HelloSecurity · juyeon0714 · May 28, 2019
diff --git a/CyberInvasion/.classpath b/CyberInvasion/.classpath
@@ -2,5 +2,7 @@
 <classpath>
 	<classpathentry kind="con" path="org.eclipse.jdt.launching.JRE_CONTAINER/org.eclipse.jdt.internal.debug.ui.launcher.StandardVMType/JavaSE-1.8"/>
 	<classpathentry kind="src" path="src"/>
+	<classpathentry kind="con" path="org.eclipse.jst.j2ee.internal.web.container"/>
+	<classpathentry kind="con" path="org.eclipse.jst.j2ee.internal.module.container"/>
 	<classpathentry kind="output" path="bin"/>
 </classpath>
diff --git a/CyberInvasion/.project b/CyberInvasion/.project
@@ -5,13 +5,27 @@
 	<projects>
 	</projects>
 	<buildSpec>
+		<buildCommand>
+			<name>org.eclipse.wst.common.project.facet.core.builder</name>
+			<arguments>
+			</arguments>
+		</buildCommand>
 		<buildCommand>
 			<name>org.eclipse.jdt.core.javabuilder</name>
 			<arguments>
 			</arguments>
 		</buildCommand>
+		<buildCommand>
+			<name>org.eclipse.wst.validation.validationbuilder</name>
+			<arguments>
+			</arguments>
+		</buildCommand>
 	</buildSpec>
 	<natures>
+		<nature>org.eclipse.jem.workbench.JavaEMFNature</nature>
+		<nature>org.eclipse.wst.common.modulecore.ModuleCoreNature</nature>
 		<nature>org.eclipse.jdt.core.javanature</nature>
+		<nature>org.eclipse.wst.common.project.facet.core.nature</nature>
+		<nature>org.eclipse.wst.jsdt.core.jsNature</nature>
 	</natures>
 </projectDescription>
diff --git a/CyberInvasion/.settings/.jsdtscope b/CyberInvasion/.settings/.jsdtscope
@@ -0,0 +1,12 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<classpath>
+	<classpathentry excluding="**/bower_components/*|**/node_modules/*|**/*.min.js" kind="src" path="WebContent"/>
+	<classpathentry kind="con" path="org.eclipse.wst.jsdt.launching.JRE_CONTAINER"/>
+	<classpathentry kind="con" path="org.eclipse.wst.jsdt.launching.WebProject">
+		<attributes>
+			<attribute name="hide" value="true"/>
+		</attributes>
+	</classpathentry>
+	<classpathentry kind="con" path="org.eclipse.wst.jsdt.launching.baseBrowserLibrary"/>
+	<classpathentry kind="output" path=""/>
+</classpath>
diff --git a/CyberInvasion/.settings/org.eclipse.wst.common.component b/CyberInvasion/.settings/org.eclipse.wst.common.component
@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8"?><project-modules id="moduleCoreId" project-version="1.5.0">
+    <wb-module deploy-name="CyberInvasion">
+        <wb-resource deploy-path="/" source-path="/WebContent" tag="defaultRootSource"/>
+        <wb-resource deploy-path="/WEB-INF/classes" source-path="/src"/>
+        <property name="context-root" value="CyberInvasion"/>
+        <property name="java-output-path" value="/CyberInvasion/bin"/>
+    </wb-module>
+</project-modules>
diff --git a/CyberInvasion/.settings/org.eclipse.wst.common.project.facet.core.xml b/CyberInvasion/.settings/org.eclipse.wst.common.project.facet.core.xml
@@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faceted-project>
+  <installed facet="java" version="1.8"/>
+  <installed facet="jst.web" version="3.0"/>
+  <installed facet="wst.jsdt.web" version="1.0"/>
+</faceted-project>
diff --git a/CyberInvasion/.settings/org.eclipse.wst.jsdt.ui.superType.container b/CyberInvasion/.settings/org.eclipse.wst.jsdt.ui.superType.container
@@ -0,0 +1 @@
+org.eclipse.wst.jsdt.launching.baseBrowserLibrary
diff --git a/CyberInvasion/.settings/org.eclipse.wst.jsdt.ui.superType.name b/CyberInvasion/.settings/org.eclipse.wst.jsdt.ui.superType.name
@@ -0,0 +1 @@
+Window
diff --git a/CyberInvasion/WebContent/ScenarioAction.jsp b/CyberInvasion/WebContent/ScenarioAction.jsp
@@ -0,0 +1,168 @@
+<%@ page language="java" contentType="text/html; charset=UTF-8"
+    pageEncoding="utf-8"%>
+<%@ page import="user.UserDAO" %>
+<%@ page import="asset.AssetDTO" %>
+<%@ page import="asset.AssetDAO" %>
+<%@ page import="scenario.ScenarioDAO" %>
+<%@ page import="scenario.ScenarioItem" %>
+<%@ page import="java.io.PrintWriter" %>
