From 0801b4c612fbedbd92c3f6c91c61c70e45339209 Mon Sep 17 00:00:00 2001
From: Adam Gaudreau <agaudreau@mitre.org>
Date: Mon, 1 Nov 2021 15:39:38 -0400
Subject: [PATCH 1/6] Add plugin field to adversaries, abilities, and planners

---
 app/objects/c_ability.py                      | 11 +++++------
 app/objects/c_adversary.py                    | 11 +++++------
 app/objects/c_planner.py                      | 11 +++++------
 app/service/data_svc.py                       |  8 +++++---
 static/js/core.js                             |  2 --
 templates/BLUE.html                           |  2 +-
 templates/RED.html                            |  2 +-
 tests/api/v2/handlers/test_abilities_api.py   |  5 +++--
 tests/api/v2/handlers/test_adversaries_api.py |  6 ++++--
 tests/api/v2/handlers/test_planners_api.py    |  2 +-
 tests/services/test_rest_svc.py               |  8 ++++----
 11 files changed, 34 insertions(+), 34 deletions(-)

diff --git a/app/objects/c_ability.py b/app/objects/c_ability.py
index d4dd8cf1c..c718b27b6 100644
--- a/app/objects/c_ability.py
+++ b/app/objects/c_ability.py
@@ -27,6 +27,7 @@ class AbilitySchema(ma.Schema):
     additional_info = ma.fields.Dict(keys=ma.fields.String(), values=ma.fields.String())
     access = ma.fields.Nested(AccessSchema, missing=None)
     singleton = ma.fields.Bool(missing=None)
+    plugin = ma.fields.String(missing=None)
 
     @ma.pre_load
     def fix_id(self, data, **_):
@@ -58,7 +59,7 @@ def executors(self):
 
     def __init__(self, ability_id='', name=None, description=None, tactic=None, technique_id=None, technique_name=None,
                  executors=(), requirements=None, privilege=None, repeatable=False, buckets=None, access=None,
-                 additional_info=None, tags=None, singleton=False, **kwargs):
+                 additional_info=None, tags=None, singleton=False, plugin=None, **kwargs):
         super().__init__()
         self.ability_id = ability_id if ability_id else str(uuid.uuid4())
         self.tactic = tactic.lower() if tactic else None
@@ -80,6 +81,7 @@ def __init__(self, ability_id='', name=None, description=None, tactic=None, tech
         self.additional_info = additional_info or dict()
         self.additional_info.update(**kwargs)
         self.tags = set(tags) if tags else set()
+        self.plugin = plugin
 
     def __getattr__(self, item):
         try:
@@ -103,14 +105,11 @@ def store(self, ram):
         existing.update('buckets', self.buckets)
         existing.update('tags', self.tags)
         existing.update('singleton', self.singleton)
+        existing.update('plugin', self.plugin)
         return existing
 
     async def which_plugin(self):
-        file_svc = BaseService.get_service('file_svc')
-        for plugin in os.listdir('plugins'):
-            if await file_svc.walk_file_path(os.path.join('plugins', plugin, 'data', ''), '%s.yml' % self.ability_id):
-                return plugin
-        return None
+        return self.plugin
 
     def find_executor(self, name, platform):
         return self._executor_map.get(self._make_executor_map_key(name, platform))
diff --git a/app/objects/c_adversary.py b/app/objects/c_adversary.py
index de8dfab7a..3b1e3079f 100644
--- a/app/objects/c_adversary.py
+++ b/app/objects/c_adversary.py
@@ -20,6 +20,7 @@ class AdversarySchema(ma.Schema):
     objective = ma.fields.String()
     tags = ma.fields.List(ma.fields.String(), allow_none=True)
     has_repeatable_abilities = ma.fields.Boolean(dump_only=True)
+    plugin = ma.fields.String(missing=None)
 
     @ma.pre_load
     def fix_id(self, adversary, **_):
@@ -57,7 +58,7 @@ class Adversary(FirstClassObjectInterface, BaseObject):
     def unique(self):
         return self.hash('%s' % self.adversary_id)
 
