Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Added search to the api, and postgres support for DB #166

Merged
merged 8 commits into from
May 7, 2023
Merged

Added search to the api, and postgres support for DB #166

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
9588281
Added search to the api, and postgres support for DB
habitualdev Dec 7, 2022
5624641
screenshots saved in postgres
habitualdev Dec 26, 2022
98594a2
Merge pull request #1 from habitualdev/distributed
habitualdev Dec 26, 2022
046a65b
Gallery and Detail screenshots load from DB
habitualdev Dec 27, 2022
f2ff11a
Merge pull request #2 from habitualdev/distributed
habitualdev Dec 27, 2022
c77a802
removed accidental binary upload
habitualdev Dec 27, 2022
5baf86a
Merge pull request #3 from habitualdev/distributed
habitualdev Dec 27, 2022
25495f9
Merge branch 'master' into master
habitualdev May 3, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
*.so
*.dylib
*.sqlite3

.idea
# dep vendor/
vendor/

Expand Down
3 changes: 2 additions & 1 deletion chrome/chrome.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@ package chrome
import (
"context"
"crypto/tls"
"encoding/base64"
"errors"
"io"
"net/http"
Expand Down Expand Up @@ -168,8 +169,8 @@ func (chrome *Chrome) StoreRequest(db *gorm.DB, preflight *PreflightResult, scre
Title: preflight.HTTPTitle,
Filename: filename,
IsPDF: chrome.AsPDF,
Screenshot: base64.StdEncoding.EncodeToString(screenshot.Screenshot),
}

// append headers
for k, v := range preflight.HTTPResponse.Header {
hv := strings.Join(v, ", ")
Expand Down
2 changes: 2 additions & 0 deletions cmd/root.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -59,6 +59,7 @@ func init() {
rootCmd.PersistentFlags().BoolVar(&options.DisableLogging, "disable-logging", false, "disable all logging")
// global
rootCmd.PersistentFlags().BoolVar(&db.Disabled, "disable-db", false, "disable all database operations")
rootCmd.PersistentFlags().IntVarP(&db.Platform, "type", "t", 0, "0 - SQLite, 1 - Postgres")
rootCmd.PersistentFlags().BoolVar(&db.Debug, "debug-db", false, "enable debug logging for all database operations")
rootCmd.PersistentFlags().StringVarP(&db.Path, "db-path", "D", "gowitness.sqlite3", "destination for the gowitness database")
rootCmd.PersistentFlags().IntVarP(&chrm.ResolutionX, "resolution-x", "X", 1440, "screenshot resolution x")
Expand All @@ -73,4 +74,5 @@ func init() {
rootCmd.PersistentFlags().Int64Var(&chrm.Timeout, "timeout", 10, "preflight check timeout")
rootCmd.PersistentFlags().StringVarP(&chrm.ChromePath, "chrome-path", "", "", "path to chrome executable to use")
rootCmd.PersistentFlags().StringVarP(&chrm.Proxy, "proxy", "p", "", "http/socks5 proxy to use. Use format proto://address:port")

}
28 changes: 26 additions & 2 deletions cmd/server.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -57,9 +57,17 @@ $ gowitness server --address 127.0.0.1:9000 --allow-insecure-uri`,
if !strings.Contains(options.ServerAddr, "localhost") {
log.Warn().Msg("exposing this server to other networks is dangerous! see the server command help for more information")
}
if db.Platform == storage.Sqlite {
if !strings.HasPrefix(options.BasePath, "/") {
log.Warn().Msg("base path does not start with a /")
}
}

if db.Platform == storage.Postgres {
if !strings.HasPrefix(options.BasePath, "postgresql") {
log.Warn().Msg("base path does not start with a /")
}

if !strings.HasPrefix(options.BasePath, "/") {
log.Warn().Msg("base path does not start with a /")
}

// db
Expand Down Expand Up @@ -125,6 +133,7 @@ $ gowitness server --address 127.0.0.1:9000 --allow-insecure-uri`,
api := r.Group("/api")
{
api.GET("/list", apiURLHandler)
api.GET("/search", apiSearchHandler)
api.GET("/detail/:id", apiDetailHandler)
api.GET("/detail/:id/screenshot", apiDetailScreenshotHandler)
api.POST("/screenshot", apiScreenshotHandler)
Expand Down Expand Up @@ -556,6 +565,21 @@ func apiURLHandler(c *gin.Context) {
c.JSON(http.StatusOK, urls)
}

func apiSearchHandler(c *gin.Context) {

// use gorm SmartSelect Fields to filter URL
search := "%" + c.Query("q") + "%"
var urls []storage.URL

rsDB.
Where("URL LIKE ?", search).
Or("Title LIKE ?", search).
Or("DOM LIKE ?", search).
Find(&urls)

c.JSON(http.StatusOK, urls)
}

// apiDetailHandler handles a detail request for screenshot information
func apiDetailHandler(c *gin.Context) {

Expand Down
9 changes: 9 additions & 0 deletions go.mod
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,7 @@ require (
github.com/rs/zerolog v1.29.1
github.com/spf13/cobra v1.7.0
github.com/tomsteele/go-nmap v0.0.0-20191202052157-3507e0b03523
gorm.io/driver/postgres v1.4.5
golang.org/x/net v0.9.0
gorm.io/driver/sqlite v1.5.0
gorm.io/gorm v1.25.0
Expand All @@ -29,6 +30,14 @@ require (
github.com/go-playground/validator/v10 v10.13.0 // indirect
github.com/gobwas/httphead v0.1.0 // indirect
github.com/gobwas/pool v0.2.1 // indirect
github.com/jackc/chunkreader/v2 v2.0.1 // indirect
github.com/jackc/pgconn v1.13.0 // indirect
github.com/jackc/pgio v1.0.0 // indirect
github.com/jackc/pgpassfile v1.0.0 // indirect
github.com/jackc/pgproto3/v2 v2.3.1 // indirect
github.com/jackc/pgservicefile v0.0.0-20200714003250-2b9c44734f2b // indirect
github.com/jackc/pgtype v1.12.0 // indirect
github.com/jackc/pgx/v4 v4.17.2 // indirect
github.com/gobwas/ws v1.2.0 // indirect
github.com/goccy/go-json v0.10.2 // indirect
github.com/inconshreveable/mousetrap v1.1.0 // indirect
Expand Down
155 changes: 154 additions & 1 deletion go.sum
View file
Open in desktop

Large diffs are not rendered by default.

37 changes: 29 additions & 8 deletions storage/db.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,9 @@
package storage

import (
"errors"
"gorm.io/driver/sqlite"
"gorm.io/driver/postgres"
"gorm.io/gorm"
"gorm.io/gorm/logger"
)
Expand All @@ -14,8 +16,14 @@ type Db struct {
// cli flags
Disabled bool
Debug bool
Platform int
}

const (
Sqlite = iota
Postgres
)

// NewDb sets up a new DB
func NewDb() *Db {
return &Db{}
Expand All @@ -35,16 +43,29 @@ func (db *Db) Get() (*gorm.DB, error) {
config.Logger = logger.Default.LogMode(logger.Error)
}

conn, err := gorm.Open(sqlite.Open(db.Path+"?cache=shared"), config)
if err != nil {
return nil, err
}
switch db.Platform {
case Sqlite:
conn, err := gorm.Open(sqlite.Open(db.Path+"?cache=shared"), config)
if err != nil {
return nil, err
}

if !db.SkipMigration {
conn.AutoMigrate(&URL{}, &Header{}, &TLS{}, &TLSCertificate{}, &TLSCertificateDNSName{}, &Technologie{}, &ConsoleLog{}, &NetworkLog{})
}
if !db.SkipMigration {
conn.AutoMigrate(&URL{}, &Header{}, &TLS{}, &TLSCertificate{}, &TLSCertificateDNSName{}, &Technologie{}, &ConsoleLog{}, &NetworkLog{})
}
return conn, nil
case Postgres:
conn, err := gorm.Open(postgres.Open(db.Path), config)
if err != nil {
return nil, err
}

return conn, nil
if !db.SkipMigration {
conn.AutoMigrate(&URL{}, &Header{}, &TLS{}, &TLSCertificate{}, &TLSCertificateDNSName{}, &Technologie{}, &ConsoleLog{}, &NetworkLog{})
}
return conn, nil
}
return nil, errors.New("invalid db platform")
}

// OrderPerception orders by perception hash if enabled
Expand Down
1 change: 1 addition & 0 deletions storage/models.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,7 @@ type URL struct {
IsPDF bool
PerceptionHash string
DOM string
Screenshot string

TLS TLS

Expand Down
5 changes: 2 additions & 3 deletions web/ui-templates/detail.html
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -61,9 +61,8 @@ <h2 class="page-title">
<embed class="card-img-top" src='{{ URL "/screenshots/" }}{{ .Data.Filename }}' type="application/pdf" frameBorder="0"
scrolling="auto" height="100%" width="100%"></embed>
{{ else }}
<a href='{{ URL "/screenshots/" }}{{ .Data.Filename }}' target="_blank" class="d-block">
<img loading="lazy" src='{{ URL "/screenshots/" }}{{ .Data.Filename }}'
onerror="this.onerror=null; this.src='{{ URL "/assets/img/blank.png" }}'" class="card-img-top">
<a class="d-block">
<img loading="lazy" src="data:image/png;base64,{{ .Data.Screenshot }}"; class="card-img-top">
</a>
{{ end }}
<div class="card-footer">
Expand Down
5 changes: 2 additions & 3 deletions web/ui-templates/gallery.html
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -80,9 +80,8 @@ <h2 class="page-title">
<embed src='{{ URL "/screenshots/" }}{{ .Filename }}' type="application/pdf" frameBorder="0" scrolling="auto"
height="100%" width="100%"></embed>
{{ else }}
<a href='{{ URL "/screenshots/" }}{{ .Filename }}' target="_blank" class="d-block">
<img loading="lazy" src='{{ URL "/screenshots/" }}{{ .Filename }}'
onerror="this.onerror=null; this.src='{{ URL "/assets/img/blank.png" }}'" class="card-img-top">
<a class="d-block">
<img loading="lazy" src="data:image/png;base64,{{ .Screenshot }}" alt="Screenshot" class="card-img-top">
</a>
{{ end }}
<div class="card-body">
Expand Down