected']))}
 Frameworks: {', '.join(recon_data.get('technologies', {}).get('frameworks', ['None detected']))}
-JavaScript Libraries: {', '.join(recon_data.get('technologies', {}).get('javascript', ['None detected']))}
-CDN: {', '.join(recon_data.get('technologies', {}).get('cdn', ['None detected']))}
 
 VULNERABILITY DETAILS
 ─────────────────────────────────────────────────────────────────────────
 """
-        
         for i, vuln in enumerate(vulns, 1):
             report += f"""
 [{i}] {vuln.name}
     Severity: {vuln.severity}
     CVSS Score: {vuln.cvss_score}
-    CVSS Vector: {vuln.cvss_vector}
-    CWE ID: {vuln.cwe_id or 'N/A'}
-    OWASP Category: {vuln.owasp_category or 'N/A'}
     Location: {vuln.location}
-    
-    Description:
-    {vuln.description}
-    
-    Evidence:
-    {vuln.evidence}
-    
-    Remediation:
-    {vuln.remediation}
-    
-    MITRE ATT&CK Techniques: {', '.join(vuln.mitre_techniques)}
-    
+    Description: {vuln.description}
+    Remediation: {vuln.remediation}
     {'─' * 70}
-"""
-        
-        report += f"""
-
-THREAT VECTORS
-─────────────────────────────────────────────────────────────────────────
-"""
-        
-        for i, vector in enumerate(threat_vectors[:10], 1):
-            report += f"""
-{i}. [{vector.category.upper()}]
-   Location: {vector.location}
-   Risk Score: {vector.risk_score}/10
-   CVSS Score: {vector.cvss_score if vector.cvss_score else 'N/A'}
-   CWE ID: {vector.cwe_id or 'N/A'}
-   MITRE ATT&CK: {', '.join(vector.techniques)}
-   Description: {vector.description}
-   Evidence: {vector.evidence or 'N/A'}
-"""
-        
-        report += f"""
-
-STRIDE THREAT MODEL
-─────────────────────────────────────────────────────────────────────────
-"""
-        
-        for threat_type, threat_data in stride_report.items():
-            report += f"""
-{threat_type}:
-  Risk Level: {threat_data.get('risk_level', 'LOW')}
-  Description: {threat_data['description']}
-  Potential Impacts:
-"""
-            for impact in threat_data.get('potential_impacts', []):
-                report += f"    • {impact}\\n"
-            
-            report += f"  Affected Components:\\n"
-            for component in threat_data.get('affected_components', []):
-                report += f"    • {component}\\n"
-            
-            report += f"  Mitigations: {', '.join(threat_data['mitigations'])}\\n"
-        
-        report += f"""
-
-ATTACK PATH ANALYSIS
-─────────────────────────────────────────────────────────────────────────
-"""
-        
-        for i, path in enumerate(attack_paths, 1):
-            report += f"""
-Attack Path {i}: {path.objective}
-  Entry Point: {path.entry_point}
-  Complexity: {path.complexity}/1.0
-  Risk Level: {path.risk_level}
-  MITRE ATT&CK Techniques: {', '.join(path.mitre_techniques)}
-  Steps:
-"""
-            for step in path.intermediate_steps:
-                report += f"    → {step}\\n"
-        
-        report += """
-
-RECOMMENDATIONS
-─────────────────────────────────────────────────────────────────────────
-1. IMMEDIATE (Critical - Fix within 24 hours):
-   • Patch all critical CVEs (CVSS 9.0+)
-   • Disable exposed sensitive files (.env, .git)
-   • Enable WAF rules for SQL injection protection
-   • Implement rate limiting on authentication endpoints
-   • Enable security headers (CSP, HSTS, X-Frame-Options)
-
-2. SHORT-TERM (High - Fix within 1 week):
-   • Update outdated technologies and frameworks
-   • Implement input validation on all forms
-   • Enable HTTPS enforcement (HSTS)
-   • Setup security monitoring and alerting
-   • Conduct code review for injection vulnerabilities
-
-3. MEDIUM-TERM (Medium - Fix within 1 month):
-   • Implement Web Application Firewall (WAF)
-   • Conduct penetration testing
-   • Implement secure session management
-   • Setup vulnerability disclosure program
-   • Regular security training for developers
-
-4. LONG-TERM (Ongoing):
-   • Implement Secure SDLC
-   • Regular automated security scanning
-   • Bug bounty program
-   • Incident response planning
-   • Compliance auditing (OWASP ASVS)
-
-COMPLIANCE MAPPING
-─────────────────────────────────────────────────────────────────────────
-OWASP Top 10 2021:
-"""
-        
-        owasp_categories = defaultdict(list)
-        for vuln in vulns:
-            if vuln.owasp_category:
-                owasp_categories[vuln.owasp_category].append(vuln.name)
-        
-        for category, vuln_list in owasp_categories.items():
-            report += f"  {category}: {len(vuln_list)} findings\\n"
-            for v in vuln_list[:3]:  # Limit to 3 per category
