passivedns-client 2.0.6 → 2.1.0

data/lib/passivedns/client/providers/mnemonic.rb

@@ -1,72 +0,0 @@
-# DESCRIPTION: Module to query Mnemonic's passive DNS repository
-# CONTRIBUTOR: Drew Hunt (pinowudi@yahoo.com)
-require 'net/http'
-require 'net/https'
-require 'openssl'
-
-module PassiveDNS
-	class Mnemonic < PassiveDB
-    # override
-    def self.name
-      "Mnemonic"
-    end
-    #override
-    def self.config_section_name
-      "mnemonic"
-    end
-    #override
-    def self.option_letter
-      "m"
-    end
-    
-    attr_accessor :debug
-		def initialize(options={})
-      @debug = options[:debug] || false
-      @apikey = options["APIKEY"] || raise("#{self.class.name} requires an APIKEY")
-      @url = options["URL"] || "https://passivedns.mnemonic.no/api1/?apikey="
-		end
-
-		def parse_json(page,query,response_time=0)
-			res = []
-			# need to remove the json_class tag or the parser will crap itself trying to find a class to align it to
-			data = JSON.parse(page)
-			if data['result']
-				data['result'].each do |row|
-					if row['query']
-						res << PDNSResult.new(self.class.name,response_time,row['query'],row['answer'],row['type'].upcase,row['ttl'],row['first'],row['last'])
-					end
-				end
-			end
-			res
-		rescue Exception => e
-			$stderr.puts "#{self.class.name} Exception: #{e}"
-			raise e
-		end
-
-		def lookup(label, limit=nil)
-			$stderr.puts "DEBUG: #{self.class.name}.lookup(#{label})" if @debug
-			Timeout::timeout(240) {
-				url = "#{@url}#{@apikey}&query=#{label}&method=exact"
-				$stderr.puts "DEBUG: #{self.class.name} url = #{url}" if @debug
-				url = URI.parse url
-				http = Net::HTTP.new(url.host, url.port)
-				http.use_ssl = (url.scheme == 'https')
-				http.verify_mode = OpenSSL::SSL::VERIFY_NONE
-				http.verify_depth = 5
-				request = Net::HTTP::Get.new(url.path+"?"+url.query)
-				request.add_field("User-Agent", "Ruby/#{RUBY_VERSION} passivedns-client rubygem v#{PassiveDNS::Client::VERSION}")
-				t1 = Time.now
-				response = http.request(request)
-				t2 = Time.now
-				recs = parse_json(response.body, label, t2-t1)
-				if limit
-					recs[0,limit]
-				else
-					recs
-				end
-			}
-		rescue Timeout::Error => e
-			$stderr.puts "#{self.class.name} lookup timed out: #{label}"
-		end
-	end
-end