-    def __init__(self, name='', adversary_id='', description='', atomic_ordering=(), objective='', tags=None):
+    def __init__(self, name='', adversary_id='', description='', atomic_ordering=(), objective='', tags=None, plugin=None):
         super().__init__()
         self.adversary_id = adversary_id if adversary_id else str(uuid.uuid4())
         self.name = name
@@ -66,6 +67,7 @@ def __init__(self, name='', adversary_id='', description='', atomic_ordering=(),
         self.objective = objective or DEFAULT_OBJECTIVE_ID
         self.tags = set(tags) if tags else set()
         self.has_repeatable_abilities = False
+        self.plugin = plugin
 
     def store(self, ram):
         existing = self.retrieve(ram['adversaries'], self.unique)
@@ -78,6 +80,7 @@ def store(self, ram):
         existing.update('objective', self.objective)
         existing.update('tags', self.tags)
         existing.update('has_repeatable_abilities', self.check_repeatable_abilities(ram['abilities']))
+        existing.update('plugin', self.plugin)
         return existing
 
     def verify(self, log, abilities, objectives):
@@ -101,11 +104,7 @@ def has_ability(self, ability):
         return False
 
     async def which_plugin(self):
-        file_svc = BaseService.get_service('file_svc')
-        for plugin in os.listdir('plugins'):
-            if await file_svc.walk_file_path(os.path.join('plugins', plugin, 'data', ''), '%s.yml' % self.adversary_id):
-                return plugin
-        return None
+        return self.plugin
 
     def check_repeatable_abilities(self, ability_list):
         return any(ab.repeatable for ab_id in self.atomic_ordering for ab in ability_list if ab.ability_id == ab_id)
diff --git a/app/objects/c_planner.py b/app/objects/c_planner.py
index 8b0e671c2..7743204f6 100644
--- a/app/objects/c_planner.py
+++ b/app/objects/c_planner.py
@@ -18,6 +18,7 @@ class PlannerSchema(ma.Schema):
     stopping_conditions = ma.fields.List(ma.fields.Nested(FactSchema()))
     ignore_enforcement_modules = ma.fields.List(ma.fields.String())
     allow_repeatable_abilities = ma.fields.Boolean()
+    plugin = ma.fields.String(missing=None)
 
     @ma.post_load()
     def build_planner(self, data, **kwargs):
@@ -34,7 +35,7 @@ def unique(self):
         return self.hash(self.name)
 
     def __init__(self, name='', planner_id='', module='', params=None, stopping_conditions=None, description=None,
-                 ignore_enforcement_modules=(), allow_repeatable_abilities=False):
+                 ignore_enforcement_modules=(), allow_repeatable_abilities=False, plugin=None):
         super().__init__()
         self.name = name
         self.planner_id = planner_id if planner_id else str(uuid.uuid4())
@@ -44,6 +45,7 @@ def __init__(self, name='', planner_id='', module='', params=None, stopping_cond
         self.stopping_conditions = self._set_stopping_conditions(stopping_conditions)
         self.ignore_enforcement_modules = ignore_enforcement_modules
         self.allow_repeatable_abilities = allow_repeatable_abilities
+        self.plugin = plugin
 
     def store(self, ram):
         existing = self.retrieve(ram['planners'], self.unique)
@@ -53,14 +55,11 @@ def store(self, ram):
         else:
             existing.update('stopping_conditions', self.stopping_conditions)
             existing.update('params', self.params)
+            existing.update('plugin', self.plugin)
         return existing
 
     async def which_plugin(self):
-        file_svc = BaseService.get_service('file_svc')
-        for plugin in os.listdir('plugins'):
-            if await file_svc.walk_file_path(os.path.join('plugins', plugin, 'data', ''), '%s.yml' % self.planner_id):
-                return plugin
-        return None
+        return self.plugin
 
     """ PRIVATE """
 
diff --git a/app/service/data_svc.py b/app/service/data_svc.py
index f5a5e3b89..78ef95302 100644
--- a/app/service/data_svc.py
+++ b/app/service/data_svc.py
@@ -160,6 +160,7 @@ async def load_ability_file(self, filename, access):
                 requirements = await self._load_ability_requirements(ab.pop('requirements', []))
                 buckets = ab.pop('buckets', [tactic])
                 ab.pop('access', None)
+                plugin = ab.pop('plugin', filename.split('/')[1])
 
                 if tactic and tactic not in filename:
                     self.log.error('Ability=%s has wrong tactic' % id)
@@ -167,7 +168,7 @@ async def load_ability_file(self, filename, access):
                 await self._create_ability(ability_id=ability_id, name=name, description=description, tactic=tactic,
                                            technique_id=technique_id, technique_name=technique_name,
                                            executors=executors, requirements=requirements, privilege=privilege,
-                                           repeatable=repeatable, buckets=buckets, access=access, singleton=singleton,
+                                           repeatable=repeatable, buckets=buckets, access=access, singleton=singleton, plugin=plugin,
                                            **ab)
 
     async def convert_v0_ability_executor(self, ability_data: dict):
@@ -239,6 +240,7 @@ async def load_yaml_file(self, object_class, filename, access):
         for src in self.strip_yml(filename):
             obj = object_class.load(src)
             obj.access = access
+            obj.plugin = filename.split('/')[1]
             await self.store(obj)
 