-                report += f"    • {v}\\n"
-        
-        report += f"""
-
-MITRE ATT&CK MAPPING
-─────────────────────────────────────────────────────────────────────────
-"""
-        
-        mitre_techniques = set()
-        for vuln in vulns:
-            mitre_techniques.update(vuln.mitre_techniques)
-        for path in attack_paths:
-            mitre_techniques.update(path.mitre_techniques)
-        
-        for tech in sorted(mitre_techniques):
-            report += f"  • {tech}"
-            # Add technique name if available
-            for category, techniques in MITRE_TECHNIQUES.items():
-                if tech in techniques:
-                    report += f" - {techniques[tech]}"
-                    break
-            report += "\\n"
-        
-        report += f"""
-
-METHODOLOGY
-─────────────────────────────────────────────────────────────────────────
-1. Passive OSINT (Non-intrusive):
-   • DNS record enumeration (A, AAAA, MX, NS, TXT)
-   • SSL/TLS certificate analysis
-   • Certificate Transparency log queries (crt.sh)
-   • GitHub reconnaissance
-   • Wayback Machine historical data
-   • Shodan/Censys intelligence (if API available)
-
-2. Active Reconnaissance (Low impact):
-   • HTTP header analysis
-   • Technology fingerprinting
-   • Endpoint discovery
-   • Form analysis
-   • JavaScript endpoint extraction
-   • Security headers assessment
-
-3. Vulnerability Analysis:
-   • Pattern-based detection
-   • Configuration weakness identification
-   • Information disclosure checks
-   • Injection vulnerability probes (safe)
-
-4. Threat Modeling:
-   • STRIDE analysis
-   • Attack path generation
-   • MITRE ATT&CK mapping
-   • Risk scoring (CVSS v3.1)
-
-5. Reporting:
-   • Executive summary
-   • Technical findings
-   • Remediation guidance
-   • Compliance mapping
-
-TOOLS & TECHNIQUES
-─────────────────────────────────────────────────────────────────────────
-• Framework: Red Team Recon Framework v3.0
-• Standards: OWASP Testing Guide, PTES, CVSS v3.1
-• Threat Model: STRIDE, MITRE ATT&CK v12
-• Visualization: NetworkX, Plotly
-• OSINT: DNS, SSL, crt.sh, GitHub, Wayback
-
-LIMITATIONS
-─────────────────────────────────────────────────────────────────────────
-• Assessment limited to authorized scope
-• No active exploitation performed
-• Rate limiting may affect scan completeness
-• Some checks require manual verification
-• API keys needed for full OSINT features
-
-═══════════════════════════════════════════════════════════════════════════
-Report Generated: {datetime.now().isoformat()}
-Classification: CONFIDENTIAL - DO NOT DISTRIBUTE
-Private Space Assessment - Authorized Testing Only
-═══════════════════════════════════════════════════════════════════════════
 """
         return report
-    
-    @staticmethod
-    def generate_executive_summary(target: str, recon_data: Dict, vulnerabilities: List[Vulnerability]) -> str:
-        """Generate executive summary for C-level"""
-        
-        critical = len([v for v in vulnerabilities if v.cvss_score >= 9.0])
-        high = len([v for v in vulnerabilities if 7.0 <= v.cvss_score < 9.0])
-        medium = len([v for v in vulnerabilities if 4.0 <= v.cvss_score < 7.0])
-        
-        summary = f"""
-EXECUTIVE SUMMARY
-═══════════════════════════════════════════════════════════════════════════
-
-Target Organization: {target}
-Assessment Period: {datetime.now().strftime('%Y-%m-%d')}
-Overall Risk Rating: {"CRITICAL" if critical > 0 else "HIGH" if high > 0 else "MEDIUM"}
-
-KEY FINDINGS:
-• {critical} Critical vulnerabilities requiring immediate attention
-• {high} High-risk vulnerabilities to address within 1 week
-• {medium} Medium-risk vulnerabilities for next sprint
-
-BUSINESS IMPACT:
-"""
-        
-        if critical > 0:
-            summary += "• CRITICAL: Immediate risk of data breach or system compromise\\n"
-        if high > 0:
-            summary += "• HIGH: Significant risk to business operations and data integrity\\n"
-        
-        summary += f"""
-IMMEDIATE ACTIONS REQUIRED:
-1. Convene security incident response team
-2. Prioritize critical vulnerability remediation
-3. Review and enhance monitoring capabilities
-4. Consider temporary WAF rules for protection
-
-ESTIMATED REMEDIATION EFFORT:
-• Critical issues: 1-3 days
-• High issues: 1-2 weeks
-• Full remediation: 1-3 months
-
-RECOMMENDED INVESTMENT:
-• Immediate security patches: $5K-$15K
-• Security infrastructure improvements: $25K-$75K
-• Ongoing security program: $100K-$300K annually
-
-═══════════════════════════════════════════════════════════════════════════
-"""
-        return summary
 
