RubyGems - intrigue-ident - Versions diffs - 0.9.9 → 0.31 - Mend

intrigue-ident 0.9.9 → 0.31

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (484) hide show

checksums.yaml +4 -4
data/Gemfile +3 -10
data/Gemfile.lock +20 -35
data/ident.rb +346 -0
data/intrigue-ident.gemspec +7 -8
data/lib/check_factory.rb +22 -0
data/lib/checks/akamai.rb +22 -0
data/lib/checks/amazon.rb +26 -0
data/lib/checks/aruba.rb +20 -0
data/lib/checks/asp_net.rb +70 -0
data/lib/checks/atlassian.rb +55 -0
data/lib/checks/base.rb +13 -0
data/lib/checks/chef.rb +31 -0
data/lib/checks/cisco.rb +33 -0
data/lib/checks/citrix.rb +24 -0
data/lib/checks/cloudflare.rb +59 -0
data/lib/checks/cloudfront.rb +41 -0
data/lib/checks/cpanel.rb +23 -0
data/lib/checks/django.rb +22 -0
data/lib/checks/drupal.rb +26 -0
data/lib/checks/f5.rb +24 -0
data/lib/checks/fastly.rb +22 -0
data/lib/checks/generic.rb +23 -0
data/lib/checks/gitlab.rb +22 -0
data/lib/checks/google.rb +23 -0
data/lib/checks/grafana.rb +22 -0
data/lib/checks/jenkins.rb +40 -0
data/lib/checks/joomla.rb +23 -0
data/lib/checks/limesuvey.rb +22 -0
data/lib/checks/lithium.rb +30 -0
data/lib/checks/magento.rb +22 -0
data/lib/checks/mcafee.rb +22 -0
data/lib/checks/mediawiki.rb +38 -0
data/lib/checks/microsoft.rb +69 -0
data/lib/checks/nagios.rb +22 -0
data/lib/checks/oracle.rb +38 -0
data/lib/checks/palo_alto.rb +23 -0
data/lib/checks/pardot.rb +22 -0
data/lib/checks/pfsense.rb +25 -0
data/lib/checks/phpmyadmin.rb +22 -0
data/lib/checks/rabbitmq.rb +29 -0
data/lib/checks/spring.rb +31 -0
data/lib/checks/team_city.rb +22 -0
data/lib/checks/telerik.rb +25 -0
data/lib/checks/tomcat.rb +22 -0
data/lib/checks/varnish.rb +27 -0
data/lib/checks/wordpress.rb +120 -0
data/lib/checks/wp_engine.rb +22 -0
metadata +55 -487
data/.circleci/config.yml +0 -21
data/.gitignore +0 -3
data/.ruby-version +0 -1
data/Dockerfile +0 -39
data/LICENSE.md +0 -12
data/README.md +0 -79
data/checks/ftp/base.rb +0 -15
data/checks/ftp/filezilla.rb +0 -28
data/checks/ftp/microsoft.rb +0 -27
data/checks/ftp/proftp.rb +0 -28
data/checks/ftp/pureftpd.rb +0 -27
data/checks/ftp/vsftp.rb +0 -28
data/checks/http/123reg.rb +0 -31
data/checks/http/acme.rb +0 -28
data/checks/http/acquia.rb +0 -28
data/checks/http/adeptia.rb +0 -30
data/checks/http/adobe.rb +0 -168
data/checks/http/advantshop.rb +0 -33
data/checks/http/afrihost.rb +0 -29
data/checks/http/aftermarketpl.rb +0 -46
data/checks/http/agility.rb +0 -34
data/checks/http/akamai.rb +0 -88
data/checks/http/alkacon.rb +0 -30
data/checks/http/allegro.rb +0 -28
data/checks/http/almuba.rb +0 -30
data/checks/http/amazon.rb +0 -263
data/checks/http/amirocms.rb +0 -30
data/checks/http/anelectron.rb +0 -29
data/checks/http/anquanbao.rb +0 -32
data/checks/http/aol.rb +0 -29
data/checks/http/apache.rb +0 -358
data/checks/http/appdynamics.rb +0 -43
data/checks/http/arris.rb +0 -30
data/checks/http/artifactory.rb +0 -30
data/checks/http/aruba.rb +0 -27
data/checks/http/atlassian.rb +0 -152
data/checks/http/auth0.rb +0 -44
data/checks/http/automattic.rb +0 -292
data/checks/http/axinom.rb +0 -30
data/checks/http/axios.rb +0 -29
data/checks/http/axis.rb +0 -27
data/checks/http/axway.rb +0 -33
data/checks/http/backdrop.rb +0 -30
data/checks/http/banu.rb +0 -30
data/checks/http/barracuda.rb +0 -99
data/checks/http/base.rb +0 -139
data/checks/http/beehive.rb +0 -30
data/checks/http/bigcartel.rb +0 -33
data/checks/http/bigcommerce.rb +0 -33
data/checks/http/binarysec.rb +0 -47
data/checks/http/bitly.rb +0 -40
data/checks/http/blackboard.rb +0 -44
data/checks/http/blueimp.rb +0 -27
data/checks/http/bomgar.rb +0 -27
data/checks/http/bootstrap.rb +0 -27
data/checks/http/bower.rb +0 -28
data/checks/http/broadcom.rb +0 -29
data/checks/http/brocade.rb +0 -39
data/checks/http/browsermedia.rb +0 -29
data/checks/http/bsm.rb +0 -29
data/checks/http/bynder.rb +0 -31
data/checks/http/calibre.rb +0 -33
data/checks/http/centos.rb +0 -28
data/checks/http/cerberus.rb +0 -28
data/checks/http/charity_engine.rb +0 -27
data/checks/http/checkpoint.rb +0 -56
data/checks/http/cherokee.rb +0 -29
