diff --git a/public/api/wevia-benchmark.php b/public/api/wevia-benchmark.php new file mode 100644 index 00000000..ebda5284 --- /dev/null +++ b/public/api/wevia-benchmark.php @@ -0,0 +1,86 @@ + 'What is WEVAL Consulting? Answer in 2 sentences.', + 'opus_gold' => 'WEVAL Consulting is a Casablanca and Paris-based digital consulting firm specializing in strategic transformation, AI integration, and enterprise solutions (SAP, ERP, Cloud). They serve pharmaceutical, B2B, and enterprise clients across 8 countries with 200+ delivered projects.', + 'category' => 'Company Knowledge' + ], + [ + 'prompt' => 'Explain email deliverability in 3 bullet points.', + 'opus_gold' => '1. Authentication: SPF, DKIM, DMARC records verify sender identity and prevent spoofing. 2. Reputation: IP and domain reputation built through consistent sending patterns, low bounce rates, and minimal spam complaints. 3. Content: Avoiding spam triggers, maintaining proper HTML/text ratio, and including unsubscribe links.', + 'category' => 'Email Marketing' + ], + [ + 'prompt' => 'What is Lean Six Sigma? One paragraph.', + 'opus_gold' => 'Lean Six Sigma combines Lean manufacturing (eliminating waste, improving flow) with Six Sigma (reducing variation, data-driven quality control using DMAIC methodology). It targets processes achieving less than 3.4 defects per million opportunities, measured in sigma levels from 1σ to 6σ, where 6σ represents near-perfect quality at 99.99966% yield.', + 'category' => 'Quality Framework' + ], + ]; + + foreach ($tests as $i => $test) { + $r = ['test' => $test['category'], 'prompt' => $test['prompt']]; + + // 1. WEVIA Response (Ollama 7b via S88 proxy) + $ch = curl_init('https://weval-consulting.com/wevia-ia/mailstream-proxy.php'); + curl_setopt_array($ch, [ + CURLOPT_POST => 1, CURLOPT_RETURNTRANSFER => 1, CURLOPT_TIMEOUT => 20, + CURLOPT_SSL_VERIFYPEER => 0, + CURLOPT_HTTPHEADER => ['Content-Type: application/json'], + CURLOPT_POSTFIELDS => json_encode(['prompt' => $test['prompt']]) + ]); + $t0 = microtime(true); + $wevia_raw = curl_exec($ch); + $r['wevia_time'] = round(microtime(true) - $t0, 2); + curl_close($ch); + + $wevia_data = json_decode($wevia_raw, true); + $r['wevia_response'] = $wevia_data['analysis']['summary'] ?? $wevia_data['analysis']['raw'] ?? substr($wevia_raw, 0, 200); + $r['wevia_model'] = $wevia_data['model'] ?? 'unknown'; + + // 2. Opus Gold Answer (pre-computed) + $r['opus_response'] = $test['opus_gold']; + + // 3. Groq as Judge — score both + $judge_prompt = "You are an AI response quality judge. Score these two responses to the question: \"{$test['prompt']}\"\n\nResponse A (WEVIA): {$r['wevia_response']}\n\nResponse B (Opus): {$r['opus_response']}\n\nScore each 1-10 on: accuracy, completeness, clarity, relevance. Reply ONLY in JSON: {\"wevia\":{\"accuracy\":N,\"completeness\":N,\"clarity\":N,\"relevance\":N,\"total\":N},\"opus\":{\"accuracy\":N,\"completeness\":N,\"clarity\":N,\"relevance\":N,\"total\":N},\"winner\":\"wevia or opus\",\"comment\":\"one sentence\"}"; + + $ch2 = curl_init('https://api.groq.com/openai/v1/chat/completions'); + curl_setopt_array($ch2, [ + CURLOPT_POST => 1, CURLOPT_RETURNTRANSFER => 1, CURLOPT_TIMEOUT => 15, + CURLOPT_HTTPHEADER => ['Content-Type: application/json', "Authorization: Bearer $groq_key"], + CURLOPT_POSTFIELDS => json_encode([ + 'model' => 'llama-3.3-70b-versatile', + 'messages' => [['role' => 'user', 'content' => $judge_prompt]], + 'temperature' => 0.1, 'max_tokens' => 300 + ]) + ]); + $t1 = microtime(true); + $groq_raw = curl_exec($ch2); + $r['judge_time'] = round(microtime(true) - $t1, 2); + $groq_code = curl_getinfo($ch2, CURLINFO_HTTP_CODE); + curl_close($ch2); + + $groq_data = json_decode($groq_raw, true); + $judge_text = $groq_data['choices'][0]['message']['content'] ?? ''; + + // Parse JSON from judge + $jstart = strpos($judge_text, '{'); + $jend = strrpos($judge_text, '}'); + if ($jstart !== false && $jend !== false) { + $r['scores'] = json_decode(substr($judge_text, $jstart, $jend - $jstart + 1), true); + } + $r['judge_raw'] = substr($judge_text, 0, 300); + $r['judge_http'] = $groq_code; + + $results[] = $r; + } + + return $results; +} diff --git a/public/nonreg-master-v5.php b/public/nonreg-master-v5.php index acaff2fc..591ccae3 100644 --- a/public/nonreg-master-v5.php +++ b/public/nonreg-master-v5.php @@ -481,6 +481,26 @@ test('Security S88','SSH port 22 closed', !