hakiri 0.0.2 → 0.1.0

data/.gitignore

@@ -0,0 +1,17 @@
+.DS_Store
+*.rbc
+*.sassc
+.sass-cache
+capybara-*.html
+.rspec
+/.idea
+/.bundle
+/vendor/bundle
+/log/*
+/tmp/*
+/db/*.sqlite3
+/public/system/*
+/coverage/
+/spec/tmp/*
+**.orig
+*.gem

data/Gemfile

@@ -0,0 +1,6 @@
+source 'https://rubygems.org'
+
+gem 'commander'
+gem 'terminal-table'
+gem 'active_support'
+gem 'i18n'

data/Gemfile.lock

@@ -0,0 +1,21 @@
+GEM
+  remote: https://rubygems.org/
+  specs:
+    active_support (3.0.0)
+      activesupport (= 3.0.0)
+    activesupport (3.0.0)
+    commander (4.1.3)
+      highline (~> 1.6.11)
+    highline (1.6.19)
+    i18n (0.6.4)
+    terminal-table (1.4.5)
+
+PLATFORMS
+  java
+  ruby
+
+DEPENDENCIES
+  active_support
+  commander
+  i18n
+  terminal-table

data/bin/hakiri

@@ -2,6 +2,10 @@
 
 require 'rubygems'
 require 'commander/import'
+require 'hakiri'
+require 'terminal-table'
+
+separator = "+#{ '-' * 78 }+"
 
 program :name, 'hakiri'
 program :version, Hakiri::VERSION
@@ -9,11 +13,73 @@ program :description, 'Hakiri CLI'
 
 command :up do |c|
   c.syntax = 'hakiri up [options]'
-  c.summary = ''
-  c.description = ''
-  c.example 'description', 'command example'
-  c.option '--some-switch', 'Some switch that does something'
+  c.summary = 'Configure your stack with a JSON file.'
+  c.description = 'This command lets you load your custom stack JSON file, parses it and uploads it to your project at to www.hakiriup.com.'
+  c.option '--json_file STRING', String, 'Path to your JSON file'
+
+  c.action do |args, options|
+    options.default json_file: './technologies.json'
+
+    say 'Welcome to Hakiri!'
+    say separator
+
+    stack = Hakiri::Stack.new()
+    stack.build_from_json_file(options.json_file)
+    stack.fetch_versions
+
+    cli_output = Hakiri::CliOutput.new
+    say "Here are versions that Hakiri found based on the JSON file:"
+    puts cli_output.fancy_technologies_table(stack.technologies)
+  end
+end
+
+command :steps do |c|
+  c.syntax = 'hakiri steps [options]'
+  c.summary = 'Configure your stack in the simple walkthrough.'
+  c.description = 'This command launches a step by step walkthrough that will help you customize your stack.'
+
   c.action do |args, options|
-    # Do something or c.when_called Hakiri::Commands::Up
+    say 'Welcome to Hakiri Walkthrough!'
+    say separator
+
+    say 'Hakiri Walkthrough will help you configure your stack step by step and show you '
+    say 'vulnerabilities at the end.'
+    say separator
+    say 'Step 1 of 5: Rails Server'
+    say '1. Unicorn'
+    say '2. Phusion Passenger'
+    say '3. Thin'
+    say '4. Trinidad'
+    say '5. None of the above'
+    server = ask('What do you use as your Rails server? (1, 2, 3, 4 or 5) ', Integer) { |q| q.in = 1..5 }
+    say separator
+    say 'Step 2 of 5: Secondary Server'
+    say '1. Apache'
+    say '2. nginx'
+    say '3. Both'
+    say '4. Neither'
+    extra_server = ask('Do you use Apache or nginx? (1, 2, 3 or 4) ', Integer) { |q| q.in = 1..4 }
+    say separator
+    say 'Step 3 of 5: Database'
+    say '1. MySQL'
+    say '2. Postgres'
+    say '3. MongoDB'
+    say '4. None of the above'
+    db = ask('What database do you use? (1, 2, 3 or 4) ', Integer) { |q| q.in = 1..4 }
+    say separator
+    redis = agree 'Step 4 of 5: do you use Redis? (yes or no) '
+    say separator
+    memcached = agree 'Step 5 of 5: do you use Memcached? (yes or no) '
+    say separator
+    say 'Fetching versions on your system...'
+    say separator
+
+    stack = Hakiri::Stack.new()
+    stack.build_from_input(server, extra_server, db, redis, memcached)
+    stack.fetch_versions
+
+    cli_output = Hakiri::CliOutput.new
+    say 'Here are versions that Hakiri found:'
+    puts cli_output.fancy_technologies_table(stack.technologies)
   end
 end