data/checks/http/cisco.rb +0 -134
data/checks/http/citrix.rb +0 -137
data/checks/http/cloud_city.rb +0 -30
data/checks/http/cloudflare.rb +0 -219
data/checks/http/cmsimple.rb +0 -30
data/checks/http/codeigniter.rb +0 -26
data/checks/http/communigate.rb +0 -32
data/checks/http/concrete5.rb +0 -30
data/checks/http/contenido.rb +0 -33
data/checks/http/content/analytics.rb +0 -40
data/checks/http/content/authentication.rb +0 -111
data/checks/http/content/content.rb +0 -92
data/checks/http/content/security_headers.rb +0 -70
data/checks/http/cpanel.rb +0 -56
data/checks/http/cradlepoint.rb +0 -30
data/checks/http/craft.rb +0 -42
data/checks/http/crazydomains.rb +0 -31
data/checks/http/crowdstrike.rb +0 -27
data/checks/http/dan.rb +0 -30
data/checks/http/danneo.rb +0 -30
data/checks/http/day.rb +0 -31
data/checks/http/debian.rb +0 -27
data/checks/http/dell.rb +0 -43
data/checks/http/dev_php.rb +0 -30
data/checks/http/discourse.rb +0 -30
data/checks/http/discuz!.rb +0 -30
data/checks/http/distil.rb +0 -27
data/checks/http/django.rb +0 -27
data/checks/http/dmanager.rb +0 -29
data/checks/http/dns_made_easy.rb +0 -29
data/checks/http/docuwiki.rb +0 -27
data/checks/http/docverify.rb +0 -29
data/checks/http/domain_parking_ru.rb +0 -31
data/checks/http/domainname_shop.rb +0 -30
data/checks/http/dosarrest.rb +0 -29
data/checks/http/dreamhost.rb +0 -31
data/checks/http/drupal.rb +0 -91
data/checks/http/duo.rb +0 -45
data/checks/http/dyn.rb +0 -41
data/checks/http/dynamicweb.rb +0 -29
data/checks/http/dynatrace.rb +0 -40
data/checks/http/easyname.rb +0 -44
data/checks/http/eclipse.rb +0 -64
data/checks/http/enservio.rb +0 -29
data/checks/http/envoy.rb +0 -26
data/checks/http/epiccom.rb +0 -31
data/checks/http/ergon.rb +0 -31
data/checks/http/expressjs.rb +0 -27
data/checks/http/ezproxy.rb +0 -28
data/checks/http/f5.rb +0 -122
data/checks/http/facebook.rb +0 -27
data/checks/http/fastly.rb +0 -67
data/checks/http/first_domains.rb +0 -31
data/checks/http/flywheel.rb +0 -30
data/checks/http/forgerock.rb +0 -43
data/checks/http/fortinet.rb +0 -29
data/checks/http/fresh_service.rb +0 -30
data/checks/http/frontify.rb +0 -29
data/checks/http/generic.rb +0 -272
data/checks/http/github.rb +0 -40
data/checks/http/gitlab.rb +0 -30
data/checks/http/glimpse.rb +0 -32
data/checks/http/globalscape.rb +0 -27
data/checks/http/goahead.rb +0 -31
data/checks/http/godaddy.rb +0 -31
data/checks/http/google.rb +0 -164
data/checks/http/google_cloud.rb +0 -27
data/checks/http/grafana.rb +0 -27
data/checks/http/gunicorn.rb +0 -30
data/checks/http/haskell.rb +0 -31
data/checks/http/heroku.rb +0 -77
data/checks/http/hikvision.rb +0 -29
data/checks/http/hp.rb +0 -27
data/checks/http/hubspot.rb +0 -104
data/checks/http/ibm.rb +0 -182
data/checks/http/icewarp.rb +0 -29
data/checks/http/impresspages.rb +0 -30
data/checks/http/imunify360.rb +0 -28
data/checks/http/incapsula.rb +0 -54
data/checks/http/ingram_micro.rb +0 -28
data/checks/http/innovative_interfaces_inc.rb +0 -27
data/checks/http/inside_sales.rb +0 -27
data/checks/http/instra.rb +0 -61
data/checks/http/intercom.rb +0 -27
data/checks/http/ivanti.rb +0 -28
data/checks/http/jamf.rb +0 -31
data/checks/http/jekyll.rb +0 -31
data/checks/http/jenkins.rb +0 -59
data/checks/http/jetbrains.rb +0 -27
data/checks/http/jetty.rb +0 -27
data/checks/http/jforum.rb +0 -27
data/checks/http/jitbit.rb +0 -30
data/checks/http/jive.rb +0 -27
data/checks/http/joomla.rb +0 -43
data/checks/http/jquery.rb +0 -58
data/checks/http/jupyter.rb +0 -28
data/checks/http/kentico.rb +0 -27
data/checks/http/kerio.rb +0 -34
data/checks/http/kibana.rb +0 -56
data/checks/http/kong.rb +0 -32
data/checks/http/kubernetes.rb +0 -66
data/checks/http/laravel.rb +0 -27
data/checks/http/lastpass.rb +0 -27
data/checks/http/lcn.rb +0 -27
data/checks/http/leadpages.rb +0 -29
data/checks/http/lighttpd.rb +0 -31
data/checks/http/limelight_networks.rb +0 -43
data/checks/http/limesuvey.rb +0 -27
data/checks/http/link1.rb +0 -31
data/checks/http/linksys.rb +0 -38
data/checks/http/litespeed.rb +0 -29
data/checks/http/lithium.rb +0 -43
