Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature DSL: mainCriticalPaths() which provide a minimal set of attack path #328

Open
theoberthier opened this issue Feb 5, 2025 · 1 comment
Open

Feature DSL: mainCriticalPaths() which provide a minimal set of attack path #328

theoberthier opened this issue Feb 5, 2025 · 1 comment
Assignees
@Zenithar
Labels
enhancement New feature or request

Comments

@theoberthier
Copy link

Hello ! i would propose a feature of DSL language.
I've seen when i make request with criticalPaths(), we have a set of critical paths, and the parameter (int maxHops) is used to define the depth.

When i launch criticalPaths by hands like :

kh.endpoints()
    .outE()
    .inV()
    .has("image","exemple")
    .repeat(
        outE()
        .inV()
        .simplePath()
    )
    .until(
        has("class","PermissionSet")
        .has("critical",true)
    )
    .dedup()  # dedup delete all redundant path
    .path()
    .by(elementMap())

What do you think it's intresting feature to propose mainCriticalPaths() ?This feature provide a minimal overview of what attackers can generally do with a specific resource.
@Zenithar
Copy link
Contributor

Hi @theoberthier,

I will look at this and provide you with feedback in the week.

Thank you.

@Zenithar Zenithar self-assigned this Feb 11, 2025
@Zenithar Zenithar added the enhancement New feature or request label Feb 11, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Zenithar Zenithar

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Zenithar @theoberthier