CalvinBackup/mvt
1
0
Fork 0
mirror of https://github.com/mvt-project/mvt.git synced 2026-05-19 06:58:16 +02:00
Code Issues Packages Projects Releases Wiki Activity

Adds timeline support to TCC iOS module

Browse Source
This commit is contained in:
tek
2021-12-16 13:57:44 +01:00
parent d9b29b3739
commit cdd90332f7
1 changed files with 13 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
mvt/ios/modules/mixed/tcc.py
+13
View File
@@ -53,6 +53,19 @@ class TCC(IOSExtraction):
output_folder=output_folder, fast_mode=fast_mode,
log=log, results=results)
def serialize(self, record):
if "last_modified" in record:
if "allowed_value" in record:
msg = f"Access to {record['service']} by {record['client']} {record['allowed_value']}"
else:
msg = f"Access to {record['service']} by {record['client']} {record['auth_value']}"
return {
"timestamp": record["last_modified"],
"module": self.__class__.__name__,
"event": "AccessRequest",
"data": msg
}
def process_db(self, file_path):
conn = sqlite3.connect(file_path)
cur = conn.cursor()