     """ PRIVATE """
@@ -338,11 +340,11 @@ async def _load_data_encoders(self, plugins):
 
     async def _create_ability(self, ability_id, name=None, description=None, tactic=None, technique_id=None,
                               technique_name=None, executors=None, requirements=None, privilege=None,
-                              repeatable=False, buckets=None, access=None, singleton=False, **kwargs):
+                              repeatable=False, buckets=None, access=None, singleton=False, plugin=None, **kwargs):
         ability = Ability(ability_id=ability_id, name=name, description=description, tactic=tactic,
                           technique_id=technique_id, technique_name=technique_name, executors=executors,
                           requirements=requirements, privilege=privilege, repeatable=repeatable, buckets=buckets,
-                          access=access, singleton=singleton, **kwargs)
+                          access=access, singleton=singleton, plugin=plugin, **kwargs)
         return await self.store(ability)
 
     async def _prune_non_critical_data(self):
diff --git a/static/js/core.js b/static/js/core.js
index aeb8a6d15..559fd2377 100644
--- a/static/js/core.js
+++ b/static/js/core.js
@@ -28,8 +28,6 @@ function alpineCore() {
             if (tabName === 'fieldmanual') {
                 restRequest('GET', null, (data) => { this.setTabContent({ name: tabName, contentID: `tab-${tabName}`, address: address }, data); }, address);
                 return;
-            } else if (tabName === 'stockpile' || tabName === 'atomic') {
-                return;
             }
 
             // If tab is already open, jump to it
diff --git a/templates/BLUE.html b/templates/BLUE.html
index 9b63af0d5..81802475d 100644
--- a/templates/BLUE.html
+++ b/templates/BLUE.html
@@ -46,7 +46,7 @@
                     <ul class="menu-list">
                         {% for plugin in plugins | sort(attribute='name') %}
                         <li>
-                            <a x-on:click="addTab('{{ plugin.name }}', '{{ plugin.address }}')" class="nav-item" x-bind:class="{ 'disabled': '{{ plugin.name }}' === 'atomic' || '{{ plugin.name }}' === 'stockpile' }">
+                            <a x-on:click="addTab('{{ plugin.name }}', '{{ plugin.address }}')" class="nav-item">
                                 {{ plugin.name }}
                                     <template x-if="`{{plugin.name | e}}` === 'fieldmanual'">
                                         <sup><i class="fas fa-external-link-alt pl-1 is-size-7"></i></sup>
diff --git a/templates/RED.html b/templates/RED.html
index 98d6d2a02..e9cdead21 100644
--- a/templates/RED.html
+++ b/templates/RED.html
@@ -46,7 +46,7 @@
                     <ul class="menu-list">
                         {% for plugin in plugins | sort(attribute='name') %}
                             <li>
-                                <a x-on:click="addTab('{{ plugin.name }}', '{{ plugin.address }}')" class="nav-item" x-bind:class="{ 'disabled': '{{ plugin.name }}' === 'atomic' || '{{ plugin.name }}' === 'stockpile' }">
+                                <a x-on:click="addTab('{{ plugin.name }}', '{{ plugin.address }}')" class="nav-item">
                                     {{ plugin.name }}
                                     <template x-if="`{{plugin.name | e}}` === 'fieldmanual'">
                                         <sup><i class="fas fa-external-link-alt pl-1 is-size-7"></i></sup>
diff --git a/tests/api/v2/handlers/test_abilities_api.py b/tests/api/v2/handlers/test_abilities_api.py
index 7da9cb1e0..0f8309142 100644
--- a/tests/api/v2/handlers/test_abilities_api.py
+++ b/tests/api/v2/handlers/test_abilities_api.py
@@ -23,7 +23,8 @@ def new_ability_payload():
             'privilege': '',
             'repeatable': False,
             'requirements': [],
-            'singleton': False
+            'singleton': False,
+            'plugin': 'abilities'
             }
 
 
@@ -47,7 +48,7 @@ def replaced_ability_payload(test_ability):
 def test_ability(loop, api_v2_client, executor):
     executor_linux = executor(name='sh', platform='linux')
     ability = Ability(ability_id='123', name='Test Ability', executors=[executor_linux],
-                      technique_name='collection', technique_id='1', description='', privilege='', tactic='discovery')
+                      technique_name='collection', technique_id='1', description='', privilege='', tactic='discovery', plugin='testplugin')
     loop.run_until_complete(BaseService.get_service('data_svc').store(ability))
     return ability
 
diff --git a/tests/api/v2/handlers/test_adversaries_api.py b/tests/api/v2/handlers/test_adversaries_api.py
index ce2503740..1135bc6a0 100644
--- a/tests/api/v2/handlers/test_adversaries_api.py
+++ b/tests/api/v2/handlers/test_adversaries_api.py
@@ -32,7 +32,8 @@ def new_adversary_payload():
         'adversary_id': '456',
         'objective': '495a9828-cab1-44dd-a0ca-66e58177d8cc',
         'tags': [],
-        'atomic_ordering': []
+        'atomic_ordering': [],
+        'plugin': 'adversaries'
     }
 
