search

Patrowl / PatrowlDocs

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
https://www.patrowl.io
GNU Affero General Public License v3.0
147 stars 51 forks source link

cant add findings #23

Open nocomp opened 5 years ago

nocomp commented 5 years ago

hi, first congrat for this great tool that seems very promising :) i would like to use it to manage our 300 server s vuln situation, sure it can be the right tool. i ev installed this on my laptop running kali, no issues, all went ok, but when i want to add a fiding, i get this error

Request Method: POST

http://web:8003/findings/add 2.2.4 AttributeError 'dict' object has no attribute 'risk_info' /opt/patrowl-manager/findings/views.py in add_finding_view, line 208 /opt/patrowl-manager/env3/bin/python3 3.7.4 ['/opt/patrowl-manager', '/opt/patrowl-manager', '/opt/patrowl-manager/env3/bin', '/opt/patrowl-manager/env3/lib/python37.zip', '/opt/patrowl-manager/env3/lib/python3.7', '/opt/patrowl-manager/env3/lib/python3.7/lib-dynload', '/usr/local/lib/python3.7', '/opt/patrowl-manager/env3/lib/python3.7/site-packages'] Fri, 6 Sep 2019 08:11:07 +0200

also for some text box i get a message sayin it has to be a valid json format, so i enter the text this way "text" "hfizehfzoeifhzeio" "jpejfpejfp"

what am i doing wrong?

thxx for your time

brunoagostinho commented 5 years ago

I'm got the same problem!

In the text box "risk info" its asking "value must be valid JSON".

brunoagostinho commented 5 years ago

I tried the following in "risk info":

{ "risk info": "high" }

and in "vuln_refs":

{ "CVE": "n/a" }

Got the following:

Request Method: POST

http://web:8003/findings/add 2.2.4 AttributeError 'dict' object has no attribute 'risk_info' /opt/patrowl-manager/findings/views.py in add_finding_view, line 208 /opt/patrowl-manager/env3/bin/python3 3.7.4 ['/opt/patrowl-manager', '/opt/patrowl-manager', '/opt/patrowl-manager/env3/bin', '/opt/patrowl-manager/env3/lib/python37.zip', '/opt/patrowl-manager/env3/lib/python3.7', '/opt/patrowl-manager/env3/lib/python3.7/lib-dynload', '/usr/local/lib/python3.7', '/opt/patrowl-manager/env3/lib/python3.7/site-packages'] Sat, 7 Sep 2019 02:35:35 +0200

============================================================================ POST risk_info | '{\r\n "risk info": "medium"\r\n}' vuln_refs | '{\r\n "CVE": "n/a"\r\n}'