mihari 5.2.4 → 5.3.0

data/lib/mihari/config.rb

@@ -0,0 +1,133 @@
+module Mihari
+  class Config
+    # @return [String, nil]
+    attr_accessor :binaryedge_api_key
+
+    # @return [String, nil]
+    attr_accessor :censys_id
+
+    # @return [String, nil]
+    attr_accessor :censys_secret
+
+    # @return [String, nil]
+    attr_accessor :circl_passive_password
+
+    # @return [String, nil]
+    attr_accessor :circl_passive_username
+
+    # @return [URI]
+    attr_accessor :database_url
+
+    # @return [String, nil]
+    attr_accessor :greynoise_api_key
+
+    # @return [String, nil]
+    attr_accessor :ipinfo_api_key
+
+    # @return [String, nil]
+    attr_accessor :misp_url
+
+    # @return [String, nil]
+    attr_accessor :misp_api_key
+
+    # @return [String, nil]
+    attr_accessor :onyphe_api_key
+
+    # @return [String, nil]
+    attr_accessor :otx_api_key
+
+    # @return [String, nil]
+    attr_accessor :passivetotal_api_key
+
+    # @return [String, nil]
+    attr_accessor :passivetotal_username
+
+    # @return [String, nil]
+    attr_accessor :pulsedive_api_key
+
+    # @return [String, nil]
+    attr_accessor :securitytrails_api_key
+
+    # @return [String, nil]
+    attr_accessor :shodan_api_key
+
+    # @return [String, nil]
+    attr_accessor :slack_channel
+
+    # @return [String, nil]
+    attr_accessor :slack_webhook_url
+
+    # @return [String, nil]
+    attr_accessor :thehive_url
+
+    # @return [String, nil]
+    attr_accessor :thehive_api_key
+
+    # @return [String, nil]
+    attr_accessor :thehive_api_version
+
+    # @return [String, nil]
+    attr_accessor :urlscan_api_key
+
+    # @return [String, nil]
+    attr_accessor :virustotal_api_key
+
+    # @return [String, nil]
+    attr_accessor :zoomeye_api_key
+
+    # @return [String, nil]
+    attr_accessor :sentry_dsn
+
+    # @return [String, nil]
+    attr_accessor :hide_config_values
+
+    def initialize
+      @binaryedge_api_key = ENV.fetch("BINARYEDGE_API_KEY", nil)
+
+      @censys_id = ENV.fetch("CENSYS_ID", nil)
+      @censys_secret = ENV.fetch("CENSYS_SECRET", nil)
+
+      @circl_passive_password = ENV.fetch("CIRCL_PASSIVE_PASSWORD", nil)
+      @circl_passive_username = ENV.fetch("CIRCL_PASSIVE_USERNAME", nil)
+
+      @database_url = URI(ENV.fetch("DATABASE_URL", "sqlite3:///mihari.db"))
+
+      @greynoise_api_key = ENV.fetch("GREYNOISE_API_KEY", nil)
+
+      @ipinfo_api_key = ENV.fetch("IPINFO_API_KEY", nil)
+
+      @misp_url = ENV.fetch("MISP_URL", nil)
+      @misp_api_key = ENV.fetch("MISP_API_KEY", nil)
+
+      @onyphe_api_key = ENV.fetch("ONYPHE_API_KEY", nil)
+
+      @otx_api_key = ENV.fetch("OTX_API_KEY", nil)
+
+      @passivetotal_api_key = ENV.fetch("PASSIVETOTAL_API_KEY", nil)
+      @passivetotal_username = ENV.fetch("PASSIVETOTAL_USERNAME", nil)
+
+      @pulsedive_api_key = ENV.fetch("PULSEDIVE_API_KEY", nil)
+
+      @securitytrails_api_key = ENV.fetch("SECURITYTRAILS_API_KEY", nil)
+
+      @shodan_api_key = ENV.fetch("SHODAN_API_KEY", nil)
+
+      @slack_channel = ENV.fetch("SLACK_CHANNEL", nil)
+      @slack_webhook_url = ENV.fetch("SLACK_WEBHOOK_URL", nil)
+
+      @thehive_url = ENV.fetch("THEHIVE_URL", nil)
+      @thehive_api_key = ENV.fetch("THEHIVE_API_KEY", nil)
+      @thehive_api_version = ENV.fetch("THEHIVE_API_VERSION", nil)
+
+      @urlscan_api_key = ENV.fetch("URLSCAN_API_KEY", nil)
+
+      @virustotal_api_key = ENV.fetch("VIRUSTOTAL_API_KEY", nil)
+
+      @zoomeye_api_key = ENV.fetch("ZOOMEYE_API_KEY", nil)
+
+      @sentry_dsn = ENV.fetch("SENTRY_DSN", nil)
+
+      @hide_config_values = ENV.fetch("HIDE_CONFIG_VALUES", false)
+    end
+  end
+end