 
@@ -49,7 +50,8 @@ def test_adversary(loop):
                           'adversary_id': '123',
                           'objective': '495a9828-cab1-44dd-a0ca-66e58177d8cc',
                           'tags': [],
-                          'atomic_ordering': []}
+                          'atomic_ordering': [],
+                          'plugin': 'adversaries'}
     test_adversary = AdversarySchema().load(expected_adversary)
     loop.run_until_complete(BaseService.get_service('data_svc').store(test_adversary))
     return test_adversary
diff --git a/tests/api/v2/handlers/test_planners_api.py b/tests/api/v2/handlers/test_planners_api.py
index de6725c52..dca10c348 100644
--- a/tests/api/v2/handlers/test_planners_api.py
+++ b/tests/api/v2/handlers/test_planners_api.py
@@ -8,7 +8,7 @@
 
 @pytest.fixture
 def test_planner(loop, api_v2_client):
-    planner = Planner(name="test planner", planner_id="123", description="a test planner")
+    planner = Planner(name="test planner", planner_id="123", description="a test planner", plugin="planner")
     loop.run_until_complete(BaseService.get_service('data_svc').store(planner))
     return planner
 
diff --git a/tests/services/test_rest_svc.py b/tests/services/test_rest_svc.py
index a6278d1b5..5a57f6c4a 100644
--- a/tests/services/test_rest_svc.py
+++ b/tests/services/test_rest_svc.py
@@ -75,10 +75,10 @@ def test_delete_operation(self, loop, rest_svc, data_svc):
                               'adversary': {'description': 'an empty adversary profile', 'name': 'ad-hoc',
                                             'adversary_id': 'ad-hoc', 'atomic_ordering': [],
                                             'objective': '495a9828-cab1-44dd-a0ca-66e58177d8cc',
-                                            'tags': [], 'has_repeatable_abilities': False}, 'state': 'finished',
+                                            'tags': [], 'has_repeatable_abilities': False, 'plugin': None}, 'state': 'finished',
                               'planner': {'name': 'test', 'description': None, 'module': 'test',
                                           'stopping_conditions': [], 'params': {}, 'allow_repeatable_abilities': False,
-                                          'ignore_enforcement_modules': [], 'id': '123'}, 'jitter': '2/8',
+                                          'ignore_enforcement_modules': [], 'id': '123', 'plugin': None}, 'jitter': '2/8',
                               'host_group': [{'trusted': True, 'architecture': 'unknown', 'watchdog': 0,
                                               'contact': 'unknown', 'username': 'unknown', 'links': [], 'sleep_max': 8,
                                               'exe_name': 'unknown', 'executors': ['pwsh', 'psh'], 'ppid': 0,
@@ -147,11 +147,11 @@ def test_create_operation(self, loop, rest_svc, data_svc):
         want = {'name': 'Test',
                 'adversary': {'description': 'an empty adversary profile', 'name': 'ad-hoc', 'adversary_id': 'ad-hoc',
                               'atomic_ordering': [], 'objective': '495a9828-cab1-44dd-a0ca-66e58177d8cc', 'tags': [],
-                              'has_repeatable_abilities': False},
+                              'has_repeatable_abilities': False, 'plugin': None},
                 'state': 'finished',
                 'planner': {'name': 'test', 'description': None, 'module': 'test', 'stopping_conditions': [],
                             'params': {},
-                            'ignore_enforcement_modules': [], 'id': '123', 'allow_repeatable_abilities': False},
+                            'ignore_enforcement_modules': [], 'id': '123', 'allow_repeatable_abilities': False, 'plugin': None},
                 'jitter': '2/8',
                 'group': '',
                 'source': '',

From 4b61d0b712ab03d486c7af11212d504c9100a9ed Mon Sep 17 00:00:00 2001
From: Adam Gaudreau <agaudreau@mitre.org>
Date: Thu, 4 Nov 2021 14:54:14 -0400
Subject: [PATCH 2/6] Fix linting errors

