mirror of https://github.com/CIRCL/lookyloo
50 lines
1.7 KiB
Python
50 lines
1.7 KiB
Python
#!/usr/bin/env python3
|
|
|
|
from __future__ import annotations
|
|
|
|
from io import BytesIO
|
|
from typing import Dict, Any
|
|
|
|
from pypandora import PyPandora # type: ignore[attr-defined]
|
|
|
|
from ..default import ConfigError
|
|
from ..helpers import get_useragent_for_requests
|
|
|
|
from .abstractmodule import AbstractModule
|
|
|
|
|
|
class Pandora(AbstractModule):
|
|
|
|
def module_init(self) -> bool:
|
|
if not self.config.get('url'):
|
|
self.logger.info('No URL in config.')
|
|
return False
|
|
|
|
self.client = PyPandora(root_url=self.config['url'], useragent=get_useragent_for_requests())
|
|
if not self.client.is_up:
|
|
self.logger.warning('Not up.')
|
|
return False
|
|
|
|
self.allow_auto_trigger = bool(self.config.get('allow_auto_trigger', False))
|
|
|
|
return True
|
|
|
|
def capture_default_trigger(self, file_in_memory: BytesIO, filename: str, /, auto_trigger: bool=False) -> dict[str, str]:
|
|
'''Automatically submit the file if the landing URL is a file instead of a webpage'''
|
|
if not self.available:
|
|
return {'error': 'Module not available'}
|
|
if auto_trigger and not self.allow_auto_trigger:
|
|
# NOTE: if auto_trigger is true, it means the request comes from the
|
|
# auto trigger feature (disabled by default)
|
|
return {'error': 'Auto trigger not allowed on module'}
|
|
|
|
self.submit_file(file_in_memory, filename)
|
|
return {'success': 'Module triggered'}
|
|
|
|
def submit_file(self, file_in_memory: BytesIO, filename: str) -> dict[str, Any]:
|
|
'''Submit a file to Pandora'''
|
|
if not self.available:
|
|
raise ConfigError('Pandora not available, probably not able to reach the server.')
|
|
|
|
return self.client.submit(file_in_memory, filename, seed_expire=0)
|