RubyGems - mihari - Versions diffs - 5.2.4 → 5.3.0 - Mend

mihari 5.2.4 → 5.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (126) hide show

checksums.yaml +4 -4
data/.gitignore +4 -1
data/README.md +0 -10
data/Rakefile +7 -1
data/build_frontend.sh +1 -1
data/frontend/.eslintrc.cjs +22 -0
data/frontend/.gitignore +18 -12
data/frontend/.prettierrc.json +8 -0
data/frontend/env.d.ts +5 -0
data/frontend/package-lock.json +5095 -9661
data/frontend/package.json +34 -24
data/frontend/src/App.vue +5 -5
data/frontend/src/api-helper.ts +38 -40
data/frontend/src/api.ts +40 -40
data/frontend/src/components/ErrorMessage.vue +8 -8
data/frontend/src/components/Loading.vue +3 -3
data/frontend/src/components/Navbar.vue +10 -27
data/frontend/src/components/Pagination.vue +35 -42
data/frontend/src/components/alert/Alert.vue +21 -26
data/frontend/src/components/alert/Alerts.vue +23 -25
data/frontend/src/components/alert/AlertsWithPagination.vue +34 -34
data/frontend/src/components/alert/AlertsWrapper.vue +42 -49
data/frontend/src/components/alert/Form.vue +39 -40
data/frontend/src/components/artifact/AS.vue +7 -7
data/frontend/src/components/artifact/Artifact.vue +66 -83
data/frontend/src/components/artifact/ArtifactTag.vue +21 -27
data/frontend/src/components/artifact/ArtifactTags.vue +8 -8
data/frontend/src/components/artifact/ArtifactWrapper.vue +22 -25
data/frontend/src/components/artifact/CPEs.vue +6 -6
data/frontend/src/components/artifact/DnsRecords.vue +9 -9
data/frontend/src/components/artifact/Ports.vue +6 -6
data/frontend/src/components/artifact/ReverseDnsNames.vue +7 -7
data/frontend/src/components/artifact/Tags.vue +6 -6
data/frontend/src/components/artifact/WhoisRecord.vue +7 -9
data/frontend/src/components/config/Configs.vue +7 -10
data/frontend/src/components/config/ConfigsWrapper.vue +14 -20
data/frontend/src/components/link/Link.vue +7 -7
data/frontend/src/components/link/Links.vue +16 -21
data/frontend/src/components/rule/EditRule.vue +22 -22
data/frontend/src/components/rule/EditRuleWrapper.vue +22 -28
data/frontend/src/components/rule/Form.vue +28 -28
data/frontend/src/components/rule/InputForm.vue +31 -25
data/frontend/src/components/rule/NewRule.vue +18 -18
data/frontend/src/components/rule/Rule.vue +25 -27
data/frontend/src/components/rule/RuleWrapper.vue +24 -31
data/frontend/src/components/rule/Rules.vue +26 -30
data/frontend/src/components/rule/RulesWrapper.vue +39 -42
data/frontend/src/components/rule/YAML.vue +19 -22
data/frontend/src/components/tag/Tag.vue +24 -32
data/frontend/src/components/tag/Tags.vue +11 -11
data/frontend/src/countries.ts +23 -23
data/frontend/src/index.ts +9 -12
data/frontend/src/links/anyrun.ts +10 -10
data/frontend/src/links/base.ts +3 -3
data/frontend/src/links/censys.ts +10 -10
data/frontend/src/links/crtsh.ts +10 -10
data/frontend/src/links/dnslytics.ts +18 -18
