ats 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: ade04cb82df5186dcc5e66d3d097f7586b7de46389aacfe5fe0244c21d7349a4
+  data.tar.gz: e6c84e03d1f6d7dc030b48536091b67d6ca5df024782ecdf02aa375f01b4ca7d
+SHA512:
+  metadata.gz: dbdadbed11f23133cdaa012e039e840cd4856c4209d443fca3b8bd8f359ffb1cb83fd90000977bb8ae8da899cc5203b8436bbca0deb726dd7271fd9781c69d5a
+  data.tar.gz: 20f5685b7b7b2fb24a50107c7c80ba961cbe22d9e5a1af87a26a1a8cc42df58b810f27180a0326103146de651b60c136761b7c3fa9ddf395070c92dea6a7cafd

data/Gemfile

@@ -0,0 +1,6 @@
+source "https://rubygems.org"
+
+git_source(:github) {|repo_name| "https://github.com/#{repo_name}" }
+
+# Specify your gem's dependencies in ats-cli.gemspec
+gemspec

data/Gemfile.lock

@@ -0,0 +1,37 @@
+PATH
+  remote: .
+  specs:
+    ats (0.1.0)
+      thor (~> 0.20)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    diff-lcs (1.3)
+    rake (10.5.0)
+    rspec (3.7.0)
+      rspec-core (~> 3.7.0)
+      rspec-expectations (~> 3.7.0)
+      rspec-mocks (~> 3.7.0)
+    rspec-core (3.7.1)
+      rspec-support (~> 3.7.0)
+    rspec-expectations (3.7.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.7.0)
+    rspec-mocks (3.7.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.7.0)
+    rspec-support (3.7.1)
+    thor (0.20.0)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  ats!
+  bundler (~> 1.16)
+  rake (~> 10.0)
+  rspec (~> 3.0)
+
+BUNDLED WITH
+   1.16.1

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2018 mokha
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,39 @@
+# Ats::Cli
+
+Welcome to your new gem! In this directory, you'll find the files you need to be able to package up your Ruby library into a gem. Put your Ruby code in the file `lib/ats/cli`. To experiment with that code, run `bin/console` for an interactive prompt.
+
+TODO: Delete this and the text above, and describe your gem
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'ats-cli'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install ats-cli
+
+## Usage
+
+TODO: Write usage instructions here
+
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/[USERNAME]/ats-cli.
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).

data/Rakefile

@@ -0,0 +1,6 @@
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+
+RSpec::Core::RakeTask.new(:spec)
+
+task default: :spec

data/ats-cli.gemspec

@@ -0,0 +1,30 @@
+
+lib = File.expand_path("../lib", __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require "ats/version"
+
+Gem::Specification.new do |spec|
+  spec.name          = "ats"
+  spec.version       = ATS::VERSION
+  spec.authors       = ["mokha"]
+  spec.email         = ["mo@mokhan.ca"]
+
+  spec.summary       = %q{A CLI for interacting with ATS.}
+  spec.description   = %q{A CLI for interacting with ATS.}
+  spec.homepage      = "https://www.mokhan.ca/"
+  spec.license       = "MIT"
+
+  spec.files = `git ls-files -z`.split("\x0").reject do |f|
+    f.match(%r{^(test|spec|features)/}) ||
+    f.match(/^\..*/) ||
+    f.match(%r{^bin/.*})
+  end
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  spec.add_dependency 'thor', '~> 0.20'
+  spec.add_development_dependency "bundler", "~> 1.16"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "rspec", "~> 3.0"
+end

data/exe/ats

@@ -0,0 +1,5 @@
+#!/usr/bin/env ruby
+
+require 'ats/cli'
+
+ATS::CLI::Application.start(ARGV)

data/lib/ats.rb

@@ -0,0 +1,29 @@
+require 'json'
+require 'logger'
+require 'net/http'
+require 'yaml'
+
+require 'ats/configuration'
+require 'ats/http_api'
+require 'ats/threat_grid/api'
+require 'ats/threat_grid/organizations'
+require 'ats/threat_grid/samples'
+require 'ats/threat_grid/search'
+require 'ats/threat_grid/users'
+require 'ats/version'
+
+module ATS
+  class << self
+    def logger
+      configuration.logger
+    end
+
+    def configure
+      yield configuration
+    end
+
+    def configuration
+      @configuration ||= Configuration.new
+    end
+  end
+end