data/checks/http/lotus.rb +0 -55
data/checks/http/magento.rb +0 -96
data/checks/http/magnolia.rb +0 -27
data/checks/http/mailchimp.rb +0 -27
data/checks/http/manage_engine.rb +0 -27
data/checks/http/markmonitor.rb +0 -27
data/checks/http/mbf_bioscience.rb +0 -29
data/checks/http/mcafee.rb +0 -27
data/checks/http/media_temple.rb +0 -27
data/checks/http/mediawiki.rb +0 -54
data/checks/http/mhcsoftwareinc.rb +0 -29
data/checks/http/microsoft.rb +0 -1325
data/checks/http/mikrotik.rb +0 -44
data/checks/http/modwsgi.rb +0 -30
data/checks/http/mojolicious.rb +0 -32
data/checks/http/moodle.rb +0 -28
data/checks/http/mura.rb +0 -30
data/checks/http/nagios.rb +0 -27
data/checks/http/namesilo.rb +0 -31
data/checks/http/nationbuilder.rb +0 -30
data/checks/http/nec.rb +0 -32
data/checks/http/netlify.rb +0 -40
data/checks/http/netobjects_inc.rb +0 -30
data/checks/http/netscape.rb +0 -29
data/checks/http/neustar.rb +0 -29
data/checks/http/new_relic.rb +0 -27
data/checks/http/nexicom.rb +0 -44
data/checks/http/nginx.rb +0 -82
data/checks/http/nisource.rb +0 -29
data/checks/http/nodejs.rb +0 -79
data/checks/http/okta.rb +0 -53
data/checks/http/ookla.rb +0 -28
data/checks/http/openbsd.rb +0 -30
data/checks/http/openresty.rb +0 -41
data/checks/http/openscholar.rb +0 -27
data/checks/http/opensolution.rb +0 -46
data/checks/http/openssl.rb +0 -43
data/checks/http/opentext.rb +0 -46
data/checks/http/openvpn.rb +0 -27
data/checks/http/opscode.rb +0 -43
data/checks/http/oracle.rb +0 -335
data/checks/http/orion_technology.rb +0 -30
data/checks/http/ovh.rb +0 -46
data/checks/http/palo_alto.rb +0 -27
data/checks/http/pantheon.rb +0 -54
data/checks/http/papercut.rb +0 -29
data/checks/http/parallels.rb +0 -44
data/checks/http/pardot.rb +0 -44
data/checks/http/parkingcrew.rb +0 -47
data/checks/http/pbworks.rb +0 -27
data/checks/http/perfectsense.rb +0 -28
data/checks/http/perl.rb +0 -62
data/checks/http/pfsense.rb +0 -27
data/checks/http/php.rb +0 -72
data/checks/http/phpmyadmin.rb +0 -40
data/checks/http/phpwind.rb +0 -30
data/checks/http/phusion.rb +0 -59
data/checks/http/ping_identity.rb +0 -28
data/checks/http/pivotal_software.rb +0 -97
data/checks/http/pjax.rb +0 -40
data/checks/http/plesk.rb +0 -58
data/checks/http/porkbun.rb +0 -31
data/checks/http/progress.rb +0 -30
data/checks/http/proofpoint.rb +0 -30
data/checks/http/pulsesecure.rb +0 -91
data/checks/http/python.rb +0 -30
data/checks/http/qnap.rb +0 -43
data/checks/http/qualys.rb +0 -69
data/checks/http/rapid7.rb +0 -27
data/checks/http/rbs.rb +0 -30
data/checks/http/readmeio.rb +0 -28
data/checks/http/red_hat.rb +0 -95
data/checks/http/redmine.rb +0 -38
data/checks/http/restlet.rb +0 -30
data/checks/http/ritecms.rb +0 -30
data/checks/http/roadiz.rb +0 -30
data/checks/http/rock.rb +0 -30
data/checks/http/rollbar.rb +0 -27
data/checks/http/roundcube.rb +0 -42
data/checks/http/ruby.rb +0 -92
data/checks/http/ruckus_wireless.rb +0 -26
data/checks/http/sailpoint.rb +0 -30
data/checks/http/salesforce.rb +0 -28
data/checks/http/sap.rb +0 -149
data/checks/http/seamless_cms.rb +0 -30
data/checks/http/securi.rb +0 -54
data/checks/http/sedo.rb +0 -63
data/checks/http/segment.rb +0 -27
data/checks/http/sencha.rb +0 -31
data/checks/http/sentry.rb +0 -27
data/checks/http/serendipity.rb +0 -30
data/checks/http/shopfactory.rb +0 -30
data/checks/http/sip.rb +0 -29
data/checks/http/sitecore.rb +0 -39
data/checks/http/smartling.rb +0 -27
data/checks/http/smf.rb +0 -30
data/checks/http/snews.rb +0 -30
data/checks/http/software_ag.rb +0 -47
data/checks/http/soha.rb +0 -66
data/checks/http/solarwinds.rb +0 -41
data/checks/http/sonatype.rb +0 -43
data/checks/http/sonicwall.rb +0 -63
data/checks/http/sophos.rb +0 -40
data/checks/http/southriver.rb +0 -43
data/checks/http/splash.rb +0 -29
data/checks/http/splunk.rb +0 -27
data/checks/http/springfox.rb +0 -43
data/checks/http/squarespace.rb +0 -41
data/checks/http/stackpath.rb +0 -29
data/checks/http/stibo_systems.rb +0 -35
data/checks/http/subrion.rb +0 -29
data/checks/http/symantec.rb +0 -27
data/checks/http/synacor.rb +0 -26
