D4
/
d4-core
mirror of https://github.com/D4-project/d4-core
2
0
Fork 0
Code Issues Releases Wiki Activity

chg: [worker2 ja3] add debug

pull/23/head
Terrtia 2019-04-24 10:21:03 +02:00
parent e4e4d8d57e
commit 0816a93efe
No known key found for this signature in database
GPG Key ID: 1E1B1F50D84613D0
1 changed files with 20 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

38
server/workers/workers_2/meta_types_modules/ja3-jl/ja3-jl.py
View File

@ -38,27 +38,29 @@ class TypeHandler(MetaTypesDefault):
# Extract certificates from json
try:
mtjson = json.loads(decoded_data)
res = True
except Exception as e:
print(decoded_data)
continue
#mtjson = json.loads(decoded_data)
for certificate in mtjson["Certificates"] or []:
cert = binascii.a2b_base64(certificate["Raw"])
# one could also load this cert with
# xcert = x509.load_der_x509_certificate(cert, default_backend())
m = hashlib.sha1()
m.update(cert)
cert_path = os.path.join(cert_save_dir, m.hexdigest()+'.crt')
# write unique certificate der file to disk
with open(cert_path, 'w+b') as c:
c.write(cert)
res = False
if res:
#mtjson = json.loads(decoded_data)
for certificate in mtjson["Certificates"] or []:
cert = binascii.a2b_base64(certificate["Raw"])
# one could also load this cert with
# xcert = x509.load_der_x509_certificate(cert, default_backend())
m = hashlib.sha1()
m.update(cert)
cert_path = os.path.join(cert_save_dir, m.hexdigest()+'.crt')
# write unique certificate der file to disk
with open(cert_path, 'w+b') as c:
c.write(cert)
# write json file to disk
jsons_path = os.path.join(jsons_save_dir, mtjson["Timestamp"]+'.json')
with open(jsons_path, 'w') as j:
j.write(decoded_data)
# Send data to Analyszer
self.send_to_analyzers(jsons_path)
# write json file to disk
jsons_path = os.path.join(jsons_save_dir, mtjson["Timestamp"]+'.json')
with open(jsons_path, 'w') as j:
j.write(decoded_data)
# Send data to Analyszer
self.send_to_analyzers(jsons_path)
def test(self):