---
 app/objects/c_ability.py   | 2 --
 app/objects/c_adversary.py | 2 --
 app/objects/c_planner.py   | 2 --
 3 files changed, 6 deletions(-)

diff --git a/app/objects/c_ability.py b/app/objects/c_ability.py
index c718b27b6..6dbbb3494 100644
--- a/app/objects/c_ability.py
+++ b/app/objects/c_ability.py
@@ -1,5 +1,4 @@
 import collections
-import os
 import uuid
 
 import marshmallow as ma
@@ -8,7 +7,6 @@
 from app.objects.secondclass.c_executor import ExecutorSchema
 from app.objects.secondclass.c_requirement import RequirementSchema
 from app.utility.base_object import BaseObject
-from app.utility.base_service import BaseService
 from app.utility.base_world import AccessSchema
 
 
diff --git a/app/objects/c_adversary.py b/app/objects/c_adversary.py
index 3b1e3079f..abcecb75b 100644
--- a/app/objects/c_adversary.py
+++ b/app/objects/c_adversary.py
@@ -1,11 +1,9 @@
-import os
 import uuid
 
 import marshmallow as ma
 
 from app.objects.interfaces.i_object import FirstClassObjectInterface
 from app.utility.base_object import BaseObject
-from app.utility.base_service import BaseService
 
 
 DEFAULT_OBJECTIVE_ID = '495a9828-cab1-44dd-a0ca-66e58177d8cc'
diff --git a/app/objects/c_planner.py b/app/objects/c_planner.py
index 7743204f6..203b98c4d 100644
--- a/app/objects/c_planner.py
+++ b/app/objects/c_planner.py
@@ -1,11 +1,9 @@
-import os
 import uuid
 
 import marshmallow as ma
 
 from app.objects.interfaces.i_object import FirstClassObjectInterface
 from app.utility.base_object import BaseObject
-from app.utility.base_service import BaseService
 from app.objects.secondclass.c_fact import Fact, FactSchema
 
 

From 80df8b068633f0b28911afd994d1c5547752e488 Mon Sep 17 00:00:00 2001
From: Adam Gaudreau <agaudreau@mitre.org>
Date: Tue, 23 Nov 2021 09:11:32 -0500
Subject: [PATCH 3/6] Add plugin to sources, use pathlib for getting filename

---
 app/objects/c_source.py | 5 ++++-
 app/service/data_svc.py | 7 +++++--
 2 files changed, 9 insertions(+), 3 deletions(-)

diff --git a/app/objects/c_source.py b/app/objects/c_source.py
index 755553074..016d9b6be 100644
--- a/app/objects/c_source.py
+++ b/app/objects/c_source.py
@@ -33,6 +33,7 @@ class SourceSchema(ma.Schema):
     rules = ma.fields.List(ma.fields.Nested(RuleSchema))
     adjustments = ma.fields.List(ma.fields.Nested(AdjustmentSchema))
     relationships = ma.fields.List(ma.fields.Nested(RelationshipSchema))
+    plugin = ma.fields.String(missing=None)
 
     @ma.pre_load
     def fix_adjustments(self, in_data, **_):
@@ -81,7 +82,7 @@ class Source(FirstClassObjectInterface, BaseObject):
     def unique(self):
         return self.hash('%s' % self.id)
 
-    def __init__(self, name='', id='', facts=(), relationships=(), rules=(), adjustments=()):
+    def __init__(self, name='', id='', facts=(), relationships=(), rules=(), adjustments=(), plugin=None):
         super().__init__()
         self.id = id if id else str(uuid.uuid4())
         self.name = name
@@ -89,6 +90,7 @@ def __init__(self, name='', id='', facts=(), relationships=(), rules=(), adjustm
         self.rules = rules
         self.adjustments = adjustments
         self.relationships = relationships
+        self.plugin = plugin
 
     def store(self, ram):
         existing = self.retrieve(ram['sources'], self.unique)
@@ -99,4 +101,5 @@ def store(self, ram):
         existing.update('facts', self.facts)
         existing.update('rules', self.rules)
         existing.update('relationships', self.relationships)
+        existing.update('plugin', self.plugin)
         return existing
diff --git a/app/service/data_svc.py b/app/service/data_svc.py
index 78ef95302..e0379b2d1 100644
--- a/app/service/data_svc.py
+++ b/app/service/data_svc.py
@@ -7,6 +7,7 @@
 import tarfile
 import shutil
 import warnings
+import pathlib
 from importlib import import_module
 
 from app.objects.c_ability import Ability
@@ -160,7 +161,8 @@ async def load_ability_file(self, filename, access):
                 requirements = await self._load_ability_requirements(ab.pop('requirements', []))
                 buckets = ab.pop('buckets', [tactic])
                 ab.pop('access', None)
-                plugin = ab.pop('plugin', filename.split('/')[1])
+                plugin_path = pathlib.PurePath(filename).parts
+                plugin = plugin_path[1] if 'plugins' in plugin_path else None
 