data/lib/ats/cli.rb

@@ -0,0 +1,47 @@
+require 'thor'
+
+require 'ats'
+require 'ats/cli/threat_grid'
+
+module ATS
+  module CLI
+    class Application < Thor
+      package_name "ATS"
+
+      desc 'threatgrid SUBCOMMAND ...ARGS', 'interact with the Threat Grid API'
+      subcommand 'threatgrid', ThreatGrid::Application
+
+      desc 'version', 'Display the current version'
+      def version
+        say ATS::VERSION
+      end
+
+      desc 'setup', 'Initialize the .atsrc file.'
+      def setup(configuration = ATS.configuration)
+        say "Current Configuration:", :green
+        say JSON.pretty_generate(configuration.configuration), :green
+
+        configuration.config_files.each do |file|
+          if File.exist?(file)
+            say "Found #{file}. Nothing to do. Good bye!", :green
+            exit 0
+          end
+        end
+
+        say "Configuration file not found."
+        new_file = configuration.config_files.first
+        say "New file created at #{new_file}."
+        yaml = YAML.dump({
+          default: {
+            threat_grid: {
+              api_host: 'https://example.com',
+              api_key: 'secret'
+            }
+          }
+        })
+        say yaml, :yellow
+        IO.write(new_file, yaml)
+      end
+    end
+  end
+end

data/lib/ats/cli/threat_grid.rb

@@ -0,0 +1,14 @@
+require 'ats/cli/threat_grid/command'
+require 'ats/cli/threat_grid/organizations'
+require 'ats/cli/threat_grid/samples'
+require 'ats/cli/threat_grid/search'
+require 'ats/cli/threat_grid/users'
+
+require 'ats/cli/threat_grid/application'
+
+module ATS
+  module CLI
+    module ThreatGrid
+    end
+  end
+end

data/lib/ats/cli/threat_grid/application.rb

@@ -0,0 +1,26 @@
+module ATS
+  module CLI
+    module ThreatGrid
+      class Application < Thor
+        class_option :profile, default: :default, required: false
+
+        desc 'users SUBCOMMAND ...ARGS', 'interact with the Threat Grid API'
+        subcommand :users, ATS::CLI::ThreatGrid::Users
+
+        desc 'organizations SUBCOMMAND ...ARGS', 'interact with the Threat Grid API'
+        subcommand :organizations, ATS::CLI::ThreatGrid::Organizations
+
+        desc 'samples SUBCOMMAND ...ARGS', 'interact with the Threat Grid API'
+        subcommand :samples, ATS::CLI::ThreatGrid::Samples
+
+        desc 'search SUBCOMMAND ...ARGS', 'interact with the Threat Grid API'
+        subcommand :search, ATS::CLI::ThreatGrid::Search
+
+        desc 'whoami', 'whoami'
+        def whoami
+          say JSON.pretty_generate(ATS::ThreatGrid::API.new(profile: options['profile']).whoami)
+        end
+      end
+    end
+  end
+end

data/lib/ats/cli/threat_grid/command.rb

@@ -0,0 +1,26 @@
+module ATS
+  module CLI
+    module ThreatGrid
+      class Command < Thor
+        class_option :profile, default: :default, required: false
+
+        def self.printable_commands(*args)
+          super.map do |x|
+            x[0] = x[0].gsub(/^ats/, 'ats threatgrid')
+            x
+          end
+        end
+
+        protected
+
+        def api
+          ATS::ThreatGrid::API.new(profile: options['profile'])
+        end
+
+        def print_json(json)
+          say JSON.pretty_generate(json), :green
+        end
+      end
+    end
+  end
+end

data/lib/ats/cli/threat_grid/organizations.rb

@@ -0,0 +1,42 @@
+module ATS
+  module CLI
+    module ThreatGrid
+      class Organizations < Command
+        desc 'search <TERM>', 'search'
+        def search(term)
+          print_json api.organizations.search(term)
+        end
+
+        desc 'list', 'list'
+        def list
+          print_json api.organizations.list
+        end
+
+        desc 'show <ORG_ID>', 'show'
+        def show(org_id)
+          print_json api.organizations.show(org_id)
+        end
+
+        desc 'users <ORG_ID>', 'users'
+        def users(org_id)
+          print_json api.organizations.users(org_id)
+        end
+
+        desc 'samples <ORG_ID>', 'samples'
+        def samples(org_id)
+          print_json api.organizations.samples(org_id)
+        end
+
+        desc 'user-activity <ORG_ID>', 'user-activity'
+        def user_activity(org_id)
+          print_json api.organizations.user_activity(org_id)
+        end
+
+        desc 'entitlements <ORG_ID>', 'entitlements'
+        def entitlements(org_id)
+          print_json api.organizations.entitlements(org_id)
+        end
+      end
+    end
+  end
+end

data/lib/ats/cli/threat_grid/samples.rb

@@ -0,0 +1,12 @@
+module ATS
+  module CLI
+    module ThreatGrid
+      class Samples < Command
+        desc 'search <SHA256>', 'Search samples'
+        def search(term)
+          print_json api.samples.search(term)
+        end
+      end
+    end
+  end
+end

