deduplication improvements for OAM Organizations

Author: caffix

engine/plugins/enrich/tls_cert.go

@@ -371,22 +371,13 @@ func (te *tlsexpand) storeContact(e *et.Event, c *tlsContact, asset *dbt.Entity,
 			}
 		}
 	}
-	if len(ct.Organization) > 0 && ct.Organization[0] != "" && m.IsMatch(string(oam.Organization)) {
-		if a, err := support.CreateOrgAsset(e.Session, &org.Organization{
+	if m.IsMatch(string(oam.Organization)) && len(ct.Organization) > 0 && ct.Organization[0] != "" {
+		o := &org.Organization{
 			ID:   uuid.New().String(),
 			Name: ct.Organization[0],
-		}, src); err == nil && a != nil {
-			if edge, err := e.Session.Cache().CreateEdge(&dbt.Edge{
-				Relation:   &general.SimpleRelation{Name: "organization"},
-				FromEntity: cr,
-				ToEntity:   a,
-			}); err == nil && edge != nil {
-				_, _ = e.Session.Cache().CreateEdgeProperty(edge, &general.SourceProperty{
-					Source:     src.Name,
-					Confidence: src.Confidence,
-				})
-			}
 		}
+
+		_, _ = support.CreateOrgAsset(e.Session, cr, &general.SimpleRelation{Name: "organization"}, o, src)
 	}
 	if len(ct.OrganizationalUnit) > 0 && ct.OrganizationalUnit[0] != "" && m.IsMatch(string(oam.URL)) {
 		if u := support.ExtractURLFromString(ct.OrganizationalUnit[0]); u != nil {

engine/plugins/rdap/plugin.go

@@ -243,14 +243,13 @@ func (rd *rdapPlugin) storeEntity(e *et.Event, level int, entity *rdap.Entity, a
 				_ = rd.createContactEdge(e.Session, cr, a, &general.SimpleRelation{Name: "person"}, src)
 			}
 		}
-	} else if m.IsMatch(string(oam.Organization)) && name != "" &&
-		!support.OrgNameExistsInContactRecord(e.Session, cr, name) {
-		if a, err := support.CreateOrgAsset(e.Session, &org.Organization{
+	} else if m.IsMatch(string(oam.Organization)) {
+		o := &org.Organization{
 			ID:   uuid.New().String(),
 			Name: name,
-		}, src); err == nil && a != nil {
-			_ = rd.createContactEdge(e.Session, cr, a, &general.SimpleRelation{Name: "organization"}, src)
 		}
+
+		_, _ = support.CreateOrgAsset(e.Session, cr, &general.SimpleRelation{Name: "organization"}, o, src)
 	}
 	if adr := v.GetFirst("adr"); adr != nil && m.IsMatch(string(oam.Location)) {
 		if label, ok := adr.Parameters["label"]; ok {

engine/plugins/support/database.go

@@ -18,6 +18,7 @@ import (
 	dbt "github.com/owasp-amass/asset-db/types"
 	oam "github.com/owasp-amass/open-asset-model"
 	oamcert "github.com/owasp-amass/open-asset-model/certificate"
+	"github.com/owasp-amass/open-asset-model/contact"
 	oamdns "github.com/owasp-amass/open-asset-model/dns"
 	"github.com/owasp-amass/open-asset-model/general"
 	"github.com/owasp-amass/open-asset-model/org"
@@ -235,33 +236,49 @@ func CreateServiceAsset(session et.Session, src *dbt.Entity, rel oam.Relation, s
 	return result, err
 }
 
-func CreateOrgAsset(session et.Session, o *org.Organization, src *et.Source) (*dbt.Entity, error) {
+func CreateOrgAsset(session et.Session, obj *dbt.Entity, rel oam.Relation, o *org.Organization, src *et.Source) (*dbt.Entity, error) {
+	if orgent := orgDedupChecks(session, obj, rel, o); orgent != nil {
+		if err := createRelation(session, obj, rel, orgent, src); err != nil {
+			return nil, err
+		}
+		return orgent, nil
+	}
+
 	id := &general.Identifier{
 		UniqueID: fmt.Sprintf("%s:%s", "org_name", o.Name),
 		EntityID: o.Name,
 		Type:     "org_name",
 	}
 