data/lib/passivedns/client/providers/passivetotal.rb

@@ -1,77 +0,0 @@
-# DESCRIPTION: Module to query PassiveTotal's passive DNS repository
-
-require 'net/http'
-require 'net/https'
-require 'openssl'
-
-module PassiveDNS
-	class PassiveTotal < PassiveDB
-    # override
-    def self.name
-      "PassiveTotal"
-    end
-    #override
-    def self.config_section_name
-      "passivetotal"
-    end
-    #override
-    def self.option_letter
-      "p"
-    end
-    
-    attr_accessor :debug
-		def initialize(options={})
-      @debug = options[:debug] || false
-      @apikey = options["APIKEY"] || raise("#{self.class.name} requires an APIKEY")
-      @url = options["URL"] || "https://www.passivetotal.org/api/passive"
-		end
-
-		def parse_json(page,query,response_time=0)
- 			res = []
-			# need to remove the json_class tag or the parser will crap itself trying to find a class to align it to
-			data = JSON.parse(page)
-			if data['results']
-        query = data['results']['value']
-				data['results']['resolutions'].each do |row|
-          first_seen = row['firstSeen']
-          last_seen = row['lastSeen']
-          value = row['value']
-          source = row['source'].join(",")
-					res << PDNSResult.new(self.class.name+"/"+source,response_time,
-            query, value, "A", 0, first_seen, last_seen)
-				end
-			end
-			res
-		rescue Exception => e
-			$stderr.puts "#{self.class.name} Exception: #{e}"
-			raise e
-		end
-
-		def lookup(label, limit=nil)
-			$stderr.puts "DEBUG: #{self.class.name}.lookup(#{label})" if @debug
-			Timeout::timeout(240) {
-				url = @url
-				$stderr.puts "DEBUG: #{self.class.name} url = #{url}" if @debug
-				url = URI.parse url
-				http = Net::HTTP.new(url.host, url.port)
-				http.use_ssl = (url.scheme == 'https')
-				http.verify_mode = OpenSSL::SSL::VERIFY_NONE
-				http.verify_depth = 5
-				request = Net::HTTP::Post.new(url.request_uri)
-				request.add_field("User-Agent", "Ruby/#{RUBY_VERSION} passivedns-client rubygem v#{PassiveDNS::Client::VERSION}")
-        request.set_form_data({"apikey" => @apikey, "value" => label})
-				t1 = Time.now
-				response = http.request(request)
-				t2 = Time.now
-				recs = parse_json(response.body, label, t2-t1)
-				if limit
-					recs[0,limit]
-				else
-					recs
-				end
-			}
-		rescue Timeout::Error => e
-			$stderr.puts "#{self.class.name} lookup timed out: #{label}"
-		end
-	end
-end

data/lib/passivedns/client/providers/tcpiputils.rb

@@ -1,92 +0,0 @@
-require 'net/http'
-require 'net/https'
-require 'openssl'
-require 'json'
-
-# Please read http://www.tcpiputils.com/terms-of-service under automated requests
-
-module PassiveDNS
-  class TCPIPUtils < PassiveDB
-    # override
-    def self.name
-      "TCPIPUtils"
-    end
-    #override
-    def self.config_section_name
-      "tcpiputils"
-    end
-    #override
-    def self.option_letter
-      "t"
-    end
-
-    attr_accessor :debug
-    def initialize(options={})
-      @debug = options[:debug] || false
-      @apikey = options["APIKEY"] || raise("#{self.class.name} requires an APIKEY.  See README.md")
-      @url = options["URL"] || "https://www.utlsapi.com/api.php?version=1.0&apikey="
-    end
-    
-    def format_recs(reply_data, question, delta)
-      recs = []
-      reply_data.each do |key, data|
-        case key
-        when "ipv4"
-          data.each do |rec|
-            recs << PDNSResult.new(self.class.name, delta, question, rec["ip"], "A", nil, nil, rec["updatedate"], nil)
-          end
-        when "ipv6"
-          data.each do |rec|
-            recs << PDNSResult.new(self.class.name, delta, question, rec["ip"], "AAAA", nil, nil, rec["updatedate"], nil)
-          end
-        when "dns"
-          data.each do |rec|
-            recs << PDNSResult.new(self.class.name, delta, question, rec["dns"], "NS", nil, nil, rec["updatedate"], nil)
-          end
-        when "mx"
-          data.each do |rec|
-            recs << PDNSResult.new(self.class.name, delta, question, rec["dns"], "MX", nil, nil, rec["updatedate"], nil)
-          end
-        when "domains"
-          data.each do |rec|
-            recs << PDNSResult.new(self.class.name, delta, rec, question, "A", nil, nil, nil, nil)
-          end
-        end
-      end
-      recs
-    end
-
-    def lookup(label, limit=nil)
-      $stderr.puts "DEBUG: #{self.class.name}.lookup(#{label})" if @debug
-      type = (label.match(/^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}$/)) ? "domainneighbors" : "domainipdnshistory"
-      url = "#{@url}#{@apikey}&type=#{type}&q=#{label}"
-      recs = []
-      Timeout::timeout(240) {
-				url = URI.parse url
-				http = Net::HTTP.new(url.host, url.port)
-				http.use_ssl = (url.scheme == 'https')
-				http.verify_mode = OpenSSL::SSL::VERIFY_NONE
-				http.verify_depth = 5
-				request = Net::HTTP::Get.new(url.path+"?"+url.query)
-				request.add_field("User-Agent", "Ruby/#{RUBY_VERSION} passivedns-client rubygem v#{PassiveDNS::Client::VERSION}")
-				t1 = Time.now
-				response = http.request(request)
-				delta = (Time.now - t1).to_f
-				reply = JSON.parse(response.body)
-        if reply["status"] and reply["status"] == "succeed"
-          question = reply["data"]["question"]
-          recs = format_recs(reply["data"], question, delta)
-        elsif reply["status"] and reply["status"] == "error"
-          raise "#{self.class.name}: error from web API: #{reply["data"]}"
-        end
-        if limit
-          recs[0,limit]
-        else
-          recs
-        end
-			}
-		rescue Timeout::Error => e
-			$stderr.puts "#{self.class.name} lookup timed out: #{label}"
-		end
-  end
-end

