mirror of
https://github.com/aljazceru/recon-pipeline.git
synced 2025-12-19 15:24:28 +01:00
4d1aef2d34
* scans without installed requirements dont tab-complete * added meets_requirements functions to classes * updated tests * added check for None case
90 lines
3.4 KiB
Python
90 lines
3.4 KiB
Python
import sys
|
|
import pickle
|
|
import typing
|
|
import inspect
|
|
import pkgutil
|
|
import importlib
|
|
import ipaddress
|
|
from pathlib import Path
|
|
from collections import defaultdict
|
|
|
|
from ..recon.config import defaults
|
|
|
|
|
|
def get_tool_state() -> typing.Union[dict, None]:
|
|
""" Load current tool state from disk. """
|
|
tools = Path(defaults.get("tools-dir")) / ".tool-dict.pkl"
|
|
|
|
if tools.exists():
|
|
return pickle.loads(tools.read_bytes())
|
|
|
|
|
|
def get_scans():
|
|
""" Iterates over the recon package and its modules to find all of the classes that end in [Ss]can.
|
|
|
|
**A contract exists here that says any scans need to end with the word scan in order to be found by this function.**
|
|
|
|
Example:
|
|
``defaultdict(<class 'list'>, {'AmassScan': ['pipeline.recon.amass'], 'MasscanScan': ['pipeline.recon.masscan'], ... })``
|
|
|
|
Returns:
|
|
dict containing mapping of ``classname -> [modulename, ...]`` for all potential recon-pipeline commands
|
|
"""
|
|
scans = defaultdict(list)
|
|
|
|
file = Path(__file__).expanduser().resolve()
|
|
web = file.parent / "web"
|
|
recon = file.parents[1] / "recon"
|
|
|
|
lib_paths = [str(web), str(recon)]
|
|
|
|
# recursively walk packages; import each module in each package
|
|
# walk_packages yields ModuleInfo objects for all modules recursively on path
|
|
# prefix is a string to output on the front of every module name on output.
|
|
for loader, module_name, is_pkg in pkgutil.walk_packages(path=lib_paths, prefix=f"{__package__}."):
|
|
try:
|
|
importlib.import_module(module_name)
|
|
except ModuleNotFoundError:
|
|
# skipping things like recon.aquatone, not entirely sure why they're showing up...
|
|
pass
|
|
|
|
# walk all modules, grabbing classes that we've written and add them to the classlist defaultdict
|
|
# getmembers returns all members of an object in a list of tuples (name, value)
|
|
for name, obj in inspect.getmembers(sys.modules[__package__]):
|
|
if inspect.ismodule(obj) and not name.startswith("_"):
|
|
# we're only interested in modules that don't begin with _ i.e. magic methods __len__ etc...
|
|
|
|
for sub_name, sub_obj in inspect.getmembers(obj):
|
|
# now we only care about classes that end in [Ss]can
|
|
if inspect.isclass(sub_obj) and sub_name.lower().endswith("scan"):
|
|
# final check, this ensures that the tools necessary to AT LEAST run this scan are present
|
|
# does not consider upstream dependencies
|
|
try:
|
|
if not sub_obj.meets_requirements():
|
|
continue
|
|
except AttributeError:
|
|
# some scan's haven't implemented meets_requirements yet, silently allow them through
|
|
pass
|
|
|
|
scans[sub_name].append(f"{__package__}.{name}")
|
|
|
|
return scans
|
|
|
|
|
|
def is_ip_address(ipaddr):
|
|
""" Simple helper to determine if given string is an ip address or subnet """
|
|
try:
|
|
ipaddress.ip_interface(ipaddr)
|
|
return True
|
|
except ValueError:
|
|
return False
|
|
|
|
|
|
def get_ip_address_version(ipaddr):
|
|
""" Simple helper to determine whether a given ip address is ipv4 or ipv6 """
|
|
if is_ip_address(ipaddr):
|
|
if isinstance(ipaddress.ip_address(ipaddr), ipaddress.IPv4Address): # ipv4 addr
|
|
return "4"
|
|
elif isinstance(ipaddress.ip_address(ipaddr), ipaddress.IPv6Address): # ipv6
|
|
return "6"
|