PyPI - voidaccess - Versions diffs - 1.3.0__py3-none-any.whl - Mend

voidaccess 1.3.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (142) hide show

analysis/__init__.py +49 -0
analysis/opsec.py +454 -0
analysis/patterns.py +202 -0
analysis/temporal.py +201 -0
api/__init__.py +1 -0
api/auth.py +163 -0
api/main.py +509 -0
api/routes/__init__.py +1 -0
api/routes/admin.py +214 -0
api/routes/auth.py +157 -0
api/routes/entities.py +871 -0
api/routes/export.py +359 -0
api/routes/investigations.py +2567 -0
api/routes/monitors.py +405 -0
api/routes/search.py +157 -0
api/routes/settings.py +851 -0
auth/__init__.py +1 -0
auth/token_blacklist.py +108 -0
cli/__init__.py +3 -0
cli/adapters/__init__.py +1 -0
cli/adapters/sqlite.py +273 -0
cli/browser.py +376 -0
cli/commands/__init__.py +1 -0
cli/commands/configure.py +185 -0
cli/commands/enrich.py +154 -0
cli/commands/export.py +158 -0
cli/commands/investigate.py +601 -0
cli/commands/show.py +87 -0
cli/config.py +180 -0
cli/display.py +212 -0
cli/main.py +154 -0
cli/tor_detect.py +71 -0
config.py +180 -0
crawler/__init__.py +28 -0
crawler/dedup.py +97 -0
crawler/frontier.py +115 -0
crawler/spider.py +462 -0
crawler/utils.py +122 -0
db/__init__.py +47 -0
db/migrations/__init__.py +0 -0
db/migrations/env.py +80 -0
db/migrations/versions/0001_initial_schema.py +270 -0
db/migrations/versions/0002_add_investigation_status_column.py +27 -0
db/migrations/versions/0002_add_missing_tables.py +33 -0
db/migrations/versions/0003_add_canonical_value_and_entity_links.py +61 -0
db/migrations/versions/0004_add_page_posted_at.py +41 -0
db/migrations/versions/0005_add_extraction_method.py +32 -0
db/migrations/versions/0006_add_monitor_alerts.py +26 -0
db/migrations/versions/0007_add_actor_style_profiles.py +23 -0
db/migrations/versions/0008_add_users_table.py +47 -0
db/migrations/versions/0009_add_investigation_id_to_relationships.py +29 -0
db/migrations/versions/0010_add_composite_index_entity_relationships.py +22 -0
db/migrations/versions/0011_add_page_extraction_cache.py +52 -0
db/migrations/versions/0013_add_graph_status.py +31 -0
db/migrations/versions/0015_add_progress_fields.py +41 -0
db/migrations/versions/0016_backfill_graph_status.py +33 -0
db/migrations/versions/0017_add_user_api_keys.py +44 -0
db/migrations/versions/0018_add_user_id_to_investigations.py +33 -0
db/migrations/versions/0019_add_content_safety_log.py +46 -0
db/migrations/versions/0020_add_entity_source_tracking.py +50 -0
db/models.py +618 -0
db/queries.py +841 -0
db/session.py +270 -0
export/__init__.py +34 -0
export/misp.py +257 -0
export/sigma.py +342 -0
export/stix.py +418 -0
extractor/__init__.py +21 -0
extractor/llm_extract.py +372 -0
extractor/ner.py +512 -0
extractor/normalizer.py +638 -0
extractor/pipeline.py +401 -0
extractor/regex_patterns.py +325 -0
fingerprint/__init__.py +33 -0
fingerprint/profiler.py +240 -0
fingerprint/stylometry.py +249 -0
graph/__init__.py +73 -0
graph/builder.py +894 -0
graph/export.py +225 -0
graph/model.py +83 -0
graph/queries.py +297 -0
graph/visualize.py +178 -0
i18n/__init__.py +24 -0
i18n/detect.py +76 -0
i18n/query_expand.py +72 -0
i18n/translate.py +210 -0
monitor/__init__.py +27 -0
monitor/_db.py +74 -0
monitor/alerts.py +345 -0
monitor/config.py +118 -0
monitor/diff.py +75 -0
monitor/jobs.py +247 -0
monitor/scheduler.py +184 -0
scraper/__init__.py +0 -0
scraper/scrape.py +857 -0
scraper/scrape_js.py +272 -0
search/__init__.py +318 -0
search/circuit_breaker.py +240 -0
search/search.py +334 -0
sources/__init__.py +96 -0
sources/blockchain.py +444 -0
sources/cache.py +93 -0
sources/cisa.py +108 -0
sources/dns_enrichment.py +557 -0
sources/domain_reputation.py +643 -0
sources/email_reputation.py +635 -0
sources/engines.py +244 -0
sources/enrichment.py +1244 -0
sources/github_scraper.py +589 -0
sources/gitlab_scraper.py +624 -0
sources/hash_reputation.py +856 -0
sources/historical_intel.py +253 -0
sources/ip_reputation.py +521 -0
