xbase-util 0.8.9__tar.gz → 0.9.0__tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (35) hide show
  1. {xbase_util-0.8.9 → xbase_util-0.9.0}/PKG-INFO +1 -1
  2. {xbase_util-0.8.9 → xbase_util-0.9.0}/setup.py +1 -1
  3. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/common_util.py +4 -2
  4. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/pcap_util.py +1 -3
  5. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/test.py +1 -3
  6. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util.egg-info/PKG-INFO +1 -1
  7. {xbase_util-0.8.9 → xbase_util-0.9.0}/README.md +0 -0
  8. {xbase_util-0.8.9 → xbase_util-0.9.0}/setup.cfg +0 -0
  9. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/__init__.py +0 -0
  10. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/add_column_util.py +0 -0
  11. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/dangerous_util.py +0 -0
  12. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/__init__.py +0 -0
  13. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/bean/ConfigBean.py +0 -0
  14. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/bean/CurrentConfigBean.py +0 -0
  15. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/bean/FlowBean.py +0 -0
  16. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/bean/TaskTemplateBean.py +0 -0
  17. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/bean/__init__.py +0 -0
  18. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/dao/ConfigDao.py +0 -0
  19. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/dao/CurrentConfigDao.py +0 -0
  20. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/dao/FlowDao.py +0 -0
  21. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/dao/TaskTemplateDao.py +0 -0
  22. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/dao/__init__.py +0 -0
  23. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/db/initsqlite3.py +0 -0
  24. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/es_db_util.py +0 -0
  25. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/esreq.py +0 -0
  26. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/geo_util.py +0 -0
  27. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/handle_features_util.py +0 -0
  28. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/packet_util.py +0 -0
  29. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/xbase_constant.py +0 -0
  30. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util.egg-info/SOURCES.txt +0 -0
  31. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util.egg-info/dependency_links.txt +0 -0
  32. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util.egg-info/not-zip-safe +0 -0
  33. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util.egg-info/top_level.txt +0 -0
  34. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util_assets/GeoLite2-City.mmdb +0 -0
  35. {xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util_assets/arkimeparse.js +0 -0
{xbase_util-0.8.9 → xbase_util-0.9.0}/PKG-INFO RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.1
2
2
  Name: xbase_util
3
- Version: 0.8.9
3
+ Version: 0.9.0
4
4
  Summary: 网络安全基础工具
5
5
  Home-page: https://gitee.com/jimonik/xbase_util.git
6
6
  Author: xyt
{xbase_util-0.8.9 → xbase_util-0.9.0}/setup.py RENAMED
@@ -3,7 +3,7 @@ from distutils.core import setup
3
3
  from setuptools import find_packages
4
4
 
5
5
  setup(name="xbase_util",
6
- version="0.8.9",
6
+ version="0.9.0",
7
7
  description="网络安全基础工具",
8
8
  long_description="包含提取,预测,训练的基础工具",
9
9
  author="xyt",
{xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/common_util.py RENAMED
@@ -3,6 +3,7 @@ import json
3
3
  import logging
4
4
  import os
5
5
  import re
6
+ import traceback
6
7
  from collections import Counter
7
8
  from datetime import datetime
8
9
  from logging.handlers import TimedRotatingFileHandler
@@ -44,12 +45,13 @@ def parse_chunked_body(data: bytes, need_un_gzip=False,session_id="none") -> byt
44
45
  try:
45
46
  return gzip.decompress(body)
46
47
  except gzip.BadGzipFile:
47
- print("解压错误")
48
+ print(f"解压错误:{session_id}")
48
49
  return body
49
50
  else:
50
51
  return body
51
52
  except Exception as e:
52
- print(f"parse_chunked_body:session:{session_id}")
53
+ traceback.print_exc()
54
+ print(f"其他错误:session:{session_id}")
53
55
  return b''
54
56
 
55
57
 
{xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/pcap_util.py RENAMED
@@ -291,7 +291,7 @@ def parse_body(data,session_id='none'):
291
291
  try:
292
292
  body = gzip.decompress(body)
293
293
  except:
294
- print("解压失败")
294
+ print(f"解压失败:{session_id}")
295
295
  pass
296
296
  result_body_str = filter_visible_chars(body)
297
297
  return filter_visible_chars(header), result_body_str
@@ -300,10 +300,8 @@ def parse_body(data,session_id='none'):
300
300
  def reassemble_session_pcap(reassemble_tcp_res, skey, session_id='none'):
301
301
  my_map = None # 初始化为 None
302
302
  packet_list = []
303
-
304
303
  for packet in reassemble_tcp_res:
305
304
  header, body = parse_body(packet['data'], session_id=session_id)
306
-
307
305
  # 如果当前数据包是请求
308
306
  if packet['key'] == skey:
309
307
  # 如果 my_map 已经存在(即已经有一个未完成的请求-响应对),先将其添加到 packet_list
{xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util/test.py RENAMED
@@ -1,11 +1,9 @@
1
- from scapy.packet import Raw
2
1
  from scapy.utils import rdpcap
3
2
 
4
3
  from xbase_util.pcap_util import reassemble_tcp_pcap, reassemble_session_pcap
5
4
 
6
5
  if __name__ == '__main__':
7
6
  packets_scapy = reassemble_tcp_pcap(rdpcap("test.pcap"))
8
- skey = '10.28.7.1:57266'
7
+ skey = '10.28.7.13:52631'
9
8
  all_packets = reassemble_session_pcap(packets_scapy, skey=skey,session_id='enn')
10
-
11
9
  print(all_packets)
{xbase_util-0.8.9 → xbase_util-0.9.0}/xbase_util.egg-info/PKG-INFO RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.1
2
2
  Name: xbase-util
3
- Version: 0.8.9
3
+ Version: 0.9.0
4
4
  Summary: 网络安全基础工具
5
5
  Home-page: https://gitee.com/jimonik/xbase_util.git
6
6
  Author: xyt
{xbase_util-0.8.9 → xbase_util-0.9.0}/README.md RENAMED
File without changes
{xbase_util-0.8.9 → xbase_util-0.9.0}/setup.cfg RENAMED
File without changes