data/checks/http/tableau_software.rb +0 -42
data/checks/http/telerik.rb +0 -46
data/checks/http/tengine.rb +0 -29
data/checks/http/tibco.rb +0 -57
data/checks/http/townnews.rb +0 -33
data/checks/http/tridium.rb +0 -28
data/checks/http/twiki.rb +0 -27
data/checks/http/typo3.rb +0 -27
data/checks/http/uberflip.rb +0 -28
data/checks/http/ucoz.rb +0 -31
data/checks/http/umbraco.rb +0 -29
data/checks/http/unbounce.rb +0 -28
data/checks/http/united_domains.rb +0 -27
data/checks/http/vanilla_forums.rb +0 -27
data/checks/http/varnish.rb +0 -79
data/checks/http/vbulletin.rb +0 -66
data/checks/http/verizon.rb +0 -27
data/checks/http/vmware.rb +0 -53
data/checks/http/vue_js.rb +0 -27
data/checks/http/webflow.rb +0 -44
data/checks/http/webgui.rb +0 -30
data/checks/http/webmin.rb +0 -44
data/checks/http/webpagetest_project.rb +0 -30
data/checks/http/wftpserver.rb +0 -28
data/checks/http/wildfly.rb +0 -29
data/checks/http/wix.rb +0 -28
data/checks/http/woltlab_gmbh.rb +0 -30
data/checks/http/wordpress/ithemes.rb +0 -50
data/checks/http/wordpress/john_godley.rb +0 -29
data/checks/http/wordpress/pixelcraft.rb +0 -31
data/checks/http/wordpress/rocklobster.rb +0 -29
data/checks/http/wordpress/team_heateor.rb +0 -31
data/checks/http/wordpress/w3_total_cache.rb +0 -30
data/checks/http/wordpress/wp_fastest_cache.rb +0 -30
data/checks/http/wordpress/wp_super_cache.rb +0 -46
data/checks/http/wordpress/wpbakery.rb +0 -30
data/checks/http/world4you.rb +0 -46
data/checks/http/wp_engine.rb +0 -57
data/checks/http/xcms.rb +0 -30
data/checks/http/xelion.rb +0 -27
data/checks/http/xerox.rb +0 -27
data/checks/http/xmb.rb +0 -30
data/checks/http/xtec.rb +0 -30
data/checks/http/yaf.rb +0 -30
data/checks/http/yaws.rb +0 -30
data/checks/http/yoast.rb +0 -31
data/checks/http/zeit.rb +0 -30
data/checks/http/zendesk.rb +0 -41
data/checks/http/zengenti.rb +0 -30
data/checks/http/zoho.rb +0 -69
data/checks/http/zscaler.rb +0 -30
data/checks/smtp/base.rb +0 -16
data/checks/smtp/exim.rb +0 -30
data/checks/snmp/base.rb +0 -15
data/checks/snmp/cisco.rb +0 -59
data/checks/ssh/array_networks.rb +0 -28
data/checks/ssh/base.rb +0 -16
data/checks/ssh/openssh.rb +0 -26
data/checks/telnet/base.rb +0 -16
data/checks/telnet/huawei.rb +0 -26
data/data/logos/acquia.png +0 -0
data/data/logos/amazon_cloudfront.png +0 -0
data/data/logos/apache_coyote.png +0 -0
data/data/logos/apache_tomcat.png +0 -0
data/data/logos/atlassian_bamboo.png +0 -0
data/data/logos/atlassian_bitbucket.png +0 -0
data/data/logos/atlassian_confluence.png +0 -0
data/data/logos/atlassian_crowd.png +0 -0
data/data/logos/atlassian_crucible.png +0 -0
data/data/logos/atlassian_fisheye.png +0 -0
data/data/logos/atlassian_jira.png +0 -0
data/data/logos/atlassian_sourcetree.png +0 -0
data/data/logos/automattic_wordpress.png +0 -0
data/data/logos/calibre.png +0 -0
data/data/logos/cisco_ssl_vpn.png +0 -0
data/data/logos/citrix_netscaler_gateway.png +0 -0
data/data/logos/cloudflare_cdn.png +0 -0
data/data/logos/drupal.png +0 -0
data/data/logos/f5_big-ip.png +0 -0
data/data/logos/f5_big-ip_apm.png +0 -0
data/data/logos/fastly.png +0 -0
data/data/logos/generic.png +0 -0
data/data/logos/gitlab.png +0 -0
data/data/logos/ibm_axway_securetransport.png +0 -0
data/data/logos/lithium.png +0 -0
data/data/logos/microsoft_asp.net.png +0 -0
data/data/logos/microsoft_iis.png +0 -0
data/data/logos/microsoft_outlook_web_access.png +0 -0
data/data/logos/microsoft_sharepoint.png +0 -0
data/data/logos/microtik_routeros.png +0 -0
data/data/logos/mikrotik_routeros.png +0 -0
data/data/logos/newrelic.png +0 -0
data/data/logos/nginx.png +0 -0
data/data/logos/okta.png +0 -0
data/data/logos/oracle_glassfish.png +0 -0
data/data/logos/oracle_java_application_server.png +0 -0
data/data/logos/oracle_java_server_pages.png +0 -0
data/data/logos/oracle_weblogic.png +0 -0
data/data/logos/phpmyadmin.png +0 -0
data/data/logos/tableau.png +0 -0
data/data/logos/vmware_esxi.png +0 -0
data/data/logos/vmware_horizon.png +0 -0
data/data/logos/zendesk.png +0 -0
data/data/logos/zimbra_server.png +0 -0
