honeycomb 0.0.3 → 0.0.4

data/lib/honeycomb/model/emu_services.rb

@@ -1,44 +0,0 @@
-#    honeycomb - Tool to manage and analyze data from the Dionaea Honeypot 
-#                Project
-#    Josh Grunzweig
-#    Copyright (C) 2011 Trustwave Holdings
-#
-#    This program is free software: you can redistribute it and/or modify it 
-#    under the terms of the GNU General Public License as published by the 
-#    Free Software Foundation, either version 3 of the License, or (at your
-#    option) any later version.
-#
-#    This program is distributed in the hope that it will be useful, but 
-#    WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
-#    or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
-#    for more details.
-#
-#    You should have received a copy of the GNU General Public License along
-#    with this program. If not, see <http://www.gnu.org/licenses/>.
-#
-
-module Honeycomb
-  class EmuService
-    include DataMapper::Resource
-    include Model::FixtureTable
-
-    def self.all_databases(dir = Honeycomb::Env::CONFIG["honey_config"]["download_databases"] ||
-                            Pathname.new(__FILE__).dirname.dirname.dirname.dirname.expand_path.join('data').join('logsql/').to_s)
-      ret = Dir.entries(dir)
-      ret.delete_if {|x| x =~ /^\./}
-      ret
-    end
-    
-    (0..self.all_databases.count).each do |num|
-      storage_names["#{num.to_s}".to_sym] = "emu_services"
-    end
-
-    property :emu_service,         Integer, :key => true
-
-    property :connection,    Integer
-
-    property :emu_service_url,         Text
-
-    belongs_to :connections, :child_key => [:connection]
-  end
-end

data/lib/honeycomb/model/logins.rb

@@ -1,46 +0,0 @@
-#    honeycomb - Tool to manage and analyze data from the Dionaea Honeypot 
-#                Project
-#    Josh Grunzweig
-#    Copyright (C) 2011 Trustwave Holdings
-#
-#    This program is free software: you can redistribute it and/or modify it 
-#    under the terms of the GNU General Public License as published by the 
-#    Free Software Foundation, either version 3 of the License, or (at your
-#    option) any later version.
-#
-#    This program is distributed in the hope that it will be useful, but 
-#    WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
-#    or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
-#    for more details.
-#
-#    You should have received a copy of the GNU General Public License along
-#    with this program. If not, see <http://www.gnu.org/licenses/>.
-#
-
-module Honeycomb
-  class Login
-    include DataMapper::Resource
-    include Model::FixtureTable
-
-    def self.all_databases(dir = Honeycomb::Env::CONFIG["honey_config"]["download_databases"] ||
-                            Pathname.new(__FILE__).dirname.dirname.dirname.dirname.expand_path.join('data').join('logsql/').to_s)
-      ret = Dir.entries(dir)
-      ret.delete_if {|x| x =~ /^\./}
-      ret
-    end
-    
-    (0..self.all_databases.count).each do |num|
-      storage_names["#{num.to_s}".to_sym] = "logins"
-    end
-
-    property :login,         Serial
-
-    property :connection,    Integer
-
-    property :login_username,         Text
-
-    property :login_password,          Text
-
-    belongs_to :connections, :child_key => [:connection]
-  end
-end

