CIRCL
/
lookyloo
mirror of https://github.com/CIRCL/lookyloo
2
0
Fork 0
Code Issues Releases Wiki Activity

chg: Improve cookies in hostnode view

pull/79/head
Raphaël Vinot 2020-06-11 15:13:31 +02:00
parent 0ed7dbb5cb
commit 1c408af3b0
2 changed files with 80 additions and 35 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
lookyloo/lookyloo.py
View File

@ -469,6 +469,12 @@ class Lookyloo():
'url_object': url 'url_object': url
} }
# If the url path is too long, we want to limit it to 60 chars
if len(to_append['url_path']) > 50:
to_append['url_path_short'] = to_append['url_path'][:60] + ' [...]'
else:
to_append['url_path_short'] = to_append['url_path']
# Optional: SaneJS information # Optional: SaneJS information
if hasattr(url, 'body_hash') and url.body_hash in sanejs_lookups: if hasattr(url, 'body_hash') and url.body_hash in sanejs_lookups:
if sanejs_lookups[url.body_hash]: if sanejs_lookups[url.body_hash]:
@ -485,7 +491,8 @@ class Lookyloo():
to_display: Dict[str, Set[Tuple[str, str]]] = defaultdict(set) to_display: Dict[str, Set[Tuple[str, str]]] = defaultdict(set)
for cookie, contexts in url.cookies_sent.items(): for cookie, contexts in url.cookies_sent.items():
if not contexts: if not contexts:
# FIXME Locally created? # Locally created?
to_display[cookie].add(('Unknown origin', ))
continue continue
for context in contexts: for context in contexts:
to_display[cookie].add((context['setter'].hostname, context['setter'].hostnode_uuid)) to_display[cookie].add((context['setter'].hostname, context['setter'].hostnode_uuid))
@ -493,10 +500,21 @@ class Lookyloo():
# Optional: Cookies received from server in response -> map to nodes who send the cookie in request # Optional: Cookies received from server in response -> map to nodes who send the cookie in request
if hasattr(url, 'cookies_received'): if hasattr(url, 'cookies_received'):
to_display = defaultdict(set) to_display = {'3rd_party': defaultdict(set), 'sent': defaultdict(set), 'not_sent': defaultdict(set)}
for domain, c_received, is_3rd_party in url.cookies_received: for domain, c_received, is_3rd_party in url.cookies_received:
if c_received not in ct.root_hartree.cookies_sent:
# This cookie is never sent.
if is_3rd_party:
to_display['3rd_party'][c_received].add((domain, ))
else:
to_display['not_sent'][c_received].add((domain, ))
continue
for url_node in ct.root_hartree.cookies_sent[c_received]: for url_node in ct.root_hartree.cookies_sent[c_received]:
to_display[c_received].add((url_node.hostname, url_node.hostnode_uuid)) if is_3rd_party:
to_display['3rd_party'][c_received].add((url_node.hostname, url_node.hostnode_uuid))
else:
to_display['sent'][c_received].add((url_node.hostname, url_node.hostnode_uuid))
to_append['cookies_received'] = to_display to_append['cookies_received'] = to_display
urls.append(to_append) urls.append(to_append)

