3 @†6^ã@s<ddlZddlmZddlmZmZmZGdd„deƒZdS)éN)Úurlparse)Ú SpiderFootÚSpiderFootPluginÚSpiderFootEventc@sVeZdZdZdddddœZdddd dœZd Zeƒfdd„Zd d„Z dd„Z dd„Zd S)Úsfp_sslcertz‰SSL Certificates:Footprint,Investigate:Crawling and Scanning::Gather information about SSL certificates used by the target's HTTPS sites.Té é)ÚtryhttpÚverifyÚ ssltimeoutÚcertexpiringdaysz6Also try to HTTPS-connect to HTTP sites and hostnames.z5Verify certificate subject alternative names resolve.z1Seconds before giving up trying to HTTPS connect.zNNumber of days in the future a certificate expires to consider it as expiring.NcCs8||_|jƒ|_x"t|jƒƒD]}|||j|<qWdS)N)ÚsfÚtempStorageÚresultsÚlistÚkeysÚopts)ÚselfÚsfcÚuserOptsÚopt©rú6/var/www/spiderfoot.crq.systems/modules/sfp_sslcert.pyÚsetup*s zsfp_sslcert.setupcCs dddgS)NÚ INTERNET_NAMEÚLINKED_URL_INTERNALÚ IP_ADDRESSr)rrrrÚ watchedEvents6szsfp_sslcert.watchedEventsc Csddddddddd d ddd g S)NÚ TCP_PORT_OPENrÚINTERNET_NAME_UNRESOLVEDÚAFFILIATE_INTERNET_NAMEÚ"AFFILIATE_INTERNET_NAME_UNRESOLVEDÚSSL_CERTIFICATE_ISSUEDÚSSL_CERTIFICATE_ISSUERÚSSL_CERTIFICATE_MISMATCHÚSSL_CERTIFICATE_EXPIREDÚSSL_CERTIFICATE_EXPIRINGÚSSL_CERTIFICATE_RAWÚDOMAIN_NAMEÚAFFILIATE_DOMAIN_NAMEr)rrrrÚproducedEvents<szsfp_sslcert.producedEventsc"CsÞ|j}|j}|j}|jjd|d|ƒ|dkr²|jƒjdƒrR|jdrRdSy,t|ƒ}d}|j rl|j }|jj |jƒƒ}Wqºtk r®}z|jjd|ƒdSd}~XqºXn|}d}||jkrÐd|j|<ndS|jjd |d t |ƒƒyR|jj|||jdƒ} | jƒ| jdƒ} |jj| ƒ}|jjt |ƒ||jdƒ}WnBtk r„} z$|jjd |dt | ƒdƒdSd} ~ XnX|d1kr¶td|d t |ƒ|j|ƒ}|j|ƒ|jdƒsÖ|jjd|ƒdStd|d|j|ƒ}|j|ƒ|jdƒrtd|d|j|ƒ}|j|ƒ|jdƒrHtd|d|j|ƒ}|j|ƒ|dkr„|jdƒr„tddj|jdƒƒ|j|ƒ}|j|ƒxðt|jdtƒƒƒD]Ú}|jdd ƒ}|jƒj|dd!rÂd}nd"}|jd#rþ|jj|ƒrþ|jjd$|d%ƒ|d&7}t|||j|ƒ}|j|ƒ|jj||jd'ƒr˜|jd(ƒrVtd)||j|ƒ}|j|ƒntd*||j|ƒ}|j|ƒq˜W|jd+ƒr¨td,|jd-d.ƒ|j|ƒ}|j|ƒdS|jd/ƒrÚtd0|jd-d.ƒ|j|ƒ}|j|ƒdSdS)2NzReceived event, z, from rzhttps://r i»zCouldn't parse URL: TzTesting SSL for: ú:rrzUnable to SSL-connect to z (ú)rrrÚtextz!Failed to parse the SSL cert for r'Úissuedr"Úissuerr#Úmismatchr$z, ÚhostsÚaltnamesz*.Ú)ÚincludeChildrenr r zHost z could not be resolvedÚ_UNRESOLVEDÚ _internettldsÚ AFFILIATEr)r(Úexpiredr%Ú expirystrÚUnknownÚexpiringr&)rr) Ú eventTypeÚmoduleÚdatar ÚdebugÚlowerÚ startswithrrÚportÚurlFQDNÚ BaseExceptionrÚstrÚ safeSSLSocketÚdo_handshakeÚgetpeercertÚsslDerToPemÚ parseCertÚinforÚ__name__ÚnotifyListenersÚgetÚjoinÚsetrÚreplaceÚ getTargetÚmatchesÚresolveHostÚisDomain)rÚeventÚ eventNameÚ srcModuleNameÚ eventDataÚurBÚfqdnÚeÚsockÚdercertZpemcertÚcertÚxÚevtÚrawevtÚsanÚdomainÚevt_typerrrÚhandleEventEs zsfp_sslcert.handleEvent)rLÚ __module__Ú__qualname__Ú__doc__rÚoptdescsrÚdictrrr*rfrrrrrs r)ÚtimeÚurllib.parserÚsflibrrrrrrrrÚ s