Merge branch 'main' of https://github.com/berangerthomas/ShadowLog

yminanc · yminanc · commit 7ee469bc650b · 2025-03-10T21:35:58.000+01:00
diff --git a/sections/analyze.py b/sections/analyze.py
@@ -1,6 +1,4 @@
-import pandas as pd
 import polars as pl
-import plotly.express as px
 import streamlit as st
 
 if "parsed_df" not in st.session_state:
@@ -35,62 +33,114 @@
         # ---- FILTRE DATE ----
         with col1:
             st.markdown("### 📅 Date")
-            start_date = st.date_input("Date début", min_date)
-            end_date = st.date_input("Date fin", max_date)
+            start_date = st.date_input("Start Date", min_date)
+            end_date = st.date_input("End Date", max_date)
 
         # ---- FILTRE action----
         with col2:
             st.markdown("### 🔄 Action")
             if "action" in data.columns:
-                unique_action = sorted(data["action"].unique().cast(pl.Utf8).to_list())  # S'assurer du bon format
-                selected_action= st.selectbox("Sélectionnez un action", ["Tous"] + unique_action)
+                unique_action = sorted(
+                    data["action"].unique().cast(pl.Utf8).to_list()
+                )  # S'assurer du bon format
+                selected_action = st.selectbox(
+                    "Select an action", ["All"] + unique_action
+                )
             else:
-                selected_action= "Tous"
-                st.warning("Colonne 'action' non trouvée.")
+                selected_action = "All"
+                st.warning("Column 'action' not found.")
 
         # ---- FILTRE portdst ----
         with col3:
             st.markdown("### 🔢 Port")
             if "portdst" in data.columns:
-                min_port, max_port = int(data["portdst"].min()), int(data["portdst"].max())
-                selected_port = st.slider("Sélectionnez un port destination", min_port, max_port, (min_port, max_port))
+                min_port, max_port = (
+                    int(data["portdst"].min()),
+                    int(data["portdst"].max()),
+                )
+
+                # Initialize port range in session state if not present
+                if "port_range" not in st.session_state:
+                    st.session_state.port_range = (min_port, max_port)
+
+                # Quick port range selection buttons
+                col_ports1, col_ports2, col_ports3 = st.columns(3)
+
+                # Define button handlers to update session state
+                def set_well_known():
+                    st.session_state.port_range = (0, 1023)
+
+                def set_registered():
+                    st.session_state.port_range = (1024, 49151)
+
+                def set_dynamic():
+                    st.session_state.port_range = (49152, 65535)
+
+                with col_ports1:
+                    st.button("Well-known (0-1023)", on_click=set_well_known)
+
+                with col_ports2:
+                    st.button("Registered (1024-49151)", on_click=set_registered)
+
+                with col_ports3:
+                    st.button("Dynamic (49152-65535)", on_click=set_dynamic)
+
+                # Custom range slider that uses and updates the session state
+                selected_port = st.slider(
+                    "Custom port range",
+                    min_port,
+                    max_port,
+                    value=st.session_state.port_range,
+                    key="port_slider",
+                )
+
+                # Update port_range when slider changes
+                st.session_state.port_range = selected_port
             else:
-                min_port, max_port = 0, 600000  # Valeurs par défaut si la colonne est absente
+                min_port, max_port = 0, 65535  # Standard TCP/IP port range
                 selected_port = (min_port, max_port)
-                st.warning("Colonne 'portdst' non trouvée, valeurs par défaut appliquées.")
+                st.warning("Column 'portdst' not found, default values applied.")
 
         # Vérification des dates sélectionnées
         if start_date > end_date:
-            st.error("La date de début ne peut pas être postérieure à la date de fin.")
+            st.error("The start date cannot be later than the end date.")
         else:
             # Conversion des dates en datetime
-            start_datetime = pl.datetime(start_date.year, start_date.month, start_date.day)
-            end_datetime = pl.datetime(end_date.year, end_date.month, end_date.day, 23, 59, 59)
+            start_datetime = pl.datetime(
+                start_date.year, start_date.month, start_date.day
+            )
+            end_datetime = pl.datetime(
+                end_date.year, end_date.month, end_date.day, 23, 59, 59
+            )
 
             # ---- APPLICATION DES FILTRES ----
             filtered_data = data.filter(
-                (pl.col("timestamp") >= start_datetime) & (pl.col("timestamp") <= end_datetime)
+                (pl.col("timestamp") >= start_datetime)
+                & (pl.col("timestamp") <= end_datetime)
             )
 
             # Correction du filtrage par action(forcer conversion Utf8)
-            if "action" in data.columns and selected_action!= "Tous":
-                filtered_data = filtered_data.filter(pl.col("action").cast(pl.Utf8) == selected_action)
+            if "action" in data.columns and selected_action != "All":
+                filtered_data = filtered_data.filter(
+                    pl.col("action").cast(pl.Utf8) == selected_action
+                )
 
             # Filtrer par portdst en prenant en compte min/max
             if "portdst" in data.columns:
                 filtered_data = filtered_data.filter(
-                    (pl.col("portdst").cast(pl.Int64) >= selected_port[0]) & 
-                    (pl.col("portdst").cast(pl.Int64) <= selected_port[1])
+                    (pl.col("portdst").cast(pl.Int64) >= selected_port[0])
+                    & (pl.col("portdst").cast(pl.Int64) <= selected_port[1])
                 )
 
             # Affichage des données filtrées
-            st.write("### 🔍 Data filtred :")
+            st.write(f"### 🔍 Data filtered : {filtered_data.shape[0]} entries")
             st.dataframe(filtered_data)
 
     else:
-        st.warning("La colonne 'timestamp' n'existe pas ou n'est pas au format datetime.")
+        st.warning(
+            "The 'timestamp' column does not exist or is not in datetime format."
+        )
 
 # Onglet Sankey
 with tab2:
     st.subheader("Sankey Diagram")
-    
diff --git a/sections/upload.py b/sections/upload.py
@@ -8,7 +8,50 @@
 st.title("ShadowLog - Log File Analyzer")
 st.write("Upload a log file to analyze with the following format :")
 st.write(
-    "timestamp;ipsrc;ipdst;protocole;portsrc;portdst;rule;action;interface;unknown;fw"
+    """
+    <style>
+        table, th, td {
+            border: 1px solid black;
+            border-collapse: collapse;
+            text-align: center;
+        }
+    </style>
+    <table>
+        <thead>
+            <tr>
+                <th>Column name</th>
+                <td>timestamp</td>
+                <td>ipsrc</td>
+                <td>ipdst</td>
+                <td>protocole</td>
+                <td>portsrc</td>
+                <td>portdst</td>
+                <td>rule</td>
+                <td>action</td>
+                <td>interface</td>
+                <td>unknown</td>
+                <td>fw</td>
+            </tr>
+        </thead>
+        <tbody>
+            <tr>
+                <th>Format</th>
+                <td>YYYY-MM-DD HH:MM:SS</td>
+                <td>str</td>
+                <td>str</td>
+                <td>str</td>
+                <td>int</td>
+                <td>int</td>
+                <td>int</td>
+                <td>str</td>
+                <td>str</td>
+                <td>str</td>
+                <td>int</td>
+            </tr>
+        </tbody>
+    </table>
+    """,
+    unsafe_allow_html=True,
 )
 
 uploaded_file = st.file_uploader("Choose a log file")
