tarbit 1.0.5 → 1.0.6

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8741b27a87810bc7ee88265453e62e8db227db785a12d81fc5afd16fd4b941cf
-  data.tar.gz: d15135c2485f6f140138e46b02736d39b64ea1f0b401629c9f02f72bf0f41a8a
+  metadata.gz: '02867e5eb3be82482021f0ed4189d11e1601f2f2dc9679d5cff119e84518f438'
+  data.tar.gz: 05edc27632929089d62fa713f2d39dec3af2650b4309cc961c65725bf807317f
 SHA512:
-  metadata.gz: 0ef11ee91cfb362d3298288b6d60c4a0f50a056b3d2fac747b89cd2f02490804102cda155579e921e7caf41c0f4fbdc99f9e43702ceeacb2f4bc9cae17f52caf
-  data.tar.gz: 2a3e0400ce6f519d28f10e66c89c79825ac56aacaf82c80c06134f7475b704cdb81706b9a7f5673c8807380ff0b244767ebcb5b1f94ffafa0870e228fccd4164
+  metadata.gz: 0e4aad70c5122b3d5a297721c77ecce80b68220a07573d1d15a0f87df3bd38e0bbb9fe9a70eb8eedfa0605a2e589b55bc0d17c07ebb1c7a195de40d3041d40bb
+  data.tar.gz: 7e1e7f6fe4270be0b2e05189fc54dbf058f0da1aa335a3d550080113073b480c410c4de3d331231110b7ad8674cc647c3b31f73ccdcd8f43688ec671587bd904

data/Gemfile.lock

@@ -1,10 +1,11 @@
 PATH
   remote: .
   specs:
-    tarbit (1.0.1)
+    tarbit (1.0.5)
       async-io
       commander
       gruff
+      os
 
 GEM
   remote: https://rubygems.org/
@@ -22,6 +23,7 @@ GEM
       rmagick (~> 2.13, >= 2.13.4)
     highline (2.0.3)
     nio4r (2.5.2)
+    os (1.0.1)
     rmagick (2.16.0)
     timers (4.3.0)
 

data/bin/tarbit

@@ -7,25 +7,49 @@ require 'fileutils'
 # :name is optional, otherwise uses the basename of this executable
 program :name, 'Tarbit - SSH Tarpit using Ruby'
 program :version, Tarbit::VERSION
-program :description, 'Stupid command that prints foo or bar.'
+program :description, 'Catch em all!'
+
+FileUtils.mkdir_p Tarbit::STATS_PATH
+FileUtils.mkdir_p Tarbit::SNAPSHOT_PATH
 
 command :serve do |c|
-  c.syntax = 'apollo serve [options]'
-  c.description = 'Runs the apollo server'
-  c.option '--debug', nil, 'Runs the apollo server in debug mode'
-  c.option '--suffix STRING', String, 'Adds a suffix to bar'
+  c.syntax = 'tarbit serve [options]'
+  c.description = 'Runs the tarbit honeypot'
+
+  c.option '--interval NUMBER', Integer, 'Defines an interval in seconds, falls back to 600'
+  c.option '--port NUMBER', Integer, 'Defines a port, falls back to 22'
+
   c.action do |args, options|
 
-    FileUtils.mkdir_p File.expand_path ('~/.tarbit/stats/')
-    puts "Starting tarbit ssh tarpit"
 
-    server = Tarbit::Server.new
-    statistic = Tarbit::Statistic.new(server, 600)
+    server = Tarbit::Server.new(options.port.to_i)
+    statistic = Tarbit::StatisticWatcher.new(server, options.interval.to_i)
 
     Async do |task|
+        Async.logger.info "============================================================"
+        Async.logger.info "Starting tarbit on port #{options.port || 22} creating time points every #{options.interval || 600} seconds"
+        Async.logger.info "============================================================"
         statistic.watch
         server.run
     end
 
   end
+
+end
+
+command :snapshot do |c|
+  c.syntax = 'apollo snapshot [options]'
+  c.description = 'Creates a statistic snapshot of the current gathered data'
+  c.option '--debug', nil, 'Runs the apollo server in debug mode'
+  c.option '--suffix STRING', String, 'Adds a suffix to bar'
+  c.action do |args, options|
+
+    statistic = Tarbit::StatisticSnapshot.new
+
+    Async do |task|
+        statistic.snapshot
+    end
+
+  end
+
 end

data/lib/tarbit/server.rb

@@ -11,12 +11,13 @@ module Tarbit
   class Server
     attr_reader :connections
 
-    def initialize
+    def initialize(port = 22)
       @connections = []
+      @port = port
     end
 
     def run
-      endpoint = Async::IO::Endpoint.parse("tcp://0.0.0.0:22")
+      endpoint = Async::IO::Endpoint.parse("tcp://0.0.0.0:#{@port}")
 