sources/paste_scraper.py +484 -0
sources/pastes.py +278 -0
sources/rss_scraper.py +576 -0
sources/seed_manager.py +373 -0
sources/seeds.py +368 -0
sources/shodan.py +103 -0
sources/telegram.py +199 -0
sources/virustotal.py +113 -0
utils/__init__.py +0 -0
utils/async_utils.py +89 -0
utils/content_safety.py +193 -0
utils/defang.py +94 -0
utils/encryption.py +34 -0
utils/ioc_freshness.py +124 -0
utils/user_keys.py +33 -0
vector/__init__.py +39 -0
vector/embedder.py +100 -0
vector/model_singleton.py +49 -0
vector/search.py +87 -0
vector/store.py +514 -0
voidaccess/__init__.py +0 -0
voidaccess/llm.py +717 -0
voidaccess/llm_utils.py +696 -0
voidaccess-1.3.0.dist-info/METADATA +395 -0
voidaccess-1.3.0.dist-info/RECORD +142 -0
voidaccess-1.3.0.dist-info/WHEEL +5 -0
voidaccess-1.3.0.dist-info/entry_points.txt +2 -0
voidaccess-1.3.0.dist-info/licenses/LICENSE +21 -0
voidaccess-1.3.0.dist-info/top_level.txt +19 -0

sources/engines.py ADDED Viewed

@@ -0,0 +1,244 @@
+"""
+sources/engines.py — Additional dark web search engines not in search.py.
+search.py handles 16 engines via the legacy thread-pool path (public API
+unchanged for ui.py compatibility).  This module adds engines that need
+special handling:
+  • DarkSearch  — JSON REST API, paginated, optional API key
+  • OnionSearch — HTML scraping of Torch and Haystack onion search engines
+Both go through the Tor SOCKS5 proxy (TOR_PROXY_HOST / TOR_PROXY_PORT).
+Public API:
+    async def search_darksearch(query, pages=2)   -> list[dict]
+    async def search_onionsearch(query)            -> list[dict]
+Each returns list[dict] with keys: title, url, snippet, source.
+Empty list on any error — never raises.
+"""
+from __future__ import annotations
+import logging
+import re
+from typing import List
+from urllib.parse import quote_plus
+import aiohttp
+from aiohttp_socks import ProxyConnector
+from bs4 import BeautifulSoup
+from config import DARKSEARCH_API_KEY, TOR_PROXY_HOST, TOR_PROXY_PORT
+_logger = logging.getLogger(__name__)
+# ---------------------------------------------------------------------------
+# Constants
+# ---------------------------------------------------------------------------
+_DARKSEARCH_API = "http://darksearch.io/api/search"
+# Torch and Haystack — specifically called out in concept.md; not in search.py
+_ONIONSEARCH_ENGINES = [
+    {
+        "name": "Torch",
+        "url": (
+            "http://torchdeedp3i2jigzjdmfpn5ttjhthh5wbmda2rr3jvqjg5p77c54dqd"
+            ".onion/search?query={query}"
+        ),
+    },
+    {
+        "name": "Haystack",
+        "url": (
+            "http://haystak5njsmn2hqkewecpaxetahtwhsbsa64jom2k22z5afxhnpxfid"
+            ".onion/?q={query}"
+        ),
+    },
+]
+_TIMEOUT = aiohttp.ClientTimeout(connect=15, sock_read=45)
+_ONION_RE = re.compile(r"https?://[a-z2-7]{16,56}\.onion[^\s\"'<>]*", re.IGNORECASE)
+# ---------------------------------------------------------------------------
+# Shared helpers
+# ---------------------------------------------------------------------------
+def _tor_connector() -> ProxyConnector:
+    return ProxyConnector.from_url(
+        f"socks5://{TOR_PROXY_HOST}:{TOR_PROXY_PORT}",
+        rdns=True,
+    )
+def _ua() -> str:
+    return (
+        "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:137.0) "
+        "Gecko/20100101 Firefox/137.0"
+    )
+# ---------------------------------------------------------------------------
+# DarkSearch JSON API
+# ---------------------------------------------------------------------------
+async def search_darksearch(query: str, pages: int = 2) -> List[dict]:
+    """
+    Query the DarkSearch JSON API and return up to *pages* pages of results.
+    Routed through Tor for anonymity even though darksearch.io is clearnet.
+    Uses DARKSEARCH_API_KEY as Authorization header when configured.
+    Returns list[dict] with keys: title, url, snippet, source.
+    Returns [] on any network or parse error.