data/lib/mihari/constants.rb

@@ -6,4 +6,7 @@ module Mihari
   DEFAULT_EMITTERS = %w[database misp slack the_hive].map { |name| { emitter: name } }.freeze
 
   DEFAULT_ENRICHERS = %w[whois ipinfo shodan google_public_dns].map { |name| { enricher: name } }.freeze
+
+  DEFAULT_RETRY_TIMES = 3
+  DEFAULT_RETRY_INTERVAL = 5
 end

data/lib/mihari/emitters/slack.rb

@@ -8,10 +8,20 @@ module Mihari
     class Attachment
       include Memist::Memoizable
 
-      extend Dry::Initializer
+      # @return [String]
+      attr_reader :data
+
+      # @return [String]
+      attr_reader :data_type
 
-      option :data
-      option :data_type
+      #
+      # @param [String] data
+      # @param [String] data_type
+      #
+      def initialize(data:, data_type:)
+        @data = data
+        @data_type = data_type
+      end
 
       def actions
         [vt_link, urlscan_link, censys_link, shodan_link].compact

data/lib/mihari/errors.rb

@@ -21,7 +21,7 @@ module Mihari
 
   class HTTPError < Error; end
 
-  class UnsuccessfulStatusCodeError < HTTPError; end
+  class StatusCodeError < HTTPError; end
 
   class NetworkError < HTTPError; end
 

data/lib/mihari/http.rb

@@ -93,9 +93,8 @@ module Mihari
     def request(req)
       Net::HTTP.start(url.host, url.port, https_options) do |http|
         res = http.request(req)
-        unless res.is_a?(Net::HTTPSuccess)
-          raise UnsuccessfulStatusCodeError, "Unsuccessful response code returned: #{res.code}"
-        end
+
+        raise StatusCodeError, "Unsuccessful response code returned: #{res.code}" unless res.is_a?(Net::HTTPSuccess)
 
         res
       end

data/lib/mihari/schemas/analyzer.rb

@@ -4,6 +4,8 @@ module Mihari
   module Schemas
     AnalyzerOptions = Dry::Schema.Params do
       optional(:interval).value(:integer)
+      optional(:retry_times).value(:integer).default(DEFAULT_RETRY_TIMES)
+      optional(:retry_interval).value(:integer).default(DEFAULT_RETRY_INTERVAL)
     end
 
     AnalyzerWithoutAPIKey = Dry::Schema.Params do

data/lib/mihari/type_checker.rb

@@ -2,13 +2,13 @@
 
 module Mihari
   class TypeChecker
-    extend Dry::Initializer
-
-    param :data
-
-    def initialize(*args, **kwargs)
-      super
+    # @return [String]
+    attr_reader :data
 
+    #
+    # @param [String] data
+    #
+    def initialize(data)
       raise ArgumentError if data.is_a?(Hash)
 
       @data = data.to_s

data/lib/mihari/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Mihari
-  VERSION = "5.2.4"
+  VERSION = "5.3.0"
 end

data/lib/mihari/web/endpoints/configs.rb

@@ -10,7 +10,11 @@ module Mihari
           summary: "Get configs"
         }
         get "/" do
-          present(Mihari.configs, with: Entities::Config)
+          configs = (Mihari.analyzers + Mihari.emitters + Mihari.enrichers).map do |klass|
+            Mihari::Structs::Config.from_class(klass)
+          end.compact
+
+          present(configs, with: Entities::Config)
         end
       end
     end