Python中文网 - 问答频道, 解决您学习工作中的Python难题和Bug
Python常见问题
我开始编写一个python脚本,从DISA SCAP检查工具(SCC)获取XML输出,并将其转换为csv,这样我就可以轻松地将其接收到Splunk进行存储/分析。下面是XML的摘录
<cdf:Benchmark id="xccdf_mil.disa.stig_benchmark_Mozilla_Firefox_Windows" style="SCAP_1.2" resolved="1" xsi:schemaLocation="http://checklists.nist.gov/xccdf/1.2 http://scap.nist.gov/schema/xccdf/1.2/xccdf_1.2.xsd http://cpe.mitre.org/dictionary/2.0 http://scap.nist.gov/schema/cpe/2.3/cpe-dictionary_2.3.xsd http://cpe.mitre.org/language/2.0 http://scap.nist.gov/schema/cpe/2.3/cpe-language_2.3.xsd" xmlns:cdf="http://checklists.nist.gov/xccdf/1.2" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:dc="http://purl.org/dc/elements/1.1/">
<cdf:status date="2020-01-24">accepted</cdf:status>
<cdf:title>Mozilla Firefox Security Technical Implementation Guide</cdf:title>
<cdf:description>The Mozilla Firefox Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil</cdf:description>
<cdf:notice id="terms-of-use"></cdf:notice>
<cdf:reference href="https://cyber.mil">
<dc:publisher>DISA</dc:publisher>
<dc:source>STIG.DOD.MIL</dc:source>
</cdf:reference>
<cdf:plain-text id="release-info">Release: 1.5 Benchmark Date: 24 Jan 2020</cdf:plain-text>
<cdf:platform idref="cpe:/a:mozilla:firefox:::~~~windows~~"></cdf:platform>
<cdf:version update="http://iase.disa.mil/stigs">001.005</cdf:version>
<cdf:metadata>
<dc:creator>DISA</dc:creator>
<dc:publisher>DISA</dc:publisher>
<dc:contributor>DISA</dc:contributor>
<dc:source>STIG.DOD.MIL</dc:source>
</cdf:metadata>
<cdf:Profile id="xccdf_mil.disa.stig_profile_MAC-1_Classified">
<cdf:title>I - Mission Critical Classified</cdf:title>
<cdf:description><ProfileDescription></ProfileDescription></cdf:description>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15768" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15771" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15772" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15774" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15775" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15776" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15778" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15779" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15983" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15985" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15986" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-19742" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-19743" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-19744" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-64891" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-79053" selected="true"></cdf:select>
</cdf:Profile>
<cdf:Profile id="xccdf_mil.disa.stig_profile_MAC-1_Public">
<cdf:title>I - Mission Critical Public</cdf:title>
<cdf:description><ProfileDescription></ProfileDescription></cdf:description>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15768" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15771" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15772" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15774" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15775" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15776" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15778" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15779" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15983" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15985" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-15986" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-19742" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-19743" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-19744" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-64891" selected="true"></cdf:select>
<cdf:select idref="xccdf_mil.disa.stig_group_V-79053" selected="true"></cdf:select>
<cdf:Group id="xccdf_mil.disa.stig_group_V-15768" Id="xccdf_mil.disa.stig_group_V-15768">
<cdf:title>FireFox Preferences – Verification</cdf:title>
<cdf:description><GroupDescription></GroupDescription></cdf:description>
<cdf:Rule id="xccdf_mil.disa.stig_rule_SV-16707r1_rule" weight="10.0" Id="xccdf_mil.disa.stig_rule_SV-16707r1_rule" severity="medium">
<cdf:version update="http://iase.disa.mil/stigs">DTBF050</cdf:version>
<cdf:title>FireFox is configured to ask which certificate to present to a web site when a certificate is required.</cdf:title>
<cdf:description><VulnDiscussion>When a web site asks for a certificate for user authentication, Firefox must be configured to have the user choose which certificate to present. Websites within DOD require user authentication for access which increases security for DoD information. Access will be denied to the user if certificate management is not configured.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility>System Administrator</Responsibility><IAControls></IAControls></cdf:description>
