def __init__(self):
Template.__init__(self)
self.display = "Catch All"
self.value = "catch_all"
self.PORT = 81
self.description = "This is a catch all plugin used to listen on ports that are unused by other plugins"
self.geoIp_feature_json_string = ""
self.stream_input = ""
self.geoIpDB = GeoIP.open(
"./GeoLiteCity.dat",
GeoIP.GEOIP_INDEX_CACHE | GeoIP.GEOIP_CHECK_CACHE)
self.time_stamp = ''
self.ORM = json.dumps({
"table": {
"table_name":
"catch_all",
"column": [{
"name": "ip_address",
"type": "TEXT"
}, {
"name": "port_number",
"type": "TEXT"
}, {
"name": "feature",
"type": "TEXT"
}, {
"name": "stream",
"type": "TEXT"
}]
}
})
def __init__(self):
Template.__init__(self)
logging.basicConfig(format='%(asctime)s %(message)s', datefmt='%m/%d/%Y %I:%M:%S %p')
self.value = "telnet"
self.display = "Telnet"
self.PORT = 23
self.description = ("This plugin uses the telnet port to listen for attackers. "
"It allows a user to login and then record upto 5 commands from the user"
" and stores the information in a sql database.")
self.ORM = json.dumps({
"table": {
"table_name": "telnet",
"column": [
{"name": "username", "type": "TEXT"},
{"name": "password", "type": "TEXT"},
{"name": "commands", "type": "TEXT"},
{"name": "feature", "type": "TEXT"},
{"name": "ip_address", "type": "TEXT"},
{"name": "time_stamp", "type": "TEXT"}
]
}
})
def __init__(self):
Template.__init__(self)
self.value = "http"
self.display = "Http"
self.PORT = 80
self.description = (
"This plugin uses the http port to listen for attackers. "
"It returns a 404 not found error to the client "
"and stores the information in a sql database.")
self.ORM = json.dumps({
"table": {
"table_name":
"http",
"column": [{
"name": "ip_address",
"type": "TEXT"
}, {
"name": "command",
"type": "TEXT"
}, {
"name": "path",
"type": "TEXT"
}, {
"name": "version",
"type": "TEXT"
}, {
"name": "headers",
"type": "TEXT"
}, {
"name": "time",
"type": "TEXT"
}, {
"name": "feature",
"type": "TEXT"
}]
}
})
def __init__(self):
Template.__init__(self)
self.display = "Catch All"
self.value = "catch_all"
self.PORT = 81
self.description = "This is a catch all plugin used to listen on ports that are unused by other plugins"
self.geoIp_feature_json_string = ""
self.stream_input = ""
self.geoIpDB = GeoIP.open("./GeoLiteCity.dat", GeoIP.GEOIP_INDEX_CACHE | GeoIP.GEOIP_CHECK_CACHE)
self.time_stamp = ""
self.ORM = json.dumps(
{
"table": {
"table_name": "catch_all",
"column": [
{"name": "ip_address", "type": "TEXT"},
{"name": "port_number", "type": "TEXT"},
{"name": "feature", "type": "TEXT"},
{"name": "stream", "type": "TEXT"},
],
}
}
)
def __init__(self):
Template.__init__(self)
self.value = "http"
self.display = "Http"
self.PORT = 80
self.description = ("This plugin uses the http port to listen for attackers. "
"It returns a 404 not found error to the client "
"and stores the information in a sql database.")
self.ORM = json.dumps({
"table": {
"table_name": "http",
"column": [
{"name": "ip_address", "type": "TEXT"},
{"name": "command", "type": "TEXT"},
{"name": "path", "type": "TEXT"},
{"name": "version", "type": "TEXT"},
{"name": "headers", "type": "TEXT"},
{"name": "time", "type": "TEXT"},
{"name": "feature", "type": "TEXT"}
]
}
})