data/hakiri.gemspec

@@ -0,0 +1,22 @@
+$:.push File.expand_path('../lib', __FILE__)
+require 'hakiri/version'
+
+Gem::Specification.new do |s|
+  s.name          = 'hakiri'
+  s.version       = Hakiri::VERSION
+  s.date          = '2013-06-04'
+  s.summary       = 'CLI for Hakiri'
+  s.description   = 'This is a tool to automate bug hunting.'
+  s.authors       = ['Vasily Vasinov']
+  s.email         = 'vasinov@me.com'
+  s.files         = `git ls-files`.split("\n")
+  s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
+  s.require_paths = ['lib']
+  s.homepage      = 'http://www.hakiriup.com'
+  s.license       = 'MIT'
+
+  s.add_dependency 'commander'
+  s.add_dependency 'terminal-table'
+  s.add_dependency 'active_support'
+  s.add_dependency 'i18n'
+end

data/lib/hakiri.rb

@@ -1,8 +1,24 @@
-class Hakiri
-  def self.start
-    version_retriever = VersionRetriever.new
-    puts version_retriever.get_ruby 
-  end
-end
+module Hakiri
 
-require 'hakiri/version_retriever'
+end
+require 'hakiri/stack'
+require 'hakiri/version'
+require 'hakiri/cli_output'
+require 'hakiri/technologies/technology'
+require 'hakiri/technologies/apache'
+require 'hakiri/technologies/apache_tomcat'
+require 'hakiri/technologies/java'
+require 'hakiri/technologies/jruby'
+require 'hakiri/technologies/linux_kernel'
+require 'hakiri/technologies/memcached'
+require 'hakiri/technologies/mongodb'
+require 'hakiri/technologies/mysql'
+require 'hakiri/technologies/nginx'
+require 'hakiri/technologies/phusion_passenger'
+require 'hakiri/technologies/postgres'
+require 'hakiri/technologies/redis'
+require 'hakiri/technologies/ruby'
+require 'hakiri/technologies/ruby_on_rails'
+require 'hakiri/technologies/thin'
+require 'hakiri/technologies/trinidad'
+require 'hakiri/technologies/unicorn'

data/lib/hakiri/cli_output.rb

@@ -0,0 +1,11 @@
+class Hakiri::CliOutput
+  def initialize
+    @technologies_table = []
+  end
+
+  def fancy_technologies_table(technologies)
+    technologies.each { |key, value| @technologies_table << [key, value[:version]] }
+
+    Terminal::Table.new rows: @technologies_table
+  end
+end