+<%@ page import="java.sql.*,java.util.*" %>
+
+<!-- DAO 호출 -->
+<jsp:useBean id="Item" class="scenario.ScenarioItem" scope="page"/>
+<%
+   request.setCharacterEncoding("UTF-8");
+%>
+
+
+<!DOCTYPE html >
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+<title>취약점 진단 프로그램</title>
+</head>
+<body>
+<%
+   // 세션의 로그인여부 확인
+   String userID=null;
+   if(session.getAttribute("userID")!=null){
+      userID=(String)session.getAttribute("userID");
+   }
+   if(userID==null){ //로그인 안 됐을 경우
+      PrintWriter script=response.getWriter();
+      script.println("<script>");
+      script.println("alert('로그인을 해주세요.')");
+      script.println("location.href='login.jsp'");
+      script.println("</script>");
+      script.close();
+      return;
+   }
+
+
+
+   int id=0;
+   String scenario_name=null;
+   String scenario_condition=null;
+   String asset_name=null;
+   int infringement_level=0;
+   String scenario_sum=null;
+   String scenario_content=null;
+
+  if(request.getParameter("id")!=null){
+   //  asset_name=request.getParameter("asset_name");
+     try{
+        id=Integer.parseInt(request.getParameter("id"));
+     }catch(Exception e){
+        System.out.println("아이디 오류");
+  }  }
+  if(request.getParameter("scenario_name")!=null){
+     try{
+    	 scenario_name=request.getParameter("scenario_name");
+     }catch(Exception e){
+        System.out.println("scenario_name 오류");
+  }}
+  if(request.getParameter("scenario_condition")!=null){
+	     try{
+	    	 scenario_condition=request.getParameter("scenario_condition");
+	     }catch(Exception e){
+	        System.out.println("scenario_condition 오류");
+	  }}
+
+  if(request.getParameter("asset_name")!=null){
+     try{
+    	 asset_name=request.getParameter("asset_name");
+     }catch(Exception e){
+        System.out.println(" asset_name 오류");
+  }}
+  if(request.getParameter("infringement_level")!=null){
+	try{
+		infringement_level=Integer.parseInt(request.getParameter("infringement_level"));
+  }catch(Exception e){
+      System.out.println("아이디 오류");
+} }
+  if(request.getParameter("scenario_sum")!=null){
+	     try{
+	    	 scenario_sum=request.getParameter("scenario_sum");
+	     }catch(Exception e){
+	        System.out.println("scenario_sum 오류");
+	  }}
+  if(request.getParameter("scenario_content")!=null){
+	     try{
+	    	 scenario_content=request.getParameter("scenario_content");
+	     }catch(Exception e){
+	        System.out.println("scenario_content 오류");
+	  }}
+
+
+  if(id==0){
+      PrintWriter script=response.getWriter();
+      script.println("<script>");
+      script.println("alert('id==0')");
+      script.println("history.back()");
+      script.println("</script>");
+      script.close();
+      return;
+   }
+  if(scenario_name==null){
+      PrintWriter script=response.getWriter();
+      script.println("<script>");
+      script.println("alert('scenario_name==null')");
+      script.println("history.back()");
+      script.println("</script>");
+      script.close();
+      return;
+   }
+
+  if(asset_name==null){
+      PrintWriter script=response.getWriter();
+      script.println("<script>");
+      script.println("alert('asset_name==null')");
+      script.println("history.back()");
+      script.println("</script>");
+      script.close();
+      return;
+   }
+
+  if(infringement_level==0){
+      PrintWriter script=response.getWriter();
+      script.println("<script>");
+      script.println("alert('ainfringement_level==0')");
+      script.println("history.back()");
+      script.println("</script>");
+      script.close();
+      return;
+   }
+
+  if(id==0||scenario_name==null||scenario_condition==null||asset_name==null||infringement_level==0){
+               PrintWriter script=response.getWriter();
+               script.println("<script>");
+               script.println("alert('입력이 안 된 사항이 있습니다.')");
+               script.println("history.back()");
+               script.println("</script>");
+               script.close();
