def upload_attach(request, email_id):
"""
Upload an attachment for an email.
:param request: Django request object (Required)
:type request: :class:`django.http.HttpRequest`
:param email_id: The ObjectId of the email to upload attachment for.
:type email_id: str
:returns: :class:`django.http.HttpResponse`
"""
if request.method == 'POST':
form = UploadFileForm(request.user, request.POST, request.FILES)
if form.is_valid():
cleaned_data = form.cleaned_data
analyst = request.user.username
users_sources = user_sources(analyst)
method = cleaned_data['method'] or "Add to Email"
bucket_list = cleaned_data.get(form_consts.Common.BUCKET_LIST_VARIABLE_NAME)
ticket = cleaned_data.get(form_consts.Common.TICKET_VARIABLE_NAME)
email_addr = None
if request.POST.get('email'):
email_addr = request.user.email
email = Email.objects(id=email_id, source__name__in=users_sources).first()
if not email:
return render_to_response('file_upload_response.html',
{'response': json.dumps({'success': False,
'message': "Could not find email."})},
RequestContext(request))
result = create_email_attachment(email,
cleaned_data,
analyst,
cleaned_data['source'],
method,
cleaned_data['reference'],
cleaned_data['campaign'],
cleaned_data['confidence'],
bucket_list,
ticket,
request.FILES.get('filedata',None),
request.POST.get('filename', None),
request.POST.get('md5', None),
email_addr,
cleaned_data['inherit_sources'])
# If successful, tell the browser to redirect back to this email.
if result['success']:
result['redirect_url'] = reverse('crits.emails.views.email_detail', args=[email_id])
return render_to_response('file_upload_response.html',
{'response': json.dumps(result)},
RequestContext(request))
else:
form.fields['related_md5'].widget = forms.HiddenInput() #hide field so it doesn't reappear
return render_to_response('file_upload_response.html',
{'response': json.dumps({'success': False,
'form': form.as_table()})},
RequestContext(request))
else:
return HttpResponseRedirect(reverse('crits.emails.views.email_detail',
args=[email_id]))
def upload_sample(request, event_id):
"""
Upload a sample to associate with this event.
:param request: Django request object (Required)
:type request: :class:`django.http.HttpRequest`
:param event_id: The ObjectId of the event to associate with this sample.
:type event_id: str
:returns: :class:`django.http.HttpResponse`, :class:`django.http.HttpResponse`
"""
if request.method == 'POST': # and request.is_ajax():
form = UploadFileForm(request.user, request.POST, request.FILES)
if form.is_valid():
email = None
if request.POST.get('email'):
email = request.user.email
result = add_sample_for_event(event_id, form.cleaned_data,
request.user.username,
request.FILES.get('filedata', None),
request.POST.get('filename', None),
request.POST.get('md5', None), email,
form.cleaned_data['inherit_sources'])
if result['success']:
result['redirect_url'] = reverse(
'crits.events.views.view_event', args=[event_id])
return render_to_response('file_upload_response.html',
{'response': json.dumps(result)},
RequestContext(request))
else:
form.fields['related_md5'].widget = forms.HiddenInput(
) #hide field so it doesn't reappear
return render_to_response(
'file_upload_response.html', {
'response':
json.dumps({
'success': False,
'form': form.as_table()
})
}, RequestContext(request))
else:
return HttpResponseRedirect(
reverse('crits.events.views.view_event', args=[event_id]))
def bulk_add_md5_sample(request):
"""
Bulk add samples via a bulk upload form.
Args:
request: The Django context which contains information about the
session and key/value pairs for the bulk add request
Returns:
If the request is not a POST and not a Ajax call then:
Returns a rendered HTML form for a bulk add of domains
If the request is a POST and a Ajax call then:
Returns a response that contains information about the
status of the bulk add. This may include information
such as items that failed or successfully added. This may
also contain helpful status messages about each operation.
"""
all_obj_type_choices = [(c[0], c[0], {
'datatype': c[1].keys()[0],
'datatype_value': c[1].values()[0]
}) for c in get_object_types(False)]
formdict = form_to_dict(
UploadFileForm(request.user, request.POST, request.FILES))
objectformdict = form_to_dict(
AddObjectForm(request.user, all_obj_type_choices))
if request.method == "POST" and request.is_ajax():
response = process_bulk_add_md5_sample(request, formdict)
return HttpResponse(json.dumps(response, default=json_handler),
mimetype='application/json')
else:
return render_to_response(
'bulk_add_default.html', {
'formdict': formdict,
'objectformdict': objectformdict,
'title': "Bulk Add Samples",
'table_name': 'sample',
'local_validate_columns': [form_consts.Sample.MD5],
'is_bulk_add_objects': True
}, RequestContext(request))
def upload_file(request, related_md5=None):
"""
Upload a new sample.