data/lib/ats/cli/threat_grid/search.rb

@@ -0,0 +1,12 @@
+module ATS
+  module CLI
+    module ThreatGrid
+      class Search < Command
+        desc 'urls <URL>', 'Search urls'
+        def urls(url)
+          print_json api.search.urls(url)
+        end
+      end
+    end
+  end
+end

data/lib/ats/cli/threat_grid/users.rb

@@ -0,0 +1,32 @@
+module ATS
+  module CLI
+    module ThreatGrid
+      class Users < Command
+        desc 'show <login>', 'show'
+        def show(login)
+          print_json api.users.show(login)
+        end
+
+        desc 'organization <login>', 'organization'
+        def organization(login)
+          print_json api.users.organization(login)
+        end
+
+        desc 'activity <login>', 'activity'
+        def activity(login)
+          print_json api.users.activity(login)
+        end
+
+        desc 'samples <login>', 'samples'
+        def samples(login)
+          print_json api.users.samples(login)
+        end
+
+        desc 'rate-limit <login>', 'rate-limit'
+        def rate_limit(login)
+          print_json api.users.rate_limit(login)
+        end
+      end
+    end
+  end
+end

data/lib/ats/configuration.rb

@@ -0,0 +1,29 @@
+module ATS
+  class Configuration
+    attr_accessor :logger, :config_files, :configuration
+
+    def initialize
+      @logger = Logger.new(STDOUT)
+      @logger.level = Logger::DEBUG
+      @config_files = [
+        File.join(Dir.home, ".atsrc"),
+        File.expand_path('.atsrc'),
+        ENV['ATSRC']
+      ].compact
+
+      @configuration = load_configuration
+    end
+
+    def [](key)
+      @configuration[key]
+    end
+
+    def load_configuration(files = config_files)
+      files.inject({}) do |memo, file|
+        logger.debug("Loading... #{file}")
+        memo.merge!(YAML.load(IO.read(file))) if File.exist?(file)
+        memo
+      end
+    end
+  end
+end

data/lib/ats/http_api.rb

@@ -0,0 +1,69 @@
+module ATS
+  class HttpAPI
+    def initialize(headers: {})
+      @default_headers = headers
+    end
+
+    def execute(uri, request)
+      http_for(uri).request(request)
+    end
+
+    def get(uri, headers: {}, body: {})
+      request = get_for(uri, headers: headers, body: body)
+      response = execute(uri, request)
+      if block_given?
+        yield request, response
+      else
+        response
+      end
+    end
+
+    def post(uri, headers: {}, body: {})
+      request = post_for(uri, headers: headers, body: body)
+      response = execute(uri, request)
+      if block_given?
+        yield request, response
+      else
+        response
+      end
+    end
+
+    def put(uri, headers: {}, body: {})
+      request = put_for(uri, headers: headers, body: body)
+      response = execute(uri, request)
+      if block_given?
+        yield request, response
+      else
+        response
+      end
+    end
+
+    private
+
+    def http_for(uri)
+      http = Net::HTTP.new(uri.host, uri.port)
+      http.read_timeout = 30
+      http.use_ssl = uri.is_a?(URI::HTTPS)
+      http.set_debug_output(ATS.logger)
+      http
+    end
+
+    def post_for(uri, headers: {}, body: {})
+      Net::HTTP::Post.new(uri.path, @default_headers.merge(headers)).tap do |x|
+        x.body = JSON.generate(body)
+      end
+    end
+
+    def put_for(uri, headers: {}, body: {})
+      Net::HTTP::Put.new(uri.path, @default_headers.merge(headers)).tap do |x|
+        x.body = JSON.generate(body)
+      end
+    end
+
+    def get_for(uri, headers: {}, body: {})
+      Net::HTTP::Get.new(uri.path, @default_headers.merge(headers)).tap do |x|
+        x.body = JSON.generate(body)
+      end
+    end
+  end
+end

