mihari 5.0.1 → 5.1.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.rspec +1 -1
- data/docker/Dockerfile +1 -1
- data/lib/mihari/analyzers/binaryedge.rb +9 -7
- data/lib/mihari/analyzers/censys.rb +3 -5
- data/lib/mihari/analyzers/circl.rb +4 -6
- data/lib/mihari/analyzers/crtsh.rb +6 -7
- data/lib/mihari/analyzers/dnpedia.rb +3 -7
- data/lib/mihari/analyzers/dnstwister.rb +3 -5
- data/lib/mihari/analyzers/feed.rb +12 -10
- data/lib/mihari/analyzers/greynoise.rb +3 -5
- data/lib/mihari/analyzers/onyphe.rb +3 -4
- data/lib/mihari/analyzers/otx.rb +1 -3
- data/lib/mihari/analyzers/passivetotal.rb +5 -7
- data/lib/mihari/analyzers/pulsedive.rb +5 -7
- data/lib/mihari/analyzers/shodan.rb +3 -9
- data/lib/mihari/analyzers/urlscan.rb +7 -6
- data/lib/mihari/analyzers/virustotal.rb +4 -6
- data/lib/mihari/analyzers/virustotal_intelligence.rb +4 -5
- data/lib/mihari/analyzers/zoomeye.rb +4 -10
- data/lib/mihari/cli/database.rb +11 -0
- data/lib/mihari/cli/main.rb +10 -4
- data/lib/mihari/cli/rule.rb +11 -0
- data/lib/mihari/clients/base.rb +53 -0
- data/lib/mihari/clients/binaryedge.rb +33 -0
- data/lib/mihari/clients/censys.rb +42 -0
- data/lib/mihari/clients/circl.rb +59 -0
- data/lib/mihari/clients/crtsh.rb +31 -0
- data/lib/mihari/clients/dnpedia.rb +64 -0
- data/lib/mihari/clients/dnstwister.rb +40 -0
- data/lib/mihari/clients/greynoise.rb +29 -0
- data/lib/mihari/clients/misp.rb +24 -0
- data/lib/mihari/clients/onyphe.rb +23 -0
- data/lib/mihari/clients/otx.rb +29 -0
- data/lib/mihari/clients/passivetotal.rb +65 -0
- data/lib/mihari/clients/publsedive.rb +39 -0
- data/lib/mihari/clients/shodan.rb +30 -0
- data/lib/mihari/clients/the_hive.rb +28 -0
- data/lib/mihari/clients/urlscan.rb +31 -0
- data/lib/mihari/clients/virustotal.rb +56 -0
- data/lib/mihari/clients/zoomeye.rb +68 -0
- data/lib/mihari/commands/database.rb +28 -0
- data/lib/mihari/commands/{initializer.rb → rule.rb} +27 -6
- data/lib/mihari/commands/searcher.rb +5 -0
- data/lib/mihari/database.rb +8 -22
- data/lib/mihari/emitters/misp.rb +13 -20
- data/lib/mihari/emitters/the_hive.rb +3 -5
- data/lib/mihari/emitters/webhook.rb +2 -2
- data/lib/mihari/feed/reader.rb +14 -11
- data/lib/mihari/http.rb +29 -21
- data/lib/mihari/mixins/database.rb +2 -0
- data/lib/mihari/mixins/retriable.rb +3 -1
- data/lib/mihari/schemas/analyzer.rb +5 -4
- data/lib/mihari/version.rb +1 -1
- data/lib/mihari.rb +21 -0
- data/mihari.gemspec +14 -20
- metadata +61 -238
- data/lib/mihari/analyzers/clients/otx.rb +0 -36
- data/lib/mihari/commands/validator.rb +0 -31
|
@@ -0,0 +1,68 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Mihari
|
|
4
|
+
module Clients
|
|
5
|
+
class ZoomEye < Base
|
|
6
|
+
attr_reader :api_key
|
|
7
|
+
|
|
8
|
+
def initialize(base_url = "https://api.zoomeye.org", api_key:, headers: {})
|
|
9
|
+
raise(ArgumentError, "'api_key' argument is required") unless api_key
|
|
10
|
+
|
|
11
|
+
headers["api-key"] = api_key
|
|
12
|
+
super(base_url, headers: headers)
