socx 2.1__tar.gz → 2.2__tar.gz

{socx-2.1 → socx-2.2}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: socx
-Version: 2.1
+Version: 2.2
 Summary: A set of useful tools for a security operations center
 Author-email: Enlace <enlace.aman@gmail.com>
 Classifier: Programming Language :: Python :: 3
@@ -14,6 +14,9 @@ A collection of helpful tools for a SOC analyst. Easily search for IPs, domains,
 ## Installing
 python -m pip install socx
 
+### Installing from QA
+python -m pip install --index-url https://test.pypi.org/simple/ socx
+
 ## Usage
 A tool to assist with day to day activites in a security operations center (pronounced "socks")      
 

{socx-2.1 → socx-2.2}/README.md

@@ -4,6 +4,9 @@ A collection of helpful tools for a SOC analyst. Easily search for IPs, domains,
 ## Installing
 python -m pip install socx
 
+### Installing from QA
+python -m pip install --index-url https://test.pypi.org/simple/ socx
+
 ## Usage
 A tool to assist with day to day activites in a security operations center (pronounced "socks")      
 

{socx-2.1 → socx-2.2}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "socx"
-version = "2.1"
+version = "2.2"
 authors = [
   { name="Enlace", email="enlace.aman@gmail.com" },
 ]

{socx-2.1 → socx-2.2}/src/socx/socx.py

@@ -1,7 +1,9 @@
 #!/usr/bin/env python3
 
 from contextlib import suppress
+import subprocess
 from unittest import skipUnless
+from urllib.parse import unquote
 
 try:
     import argparse
@@ -48,6 +50,8 @@ ABOUT = f"""
 
 Version: {VERSION}
 A tool to assist with day to day activites in a security operations center (pronounced "socks")
+
+Visit https://enlace.one/ for more information.
 """
 USAGE = f"""Usage:
     {PROGRAM_NAME} [universal options] [function] [arguments]
@@ -82,9 +86,8 @@ def p(*args_, v=1, end="\n", sep=" ", file=None):
 
 def unwrap_url(url):
     pp_decoder = util.URLDefenseDecoder()
-    url = pp_decoder.decode(url)
     if "safelinks" in url:
-        url = url.split("url=")[1]
+        url = unquote(url.split("url=")[1])
     url = pp_decoder.decode(url)
     return url
 
@@ -487,6 +490,26 @@ def do_command_history(user="~"):
     p("Command history gathered", v=3)
 
 
+def awake(minutes=60):
+    interval = 10  # seconds
+    iterations = (minutes * 60) / interval
+
+    p(f"Keeping the device awake for {minutes} minutes...")
+    cmd = [
+        "powershell",
+        "-Command",
+        "$WShell = New-Object -ComObject 'WScript.Shell'; "
+        f"for ($i = 0; $i -lt {iterations}; $i++) {{ "
+        f"$WShell.SendKeys('%'); Start-Sleep -Seconds {interval}; $temp = [Math]::Round(($i*{interval})/60, 1); Write-Output \"$temp of {minutes}. CTRL+C to End\"}}",
+    ]
+
+    with subprocess.Popen(
+        cmd, stdout=subprocess.PIPE, stderr=subprocess.STDOUT, text=True
+    ) as proc:
+        for line in proc.stdout:
+            print(line, end="")
+
+
 #############
 # Arguments #
 #############.
@@ -506,6 +529,24 @@ FUNCTIONS = [
         "function": lambda: interactive_mode(),
         "arguments": [],
     },
+    {
+        "name": "Stay Awake",
+        "command": "awake",
+        "help": "",
+        "function": awake,
+        "arguments": [
+            {
+                "name": "minutes",
+                "flag": "--minutes",
+                "short_flag": "-m",
+                "prompt": "Enter number of minutes to run for: ",
+                "type": int,
+                "default": 60,
+                "required": False,
+                "help": "Keeps device awake for this many minutes",
+            },
+        ],
+    },
     {
         "name": "Combine CSVs",
         "command": "combine",