data/lib/ats/threat_grid/api.rb

@@ -0,0 +1,68 @@
+require 'ats/http_api'
+
+module ATS
+  module ThreatGrid
+    class API
+      HEADERS = {
+        'Content-Type' => 'application/json',
+        'User-Agent' => "RubyGems/ATS #{ATS::VERSION}",
+      }.freeze
+
+      attr_reader :http, :profile, :configuration
+
+      def initialize(
+        api: HttpAPI.new(headers: HEADERS),
+        profile: :default,
+        configuration: ATS.configuration
+      )
+        @http = api
+        @profile = profile.to_s
+        @configuration = configuration
+      end
+
+      def whoami
+        get("session/whoami")
+      end
+
+      def users
+        ATS::ThreatGrid::Users.new(self)
+      end
+
+      def organizations
+        ATS::ThreatGrid::Organizations.new(self)
+      end
+
+      def samples
+        ATS::ThreatGrid::Samples.new(self)
+      end
+
+      def search
+        ATS::ThreatGrid::Search.new(self)
+      end
+
+      def get(url, params: {}, version: 3)
+        http.get(build_uri(url, version: version), body: default_payload.merge(params)) do |request, response|
+          JSON.parse(response.body, symbolize_names: true)[:data]
+        end
+      end
+
+      private
+
+      def default_payload
+        { api_key: api_key }
+      end
+
+      def build_uri(relative_url, version:)
+        URI.parse("#{api_host}/api/v#{version}/#{relative_url}")
+      end
+
+      def api_key
+        configuration[profile]['threat_grid']['api_key']
+      end
+
+      def api_host
+        configuration[profile]['threat_grid']['api_host']
+      end
+    end
+  end
+end

data/lib/ats/threat_grid/organizations.rb

@@ -0,0 +1,39 @@
+module ATS
+  module ThreatGrid
+    class Organizations
+      attr_reader :api
+
+      def initialize(api)
+        @api = api
+      end
+
+      def list
+        api.get("organizations")
+      end
+
+      def search(term)
+        api.get("organizations", params: { query: term })
+      end
+
+      def show(id)
+        api.get("organizations/#{id}")
+      end
+
+      def users(id)
+        api.get("organizations/#{id}/users")
+      end
+
+      def samples(id)
+        api.get("organizations/#{id}/samples")
+      end
+
+      def user_activity(id)
+        api.get("organizations/#{id}/user-activity")
+      end
+
+      def entitlements(id)
+        api.get("organizations/#{id}/entitlements")
+      end
+    end
+  end
+end

data/lib/ats/threat_grid/samples.rb

@@ -0,0 +1,15 @@
+module ATS
+  module ThreatGrid
+    class Samples
+      attr_reader :api
+
+      def initialize(api)
+        @api = api
+      end
+
+      def search(term)
+        api.get("samples/search", params: { checksum: term })
+      end
+    end
+  end
+end

data/lib/ats/threat_grid/search.rb

@@ -0,0 +1,15 @@
+module ATS
+  module ThreatGrid
+    class Search
+      attr_reader :api
+
+      def initialize(api)
+        @api = api
+      end
+
+      def urls(url)
+        api.get("search/urls", params: { url: url }, version: 2)
+      end
+    end
+  end
+end

data/lib/ats/threat_grid/users.rb

@@ -0,0 +1,31 @@
+module ATS
+  module ThreatGrid
+    class Users
+      attr_reader :api
+
+      def initialize(api)
+        @api = api
+      end
+
+      def show(login)
+        api.get("users/#{login}")
+      end
+
+      def organization(login)
+        api.get("users/#{login}/organization")
+      end
+
+      def activity(login)
+        api.get("users/#{login}/activity")
+      end
+
+      def samples(login)
+        api.get("users/#{login}/samples")
+      end
+
+      def rate_limit(login)
+        api.get("users/#{login}/rate-limit")
+      end
+    end
+  end
+end

data/lib/ats/version.rb

@@ -0,0 +1,3 @@
+module ATS
+  VERSION = "0.1.0"
+end

metadata

@@ -0,0 +1,125 @@
+--- !ruby/object:Gem::Specification
+name: ats
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- mokha
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2018-03-18 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: thor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.20'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.20'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.16'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.16'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+description: A CLI for interacting with ATS.
+email:
+- mo@mokhan.ca
+executables:
+- ats
+extensions: []
+extra_rdoc_files: []
+files:
+- Gemfile
+- Gemfile.lock
+- LICENSE.txt
+- README.md
+- Rakefile
+- ats-cli.gemspec
+- exe/ats
+- lib/ats.rb
+- lib/ats/cli.rb
+- lib/ats/cli/threat_grid.rb
+- lib/ats/cli/threat_grid/application.rb
+- lib/ats/cli/threat_grid/command.rb
+- lib/ats/cli/threat_grid/organizations.rb
+- lib/ats/cli/threat_grid/samples.rb
+- lib/ats/cli/threat_grid/search.rb
+- lib/ats/cli/threat_grid/users.rb
+- lib/ats/configuration.rb
+- lib/ats/http_api.rb
+- lib/ats/threat_grid/api.rb
+- lib/ats/threat_grid/organizations.rb
+- lib/ats/threat_grid/samples.rb
+- lib/ats/threat_grid/search.rb
+- lib/ats/threat_grid/users.rb
+- lib/ats/version.rb
+homepage: https://www.mokhan.ca/
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.7.6
+signing_key: 
+specification_version: 4
+summary: A CLI for interacting with ATS.
+test_files: []