data/data/microsoft_sharepoint_versions.csv +0 -224
data/lib/banner_helpers.rb +0 -36
data/lib/ftp/check_factory.rb +0 -24
data/lib/ftp/content.rb +0 -13
data/lib/ftp/ftp.rb +0 -52
data/lib/ftp/matchers.rb +0 -26
data/lib/http/browser.rb +0 -260
data/lib/http/check_factory.rb +0 -47
data/lib/http/content.rb +0 -45
data/lib/http/http.rb +0 -463
data/lib/http/matchers.rb +0 -132
data/lib/ident.rb +0 -263
data/lib/recog_wrapper.rb +0 -70
data/lib/simple_socket.rb +0 -41
data/lib/smtp/check_factory.rb +0 -24
data/lib/smtp/content.rb +0 -13
data/lib/smtp/matchers.rb +0 -28
data/lib/smtp/smtp.rb +0 -53
data/lib/snmp/check_factory.rb +0 -24
data/lib/snmp/content.rb +0 -13
data/lib/snmp/matchers.rb +0 -25
data/lib/snmp/snmp.rb +0 -55
data/lib/ssh/check_factory.rb +0 -24
data/lib/ssh/content.rb +0 -13
data/lib/ssh/matchers.rb +0 -26
data/lib/ssh/ssh.rb +0 -52
data/lib/telnet/check_factory.rb +0 -24
data/lib/telnet/content.rb +0 -13
data/lib/telnet/matchers.rb +0 -26
data/lib/telnet/telnet.rb +0 -52
data/lib/utils.rb +0 -19
data/lib/version.rb +0 -3
data/lib/vulndb_client.rb +0 -43
data/util/console.rb +0 -9
data/util/docker.sh +0 -2
data/util/ident.rb +0 -375
data/util/list_paths.rb +0 -12
data/util/tags.rb +0 -36
data/utils.rb +0 -19

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 32cb17663810844bd445fbd30fc87ed296e432dee65c809c55c0103c2018223f
-  data.tar.gz: ab582bae1548877adda260b27b3cc36c3c399f5dfac4bc2120df58ff11c028c5
+  metadata.gz: bfcd9572780f9884f183354ecc7e868075ebe1c134030cb1929638201e6d4ec1
+  data.tar.gz: 04b36417bf4285fe5b9779595ac3e53a89292b70e514ce13db0c6865df1b0536
 SHA512:
-  metadata.gz: cdb9095cd2c3b4eef1515260b929f9685293d9a888a50cf30942c875557e736ddf328e13fc60a14302f1a92489ca5f1658839ac1294e29c2e2d6a5567d58226d
-  data.tar.gz: '09a8a0beb4ccca2821c8543f8939491dbbec030b873e7211cde9966f5367a7cd599b67cd77908ebf69a59c85d8f26611adb6b1dcc5fdc41c433ef074c7ce6b54'
+  metadata.gz: 1dc5cf125e462aa1bde4ee84042ff61b868815f2e63b17bb9af7570cacdeacd80600bd3d3bc760f5b0ffdf7d2c7e65ea4efd405fd8d1422c1ac54644f0c02d8b
+  data.tar.gz: 99275af23d905d30604ee9966e60979a01432539fe595492b3dc4a1b606853ba93012ab05e5257a75953f51efb98b96c0f1ae66462da8c876a97f22229f05bd3

data/Gemfile CHANGED Viewed

@@ -1,12 +1,5 @@
 source 'https://rubygems.org'
-ruby '2.6.5'
+ruby '2.5.1'
-gem 'pry'
-gem 'socketry'
-gem 'recog-intrigue',         :git => 'https://github.com/intrigueio/recog.git'
-#gem 'recog-intrigue', :path => "/Users/jcran/work/intrigue/local/recog"
-gem 'slop'
-gem 'snmp'
-gem 'json'
-gem 'rspec-core'
-gem 'rspec-expectations'
+gem "rspec"
+gem "pry"

data/Gemfile.lock CHANGED Viewed

@@ -1,50 +1,35 @@
-GIT
-  remote: https://github.com/intrigueio/recog.git
-  revision: d6be4b8008add1cc90c69b276c223cf7345e31f1
-  specs:
-    recog-intrigue (2.3.7)
-      nokogiri
 GEM
   remote: https://rubygems.org/
   specs:
-    coderay (1.1.3)
+    coderay (1.1.2)
     diff-lcs (1.3)
-    hitimes (1.3.1)
-    json (2.3.0)
-    method_source (1.0.0)
-    mini_portile2 (2.4.0)
-    nokogiri (1.10.9)
-      mini_portile2 (~> 2.4.0)
-    pry (0.13.1)
-      coderay (~> 1.1)
-      method_source (~> 1.0)
-    rspec-core (3.9.2)
-      rspec-support (~> 3.9.3)
-    rspec-expectations (3.9.2)
+    method_source (0.9.0)
+    pry (0.11.3)
+      coderay (~> 1.1.0)
+      method_source (~> 0.9.0)
+    rspec (3.7.0)
+      rspec-core (~> 3.7.0)
+      rspec-expectations (~> 3.7.0)
+      rspec-mocks (~> 3.7.0)
+    rspec-core (3.7.1)
+      rspec-support (~> 3.7.0)
+    rspec-expectations (3.7.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.7.0)
+    rspec-mocks (3.7.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.9.0)
-    rspec-support (3.9.3)
-    slop (4.8.1)
-    snmp (1.3.2)
-    socketry (0.5.1)
-      hitimes (~> 1.2)
+      rspec-support (~> 3.7.0)
+    rspec-support (3.7.1)
 PLATFORMS
   ruby
 DEPENDENCIES
-  json
   pry
-  recog-intrigue!
-  rspec-core
-  rspec-expectations
-  slop
-  snmp
-  socketry
+  rspec
 RUBY VERSION
-   ruby 2.6.5p114
+   ruby 2.5.1p57
 BUNDLED WITH
-   2.1.4
+   1.16.1

data/ident.rb ADDED Viewed

