fatt 0.1.1

Find All The Things - A high-performance, distributed security scanning tool
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182

use fatt::db;
use fatt::rules::Severity;
use rusqlite::{params, Connection};
use tempfile::tempdir;

#[test]
fn test_db_initialization() -> anyhow::Result<()> {
    // Create temporary directory for test database
    let temp_dir = tempdir()?;
    let db_path = temp_dir.path().join("test.sqlite");

    // Initialize database
    let conn = db::init_db(db_path.to_str().unwrap())?;

    // Verify database was created
    assert!(db_path.exists());

    // Check that tables were created
    let tables_count: i32 = conn.query_row(
        "SELECT count(*) FROM sqlite_master WHERE type='table' AND name='findings'",
        [],
        |row| row.get(0),
    )?;

    assert_eq!(tables_count, 1, "findings table should be created");

    // Test column structure - updated to match actual schema
    let has_columns = conn.query_row(
        "SELECT COUNT(*) FROM pragma_table_info('findings') WHERE name IN ('id', 'domain', 'rule_name', 'matched_path', 'detected', 'scanned_at')",
        [],
        |row| row.get::<_, i32>(0)
    )?;

    assert_eq!(
        has_columns, 6,
        "findings table should have all required columns"
    );

    Ok(())
}

#[test]
fn test_record_finding() -> anyhow::Result<()> {
    // Create in-memory database for testing
    let conn = Connection::open_in_memory()?;

    // Initialize schema in memory - updated to match actual schema
    conn.execute(
        "CREATE TABLE findings (
            id INTEGER PRIMARY KEY,
            domain TEXT NOT NULL,
            rule_name TEXT NOT NULL,
            matched_path TEXT NOT NULL,
            detected INTEGER NOT NULL,
            scanned_at DATETIME DEFAULT CURRENT_TIMESTAMP,
            UNIQUE(domain, rule_name)
        )",
        [],
    )?;

    // Now try to insert a finding using our function
    let domain = "example.com";
    let rule_name = "test-rule";
    let matched_path = "/admin";
    let detected = true;

    let finding_id = db::insert_finding(&conn, domain, rule_name, matched_path, detected)?;

    // Verify finding was inserted
    assert!(finding_id > 0, "Finding ID should be positive");

    // Verify the data in the database
    let count: i64 = conn.query_row(
        "SELECT COUNT(*) FROM findings WHERE domain = ? AND rule_name = ? AND matched_path = ? AND detected = ?",
        params![domain, rule_name, matched_path, 1],
        |row| row.get(0),
    )?;

    assert_eq!(count, 1, "One record should be found");

    // Test upsert functionality (update)
    let new_detected = false;

    let update_id = db::insert_finding(&conn, domain, rule_name, matched_path, new_detected)?;

    // Should return the same ID since it's an update
    assert_eq!(finding_id, update_id, "Update should return same record ID");

    // Verify the data was updated
    let updated_detected: i64 = conn.query_row(
        "SELECT detected FROM findings WHERE domain = ? AND rule_name = ?",
        params![domain, rule_name],
        |row| row.get(0),
    )?;

    assert_eq!(updated_detected, 0, "detected should be updated to 0");

    Ok(())
}

#[test]
fn test_get_findings_count() -> anyhow::Result<()> {
    // Create in-memory database for testing
    let conn = Connection::open_in_memory()?;

    // Initialize schema in memory - updated to match actual schema
    conn.execute(
        "CREATE TABLE findings (
            id INTEGER PRIMARY KEY,
            domain TEXT NOT NULL,
            rule_name TEXT NOT NULL,
            matched_path TEXT NOT NULL,
            detected INTEGER NOT NULL,
            scanned_at DATETIME DEFAULT CURRENT_TIMESTAMP,
            UNIQUE(domain, rule_name)
        )",
        [],
    )?;

    // Insert sample data with different domains and rules
    for i in 1..=5 {
        let domain = format!("example{}.com", i);
        let rule_name = format!("rule-{}", i % 3); // Creates some duplicate rules

        db::insert_finding(&conn, &domain, &rule_name, "/admin", true)?;
    }

    // Try to get count of findings
    let counts = db::get_findings_count(&conn, None)?;

    // Should have 5 total findings
    assert_eq!(counts, 5, "Should have 5 total findings");

    // Filter by a specific severity - using Critical as a test case
    // Note: The implementation currently ignores severity filtering
    let critical_counts = db::get_findings_count(&conn, Some(Severity::Critical))?;

    // Should return all findings since severity is ignored
    assert_eq!(
        critical_counts, 5,
        "Should return all findings (severity ignored)"
    );

    Ok(())
}

#[test]
fn test_get_unique_domains_count() -> anyhow::Result<()> {
    // Create in-memory database for testing
    let conn = Connection::open_in_memory()?;

    // Initialize schema in memory - updated to match actual schema
    conn.execute(
        "CREATE TABLE findings (
            id INTEGER PRIMARY KEY,
            domain TEXT NOT NULL,
            rule_name TEXT NOT NULL,
            matched_path TEXT NOT NULL,
            detected INTEGER NOT NULL,
            scanned_at DATETIME DEFAULT CURRENT_TIMESTAMP,
            UNIQUE(domain, rule_name)
        )",
        [],
    )?;

    // Insert sample data with some duplicate domains
    let domains = vec!["example.com", "test.com", "example.com", "demo.com"];

    for (i, domain) in domains.iter().enumerate() {
        let rule_name = format!("rule-{}", i);

        db::insert_finding(&conn, domain, &rule_name, "/admin", true)?;
    }

    // Count unique domains
    let unique_count = db::get_unique_domains_count(&conn)?;

    // Should have 3 unique domains
    assert_eq!(unique_count, 3, "Should have 3 unique domains");

    Ok(())
}