|
|
13
|
+
end
|
|
14
|
+
|
|
15
|
+
#
|
|
16
|
+
# Search the Host devices
|
|
17
|
+
#
|
|
18
|
+
# @param [String] query Query string
|
|
19
|
+
# @param [Integer, nil] page The page number to paging(default:1)
|
|
20
|
+
# @param [String, nil] facets A comma-separated list of properties to get summary information on query
|
|
21
|
+
#
|
|
22
|
+
# @return [Hash]
|
|
23
|
+
#
|
|
24
|
+
def host_search(query, page: nil, facets: nil)
|
|
25
|
+
params = {
|
|
26
|
+
query: query,
|
|
27
|
+
page: page,
|
|
28
|
+
facets: facets
|
|
29
|
+
}.compact
|
|
30
|
+
|
|
31
|
+
_get("/host/search", params: params)
|
|
32
|
+
end
|
|
33
|
+
|
|
34
|
+
#
|
|
35
|
+
# Search the Web technologies
|
|
36
|
+
#
|
|
37
|
+
# @param [String] query Query string
|
|
38
|
+
# @param [Integer, nil] page The page number to paging(default:1)
|
|
39
|
+
# @param [String, nil] facets A comma-separated list of properties to get summary information on query
|
|
40
|
+
#
|
|
41
|
+
# @return [Hash]
|
|
42
|
+
#
|
|
43
|
+
def web_search(query, page: nil, facets: nil)
|
|
44
|
+
params = {
|
|
45
|
+
query: query,
|
|
46
|
+
page: page,
|
|
47
|
+
facets: facets
|
|
48
|
+
}.compact
|
|
49
|
+
|
|
50
|
+
_get("/web/search", params: params)
|
|
51
|
+
end
|
|
52
|
+
|
|
53
|
+
private
|
|
54
|
+
|
|
55
|
+
#
|
|
56
|
+
#
|
|
57
|
+
# @param [String] path
|
|
58
|
+
# @param [Hash] params
|
|
59
|
+
#
|
|
60
|
+
def _get(path, params: {})
|
|
61
|
+
res = get(path, params: params)
|
|
62
|
+
JSON.parse(res.body.to_s)
|
|
63
|
+
rescue HTTPError
|
|
64
|
+
nil
|
|
65
|
+
end
|
|
66
|
+
end
|
|
67
|
+
end
|
|
68
|
+
end
|
|
@@ -0,0 +1,28 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Mihari
|
|
4
|
+
module Commands
|
|
5
|
+
module Database
|
|
6
|
+
include Mixins::Database
|
|
7
|
+
|
|
8
|
+
def self.included(thor)
|
|
9
|
+
thor.class_eval do
|
|
10
|
+
desc "migrate", "Migrate DB schemas"
|
|
11
|
+
method_option :verbose, type: :boolean, default: true
|
|
12
|
+
#
|
|
13
|
+
# @param [String] direction
|
|
14
|
+
#
|
|
15
|
+
#
|
|
16
|
+
def migrate(direction = "up")
|
|
17
|
+
verbose = options["verbose"]
|
|
18
|
+
ActiveRecord::Migration.verbose = verbose
|
|
19
|
+
|
|
20
|
+
with_db_connection do
|
|
21
|
+
Mihari::Database.migrate(direction.to_sym)
|
|
22
|
+
end
|
|
23
|
+
end
|
|
24
|
+
end
|
|
25
|
+
end
|
|
26
|
+
end
|
|
27
|
+
end
|
|
28
|
+
end
|
|
@@ -4,20 +4,41 @@ require "pathname"
|
|
|
4
4
|
|
|
5
5
|
module Mihari
|
|
6
6
|
module Commands
|
|
7
|
-
module
|
|
7
|
+
module Rule
|
|
8
8
|
def self.included(thor)
|
|
9
9
|
thor.class_eval do
|
|
10
|
-
desc "
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
10
|
+
desc "validate [PATH]", "Validate a rule file"
|
|
11
|
+
#
|
|
12
|
+
# Validate format of a rule
|
|
13
|
+
#
|
|
14
|
+
# @param [String] path
|
|
15
|
+
#
|
|
16
|
+
def validate(path)
|
|
17
|
+
rule = Structs::Rule.from_path_or_id(path)
|
|
14
18
|
|
|
19
|
+
begin
|
|
20
|
+
rule.validate!
