RubyGems - mihari - Versions diffs - 4.1.1 → 4.3.0 - Mend

mihari 4.1.1 → 4.3.0

Files changed (103) hide show

checksums.yaml +4 -4
data/.github/workflows/test.yml +26 -4
data/README.md +1 -1
data/lib/mihari/analyzers/base.rb +18 -10
data/lib/mihari/analyzers/rule.rb +50 -7
data/lib/mihari/cli/base.rb +0 -4
data/lib/mihari/commands/init.rb +1 -1
data/lib/mihari/commands/search.rb +11 -58
data/lib/mihari/commands/validator.rb +1 -2
data/lib/mihari/constants.rb +2 -0
data/lib/mihari/emitters/base.rb +8 -2
data/lib/mihari/emitters/http.rb +127 -0
data/lib/mihari/emitters/slack.rb +40 -4
data/lib/mihari/emitters/webhook.rb +7 -16
data/lib/mihari/enrichers/base.rb +5 -2
data/lib/mihari/enrichers/ipinfo.rb +4 -3
data/lib/mihari/{web/entities → entities}/alert.rb +0 -0
data/lib/mihari/{web/entities → entities}/artifact.rb +0 -0
data/lib/mihari/{web/entities → entities}/autonomous_system.rb +0 -0
data/lib/mihari/{web/entities → entities}/command.rb +0 -0
data/lib/mihari/{web/entities → entities}/config.rb +0 -0
data/lib/mihari/{web/entities → entities}/dns.rb +0 -0
data/lib/mihari/{web/entities → entities}/geolocation.rb +0 -0
data/lib/mihari/{web/entities → entities}/ip_address.rb +0 -0
data/lib/mihari/{web/entities → entities}/message.rb +0 -0
data/lib/mihari/{web/entities → entities}/reverse_dns.rb +0 -0
data/lib/mihari/{web/entities → entities}/rule.rb +5 -0
data/lib/mihari/{web/entities → entities}/source.rb +0 -0
data/lib/mihari/{web/entities → entities}/tag.rb +0 -0
data/lib/mihari/{web/entities → entities}/whois.rb +0 -0
data/lib/mihari/errors.rb +2 -0
data/lib/mihari/feed/reader.rb +16 -58
data/lib/mihari/http.rb +99 -0
data/lib/mihari/mixins/error_notification.rb +20 -0
data/lib/mihari/mixins/retriable.rb +12 -2
data/lib/mihari/mixins/rule.rb +1 -2
data/lib/mihari/schemas/rule.rb +30 -4
data/lib/mihari/structs/ipinfo.rb +2 -3
data/lib/mihari/structs/rule.rb +31 -0
data/lib/mihari/structs/shodan.rb +9 -1
data/lib/mihari/types.rb +11 -3
data/lib/mihari/version.rb +1 -1
data/lib/mihari/web/api.rb +0 -20
data/lib/mihari/web/app.rb +2 -2
data/lib/mihari/web/endpoints/rules.rb +3 -1
data/lib/mihari/web/middleware/error_notification_adapter.rb +19 -0
data/lib/mihari/web/public/index.html +1 -1
data/lib/mihari/web/public/redoc-static.html +1888 -166
data/lib/mihari/web/public/static/css/app.0de4b715.css +1 -0
data/lib/mihari/web/public/static/css/app.43138058.css +1 -0
data/lib/mihari/web/public/static/css/chunk-vendors.3ed9b08e.css +7 -0
data/lib/mihari/web/public/static/css/chunk-vendors.c57bb3fd.css +7 -0
data/lib/mihari/web/public/static/fonts/fa-brands-400.1fd0b4d7.ttf +0 -0
data/lib/mihari/web/public/static/fonts/fa-brands-400.5d5236fb.woff2 +0 -0
data/lib/mihari/web/public/static/fonts/fa-brands-400.edf40f86.woff2 +0 -0