 	if ident, err := session.Cache().CreateAsset(id); err == nil && ident != nil {
-		if o, err := session.Cache().CreateAsset(o); err == nil && o != nil {
-			if e, err := session.Cache().CreateEdge(&dbt.Edge{
-				Relation:   &general.SimpleRelation{Name: "id"},
-				FromEntity: o,
-				ToEntity:   ident,
-			}); err == nil && e != nil {
-				_, err = session.Cache().CreateEdgeProperty(e, &general.SourceProperty{
-					Source:     src.Name,
-					Confidence: src.Confidence,
-				})
-				return o, err
+		if orgent, err := session.Cache().CreateAsset(o); err == nil && orgent != nil {
+			if err := createRelation(session, orgent, &general.SimpleRelation{Name: "id"}, ident, src); err != nil {
+				return nil, err
 			}
+			if err := createRelation(session, obj, rel, orgent, src); err != nil {
+				return nil, err
+			}
+			return orgent, nil
 		}
 	}
 
 	return nil, errors.New("failed to create the OAM Organization asset")
 }
 
-func OrgHasName(session et.Session, org *dbt.Entity, name string) bool {
+func orgDedupChecks(session et.Session, obj *dbt.Entity, rel oam.Relation, o *org.Organization) *dbt.Entity {
+	var result *dbt.Entity
+
+	switch obj.Asset.(type) {
+	case *contact.ContactRecord:
+		if org, found := orgNameExistsInContactRecord(session, obj, o.Name); found {
+			result = org
+		}
+	}
+
+	return result
+}
+
+func orgHasName(session et.Session, org *dbt.Entity, name string) bool {
 	if org == nil {
 		return false
 	}
@@ -278,19 +295,38 @@ func OrgHasName(session et.Session, org *dbt.Entity, name string) bool {
 	return false
 }
 
-func OrgNameExistsInContactRecord(session et.Session, cr *dbt.Entity, name string) bool {
+func orgNameExistsInContactRecord(session et.Session, cr *dbt.Entity, name string) (*dbt.Entity, bool) {
 	if cr == nil {
-		return false
+		return nil, false
 	}
 
 	if edges, err := session.Cache().OutgoingEdges(cr, time.Time{}, "organization"); err == nil && len(edges) > 0 {
 		for _, edge := range edges {
 			if a, err := session.Cache().FindEntityById(edge.ToEntity.ID); err == nil && a != nil {
-				if _, ok := a.Asset.(*org.Organization); ok && OrgHasName(session, a, name) {
-					return true
+				if _, ok := a.Asset.(*org.Organization); ok && orgHasName(session, a, name) {
+					return a, true
 				}
 			}
 		}
 	}
-	return false
+	return nil, false
+}
+
+func createRelation(session et.Session, obj *dbt.Entity, rel oam.Relation, subject *dbt.Entity, src *et.Source) error {
+	edge, err := session.Cache().CreateEdge(&dbt.Edge{
+		Relation:   rel,
+		FromEntity: obj,
+		ToEntity:   subject,
+	})
+	if err != nil {
+		return err
+	} else if edge == nil {
+		return errors.New("failed to create the edge")
+	}
+
+	_, err = session.Cache().CreateEdgeProperty(edge, &general.SourceProperty{
+		Source:     src.Name,
+		Confidence: src.Confidence,
+	})
+	return err
 }

engine/plugins/whois/domain_record.go

@@ -224,14 +224,14 @@ func (r *domrec) storeContact(e *et.Event, c *domrecContact, dr *dbt.Entity, m *
 			}
 		}
 	}
-	if m.IsMatch(string(oam.Organization)) && wc.Organization != "" &&
-		!support.OrgNameExistsInContactRecord(e.Session, cr, wc.Organization) {
-		if a, err := support.CreateOrgAsset(e.Session, &org.Organization{
+	if m.IsMatch(string(oam.Organization)) {
+		o := &org.Organization{
 			ID:   uuid.New().String(),
 			Name: wc.Organization,
-		}, r.plugin.source); err == nil && a != nil {
-			r.createSimpleEdge(e.Session.Cache(), &general.SimpleRelation{Name: "organization"}, cr, a)
 		}
+
+		_, _ = support.CreateOrgAsset(e.Session, cr,
+			&general.SimpleRelation{Name: "organization"}, o, r.plugin.source)
 	}
 	if loc := support.StreetAddressToLocation(addr); loc != nil {
 		if a, err := e.Session.Cache().CreateAsset(loc); err == nil && a != nil {