fingerprinter 0.1.5 → 0.1.7
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/fingerprinter/technologies/softwares/servicenow.rb +21 -0
- data/lib/fingerprinter.rb +32 -5
- metadata +3 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: bc97915b45277081abb4d06cbd9463bc82b214be082bec3aaa0af5655f28026d
|
|
4
|
+
data.tar.gz: 782347d3a249269a1c543f1c94230e88b9183b2bf3a310b10c7df4a9ee73f3f7
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: fe3aef3a9410d4a932e8b12b3f57a51c0d4286ebe006b5f6d53146231e0537b9874f35237c51c88ce324d54382d0a0de8bd48db3de9c0b826c4728f3aa23946d
|
|
7
|
+
data.tar.gz: 04e0164fe28d9ada0ad3d2095bc12b1bfa66d2447ed2ef8748b747391403acd6f3bd130bce371105fb8dd28be0a22c2ae974e68d5de5eb49fb7be95c663d68a5
|
|
@@ -0,0 +1,21 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
# ServiceNow Detection
|
|
4
|
+
class ServiceNow < Fingerprinter::Technologies
|
|
5
|
+
HEADERS_REGEX = {
|
|
6
|
+
'server' => /ServiceNow/,
|
|
7
|
+
'set-cookie' => /glide_user/
|
|
8
|
+
}.freeze
|
|
9
|
+
|
|
10
|
+
BODY_CONTENT_REGEX = [
|
|
11
|
+
/About ServiceNow/
|
|
12
|
+
].freeze
|
|
13
|
+
|
|
14
|
+
def self.run(data)
|
|
15
|
+
return unless response_headers_check(data[:response], HEADERS_REGEX) ||
|
|
16
|
+
title_detection(data[:doc], 'ServiceNow') ||
|
|
17
|
+
whole_body_check(data[:response], BODY_CONTENT_REGEX)
|
|
18
|
+
|
|
19
|
+
'ServiceNow'
|
|
20
|
+
end
|
|
21
|
+
end
|
data/lib/fingerprinter.rb
CHANGED
|
@@ -8,6 +8,11 @@ module Fingerprinter
|
|
|
8
8
|
Dir[File.join(__dir__, 'fingerprinter', 'core/*.rb')].sort.each { |file| require file }
|
|
9
9
|
Dir[File.join(__dir__, 'fingerprinter', 'utilities/*.rb')].sort.each { |file| require file }
|
|
10
10
|
|
|
11
|
+
EXCLUSIONS = %w[pass.diod.orange.com].freeze
|
|
12
|
+
WILDCARDS = [
|
|
13
|
+
['Application is not available', 'The application is currently not serving requests at this endpoint']
|
|
14
|
+
].freeze
|
|
15
|
+
|
|
11
16
|
def self.http_client
|
|
12
17
|
@http_client ||= HttpClient.new
|
|
13
18
|
end
|
|
@@ -32,10 +37,13 @@ module Fingerprinter
|
|
|
32
37
|
|
|
33
38
|
def run(urls)
|
|
34
39
|
urls.each do |url|
|
|
40
|
+
next if EXCLUSIONS.any? { |exclusion| url.match?(exclusion) }
|
|
41
|
+
|
|
35
42
|
response = get_response(url)
|
|
36
43
|
next unless response
|
|
44
|
+
next if wildcard?(response)
|
|
37
45
|
|
|
38
|
-
url =
|
|
46
|
+
url = effective_url(response, url)
|
|
39
47
|
|
|
40
48
|
responses = response.redirections
|
|
41
49
|
responses << response
|
|
@@ -55,6 +63,13 @@ module Fingerprinter
|
|
|
55
63
|
|
|
56
64
|
private
|
|
57
65
|
|
|
66
|
+
def wildcard?(response)
|
|
67
|
+
response_body = response.body
|
|
68
|
+
WILDCARDS.any? do |patterns|
|
|
69
|
+
patterns.all? { |pattern| response_body&.include?(pattern) }
|
|
70
|
+
end
|
|
71
|
+
end
|
|
72
|
+
|
|
58
73
|
def get_response(url)
|
|
59
74
|
response = nil
|
|
60
75
|
3.times do
|
|
@@ -67,19 +82,31 @@ module Fingerprinter
|
|
|
67
82
|
if stream_error?(response)
|
|
68
83
|
return
|
|
69
84
|
elsif timeout_without_scheme?(url, response)
|
|
70
|
-
url =
|
|
85
|
+
url = normalize_url(url)
|
|
71
86
|
return get_response(url)
|
|
72
87
|
end
|
|
73
88
|
return if response&.code == 0
|
|
74
|
-
return response if same_scope?(url, response)
|
|
89
|
+
return response if response.redirections.empty? || same_scope?(url, response)
|
|
75
90
|
|
|
76
91
|
response.redirections.first
|
|
77
92
|
end
|
|
78
93
|
|
|
94
|
+
def effective_url(response, url)
|
|
95
|
+
effective_url = Utilities::Urls.up_to_port(response.effective_url)
|
|
96
|
+
effective_url.nil? ? normalize_url(url) : effective_url
|
|
97
|
+
end
|
|
98
|
+
|
|
99
|
+
def normalize_url(url)
|
|
100
|
+
url.start_with?('http') ? url : "https://#{url}"
|
|
101
|
+
end
|
|
102
|
+
|
|
79
103
|
def same_scope?(url, response)
|
|
80
|
-
url =
|
|
104
|
+
url = normalize_url(url)
|
|
105
|
+
|
|
106
|
+
base_host = Utilities::Urls.uri_parse(url)&.host
|
|
107
|
+
response_host = Utilities::Urls.uri_parse(response&.effective_url)&.host
|
|
81
108
|
|
|
82
|
-
|
|
109
|
+
base_host == response_host || 'www.' + base_host == response_host
|
|
83
110
|
end
|
|
84
111
|
|
|
85
112
|
def stream_error?(response)
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: fingerprinter
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.1.
|
|
4
|
+
version: 0.1.7
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Joshua MARTINELLE
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2024-07-
|
|
11
|
+
date: 2024-07-16 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: concurrent-ruby
|
|
@@ -68,6 +68,7 @@ files:
|
|
|
68
68
|
- lib/fingerprinter/technologies/softwares/apache_ofbiz.rb
|
|
69
69
|
- lib/fingerprinter/technologies/softwares/f5_next_central_manager.rb
|
|
70
70
|
- lib/fingerprinter/technologies/softwares/nexus_repository.rb
|
|
71
|
+
- lib/fingerprinter/technologies/softwares/servicenow.rb
|
|
71
72
|
- lib/fingerprinter/technologies/softwares/tinyproxy.rb
|
|
72
73
|
- lib/fingerprinter/utilities/kb.rb
|
|
73
74
|
- lib/fingerprinter/utilities/parser.rb
|