data/frontend/src/links/greynoise.ts +10 -10
data/frontend/src/links/index.ts +15 -15
data/frontend/src/links/intezer.ts +10 -10
data/frontend/src/links/otx.ts +14 -14
data/frontend/src/links/securitytrails.ts +15 -15
data/frontend/src/links/shodan.ts +10 -10
data/frontend/src/links/urlscan.ts +19 -19
data/frontend/src/links/virustotal.ts +27 -27
data/frontend/src/main.ts +8 -8
data/frontend/src/router/index.ts +20 -20
data/frontend/src/rule.ts +6 -6
data/frontend/src/shims-vue.d.ts +2 -2
data/frontend/src/types.ts +91 -91
data/frontend/src/utils.ts +23 -29
data/frontend/src/views/Alerts.vue +7 -7
data/frontend/src/views/Artifact.vue +17 -17
data/frontend/src/views/Configs.vue +7 -7
data/frontend/src/views/EditRule.vue +17 -17
data/frontend/src/views/NewRule.vue +10 -10
data/frontend/src/views/Rule.vue +17 -17
data/frontend/src/views/Rules.vue +7 -7
data/frontend/tests/utils.spec.ts +9 -0
data/frontend/tsconfig.app.json +21 -0
data/frontend/tsconfig.json +10 -36
data/frontend/tsconfig.node.json +13 -0
data/frontend/tsconfig.vitest.json +12 -0
data/frontend/vite.config.ts +24 -0
data/frontend/vitest.config.ts +21 -0
data/lefthook.yml +4 -2
data/lib/mihari/analyzers/base.rb +48 -14
data/lib/mihari/analyzers/binaryedge.rb +10 -15
data/lib/mihari/analyzers/censys.rb +12 -15
data/lib/mihari/analyzers/circl.rb +10 -10
data/lib/mihari/analyzers/crtsh.rb +10 -6
data/lib/mihari/analyzers/dnstwister.rb +6 -8
data/lib/mihari/analyzers/feed.rb +21 -10
data/lib/mihari/analyzers/greynoise.rb +10 -20
data/lib/mihari/analyzers/onyphe.rb +9 -14
data/lib/mihari/analyzers/otx.rb +8 -9
data/lib/mihari/analyzers/passivetotal.rb +10 -10
data/lib/mihari/analyzers/pulsedive.rb +21 -31
data/lib/mihari/analyzers/securitytrails.rb +8 -6
data/lib/mihari/analyzers/shodan.rb +8 -13
data/lib/mihari/analyzers/urlscan.rb +15 -20
data/lib/mihari/analyzers/virustotal.rb +16 -26
data/lib/mihari/analyzers/virustotal_intelligence.rb +11 -17
data/lib/mihari/analyzers/zoomeye.rb +12 -17
data/lib/mihari/config.rb +133 -0
data/lib/mihari/constants.rb +3 -0
data/lib/mihari/emitters/slack.rb +13 -3
data/lib/mihari/errors.rb +1 -1
data/lib/mihari/http.rb +2 -3
data/lib/mihari/schemas/analyzer.rb +2 -0
data/lib/mihari/type_checker.rb +6 -6
data/lib/mihari/version.rb +1 -1
data/lib/mihari/web/endpoints/configs.rb +5 -1
data/lib/mihari/web/public/assets/{index-eed1bcd8.css → index-2ba8f0a6.css} +1 -1
data/lib/mihari/web/public/assets/{index-ac4e5ffa.js → index-71285b15.js} +16 -16
data/lib/mihari/web/public/index.html +2 -2
data/lib/mihari/web/public/redoc-static.html +388 -2193
data/lib/mihari.rb +9 -59
data/mihari.gemspec +8 -8
metadata +24 -62
data/frontend/.browserslistrc +0 -3
data/frontend/.eslintrc.js +0 -33
data/frontend/babel.config.js +0 -3
data/frontend/jest.config.js +0 -9
data/frontend/tests/unit/utils.spec.ts +0 -7
data/frontend/vite.config.js +0 -24