data/lib/passivedns/client/providers/virustotal.rb

@@ -1,78 +0,0 @@
-# DESCRIPTION: this is a module for pdns.rb, primarily used by pdnstool.rb, to query VirusTotal's passive DNS database
-require 'net/http'
-require 'net/https'
-require 'openssl'
-
-module PassiveDNS
-	class VirusTotal < PassiveDB
-    # override
-    def self.name
-      "VirusTotal"
-    end
-    #override
-    def self.config_section_name
-      "virustotal"
-    end
-     #override
-    def self.option_letter
-      "v"
-    end
-    
-    attr_accessor :debug
-		def initialize(options={})
-      @debug = options[:debug] || false
-      @apikey = options["APIKEY"] || raise("#{self.class.name} requires an APIKEY.  See README.md")
-      @url = options["URL"] || "https://www.virustotal.com/vtapi/v2/"
-    end
-
-		def parse_json(page,query,response_time=0)
-			res = []
-			# need to remove the json_class tag or the parser will crap itself trying to find a class to align it to
-			data = JSON.parse(page)
-			if data['resolutions']
-				data['resolutions'].each do |row|
-					if row['ip_address']
-						res << PDNSResult.new(self.class.name,response_time,query,row['ip_address'],'A',nil,nil,row['last_resolved'])
-					elsif row['hostname']
-						res << PDNSResult.new(self.class.name,response_time,row['hostname'],query,'A',nil,nil,row['last_resolved'])
-					end
-				end
-			end
-			res
-		rescue Exception => e
-			$stderr.puts "VirusTotal Exception: #{e}"
-			raise e
-		end
-
-		def lookup(label, limit=nil)
-			$stderr.puts "DEBUG: #{self.class.name}.lookup(#{label})" if @debug
-			Timeout::timeout(240) {
-				url = nil
-				if label =~ /^[\d\.]+$/
-					url = "#{@url}ip-address/report?ip=#{label}&apikey=#{@apikey}"
-				else
-					url = "#{@url}domain/report?domain=#{label}&apikey=#{@apikey}"
-				end
-				$stderr.puts "DEBUG: #{self.class.name} url = #{url}" if @debug
-				url = URI.parse url
-				http = Net::HTTP.new(url.host, url.port)
-				http.use_ssl = (url.scheme == 'https')
-				http.verify_mode = OpenSSL::SSL::VERIFY_NONE
-				http.verify_depth = 5
-				request = Net::HTTP::Get.new(url.path+"?"+url.query)
-				request.add_field("User-Agent", "Ruby/#{RUBY_VERSION} passivedns-client rubygem v#{PassiveDNS::Client::VERSION}")
-				t1 = Time.now
-				response = http.request(request)
-				t2 = Time.now
-				recs = parse_json(response.body, label, t2-t1)
-        if limit
-          recs[0,limit]
-        else
-          recs
-        end
-			}
-		rescue Timeout::Error => e
-			$stderr.puts "#{self.class.name} lookup timed out: #{label}"
-		end
-	end
-end