data/lib/hakiri/stack.rb

@@ -0,0 +1,107 @@
+require 'active_support/all'
+
+class Hakiri::Stack
+  attr_accessor :technologies, :default_path
+
+  # This method initialized Hakiri::Stack class
+  #
+  def initialize()
+    @default_path = ''
+    @technologies = {}
+  end
+
+  # This method parses a supplied JSON file and sets stack technologies.
+  #
+  # * *Args*    :
+  #   - +json_file+ -> JSON file with technologies in the Hakiri format.
+  #
+  def build_from_json_file(json_file)
+    @technologies = JSON.parse(IO.read(json_file))
+  end
+
+  # This method analyzes user input from the Hakiri gem and sets up
+  # default paths to retrieve versions.
+  #
+  # * *Args*    :
+  #   - +server+ -> Rails server selection.
+  #   - +extra_server+ -> Apache, nginx, both or neither.
+  #   - +db+ -> DB selection.
+  #   - +redis+ -> is Redis present?
+  #   - +memcached+ -> is Memcached present?
+  #
+  def build_from_input(server, extra_server, db, redis, memcached)
+    @technologies['ruby'] = { path: @default_path }
+    @technologies['ruby_on_rails'] = { path: @default_path }
+
+    case server
+      when 1
+        @technologies['unicorn'] = { path: @default_path }
+      when 2
+        @technologies['phusion-passenger'] = { path: @default_path }
+      when 3
+        @technologies['thin'] = { path: @default_path }
+      when 4
+        @technologies['trinidad'] = { path: @default_path }
+        @technologies['java'] = { path: @default_path }
+        @technologies['apache-tomcat'] = { path: @default_path }
+        @technologies['jruby'] = { path: @default_path }
+      else
+        nil
+    end
+
+    case extra_server
+      when 1
+        @technologies['apache'] = { path: @default_path }
+      when 2
+        @technologies['nginx'] = { path: @default_path }
+      when 3
+        @technologies['apache'] = { path: @default_path }
+        @technologies['nginx'] = { path: @default_path }
+      else
+        nil
+    end
+
+    case db
+      when 1
+        @technologies['mysql'] = { path: @default_path }
+      when 2
+        @technologies['postgres'] = { path: @default_path }
+      when 3
+        @technologies['mongodb'] = { path: @default_path }
+      else
+        nil
+    end
+
+    @technologies['redis'] = { path: @default_path } if redis
+
+    @technologies['memcached'] = { path: @default_path } if memcached
+  end
+
+  # This method attempts to get versions of technologies in the @technologies
+  # instance variable. If a version is part of a technology hash then it doesn't
+  # get overwritten by this method.
+  #
+  def fetch_versions
+    @technologies.each do |technology_name, value|
+      begin
+        if @technologies[technology_name]['version'] and @technologies[technology_name]['version'] != ''
+          @technologies[technology_name][:version] = @technologies[technology_name]['version']
+        else
+          technology_class = Hakiri.const_get(technology_name.gsub('-', '_').camelcase)
+          technology_object = technology_class.new(value[:path])
+
+          if technology_object.version
+            @technologies[technology_name][:version] = technology_object.version
+          else
+            @technologies.delete(technology_name)
+          end
+        end
+
+        @technologies[technology_name].delete('version')
+      rescue Exception => e
+        puts "Error: technology #{technology_name} doesn't exist."
+        @technologies.delete(technology_name)
+      end
+    end
+  end
+end

data/lib/hakiri/technologies/apache.rb

@@ -0,0 +1,11 @@
+class Hakiri::Apache < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}httpd -v 2>&1 | awk 'NR == 1 { print ; }'`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/apache_tomcat.rb

@@ -0,0 +1,11 @@
+class Hakiri::ApacheTomcat < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}trinidad -v 2>&1`
+      /\d+(\.\d+)?(\.\d+)?\)/.match(output)[0].gsub(/\)/, '')
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/java.rb

@@ -0,0 +1,11 @@
+class Hakiri::Java < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}java -version 2>&1 | awk 'NR == 2 { print ; }'`
+      /\d+(\.\d+)?(\.\d+)?(_\d+)?/.match(output)[0].gsub('_', '.')
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/jruby.rb

@@ -0,0 +1,11 @@
+class Hakiri::Jruby < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}jruby -v 2>&1 | awk 'NR == 2 { print ; }'`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/linux_kernel.rb

@@ -0,0 +1,11 @@
+class Hakiri::LinuxKernel < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}uname -r  2>&1`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/memcached.rb

@@ -0,0 +1,11 @@
+class Hakiri::Memcached < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}memcached -h  2>&1 | awk 'NR == 1 { print ; }'`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/mongodb.rb

@@ -0,0 +1,15 @@
+class Hakiri::Mongodb < Hakiri::Technology
+  def version
+    begin
+      output = `ps -ax | grep mongo 2>&1`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+
+  def puts_error(e, output)
+    puts "Error: couldn't find a running version of MongoDB"
+  end
+end

data/lib/hakiri/technologies/mysql.rb

@@ -0,0 +1,11 @@
+class Hakiri::Mysql < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}mysql -version 2>&1`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/nginx.rb

@@ -0,0 +1,11 @@
+class Hakiri::Nginx < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}nginx -v 2>&1`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/phusion_passenger.rb

