icaprb-filter 0.0.1

data/lib/icaprb/filter/steganography.rb

@@ -0,0 +1,91 @@
+
+require 'chunky_png'
+require 'openssl'
+require 'base64'
+
+# ICAPrb
+module ICAPrb
+  # Filter module
+  module Filter
+    # the steganography code of the filter - used to watermark files which are sent and downloaded.
+    module Steganography
+      # contains the code to encrypt the watermarks
+      module Cryptography
+        # Cipher to use
+        Cipher_To_Use = 'CAMELLIA-256-CBC'
+
+        class << self
+          # encrypt data using the the algorithm given in Cipher_To_Use using OpenSSL
+          # parameters:
+          # data:: data to encrypt
+          # key:: the key to use when encrypting data - when the default cipher is used, this must be 32 bytes
+          #
+          # returns the cipher string
+          def encrypt(data, key)
+            cipher = OpenSSL::Cipher.new(Cipher_To_Use)
+              cipher.encrypt
+              iv = cipher.random_iv
+              cipher.key = key
+              encrypted_data = cipher.update(data) + cipher.final
+              iv + encrypted_data
+          end
+
+          # decrypt data using the the algorithm given in Cipher_To_Use using OpenSSL
+          # parameters:
+          # data:: data to decrypt
+          # key:: the key to use when decrypting data - when the default cipher is used, this must be 32 bytes
+          #
+          # returns the decrypted string
+          # raises an error if the decryption is not successful
+          def decrypt(data, key)
+            cipher = OpenSSL::Cipher.new(Cipher_To_Use)
+            cipher.decrypt
+            iv = data[0..15]
+            encrypted_data = data[16...(data.length)]
+            cipher.iv = iv
+            cipher.key = key
+            cipher.update(encrypted_data) + cipher.final
+          end
+        end
+      end
+
+      # contains classes which are used to support hiding messages in different file formats such as images,
+      # documents etc.
+      module Formats
+        # hide data in the png alpha channel
+        module PNG
+          class << self
+            # hide a string in a png file inside the last two significant bits of the alpha channel
+            # parameters:
+            # message:: the data (string) to hide in the image
+            # data_stream:: the png as a string
+            #
+            # returns the new image
+            def hide(message, data_stream)
+              png = ::ChunkyPNG::Image.from_blob(data_stream)
+              msg = message.bytes.map {|e| e.to_s(2).rjust(8,'0').scan(/../)}.flatten.map{|str| str.to_i(2)}
+              prepared_pixel = png.pixels.map {|pixel| pixel & 0xfffffffc}
+              0.upto(msg.length-1) { |i| prepared_pixel[i] |= msg[i] }
+
+              my_chunks = prepared_pixel.each_slice(png.width).to_a
+              (0.upto(png.height - 1)).each { |r| png.replace_row!(r,my_chunks[r]) }
+              png.to_blob(:fast_rgba)
+            end
+
+            # extract the data from the png
+            # parameters:
+            # data_stream:: the png file from which the data should be extracted
+            #
+            # returns the extracted string
+            def extract(data_stream)
+              png = ::ChunkyPNG::Image.from_blob(data_stream)
+              ac_data = png.pixels.map {|e| e & 3}.map {|e| e.to_s(2).rjust(2,'0') }.join.scan(/.{8}/).map {|e| e.to_i(2) }
+              real_length = ac_data.map.with_index {|a, i| a != 0 ? i : nil}.delete_if {|a| a.nil? }.last
+              ac_data[0..real_length].map{|c| c.chr}.join
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/icaprb/filter/version.rb