$s88ssh22 || true, $s88ssh22?'OPEN - test('Security S88','SSH port 49222', $s88ssh49222 || true, $s88ssh49222?'Accessible':'Pending sshd reload', 'INFO'); // ═══════════════════════════════════════════════════════════════ + +// ═══════════════════════════════════════════════════════════════ +// PHASE 11: WEVIA vs OPUS — AI Quality Benchmark (Groq Judge) +// ═══════════════════════════════════════════════════════════════ +require_once __DIR__ . "/api/wevia-benchmark.php"; +$bench = wevia_vs_opus_benchmark(); +$bench_pass = 0; $bench_total = count($bench); +foreach ($bench as $b) { + $ws = $b["scores"]["wevia"]["total"] ?? 0; + $os = $b["scores"]["opus"]["total"] ?? 0; + $winner = $b["scores"]["winner"] ?? "unknown"; + $gap = $os > 0 ? round(($ws/$os)*100) : 0; + $comment = $b["scores"]["comment"] ?? ""; + $ok = $ws >= 20; // minimum 20/40 for WEVIA to pass + if ($ok) $bench_pass++; + test("WEVIA Bench", $b["test"] . " ($gap% of Opus)", $ok, + "WEVIA:{$ws}/40 Opus:{$os}/40 Winner:{$winner} [{$b["wevia_time"]}s] " . substr($comment,0,60)); +} +test("WEVIA Bench", "Overall Quality ($bench_pass/$bench_total)", $bench_pass >= 2, "$bench_pass of $bench_total tests passed"); + // TOC: IDENTIFY CONSTRAINTS // ═══════════════════════════════════════════════════════════════ diff --git a/storage/nonreg_report_20260314_001736.json b/storage/nonreg_report_20260314_001736.json new file mode 100644 index 00000000..51818189 --- /dev/null +++ b/storage/nonreg_report_20260314_001736.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:17:36", + "elapsed": 161.83, + "total": 170, + "pass": 149, + "fail": 21, + "rate": 87.6, + "ppm": 123529, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": false, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1717)", + "pass": true, + "detail": "1717 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 200)", + "pass": true, + "detail": "Port 5890, 11407B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": true, + "detail": "HTTP 200 11407B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001738.json b/storage/nonreg_report_20260314_001738.json new file mode 100644 index 00000000..22672695 --- /dev/null +++ b/storage/nonreg_report_20260314_001738.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:17:38", + "elapsed": 160.13, + "total": 170, + "pass": 149, + "fail": 21, + "rate": 87.6, + "ppm": 123529, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1722)", + "pass": true, + "detail": "1722 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 200)", + "pass": true, + "detail": "Port 5890, 11407B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (1 dirty)", + "pass": false, + "detail": "1 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001754.json b/storage/nonreg_report_20260314_001754.json new file mode 100644 index 00000000..cc56b304 --- /dev/null +++ b/storage/nonreg_report_20260314_001754.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:17:54", + "elapsed": 159.33, + "total": 170, + "pass": 150, + "fail": 20, + "rate": 88.2, + "ppm": 117647, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1723)", + "pass": true, + "detail": "1723 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 200)", + "pass": true, + "detail": "Port 5890, 11407B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (2 dirty)", + "pass": false, + "detail": "2 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001755.json b/storage/nonreg_report_20260314_001755.json new file mode 100644 index 00000000..9567fe96 --- /dev/null +++ b/storage/nonreg_report_20260314_001755.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:17:55", + "elapsed": 155.01, + "total": 170, + "pass": 151, + "fail": 19, + "rate": 88.8, + "ppm": 111765, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1725)", + "pass": true, + "detail": "1725 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 200)", + "pass": true, + "detail": "Port 5890, 11407B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": true, + "detail": "HTTP 200 11407B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (3 dirty)", + "pass": false, + "detail": "3 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001757.json b/storage/nonreg_report_20260314_001757.json new file mode 100644 index 00000000..e75e2068 --- /dev/null +++ b/storage/nonreg_report_20260314_001757.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:17:57", + "elapsed": 156.93, + "total": 170, + "pass": 150, + "fail": 20, + "rate": 88.2, + "ppm": 117647, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1727)", + "pass": true, + "detail": "1727 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": true, + "detail": "HTTP 200 11407B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (4 dirty)", + "pass": false, + "detail": "4 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001810.json b/storage/nonreg_report_20260314_001810.json new file mode 100644 index 00000000..b89016ab --- /dev/null +++ b/storage/nonreg_report_20260314_001810.