miteru 0.13.0 → 0.14.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.travis.yml +1 -0
- data/README.md +2 -0
- data/lib/miteru/feeds.rb +4 -0
- data/lib/miteru/feeds/phishing_database.rb +20 -0
- data/lib/miteru/feeds/phishstats.rb +28 -0
- data/lib/miteru/version.rb +1 -1
- data/miteru.gemspec +6 -6
- metadata +17 -15
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 5bcc07aabe006f3107c410263f09c4580081933b7a7aebfa7344977f6fd05dc6
|
|
4
|
+
data.tar.gz: 49cbc8f6efb26eb47ea776c46986bf949f77371a31109e6298bfd11fe7ca670f
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 54b51311d0f982c2da7221c09384847d6bd526356158dc56948f1d898f3631ef22f3005a041ca0ebc31cfc22bcafc0d64047d95392857f79c8611dd2802bb366
|
|
7
|
+
data.tar.gz: c61864c67eb49c79aaa180827610fab24e2fa3de7e14e8396c9ff6ca60439cbe271e313aff6618a8986c2a8eb8d889e018ef062aa92dd2c62afe7ea54bfd7f98
|
data/.travis.yml
CHANGED
data/README.md
CHANGED
|
@@ -17,6 +17,8 @@ Miteru is an experimental phishing kit detection tool.
|
|
|
17
17
|
- [URLhaus feed via urlscan.io](https://urlscan.io/search/#URLHaus)
|
|
18
18
|
- urlscan.io phish feed (available for Pro users)
|
|
19
19
|
- [Ayashige feed](https://github.com/ninoseki/ayashige)
|
|
20
|
+
- [Phishing Database feed](https://github.com/mitchellkrogza/Phishing.Database)
|
|
21
|
+
- [PhishStats feed](https://phishstats.info/)
|
|
20
22
|
- It checks each phishy URL whether it enables directory listing and contains a phishing kit (compressed file) or not.
|
|
21
23
|
- Note: compressed file = `*.zip`, `*.rar`, `*.7z`, `*.tar` and `*.gz`.
|
|
22
24
|
|
data/lib/miteru/feeds.rb
CHANGED
|
@@ -1,6 +1,8 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
3
|
require_relative "./feeds/feed"
|
|
4
|
+
require_relative "./feeds/phishing_database"
|
|
5
|
+
require_relative "./feeds/phishstats"
|
|
4
6
|
require_relative "./feeds/ayashige"
|
|
5
7
|
require_relative "./feeds/urlscan"
|
|
6
8
|
require_relative "./feeds/urlscan_pro"
|
|
@@ -11,6 +13,8 @@ module Miteru
|
|
|
11
13
|
|
|
12
14
|
def initialize
|
|
13
15
|
@feeds = [
|
|
16
|
+
PhishingDatabase.new,
|
|
17
|
+
PhishStats.new,
|
|
14
18
|
UrlScan.new(Miteru.configuration.size),
|
|
15
19
|
UrlScanPro.new,
|
|
16
20
|
Miteru.configuration.ayashige? ? Ayashige.new : nil
|
|
@@ -0,0 +1,20 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require "json"
|
|
4
|
+
require "uri"
|
|
5
|
+
|
|
6
|
+
module Miteru
|
|
7
|
+
class Feeds
|
|
8
|
+
class PhishingDatabase < Feed
|
|
9
|
+
URL = "https://raw.githubusercontent.com/mitchellkrogza/Phishing.Database/master/phishing-links-NEW-today.txt"
|
|
10
|
+
|
|
11
|
+
def urls
|
|
12
|
+
body = get(URL)
|
|
13
|
+
body.to_s.lines.map(&:chomp)
|
|
14
|
+
rescue HTTPResponseError, HTTP::Error, JSON::ParserError => e
|
|
15
|
+
puts "Failed to load phishing database feed (#{e})"
|
|
16
|
+
[]
|
|
17
|
+
end
|
|
18
|
+
end
|
|
19
|
+
end
|
|
20
|
+
end
|
|
@@ -0,0 +1,28 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require "json"
|
|
4
|
+
require "uri"
|
|
5
|
+
|
|
6
|
+
module Miteru
|
|
7
|
+
class Feeds
|
|
8
|
+
class PhishStats < Feed
|
|
9
|
+
URL = "https://phishstats.info:2096/api/phishing?_sort=-id&size=100"
|
|
10
|
+
|
|
11
|
+
def urls
|
|
12
|
+
json = JSON.parse(get(URL))
|
|
13
|
+
json.map do |entry|
|
|
14
|
+
entry.dig("url")
|
|
15
|
+
end
|
|
16
|
+
rescue HTTPResponseError, HTTP::Error, JSON::ParserError => e
|
|
17
|
+
puts "Failed to load PhishStats feed (#{e})"
|
|
18
|
+
[]
|
|
19
|
+
end
|
|
20
|
+
|
|
21
|
+
private
|
|
22
|
+
|
|
23
|
+
def url_for(path)
|
|
24
|
+
URI(URL + path)
|
|
25
|
+
end
|
|
26
|
+
end
|
|
27
|
+
end
|
|
28
|
+
end
|
data/lib/miteru/version.rb
CHANGED
data/miteru.gemspec
CHANGED
|
@@ -24,18 +24,18 @@ Gem::Specification.new do |spec|
|
|
|
24
24
|
spec.executables = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
|
|
25
25
|
spec.require_paths = ["lib"]
|
|
26
26
|
|
|
27
|
-
spec.add_development_dependency "bundler", "~> 2.