@@ -0,0 +1,346 @@
+#!/usr/bin/env ruby
+require 'net/http'
+require 'openssl'
+require 'zlib'
+require_relative 'lib/check_factory'
+require_relative 'lib/checks/base'
+check_folder = File.expand_path('lib/checks', File.dirname(__FILE__)) # get absolute directory
+Dir["#{check_folder}/*.rb"].each { |file| require_relative file }
+module Intrigue
+  module Ident
+    VERSION=0.31
+    def generate_requests_and_check(url)
+      results = []
+      # gather all fingeprints for each product
+      # this will look like an array of checks, each with a uri and a SET of checks
+      generated_checks = Intrigue::Ident::CheckFactory.all.map{|x| x.new.generate_checks(url) }.flatten
+      # group by the uris, with the associated checks
+      # TODO - this only currently supports the first path of the group!!!!
+      grouped_generated_checks = generated_checks.group_by{|x| x[:paths].first }
+      # call the check on each uri
+      grouped_generated_checks.each do |ggc|
+        target_url = ggc.first
+        # get the response
+        response = _http_request :get, "#{target_url}"
+        unless response
+          puts "Unable to get a response at: #{target_url}, failing"
+          return nil
+        end
+        # Go ahead and match it up if we got a response!
+        if response
+          # call each check, collecting the product if it's a match
+          ggc.last.each do |check|
+            results << _match_http_response(check, response)
+          end
+        end
+      end
+    # Return all matches, minus the nils (non-matches)
+    results.compact
+    end
+    def check_intrigue_uri(intrigue_uri_data)
+      results = []
+      # gather all fingeprints for each product
+      # this will look like an array of checks, each with a uri and a SET of checks
+      generated_checks = Intrigue::Ident::CheckFactory.all.map{|x| x.new.generate_checks(url) }.flatten
+      # group by the uris, with the associated checks
+      # TODO - this only currently supports the first path of the group!!!!
+      grouped_generated_checks = generated_checks.group_by{|x| x[:paths].first }
+      # call the check on each uri
+      grouped_generated_checks.each do |ggc|
+        target_url = ggc.first
+        # call each check, collecting the product if it's a match
+        ggc.last.each do |check|
+          results << _match_uri(check, intrigue_uri_data)
+        end
+      end
+    # Return all matches, minus the nils (non-matches)
+    results.compact
+    end
+    private
+    def _construct_match_response(check, data)
+      {
+        :version => (check[:dynamic_version].call(data) if check[:dynamic_version]) || check[:version],
+        :name => check[:name],
+        :tags => check[:tags],
+        :match => check[:type],
+        :hide => check[:hide]
+      }
+    end
+    def _match_uri(check,data)
+      # data[:body] => page body
+      # data[:headers] => block of text with headers, one per line
+      # data[:cookies] => set_cookie header
+      # data[:body_md5] => md5 hash of the body
+      # if type "content", do the content check
+      if check[:type] == :content_body
+        match = _construct_match_response(check,data) if data["details"]["hidden_response_data"] =~ check[:content]
+      elsif check[:type] == :content_headers
+        match = _construct_match_response(check,data) if data["details"]["headers"].join("\n") =~ check[:content]
+      elsif check[:type] == :content_cookies
+        # Check only the set-cookie header
+        match = _construct_match_response(check,data) if data["details"]["cookies"] =~ check[:content]
+      elsif check[:type] == :checksum_body
+        match = _construct_match_response(check,data) if Digest::MD5.hexdigest(data["details"]["response_data_hash"]) == check[:checksum]
+      end
+    match
+    end
+    # this method takes a check and a net/http response object and
+    # constructs it into a format that's matchable. it then attempts
+    # to match, and returns a match object if it matches, otherwise
+    # returns nil.