{socx-2.1 → socx-2.2}/src/socx.egg-info/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: socx
-Version: 2.1
+Version: 2.2
 Summary: A set of useful tools for a security operations center
 Author-email: Enlace <enlace.aman@gmail.com>
 Classifier: Programming Language :: Python :: 3
@@ -14,6 +14,9 @@ A collection of helpful tools for a SOC analyst. Easily search for IPs, domains,
 ## Installing
 python -m pip install socx
 
+### Installing from QA
+python -m pip install --index-url https://test.pypi.org/simple/ socx
+
 ## Usage
 A tool to assist with day to day activites in a security operations center (pronounced "socks")      
 

{socx-2.1 → socx-2.2}/tests/tests.py

@@ -37,22 +37,34 @@ def test_find_file():
 ## Getting hung up
 # def test_find_file_with_regex():
 #     output = run(
-#         "-v 5 find --regex -f 'Phineas.*Ferb.txt' -d 'C:\\Users\\colli\\OneDrive\\Documents\\Python\\socX\\tests\\test_files'"
+#         "-v 5 find --regex -f 'Phineas.*Ferb.txt' -d ''"
 #     )
 #     assert output.stderr == ""
 #     assert "\\PhineasAndFerb.txt" in str(output.stdout)
 
 
-def test_unwrap_url():
-    test_url = "https://urldefense.com/v3/__https:/conferences.stjude.org/g87vv8?i=2NejfAgCkki403xbcRpHuw&locale=en-US__;!!NfcMrC8AwgI!cq3afLDXviFyix2KeJ62VsQBrrZOgfyZu1fks7uQorRGX6VOgcDaUgTpxFdJRmXMdtU5zsmZB9PUw-TmquYgbIGIYUDPsQ$"
-    output = run(
-        f"unwrap --url '{test_url}' ",
-    )
-    assert output.stderr == ""
-    assert (
-        "https://conferences.stjude.org/g87vv8?i=2NejfAgCkki403xbcRpHuw&locale=en-US"
-        in str(output.stdout)
-    )
+# def test_unwrap_url():
+#     test_url = "https://urldefense.com/v3/__https:/conferences.stjude.org/g87vv8?i=2NejfAgCkki403xbcRpHuw&locale=en-US__;!!NfcMrC8AwgI!cq3afLDXviFyix2KeJ62VsQBrrZOgfyZu1fks7uQorRGX6VOgcDaUgTpxFdJRmXMdtU5zsmZB9PUw-TmquYgbIGIYUDPsQ$"
+#     output = run(
+#         f"unwrap --url '{test_url}' ",
+#     )
+#     assert output.stderr == ""
+#     assert (
+#         "https://conferences.stjude.org/g87vv8?i=2NejfAgCkki403xbcRpHuw&locale=en-US"
+#         in str(output.stdout)
+#     )
+
+
+# def test_unwrap_safelink_url():
+#     test_url = "https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Foutlook.office365.com%2Fowa%2F%3FItemID%3DAAkALgAAAAAAHYQDEapmEc2byACqAC%252FEWg0AEtOij2Wdn0uk%252Bvzsc82xogACnMa3jwAA%26exvsurl%3D1%26viewmodel%3DReadMessageItem%26nativeOutlookCommand%3DopenMessage&data=05%7C02%7CCollin.Peel%40alsac.stjude.org%7C870e10f064af483039e608ddc580ff4a%7C62a96f9aa5614bfba97870a73a08dc02%7C0%7C0%7C638883880016710627%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=JiZTfR8E3%2FPCVauhcSsanHVYDR0ETfRKP1Gzjrd2ppc%3D&reserved=0"
+#     output = run(
+#         f"unwrap --url '{test_url}' ",
+#     )
+#     assert output.stderr == ""
+#     assert (
+#         "https://outlook.office365.com/owa/?ItemID=AAkALgAAAAAAHYQDEapmEc2byACqAC%2FEWg0AEtOij2Wdn0uk%2Bvzsc82xogACnMa3jwAA&exvsurl=1&viewmodel=ReadMessageItem&nativeOutlookCommand=openMessage"
+#         in str(output.stdout)
+#     )
 
 
 ## This one has issues with testing but does seem to work