       Async do |task|
         while true
@@ -38,13 +39,13 @@ module Tarbit
           }
 
           while true do
-            task.sleep 1
-            if stream.eof? or stream.closed?
+            task.sleep 60
+            if stream.eof? || stream.closed? || stream.io.closed?
               raise Async::TimeoutError.new
             end
             stream.write "#{rand(10)}\r\n"
           end
-        rescue Async::TimeoutError => e
+        rescue StandardError => e
           @connections = @connections.reject { |stats| stats.fetch(:id) == id }
           Async.logger.info "Connection closed: #{stream}"
         end

data/lib/tarbit/statistic_snapshot.rb

@@ -0,0 +1,41 @@
+require 'gruff'
+require 'async'
+require 'json'
+
+module Tarbit
+  class StatisticSnapshot
+
+    def initialize
+
+    end
+
+    def snapshot
+      Async do
+        write_line_chart
+      end
+    end
+
+    private
+
+    def write_line_chart
+      files = Dir.glob(File.join(Tarbit::STATS_PATH, '*.json'))
+
+      files = files.map { |filename| JSON.parse(File.read(filename)) }
+
+      g = Gruff::Line.new
+      g.title = 'History of connections over time'
+
+      labels = {}
+      files.each_with_index{ |item, index| labels[index] = item.fetch("created_at") }
+      g.labels = labels
+
+      g.data :Bots, files.map {|point_in_time| point_in_time.fetch("connections").size }
+
+      filename = "#{Time.now.to_i}.png"
+      g.write(File.join(Tarbit::SNAPSHOT_PATH, filename))
+
+      Async.logger.info "Snapshot saved in: #{Tarbit::SNAPSHOT_PATH}/#{filename}"
+    end
+
+  end
+end

data/lib/tarbit/statistic_watcher.rb

@@ -0,0 +1,37 @@
+require 'gruff'
+require 'async'
+require 'json'
+
+module Tarbit
+  class StatisticWatcher
+
+    def initialize(server, interval = 600)
+      @server = server
+      @interval = interval
+      @history = []
+    end
+
+    def watch
+      Async do |task|
+        while true
+          task.sleep @interval
+          create_point_in_time
+        end
+      end
+    end
+
+    private
+
+    def create_point_in_time
+      # Add point in time
+      statistic_point = {
+          created_at: Time.now.to_i,
+          connections: @server.connections.clone
+      }
+
+      File.write("#{Tarbit::STATS_PATH}/#{statistic_point.fetch(:created_at)}.json", JSON.generate(statistic_point))
+
+    end
+
+  end
+end

data/lib/tarbit/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Tarbit
-  VERSION = "1.0.5"
+  VERSION = "1.0.6"
 end

data/lib/tarbit.rb

@@ -2,12 +2,37 @@
 #
 
 require 'async/reactor'
+require 'os'
+
 require_relative 'tarbit/server'
-require_relative 'tarbit/statistic'
+require_relative 'tarbit/statistic_watcher'
+require_relative 'tarbit/statistic_snapshot'
 require_relative 'tarbit/version'
 
 Signal.trap "SIGINT" do
   exit(0)
 end
 
-module Tarbit; end
+module Tarbit
+
+  if OS.posix?
+    if $stdout.isatty # If we are interactive, we can guess there is a home directory
+      STATS_PATH = File.expand_path("~/.tarbit/statistics").to_s
+      SNAPSHOT_PATH = File.expand_path("~/.tarbit/snapshots").to_s
+    else
+      STATS_PATH = "/etc/tarbit/statistics"
+      SNAPSHOT_PATH = "/etc/tarbit/snapshots"
+    end
+  end
+
+  if OS.windows?
+    if $stdout.isatty # If we are interactive, we can guess there is a home directory
+      STATS_PATH = File.expand_path("~/.tarbit/statistics").to_s
+      SNAPSHOT_PATH = File.expand_path("~/.tarbit/snapshots").to_s
+    else
+      STATS_PATH = "/etc/tarbit/statistics"
+      SNAPSHOT_PATH = "/etc/tarbit/snapshots"
+    end
+  end
+
+end

data/tarbit.gemspec

@@ -24,6 +24,7 @@ Gem::Specification.new do |s|
   s.add_dependency 'async-io'
   s.add_dependency 'commander'
   s.add_dependency 'gruff'
+  s.add_dependency 'os'
 
   # Development Dependencies
 

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: tarbit
 version: !ruby/object:Gem::Version
-  version: 1.0.5
+  version: 1.0.6
 platform: ruby
 authors:
 - Niklas Hanft
@@ -52,6 +52,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: os
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 description: Description
 email: hello@niklashanft.com
 executables:
@@ -65,7 +79,8 @@ files:
 - bin/tarbit
 - lib/tarbit.rb
 - lib/tarbit/server.rb
-- lib/tarbit/statistic.rb
+- lib/tarbit/statistic_snapshot.rb
+- lib/tarbit/statistic_watcher.rb
 - lib/tarbit/version.rb
 - tarbit.gemspec
 homepage: https://github.com/nhh/apollo

data/lib/tarbit/statistic.rb

@@ -1,46 +0,0 @@
-require 'gruff'
-require 'async'
-
-module Tarbit
-  class Statistic
-
-    def initialize(server, interval)
-      @server = server
-      @interval = interval
-      @history = []
-    end
-
-    def watch
-      Async do |task|
-        while true
-          task.sleep @interval
-          write_line_chart
-        end
-      end
-    end
-
-    private
-
-    def write_line_chart
-      return if @server.connections.size == 0 and @history.size == 0
-
-      # Add point in time
-      @history << {
-          created_at: Date.new.strftime("%B %d, %Y"),
-          connections: @server.connections.clone # Cloning instead of referencing
-      }
-
-      g = Gruff::Line.new
-      g.title = 'History of connections over time'
-
-      labels = {}
-      @history.each_with_index{ |item, index| labels[index] = item.fetch(:created_at) }
-      g.labels = labels
-
-      g.data :Bots, @history.map {|point_in_time| point_in_time.fetch(:connections).size }
-
-      g.write(File.expand_path ('~/.tarbit/stats/line_chart.png'))
-    end
-
-  end
-end