|
|
27
|
+
spec.add_development_dependency "bundler", "~> 2.1"
|
|
28
28
|
spec.add_development_dependency "coveralls", "~> 0.8"
|
|
29
29
|
spec.add_development_dependency "glint", "~> 0.1"
|
|
30
30
|
spec.add_development_dependency "rake", "~> 13.0"
|
|
31
31
|
spec.add_development_dependency "rspec", "~> 3.9"
|
|
32
|
-
spec.add_development_dependency "vcr", "~> 5.
|
|
33
|
-
spec.add_development_dependency "webmock", "~> 3.
|
|
32
|
+
spec.add_development_dependency "vcr", "~> 5.1"
|
|
33
|
+
spec.add_development_dependency "webmock", "~> 3.8"
|
|
34
34
|
|
|
35
35
|
spec.add_dependency "colorize", "~> 0.8"
|
|
36
|
-
spec.add_dependency "down", "~> 5.
|
|
37
|
-
spec.add_dependency "http", "~> 4.
|
|
38
|
-
spec.add_dependency "oga", "~> 3.
|
|
36
|
+
spec.add_dependency "down", "~> 5.1"
|
|
37
|
+
spec.add_dependency "http", "~> 4.4"
|
|
38
|
+
spec.add_dependency "oga", "~> 3.2"
|
|
39
39
|
spec.add_dependency "parallel", "~> 1.19"
|
|
40
40
|
spec.add_dependency "slack-notifier", "~> 2.3"
|
|
41
41
|
spec.add_dependency "thor", "~> 1.0"
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: miteru
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.14.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Manabu Niseki
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: exe
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2020-05-14 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: bundler
|
|
@@ -16,14 +16,14 @@ dependencies:
|
|
|
16
16
|
requirements:
|
|
17
17
|
- - "~>"
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
|
-
version: '2.
|
|
19
|
+
version: '2.1'
|
|
20
20
|
type: :development
|
|
21
21
|
prerelease: false
|
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
23
|
requirements:
|
|
24
24
|
- - "~>"
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
|
-
version: '2.
|
|
26
|
+
version: '2.1'
|
|
27
27
|
- !ruby/object:Gem::Dependency
|
|
28
28
|
name: coveralls
|
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -86,28 +86,28 @@ dependencies:
|
|
|
86
86
|
requirements:
|
|
87
87
|
- - "~>"
|
|
88
88
|
- !ruby/object:Gem::Version
|
|
89
|
-
version: '5.
|
|
89
|
+
version: '5.1'
|
|
90
90
|
type: :development
|
|
91
91
|
prerelease: false
|
|
92
92
|
version_requirements: !ruby/object:Gem::Requirement
|
|
93
93
|
requirements:
|
|
94
94
|
- - "~>"
|
|
95
95
|
- !ruby/object:Gem::Version
|
|
96
|
-
version: '5.