                 if tactic and tactic not in filename:
                     self.log.error('Ability=%s has wrong tactic' % id)
@@ -240,7 +242,8 @@ async def load_yaml_file(self, object_class, filename, access):
         for src in self.strip_yml(filename):
             obj = object_class.load(src)
             obj.access = access
-            obj.plugin = filename.split('/')[1]
+            plugin_path = pathlib.PurePath(filename).parts
+            obj.plugin = plugin_path[1] if 'plugins' in plugin_path else None
             await self.store(obj)
 
     """ PRIVATE """

From 31cf3281dbf8aeaad8aeec96663d03f74ffddd08 Mon Sep 17 00:00:00 2001
From: Adam Gaudreau <agaudreau@mitre.org>
Date: Tue, 23 Nov 2021 11:13:17 -0500
Subject: [PATCH 4/6] Pass tests

---
 tests/api/v2/handlers/test_abilities_api.py   | 6 +++---
 tests/api/v2/handlers/test_adversaries_api.py | 4 ++--
 tests/api/v2/handlers/test_sources_api.py     | 4 +++-
 tests/services/test_rest_svc.py               | 4 ++--
 4 files changed, 10 insertions(+), 8 deletions(-)

diff --git a/tests/api/v2/handlers/test_abilities_api.py b/tests/api/v2/handlers/test_abilities_api.py
index 0f8309142..6f29d4bd3 100644
--- a/tests/api/v2/handlers/test_abilities_api.py
+++ b/tests/api/v2/handlers/test_abilities_api.py
@@ -24,14 +24,14 @@ def new_ability_payload():
             'repeatable': False,
             'requirements': [],
             'singleton': False,
-            'plugin': 'abilities'
+            'plugin': ''
             }
 
 
 @pytest.fixture
 def updated_ability_payload(test_ability):
     ability_data = test_ability.schema.dump(test_ability)
-    ability_data.update(dict(name='an updated test ability', tactic='defense-evasion'))
+    ability_data.update(dict(name='an updated test ability', tactic='defense-evasion', plugin=''))
     return ability_data
 
 
@@ -40,7 +40,7 @@ def replaced_ability_payload(test_ability):
     ability_data = test_ability.schema.dump(test_ability)
     test_executor_linux = Executor(name='sh', platform='linux', command='whoami')
     ability_data.update(dict(name='replaced test ability', tactic='collection', technique_name='discovery',
-                             technique_id='2', executors=[ExecutorSchema().dump(test_executor_linux)]))
+                             technique_id='2', executors=[ExecutorSchema().dump(test_executor_linux)], plugin=''))
     return ability_data
 
 
diff --git a/tests/api/v2/handlers/test_adversaries_api.py b/tests/api/v2/handlers/test_adversaries_api.py
index 1135bc6a0..de05e053d 100644
--- a/tests/api/v2/handlers/test_adversaries_api.py
+++ b/tests/api/v2/handlers/test_adversaries_api.py
@@ -33,7 +33,7 @@ def new_adversary_payload():
         'objective': '495a9828-cab1-44dd-a0ca-66e58177d8cc',
         'tags': [],
         'atomic_ordering': [],
-        'plugin': 'adversaries'
+        'plugin': ''
     }
 
 
@@ -51,7 +51,7 @@ def test_adversary(loop):
                           'objective': '495a9828-cab1-44dd-a0ca-66e58177d8cc',
                           'tags': [],
                           'atomic_ordering': [],
-                          'plugin': 'adversaries'}
+                          'plugin': ''}
     test_adversary = AdversarySchema().load(expected_adversary)
     loop.run_until_complete(BaseService.get_service('data_svc').store(test_adversary))
     return test_adversary
diff --git a/tests/api/v2/handlers/test_sources_api.py b/tests/api/v2/handlers/test_sources_api.py
index 3cf79fd81..97aed3561 100644
--- a/tests/api/v2/handlers/test_sources_api.py
+++ b/tests/api/v2/handlers/test_sources_api.py
@@ -34,7 +34,8 @@ def new_source_payload():
         'name': 'new test source',
         'facts': [fact],
         'rules': [rule.schema.dump(rule)],
-        'relationships': [relationship]
+        'relationships': [relationship],
+        'plugin': ''
     }
     return source
 
