Add option to set shareable to True for fingerprints uploaded to DDoS-DB

poorting · poorting · commit 29d64c88cc10 · 2022-09-09T22:13:48.000+02:00
diff --git a/config.ini.example b/config.ini.example
@@ -2,6 +2,11 @@
 host=ddosdb.example.com
 token=c2c0689dce8314c5267a4a1ffb81163494ab9ddb555ec3d7b45cb88110372a3b
 
+# By default fingerprints are set to not being shareable.
+# Meaning they will not be pushed onwards to other DDoS-DB instances
+# Uncomment if you do want fingerprints to be set to shareable by default
+# shareable=true
+
 # default protocol is https, but in case of a development DDoSDB instance without TLS: uncomment below
 # protocol=http
 
diff --git a/src/attack.py b/src/attack.py
@@ -240,18 +240,26 @@ def write_to_file(self, filename: Path):
         with open(filename, 'w') as file:
             json.dump(self.as_dict(anonymous=not self.show_target), file, indent=4)
 
-    def upload_to_ddosdb(self, host: str, token: str, protocol: str = 'https', noverify: bool = False) -> int:
+    def upload_to_ddosdb(self,
+                         host: str,
+                         token: str,
+                         protocol: str = 'https',
+                         noverify: bool = False,
+                         shareable: bool = False) -> int:
         """
         Upload fingerprint to a DDoS-DB instance
         :param host: hostname of the DDoS-DB instance, without schema (like db.example.com)
         :param token: DDoS-DB Authorization Token
         :param protocol: Protocol to use (http or https)
         :param noverify: (bool) ignore invalid TLS certificate
+        :param shareable: (bool) allow the DDoS-DB to push fingerprint on to other DDoS-DB instances
         :return: HTTP response code
         """
         LOGGER.info(f'Uploading fingerprint to DDoS-DB: {host}...')
 
-        fp_json = json.dumps(self.as_dict(anonymous=not self.show_target))
+        fp_dict = self.as_dict(anonymous=not self.show_target)
+        fp_dict['shareable'] = bool(shareable)
+        fp_json = json.dumps(fp_dict)
         headers = {
             'Authorization': f'Token {token}'
         }
@@ -279,7 +287,7 @@ def upload_to_ddosdb(self, host: str, token: str, protocol: str = 'https', nover
         elif r.status_code == 413:
             LOGGER.critical('Fingerprint is too large to upload to this DDoS-DB instance.')
         elif r.status_code == 201:
-            LOGGER.info(f'Upload success! URL: https://{host}/details?key={self.checksum}')
+            LOGGER.info(f'Upload success! URL: {protocol}://{host}/details?key={self.checksum}')
         else:
             LOGGER.critical('DDoS-DB Internal Server Error.')
             LOGGER.critical('Error Code: {}'.format(r.status_code))
diff --git a/src/util.py b/src/util.py
@@ -272,6 +272,7 @@ def parse_config(file: Path, misp=False) -> dict[str, str]:
                 'host': config.get(platform, 'host'),
                 'token': config.get(platform, 'token'),
                 'protocol': config.get(platform, 'protocol'),
+                "shareable": "True" if config.getboolean(platform, 'shareable', fallback=False) else "False",
             }
 
     except (NoSectionError, NoOptionError):

Original file line number	Diff line number	Diff line change
`@@ -272,6 +272,7 @@ def parse_config(file: Path, misp=False) -> dict[str, str]:`
`272`	`272`	`'host': config.get(platform, 'host'),`
`273`	`273`	`'token': config.get(platform, 'token'),`
`274`	`274`	`'protocol': config.get(platform, 'protocol'),`
	`275`	`+ "shareable": "True" if config.getboolean(platform, 'shareable', fallback=False) else "False",`
`275`	`276`	`}`
`276`	`277`
`277`	`278`	`except (NoSectionError, NoOptionError):`