|
|
21
|
+
Mihari.logger.info "Valid format. The input is parsed as the following:"
|
|
22
|
+
Mihari.logger.info rule.data.to_yaml
|
|
23
|
+
rescue RuleValidationError
|
|
24
|
+
nil
|
|
25
|
+
end
|
|
26
|
+
end
|
|
27
|
+
|
|
28
|
+
desc "init [PATH]", "Initialize a new rule file"
|
|
29
|
+
#
|
|
30
|
+
# Initialize a new rule file
|
|
31
|
+
#
|
|
32
|
+
# @param [String] path
|
|
33
|
+
#
|
|
34
|
+
#
|
|
35
|
+
def init(path = "./rule.yml")
|
|
15
36
|
warning = "#{path} exists. Do you want to overwrite it? (y/n)"
|
|
16
37
|
return if Pathname(path).exist? && !(yes? warning)
|
|
17
38
|
|
|
18
39
|
initialize_rule path
|
|
19
40
|
|
|
20
|
-
Mihari.logger.info "A new rule is initialized
|
|
41
|
+
Mihari.logger.info "A new rule is initialized: #{path}."
|
|
21
42
|
end
|
|
22
43
|
|
|
23
44
|
no_commands do
|
|
@@ -10,6 +10,11 @@ module Mihari
|
|
|
10
10
|
thor.class_eval do
|
|
11
11
|
desc "search [PATH]", "Search by a rule"
|
|
12
12
|
method_option :force_overwrite, type: :boolean, aliases: "-f", desc: "Force an overwrite the rule"
|
|
13
|
+
#
|
|
14
|
+
# Search by a rule
|
|
15
|
+
#
|
|
16
|
+
# @param [String] path_or_id
|
|
17
|
+
#
|
|
13
18
|
def search(path_or_id)
|
|
14
19
|
with_db_connection do
|
|
15
20
|
rule = Structs::Rule.from_path_or_id path_or_id
|
data/lib/mihari/database.rb
CHANGED
|
@@ -9,10 +9,6 @@ def env
|
|
|
9
9
|
ENV["APP_ENV"] || ENV["RACK_ENV"]
|
|
10
10
|
end
|
|
11
11
|
|
|
12
|
-
def test_env?
|
|
13
|
-
env == "test"
|
|
14
|
-
end
|
|
15
|
-
|
|
16
12
|
def development_env?
|
|
17
13
|
env == "development"
|
|
18
14
|
end
|
|
@@ -121,22 +117,24 @@ def adapter
|
|
|
121
117
|
"sqlite3"
|
|
122
118
|
end
|
|
123
119
|
|
|
120
|
+
#
|
|
121
|
+
# @return [Array<ActiveRecord::Migration>] schemas
|
|
122
|
+
#
|
|
123
|
+
def schemas
|
|
124
|
+
[V5Schema]
|
|
125
|
+
end
|
|
126
|
+
|
|
124
127
|
module Mihari
|
|
125
128
|
class Database
|
|
126
129
|
class << self
|
|
127
|
-
include Memist::Memoizable
|
|
128
|
-
|
|
129
130
|
#
|
|
130
131
|
# DB migraration
|
|
131
132
|
#
|
|
132
133
|
# @param [Symbol] direction
|
|
133
134
|
#
|
|
134
135
|
def migrate(direction)
|
|
135
|
-
|
|
136
|
-
|
|
137
|
-
[V5Schema].each { |schema| schema.migrate direction }
|
|
136
|
+
schemas.each { |schema| schema.migrate direction }
|
|
138
137
|
end
|
|
139
|
-
memoize :migrate unless test_env?
|
|
140
138
|
|
|
141
139
|
#
|
|
142
140
|
# Establish DB connection
|
|
@@ -153,10 +151,7 @@ module Mihari
|
|
|
153
151
|
database: Mihari.config.database_url.path[1..]