data/lib/mihari/web/public/static/fonts/fa-brands-400.f7223235.ttf +0 -0
data/lib/mihari/web/public/static/fonts/fa-regular-400.3665ebc7.woff2 +0 -0
data/lib/mihari/web/public/static/fonts/fa-regular-400.64b3730e.woff2 +0 -0
data/lib/mihari/web/public/static/fonts/fa-regular-400.95a8a8af.ttf +0 -0
data/lib/mihari/web/public/static/fonts/fa-regular-400.a7fde52b.ttf +0 -0
data/lib/mihari/web/public/static/fonts/fa-solid-900.0d2abd43.woff2 +0 -0
data/lib/mihari/web/public/static/fonts/fa-solid-900.5b03221c.ttf +0 -0
data/lib/mihari/web/public/static/fonts/fa-solid-900.6115ad71.woff2 +0 -0
data/lib/mihari/web/public/static/fonts/fa-solid-900.f0203cfc.ttf +0 -0
data/lib/mihari/web/public/static/fonts/fa-v4compatibility.42932bea.ttf +0 -0
data/lib/mihari/web/public/static/fonts/fa-v4compatibility.e1023515.ttf +0 -0
data/lib/mihari/web/public/static/js/app-legacy.46b666f0.js +2 -0
data/lib/mihari/web/public/static/js/app-legacy.46b666f0.js.map +1 -0
data/lib/mihari/web/public/static/js/app-legacy.e451304b.js +2 -0
data/lib/mihari/web/public/static/js/app-legacy.e451304b.js.map +1 -0
data/lib/mihari/web/public/static/js/app.4818aedd.js +2 -0
data/lib/mihari/web/public/static/js/app.4818aedd.js.map +1 -0
data/lib/mihari/web/public/static/js/app.e74e91d7.js +2 -0
data/lib/mihari/web/public/static/js/app.e74e91d7.js.map +1 -0
data/lib/mihari/web/public/static/js/chunk-vendors-legacy.41357cdf.js +25 -0
data/lib/mihari/web/public/static/js/chunk-vendors-legacy.41357cdf.js.map +1 -0
data/lib/mihari/web/public/static/js/chunk-vendors-legacy.c99e452e.js +17 -0
data/lib/mihari/web/public/static/js/chunk-vendors-legacy.c99e452e.js.map +1 -0
data/lib/mihari/web/public/static/js/chunk-vendors.15e84e22.js +23 -0
data/lib/mihari/web/public/static/js/chunk-vendors.15e84e22.js.map +1 -0
data/lib/mihari/web/public/static/js/chunk-vendors.c5525f1e.js +31 -0
data/lib/mihari/web/public/static/js/chunk-vendors.c5525f1e.js.map +1 -0
data/lib/mihari.rb +71 -21
data/mihari.gemspec +16 -11
data/sig/lib/mihari/constants.rbs +2 -0
data/sig/lib/mihari/emitters/http.rbs +35 -0
data/sig/lib/mihari/emitters/slack.rbs +29 -1
data/sig/lib/mihari/feed/reader.rbs +2 -2
data/sig/lib/mihari/http.rbs +64 -0
data/sig/lib/mihari/mixins/error_notification.rbs +12 -0
data/sig/lib/mihari/structs/rule.rbs +4 -0
data/sig/lib/mihari/types.rbs +2 -0
data/sig/lib/mihari.rbs +4 -8
metadata +137 -62
data/lib/mihari/cli/mixins/utils.rb +0 -72
data/lib/mihari/emitters/stdout.rb +0 -22
data/lib/mihari/notifiers/base.rb +0 -24
data/lib/mihari/notifiers/exception_notifier.rb +0 -126
data/lib/mihari/notifiers/slack.rb +0 -63
data/sig/lib/mihari/cli/mixins/utils.rbs +0 -50
data/sig/lib/mihari/notifiers/base.rbs +0 -18
data/sig/lib/mihari/notifiers/exception_notifier.rbs +0 -75
data/sig/lib/mihari/notifiers/slack.rbs +0 -50

