3 @6^@s8ddlZddlZddlmZmZmZGdddeZdS)N) SpiderFootSpiderFootPluginSpiderFootEventc@sreZdZdZddddZdddZd ZeZd Z efd d Z d d Z ddZ ddZ ddZddZddZd S) sfp_s3bucketzAmazon S3 Bucket Finder:Footprint,Passive:Crawling and Scanning::Search for potential Amazon S3 buckets associated with the target and attempt to list their contents.as3.amazonaws.com,s3-external-1.amazonaws.com,s3-us-west-1.amazonaws.com,s3-us-west-2.amazonaws.com,s3.ap-south-1.amazonaws.com,s3-ap-south-1.amazonaws.com,s3.ap-northeast-2.amazonaws.com,s3-ap-northeast-2.amazonaws.com,s3-ap-southeast-1.amazonaws.com,s3-ap-southeast-2.amazonaws.com,s3-ap-northeast-1.amazonaws.com,s3.eu-central-1.amazonaws.com,s3-eu-central-1.amazonaws.com,s3-eu-west-1.amazonaws.com,s3-sa-east-1.amazonaws.comztest,dev,web,beta,bucket,space,files,content,data,prod,staging,production,stage,app,media,development,-test,-dev,-web,-beta,-bucket,-space,-files,-content,-data,-prod,-staging,-production,-stage,-app,-media,-development) endpointssuffixes _maxthreadszDifferent S3 endpoints to check where buckets may exist, as per http://docs.aws.amazon.com/general/latest/gr/rande.html#s3_regionz;List of suffixes to append to domains tried as bucket names)rrNcCsJ||_t|_|j|_tj|_x"t|j D]}|||j |<q0WdS)N) sfdict s3results tempStorageresults threadingLocklocklistkeysopts)selfsfcuserOptsoptr7/var/www/spiderfoot.crq.systems/modules/sfp_s3bucket.pysetup's   zsfp_s3bucket.setupcCsddgS)N DOMAIN_NAMELINKED_URL_EXTERNALr)rrrr watchedEvents1szsfp_s3bucket.watchedEventscCsddgS)NCLOUD_STORAGE_BUCKETCLOUD_STORAGE_BUCKET_OPENr)rrrrproducedEvents7szsfp_s3bucket.producedEventsc Cs|jj|dddd}|ddkrJ|d dks8d |d krJ|jjd |nPd |d kr~|j|d jd |j|<WdQRXn|jd|j|<WdQRXdS)N rT)timeout useragentnoLogcode301302200contentZ NoSuchBucketzNot a valid bucket: ZListBucketResultzr)r'r(r))r fetchUrldebugrcountr )rurlresrrr checkSite:s   zsfp_s3bucket.checkSitec Cst}t|_d}d}g}xZ|D]R}|jr0dS|jjd||jtjd||j |fd||j |d7}q Wx@|rd}x tj D]}|j j drd}qW|sd}tjdqxW|jS) NTrz!Spawning thread to check bucket: Zthread_sfp_s3buckets_)nametargetargsFg?)rr r checkForStopr infoappendrThreadr0start enumerater1 startswithtimesleep) rsiteListretrunningitsitefoundrtrrr threadSitesHs,    zsfp_s3bucket.threadSitescCsd}t}t}x|D]|}||jdkr|j|}|dkr>|Sx6t|jD]&}||rL|j|dt||qLWd}t}|j||d7}qW|S)Nrr :r4)rrrFrr7str)rsitesrAr/r>rCdatar?rrr batchSiteshs     zsfp_s3bucket.batchSitescCs|j}|j}|j}||jkr dSd|j|<|jjd|d||dkr|d|krx|jj|}td||j|}|j |dS|j dd|jj ||j d g}t }xx|D]p} xj|j d jd D]V} dg|j d jd } x:| D]2} |jrdS| | d| }d |} |j| qWqWqW|j|}x|D]}|jd}td|dd|d|j|}|j ||ddkr,|dj dd}td|d|dd|j|}|j |q,WdS)NTzReceived event, z, from rz.amazonaws.comr. _internettldsr,rzhttps://rGrr40z//r z: z files found.) eventTypemodulerJrr r,urlFQDNr__name__notifyListenersreplace domainKeywordrrsplitr5r7rK)revent eventName srcModuleName eventDatabevttargetsurlsrBersr.r?bucketZ bucketnamerrr handleEventsD             zsfp_s3bucket.handleEvent)rU __module__ __qualname____doc__roptdescsrr r rrrr!r0rFrKrerrrrrs   r)rr<sflibrrrrrrrrs