U @6^0 @sPddlZddlZddlZddlZddlZddlmZmZm Z GdddeZ dS)N) SpiderFootSpiderFootPluginSpiderFootEventc@s^eZdZdZdddZdddZdZefdd Zd d Z d d Z ddZ ddZ ddZ dS) sfp_ssltoolsz{SSL Tools:Footprint,Investigate,Passive:Crawling and Scanning::Gather information about SSL certificates from SSLTools.com.T)verifycertexpiringdaysz5Verify certificate subject alternative names resolve.zNNumber of days in the future a certificate expires to consider it as expiring.NcCs:||_d|_||_t|D]}|||j|<q"dS)Nz SSL Tools)sf__dataSource__ tempStorageresultslistkeysopts)selfsfcuserOptsoptr7/var/www/spiderfoot.crq.systems/modules/sfp_ssltools.pysetup$s  zsfp_ssltools.setupcCsddgS)N INTERNET_NAME IP_ADDRESSrrrrr watchedEvents-szsfp_ssltools.watchedEventscCs"ddddddddd d d d d ddgS)Nr TCP_PORT_OPENWEBSERVER_BANNERrINTERNET_NAME_UNRESOLVEDAFFILIATE_INTERNET_NAME"AFFILIATE_INTERNET_NAME_UNRESOLVEDSSL_CERTIFICATE_ISSUEDSSL_CERTIFICATE_ISSUERSSL_CERTIFICATE_MISMATCHSSL_CERTIFICATE_EXPIREDSSL_CERTIFICATE_EXPIRINGSSL_CERTIFICATE_RAW DOMAIN_NAMEAFFILIATE_DOMAIN_NAMErrrrrproducedEvents1szsfp_ssltools.producedEventsc Csd|djdddi}ddi}|jjdtj|||jd |jd d }t d |d dkrp|j ddSzt |d }Wn<t k r}z|j dt|WYdSd}~XYnX|S)Nurlraw_unicode_escapeasciireplaceerrors Content-Type!application/x-www-form-urlencodedzhttp://www.ssltools.com/api/dns _fetchtimeout _useragentpostDataheaderstimeout useragentcontentNo response from SSLTools.com Error processing JSON response: )encodedecoder fetchUrlurllibparse urlencodertimesleepdebugjsonloads BaseExceptionstr)rdomainparamsr5resdataerrrqueryDns;s(    zsfp_ssltools.queryDnsc Cs|djddddt|dd}dd i}|jjd tj||d |jd d }t d|ddkrt|j ddSzt |d}Wn<tk r}z|j dt|WYdSd}~XYnX|S)Nr*r+r,r-/true)r)pathportZ live_scanr/r0z http://www.ssltools.com/api/scanrr2r3r8r9r:r;)r<r=rHr r>r?r@rArrBrCrDrErFrG)rrIrRrJr5rKrLrMrrr queryScanWs,    zsfp_ssltools.queryScanc Cs0|j}|j}|j}||jkr dSd|j|<|jd|d|||}|dkrh|jd|dS|d}|D]*}|j|rvt d||j |}| |qvd} | || }|dkr|jd|d t | dS|d } | dkst| d kr|jd|d t | dSt d t | |j |}| |t d |d t | |j |}| || d} | rt dt | |j |}| |z(| d} |jt | ||jd} Wn>tk r}z|jdt |WYdSd}~XYnX| ds|jd|dSt d| d|j |}| || dr\t d| d|j |}| || drt d| d|j |}| ||dkr| drt dd| d|j |}| |t| dtD]}|dd }|j||jd!sq|j|dd"rd#}nd$}|jd%rR|j|sR|jd&|d'|d(7}t |||j |}| ||j||jd!r|d)rt d*||j |}| |nt d+||j |}| |q| d,rt d-| d.d/|j |}| |dS| d0r,t d1| d.d/|j |}| |dSdS)2NTzReceived event, z, from zNo DNS information found for addressesriz%No certificate information found for :responser RAW_RIR_DATArserverrdumprzError parsing certificate: textz!Failed to parse the SSL cert for r%issuedr issuerr!mismatchr"z, hostsaltnamesz*. _internettlds)includeChildrenrrrzHost z could not be resolved _UNRESOLVED AFFILIATEr'r&expiredr# expirystrUnknownexpiringr$) eventTypemodulerLr r rDrNgetvalidIPr__name__notifyListenersrSrHlen parseCertrrGinfojoinsetr r, validHost getTargetmatches resolveHostisDomain startswith)revent eventName srcModuleName eventDatarLrTaddressevtrRrVbannerrYcertrMsanrIevt_typerrr handleEventvs                            zsfp_ssltools.handleEvent)rm __module__ __qualname____doc__roptdescsr dictrrr(rNrSrrrrrrs  r) rErBurllib.requestr? urllib.parse urllib.errorsflibrrrrrrrr s