+               return;
+            }
+
+  //모든 입력사항을 다 입력한 경우 
+               ScenarioDAO scenarioDAO = new ScenarioDAO (); //assetDAO 객체에 AssetDAO 저장
+               //result에 assetDAO에 있는 write함수 값을 저장
+               int result = scenarioDAO.ScenarioWrite(new ScenarioItem(id, scenario_name, infringement_level, asset_name, scenario_condition, scenario_sum, scenario_content));
+
+               if(result==-1){
+                  PrintWriter script=response.getWriter();
+                  script.println("<script>");
+                  script.println("alert('자산리스트 추가에 실패했습니다.')");
+                  script.println("</script>");
+
+               }else{ //자산 추가 성공적으로 이루어진 경우
+                  PrintWriter script=response.getWriter();
+                  script.println("<script>");
+                  script.println("location.href='scenario.jsp'");
+                  script.println("</script>");
+               }
+
+%>
+
+
+</body>
+</html> 
diff --git a/CyberInvasion/WebContent/asset_eva.jsp b/CyberInvasion/WebContent/asset_eva.jsp
@@ -36,7 +36,11 @@
          <li><a href="main.jsp">메인</a></li>
          <li><a href="asset_list.jsp">자산 리스트</a></li>
          <li><a href="asset_eva.jsp">자산 평가</a></li>
-         <li><a href="sec_eva.jsp">보안성 평가 결과</a></li>   
+         <li><a href="sec_eva.jsp">보안성 평가 결과</a></li> 
+         <li><a href="emergency_case.jsp">비상사건 관리</a></li>   
+         <li><a href="scenario.jsp">시나리오 리스트</a></li>
+         <li><a href="scenario_eva.jsp">시나리오 평가</a></li>
+         <li><a href="breach_corr.jsp">침해대응 훈련</a></li>     
       </ul>
       <ul class="nav navbar-nav navbar-right">
          <li class="dropdown">
@@ -80,10 +84,10 @@ request.setAttribute("str", asset_name);
 Connection Conn=null;
 
 try {
-	String dbURL ="jdbc:mysql://127.0.0.1:3306/ics3?serverTimezone=UTC";
+	String dbURL ="jdbc:mysql://127.0.0.1:3306/sys?serverTimezone=UTC";
     String dbID = "root";
-    String dbPassword = "0805";
-    Class.forName("com.mysql.cj.jdbc.Driver");
+    String dbPassword = "password";
+	Class.forName("com.mysql.cj.jdbc.Driver");
     Conn= DriverManager.getConnection(dbURL, dbID, dbPassword);
     String sql = "SELECT * from AssetTable where asset_name = '" +asset_name+ "'";
     PreparedStatement pstmt = Conn.prepareStatement(sql);

diff --git a/CyberInvasion/WebContent/asset_list.jsp b/CyberInvasion/WebContent/asset_list.jsp
@@ -27,7 +27,7 @@
    String protocol=request.getParameter("protocol");
    String os_type=request.getParameter("os_type");
    String usages=request.getParameter("usages");
-   String db_list="select * from AssetTable";
+   String db_list="select * from assettable";
 
    int num=1;
  %>
@@ -94,6 +94,10 @@
          }
        </script>
          <li><a href="sec_eva.jsp">보안성 평가 결과</a></li>   
+                  <li><a href="emergency_case.jsp">비상사건 관리</a></li>   
+         <li ><a href="scenario.jsp">시나리오 리스트</a></li>
+         <li><a href="scenario_eva.jsp">시나리오 평가</a></li>
+         <li><a href="breach_corr.jsp">침해대응 훈련</a></li>   
       </ul>
       <% //로그인 여부에 따라 달라지는 탭 구현 위한 코드
          if(userID==null){
@@ -130,10 +134,10 @@
    </nav> 
           <% //DB연동을 위함
                        try {
-                    	   String dbURL ="jdbc:mysql://127.0.0.1:3306/ics3?serverTimezone=UTC";
-                           String dbID = "root";
-                           String dbPassword = "0805";
-                           Class.forName("com.mysql.cj.jdbc.Driver");
+               			String dbURL ="jdbc:mysql://127.0.0.1:3306/sys?serverTimezone=UTC";
+            	        String dbID = "root";
+            	        String dbPassword = "password";
+            			Class.forName("com.mysql.cj.jdbc.Driver");
                            Conn= DriverManager.getConnection(dbURL, dbID, dbPassword);
                           stmt=Conn.createStatement();
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		org.eclipse.wst.jsdt.launching.baseBrowserLibrary