data/lib/mihari/notifiers/exception_notifier.rb DELETED Viewed

@@ -1,126 +0,0 @@
-# frozen_string_literal: true
-module Mihari
-  module Notifiers
-    class ExceptionNotifier
-      def initialize
-        @backtrace_lines = 10
-        @color = "danger"
-        @slack = Notifiers::Slack.new
-      end
-      def valid?
-        @slack.valid?
-      end
-      def notify(exception)
-        notify_to_stdout exception
-        clean_message = exception.message.tr("`", "'")
-        attachments = to_attachments(exception, clean_message)
-        notify_to_slack(text: clean_message, attachments: attachments) if @slack.valid?
-      end
-      #
-      # Send notification to Slack
-      #
-      # @param [String] text
-      # @param [Array<Hash>] attachments
-      #
-      # @return [nil]
-      #
-      def notify_to_slack(text:, attachments:)
-        @slack.notify(text: text, attachments: attachments)
-      end
-      #
-      # Send notification to STDOUT
-      #
-      # @param [Exception] exception
-      #
-      # @return [nil]
-      #
-      def notify_to_stdout(exception)
-        text = to_text(exception.class).chomp
-        message = "#{text}: #{exception.message}"
-        puts message
-        puts format_backtrace(exception.backtrace) if exception.backtrace
-      end
-      #
-      # Convert exception to attachments (for Slack)
-      #
-      # @param [Exception] exception
-      # @param [String] clean_message
-      #
-      # @return [Array<Hash>]
-      #
-      def to_attachments(exception, clean_message)
-        text = to_text(exception.class)
-        backtrace = exception.backtrace
-        fields = to_fields(clean_message, backtrace)
-        [color: @color, text: text, fields: fields, mrkdwn_in: %w[text fields]]
-      end
-      #
-      # Convert exception class to text
-      #
-      # @param [Class<Exception>] exception_class
-      #
-      # @return [String]
-      #
-      def to_text(exception_class)
-        measure_word = /^[aeiou]/i.match?(exception_class.to_s) ? "An" : "A"
-        exception_name = "*#{measure_word}* `#{exception_class}`"
-        "#{exception_name} *occured in background*\n"
-      end
-      #
-      # Convert clean_message and backtrace into fields (for Slack)
-      #
-      # @param [String] clean_message
-      # @param [Array] backtrace
-      #
-      # @return [Array<Hash>]
-      #
-      def to_fields(clean_message, backtrace)
-        fields = [
-          { title: "Exception", value: clean_message },
-          { title: "Hostname", value: hostname }
-        ]
-        if backtrace
-          formatted_backtrace = format_backtrace(backtrace)
-          fields << { title: "Backtrace", value: formatted_backtrace }
-        end
-        fields
-      end
-      #
-      # Hostname of runnning instance
-      #
-      # @return [String]
-      #
-      def hostname
-        Socket.gethostname
-      rescue StandardError => _e
-        "N/A"
-      end
-      #
-      # Format backtrace in string
-      #
-      # @param [Array] backtrace
-      #
-      # @return [String]
-      #
-      def format_backtrace(backtrace)
-        return nil unless backtrace
-        "```#{backtrace.first(@backtrace_lines).join("\n")}```"
-      end
-    end
-  end
-end

data/lib/mihari/notifiers/slack.rb DELETED Viewed

@@ -1,63 +0,0 @@
-# frozen_string_literal: true
-require "slack-notifier"
-module Mihari
-  module Notifiers
-    class Slack < Base
-      SLACK_WEBHOOK_URL_KEY = "SLACK_WEBHOOK_URL"
-      SLACK_CHANNEL_KEY = "SLACK_CHANNEL"
-      DEFAULT_USERNAME = "mihari"
-      #
-      # Slack channel to post
-      #
-      # @return [String]
-      #
-      def slack_channel
-        Mihari.config.slack_channel || "#general"
-      end
-      #
-      # Slack webhook URL
-      #
-      # @return [String]
-      #
-      def slack_webhook_url
-        Mihari.config.slack_webhook_url
-      end
-      #
-      # Check Slack webhook URL is set
-      #
-      # @return [Boolean]
-      #
-      def slack_webhook_url?
-        !Mihari.config.slack_webhook_url.nil?
-      end
-      #
-      # Check Slack webhook URL is set. Alias of #slack_webhook_url?.
-      #
-      # @return [Boolean]
-      #
-      def valid?
-        slack_webhook_url?
-      end
-      #
-      # Send notification to Slack
-      #
-      # @param [String] text
-      # @param [Array<Hash>] attachments
-      # @param [Boolean] mrkdwn
-      #
-      # @return [nil]
-      #
-      def notify(text:, attachments: [], mrkdwn: true)
-        notifier = ::Slack::Notifier.new(slack_webhook_url, channel: slack_channel, username: DEFAULT_USERNAME)
-        notifier.post(text: text, attachments: attachments, mrkdwn: mrkdwn)
-      end
-    end
-  end
-end