|
|
154
152
|
)
|
|
155
153
|
end
|
|
156
|
-
|
|
157
154
|
ActiveRecord::Base.logger = Logger.new($stdout) if development_env?
|
|
158
|
-
|
|
159
|
-
migrate :up
|
|
160
155
|
rescue StandardError => e
|
|
161
156
|
Mihari.logger.error e
|
|
162
157
|
end
|
|
@@ -169,15 +164,6 @@ module Mihari
|
|
|
169
164
|
|
|
170
165
|
ActiveRecord::Base.clear_active_connections!
|
|
171
166
|
end
|
|
172
|
-
|
|
173
|
-
#
|
|
174
|
-
# Destory DB
|
|
175
|
-
#
|
|
176
|
-
def destroy!
|
|
177
|
-
return unless ActiveRecord::Base.connected?
|
|
178
|
-
|
|
179
|
-
migrate :down
|
|
180
|
-
end
|
|
181
167
|
end
|
|
182
168
|
end
|
|
183
169
|
end
|
data/lib/mihari/emitters/misp.rb
CHANGED
|
@@ -1,7 +1,5 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
require "misp"
|
|
4
|
-
|
|
5
3
|
module Mihari
|
|
6
4
|
module Emitters
|
|
7
5
|
class MISP < Base
|
|
@@ -16,11 +14,6 @@ module Mihari
|
|
|
16
14
|
|
|
17
15
|
@url = kwargs[:url] || Mihari.config.misp_url
|
|
18
16
|
@api_key = kwargs[:api_key] || Mihari.config.misp_api_key
|
|
19
|
-
|
|
20
|
-
::MISP.configure do |config|
|
|
21
|
-
config.api_endpoint = url
|
|
22
|
-
config.api_key = api_key
|
|
23
|
-
end
|
|
24
17
|
end
|
|
25
18
|
|
|
26
19
|
# @return [Boolean]
|
|
@@ -50,17 +43,13 @@ module Mihari
|
|
|
50
43
|
def emit(rule:, artifacts:, **_options)
|
|
51
44
|
return if artifacts.empty?
|
|
52
45
|
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
|
|
58
|
-
|
|
59
|
-
|
|
60
|
-
event.add_tag name: tag
|
|
61
|
-
end
|
|
62
|
-
|
|
63
|
-
event.create
|
|
46
|
+
client.create_event({
|
|
47
|
+
Event: {
|
|
48
|
+
info: rule.title
|
|
49
|
+
},
|
|
50
|
+
Attribute: artifacts.map { |artifact| build_attribute(artifact) },
|
|
51
|
+
Tag: rule.tags.map { |tag| { name: tag } }
|
|
52
|
+
})
|
|
64
53
|
end
|
|
65
54
|
|
|
66
55
|
private
|
|
@@ -69,15 +58,19 @@ module Mihari
|
|
|
69
58
|
%w[misp_url misp_api_key]
|
|
70
59
|
end
|
|
71
60
|
|
|
61
|
+
def client
|
|
62
|
+
@client ||= Clients::MISP.new(url, api_key: api_key)
|
|
63
|
+
end
|
|
64
|
+
|
|
72
65
|
#
|
|
73
66
|
# Build a MISP attribute
|
|
74
67
|
#
|
|
75
68
|
# @param [Mihari::Artifact] artifact
|
|
76
69
|
#
|
|
77
|
-
# @return [
|
|
70
|
+
# @return [Hash]
|
|
78
71
|
#
|
|
79
72
|
def build_attribute(artifact)
|
|
80
|
-
|
|
73
|
+
{ value: artifact.data, type: to_misp_type(type: artifact.data_type, value: artifact.data) }
|
|
81
74
|
end
|
|
82
75
|
|
|
83
76
|
#
|
|
@@ -1,7 +1,5 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
require "hachi"
|
|
4
|
-
|
|
5
3
|
module Mihari
|
|
6
4
|
module Emitters
|
|
7
5
|
class TheHive < Base
|
|
@@ -50,7 +48,7 @@ module Mihari
|
|
|
50
48
|
return if artifacts.empty?