data/lib/honeycomb/model/mssql_commands.rb

@@ -1,46 +0,0 @@
-#    honeycomb - Tool to manage and analyze data from the Dionaea Honeypot 
-#                Project
-#    Josh Grunzweig
-#    Copyright (C) 2011 Trustwave Holdings
-#
-#    This program is free software: you can redistribute it and/or modify it 
-#    under the terms of the GNU General Public License as published by the 
-#    Free Software Foundation, either version 3 of the License, or (at your
-#    option) any later version.
-#
-#    This program is distributed in the hope that it will be useful, but 
-#    WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
-#    or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
-#    for more details.
-#
-#    You should have received a copy of the GNU General Public License along
-#    with this program. If not, see <http://www.gnu.org/licenses/>.
-#
-
-module Honeycomb
-  class MssqlCommand
-    include DataMapper::Resource
-    include Model::FixtureTable
-
-    def self.all_databases(dir = Honeycomb::Env::CONFIG["honey_config"]["download_databases"] ||
-                            Pathname.new(__FILE__).dirname.dirname.dirname.dirname.expand_path.join('data').join('logsql/').to_s)
-      ret = Dir.entries(dir)
-      ret.delete_if {|x| x =~ /^\./}
-      ret
-    end
-    
-    (0..self.all_databases.count).each do |num|
-      storage_names["#{num.to_s}".to_sym] = "mssql_commands"
-    end
-
-    property :mssql_command,         Integer, :key => true
-
-    property :connection,    Integer
-
-    property :mssql_command_status,         Text
-
-    property :mssql_command_cmd,          Text
-
-    belongs_to :connections, :child_key => [:connection]
-  end
-end

data/lib/honeycomb/model/mssql_fingerprints.rb

@@ -1,48 +0,0 @@
-#    honeycomb - Tool to manage and analyze data from the Dionaea Honeypot 
-#                Project
-#    Josh Grunzweig
-#    Copyright (C) 2011 Trustwave Holdings
-#
-#    This program is free software: you can redistribute it and/or modify it 
-#    under the terms of the GNU General Public License as published by the 
-#    Free Software Foundation, either version 3 of the License, or (at your
-#    option) any later version.
-#
-#    This program is distributed in the hope that it will be useful, but 
-#    WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
-#    or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
-#    for more details.
-#
-#    You should have received a copy of the GNU General Public License along
-#    with this program. If not, see <http://www.gnu.org/licenses/>.
-#
-
-module Honeycomb
-  class MssqlFingerprint
-    include DataMapper::Resource
-    include Model::FixtureTable
-
-    def self.all_databases(dir = Honeycomb::Env::CONFIG["honey_config"]["download_databases"] ||
-                            Pathname.new(__FILE__).dirname.dirname.dirname.dirname.expand_path.join('data').join('logsql/').to_s)
-      ret = Dir.entries(dir)
-      ret.delete_if {|x| x =~ /^\./}
-      ret
-    end
-    
-    (0..self.all_databases.count).each do |num|
-      storage_names["#{num.to_s}".to_sym] = "mssql_fingerprints"
-    end
-
-    property :mssql_fingerprint,         Integer, :key => true
-
-    property :connection,    Integer
-
-    property :mssql_fingerprint_hostname,         Text
-
-    property :mssql_fingerprint_appname,          Text
-
-    property :mssql_fingerprint_cltintname,          Text
-
-    belongs_to :connections, :child_key => [:connection]
-  end
-end

data/lib/honeycomb/model/offers.rb

@@ -1,44 +0,0 @@
-#    honeycomb - Tool to manage and analyze data from the Dionaea Honeypot 
-#                Project
-#    Josh Grunzweig
-#    Copyright (C) 2011 Trustwave Holdings
-#
-#    This program is free software: you can redistribute it and/or modify it 
-#    under the terms of the GNU General Public License as published by the 
-#    Free Software Foundation, either version 3 of the License, or (at your
-#    option) any later version.
-#
-#    This program is distributed in the hope that it will be useful, but 
-#    WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
-#    or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
-#    for more details.
-#
-#    You should have received a copy of the GNU General Public License along
-#    with this program. If not, see <http://www.gnu.org/licenses/>.
-#
-
-module Honeycomb
-  class Offer
-    include DataMapper::Resource
-    include Model::FixtureTable
-
-    def self.all_databases(dir = Honeycomb::Env::CONFIG["honey_config"]["download_databases"] ||
-                            Pathname.new(__FILE__).dirname.dirname.dirname.dirname.expand_path.join('data').join('logsql/').to_s)
-      ret = Dir.entries(dir)
-      ret.delete_if {|x| x =~ /^\./}
-      ret
-    end
-    
-    (0..self.all_databases.count).each do |num|
-      storage_names["#{num.to_s}".to_sym] = "offers"
-    end
-
-    property :offer,         Integer, :key => true
-
-    property :connection,    Integer
-
-    property :offer_url,         Text
-
-    belongs_to :connections, :child_key => [:connection]
-  end
-end