:param request: Django request object (Required)
:type request: :class:`django.http.HttpRequest`
:param related_md5: The MD5 of a related sample.
:type related_md5: str
:returns: :class:`django.http.HttpResponse`
"""
if request.method == 'POST':
form = UploadFileForm(request.user, request.POST, request.FILES)
email_errmsg = None
if form.is_valid():
response = {
'success': False,
'message': 'Unknown error; unable to upload file.'
}
inherited_source = None
backdoor = form.cleaned_data['backdoor']
campaign = form.cleaned_data['campaign']
confidence = form.cleaned_data['confidence']
source = form.cleaned_data['source_name']
source_method = form.cleaned_data['source_method']
source_reference = form.cleaned_data['source_reference']
source_tlp = form.cleaned_data['source_tlp']
user = request.user
description = form.cleaned_data['description']
related_id = form.cleaned_data.get('related_id', None)
related_type = form.cleaned_data.get('related_type', None)
relationship_type = form.cleaned_data.get('relationship_type',
None)
if related_md5:
reload_page = True
else:
reload_page = False
related_md5 = form.cleaned_data['related_md5']
if related_md5:
related_sample = Sample.objects(md5=related_md5).first()
if not related_sample:
response['message'] = (
"Upload Failed. Unable to locate related sample. %s" %
related_md5)
return render(request, "file_upload_response.html",
{'response': json.dumps(response)})
# If selected, new sample inherits the campaigns of the related sample.
if form.cleaned_data['inherit_campaigns']:
if campaign:
related_sample.campaign.append(
EmbeddedCampaign(name=campaign,
confidence=confidence,
analyst=user))
campaign = related_sample.campaign
# If selected, new sample inherits the sources of the related sample
if form.cleaned_data['inherit_sources']:
inherited_source = related_sample.source
elif related_id:
related_obj = class_from_id(related_type, related_id)
if not related_obj:
response['success'] = False
response['message'] = (
"Upload Failed. Unable to locate related Item")
return render(
request,
"file_upload_response.html",
{'response': json.dumps(response)},
)
else:
if form.cleaned_data['inherit_campaigns']:
if campaign:
related_obj.campaign.append(
EmbeddedCampaign(name=campaign,
confidence=confidence,
analyst=user))
campaign = related_obj.campaign
if form.cleaned_data['inherit_sources']:
inherited_source = related_obj.source
backdoor_name = None
backdoor_version = None
if backdoor:
backdoor = backdoor.split('|||')
if len(backdoor) == 2:
(backdoor_name,
backdoor_version) = backdoor[0], backdoor[1]
try:
if request.FILES:
result = handle_uploaded_file(
request.FILES['filedata'],
source,
source_method=source_method,
source_reference=source_reference,
source_tlp=source_tlp,
file_format=form.cleaned_data['file_format'],
password=form.cleaned_data['password'],
user=user,
campaign=campaign,
confidence=confidence,
related_md5=related_md5,
related_id=related_id,
related_type=related_type,
relationship_type=relationship_type,
bucket_list=form.cleaned_data[
form_consts.Common.BUCKET_LIST_VARIABLE_NAME],
ticket=form.cleaned_data[
form_consts.Common.TICKET_VARIABLE_NAME],
inherited_source=inherited_source,
backdoor_name=backdoor_name,
backdoor_version=backdoor_version,
description=description)
else:
result = handle_uploaded_file(
None,
source,
source_method=source_method,
source_reference=source_reference,
source_tlp=source_tlp,
file_format=form.cleaned_data['file_format'],
password=None,
user=user,
campaign=campaign,
confidence=confidence,
related_md5=related_md5,
related_id=related_id,
related_type=related_type,
relationship_type=relationship_type,
filename=request.POST['filename'].strip(),
md5=request.POST['md5'].strip().lower(),
sha1=request.POST['sha1'].strip().lower(),
sha256=request.POST['sha256'].strip().lower(),
bucket_list=form.cleaned_data[
form_consts.Common.BUCKET_LIST_VARIABLE_NAME],
ticket=form.cleaned_data[
form_consts.Common.TICKET_VARIABLE_NAME],
inherited_source=inherited_source,
is_return_only_md5=False,
backdoor_name=backdoor_name,
backdoor_version=backdoor_version,
description=description)
except ZipFileError, zfe:
return render(
request, 'file_upload_response.html', {
'response':
json.dumps({
'success': False,
'message': zfe.value
})
})
else:
# zip file upload, etc; result is a list of strings (1 hash per file)
if len(result) > 0 and not isinstance(result[0], dict):
filedata = request.FILES['filedata']
message = ('<a href="%s">View Uploaded Samples.</a>' %
reverse('crits-samples-views-view_upload_list',
args=[filedata.name, result]))
response = {'success': True, 'message': message}
md5_response = result
# regular file upload; result is a list with a single dict
else:
response['success'] = result[0].get('success', False)
response['message'] = result[0].get(
'message', response.get('message'))
try:
md5_response = [result[0].get('object').md5]
except:
md5_response = None
if response['success']:
if request.POST.get('email') and md5_response:
for s in md5_response:
email_errmsg = mail_sample(s, [request.user.email])
if email_errmsg is not None:
msg = "<br>Error emailing sample %s: %s\n" % (
s, email_errmsg)
response['message'] = response['message'] + msg
if reload_page:
response['redirect_url'] = reverse(
'crits-samples-views-detail', args=[related_md5])
return render(request, "file_upload_response.html",
{'response': json.dumps(response)})
else:
if related_md5: #if this is a 'related' upload, hide field so it doesn't reappear
form.fields['related_md5'].widget = forms.HiddenInput()
return render(
request, 'file_upload_response.html', {
'response':
json.dumps({
'success': False,
'form': form.as_table()
})
})
def upload_file(request, related_md5=None):
"""
Upload a new sample.