|
|
51
49
|
|
|
52
50
|
payload = payload(rule: rule, artifacts: artifacts)
|
|
53
|
-
|
|
51
|
+
client.alert(payload)
|
|
54
52
|
end
|
|
55
53
|
|
|
56
54
|
#
|
|
@@ -79,8 +77,8 @@ module Mihari
|
|
|
79
77
|
%w[thehive_url thehive_api_key]
|
|
80
78
|
end
|
|
81
79
|
|
|
82
|
-
def
|
|
83
|
-
@
|
|
80
|
+
def client
|
|
81
|
+
@client ||= Clients::TheHive.new(url, api_key: api_key, api_version: normalized_api_version)
|
|
84
82
|
end
|
|
85
83
|
|
|
86
84
|
#
|
|
@@ -77,13 +77,13 @@ module Mihari
|
|
|
77
77
|
payload_ = payload_as_string(artifacts: artifacts, rule: rule)
|
|
78
78
|
payload = JSON.parse(payload_)
|
|
79
79
|
|
|
80
|
-
client = Mihari::HTTP.new(url, headers: headers
|
|
80
|
+
client = Mihari::HTTP.new(url, headers: headers)
|
|
81
81
|
|
|
82
82
|
case method
|
|
83
83
|
when "GET"
|
|
84
84
|
res = client.get
|
|
85
85
|
when "POST"
|
|
86
|
-
res = client.post
|
|
86
|
+
res = client.post(json: payload)
|
|
87
87
|
end
|
|
88
88
|
|
|
89
89
|
res
|
data/lib/mihari/feed/reader.rb
CHANGED
|
@@ -6,25 +6,28 @@ require "insensitive_hash"
|
|
|
6
6
|
module Mihari
|
|
7
7
|
module Feed
|
|
8
8
|
class Reader
|
|
9
|
-
attr_reader :
|
|
9
|
+
attr_reader :url, :headers, :params, :json, :data, :method
|
|
10
10
|
|
|
11
|
-
def initialize(
|
|
12
|
-
@
|
|
13
|
-
@
|
|
14
|
-
@
|
|
15
|
-
@http_request_payload = http_request_payload
|
|
11
|
+
def initialize(url, headers: {}, method: "GET", params: nil, json: nil, data: nil)
|
|
12
|
+
@url = Addressable::URI.parse(url)
|
|
13
|
+
@headers = headers.insensitive
|
|
14
|
+
@method = method
|
|
16
15
|
|
|
17
|
-
|
|
16
|
+
@params = params
|
|
17
|
+
@json = json
|
|
18
|
+
@data = data
|
|
19
|
+
|
|
20
|
+
headers["content-type"] = "application/json" unless json.nil?
|
|
18
21
|
end
|
|
19
22
|
|
|
20
23
|
def read
|
|
21
|
-
return read_file(
|
|
24
|
+
return read_file(url.path) if url.scheme == "file"
|
|
22
25
|
|
|
23
26
|
res = nil
|
|
24
|
-
client = HTTP.new(
|
|
27
|
+
client = HTTP.new(url, headers: headers)
|
|
25
28
|
|
|
26
|
-
res = client.get if
|
|
27
|
-
res = client.post if
|
|
29
|
+
res = client.get(params: params) if method == "GET"
|
|
30
|
+
res = client.post(params: params, json: json, data: data) if method == "POST"
|
|
28
31
|
|
|
29
32
|
return [] if res.nil?