<cdf:reference>
<dc:publisher>DISA</dc:publisher>
<dc:identifier>205</dc:identifier>
<dc:type>DPMS Target</dc:type>
</cdf:reference>
<cdf:ident system="http://iase.disa.mil/cci">CCI-001274</cdf:ident>
<cdf:fixtext fixref="F-15985r1_fix">Set the value of "security.default_personal_cert" to "Ask Every Time". Use the Mozilla.cfg file to lock the preference so users cannot change it.</cdf:fixtext>
<cdf:fix id="F-15985r1_fix"></cdf:fix>
<cdf:check system="http://oval.mitre.org/XMLSchema/oval-definitions-5">
<cdf:check-content-ref name="oval:mil.disa.stig.mozilla.firefox.windows:def:20" href="U_Mozilla_Firefox_Windows_V1R5_STIG_SCAP_1-2_Benchmark-oval.xml"></cdf:check-content-ref>
</cdf:check>
</cdf:Rule>
</cdf:Group>
<cdf:TestResult id="xccdf_mil.disa.stig_testresult_scap_mil.disa.stig_comp_U_Mozilla_Firefox_Windows_V1R5_STIG_SCAP_1-2_Benchmark-xccdf.xml---xccdf_mil.disa.stig_profile_MAC-1_Classified-1" start-time="2020-04-28T16:34:31" version="001.005" end-time="2020-04-28T16:34:31" test-system="cpe:/a:spawar:scc:5.3">
<cdf:benchmark id="xccdf_mil.disa.stig_benchmark_Mozilla_Firefox_Windows" href="#scap_mil.disa.stig_comp_U_Mozilla_Firefox_Windows_V1R5_STIG_SCAP_1-2_Benchmark-xccdf.xml"></cdf:benchmark>
<cdf:organization>NIWC Atlantic</cdf:organization>
<cdf:profile idref="xccdf_mil.disa.stig_profile_MAC-1_Classified"></cdf:profile>
<cdf:target-id-ref name="SCC_DESKTOP-LAISPM9" href="" system="http://scap.nist.gov/schema/asset-identification/1.1"></cdf:target-id-ref>
<cdf:platform idref="cpe:/a:mozilla:firefox:::~~~windows~~"></cdf:platform>
<cdf:rule-result idref="xccdf_mil.disa.stig_rule_SV-16707r1_rule" weight="10.0" version="DTBF050" severity="medium" time="2020-04-28T16:34:31">
<cdf:result>fail</cdf:result>
<cdf:ident system="http://iase.disa.mil/cci">CCI-001274</cdf:ident>
<cdf:fix id="F-15985r1_fix"></cdf:fix>
<cdf:check system="http://oval.mitre.org/XMLSchema/oval-definitions-5">
<cdf:check-content-ref name="oval:mil.disa.stig.mozilla.firefox.windows:def:20" href="#scap_mil.disa.stig_comp_U_Mozilla_Firefox_Windows_V1R5_STIG_SCAP_1-2_Benchmark-oval.xml"></cdf:check-content-ref>
</cdf:check>
</cdf:rule-result>
<cdf:rule-result idref="xccdf_mil.disa.stig_rule_SV-16710r3_rule" weight="10.0" version="DTBF105" severity="medium" time="2020-04-28T16:34:31">
<cdf:result>fail</cdf:result>
<cdf:ident system="http://iase.disa.mil/cci">CCI-000381</cdf:ident>
<cdf:fix id="F-15988r3_fix"></cdf:fix>
<cdf:check system="http://oval.mitre.org/XMLSchema/oval-definitions-5">
<cdf:check-content-ref name="oval:mil.disa.stig.mozilla.firefox.windows:def:40" href="#scap_mil.disa.stig_comp_U_Mozilla_Firefox_Windows_V1R5_STIG_SCAP_1-2_Benchmark-oval.xml"></cdf:check-content-ref>
</cdf:check>
</cdf:rule-result>
</cdf:TestResult>
</cdf:Benchmark>
这是我到目前为止得到的。它只是写入我在“xccdf_head”中指定的值。有更多的值需要提取,但我想我希望在构建之前先写入格式
import csv
import xml.etree.ElementTree as ET
# file to read
tree = ET.parse("./test.xml")
root = tree.getroot()
# create file for writing
xccdf_out = open('./test.csv', 'w')
csvwriter = csv.writer(xccdf_out)
xccdf_head = ['ID']
csvwriter.writerow(xccdf_head)
for group in root.findall('cdf:Benchmark'):
row = []
group_id = group.find('cdf:Group').find('cdf:title').text
row.append(group_id)
csvwriter.writerow(row)
xccdf_out.close()
我正在寻找一个可以从两个部分(cdf:Group和cdf:Result)捕获以下内容的输出
'cdf:groupid', cdf:ruleid','cdf:ruleseverity','cdf:title','cdf:description','cdf:result'
…所以理想情况下,它看起来是这样的:
xccdf_mil.disa.stig_group_V-79053, xccdf_mil.disa.stig_rule_SV-93759r3_rule, medium, Background submission of information to Mozilla must be disabled, VulnDiscussion>There should be no background submission(...),fail
Tags: ltgtidtruehttpgroupdcselect
热门问题
- 如何在用户使用jquery单击按钮(提交选项之前)时突出显示html中的选项
- 如何在用户使用midd注销时删除用户
- 如何在用户停止滑动和缩放时同步范围?
- 如何在用户关闭Android kivy应用程序后恢复上一个活动?
- 如何在用户关闭浏览器后不强制登录
- 如何在用户函数中返回两个数据帧
- 如何在用户创建后更新用户列表字段;信号
- 如何在用户单击Django中的“ok”后触发Javascript警报并重定向页面?
- 如何在用户单击查询后显示消息؟
- 如何在用户可以使用键盘的健身房制作cartpole游戏
- 如何在用户名和密码来自数据库的python脚本中添加最大登录尝试?
- 如何在用户名和密码相同的情况下登录网站?
- 如何在用户向Django注册时添加新的数据库条目?
- 如何在用户和他们进行的不同交易之间建立关系?
- 如何在用户和会话之间创建一对多的关系,其中用户在一方,会话在多方?
- 如何在用户喜欢帖子时动态更新Flask模板?
- 如何在用户在Django中注册后自动将users表链接到另一个表
- 如何在用户定义的Python函数中打印给定参数的长度?
- 如何在用户定义的Python类中实现哈希?
- 如何在用户定义的块中迭代Numpy数组?
热门文章
- Python覆盖写入文件
- 怎样创建一个 Python 列表?
- Python3 List append()方法使用
- 派森语言
- Python List pop()方法
- Python Django Web典型模块开发实战
- Python input() 函数
- Python3 列表(list) clear()方法
- Python游戏编程入门
- 如何创建一个空的set?
- python如何定义(创建)一个字符串
- Python标准库 [The Python Standard Library by Ex
- Python网络数据爬取及分析从入门到精通(分析篇)
- Python3 for 循环语句
- Python List insert() 方法
- Python 字典(Dictionary) update()方法
- Python编程无师自通 专业程序员的养成
- Python3 List count()方法
- Python 网络爬虫实战 [Web Crawler With Python]
- Python Cookbook(第2版)中文版
另一种方法
这里有更多的例子:https://github.com/yiyedata/simplified-scrapy-demo/tree/master/doc_examples
相关问题 更多 >
编程相关推荐