data/lib/honeycomb/model/p0fs.rb

@@ -1,58 +0,0 @@
-#    honeycomb - Tool to manage and analyze data from the Dionaea Honeypot 
-#                Project
-#    Josh Grunzweig
-#    Copyright (C) 2011 Trustwave Holdings
-#
-#    This program is free software: you can redistribute it and/or modify it 
-#    under the terms of the GNU General Public License as published by the 
-#    Free Software Foundation, either version 3 of the License, or (at your
-#    option) any later version.
-#
-#    This program is distributed in the hope that it will be useful, but 
-#    WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
-#    or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
-#    for more details.
-#
-#    You should have received a copy of the GNU General Public License along
-#    with this program. If not, see <http://www.gnu.org/licenses/>.
-#
-
-module Honeycomb
-  class P0f
-    include DataMapper::Resource
-    include Model::FixtureTable
-
-    def self.all_databases(dir = Honeycomb::Env::CONFIG["honey_config"]["download_databases"] ||
-                            Pathname.new(__FILE__).dirname.dirname.dirname.dirname.expand_path.join('data').join('logsql/').to_s)
-      ret = Dir.entries(dir)
-      ret.delete_if {|x| x =~ /^\./}
-      ret
-    end
-    
-    (0..self.all_databases.count).each do |num|
-      storage_names["#{num.to_s}".to_sym] = "p0fs"
-    end
-
-    property :p0f,         Integer, :key => true
-
-    property :connection,    Integer
-
-    property :p0f_genre,         Text
-
-    property :p0f_link,          Text
-
-    property :p0f_detail,       Text
-
-    property :p0f_uptime,       Integer
-
-    property :p0f_tos,        Text
-
-    property :p0f_dist,      Integer
-
-    property :p0f_nat,        Integer
-
-    property :p0f_fw,    Integer
-
-    belongs_to :connections, :child_key => [:connection]
-  end
-end

data/lib/honeycomb/model/resolves.rb

@@ -1,48 +0,0 @@
-#    honeycomb - Tool to manage and analyze data from the Dionaea Honeypot 
-#                Project
-#    Josh Grunzweig
-#    Copyright (C) 2011 Trustwave Holdings
-#
-#    This program is free software: you can redistribute it and/or modify it 
-#    under the terms of the GNU General Public License as published by the 
-#    Free Software Foundation, either version 3 of the License, or (at your
-#    option) any later version.
-#
-#    This program is distributed in the hope that it will be useful, but 
-#    WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
-#    or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
-#    for more details.
-#
-#    You should have received a copy of the GNU General Public License along
-#    with this program. If not, see <http://www.gnu.org/licenses/>.
-#
-
-module Honeycomb
-  class Resolf
-    include DataMapper::Resource
-    include Model::FixtureTable
-
-    def self.all_databases(dir = Honeycomb::Env::CONFIG["honey_config"]["download_databases"] ||
-                            Pathname.new(__FILE__).dirname.dirname.dirname.dirname.expand_path.join('data').join('logsql/').to_s)
-      ret = Dir.entries(dir)
-      ret.delete_if {|x| x =~ /^\./}
-      ret
-    end
-    
-    (0..self.all_databases.count).each do |num|
-      storage_names["#{num.to_s}".to_sym] = "resolves"
-    end
-
-    property :resolve,         Integer, :key => true
-
-    property :connection,    Integer
-
-    property :resolve_hostname,         Text
-
-    property :resolve_type,          Text
-
-    property :resolve_result,         Text
-
-    belongs_to :connections, :child_key => [:connection]
-  end
-end