|
|
30
33
|
|
data/lib/mihari/http.rb
CHANGED
|
@@ -4,54 +4,62 @@ require "insensitive_hash"
|
|
|
4
4
|
|
|
5
5
|
module Mihari
|
|
6
6
|
class HTTP
|
|
7
|
-
|
|
7
|
+
# @return [String]
|
|
8
|
+
attr_reader :url
|
|
8
9
|
|
|
9
|
-
|
|
10
|
+
# @return [Hash]
|
|
11
|
+
attr_reader :headers
|
|
12
|
+
|
|
13
|
+
def initialize(url, headers: {})
|
|
10
14
|
@url = url.is_a?(URI) ? url : URI(url.to_s)
|
|
11
15
|
@headers = headers.insensitive
|
|
12
|
-
@payload = payload
|
|
13
16
|
end
|
|
14
17
|
|
|
15
18
|
#
|
|
16
19
|
# Make a GET request
|
|
17
20
|
#
|
|
21
|
+
# @param [Hash, nil] params
|
|
22
|
+
#
|
|
18
23
|
# @return [Net::HTTPResponse]
|
|
19
24
|
#
|
|
20
|
-
def get
|
|
25
|
+
def get(params: nil)
|
|
21
26
|
new_url = url.deep_dup
|
|
22
|
-
new_url.query = Addressable::URI.form_encode(
|
|
27
|
+
new_url.query = Addressable::URI.form_encode(params) unless (params || {}).empty?
|
|
23
28
|
|
|
24
29
|
get = Net::HTTP::Get.new(new_url)
|
|
25
30
|
request get
|
|
26
31
|
end
|
|
27
32
|
|
|
28
33
|
#
|
|
29
|
-
# Make a POST
|
|
34
|
+
# Make a POST requesti
|
|
35
|
+
#
|
|
36
|
+
# @param [Hash, nil] params
|
|
37
|
+
# @param [Hash, nil] json
|
|
38
|
+
# @param [Hash, nil] data
|
|
30
39
|
#
|
|
31
40
|
# @return [Net::HTTPResponse]
|
|
32
41
|
#
|
|
33
|
-
def post
|
|
34
|
-
|
|
35
|
-
|
|
36
|
-
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
|
|
41
|
-
end
|
|
42
|
+
def post(params: nil, json: nil, data: nil)
|
|
43
|
+
new_url = url.deep_dup
|
|
44
|
+
new_url.query = Addressable::URI.form_encode(params) unless (params || {}).empty?
|
|
45
|
+
|
|
46
|
+
post = Net::HTTP::Post.new(new_url)
|
|
47
|
+
|
|
48
|
+
post.body = JSON.generate(json) if json
|
|
49
|
+
post.set_form_data(data) if data
|
|
42
50
|
|
|
43
51
|
request post
|
|
44
52
|
end
|
|
45
53
|
|
|
46
54
|
class << self
|
|
47
|
-
def get(url, headers: {}, params:
|
|
48
|
-
client = new(url, headers: headers
|
|
49
|
-
client.get
|
|
55
|
+
def get(url, headers: {}, params: nil)
|
|
56
|
+
client = new(url, headers: headers)
|
|
57
|
+
client.get(params: params)
|
|
50
58
|
end
|
|
51
59
|
|
|
52
|
-
def post(url, headers: {},
|
|
53
|
-
client = new(url, headers: headers
|
|
54
|
-
client.post
|
|
60
|
+
def post(url, headers: {}, params: nil, json: nil, data: nil)
|
|
61
|
+
client = new(url, headers: headers)
|
|
62
|
+
client.post(params: params, json: json, data: data)
|
|
55
63
|
end
|
|
56
64
|
end
|
|
57
65
|
|
|
@@ -82,10 +82,11 @@ module Mihari
|
|
|
82
82
|
required(:analyzer).value(Types::String.enum("feed"))
|
|
83
83
|
required(:query).value(:string)
|
|
84
84
|
required(:selector).value(:string)
|
|
85
|
-
optional(:
|
|
86
|
-
optional(:
|
|
87
|
-
optional(:
|
|
88
|
-
optional(:
|
|
85
|
+
optional(:method).value(Types::HTTPRequestMethods).default("GET")
|
|
86
|
+
optional(:headers).value(:hash).default({})
|
|
87
|
+
optional(:params).value(:hash)
|
|
88
|
+