@@ -0,0 +1,11 @@
+class Hakiri::PhusionPassenger < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}passenger -v 2>&1 | awk 'NR == 1 { print ; }'`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/postgres.rb

@@ -0,0 +1,11 @@
+class Hakiri::Postgres < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}postgres -V 2>&1`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/redis.rb

@@ -0,0 +1,11 @@
+class Hakiri::Redis < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}redis-server -v 2>&1`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/ruby.rb

@@ -0,0 +1,11 @@
+class Hakiri::Ruby < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}ruby -v 2>&1`
+      /\d+(\.\d+)(\.\d+)(p\d+)/.match(output)[0].gsub('p', '.')
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/ruby_on_rails.rb

@@ -0,0 +1,11 @@
+class Hakiri::RubyOnRails < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}rails -v 2>&1`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/technology.rb

@@ -0,0 +1,19 @@
+class Hakiri::Technology
+
+  # This method initialized Hakiri::Technology class
+  #
+  def initialize(path = '')
+    @default_regexp = /\d+(\.\d+)(\.\d+)/
+    @path = path
+  end
+
+  # This method outputs a default error in the command line.
+  #
+  # * *Args*    :
+  #   - +e+ -> Supplied exception.
+  #   - +output+ -> Output that triggered the error.
+  #
+  def puts_error(e, output)
+    puts "Error: #{output.lines.first}"
+  end
+end

data/lib/hakiri/technologies/thin.rb

@@ -0,0 +1,11 @@
+class Hakiri::Thin < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}thin -v 2>&1`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/trinidad.rb

@@ -0,0 +1,12 @@
+class Hakiri::Trinidad < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}trinidad -v 2>&1 | awk 'NR == 2 { print ; }'`
+      puts output
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/technologies/unicorn.rb

@@ -0,0 +1,11 @@
+class Hakiri::Unicorn < Hakiri::Technology
+  def version
+    begin
+      output = `#{@path}unicorn -v 2>&1`
+      @default_regexp.match(output)[0]
+    rescue Exception => e
+      puts_error(e, output)
+      nil
+    end
+  end
+end

data/lib/hakiri/version.rb

@@ -0,0 +1,3 @@
+module Hakiri
+  VERSION = '0.1.0'
+end

data/technologies.json

@@ -0,0 +1,4 @@
+{
+    "ruby": { "path": "", "version": "" },
+    "ruby-on-rails": { "path": "" }
+}

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: hakiri
 version: !ruby/object:Gem::Version
-  version: 0.0.2
+  version: 0.1.0
   prerelease: 
 platform: ruby
 authors:
@@ -27,6 +27,54 @@ dependencies:
     - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: terminal-table
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: active_support
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: i18n
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
 description: This is a tool to automate bug hunting.
 email: vasinov@me.com
 executables:
@@ -34,8 +82,34 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
-- lib/hakiri.rb
+- .gitignore
+- Gemfile
+- Gemfile.lock
 - bin/hakiri
+- hakiri.gemspec
+- lib/hakiri.rb
+- lib/hakiri/cli_output.rb
+- lib/hakiri/stack.rb
+- lib/hakiri/technologies/apache.rb
+- lib/hakiri/technologies/apache_tomcat.rb
+- lib/hakiri/technologies/java.rb
+- lib/hakiri/technologies/jruby.rb
+- lib/hakiri/technologies/linux_kernel.rb
+- lib/hakiri/technologies/memcached.rb
+- lib/hakiri/technologies/mongodb.rb
+- lib/hakiri/technologies/mysql.rb
+- lib/hakiri/technologies/nginx.rb
+- lib/hakiri/technologies/phusion_passenger.rb
+- lib/hakiri/technologies/postgres.rb
+- lib/hakiri/technologies/redis.rb
+- lib/hakiri/technologies/ruby.rb
+- lib/hakiri/technologies/ruby_on_rails.rb
+- lib/hakiri/technologies/technology.rb
+- lib/hakiri/technologies/thin.rb
+- lib/hakiri/technologies/trinidad.rb
+- lib/hakiri/technologies/unicorn.rb
+- lib/hakiri/version.rb
+- technologies.json
 homepage: http://www.hakiriup.com
 licenses:
 - MIT