@@ -80,6 +81,7 @@ def expected_updated_source_dump(updated_source_payload, mocker, mock_time):
         source = SourceSchema().load(updated_source_payload)
         dumped_obj = source.display_schema.dump(source)
         dumped_obj['relationships'][0]['unique'] = mock.ANY
+        dumped_obj['plugin'] = ''
         return dumped_obj
 
 
diff --git a/tests/services/test_rest_svc.py b/tests/services/test_rest_svc.py
index 5a57f6c4a..ae4d87136 100644
--- a/tests/services/test_rest_svc.py
+++ b/tests/services/test_rest_svc.py
@@ -78,7 +78,7 @@ def test_delete_operation(self, loop, rest_svc, data_svc):
                                             'tags': [], 'has_repeatable_abilities': False, 'plugin': None}, 'state': 'finished',
                               'planner': {'name': 'test', 'description': None, 'module': 'test',
                                           'stopping_conditions': [], 'params': {}, 'allow_repeatable_abilities': False,
-                                          'ignore_enforcement_modules': [], 'id': '123', 'plugin': None}, 'jitter': '2/8',
+                                          'ignore_enforcement_modules': [], 'id': '123', 'plugin': ''}, 'jitter': '2/8',
                               'host_group': [{'trusted': True, 'architecture': 'unknown', 'watchdog': 0,
                                               'contact': 'unknown', 'username': 'unknown', 'links': [], 'sleep_max': 8,
                                               'exe_name': 'unknown', 'executors': ['pwsh', 'psh'], 'ppid': 0,
@@ -151,7 +151,7 @@ def test_create_operation(self, loop, rest_svc, data_svc):
                 'state': 'finished',
                 'planner': {'name': 'test', 'description': None, 'module': 'test', 'stopping_conditions': [],
                             'params': {},
-                            'ignore_enforcement_modules': [], 'id': '123', 'allow_repeatable_abilities': False, 'plugin': None},
+                            'ignore_enforcement_modules': [], 'id': '123', 'allow_repeatable_abilities': False, 'plugin': ''},
                 'jitter': '2/8',
                 'group': '',
                 'source': '',

From fb091bbfcf588c28817d70b276ad9c03b11522b0 Mon Sep 17 00:00:00 2001
From: Adam Gaudreau <agaudreau@mitre.org>
Date: Tue, 23 Nov 2021 11:19:50 -0500
Subject: [PATCH 5/6] Pass tests

---
 app/objects/c_ability.py   | 2 +-
 app/objects/c_adversary.py | 2 +-
 app/objects/c_planner.py   | 2 +-
 app/objects/c_source.py    | 2 +-
 app/service/data_svc.py    | 7 ++++---
 5 files changed, 8 insertions(+), 7 deletions(-)

diff --git a/app/objects/c_ability.py b/app/objects/c_ability.py
index 6dbbb3494..51283cda2 100644
--- a/app/objects/c_ability.py
+++ b/app/objects/c_ability.py
@@ -57,7 +57,7 @@ def executors(self):
 
     def __init__(self, ability_id='', name=None, description=None, tactic=None, technique_id=None, technique_name=None,
                  executors=(), requirements=None, privilege=None, repeatable=False, buckets=None, access=None,
-                 additional_info=None, tags=None, singleton=False, plugin=None, **kwargs):
+                 additional_info=None, tags=None, singleton=False, plugin='', **kwargs):
         super().__init__()
         self.ability_id = ability_id if ability_id else str(uuid.uuid4())
         self.tactic = tactic.lower() if tactic else None
diff --git a/app/objects/c_adversary.py b/app/objects/c_adversary.py
index abcecb75b..32c5114b5 100644
--- a/app/objects/c_adversary.py
+++ b/app/objects/c_adversary.py
@@ -56,7 +56,7 @@ class Adversary(FirstClassObjectInterface, BaseObject):
     def unique(self):
         return self.hash('%s' % self.adversary_id)
 
-    def __init__(self, name='', adversary_id='', description='', atomic_ordering=(), objective='', tags=None, plugin=None):
+    def __init__(self, name='', adversary_id='', description='', atomic_ordering=(), objective='', tags=None, plugin=''):
         super().__init__()
         self.adversary_id = adversary_id if adversary_id else str(uuid.uuid4())
         self.name = name
diff --git a/app/objects/c_planner.py b/app/objects/c_planner.py
index 203b98c4d..9b1ec6c79 100644
--- a/app/objects/c_planner.py
+++ b/app/objects/c_planner.py
@@ -33,7 +33,7 @@ def unique(self):
         return self.hash(self.name)
 
     def __init__(self, name='', planner_id='', module='', params=None, stopping_conditions=None, description=None,
-                 ignore_enforcement_modules=(), allow_repeatable_abilities=False, plugin=None):
+                 ignore_enforcement_modules=(), allow_repeatable_abilities=False, plugin=''):
         super().__init__()
         self.name = name
         self.planner_id = planner_id if planner_id else str(uuid.uuid4())
diff --git a/app/objects/c_source.py b/app/objects/c_source.py
index 016d9b6be..f8dd33624 100644
--- a/app/objects/c_source.py
+++ b/app/objects/c_source.py
@@ -82,7 +82,7 @@ class Source(FirstClassObjectInterface, BaseObject):
     def unique(self):
         return self.hash('%s' % self.id)
 
