FilesExpand file tree

 IDEV-2028-bug-bash-changes

/

test_utils.py

Copy path

BlameMore file actions

BlameMore file actions

Latest commit

 

History

History

History

148 lines (104 loc) · 4.87 KB

 IDEV-2028-bug-bash-changes

/

test_utils.py

Top

File metadata and controls

• Code
• Blame

148 lines (104 loc) · 4.87 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

import json

import pytest

from datetime import datetime, timedelta

from tests.responses import iris_investigate_data

from tests.responses.expected_data import prune_domaintools_expected

from tests.settings import utils

def test_get_domain_age():

create_date = (datetime.now() - timedelta(days=1)).strftime("%Y-%m-%d")

result = utils.get_domain_age(create_date)

assert result == 1

def test_get_threat_component():

threat_components = [

{"name": "threat_profile_malware", "risk_score": 31},

{"name": "threat_profile_spam", "risk_score": 73, "threats": ["spam"]},

]

result = utils.get_threat_component(threat_components, "threat_profile_malware")

assert result.get("risk_score") == 31

def test_investigate_average_risk_score():

domains = [{"domain_risk": {"risk_score": 25}}, {"domain_risk": {"risk_score": 27}}]

result = utils.get_average_risk_score(domains)

assert result == 26

domains = [{"domain_risk": {"risk_score": 25}}, {}]

result = utils.get_average_risk_score(domains)

assert result == 25

domains = []

result = utils.get_average_risk_score(domains)

assert result == None

def test_detect_average_risk_score():

domains = [{"risk_score": 25}, {"risk_score": 27}]

result = utils.get_average_risk_score(domains)

assert result == 26

domains = [{"risk_score": 25}, {"risk_score": None}]

result = utils.get_average_risk_score(domains)

assert result == 25

domains = []

result = utils.get_average_risk_score(domains)

assert result == None

def test_investigate_average_age():

two_days_ago = (datetime.now() - timedelta(days=2)).strftime("%Y-%m-%d")

five_days_ago = (datetime.now() - timedelta(days=5)).strftime("%Y-%m-%d")

domains = [{"create_date": {"value": two_days_ago}}, {"create_date": {"value": five_days_ago}}]

result = utils.get_average_age(domains)

assert result == 3

domains = [{"create_date": {"value": two_days_ago}}, {}]

result = utils.get_average_age(domains)

assert result == 2

domains = [{"create_date": {"value": two_days_ago}}, {"create_date": {"value": ""}}]

result = utils.get_average_age(domains)

assert result == 2

domains = []

result = utils.get_average_age(domains)

assert result == None

def test_detect_average_age():

two_days_ago = int((datetime.now() - timedelta(days=2)).strftime("%Y%m%d"))

five_days_ago = int((datetime.now() - timedelta(days=5)).strftime("%Y%m%d"))

domains = [{"create_date": two_days_ago}, {"create_date": five_days_ago}]

result = utils.get_average_age(domains)

assert result == 3

domains = [{"create_date": two_days_ago}, {"create_date": None}]

result = utils.get_average_age(domains)

assert result == 2

domains = []

result = utils.get_average_risk_score(domains)

assert result == None

def test_data_prune():

data = iris_investigate_data.domaintools()

utils.prune_data(data)

assert data == prune_domaintools_expected()

def test_find_emails():

emails = utils.find_emails(json.dumps(iris_investigate_data.domaintools()))

assert emails == {"abuse@enom.com", "hostmaster@nsone.net"}

def test_find_ips():

ips = utils.find_ips(json.dumps(iris_investigate_data.domaintools()))

assert ips == {

"142.250.115.26",

"142.250.141.27",

"198.51.44.4",

"198.51.44.68",

"198.51.45.4",

"198.51.45.68",

"199.30.228.112",

"64.233.171.26",

"74.125.142.26",

}

def test_get_pivots():

pivots = utils.get_pivots(iris_investigate_data.domaintools().get("results"), "")

assert pivots == [["IP ADDRESS", ("199.30.228.112", 4)], ["IP ASN", (17318, 111)], ["IP ISP", ("DomainTools LLC", 222)]]

def test_validate_feeds_parameters_update_header_auth_to_False(test_feeds_params):

test_feeds_params["output_format"] = "jsonl"

assert test_feeds_params.get("header_authentication", True) # header_authentication is True whether existing or not

assert test_feeds_params["endpoint"] == "download"

utils.validate_feeds_parameters(test_feeds_params)

assert not test_feeds_params["header_authentication"] # header_authentication will be defaulted to False if endpoint is download

def test_validate_feeds_parameters_should_raise_error_if_no_required_params(test_feeds_params):

test_feeds_params.pop("sessionID", None)

test_feeds_params.pop("after", None)

test_feeds_params.pop("before", None)

with pytest.raises(ValueError) as excinfo:

utils.validate_feeds_parameters(test_feeds_params)

assert str(excinfo.value) == "sessionID or after or before must be provided"

def test_validate_feeds_parameters_should_raise_error_if_asked_csv_format_for_download_api(test_feeds_params):

with pytest.raises(ValueError) as excinfo:

utils.validate_feeds_parameters(test_feeds_params)

assert str(excinfo.value) == "csv format is not available in download API."