 # ════════════════════════════════════════════════════════════════════════════
 # SECTION 9: MAIN ORCHESTRATOR
@@ -1858,6 +1593,7 @@ class RedTeamReconFramework:
     """Master orchestrator"""
     
     def __init__(self):
+        # Not: Bu sınıfların Part 1'de tanımlandığı varsayılmaktadır.
         self.stealth_config = StealthConfig(ThreatLevel.MEDIUM)
         self.passive_engine = PassiveOSINTEngine(self.stealth_config)
         self.active_engine = ActiveReconEngine(self.stealth_config)
@@ -1880,8 +1616,6 @@ class RedTeamReconFramework:
             "vulnerabilities": [],
             "threat_vectors": [],
             "attack_paths": [],
-            "stride_analysis": {},
-            "graph_data": {},
             "report": ""
         }
         
@@ -1891,27 +1625,6 @@ class RedTeamReconFramework:
             passive_data = await self.passive_engine.gather_dns_intel(target_url)
             results["subdomains"] = passive_data.get("subdomains", [])
             
-            ssl_data = await self.passive_engine.gather_ssl_cert_intel(target_url)
-            if ssl_data.get("subjectAltNames"):
-                results["subdomains"].extend([
-                    {"subdomain": san, "ip": "from_cert"}
-                    for san in ssl_data["subjectAltNames"]
-                ])
-            
-            # Certificate Transparency logs
-            ct_subdomains = await self.passive_engine.crt_sh_lookup(target_url)
-            for sub in ct_subdomains:
-                if sub not in [s.get("subdomain") for s in results["subdomains"]]:
-                    results["subdomains"].append({"subdomain": sub, "ip": "from_ct"})
-            
-            # GitHub recon
-            github_data = await self.passive_engine.github_reconnaissance(target_url.replace(".com", ""))
-            results["github_intel"] = github_data
-            
-            # Wayback Machine
-            wayback_urls = await self.passive_engine.wayback_machine_lookup(target_url)
-            results["historical_urls"] = wayback_urls
-            
             # PHASE 2: Active Reconnaissance
             print("[2/5] Active reconnaissance...")
             technologies = await self.active_engine.fingerprint_technologies(target_url)
@@ -1943,7 +1656,6 @@ class RedTeamReconFramework:
             results["attack_paths"] = [asdict(ap) for ap in attack_paths]
             
             stride_analysis = self.threat_model.generate_stride_report(results)
-            results["stride_analysis"] = stride_analysis
             
             # PHASE 5: Attack Graph
             print("[5/5] Generating attack graph...")
@@ -1969,19 +1681,19 @@ class RedTeamReconFramework:
         
         return results
 
-════════════════════════════════════════════════════════════════════════════
+# ════════════════════════════════════════════════════════════════════════════
 # SECTION 10: GRADIO INTERFACE
 # ════════════════════════════════════════════════════════════════════════════
 
 # Initialize framework
 framework = RedTeamReconFramework()
 
-def run_assessment(target_url: str, threat_level: str, progress=gr.Progress(track_tqdm=True)):
+async def run_assessment(target_url: str, threat_level: str, progress=gr.Progress(track_tqdm=True)):
     """Gradio wrapper function"""
     
     try:
         if not target_url:
-            return "Error: Please enter a target domain", "{}", go.Figure(), "No report generated"
+            return "Error: Please enter a target domain", None, "No report generated"
         
         # Clean target URL
         target_url = target_url.replace("https://", "").replace("http://", "").strip("/")
@@ -1997,15 +1709,9 @@ def run_assessment(target_url: str, threat_level: str, progress=gr.Progress(trac
         framework.stealth_config = StealthConfig(threat_map.get(threat_level, ThreatLevel.MEDIUM))
         
         progress(0.2, desc="🕵️ Starting passive OSINT...")
-        progress(0.4, desc="📡 Running active reconnaissance...")
-        progress(0.6, desc="🎯 Analyzing threats...")
-        progress(0.8, desc="📊 Generating attack graph...")
         