optional(:data).value(:hash)
|
|
89
|
+
optional(:json).value(:hash)
|
|
89
90
|
optional(:options).hash(AnalyzerOptions)
|
|
90
91
|
end
|
|
91
92
|
end
|
data/lib/mihari/version.rb
CHANGED
data/lib/mihari.rb
CHANGED
|
@@ -212,6 +212,27 @@ require "mihari/emitters/slack"
|
|
|
212
212
|
require "mihari/emitters/the_hive"
|
|
213
213
|
require "mihari/emitters/webhook"
|
|
214
214
|
|
|
215
|
+
# Clients
|
|
216
|
+
require "mihari/clients/base"
|
|
217
|
+
|
|
218
|
+
require "mihari/clients/binaryedge"
|
|
219
|
+
require "mihari/clients/censys"
|
|
220
|
+
require "mihari/clients/circl"
|
|
221
|
+
require "mihari/clients/crtsh"
|
|
222
|
+
require "mihari/clients/dnpedia"
|
|
223
|
+
require "mihari/clients/dnstwister"
|
|
224
|
+
require "mihari/clients/greynoise"
|
|
225
|
+
require "mihari/clients/misp"
|
|
226
|
+
require "mihari/clients/onyphe"
|
|
227
|
+
require "mihari/clients/otx"
|
|
228
|
+
require "mihari/clients/passivetotal"
|
|
229
|
+
require "mihari/clients/publsedive"
|
|
230
|
+
require "mihari/clients/shodan"
|
|
231
|
+
require "mihari/clients/the_hive"
|
|
232
|
+
require "mihari/clients/urlscan"
|
|
233
|
+
require "mihari/clients/virustotal"
|
|
234
|
+
require "mihari/clients/zoomeye"
|
|
235
|
+
|
|
215
236
|
# Analyzers
|
|
216
237
|
require "mihari/analyzers/base"
|
|
217
238
|
|
data/mihari.gemspec
CHANGED
|
@@ -4,6 +4,11 @@ lib = File.expand_path("lib", __dir__)
|
|
|
4
4
|
$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
|
|
5
5
|
require "mihari/version"
|
|
6
6
|
|
|
7
|
+
def ci_env?
|
|
8
|
+
# CI=true in GitHub Actions
|
|
9
|
+
ENV["CI"]
|
|
10
|
+
end
|
|
11
|
+
|
|
7
12
|
Gem::Specification.new do |spec|
|
|
8
13
|
spec.name = "mihari"
|
|
9
14
|
spec.version = Mihari::VERSION
|
|
@@ -30,8 +35,8 @@ Gem::Specification.new do |spec|
|
|
|
30
35
|
spec.add_development_dependency "bundler", "~> 2.4"
|
|
31
36
|
spec.add_development_dependency "coveralls_reborn", "~> 0.27"
|
|
32
37
|
spec.add_development_dependency "fakefs", "~> 2.4"
|
|
38
|
+
spec.add_development_dependency "fuubar", "~> 2.5"
|
|
33
39
|
spec.add_development_dependency "mysql2", "~> 0.5"
|
|
34
|
-
spec.add_development_dependency "overcommit", "~> 0.60"
|
|
35
40
|
spec.add_development_dependency "pg", "~> 1.4"
|
|
36
41
|
spec.add_development_dependency "rack-test", "~> 2.0"
|
|
37
42
|
spec.add_development_dependency "rake", "~> 13.0"
|
|
@@ -40,19 +45,19 @@ Gem::Specification.new do |spec|
|
|
|
40
45
|
spec.add_development_dependency "rspec", "~> 3.12"
|
|
41
46
|
spec.add_development_dependency "simplecov-lcov", "~> 0.8.0"
|
|
42
47
|
spec.add_development_dependency "standard", "~> 1.24"
|
|
43
|
-
spec.add_development_dependency "steep", "~> 1.3"
|
|
44
48
|
spec.add_development_dependency "timecop", "~> 0.9"
|
|
45
49
|
spec.add_development_dependency "vcr", "~> 6.1"
|
|
46
50
|
spec.add_development_dependency "webmock", "~> 3.18"
|
|
47
51
|
|
|
52
|
+
unless ci_env?