data/lib/honeycomb/model/virustotals.rb

@@ -1,47 +0,0 @@
-#    honeycomb - Tool to manage and analyze data from the Dionaea Honeypot 
-#                Project
-#    Josh Grunzweig
-#    Copyright (C) 2011 Trustwave Holdings
-#
-#    This program is free software: you can redistribute it and/or modify it 
-#    under the terms of the GNU General Public License as published by the 
-#    Free Software Foundation, either version 3 of the License, or (at your
-#    option) any later version.
-#
-#    This program is distributed in the hope that it will be useful, but 
-#    WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
-#    or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
-#    for more details.
-#
-#    You should have received a copy of the GNU General Public License along
-#    with this program. If not, see <http://www.gnu.org/licenses/>.
-#
-
-module Honeycomb
-  class Virustotal
-    include DataMapper::Resource
-    include Model::FixtureTable
-
-    def self.all_databases(dir = Honeycomb::Env::CONFIG["honey_config"]["download_databases"] ||
-                            Pathname.new(__FILE__).dirname.dirname.dirname.dirname.expand_path.join('data').join('logsql/').to_s)
-      ret = Dir.entries(dir)
-      ret.delete_if {|x| x =~ /^\./}
-      ret
-    end
-    
-    (0..self.all_databases.count).each do |num|
-      storage_names["#{num.to_s}".to_sym] = "virustotals"
-    end
-
-    property :virustotal,         Integer, :key => true
-
-    property :virustotal_md5_hash,    Text
-
-    property :virustotal_timestamp,         Integer
-
-    property :virustotal_permalink,          Text
-
-    belongs_to :download, :child_key => [:virustotal_md5_hash]
-    has n, :virustotalscans, :child_key => [ :virustotal ] 
-  end
-end

data/lib/honeycomb/model/virustotalscans.rb

@@ -1,46 +0,0 @@
-#    honeycomb - Tool to manage and analyze data from the Dionaea Honeypot 
-#                Project
-#    Josh Grunzweig
-#    Copyright (C) 2011 Trustwave Holdings
-#
-#    This program is free software: you can redistribute it and/or modify it 
-#    under the terms of the GNU General Public License as published by the 
-#    Free Software Foundation, either version 3 of the License, or (at your
-#    option) any later version.
-#
-#    This program is distributed in the hope that it will be useful, but 
-#    WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
-#    or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
-#    for more details.
-#
-#    You should have received a copy of the GNU General Public License along
-#    with this program. If not, see <http://www.gnu.org/licenses/>.
-#
-
-module Honeycomb
-  class Virustotalscan
-    include DataMapper::Resource
-    include Model::FixtureTable
-
-    def self.all_databases(dir = Honeycomb::Env::CONFIG["honey_config"]["download_databases"] ||
-                            Pathname.new(__FILE__).dirname.dirname.dirname.dirname.expand_path.join('data').join('logsql/').to_s)
-      ret = Dir.entries(dir)
-      ret.delete_if {|x| x =~ /^\./}
-      ret
-    end
-    
-    (0..self.all_databases.count).each do |num|
-      storage_names["#{num.to_s}".to_sym] = "virustotalscans"
-    end
-
-    property :virustotalscan,         Integer, :key => true
-
-    property :virustotal,    Integer
-
-    property :virustotalscan_scanner,         Text
-
-    property :virustotalscan_result,          Text
-
-    belongs_to :virustotal, :child_key => [:virustotal]
-  end
-end

data/scripts/honeycomb_libpath.rb

@@ -1,2 +0,0 @@
-# this is just a helper file for scripts to setup the spookt libpath
-$: << File.expand_path(File.join(File.dirname(__FILE__), "..", "lib"))

data/spec/honeycomb_spec.rb

@@ -1,7 +0,0 @@
-require File.expand_path(File.dirname(__FILE__) + '/spec_helper')
-
-describe "Honeycomb" do
-  it "fails" do
-    fail "hey buddy, you should probably rename this file and start specing for real"
-  end
-end