-        # Run assessment
-        loop = asyncio.new_event_loop()
-        asyncio.set_event_loop(loop)
-        results = loop.run_until_complete(framework.execute_assessment(target_url))
-        loop.close()
+        # Run assessment (Direct await, removed manual loop to fix RuntimeError)
+        results = await framework.execute_assessment(target_url)
         
         progress(0.95, desc="📝 Finalizing report...")
         
@@ -2047,187 +1753,42 @@ def run_assessment(target_url: str, threat_level: str, progress=gr.Progress(trac
 - **Web Server:** {results.get('technologies', {}).get('web_server', 'Unknown')}
 - **CMS:** {', '.join(results.get('technologies', {}).get('cms', ['None']))}
 - **Frameworks:** {', '.join(results.get('technologies', {}).get('frameworks', ['None']))}
-- **Security Headers Score:** {results.get('security_headers', {}).get('score', 0):.1f}%
-
-### Top Recommendations
-1. {"Patch critical vulnerabilities immediately" if critical > 0 else "Review security headers"}
-2. {"Update outdated CMS/plugins" if 'WordPress' in str(results.get('technologies', {}).get('cms', [])) else "Enable security headers"}
-3. Review exposed endpoints for sensitive information
 """
-        
-        return (
-            summary,
-            json.dumps(results, indent=2, default=str),
-            fig,
-            results.get("report", "No report generated")
-        )
-    
+        return summary, fig, results.get("report", "Report generation failed.")
+
     except Exception as e:
-        error_msg = f"Error: {str(e)}"
         import traceback
-        error_detail = traceback.format_exc()
-        return error_msg, f"{{\\n  \\"error\\": \\"{str(e)}\\",\\n  \\"traceback\\": \\"{error_detail}\\"\\n}}", go.Figure(), error_msg
-
-# ════════════════════════════════════════════════════════════════════════════
-# GRADIO UI DEFINITION
-# ════════════════════════════════════════════════════════════════════════════
+        return f"System Error: {str(e)}\n{traceback.format_exc()}", None, str(e)
 
-def create_interface():
-    """Create Gradio interface"""
+# UI Definition
+with gr.Blocks(title="Red Team Framework v3.0", theme=gr.themes.Base()) as app:
+    gr.Markdown("# 🛡️ Private Red Team Reconnaissance Framework v3.0")
     