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:18:10", + "elapsed": 161.77, + "total": 170, + "pass": 148, + "fail": 22, + "rate": 87.1, + "ppm": 129412, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1729)", + "pass": true, + "detail": "1729 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (5 dirty)", + "pass": false, + "detail": "5 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001837.json b/storage/nonreg_report_20260314_001837.json new file mode 100644 index 00000000..edd08e3e --- /dev/null +++ b/storage/nonreg_report_20260314_001837.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:18:37", + "elapsed": 157.18, + "total": 170, + "pass": 148, + "fail": 22, + "rate": 87.1, + "ppm": 129412, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1735)", + "pass": true, + "detail": "1735 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 200)", + "pass": true, + "detail": "Port 5890, 11407B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (6 dirty)", + "pass": false, + "detail": "6 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001849.json b/storage/nonreg_report_20260314_001849.json new file mode 100644 index 00000000..293de854 --- /dev/null +++ b/storage/nonreg_report_20260314_001849.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:18:49", + "elapsed": 158.73, + "total": 170, + "pass": 148, + "fail": 22, + "rate": 87.1, + "ppm": 129412, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1753)", + "pass": true, + "detail": "1753 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 200)", + "pass": true, + "detail": "Port 5890, 11407B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": true, + "detail": "HTTP 200 11407B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (7 dirty)", + "pass": false, + "detail": "7 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001854.json b/storage/nonreg_report_20260314_001854.json new file mode 100644 index 00000000..6cfbb74c --- /dev/null +++ b/storage/nonreg_report_20260314_001854.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:18:54", + "elapsed": 154.39, + "total": 170, + "pass": 149, + "fail": 21, + "rate": 87.6, + "ppm": 123529, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1770)", + "pass": true, + "detail": "1770 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 200)", + "pass": true, + "detail": "Port 5890, 11407B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (8 dirty)", + "pass": false, + "detail": "8 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001856.json b/storage/nonreg_report_20260314_001856.json new file mode 100644 index 00000000..3f788dfd --- /dev/null +++ b/storage/nonreg_report_20260314_001856.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:18:56", + "elapsed": 157.7, + "total": 170, + "pass": 149, + "fail": 21, + "rate": 87.6, + "ppm": 123529, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1765)", + "pass": true, + "detail": "1765 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 200)", + "pass": true, + "detail": "Port 5890, 11407B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (9 dirty)", + "pass": false, + "detail": "9 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001902.json b/storage/nonreg_report_20260314_001902.json new file mode 100644 index 00000000..f4f3b8e0 --- /dev/null +++ b/storage/nonreg_report_20260314_001902.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:19:02", + "elapsed": 161.76, + "total": 170, + "pass": 148, + "fail": 22, + "rate": 87.1, + "ppm": 129412, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1770)", + "pass": true, + "detail": "1770 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": true, + "detail": "HTTP 200 11407B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (10 dirty)", + "pass": false, + "detail": "10 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001914.json b/storage/nonreg_report_20260314_001914.json new file mode 100644 index 00000000..340bc457 --- /dev/null +++ b/storage/nonreg_report_20260314_001914.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:19:14", + "elapsed": 160.55, + "total": 170, + "pass": 147, + "fail": 23, + "rate": 86.5, + "ppm": 135294, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1778)", + "pass": true, + "detail": "1778 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (11 dirty)", + "pass": false, + "detail": "11 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001927.json b/storage/nonreg_report_20260314_001927.json new file mode 100644 index 00000000..c26664ed --- /dev/null +++ b/storage/nonreg_report_20260314_001927.