Compare commits

..

4 Commits

Author SHA1 Message Date
Robert Bongart (MSc MSc MA)
aa0233ad59
Merge pull request #18 from 2lambda123/dependabot/npm_and_yarn/app/backend/npm_and_yarn-ec7b19cc00
Bump the npm_and_yarn group across 2 directories with 10 updates
2024-06-29 06:49:54 +02:00
dependabot[bot]
be98df17b0
Bump the npm_and_yarn group across 2 directories with 10 updates
Bumps the npm_and_yarn group with 3 updates in the /app/backend directory: [shell-quote](https://github.com/ljharb/shell-quote), [ws](https://github.com/websockets/ws) and [y18n](https://github.com/yargs/y18n).
Bumps the npm_and_yarn group with 8 updates in the /app/frontend directory:

| Package | From | To |
| --- | --- | --- |
| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |
| [async](https://github.com/caolan/async) | `2.6.3` | `2.6.4` |
| [qs](https://github.com/ljharb/qs) | `6.5.2` | `6.5.3` |
| [dns-packet](https://github.com/mafintosh/dns-packet) | `1.3.1` | `1.3.4` |
| [highlight.js](https://github.com/highlightjs/highlight.js) | `9.18.3` | `10.7.3` |
| [cli-highlight](https://github.com/felixfbecker/cli-highlight) | `2.1.4` | `2.1.11` |
| [minimist](https://github.com/minimistjs/minimist) | `1.2.5` | `1.2.8` |
| [shell-quote](https://github.com/ljharb/shell-quote) | `1.7.2` | `1.8.1` |



Updates `shell-quote` from 1.7.2 to 1.8.1
- [Changelog](https://github.com/ljharb/shell-quote/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ljharb/shell-quote/compare/v1.7.2...v1.8.1)

Updates `ws` from 6.2.1 to 6.2.3
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](https://github.com/websockets/ws/compare/6.2.1...6.2.3)

Updates `y18n` from 4.0.0 to 4.0.3
- [Release notes](https://github.com/yargs/y18n/releases)
- [Changelog](https://github.com/yargs/y18n/blob/y18n-v4.0.3/CHANGELOG.md)
- [Commits](https://github.com/yargs/y18n/compare/v4.0.0...y18n-v4.0.3)

Updates `semver` from 5.7.1 to 5.7.2
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md)
- [Commits](https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2)

Updates `async` from 2.6.3 to 2.6.4
- [Release notes](https://github.com/caolan/async/releases)
- [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md)
- [Commits](https://github.com/caolan/async/compare/v2.6.3...v2.6.4)

Updates `qs` from 6.5.2 to 6.5.3
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ljharb/qs/compare/v6.5.2...v6.5.3)

Updates `dns-packet` from 1.3.1 to 1.3.4
- [Changelog](https://github.com/mafintosh/dns-packet/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mafintosh/dns-packet/compare/v1.3.1...v1.3.4)

Updates `highlight.js` from 9.18.3 to 10.7.3
- [Release notes](https://github.com/highlightjs/highlight.js/releases)
- [Changelog](https://github.com/highlightjs/highlight.js/blob/10.7.3/CHANGES.md)
- [Commits](https://github.com/highlightjs/highlight.js/commits/10.7.3)

Updates `cli-highlight` from 2.1.4 to 2.1.11
- [Release notes](https://github.com/felixfbecker/cli-highlight/releases)
- [Commits](https://github.com/felixfbecker/cli-highlight/compare/v2.1.4...v2.1.11)

Updates `minimist` from 1.2.5 to 1.2.8
- [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md)
- [Commits](https://github.com/minimistjs/minimist/compare/v1.2.5...v1.2.8)

Updates `shell-quote` from 1.7.2 to 1.8.1
- [Changelog](https://github.com/ljharb/shell-quote/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ljharb/shell-quote/compare/v1.7.2...v1.8.1)

---
updated-dependencies:
- dependency-name: shell-quote
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ws
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: y18n
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: semver
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: async
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: qs
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: dns-packet
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: highlight.js
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: cli-highlight
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimist
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: shell-quote
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-06-28 14:38:10 +00:00
Robert Bongart (MSc MSc MA)
daa3c0f165
Merge pull request #17 from 2lambda123/dependabot/npm_and_yarn/app/backend/npm_and_yarn-ecfa3dbf2e
Bump the npm_and_yarn group across 2 directories with 11 updates
2024-06-28 16:17:52 +02:00
dependabot[bot]
a44e61fe46
Bump the npm_and_yarn group across 2 directories with 11 updates
Bumps the npm_and_yarn group with 1 update in the /app/backend directory: [lodash](https://github.com/lodash/lodash).
Bumps the npm_and_yarn group with 11 updates in the /app/frontend directory:

| Package | From | To |
| --- | --- | --- |
| [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.11.5` | `7.24.7` |
| [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) | `0.2.0` | `0.2.2` |
| [elliptic](https://github.com/indutny/elliptic) | `6.5.3` | `6.5.5` |
| [eventsource](https://github.com/EventSource/eventsource) | `1.0.7` | `1.1.2` |
| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.13.0` | `1.15.6` |
| [json-schema](https://github.com/kriszyp/json-schema) | `0.2.3` | `0.4.0` |
| [jsprim](https://github.com/joyent/node-jsprim) | `1.4.1` | `1.4.2` |
| [lodash](https://github.com/lodash/lodash) | `4.17.20` | `4.17.21` |
| [url-parse](https://github.com/unshiftio/url-parse) | `1.4.7` | `1.5.10` |
| [ws](https://github.com/websockets/ws) | `6.2.1` | `6.2.3` |
| [y18n](https://github.com/yargs/y18n) | `4.0.0` | `4.0.3` |



Updates `lodash` from 4.17.20 to 4.17.21
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.20...4.17.21)

Updates `@babel/traverse` from 7.11.5 to 7.24.7
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.24.7/packages/babel-traverse)

Updates `decode-uri-component` from 0.2.0 to 0.2.2
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2)

Updates `elliptic` from 6.5.3 to 6.5.5
- [Commits](https://github.com/indutny/elliptic/compare/v6.5.3...v6.5.5)

Updates `eventsource` from 1.0.7 to 1.1.2
- [Changelog](https://github.com/EventSource/eventsource/blob/master/HISTORY.md)
- [Commits](https://github.com/EventSource/eventsource/compare/v1.0.7...v1.1.2)

Updates `follow-redirects` from 1.13.0 to 1.15.6
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.13.0...v1.15.6)

Updates `json-schema` from 0.2.3 to 0.4.0
- [Commits](https://github.com/kriszyp/json-schema/compare/v0.2.3...v0.4.0)

Updates `jsprim` from 1.4.1 to 1.4.2
- [Changelog](https://github.com/TritonDataCenter/node-jsprim/blob/v1.4.2/CHANGES.md)
- [Commits](https://github.com/joyent/node-jsprim/compare/v1.4.1...v1.4.2)

Updates `lodash` from 4.17.20 to 4.17.21
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.20...4.17.21)

Updates `url-parse` from 1.4.7 to 1.5.10
- [Commits](https://github.com/unshiftio/url-parse/compare/1.4.7...1.5.10)

Updates `ws` from 6.2.1 to 6.2.3
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](https://github.com/websockets/ws/compare/6.2.1...6.2.3)

Updates `y18n` from 4.0.0 to 4.0.3
- [Release notes](https://github.com/yargs/y18n/releases)
- [Changelog](https://github.com/yargs/y18n/blob/y18n-v4.0.3/CHANGELOG.md)
- [Commits](https://github.com/yargs/y18n/compare/v4.0.0...y18n-v4.0.3)

---
updated-dependencies:
- dependency-name: lodash
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: "@babel/traverse"
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: decode-uri-component
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: elliptic
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: eventsource
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: follow-redirects
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: json-schema
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: jsprim
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: lodash
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: url-parse
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ws
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: y18n
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-06-28 11:16:40 +00:00
4 changed files with 24745 additions and 24535 deletions