data/lib/mihari/config.rb ADDED Viewed

@@ -0,0 +1,133 @@
+module Mihari
+  class Config
+    # @return [String, nil]
+    attr_accessor :binaryedge_api_key
+    # @return [String, nil]
+    attr_accessor :censys_id
+    # @return [String, nil]
+    attr_accessor :censys_secret
+    # @return [String, nil]
+    attr_accessor :circl_passive_password
+    # @return [String, nil]
+    attr_accessor :circl_passive_username
+    # @return [URI]
+    attr_accessor :database_url
+    # @return [String, nil]
+    attr_accessor :greynoise_api_key
+    # @return [String, nil]
+    attr_accessor :ipinfo_api_key
+    # @return [String, nil]
+    attr_accessor :misp_url
+    # @return [String, nil]
+    attr_accessor :misp_api_key
+    # @return [String, nil]
+    attr_accessor :onyphe_api_key
+    # @return [String, nil]
+    attr_accessor :otx_api_key
+    # @return [String, nil]
+    attr_accessor :passivetotal_api_key
+    # @return [String, nil]
+    attr_accessor :passivetotal_username
+    # @return [String, nil]
+    attr_accessor :pulsedive_api_key
+    # @return [String, nil]
+    attr_accessor :securitytrails_api_key
+    # @return [String, nil]
+    attr_accessor :shodan_api_key
+    # @return [String, nil]
+    attr_accessor :slack_channel
+    # @return [String, nil]
+    attr_accessor :slack_webhook_url
+    # @return [String, nil]
+    attr_accessor :thehive_url
+    # @return [String, nil]
+    attr_accessor :thehive_api_key
+    # @return [String, nil]
+    attr_accessor :thehive_api_version
+    # @return [String, nil]
+    attr_accessor :urlscan_api_key
+    # @return [String, nil]
+    attr_accessor :virustotal_api_key
+    # @return [String, nil]
+    attr_accessor :zoomeye_api_key
+    # @return [String, nil]
+    attr_accessor :sentry_dsn
+    # @return [String, nil]
+    attr_accessor :hide_config_values
+    def initialize
+      @binaryedge_api_key = ENV.fetch("BINARYEDGE_API_KEY", nil)
+      @censys_id = ENV.fetch("CENSYS_ID", nil)
+      @censys_secret = ENV.fetch("CENSYS_SECRET", nil)
+      @circl_passive_password = ENV.fetch("CIRCL_PASSIVE_PASSWORD", nil)
+      @circl_passive_username = ENV.fetch("CIRCL_PASSIVE_USERNAME", nil)
+      @database_url = URI(ENV.fetch("DATABASE_URL", "sqlite3:///mihari.db"))
+      @greynoise_api_key = ENV.fetch("GREYNOISE_API_KEY", nil)
+      @ipinfo_api_key = ENV.fetch("IPINFO_API_KEY", nil)
+      @misp_url = ENV.fetch("MISP_URL", nil)
+      @misp_api_key = ENV.fetch("MISP_API_KEY", nil)
+      @onyphe_api_key = ENV.fetch("ONYPHE_API_KEY", nil)
+      @otx_api_key = ENV.fetch("OTX_API_KEY", nil)
+      @passivetotal_api_key = ENV.fetch("PASSIVETOTAL_API_KEY", nil)
+      @passivetotal_username = ENV.fetch("PASSIVETOTAL_USERNAME", nil)
+      @pulsedive_api_key = ENV.fetch("PULSEDIVE_API_KEY", nil)
+      @securitytrails_api_key = ENV.fetch("SECURITYTRAILS_API_KEY", nil)
+      @shodan_api_key = ENV.fetch("SHODAN_API_KEY", nil)
+      @slack_channel = ENV.fetch("SLACK_CHANNEL", nil)
+      @slack_webhook_url = ENV.fetch("SLACK_WEBHOOK_URL", nil)
+      @thehive_url = ENV.fetch("THEHIVE_URL", nil)
+      @thehive_api_key = ENV.fetch("THEHIVE_API_KEY", nil)
+      @thehive_api_version = ENV.fetch("THEHIVE_API_VERSION", nil)
+      @urlscan_api_key = ENV.fetch("URLSCAN_API_KEY", nil)
+      @virustotal_api_key = ENV.fetch("VIRUSTOTAL_API_KEY", nil)
+      @zoomeye_api_key = ENV.fetch("ZOOMEYE_API_KEY", nil)
+      @sentry_dsn = ENV.fetch("SENTRY_DSN", nil)
+      @hide_config_values = ENV.fetch("HIDE_CONFIG_VALUES", false)
+    end
+  end
+end