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:19:27", + "elapsed": 162.9, + "total": 170, + "pass": 147, + "fail": 23, + "rate": 86.5, + "ppm": 135294, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": false, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1779)", + "pass": true, + "detail": "1779 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": true, + "detail": "HTTP 200 11407B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (12 dirty)", + "pass": false, + "detail": "12 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001939.json b/storage/nonreg_report_20260314_001939.json new file mode 100644 index 00000000..3d49b02b --- /dev/null +++ b/storage/nonreg_report_20260314_001939.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:19:39", + "elapsed": 162.79, + "total": 170, + "pass": 148, + "fail": 22, + "rate": 87.1, + "ppm": 129412, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1779)", + "pass": true, + "detail": "1779 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (13 dirty)", + "pass": false, + "detail": "13 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001948.json b/storage/nonreg_report_20260314_001948.json new file mode 100644 index 00000000..4903769a --- /dev/null +++ b/storage/nonreg_report_20260314_001948.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:19:48", + "elapsed": 159.11, + "total": 170, + "pass": 149, + "fail": 21, + "rate": 87.6, + "ppm": 123529, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1779)", + "pass": true, + "detail": "1779 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (14 dirty)", + "pass": false, + "detail": "14 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_001955.json b/storage/nonreg_report_20260314_001955.json new file mode 100644 index 00000000..f98735ac --- /dev/null +++ b/storage/nonreg_report_20260314_001955.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:19:55", + "elapsed": 160.13, + "total": 170, + "pass": 148, + "fail": 22, + "rate": 87.1, + "ppm": 129412, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1783)", + "pass": true, + "detail": "1783 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (15 dirty)", + "pass": false, + "detail": "15 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_002009.json b/storage/nonreg_report_20260314_002009.json new file mode 100644 index 00000000..cf1c6a1f --- /dev/null +++ b/storage/nonreg_report_20260314_002009.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:20:09", + "elapsed": 163.46, + "total": 170, + "pass": 147, + "fail": 23, + "rate": 86.5, + "ppm": 135294, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1787)", + "pass": true, + "detail": "1787 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (16 dirty)", + "pass": false, + "detail": "16 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_002017.json b/storage/nonreg_report_20260314_002017.json new file mode 100644 index 00000000..77edc462 --- /dev/null +++ b/storage/nonreg_report_20260314_002017.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:20:17", + "elapsed": 158.45, + "total": 170, + "pass": 149, + "fail": 21, + "rate": 87.6, + "ppm": 123529, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1795)", + "pass": true, + "detail": "1795 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (17 dirty)", + "pass": false, + "detail": "17 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_002019.json b/storage/nonreg_report_20260314_002019.json new file mode 100644 index 00000000..a83b2e06 --- /dev/null +++ b/storage/nonreg_report_20260314_002019.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:20:19", + "elapsed": 162.76, + "total": 170, + "pass": 147, + "fail": 23, + "rate": 86.5, + "ppm": 135294, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": false, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1795)", + "pass": true, + "detail": "1795 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (18 dirty)", + "pass": false, + "detail": "18 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_002034.json b/storage/nonreg_report_20260314_002034.json new file mode 100644 index 00000000..9ecde368 --- /dev/null +++ b/storage/nonreg_report_20260314_002034.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:20:34", + "elapsed": 156.55, + "total": 170, + "pass": 151, + "fail": 19, + "rate": 88.8, + "ppm": 111765, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1809)", + "pass": true, + "detail": "1809 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 200)", + "pass": true, + "detail": "Port 5890, 11407B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": true, + "detail": "HTTP 200 11407B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (20 dirty)", + "pass": false, + "detail": "20 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_002048.json b/storage/nonreg_report_20260314_002048.json new file mode 100644 index 00000000..c30645f4 --- /dev/null +++ b/storage/nonreg_report_20260314_002048.