Skip to content

Add debug information to provide performance information and insight into Nmap job processing #23

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
mcdonnnj wants to merge 7 commits into
base: develop
Choose a base branch
from
Open

Add debug information to provide performance information and insight into Nmap job processing #23

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
e461ae5
Output the duration to process a given job
mcdonnnj Nov 3, 2025
74d4864
Add base logging for Namp job importing
mcdonnnj Nov 4, 2025
51376a5
Add additional logging in Nmap importer end callback
mcdonnnj Nov 4, 2025
d8097ca
Add additional debug logging for the Nmap importer
mcdonnnj Nov 4, 2025
a7b309e
Further adjust debug messaging in the Nmap importer
mcdonnnj Nov 6, 2025
589f8f0
Fix interpolation of logging message
mcdonnnj Nov 6, 2025
2ff655e
Format project with `black`
mcdonnnj Nov 6, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
23 changes: 16 additions & 7 deletions cyhy_commander/commander.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -463,15 +463,18 @@ def process_job_from_queue(target_job_queue, job_processing_function):
job_processing_function (callable): The function used to process a job.

Returns:
The job path that was processed or None if the queue was empty.
A tuple whose first item is the job path that was processed or None if
the queue was empty, and whose second item is the duration it took to
process the job or determine the queue was empty.
"""
job_path = None
job_processing_start = time.time()

# check the successful jobs queue
try:
job_path = target_job_queue.get(timeout=1)
except Queue.Empty:
return job_path
return (job_path, time.time() - job_processing_start)

try:
job_processing_function(job_path)
Expand All @@ -482,8 +485,8 @@ def process_job_from_queue(target_job_queue, job_processing_function):
# report task completion no matter what so the queue can be joined
target_job_queue.task_done()

# return path of the job that was processed
return job_path
# return path of the job that was processed and how long it took to process
return (job_path, time.time() - job_processing_start)

# run as long as the commander is processing jobs
while self.__is_processing_jobs:
Expand All @@ -493,13 +496,19 @@ def process_job_from_queue(target_job_queue, job_processing_function):
)

# process failed job if a successful job was not processed
if job_processing_results is None:
if job_processing_results[0] is None:
job_processing_results = process_job_from_queue(
self.__failed_job_queue, self.__process_failed_job
)

# sleep if both queues are empty
if job_processing_results is None:
if job_processing_results[0] is not None:
# output how long it took to process the job
self.__logger.debug(
"Processed %s in %1.1f seconds"
% (job_processing_results[0], job_processing_results[1])
)
else:
# sleep if both queues are empty
time.sleep(self.__job_processing_sleep_duration)

def __process_successful_job(self, job_path):
Expand Down
39 changes: 39 additions & 0 deletions cyhy_commander/nmap/nmap_importer.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -79,11 +79,21 @@ def __init__(self, db, stage=STAGE.PORTSCAN):

def process(self, nmap_filename, target_filename):
"""Imports nmap files created from netscans and portscans"""
# Get the name of the current thread
thread_name = threading.current_thread().name

self.__logger.debug(
"[%s] Starting processing of %s" % (thread_name, nmap_filename)
)
# import target ips
ips = netaddr.IPSet()
with open(target_filename) as f:
for ip_line in f:
self.__ticket_manager.ips.add(ip_line)
self.__logger.debug(
"[%s] Found %d targets in target file %s"
% (thread_name, len(self.__ticket_manager.ips), target_filename)
)
Comment on lines 92 to +96
Copy link

Copilot AI Nov 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This code will fail when stage == STAGE.BASESCAN because self.__ticket_manager is set to None in that case (line 75 in __init__). Attempting to access self.__ticket_manager.ips will raise an AttributeError.

Consider checking if self.__ticket_manager is not None before accessing its attributes, or restructuring the code to handle the BASESCAN case differently.

Copilot uses AI. Check for mistakes.
Copy link
Member

@dav3r dav3r Nov 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I believe the BASESCAN stage is deprecated, though has never been fully removed from the code.

Copy link
Member Author

@mcdonnnj mcdonnnj Nov 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That's what I thought when I noticed this exact problem as I implemented this code. How do we want to proceed?

Copy link
Member

@dav3r dav3r Nov 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm ok ignoring this for now, since we don't actually use the BASESCAN stage. If you want to add a comment or a TODO issue to remove BASESCAN, feel free.