data/sig/lib/mihari/cli/mixins/utils.rbs DELETED Viewed

@@ -1,50 +0,0 @@
-module Mihari
-  module CLI
-    module Mixins
-      module Utils
-        #
-        # Send an exception notification if there is any error in a block
-        #
-        # @return [Nil]
-        #
-        def with_error_handling: () { () -> untyped } -> void
-        #
-        # Check required keys in JSON
-        #
-        # @param [Hash] json
-        #
-        # @return [Boolean]
-        #
-        def required_alert_keys?: (Hash[(String | Symbol), untyped] json) -> bool
-        #
-        # Load configuration and establish DB connection
-        #
-        # @return [Hash]
-        #
-        def load_configuration: () -> Hash[(String | Symbol), untyped]
-        #
-        # Run analyzer
-        #
-        # @param [Class<Mihari::Analyzers::Base>] analyzer_class
-        # @param [String] query
-        # @param [Hash] options
-        #
-        # @return [nil]
-        #
-        def run_analyzer: (untyped analyzer_class, query: String query, options: untyped options) -> void
-        #
-        # Normalize options (reject keys not for analyzers)
-        #
-        # @param [Hash] options
-        #
-        # @return [Hash]
-        #
-        def normalize_options: (Hash[(String | Symbol), untyped] options) -> Hash[(String | Symbol), untyped]
-      end
-    end
-  end
-end

data/sig/lib/mihari/notifiers/base.rbs DELETED Viewed

@@ -1,18 +0,0 @@
-module Mihari
-  module Notifiers
-    class Base
-      # Validate notifier availability
-      #
-      # @return [Boolean]
-      #
-      def valid?: () -> bool
-      #
-      # Send a notification
-      #
-      # @return [nil]
-      #
-      def notify: () -> void
-    end
-  end
-end

data/sig/lib/mihari/notifiers/exception_notifier.rbs DELETED Viewed

@@ -1,75 +0,0 @@
-module Mihari
-  module Notifiers
-    class ExceptionNotifier
-      def initialize: () -> void
-      def valid?: () -> bool
-      def notify: (Exception exception) -> void
-      #
-      # Send notification to Slack
-      #
-      # @param [String] text
-      # @param [Array<Hash>] attachments
-      #
-      # @return [nil]
-      #
-      def notify_to_slack: (text: String text, attachments: Array[Hash[(String | Symbol), untyped]] attachments) -> void
-      #
-      # Send notification to STDOUT
-      #
-      # @param [Exception] exception
-      #
-      # @return [nil]
-      #
-      def notify_to_stdout: (Exception exception) -> void
-      #
-      # Convert exception to attachments (for Slack)
-      #
-      # @param [Exception] exception
-      # @param [String] clean_message
-      #
-      # @return [Array<Hash>]
-      #
-      def to_attachments: (Exception exception, String clean_message) -> ::Array[{ color: untyped, text: untyped, fields: untyped, :mrkdwn_in => ::Array["text" | "fields"] }]
-      #
-      # Convert exception class to text
-      #
-      # @param [Class<Exception>] exception_class
-      #
-      # @return [String]
-      #
-      def to_text: (singleton(Exception) exception_class) -> ::String
-      #
-      # Convert clean_message and backtrace into fields (for Slack)
-      #
-      # @param [String] clean_message
-      # @param [Array] backtrace
-      #
-      # @return [Array<Hash>]
-      #
-      def to_fields: (String clean_message, untyped backtrace) -> Array[Hash[(String | Symbol), untyped]]
-      #
-      # Hostname of runnning instance
-      #
-      # @return [String]
-      #
-      def hostname: () -> String
-      #
-      # Format backtrace in string
-      #
-      # @param [Array] backtrace
-      #
-      # @return [String]
-      #
-      def format_backtrace: (untyped backtrace) -> (nil | ::String)
-    end
-  end
-end

data/sig/lib/mihari/notifiers/slack.rbs DELETED Viewed

@@ -1,50 +0,0 @@
-module Mihari
-  module Notifiers
-    class Slack < Base
-      SLACK_WEBHOOK_URL_KEY: ::String
-      SLACK_CHANNEL_KEY: ::String
-      DEFAULT_USERNAME: ::String
-      #
-      # Slack channel to post
-      #
-      # @return [String]
-      #
-      def slack_channel: () -> String
-      #
-      # Slack webhook URL
-      #
-      # @return [String]
-      #
-      def slack_webhook_url: () -> String
-      #
-      # Check Slack webhook URL is set
-      #
-      # @return [Boolean]
-      #
-      def slack_webhook_url?: () -> bool
-      #
-      # Check Slack webhook URL is set. Alias of #slack_webhook_url?.
-      #
-      # @return [Boolean]
-      #
-      def valid?: () -> bool
-      #
-      # Send notification to Slack
-      #
-      # @param [String] text
-      # @param [Array<Hash>] attachments
-      # @param [Boolean] mrkdwn
-      #
-      # @return [nil]
-      #
-      def notify: (text: String text, ?attachments: Array[Hash[(String | Symbol), untyped]] attachments, ?mrkdwn: bool mrkdwn) -> untyped
-    end
-  end
-end