mihari 5.2.1 → 5.2.2

data/.github/ISSUE_TEMPLATE/bug_report.md

@@ -1,43 +0,0 @@
----
-name: Bug report
-about: Create a bug report to help us improve
-title: "[BUG]"
-labels: bug
-assignees: ''
-
----
-
-<!--
-Thank you for taking the time to report a bug.
-Please make sure there is no existing issue about this kind of bug.
--->
-
-### **Describe the bug**
-
-A clear and concise description of what the bug is.
-
-### **Steps to reproduce**
-
-- ...
-
-### **Expected behavior**
-
-A clear and concise description of what you expected to happen.
-
-### **Actual behavior**
-
-A clear and concise description of what actually happened.
-
-### **Screenshots**
-
-Add screenshots to help explain your problem.
-
-### **System Information:**
-
-- OS: [e.g. Windows10]
-- Ruby version: [e.g. 3.0]
-- Mihari version: [e.g. 2.0.0]
-
-### **Additional context**
-
-Add any other context about the problem here.

data/.github/ISSUE_TEMPLATE/feature_request.md

@@ -1,15 +0,0 @@
----
-name: Feature request
-about: Suggest a new Feature for Mihari
-title: "[Feature Request]"
-labels: enhancement
-assignees: ''
-
----
-<!--
-
-1. Make sure your requested feature makes sense for Mihari.
-
-2. If you want to suggest a new integration of a service, please provide detailed information of it. (e.g. API docs)
-
--->

data/.github/workflows/test.yml

@@ -1,90 +0,0 @@
-name: Ruby CI
-
-on:
-  push:
-    branches: [master]
-  pull_request:
-    branches: [master]
-
-jobs:
-  test:
-    runs-on: ubuntu-latest
-
-    services:
-      postgres:
-        image: postgres:12
-        env:
-          POSTGRES_USER: postgres
-          POSTGRES_PASSWORD: postgres
-          POSTGRES_DB: test
-        options: >-
-          --health-cmd pg_isready
-          --health-interval 10s
-          --health-timeout 5s
-          --health-retries 5
-        ports:
-          - 5432:5432
-
-      mysql:
-        image: mysql:8.0
-        env:
-          MYSQL_USER: mysql
-          MYSQL_PASSWORD: mysql
-          MYSQL_DATABASE: test
-          MYSQL_ROOT_PASSWORD: rootpassword
-        ports:
-          - 3306:3306
-        options: >-
-          --health-cmd="mysqladmin ping"
-          --health-interval=10s
-          --health-timeout=5s
-          --health-retries=3
-
-    strategy:
-      fail-fast: false
-      matrix:
-        ruby: [2.7, "3.0", 3.1, 3.2]
-
-    steps:
-      - uses: actions/checkout@v3
-
-      - name: Install dependencies
-        run: |
-          sudo apt-get -yqq install libpq-dev libmysqlclient-dev
-
-      - name: Set up Ruby
-        uses: ruby/setup-ruby@v1
-        with:
-          ruby-version: ${{ matrix.ruby }}
-          bundler: latest
-          bundler-cache: true
-
-      - name: Test with PostgreSQL
-        env:
-          DATABASE: postgresql://postgres:postgres@localhost:5432/test
-        run: |
-          bundle exec rake
-
-      - name: Test with MySQL
-        env:
-          DATABASE: mysql2://mysql:mysql@127.0.0.1:3306/test
-        run: |
-          bundle exec rake
-
-      - name: Coveralls Parallel
-        uses: coverallsapp/github-action@master
-        with:
-          github-token: ${{ secrets.github_token }}
-          flag-name: run-${{ matrix.ruby-version }}
-          parallel: true
-
-  coverage:
-    name: Coverage
-    needs: test
-    runs-on: ubuntu-latest
-    steps:
-      - name: Coveralls Finished
-        uses: coverallsapp/github-action@master
-        with:
-          github-token: ${{ secrets.github_token }}
-          parallel-finished: true

data/config/pre_commit.yml

@@ -1,3 +0,0 @@
----
-:checks_add:
-  - :rubocop

data/docker/Dockerfile

@@ -1,14 +0,0 @@
-FROM ruby:3.1.3-alpine3.17
-
-RUN apk --no-cache add git build-base ruby-dev sqlite-dev postgresql-dev mysql-client mysql-dev && \
-  gem install pg mysql2
-
-ARG MIHARI_VERSION=5.1.0
-
-RUN gem install mihari -v ${MIHARI_VERSION}
-
-RUN apk del --purge git build-base ruby-dev
-
-ENTRYPOINT ["mihari"]
-
-CMD ["--help"]

data/examples/ipinfo_hosted_domains.rb

@@ -1,45 +0,0 @@
-# frozen_string_literal: true
-
-$LOAD_PATH.unshift("#{__dir__}/../lib")
-
-require "json"
-require "mihari"
-require "open-uri"
-
-module Mihari
-  module Analyzers
-    class HostedDomains < Base
-      attr_reader :ip
-
-      IPINFO_API_ENDPOINT = "https://ipinfo.io"
-
-      def initialize(ip, token: nil)
-        @ip = ip
-        @token = token
-      end
-
-      def title
-        "IPinfo hosted domains"
-      end
-
-      def description
-        "IP info hosted domains: #{ip}"
-      end
-
-      def token
-        ENV["IPINFO_TOKEN"] || @token
-      end
-
-      def artifacts
-        uri = URI("#{IPINFO_API_ENDPOINT}/domains/#{ip}?token=#{token}")
-        res = uri.read
-        json = JSON.parse(res)
-        json["domains"] || []
-      end
-    end
-  end
-end
-
-ip = "TARGET_IP"
-analyzer = Mihari::Analyzers::HostedDomains.new(ip)
-analyzer.run

data/lib/mihari/commands/searcher.rb

@@ -1,61 +0,0 @@
-# frozen_string_literal: true
-
-module Mihari
-  module Commands
-    module Searcher
-      include Mixins::ErrorNotification
-
-      def self.included(thor)
-        thor.class_eval do
-          desc "search [PATH]", "Search by a rule"
-          method_option :force_overwrite, type: :boolean, aliases: "-f", desc: "Force an overwrite the rule"
-          #
-          # Search by a rule
-          #
-          # @param [String] path_or_id
-          #
-          def search(path_or_id)
-            Mihari::Database.with_db_connection do
-              rule = Structs::Rule.from_path_or_id path_or_id
-
-              # validate
-              begin
-                rule.validate!
-              rescue RuleValidationError
-                return
-              end
-
-              force_overwrite = options["force_overwrite"] || false
-
-              begin
-                rule_model = Mihari::Rule.find(rule.id)
-                has_change = rule_model.data != rule.data.deep_stringify_keys
-                has_change_and_not_force_overwrite = has_change & !force_overwrite
-
-                if has_change_and_not_force_overwrite && !yes?("This operation will overwrite the rule in the database (Rule ID: #{rule.id}). Are you sure you want to update the rule? (y/n)")
-                  return
-                end
-
-                # update the rule
-                rule.model.save
-              rescue ActiveRecord::RecordNotFound
-                # create a new rule
-                rule.model.save
-              end
-
-              with_error_notification do
-                alert = rule.analyzer.run
-                if alert
-                  data = Mihari::Entities::Alert.represent(alert)
-                  puts JSON.pretty_generate(data.as_json)
-                else
-                  Mihari.logger.info "There is no new alert created in the database"
-                end
-              end
-            end
-          end
-        end
-      end
-    end
-  end
-end