|
|
53
|
+
spec.add_development_dependency "overcommit", "~> 0.60"
|
|
54
|
+
spec.add_development_dependency "ruby-lsp", "~> 0.4"
|
|
55
|
+
spec.add_development_dependency "steep", "~> 1.3"
|
|
56
|
+
end
|
|
57
|
+
|
|
48
58
|
spec.add_dependency "activerecord", "7.0.4.2"
|
|
49
59
|
spec.add_dependency "addressable", "2.8.1"
|
|
50
60
|
spec.add_dependency "awrence", "2.0.1"
|
|
51
|
-
spec.add_dependency "binaryedge", "0.1.0"
|
|
52
|
-
spec.add_dependency "censysx", "0.1.1"
|
|
53
|
-
spec.add_dependency "crtsh-rb", "0.3.1"
|
|
54
|
-
spec.add_dependency "dnpedia", "0.1.0"
|
|
55
|
-
spec.add_dependency "dnstwister", "0.1.0"
|
|
56
61
|
spec.add_dependency "dotenv", "2.8.1"
|
|
57
62
|
spec.add_dependency "dry-configurable", "1.0.1"
|
|
58
63
|
spec.add_dependency "dry-container", "0.11.0"
|
|
@@ -66,37 +71,26 @@ Gem::Specification.new do |spec|
|
|
|
66
71
|
spec.add_dependency "grape-entity", "1.0.0"
|
|
67
72
|
spec.add_dependency "grape-swagger", "1.5.0"
|
|
68
73
|
spec.add_dependency "grape-swagger-entity", "0.5.1"
|
|
69
|
-
spec.add_dependency "greynoise", "0.1.1"
|
|
70
|
-
spec.add_dependency "hachi", "2.0.0"
|
|
71
74
|
spec.add_dependency "insensitive_hash", "0.3.3"
|
|
72
75
|
spec.add_dependency "jr-cli", "0.6.0"
|
|
73
76
|
spec.add_dependency "launchy", "2.5.2"
|
|
74
77
|
spec.add_dependency "memist", "2.0.2"
|
|
75
|
-
spec.add_dependency "misp", "0.1.4"
|
|
76
78
|
spec.add_dependency "net-ping", "2.0.8"
|
|
77
79
|
spec.add_dependency "normalize_country", "0.3.2"
|
|
78
|
-
spec.add_dependency "onyphe", "2.0.0"
|
|
79
80
|
spec.add_dependency "parallel", "1.22.1"
|
|
80
|
-
spec.add_dependency "passive_circl", "0.1.0"
|
|
81
|
-
spec.add_dependency "passivetotalx", "0.1.1"
|
|
82
81
|
spec.add_dependency "plissken", "2.0.1"
|
|
83
82
|
spec.add_dependency "public_suffix", "5.0.1"
|
|
84
|
-
spec.add_dependency "pulsedive", "0.1.5"
|
|
85
83
|
spec.add_dependency "puma", "6.0.2"
|
|
86
84
|
spec.add_dependency "rack", "2.2.4"
|
|
87
85
|
spec.add_dependency "rack-contrib", "2.3.0"
|
|
88
86
|
spec.add_dependency "rack-cors", "1.1.1"
|
|
89
87
|
spec.add_dependency "securitytrails", "1.0.0"
|
|
90
88
|
spec.add_dependency "semantic_logger", "4.12.0"
|
|
91
|
-
spec.add_dependency "sentry-ruby", "5.
|
|
92
|
-
spec.add_dependency "shodanx", "0.2.1"
|
|
89
|
+
spec.add_dependency "sentry-ruby", "5.8.0"
|
|
93
90
|
spec.add_dependency "slack-notifier", "2.4.0"
|
|
94
|
-
spec.add_dependency "sqlite3", "1.6.
|
|
91
|
+
spec.add_dependency "sqlite3", "1.6.1"
|
|
95
92
|
spec.add_dependency "thor", "1.2.1"
|
|
96
|
-
spec.add_dependency "urlscan", "0.8.0"
|
|
97
93
|
spec.add_dependency "uuidtools", "2.2.0"
|
|
98
|
-
spec.add_dependency "virustotalx", "1.2.0"
|
|
99
94
|
spec.add_dependency "whois", "5.1.0"
|
|
100
95
|
spec.add_dependency "whois-parser", "2.0.0"
|
|
101
|
-
spec.add_dependency "zoomeye-rb", "0.2.0"
|
|
102
96
|
end
|