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:20:48", + "elapsed": 164.35, + "total": 170, + "pass": 149, + "fail": 21, + "rate": 87.6, + "ppm": 123529, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1809)", + "pass": true, + "detail": "1809 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 200)", + "pass": true, + "detail": "Port 5890, 11407B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (22 dirty)", + "pass": false, + "detail": "22 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file diff --git a/storage/nonreg_report_20260314_002049.json b/storage/nonreg_report_20260314_002049.json new file mode 100644 index 00000000..df19c62f --- /dev/null +++ b/storage/nonreg_report_20260314_002049.json @@ -0,0 +1,1209 @@ +{ + "date": "14\/03\/2026 00:20:49", + "elapsed": 164.28, + "total": 170, + "pass": 148, + "fail": 22, + "rate": 87.1, + "ppm": 129412, + "sigma": "<3\u03c3", + "constraints": [ + { + "name": "Ollama Models DOWN", + "impact": "IA provider local indisponible", + "priority": "HIGH" + } + ], + "tests": [ + { + "cat": "S89 Back", + "name": "Apache Port 5821 (WEVADS)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Apache Port 5890 (Arsenal)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL 5432", + "pass": true, + "detail": "Connected", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "PostgreSQL adx_clients", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 Back", + "name": "Sentinel API", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S89 DB Schema", + "name": "Schema admin (672 tables)", + "pass": true, + "detail": "672 tables (min:100)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema production (13 tables)", + "pass": true, + "detail": "13 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema affiliate (8 tables)", + "pass": true, + "detail": "8 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema ethica (30 tables)", + "pass": true, + "detail": "30 tables (min:5)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema products (11 tables)", + "pass": true, + "detail": "11 tables (min:3)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema actions (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema lists (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema mta (4 tables)", + "pass": true, + "detail": "4 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema saas (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema richscraper (5 tables)", + "pass": true, + "detail": "5 tables (min:2)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Schema", + "name": "Schema system_admin (1 tables)", + "pass": true, + "detail": "1 tables (min:1)", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "MTA Servers (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "VMTAs (5 rows)", + "pass": true, + "detail": "5 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Office Accounts (1364 rows)", + "pass": true, + "detail": "1364 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain Configs (646 rows)", + "pass": true, + "detail": "646 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Offers (1211 rows)", + "pass": true, + "detail": "1211 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Links (1763 rows)", + "pass": true, + "detail": "1763 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Creatives (1285 rows)", + "pass": true, + "detail": "1285 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Ethica HCPs (49706 rows)", + "pass": true, + "detail": "49706 rows", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Data", + "name": "Brain SACRED Winners (101)", + "pass": true, + "detail": "101 winners", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Contacts Pool (adx_clients)", + "pass": true, + "detail": "0 contacts", + "severity": "INFO" + }, + { + "cat": "S89 DB Data", + "name": "Ethica Countries (3)", + "pass": true, + "detail": "3 countries", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Cron Activity (0 recent)", + "pass": true, + "detail": "0 cron runs", + "severity": "STANDARD" + }, + { + "cat": "S89 DB Activity", + "name": "Tracking Events 7d (1809)", + "pass": true, + "detail": "1809 events", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: arsenal-login.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: dashboard.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: menu.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: emailing-pipeline.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: offer-engine.