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

View File

@ -1,149 +1,149 @@
#!/usr/bin/env python3 #!/usr/bin/env python3
# -*- coding: utf-8 -*- # -*- coding: utf-8 -*-
from app.utils import read_config from app.utils import read_config
from app.classes.iocs import IOCs from app.classes.iocs import IOCs
from app.classes.whitelist import WhiteList from app.classes.whitelist import WhiteList
from app.classes.misp import MISP from app.classes.misp import MISP
import requests import requests
import json import json
import urllib3 import urllib3
import time import time
from multiprocessing import Process from multiprocessing import Process
""" """
This file is parsing the watchers present This file is parsing the watchers present
in the configuration file. This in order to get in the configuration file. This in order to get
automatically new iocs / elements from remote automatically new iocs / elements from remote
sources without user interaction. sources without user interaction.
""" """
urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning) urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)
def watch_iocs(): def watch_iocs():
""" """
Retrieve IOCs from the remote URLs defined in config/watchers. Retrieve IOCs from the remote URLs defined in config/watchers.
For each IOC, add it to the DB. For each IOC, add it to the DB.
""" """
# Retrieve the URLs from the configuration # Retrieve the URLs from the configuration
urls = read_config(("watchers", "iocs")) urls = read_config(("watchers", "iocs"))
watchers = [{"url": url, "status": False} for url in urls] watchers = [{"url": url, "status": False} for url in urls]
while True: while True:
for w in watchers: for w in watchers:
if w["status"] == False: if w["status"] == False:
iocs = IOCs() iocs = IOCs()
iocs_list = [] iocs_list = []
to_delete = [] to_delete = []
try: try:
res = requests.get(w["url"], verify=False, timeout=60) res = requests.get(w["url"], verify=False)
if res.status_code == 200: if res.status_code == 200:
content = json.loads(res.content) content = json.loads(res.content)
iocs_list = content["iocs"] if "iocs" in content else [] iocs_list = content["iocs"] if "iocs" in content else []
to_delete = content["to_delete"] if "to_delete" in content else [] to_delete = content["to_delete"] if "to_delete" in content else []
else: else:
w["status"] = False w["status"] = False
except: except:
w["status"] = False w["status"] = False
for ioc in iocs_list: for ioc in iocs_list:
try: try:
iocs.add(ioc["type"], ioc["tag"], iocs.add(ioc["type"], ioc["tag"],
ioc["tlp"], ioc["value"], "watcher") ioc["tlp"], ioc["value"], "watcher")
w["status"] = True w["status"] = True
except: except:
continue continue
for ioc in to_delete: for ioc in to_delete:
try: try:
iocs.delete_by_value(ioc["value"]) iocs.delete_by_value(ioc["value"])
w["status"] = True w["status"] = True
except: except:
continue continue
# If at least one URL haven't be parsed, let's retry in 1min. # If at least one URL haven't be parsed, let's retry in 1min.
if False in [w["status"] for w in watchers]: if False in [w["status"] for w in watchers]:
time.sleep(60) time.sleep(60)
else: else:
break break
def watch_whitelists(): def watch_whitelists():
""" """
Retrieve whitelist elements from the remote URLs Retrieve whitelist elements from the remote URLs
defined in config/watchers. For each (new ?) element, defined in config/watchers. For each (new ?) element,
add it to the DB. add it to the DB.
""" """
urls = read_config(("watchers", "whitelists")) urls = read_config(("watchers", "whitelists"))
watchers = [{"url": url, "status": False} for url in urls] watchers = [{"url": url, "status": False} for url in urls]
while True: while True:
for w in watchers: for w in watchers:
if w["status"] == False: if w["status"] == False:
whitelist = WhiteList() whitelist = WhiteList()
elements = [] elements = []
to_delete = [] to_delete = []
try: try:
res = requests.get(w["url"], verify=False, timeout=60) res = requests.get(w["url"], verify=False)
if res.status_code == 200: if res.status_code == 200:
content = json.loads(res.content) content = json.loads(res.content)
elements = content["elements"] if "elements" in content else [] elements = content["elements"] if "elements" in content else []
to_delete = content["to_delete"] if "to_delete" in content else [] to_delete = content["to_delete"] if "to_delete" in content else []
else: else:
w["status"] = False w["status"] = False
except: except:
w["status"] = False w["status"] = False
for elem in elements: for elem in elements:
try: try:
whitelist.add(elem["type"], elem["element"], "watcher") whitelist.add(elem["type"], elem["element"], "watcher")
w["status"] = True w["status"] = True
except: except:
continue continue
for elem in to_delete: for elem in to_delete:
try: try:
whitelist.delete_by_value(elem["element"]) whitelist.delete_by_value(elem["element"])
w["status"] = True w["status"] = True
except: except:
continue continue
if False in [w["status"] for w in watchers]: if False in [w["status"] for w in watchers]:
time.sleep(60) time.sleep(60)
else: else:
break break
def watch_misp(): def watch_misp():
""" """
Retrieve IOCs from misp instances. Each new element is Retrieve IOCs from misp instances. Each new element is
tested and then added to the database. tested and then added to the database.
""" """
iocs, misp = IOCs(), MISP() iocs, misp = IOCs(), MISP()
instances = [i for i in misp.get_instances()] instances = [i for i in misp.get_instances()]
while instances: while instances:
for i, ist in enumerate(instances): for i, ist in enumerate(instances):
status = misp.test_instance(ist["url"], status = misp.test_instance(ist["url"],
ist["apikey"], ist["apikey"],
ist["verifycert"]) ist["verifycert"])
if status: if status:
for ioc in misp.get_iocs(ist["id"]): for ioc in misp.get_iocs(ist["id"]):
iocs.add(ioc["type"], ioc["tag"], ioc["tlp"], iocs.add(ioc["type"], ioc["tag"], ioc["tlp"],
ioc["value"], "misp-{}".format(ist["id"])) ioc["value"], "misp-{}".format(ist["id"]))
misp.update_sync(ist["id"]) misp.update_sync(ist["id"])
instances.pop(i) instances.pop(i)
if instances: time.sleep(60) if instances: time.sleep(60)
p1 = Process(target=watch_iocs) p1 = Process(target=watch_iocs)
p2 = Process(target=watch_whitelists) p2 = Process(target=watch_whitelists)
p3 = Process(target=watch_misp) p3 = Process(target=watch_misp)
p1.start() p1.start()
p2.start() p2.start()
p3.start() p3.start()