+    """
+    results: List[dict] = []
+    headers = {"User-Agent": _ua(), "Accept": "application/json"}
+    if DARKSEARCH_API_KEY:
+        headers["Authorization"] = f"Bearer {DARKSEARCH_API_KEY}"
+    try:
+        connector = _tor_connector()
+        async with aiohttp.ClientSession(
+            connector=connector, timeout=_TIMEOUT
+        ) as session:
+            for page in range(1, pages + 1):
+                params = {"query": query, "page": page}
+                try:
+                    async with session.get(
+                        _DARKSEARCH_API, params=params, headers=headers
+                    ) as resp:
+                        if resp.status != 200:
+                            _logger.debug(
+                                "DarkSearch page %d returned HTTP %d", page, resp.status
+                            )
+                            break
+                        data = await resp.json(content_type=None)
+                        items = data.get("data") or []
+                        for item in items:
+                            link = str(item.get("link") or "").strip()
+                            if not link:
+                                continue
+                            results.append(
+                                {
+                                    "title": str(item.get("title") or "").strip(),
+                                    "url": link,
+                                    "snippet": str(
+                                        item.get("description") or ""
+                                    ).strip()[:500],
+                                    "source": "DarkSearch",
+                                }
+                            )
+                        # Stop early if we've reached the last page
+                        last = data.get("last_page") or page
+                        if page >= last:
+                            break
+                except (aiohttp.ClientError, asyncio.TimeoutError) as exc:
+                    _logger.debug("DarkSearch page %d error: %s", page, exc)
+                    break
+    except Exception as exc:
+        _logger.debug("DarkSearch session error: %s", exc)
+    return results
+# ---------------------------------------------------------------------------
+# OnionSearch HTML scraping (Torch + Haystack)
+# ---------------------------------------------------------------------------
+async def search_onionsearch(query: str) -> List[dict]:
+    """
+    Scrape Torch and Haystack .onion search engines and return extracted links.
+    Each engine's result page is fetched, all .onion hrefs are extracted, and
+    the surrounding anchor text is used as the title.  No snippet is available
+    from this scraping path (snippet is empty string).
+    Returns list[dict] with keys: title, url, snippet, source.
+    Returns [] on any error; partial results from working engines are included.
+    """
+    results: List[dict] = []
+    encoded = quote_plus(query)
+    try:
+        connector = _tor_connector()
+        async with aiohttp.ClientSession(
+            connector=connector, timeout=_TIMEOUT
+        ) as session:
+            for engine in _ONIONSEARCH_ENGINES:
+                url = engine["url"].replace("{query}", encoded)
+                name = engine["name"]
+                try:
+                    async with session.get(
+                        url, headers={"User-Agent": _ua()}
+                    ) as resp:
+                        if resp.status != 200:
+                            _logger.debug(
+                                "%s returned HTTP %d", name, resp.status
+                            )
+                            continue
+                        html = await resp.text(errors="replace")
+                        results.extend(_parse_onion_links(html, name))
+                except (aiohttp.ClientError, Exception) as exc:
+                    _logger.debug("%s fetch error: %s", name, exc)
+    except Exception as exc:
+        _logger.debug("OnionSearch session error: %s", exc)
+    return _deduplicate(results)
+def _parse_onion_links(html: str, source_name: str) -> List[dict]:
+    """
+    Extract .onion links + anchor text from an HTML results page.
+    Falls back to regex extraction if BeautifulSoup finds nothing useful.
+    """
+    items: List[dict] = []
+    seen: set[str] = set()
+    try:
+        soup = BeautifulSoup(html, "html.parser")
+        for tag in soup.find_all("a", href=True):
+            href = str(tag["href"]).strip()
+            match = _ONION_RE.match(href)
+            if not match:
+                continue
+            url = match.group(0).rstrip(".,;)'\"")
+            if url in seen or "search" in url.lower():
+                continue
+            title = tag.get_text(strip=True)
+            if len(title) < 3:
+                continue
+            seen.add(url)
+            items.append(
+                {"title": title, "url": url, "snippet": "", "source": source_name}
+            )
+    except Exception:
+        pass
+    # Regex fallback when structured parsing yields nothing
+    if not items:
+        for url in _ONION_RE.findall(html):
+            url = url.rstrip(".,;)'\"")
+            if url not in seen and "search" not in url.lower():
+                seen.add(url)
+                items.append(
+                    {"title": url, "url": url, "snippet": "", "source": source_name}
+                )
+    return items
+def _deduplicate(results: List[dict]) -> List[dict]:
+    seen: set[str] = set()
+    out: List[dict] = []
+    for r in results:
+        if r["url"] not in seen:
+            seen.add(r["url"])
+            out.append(r)
+    return out
+# asyncio is used inside search_darksearch — import here to avoid circular
+import asyncio  # noqa: E402