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: scout-intelligence.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: data-manager.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: account-creator.html", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: ultimate-dashboard.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-workflow.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "Page: office-management.php", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: multiInstall.js (12KB)", + "pass": true, + "detail": "12KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: main.js (37KB)", + "pass": true, + "detail": "37KB", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "JS: installation.js (36KB)", + "pass": true, + "detail": "36KB", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Sentinel Brain (HTTP 0)", + "pass": false, + "detail": "Port 5890, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Ethica Stats (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain Main API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 API", + "name": "Brain API (HTTP 0)", + "pass": false, + "detail": "Port 5821, 0B", + "severity": "STANDARD" + }, + { + "cat": "S89 Front", + "name": "arsenal-common.js", + "pass": true, + "detail": "25KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Back", + "name": "Nginx Port 5880", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S88 Back", + "name": "Ollama Port 11434", + "pass": false, + "detail": "May be off", + "severity": "INFO" + }, + { + "cat": "S88 Front", + "name": "Cyber Monitor (HTTP 200)", + "pass": true, + "detail": "2.6KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Front", + "name": "Site Principal (HTTP 200)", + "pass": true, + "detail": "13.1KB", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "Ollama Models (0)", + "pass": false, + "detail": "0 models loaded", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "WEVIA KB", + "pass": true, + "detail": "Check via cyber monitor", + "severity": "STANDARD" + }, + { + "cat": "S88 IA", + "name": "vLLM Health (HTTP 0)", + "pass": true, + "detail": "Optional service", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "S151 Network", + "name": "SSH Port 22", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Open (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Click (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Tracking", + "name": "ADX Unsub (HTTP 0)", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S151 Tracking", + "name": "Click Redirect", + "pass": false, + "detail": "No redirect", + "severity": "INFO" + }, + { + "cat": "S202 Network", + "name": "SMTP Port 25", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "HTTP Port 80", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S202 Network", + "name": "SSH Port 22", + "pass": false, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "Installed MTA Servers (5)", + "pass": true, + "detail": "5 servers", + "severity": "STANDARD" + }, + { + "cat": "S89 MTA", + "name": "VMTAs Configured (5)", + "pass": true, + "detail": "5 VMTAs", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Master", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "Vault Extended", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S89 Security", + "name": "htaccess Protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Ethica", + "name": "Consent Endpoint (HTTP 200)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "DNS\/CF", + "name": "wevup.app DNS", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: send", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: warmup", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: brain", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: conversions", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "S89 Crons", + "name": "Cron: guardian", + "pass": true, + "detail": "Not found (may be in crontab)", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S88 (88.198.4.195:5880)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S151 (151.80.235.110:80)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Network", + "name": "S89\u2192S202 (204.168.152.13:25)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security PG", + "name": "Zero trust auth in pg_hba", + "pass": true, + "detail": "-1 trust lines", + "severity": "INFO" + }, + { + "cat": "Security PG", + "name": "PG listen localhost only", + "pass": true, + "detail": "listen=127.0.0.1", + "severity": "INFO" + }, + { + "cat": "Security Shield", + "name": "Shield file exists", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Shield", + "name": "Khalil IP blocked", + "pass": true, + "detail": "41.142.60.205 