View File

@ -1,82 +1,82 @@
#!/usr/bin/env python3 #!/usr/bin/env python3
# -*- coding: utf-8 -*- # -*- coding: utf-8 -*-
from app.utils import read_config from app.utils import read_config
import subprocess as sp import subprocess as sp
import requests import requests
import json import json
import os import os
import re import re
class Update(object): class Update(object):
def __init__(self): def __init__(self):
self.project_url = "https://api.github.com/repos/KasperskyLab/TinyCheck/tags" self.project_url = "https://api.github.com/repos/KasperskyLab/TinyCheck/tags"
self.app_path = "/usr/share/tinycheck" self.app_path = "/usr/share/tinycheck"
return None return None
def check_version(self): def check_version(self):
""" """
Check if a new version of TinyCheck is available Check if a new version of TinyCheck is available
by quering the Github api and comparing the last by quering the Github api and comparing the last
tag inside the VERSION file. tag inside the VERSION file.
:return: dict containing the available versions. :return: dict containing the available versions.
""" """
if read_config(("frontend", "update")): if read_config(("frontend", "update")):
try: try:
res = requests.get(self.project_url, timeout=60) res = requests.get(self.project_url)
res = json.loads(res.content.decode("utf8")) res = json.loads(res.content.decode("utf8"))
with open(os.path.join(self.app_path, "VERSION")) as f: with open(os.path.join(self.app_path, "VERSION")) as f:
cv = f.read() cv = f.read()
if cv != res[0]["name"]: if cv != res[0]["name"]:
return {"status": True, return {"status": True,
"message": "A new version is available", "message": "A new version is available",
"current_version": cv, "current_version": cv,
"next_version": res[0]["name"]} "next_version": res[0]["name"]}
else: else:
return {"status": True, return {"status": True,
"message": "This is the latest version", "message": "This is the latest version",
"current_version": cv} "current_version": cv}
except: except:
return {"status": False, return {"status": False,
"message": "Something went wrong (no API access nor version file)"} "message": "Something went wrong (no API access nor version file)"}
else: else:
return {"status": False, return {"status": False,
"message": "You don't have rights to do this operation."} "message": "You don't have rights to do this operation."}
def get_current_version(self): def get_current_version(self):
""" """
Get the current version of the TinyCheck instance Get the current version of the TinyCheck instance
:return: dict containing the current version or error. :return: dict containing the current version or error.
""" """
if read_config(("frontend", "update")): if read_config(("frontend", "update")):
try: try:
with open(os.path.join(self.app_path, "VERSION")) as f: with open(os.path.join(self.app_path, "VERSION")) as f:
return {"status": True, return {"status": True,
"current_version": f.read()} "current_version": f.read()}
except: except:
return {"status": False, return {"status": False,
"message": "Something went wrong - no version file ?"} "message": "Something went wrong - no version file ?"}
else: else:
return {"status": False, return {"status": False,
"message": "You don't have rights to do this operation."} "message": "You don't have rights to do this operation."}
def update_instance(self): def update_instance(self):
""" """
Update the instance by executing the update script. Update the instance by executing the update script.
:return: dict containing the update status. :return: dict containing the update status.
""" """
if read_config(("frontend", "update")): if read_config(("frontend", "update")):
try: try:
os.chdir(self.app_path) os.chdir(self.app_path)
sp.Popen(["bash", os.path.join(self.app_path, "update.sh")]) sp.Popen(["bash", os.path.join(self.app_path, "update.sh")])
return {"status": True, return {"status": True,
"message": "Update successfully launched"} "message": "Update successfully launched"}
except: except:
return {"status": False, return {"status": False,
"message": "Issue during the update"} "message": "Issue during the update"}
else: else:
return {"status": False, return {"status": False,
"message": "You don't have rights to do this operation."} "message": "You don't have rights to do this operation."}