HDF Converter Mappings - mitre/heimdall2 GitHub Wiki

Details on the mappings between 3rd party formats and the Heimdall Data Format

Conveyor

in the controls, properties that are not able to map directly into a heimdall property are put into the code_desc, additionally a handful of properties are not saved, as they are always empty in the original file. The below shows properties for an individual scanner, (one control in heimdall). All data is still preserved in the passthrough of the hdf.

scanner results properties

"archive_ts": tags.archive_ts
"classification": tags.classification
"created": tags.created
"drop_file": always false not preserved
"expiry_ts": tags.expiry_ts
"response": {
	"extracted": always empty not preserved
	"milestones": {
		"service_completed": start_time
		"service_started": run_time (as service_started-service_completed)
	},
	"service_context": tags.service_context
	"service_debug_info": tags.service_debug_info
	"service_name": title``
	"service_tool_version": tags.service_tool_version
	"service_version": saved as version for hdf
	"supplementary": tags.supplementary
},
"result": {
{<shown by scanner below>}
},
"sha256": id
"size": tags.size
"type": name

moldy properties:

"sections": [
	{
		"auto_collapse": always null not preserved
		"body": code_desc
		"body_format": code_desc
		"classification": code_desc
		"depth": code_desc
		"heuristic": {
			"attack": (alwasy empty not preserved)
			"heur_id":code_desc
			"name": no preserved
			"score": code_desc
			"signature": always empty not preserved
		},
		"tags": always empty not preserved
		"title_text": code_desc
	}
]

stigma properties:

    "score": impact
"sections": [
	{
		"auto_collapse": always false not preserved
		"body": code_desc
		"body_format": code_desc
		"classification": code_desc
		"depth":code_desc
		"heuristic": {
			"attack": always empty not preserved
			"heur_id": code_desc
			"name": code_desc
			"score":code_desc
			"signature": always empty not preserved
		},
		"tags": always empty no preserved
		"title_text": code_desc
	}
]

CodeQuality properites

"score": impact
"sections": [
	{
		"auto_collapse":always false not preserved
		"body": code_desc
		``"body_format":code_desc
		"classification": code_desc
		"depth":code_desc
		"heuristic":always null not preserve
		"tags":always empty not preserved
		"title_text": code_desc
	}