+    def _match_http_response(check, response)
+      # Construct an Intrigue Entity of type Uri so we can match it
+      data  = []
+=begin
+      json = '{
+      	"id": 1572,
+      	"type": "Intrigue::Entity::Uri",
+      	"name": "http://69.162.37.69:80",
+      	"deleted": false,
+      	"hidden": false,
+      	"detail_string": "Server:  | App:  | Title: Index page",
+      	"details": {
+      		"uri": "http://69.162.37.69:80",
+      		"code": "200",
+      		"port": 80,
+      		"forms": false,
+      		"title": "Index page",
+      		"verbs": null,
+      		"headers": ["content-length: 701", "last-modified: Tue, 03 Jul 2018 16:55:36 GMT", "cache-control: no-cache", "content-type: text/html"],
+      		"host_id": 1571,
+      		"scripts": [],
+      		"products": [],
+      		"protocol": "tcp",
+      		"ip_address": "69.162.37.69",
+      		"javascript": [],
+      		"fingerprint": [],
+      		"api_endpoint": false,
+      		"masscan_string": "sudo masscan -p80,443,2004,3389,7001,8000,8080,8081,8443,U:161,U:500 --max-rate 10000 -oL /tmp/masscan20180703-9816-18n0ri --range 69.162.0.0/18",
+      		"app_fingerprint": [],
+      		"hidden_original": "http://69.162.37.69:80",
+      		"response_data_hash": "7o0r6ie5DOrJJnz1sS7RGO4XWsNn3hWykbwGkGnySWU=",
+      		"server_fingerprint": [],
+      		"enrichment_complete": ["enrich/uri"],
+      		"include_fingerprint": [],
+      		"enrichment_scheduled": ["enrich/uri"],
+      		"hidden_response_data": "",
+      		"hidden_screenshot_contents": """
+      	},
+      	"task_results": [{
+      		"id": 32,
+      		"name": "masscan_scan_on_69.162.0.0/18",
+      		"base_entity_name": "69.162.0.0/18",
+      		"base_entity_type": "Intrigue::Entity::NetBlock"
+      	}],
+      	"generated_at": "2018-07-04T03:43:11+00:00"
+      }'
+=end
+      data = {}
+      data["details"] = {}
+      data["details"]["hidden_response_data"] = "#{response.body}"
+      # construct the headers into a big string block
+      headers = []
+      response.each_header do |h,v|
+        headers << "#{h}: #{v}"
+      end
+      data["details"]["headers"] = headers
+      data["details"]["cookies"] = response.header['set-cookie']
+      data["details"]["response_data_hash"] = Digest::SHA256.base64digest("#{response.body}")
+      # call the actual matcher & return
+      _match_uri check, data
+    end
+    def _http_request(method, uri_string, credentials=nil, headers={}, data=nil, limit = 10, open_timeout=15, read_timeout=15)
+      response = nil
+      begin
+        # set user agent
+        headers["User-Agent"] = "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/47.0.2526.73 Safari/537.36"
+        attempts=0
+        max_attempts=10
+        found = false
+        uri = URI.parse uri_string
+        unless uri
+          _log error "Unable to parse URI from: #{uri_string}"
+          return
+        end
+        until( found || attempts >= max_attempts)
+         attempts+=1
+         # proxy configuration, disabled for now
+         #if $config["http_proxy"]
+         # proxy_addr = $config["http_proxy"]["host"]
+         # proxy_port = $config["http_proxy"]["port"]
+         # proxy_user = $config["http_proxy"]["user"]
+         # proxy_pass = $config["http_proxy"]["pass"]
+         #end
+         proxy_addr = nil
+         proxy_port = nil
+         # set options
+         opts = {}
+         if uri.instance_of? URI::HTTPS
+           opts[:use_ssl] = true
+           opts[:verify_mode] = OpenSSL::SSL::VERIFY_NONE
+         end
+         http = Net::HTTP.start(uri.host, uri.port, proxy_addr, proxy_port, opts)
+         #http.set_debug_output($stdout) if _get_system_config "debug"
+         http.read_timeout = 20
+         http.open_timeout = 20
+         path = "#{uri.path}"
+         path = "/" if path==""
+         # add in the query parameters
+         if uri.query
+           path += "?#{uri.query}"
+         end
+         ### ALLOW DIFFERENT VERBS HERE
+         if method == :get
+           request = Net::HTTP::Get.new(uri)
+         elsif method == :post
+           # see: https://coderwall.com/p/c-mu-a/http-posts-in-ruby
+           request = Net::HTTP::Post.new(uri)
+           request.body = data
+         elsif method == :head
+           request = Net::HTTP::Head.new(uri)
+         elsif method == :propfind
+           request = Net::HTTP::Propfind.new(uri.request_uri)
+           request.body = "Here's the body." # Set your body (data)
+           request["Depth"] = "1" # Set your headers: one header per line.