-    with gr.Blocks(
-        theme=gr.themes.Soft(primary_hue="red"),
-        title="Red Team Recon Framework v3.0",
-        css="""
-        .main-header { text-align: center; color: #ff0000; }
-        .disclaimer { background-color: #ffeeee; padding: 10px; border-left: 5px solid #ff0000; }
-        """
-    ) as demo:
-        
-        gr.Markdown("""
-        # 🛡️ RED TEAM ADVANCED WEB RECONNAISSANCE FRAMEWORK v3.0
-        ### Professional Security Assessment Tool - Private Space Edition
-        
-        <div class="disclaimer">
-        ⚠️ <strong>DISCLAIMER:</strong> This tool is intended for authorized security testing only. 
-        Unauthorized access to computer systems is illegal. Use only on systems you own or have 
-        explicit written permission to test.
-        </div>
-        
-        **Features:**
-        - 🕵️ Passive OSINT (DNS, SSL, GitHub, crt.sh, Wayback)
-        - 📡 Active Reconnaissance (Fingerprinting, endpoint discovery)
-        - 🎯 Vulnerability Analysis (Pattern-based detection)
-        - 🧠 Threat Modeling (STRIDE + MITRE ATT&CK)
-        - 📊 Advanced Attack Surface Visualization
-        - 📝 Professional Reporting (CVSS v3.1, OWASP, Compliance)
-        """)
-        
-        with gr.Row():
-            with gr.Column(scale=1):
-                target_input = gr.Textbox(
-                    label="Target Domain",
-                    placeholder="example.com",
-                    info="Enter target domain (without https://)"
-                )
-                
-                threat_level = gr.Radio(
-                    choices=["Low (Stealthy)", "Medium (Balanced)", "High (Aggressive)"],
-                    value="Medium (Balanced)",
-                    label="Threat Level / Scan Intensity"
-                )
-                
-                scan_button = gr.Button("🚀 START ASSESSMENT", variant="primary", size="lg")
-                
-                gr.Markdown("""
-                ### About Threat Levels
-                - **Low**: Slow, stealthy scanning with delays (good for evasion)
-                - **Medium**: Balanced speed and stealth (recommended)
-                - **High**: Fast, aggressive scanning (may trigger WAF)
-                """)
-            
-            with gr.Column(scale=1):
-                gr.Markdown("""
-                ### Assessment Methodology
-                
-                1. **Passive OSINT** (Non-intrusive)
-                   - DNS enumeration (A, AAAA, MX, NS, TXT)
-                   - SSL certificate analysis
-                   - Certificate Transparency logs
-                   - GitHub reconnaissance
-                   - Wayback Machine historical data
-                
-                2. **Active Reconnaissance**
-                   - Technology fingerprinting
-                   - Security headers analysis
-                   - Endpoint discovery
-                   - Form analysis
-                   - JavaScript analysis
-                
-                3. **Vulnerability Analysis**
-                   - Pattern-based detection
-                   - Configuration weaknesses
-                   - Information disclosure
-                   - Injection vulnerability checks
-                
-                4. **Threat Modeling**
-                   - STRIDE analysis
-                   - Attack path generation
-                   - MITRE ATT&CK mapping
-                   - CVSS v3.1 scoring
-                
-                5. **Reporting**
-                   - Executive summary
-                   - Technical findings
-                   - Remediation guidance
-                   - Compliance mapping
-                """)
-        
-        with gr.Tabs():
-            with gr.Tab("📊 Summary"):
-                summary_output = gr.Markdown(label="Assessment Summary")
-            
-            with gr.Tab("📈 Attack Graph"):
-                graph_output = gr.Plot(label="Attack Surface Visualization")
-            
-            with gr.Tab("🔍 Raw Data"):
-                json_output = gr.Code(
-                    language="json",
-                    label="Detailed Findings (JSON)",
-                    lines=30
-                )
-            
-            with gr.Tab("📋 Full Report"):
-                report_output = gr.Textbox(
-                    label="Security Assessment Report",
-                    lines=40,
-                    max_lines=100,
-                    interactive=False
-                )
-            
-            with gr.Tab("⚠️ Vulnerabilities"):
-                vulns_output = gr.Dataframe(
-                    headers=["Name", "Severity", "CVSS", "Location", "CWE"],
-                    label="Discovered Vulnerabilities"
-                )
-            
-            with gr.Tab("🎯 MITRE ATT&CK"):
-                mitre_output = gr.JSON(label="MITRE ATT&CK Mapping")
-        
-        # Button click handler
-        scan_button.click(
-            fn=run_assessment,
-            inputs=[target_input, threat_level],
-            outputs=[summary_output, json_output, graph_output, report_output]
-        )
-        
-        gr.Markdown("""
-        ---
-        **Red Team Recon Framework v3.0** | Private Space Edition | Generated: {datetime.now().strftime('%Y-%m-%d')}
-        """)
+    with gr.Row():
+        with gr.Column(scale=2):
+            url_input = gr.Textbox(label="Target Domain", placeholder="example.com")
+        with gr.Column(scale=1):
+            threat_input = gr.Dropdown(
+                ["Low (Stealthy)", "Medium (Balanced)", "High (Aggressive)"],
+                label="Threat Level", 
+                value="Medium (Balanced)"
+            )
+            scan_btn = gr.Button("🚀 Start Assessment", variant="primary")
     
-    return demo
-
-# ════════════════════════════════════════════════════════════════════════════
-# LAUNCH
-# ════════════════════════════════════════════════════════════════════════════
+    with gr.Row():
+        with gr.Column(scale=1):
+            summary_box = gr.Markdown(label="Executive Summary")
+        with gr.Column(scale=2):
+            graph_box = gr.Plot(label="Attack Graph")
+    
+    with gr.Row():
+        report_box = gr.Code(label="Full Technical Report", language="markdown", lines=20)
 
-if __name__ == "__main__":
-    demo = create_interface()
-    demo.launch(
-        share=False,  # Set to True for public sharing (not recommended for private space)
-        server_name="0.0.0.0",
-        server_port=7860,
-        show_error=True
+    scan_btn.click(
+        run_assessment,
+        inputs=[url_input, threat_input],
+        outputs=[summary_box, graph_box, report_box]
     )
 
-print("PART 2 KODU HAZIR (Bölümler 8-10)")
-print("=" * 60)
-print("Bu kodu app_part2.py olarak kaydedin")
-print("İçerik:")
-print("  - Bölüm 8: Comprehensive Reporting Engine")
-print("  - Bölüm 9: Main Orchestrator")
-print("  - Bölüm 10: Gradio Interface")
-'''
-
-print(part2_code)
+if __name__ == "__main__":
+    app.launch()