# parse nmap data
f = open(nmap_filename, "rb")
# sometimes the first line of the nmap output is not xml
Expand All @@ -107,6 +117,11 @@ def __store_port_details(self, parsed_host):
"[%s] No HostDoc found for IP %s" % (thread_name, str(ip))
)
ip_owner = UNKNOWN_OWNER

self.__logger.debug(
"[%s] Processing %d port results for IP %s"
% (thread_name, len(parsed_host["ports"]), str(ip))
)
for (port, details) in parsed_host["ports"].items():
if details["state"] != "open": # only storing open ports
continue
Expand Down Expand Up @@ -174,6 +189,9 @@ def __store_port_details(self, parsed_host):
return has_at_least_one_open_port

def __store_os_details(self, parsed_host):
# Get the name of the current thread
thread_name = threading.current_thread().name

details = dict()
if parsed_host.has_key("os"):
util.copy_attrs(parsed_host["os"], details)
Expand All @@ -187,8 +205,16 @@ def __store_os_details(self, parsed_host):
details["latest"] = True

ip = parsed_host["addr"]
self.__logger.debug(
"[%s] Storing OS details for IP %s" % (thread_name, str(ip))
)

host_doc = self.__db.HostDoc.get_by_ip(ip)
if host_doc and host_doc.get("hostnames"):
self.__logger.debug(
"[%s] HostDoc for IP %s has %d hostnames"
% (thread_name, str(ip), len(host_doc["hostnames"]))
)
# Create a HostScanDoc for each hostname/owner combination
for h in host_doc["hostnames"]:
host = self.__db.HostScanDoc()
Expand Down Expand Up @@ -239,10 +265,23 @@ def __portscan_host_callback(self, parsed_host):
self.__ch_db.transition_host(ip, has_open_ports=has_at_least_one_open_port)

def __end_callback(self):
# Get the name of the current thread
thread_name = threading.current_thread().name

# clear the latest flags compiled from __netscan_host_callback down
self.__logger.debug(
"[%s] Resetting latest flag for %d IPs"
% (thread_name, len(self.__ips_to_reset_latest))
)
self.__db.HostScanDoc.reset_latest_flag_by_ip(self.__ips_to_reset_latest)
self.__db.PortScanDoc.reset_latest_flag_by_ip(self.__ips_to_reset_latest)
self.__db.VulnScanDoc.reset_latest_flag_by_ip(self.__ips_to_reset_latest)
# tell the ticket manager to close what needs to be closed
self.__logger.debug("[%s] Closing tickets" % thread_name)
self.__ticket_manager.close_tickets()
self.__logger.debug(
"[%s] Clear the latest flag for applicable VulnScanDocs" % thread_name
)
self.__ticket_manager.clear_vuln_latest_flags()
Comment on lines 281 to 285
Copy link

Copilot AI Nov 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This code will fail when stage == STAGE.BASESCAN because self.__ticket_manager is set to None in that case (line 75 in __init__). Attempting to call self.__ticket_manager.close_tickets() and self.__ticket_manager.clear_vuln_latest_flags() will raise an AttributeError.

Consider checking if self.__ticket_manager is not None before calling its methods.

Suggested change
self.__ticket_manager.close_tickets()
self.__logger.debug(
"[%s] Clear the latest flag for applicable VulnScanDocs" % thread_name
)
self.__ticket_manager.clear_vuln_latest_flags()
if self.__ticket_manager is not None:
self.__ticket_manager.close_tickets()
self.__logger.debug(
"[%s] Clear the latest flag for applicable VulnScanDocs" % thread_name
)
self.__ticket_manager.clear_vuln_latest_flags()

Copilot uses AI. Check for mistakes.
Copy link
Member

@dav3r dav3r Nov 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I believe the BASESCAN stage is deprecated, though has never been fully removed from the code.

Copy link
Member Author

@mcdonnnj mcdonnnj Nov 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That's what I thought when I noticed this exact problem as I implemented this code. How do we want to proceed?

Copy link
Member

@dav3r dav3r Nov 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm ok ignoring this for now, since we don't actually use the BASESCAN stage. If you want to add a comment or a TODO issue to remove BASESCAN, feel free.


self.__logger.debug("[%s] Reached end of Nmap import" % thread_name)
Loading