|
|
96
|
+
version: '5.1'
|
|
97
97
|
- !ruby/object:Gem::Dependency
|
|
98
98
|
name: webmock
|
|
99
99
|
requirement: !ruby/object:Gem::Requirement
|
|
100
100
|
requirements:
|
|
101
101
|
- - "~>"
|
|
102
102
|
- !ruby/object:Gem::Version
|
|
103
|
-
version: '3.
|
|
103
|
+
version: '3.8'
|
|
104
104
|
type: :development
|
|
105
105
|
prerelease: false
|
|
106
106
|
version_requirements: !ruby/object:Gem::Requirement
|
|
107
107
|
requirements:
|
|
108
108
|
- - "~>"
|
|
109
109
|
- !ruby/object:Gem::Version
|
|
110
|
-
version: '3.
|
|
110
|
+
version: '3.8'
|
|
111
111
|
- !ruby/object:Gem::Dependency
|
|
112
112
|
name: colorize
|
|
113
113
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -128,42 +128,42 @@ dependencies:
|
|
|
128
128
|
requirements:
|
|
129
129
|
- - "~>"
|
|
130
130
|
- !ruby/object:Gem::Version
|
|
131
|
-
version: '5.
|
|
131
|
+
version: '5.1'
|
|
132
132
|
type: :runtime
|
|
133
133
|
prerelease: false
|
|
134
134
|
version_requirements: !ruby/object:Gem::Requirement
|
|
135
135
|
requirements:
|
|
136
136
|
- - "~>"
|
|
137
137
|
- !ruby/object:Gem::Version
|
|
138
|
-
version: '5.
|
|
138
|
+
version: '5.1'
|
|
139
139
|
- !ruby/object:Gem::Dependency
|
|
140
140
|
name: http
|
|
141
141
|
requirement: !ruby/object:Gem::Requirement
|
|
142
142
|
requirements:
|
|
143
143
|
- - "~>"
|
|
144
144
|
- !ruby/object:Gem::Version
|
|
145
|
-
version: '4.
|
|
145
|
+
version: '4.4'
|
|
146
146
|
type: :runtime
|
|
147
147
|
prerelease: false
|
|
148
148
|
version_requirements: !ruby/object:Gem::Requirement
|
|
149
149
|
requirements:
|
|
150
150
|
- - "~>"
|
|
151
151
|
- !ruby/object:Gem::Version
|
|
152
|
-
version: '4.
|
|
152
|
+
version: '4.4'
|
|
153
153
|
- !ruby/object:Gem::Dependency
|
|
154
154
|
name: oga
|
|
155
155
|
requirement: !ruby/object:Gem::Requirement
|
|
156
156
|
requirements:
|
|
157
157
|
- - "~>"
|
|
158
158
|
- !ruby/object:Gem::Version
|
|
159
|
-
version: '3.
|
|
159
|
+
version: '3.2'
|
|
160
160
|
type: :runtime
|
|
161
161
|
prerelease: false
|
|
162
162
|
version_requirements: !ruby/object:Gem::Requirement
|
|
163
163
|
requirements:
|
|
164
164
|
- - "~>"
|
|
165
165
|
- !ruby/object:Gem::Version
|
|
166
|
-
version: '3.
|
|
166
|
+
version: '3.2'
|
|
167
167
|
- !ruby/object:Gem::Dependency
|
|
168
168
|
name: parallel
|
|
169
169
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -249,6 +249,8 @@ files:
|
|
|
249
249
|
- lib/miteru/feeds.rb
|
|
250
250
|
- lib/miteru/feeds/ayashige.rb
|
|
251
251
|
- lib/miteru/feeds/feed.rb
|
|
252
|
+
- lib/miteru/feeds/phishing_database.rb
|
|
253
|
+
- lib/miteru/feeds/phishstats.rb
|
|
252
254
|
- lib/miteru/feeds/urlscan.rb
|
|
253
255
|
- lib/miteru/feeds/urlscan_pro.rb
|
|
254
256
|
- lib/miteru/http_client.rb
|
|
@@ -277,7 +279,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
277
279
|
- !ruby/object:Gem::Version
|
|
278
280
|
version: '0'
|
|
279
281
|
requirements: []
|
|
280
|
-
rubygems_version: 3.
|
|
282
|
+
rubygems_version: 3.1.2
|
|
281
283
|
signing_key:
|
|
282
284
|
specification_version: 4
|
|
283
285
|
summary: An experimental phishing kit detector
|