data/lib/mihari/constants.rb CHANGED Viewed

@@ -6,4 +6,7 @@ module Mihari
   DEFAULT_EMITTERS = %w[database misp slack the_hive].map { |name| { emitter: name } }.freeze
   DEFAULT_ENRICHERS = %w[whois ipinfo shodan google_public_dns].map { |name| { enricher: name } }.freeze
+  DEFAULT_RETRY_TIMES = 3
+  DEFAULT_RETRY_INTERVAL = 5
 end

data/lib/mihari/emitters/slack.rb CHANGED Viewed

@@ -8,10 +8,20 @@ module Mihari
     class Attachment
       include Memist::Memoizable
-      extend Dry::Initializer
+      # @return [String]
+      attr_reader :data
+      # @return [String]
+      attr_reader :data_type
-      option :data
-      option :data_type
+      #
+      # @param [String] data
+      # @param [String] data_type
+      #
+      def initialize(data:, data_type:)
+        @data = data
+        @data_type = data_type
+      end
       def actions
         [vt_link, urlscan_link, censys_link, shodan_link].compact

data/lib/mihari/errors.rb CHANGED Viewed

@@ -21,7 +21,7 @@ module Mihari
   class HTTPError < Error; end
-  class UnsuccessfulStatusCodeError < HTTPError; end
+  class StatusCodeError < HTTPError; end
   class NetworkError < HTTPError; end

data/lib/mihari/http.rb CHANGED Viewed

@@ -93,9 +93,8 @@ module Mihari
     def request(req)
       Net::HTTP.start(url.host, url.port, https_options) do |http|
         res = http.request(req)
-        unless res.is_a?(Net::HTTPSuccess)
-          raise UnsuccessfulStatusCodeError, "Unsuccessful response code returned: #{res.code}"
-        end
+        raise StatusCodeError, "Unsuccessful response code returned: #{res.code}" unless res.is_a?(Net::HTTPSuccess)
         res
       end

data/lib/mihari/schemas/analyzer.rb CHANGED Viewed

@@ -4,6 +4,8 @@ module Mihari
   module Schemas
     AnalyzerOptions = Dry::Schema.Params do
       optional(:interval).value(:integer)
+      optional(:retry_times).value(:integer).default(DEFAULT_RETRY_TIMES)
+      optional(:retry_interval).value(:integer).default(DEFAULT_RETRY_INTERVAL)
     end
     AnalyzerWithoutAPIKey = Dry::Schema.Params do

data/lib/mihari/type_checker.rb CHANGED Viewed

@@ -2,13 +2,13 @@
 module Mihari
   class TypeChecker
-    extend Dry::Initializer
-    param :data
-    def initialize(*args, **kwargs)
-      super
+    # @return [String]
+    attr_reader :data
+    #
+    # @param [String] data
+    #
+    def initialize(data)
       raise ArgumentError if data.is_a?(Hash)
       @data = data.to_s

data/lib/mihari/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Mihari
-  VERSION = "5.2.4"
+  VERSION = "5.3.0"
 end

data/lib/mihari/web/endpoints/configs.rb CHANGED Viewed

@@ -10,7 +10,11 @@ module Mihari
           summary: "Get configs"
         }
         get "/" do
-          present(Mihari.configs, with: Entities::Config)
+          configs = (Mihari.analyzers + Mihari.emitters + Mihari.enrichers).map do |klass|
+            Mihari::Structs::Config.from_class(klass)
+          end.compact
+          present(configs, with: Entities::Config)
         end
       end
     end