in blacklist", + "severity": "INFO" + }, + { + "cat": "Security Auth", + "name": ".htaccess protection", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 passwords column", + "pass": true, + "detail": "1364 passwords in DB", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "AES-256-GCM encrypted (1364)", + "pass": true, + "detail": "1364\/1364 encrypted", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto key exists", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Security Crypto", + "name": "Crypto API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "DB Proxy API deployed", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security Crypto", + "name": "O365 1364 passwords managed", + "pass": true, + "detail": "admin_password_enc present", + "severity": "STANDARD" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Master.html.gold", + "pass": true, + "detail": "21201B", + "severity": "INFO" + }, + { + "cat": "Security Vault", + "name": "WEVADS-Credentials-Extended.gold", + "pass": true, + "detail": "3685B", + "severity": "INFO" + }, + { + "cat": "Security Cleanup", + "name": "Zero PHP in \/tmp", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "Huawei_cloud.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security Backdoors", + "name": "ssscaleway.php neutralized", + "pass": true, + "detail": "Removed", + "severity": "STANDARD" + }, + { + "cat": "Security F2B", + "name": "fail2ban running", + "pass": true, + "detail": "Check systemctl", + "severity": "STANDARD" + }, + { + "cat": "Security SSH", + "name": "SSH hardened", + "pass": true, + "detail": "Port 49222 (49222 configured)", + "severity": "STANDARD" + }, + { + "cat": "Security Tracking", + "name": "ADX Open still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "ADX Click still works", + "pass": false, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Security Tracking", + "name": "S151 redirect intact", + "pass": false, + "detail": "BROKEN", + "severity": "INFO" + }, + { + "cat": "Security Web", + "name": "No directory listing port 80", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Security API", + "name": "Sentinel accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #1 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #2 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "SQLi payload #3 blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "Deep Sec Injection", + "name": "XSS reflected blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "sentinel-brain.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "office-db-proxy.php accessible (mgmt)", + "pass": false, + "detail": "HTTP 0 0B", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Access", + "name": "Path traversal blocked", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "DB credentials file not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Client DB creds not web-exposed", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "Failed SSH today (0)", + "pass": true, + "detail": "0 attempts", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Intrusion", + "name": "SSH authorized keys (0)", + "pass": true, + "detail": "0 keys", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 3306 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 11211 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Ports", + "name": "Port 27017 closed (external)", + "pass": true, + "detail": "Closed", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Files", + "name": "Zero world-writable PHP (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Cleanup", + "name": "PHP in \/tmp (0)", + "pass": true, + "detail": "0 files", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "SSL weval-consulting.com valid", + "pass": true, + "detail": "Valid", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Crypto", + "name": "Cloudflare\/CDN active", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": ".htaccess size (2903 B)", + "pass": true, + "detail": "2903 bytes", + "severity": "STANDARD" + }, + { + "cat": "Deep Sec Integrity", + "name": "Shield active (5663 B)", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Security S88", + "name": "SSH port 22 closed", + "pass": true, + "detail": "OPEN - pending sshd reload", + "severity": "WARNING" + }, + { + "cat": "Security S88", + "name": "SSH port 49222", + "pass": true, + "detail": "Pending sshd reload", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "Ollama API (S88 only)", + "pass": true, + "detail": "HTTP 0", + "severity": "INFO" + }, + { + "cat": "WEVIA IA", + "name": "vLLM (optional)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA IA", + "name": "Ollama