-    def __init__(self, name='', id='', facts=(), relationships=(), rules=(), adjustments=(), plugin=None):
+    def __init__(self, name='', id='', facts=(), relationships=(), rules=(), adjustments=(), plugin=''):
         super().__init__()
         self.id = id if id else str(uuid.uuid4())
         self.name = name
diff --git a/app/service/data_svc.py b/app/service/data_svc.py
index e0379b2d1..7403384c1 100644
--- a/app/service/data_svc.py
+++ b/app/service/data_svc.py
@@ -162,7 +162,8 @@ async def load_ability_file(self, filename, access):
                 buckets = ab.pop('buckets', [tactic])
                 ab.pop('access', None)
                 plugin_path = pathlib.PurePath(filename).parts
-                plugin = plugin_path[1] if 'plugins' in plugin_path else None
+                plugin = plugin_path[1] if 'plugins' in plugin_path else ''
+                ab.pop('plugin', plugin)
 
                 if tactic and tactic not in filename:
                     self.log.error('Ability=%s has wrong tactic' % id)
@@ -243,7 +244,7 @@ async def load_yaml_file(self, object_class, filename, access):
             obj = object_class.load(src)
             obj.access = access
             plugin_path = pathlib.PurePath(filename).parts
-            obj.plugin = plugin_path[1] if 'plugins' in plugin_path else None
+            obj.plugin = plugin_path[1] if 'plugins' in plugin_path else ''
             await self.store(obj)
 
     """ PRIVATE """
@@ -343,7 +344,7 @@ async def _load_data_encoders(self, plugins):
 
     async def _create_ability(self, ability_id, name=None, description=None, tactic=None, technique_id=None,
                               technique_name=None, executors=None, requirements=None, privilege=None,
-                              repeatable=False, buckets=None, access=None, singleton=False, plugin=None, **kwargs):
+                              repeatable=False, buckets=None, access=None, singleton=False, plugin='', **kwargs):
         ability = Ability(ability_id=ability_id, name=name, description=description, tactic=tactic,
                           technique_id=technique_id, technique_name=technique_name, executors=executors,
                           requirements=requirements, privilege=privilege, repeatable=repeatable, buckets=buckets,

From 36a7cb5f96ca5307656111eb382abb4227f596af Mon Sep 17 00:00:00 2001
From: Adam Gaudreau <agaudreau@mitre.org>
Date: Tue, 23 Nov 2021 11:29:23 -0500
Subject: [PATCH 6/6] Remove duplicate plugin logic to fn

---
 app/service/data_svc.py | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/app/service/data_svc.py b/app/service/data_svc.py
index 7403384c1..202e45fae 100644
--- a/app/service/data_svc.py
+++ b/app/service/data_svc.py
@@ -161,8 +161,7 @@ async def load_ability_file(self, filename, access):
                 requirements = await self._load_ability_requirements(ab.pop('requirements', []))
                 buckets = ab.pop('buckets', [tactic])
                 ab.pop('access', None)
-                plugin_path = pathlib.PurePath(filename).parts
-                plugin = plugin_path[1] if 'plugins' in plugin_path else ''
+                plugin = self._get_plugin_name(filename)
                 ab.pop('plugin', plugin)
 
                 if tactic and tactic not in filename:
@@ -243,8 +242,7 @@ async def load_yaml_file(self, object_class, filename, access):
         for src in self.strip_yml(filename):
             obj = object_class.load(src)
             obj.access = access
-            plugin_path = pathlib.PurePath(filename).parts
-            obj.plugin = plugin_path[1] if 'plugins' in plugin_path else ''
+            obj.plugin = self._get_plugin_name(filename)
             await self.store(obj)
 
     """ PRIVATE """
@@ -418,3 +416,7 @@ async def _verify_default_objective_exists(self):
     async def _verify_adversary_profiles(self):
         for adv in await self.locate('adversaries'):
             adv.verify(log=self.log, abilities=self.ram['abilities'], objectives=self.ram['objectives'])
+
+    def _get_plugin_name(self, filename):
+        plugin_path = pathlib.PurePath(filename).parts
+        return plugin_path[1] if 'plugins' in plugin_path else ''