+         elsif method == :options
+           request = Net::HTTP::Options.new(uri.request_uri)
+         elsif method == :trace
+           request = Net::HTTP::Trace.new(uri.request_uri)
+           request.body = "intrigue"
+         end
+         ### END VERBS
+         # set the headers
+         headers.each do |k,v|
+           request[k] = v
+         end
+         # handle credentials
+         #if credentials
+         # request.basic_auth(credentials[:username],credentials[:password])
+         #end
+         # get the response
+         response = http.request(request)
+         if response.code=="200"
+           break
+         end
+         if (response.header['location']!=nil)
+           newuri=URI.parse(response.header['location'])
+           if(newuri.relative?)
+               newuri=uri+response.header['location']
+           end
+           uri=newuri
+         else
+           found=true #resp was 404, etc
+         end #end if location
+       end #until
+      ### TODO - this code may be be called outside the context of a task,
+      ###  meaning @task_result is not available to it. Below, we check to
+      ###  make sure that it exists before attempting to log anything,
+      ###  but there may be a cleaner way to do this (hopefully?). Maybe a
+      ###  global logger or logging queue?
+      ###
+      #rescue TypeError
+      #  # https://github.com/jaimeiniesta/metainspector/issues/125
+      #  puts "TypeError - unknown failure"
+      rescue ArgumentError => e
+        puts "Unable to open connection: #{e}"
+      rescue Net::OpenTimeout => e
+        puts "Timeout : #{e}"
+      rescue Net::ReadTimeout => e
+        puts "Timeout : #{e}"
+      rescue Errno::ETIMEDOUT => e
+        puts "Timeout : #{e}"
+      rescue Errno::EINVAL => e
+        puts "Unable to connect: #{e}"
+      rescue Errno::ENETUNREACH => e
+        puts "Unable to connect: #{e}"
+      rescue Errno::EHOSTUNREACH => e
+        puts "Unable to connect: #{e}"
+      rescue URI::InvalidURIError => e
+        #
+        # XXX - This is an issue. We should catch this and ensure it's not
+        # due to an underscore / other acceptable character in the URI
+        # http://stackoverflow.com/questions/5208851/is-there-a-workaround-to-open-urls-containing-underscores-in-ruby
+        #
+        puts "Unable to request URI: #{uri} #{e}"
+      rescue OpenSSL::SSL::SSLError => e
+        puts "SSL connect error : #{e}"
+      rescue Errno::ECONNREFUSED => e
+        puts "Unable to connect: #{e}"
+      rescue Errno::ECONNRESET => e
+        puts "Unable to connect: #{e}"
+      rescue Net::HTTPBadResponse => e
+        puts "Unable to connect: #{e}"
+      rescue Zlib::BufError => e
+        puts "Unable to connect: #{e}"
+      rescue Zlib::DataError => e # "incorrect header check - may be specific to ruby 2.0"
+        puts "Unable to connect: #{e}"
+      rescue EOFError => e
+        puts "Unable to connect: #{e}"
+      rescue SocketError => e
+        puts "Unable to connect: #{e}"
+      #rescue SystemCallError => e
+      #  puts "Unable to connect: #{e}"
+      #rescue ArgumentError => e
+      #  puts "Argument Error: #{e}"
+      rescue Encoding::InvalidByteSequenceError => e
+        puts "Encoding error: #{e}"
+      rescue Encoding::UndefinedConversionError => e
+        puts "Encoding error: #{e}"
+      end
+    response
+    end
+end
+end

data/intrigue-ident.gemspec CHANGED Viewed

@@ -1,23 +1,22 @@
 # coding: utf-8
+require './ident'
 Gem::Specification.new do |spec|
   spec.name          = "intrigue-ident"
-  spec.version       = "0.9.9"
+  spec.version       = Intrigue::Ident::VERSION
   spec.authors       = ["jcran"]
   spec.email         = ["jcran@intrigue.io"]
-  spec.summary       = %q{Intrigue Asset Fingerprinting Library}
-  spec.description   = %q{Intrigue Asset Fingerprinting Library}
+  spec.summary       = %q{Fingerprinter for Intrigue Data}
+  spec.description   = %q{Fingerprinter for Intrigue Data}
   spec.homepage      = "https://intrigue.io"
-  spec.license       = "BSD-3-Clause"
+  spec.license       = "BSD"
   spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
   spec.bindir        = "exe"
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
   spec.add_development_dependency "bundler", "~> 1.11"
-  spec.add_development_dependency "rake", ">= 12.3.3"
+  spec.add_development_dependency "rake", "~> 10.0"
   spec.add_development_dependency "rspec", "~> 3.0"
-  spec.add_runtime_dependency "socketry"
-  spec.add_runtime_dependency "snmp"
-  spec.add_runtime_dependency "recog-intrigue"
 end