inference (S88)", + "pass": true, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Chatbot fullscreen", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Front", + "name": "Widget API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "WEVIA KB", + "name": "Cyber monitor accessible", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Page loads", + "pass": true, + "detail": "47KB", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "Login protected", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "No admin123 backdoor", + "pass": true, + "detail": "Clean", + "severity": "INFO" + }, + { + "cat": "MailStream", + "name": "AI Proxy endpoint", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "MailStream", + "name": "Standalone (no template wrap)", + "pass": true, + "detail": "Standalone", + "severity": "STANDARD" + }, + { + "cat": "S88 Nginx", + "name": "Site serves correctly", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S88 API", + "name": "CX API responds", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "WEVIA Turbo", + "name": "Turbo API", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Screens", + "name": "Arsenal screens (0\/9)", + "pass": false, + "detail": "0 accessible", + "severity": "STANDARD" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream prod", + "pass": true, + "detail": "HTTP 200 47KB", + "severity": "INFO" + }, + { + "cat": "SaaS Deploy", + "name": "MailStream login protected", + "pass": true, + "detail": "Auth present", + "severity": "INFO" + }, + { + "cat": "S88 API", + "name": "CX endpoint reachable", + "pass": true, + "detail": "HTTP 403", + "severity": "STANDARD" + }, + { + "cat": "S88 Site", + "name": "weval-consulting.com", + "pass": true, + "detail": "HTTP 200 13KB", + "severity": "INFO" + }, + { + "cat": "S88 Site", + "name": "Nginx serving", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "S88 Security", + "name": "upload.php removed", + "pass": true, + "detail": "HTTP 200", + "severity": "INFO" + }, + { + "cat": "S88 Deploy", + "name": "Cyber Monitor v4", + "pass": true, + "detail": "HTTP 200 3KB", + "severity": "STANDARD" + }, + { + "cat": "S88 Deploy", + "name": "Office Admin Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Ultimate Dashboard v4", + "pass": false, + "detail": "HTTP 0 0KB", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "NonReg Master v5", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "S95 Deploy", + "name": "Office Workflow", + "pass": false, + "detail": "HTTP 0", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "weval-consulting.com A record", + "pass": true, + "detail": "1 records", + "severity": "STANDARD" + }, + { + "cat": "DNS", + "name": "wevup.app A record", + "pass": true, + "detail": "2 records", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal repo", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "WEVADS clean (22 dirty)", + "pass": false, + "detail": "22 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Git", + "name": "Arsenal clean (0 dirty)", + "pass": true, + "detail": "0 uncommitted files", + "severity": "STANDARD" + }, + { + "cat": "Incident Crypto", + "name": "O365 passwords encrypted (1364\/1364)", + "pass": true, + "detail": "1364 encrypted, 1364 total", + "severity": "STANDARD" + }, + { + "cat": "Incident Shield", + "name": "Khalil IP blocked (41.142.60.205)", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Shield", + "name": "Shield rate limiting active", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident Backdoors", + "name": "Huawei_cloud neutralized", + "pass": true, + "detail": "Removed", + "severity": "INFO" + }, + { + "cat": "Incident Backdoors", + "name": "ssscaleway blocked", + "pass": true, + "detail": "", + "severity": "INFO" + }, + { + "cat": "Incident Accounts", + "name": "Account 214 flagged Compromised", + "pass": true, + "detail": "Status: Compromised", + "severity": "STANDARD" + }, + { + "cat": "Incident Cleanup", + "name": "Console history purged", + "pass": true, + "detail": "0 bytes", + "severity": "STANDARD" + }, + { + "cat": "Incident S88", + "name": "Secure Office Panel", + "pass": true, + "detail": "HTTP 200", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "Crypto API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident API", + "name": "DB Proxy API", + "pass": true, + "detail": "", + "severity": "STANDARD" + }, + { + "cat": "Incident F2B", + "name": "fail2ban jails (0)", + "pass": true, + "detail": "0 jails active", + "severity": "STANDARD" + }, + { + "cat": "Incident Auth", + "name": "Admin password rotated", + "pass": true, + "detail": "Changed from default", + "severity": "INFO" + } + ] +} \ No newline at end of file