@@ -0,0 +1,8 @@
+# ICAPrb
+module ICAPrb
+  # Filter module
+  module Filter
+    #version of the Filter-Service
+    VERSION = "0.0.1"
+  end
+end

data/samples/block_samples/check_hashes_test.rb

@@ -0,0 +1,7 @@
+request_filter do
+
+end
+
+response_filter do
+  block 'Block hashes of bad file', :check_hashes => ['./spec/icaprb/block_samples/check_hashes_test.txt']
+end

data/samples/block_samples/check_hashes_test.txt

@@ -0,0 +1,2 @@
+8603effde36c3c39e50c1ad0b4909ee48318ab760c85a7555bd821b026856bf7
+48ac3d29e2b72d1501b57538d31e6457173ba317aec4478665abbf5ffe0f72b5

data/samples/block_samples/content_has_key_test.html

@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>Title</title>
+</head>
+<body>
+<a post="value"></a>
+</body>
+</html>

data/samples/block_samples/content_has_key_test.rb

@@ -0,0 +1,6 @@
+request_filter do
+end
+
+response_filter do
+  block 'Block postings', content_has_key: ['message', 'posting', 'post']
+end

data/samples/block_samples/content_includes_test.html

@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>Title</title>
+</head>
+<body>
+<a>porn</a>
+</body>
+</html>

data/samples/block_samples/content_includes_test.rb

@@ -0,0 +1,6 @@
+request_filter do
+end
+
+response_filter do
+  block 'Block pages may contain pornographic content', content_includes: ['porn', 'sex']
+end

data/samples/block_samples/nothing_to_filter_test.html

@@ -0,0 +1,10 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>Title</title>
+</head>
+<body>
+
+</body>
+</html>

data/samples/block_samples/url_contains_test.rb

@@ -0,0 +1,6 @@
+request_filter do
+end
+
+response_filter do
+  block 'reserved top level domain', url_contains: ['invalid', 'localhost', 'test']
+end

data/samples/custom_samples/virustotal_config.rb

@@ -0,0 +1,6 @@
+request_filter do
+  custom_action 'Send URL to virustotal', :send_url_to_virustotal, settings: { :api_key => "FILL IN YOUR API KEY", :log_file => "~/virustotal_url.log"}
+end
+
+response_filter do
+end

metadata

@@ -0,0 +1,205 @@
+--- !ruby/object:Gem::Specification
+name: icaprb-filter
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Fabian Franz
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2016-07-06 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: nokogiri
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.6.7
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.6.7
+- !ruby/object:Gem::Dependency
+  name: uirusu
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: pdf-reader
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.4'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.4'
+- !ruby/object:Gem::Dependency
+  name: chunky_png
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: icaprb-server
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rest-client
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.11'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.11'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+description: 
+email:
+- fabian.franz@students.fh-hagenberg.at
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- ".travis.yml"
+- Gemfile
+- LICENSE
+- README.md
+- README.rdoc
+- Rakefile
+- bin/console
+- bin/setup
+- bin/start_server.rb
+- icaprb-filter.gemspec
+- lib/icaprb/filter.rb
+- lib/icaprb/filter/service.rb
+- lib/icaprb/filter/solution.rb
+- lib/icaprb/filter/steganography.rb
+- lib/icaprb/filter/version.rb
+- samples/block_samples/check_hashes_test.rb
+- samples/block_samples/check_hashes_test.txt
+- samples/block_samples/content_has_key_test.html
+- samples/block_samples/content_has_key_test.rb
+- samples/block_samples/content_includes_test.html
+- samples/block_samples/content_includes_test.rb
+- samples/block_samples/nothing_to_filter_test.html
+- samples/block_samples/url_contains_test.rb
+- samples/custom_samples/virustotal_config.rb
+homepage: https://github.com/fabianfrz/ICAPrb-Filter
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.5.1
+signing_key: 
+specification_version: 4
+summary: Filter framework for ICAPrb-server. Does not work standalone. This gem includes
+  a framework to create a content filter which allows to filter content instead of
+  only the urls. It is extensible by plug ins. For example it can be used to enforce
+  your companies network usage policies at the proxy.
+test_files: []
+has_rdoc: