AIL-framework/bin/Mail.py

97 lines
2.9 KiB
Python
Raw Normal View History

2018-05-04 13:53:29 +02:00
#!/usr/bin/env python3
# -*-coding:UTF-8 -*
"""
The CreditCards Module
======================
This module is consuming the Redis-list created by the Categ module.
It apply mail regexes on paste content and warn if above a threshold.
"""
2014-08-14 17:55:18 +02:00
import redis
import pprint
import time
2014-08-11 09:27:50 +02:00
import dns.exception
2014-08-20 15:14:57 +02:00
from packages import Paste
from packages import lib_refine
from pubsublogger import publisher
from Helper import Process
2014-08-20 15:14:57 +02:00
if __name__ == "__main__":
publisher.port = 6380
2014-08-20 15:14:57 +02:00
publisher.channel = "Script"
2014-08-14 17:55:18 +02:00
config_section = 'Mail'
p = Process(config_section)
addr_dns = p.config.get("Mail", "dns")
2014-08-20 15:14:57 +02:00
# REDIS #
r_serv2 = redis.StrictRedis(
host=p.config.get("Redis_Cache", "host"),
port=p.config.getint("Redis_Cache", "port"),
2018-05-04 13:53:29 +02:00
db=p.config.getint("Redis_Cache", "db"),
decode_responses=True)
# FUNCTIONS #
publisher.info("Suscribed to channel mails_categ")
# FIXME For retro compatibility
channel = 'mails_categ'
message = p.get_from_set()
prec_filename = None
2014-08-20 15:14:57 +02:00
# Log as critical if there are more that that amout of valid emails
is_critical = 10
email_regex = "[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,6}"
2014-09-04 11:46:07 +02:00
MX_values = None
while True:
2014-09-04 11:46:07 +02:00
if message is not None:
2014-09-05 17:05:45 +02:00
filename, score = message.split()
2014-09-04 11:46:07 +02:00
if prec_filename is None or filename != prec_filename:
PST = Paste.Paste(filename)
MX_values = lib_refine.checking_MX_record(
r_serv2, PST.get_regex(email_regex), addr_dns)
2014-09-04 11:46:07 +02:00
if MX_values[0] >= 1:
PST.__setattr__(channel, MX_values)
PST.save_attribute_redis(channel, (MX_values[0],
list(MX_values[1])))
pprint.pprint(MX_values)
to_print = 'Mails;{};{};{};Checked {} e-mail(s);{}'.\
2014-09-04 11:46:07 +02:00
format(PST.p_source, PST.p_date, PST.p_name,
MX_values[0], PST.p_path)
2014-09-04 11:46:07 +02:00
if MX_values[0] > is_critical:
publisher.warning(to_print)
#Send to duplicate
p.populate_set_out(filename, 'Duplicate')
p.populate_set_out('mail;{}'.format(filename), 'alertHandler')
2018-04-16 14:50:04 +02:00
2018-05-16 14:39:01 +02:00
msg = 'infoleak:automatic-detection="mail";{}'.format(filename)
p.populate_set_out(msg, 'Tags')
2014-09-04 11:46:07 +02:00
else:
publisher.info(to_print)
2018-04-16 14:50:04 +02:00
#Send to ModuleStats
for mail in MX_values[1]:
2018-04-16 14:50:04 +02:00
print('mail;{};{};{}'.format(1, mail, PST.p_date))
p.populate_set_out('mail;{};{};{}'.format(1, mail, PST.p_date), 'ModuleStats')
2014-09-04 11:46:07 +02:00
prec_filename = filename
else:
publisher.debug("Script Mails is Idling 10s")
2018-04-16 14:50:04 +02:00
print('Sleeping')
2014-09-04 11:46:07 +02:00
time.sleep(10)
message = p.get_from_set()