91
website/web/templates/hostname_popup.html
View File

@ -47,7 +47,6 @@
<button type="button" class="btn btn-info" onclick="whereAmI('{{ hostname_uuid }}')">Locate node on tree</button> <button type="button" class="btn btn-info" onclick="whereAmI('{{ hostname_uuid }}')">Locate node on tree</button>
<a href="{{ url_for('hostnode_details_text', tree_uuid=tree_uuid, node_uuid=hostname_uuid) }}" class="btn btn-info" role="button">Get URLs as text</a> <a href="{{ url_for('hostnode_details_text', tree_uuid=tree_uuid, node_uuid=hostname_uuid) }}" class="btn btn-info" role="button">Get URLs as text</a>
</center> </center>
<p>Click on the URL to get the content of the response</p>
<ul class="list-group-flush"> <ul class="list-group-flush">
{% for url in urls %} {% for url in urls %}
<li class="list-group-item"> <li class="list-group-item">
@ -68,7 +67,7 @@
<path fill-rule="evenodd" d="M9.655 8H2.333c-.264 0-.398.068-.471.121a.73.73 0 0 0-.224.296 1.626 1.626 0 0 0-.138.59V14c0 .342.076.531.14.635.064.106.151.18.256.237a1.122 1.122 0 0 0 .436.127l.013.001h7.322c.264 0 .398-.068.471-.121a.73.73 0 0 0 .224-.296 1.627 1.627 0 0 0 .138-.59V9c0-.342-.076-.531-.14-.635a.658.658 0 0 0-.255-.237A1.122 1.122 0 0 0 9.655 8zm.012-1H2.333C.5 7 .5 9 .5 9v5c0 2 1.833 2 1.833 2h7.334c1.833 0 1.833-2 1.833-2V9c0-2-1.833-2-1.833-2zM8.5 4a3.5 3.5 0 1 1 7 0v3h-1V4a2.5 2.5 0 0 0-5 0v3h-1V4z"/> <path fill-rule="evenodd" d="M9.655 8H2.333c-.264 0-.398.068-.471.121a.73.73 0 0 0-.224.296 1.626 1.626 0 0 0-.138.59V14c0 .342.076.531.14.635.064.106.151.18.256.237a1.122 1.122 0 0 0 .436.127l.013.001h7.322c.264 0 .398-.068.471-.121a.73.73 0 0 0 .224-.296 1.627 1.627 0 0 0 .138-.59V9c0-.342-.076-.531-.14-.635a.658.658 0 0 0-.255-.237A1.122 1.122 0 0 0 9.655 8zm.012-1H2.333C.5 7 .5 9 .5 9v5c0 2 1.833 2 1.833 2h7.334c1.833 0 1.833-2 1.833-2V9c0-2-1.833-2-1.833-2zM8.5 4a3.5 3.5 0 1 1 7 0v3h-1V4a2.5 2.5 0 0 0-5 0v3h-1V4z"/>
</svg> </svg>
{%endif%} {%endif%}
... /{{ url['url_path'] }} ... /{{ url['url_path_short'] }}
</div> </div>
<ul class="list-group"> <ul class="list-group">
<li class="list-group-item"> <li class="list-group-item">
@ -118,25 +117,51 @@
</div> </div>
{% endif %} {% endif %}
{% if url['url_object'].set_third_party_cookies %}
<div>This response contains 3rd party cookies.</div>
{% endif %}
{% if url['cookies_received'] %} {% if url['cookies_received'] %}
<p class="h6">List of cookies received in the response to that URL</p> <div>
<ul class="list-group"> <p class="h5">Cookies</p>
{% for cookie, details in url['cookies_received'].items() %} {% if url['cookies_received']['3rd_party'] %}
<li class="list-group-item">{{ cookie }} <div>This response contains 3rd party cookies:</div>
<ul class="list-group"> <ul>
{% for hostname, hostnode_uuid in details %} {% for cookie, details in url['cookies_received']['3rd_party'].items() %}
<li class="list-group-item"> {{ hostname }} - {% for detail in details %}
<button type="button" class="btn btn-info" onclick="whereAmI('{{ hostnode_uuid }}')">Show on tree node sending this cookie</button> {% if detail|length == 1 %}
</li> <li>{{ detail[0] }}: {{ cookie }}</li>
{% else %}
<li>{{ detail[0] }}: {{ cookie }} -
<button type="button" class="btn btn-info" onclick="whereAmI('{{ detail[1] }}')">Show node sending this cookie</button>
</li>
{% endif %}
{% endfor %} {% endfor %}
</ul> {% endfor %}
</li> </ul>
{% endfor %} {% endif %}
</ul>
</p> {% if url['cookies_received']['sent'] %}
<div>Other cookies sent somewhere else in the capture</div>
<ul>
{% for cookie, details in url['cookies_received']['sent'].items() %}
{% for detail in details %}
<li>{{ detail[0] }}: {{ cookie }} -
<button type="button" class="btn btn-info" onclick="whereAmI('{{ detail[1] }}')">Show node sending this cookie</button>
</li>
{% endfor %}
{% endfor %}
</ul>
{% endif %}
{% if url['cookies_received']['not_sent'] %}
<div>Other cookies, but never sent</div>
<ul>
{% for cookie, details in url['cookies_received']['not_sent'].items() %}
{% for detail in details %}
<li>{{ detail[0] }}: {{ cookie }}</li>
{% endfor %}
{% endfor %}
</ul>
{% endif %}
<div>
{% endif %} {% endif %}
</li> </li>
@ -163,21 +188,23 @@
{% endif %} {% endif %}
{% if url['cookies_sent'] %} {% if url['cookies_sent'] %}
<p class="h6">List of cookies sent in the request to that URL</p> <div>
<ul class="list-group"> <p class="h5">Cookies</p>
<div>List of cookies sent in the request</div>
<ul>
{% for cookie, details in url['cookies_sent'].items() %} {% for cookie, details in url['cookies_sent'].items() %}
<li class="list-group-item">{{ cookie }} {% for detail in details %}
<ul class="list-group"> {% if detail|length == 1 %}
{% for hostname, hostnode_uuid in details %} <li> {{ detail[0] }}: {{ cookie }}</li>
<li class="list-group-item"> {{ hostname }} - {%else %}
<button type="button" class="btn btn-info" onclick="whereAmI('{{ hostnode_uuid }}')">Show on tree node setting this cookie</button> <li>{{ detail[0] }}: {{ cookie }} -
</li> <button type="button" class="btn btn-info" onclick="whereAmI('{{ detail[1] }}')">Show on tree node setting this cookie</button>
{% endfor %} </li>
</ul> {% endif %}
</li> {% endfor %}
{% endfor %} {% endfor %}
</ul> </ul>
</p> </div>
{% endif %} {% endif %}
</li> </li>
</ul> </ul>