:param request: Django request object (Required)
:type request: :class:`django.http.HttpRequest`
:param related_md5: The MD5 of a related sample.
:type related_md5: str
:returns: :class:`django.http.HttpResponse`
"""
if request.method == 'POST':
form = UploadFileForm(request.user, request.POST, request.FILES)
email_errmsg = None
if form.is_valid():
response = {
'success': False,
'message': 'Unknown error; unable to upload file.'
}
inherited_source = None
backdoor = form.cleaned_data['backdoor']
campaign = form.cleaned_data['campaign']
confidence = form.cleaned_data['confidence']
source = form.cleaned_data['source']
method = form.cleaned_data['method']
reference = form.cleaned_data['reference']
analyst = request.user.username
if related_md5:
reload_page = True
else:
reload_page = False
related_md5 = form.cleaned_data['related_md5']
if related_md5:
related_sample = Sample.objects(md5=related_md5).first()
if not related_sample:
response[
'message'] = "Upload Failed. Unable to locate related sample."
return render_to_response(
"file_upload_response.html",
{'response': json.dumps(response)},
RequestContext(request))
# If selected, new sample inherits the campaigns of the related sample.
if form.cleaned_data['inherit_campaigns']:
if campaign:
related_sample.campaign.append(
EmbeddedCampaign(name=campaign,
confidence=confidence,
analyst=analyst))
campaign = related_sample.campaign
# If selected, new sample inherits the sources of the related sample
if form.cleaned_data['inherit_sources']:
inherited_source = related_sample.source
backdoor_name = None
backdoor_version = None
if backdoor:
backdoor = backdoor.split('|||')
if len(backdoor) == 2:
(backdoor_name,
backdoor_version) = backdoor[0], backdoor[1]
try:
if request.FILES:
result = handle_uploaded_file(
request.FILES['filedata'],
source,
method=method,
reference=reference,
file_format=form.cleaned_data['file_format'],
password=form.cleaned_data['password'],
user=analyst,
campaign=campaign,
confidence=confidence,
related_md5=related_md5,
bucket_list=form.cleaned_data[
form_consts.Common.BUCKET_LIST_VARIABLE_NAME],
ticket=form.cleaned_data[
form_consts.Common.TICKET_VARIABLE_NAME],
inherited_source=inherited_source,
backdoor_name=backdoor_name,
backdoor_version=backdoor_version)
else:
result = handle_uploaded_file(
None,
source,
method=method,
reference=reference,
file_format=form.cleaned_data['file_format'],
password=None,
user=analyst,
campaign=campaign,
confidence=confidence,
related_md5=related_md5,
filename=request.POST['filename'].strip(),
md5=request.POST['md5'].strip().lower(),
sha1=request.POST['sha1'].strip().lower(),
sha256=request.POST['sha256'].strip().lower(),
bucket_list=form.cleaned_data[
form_consts.Common.BUCKET_LIST_VARIABLE_NAME],
ticket=form.cleaned_data[
form_consts.Common.TICKET_VARIABLE_NAME],
inherited_source=inherited_source,
is_return_only_md5=False,
backdoor_name=backdoor_name,
backdoor_version=backdoor_version)
except ZipFileError, zfe:
return render_to_response(
'file_upload_response.html', {
'response':
json.dumps({
'success': False,
'message': zfe.value
})
}, RequestContext(request))
else:
if len(result) > 1:
filedata = request.FILES['filedata']
message = ('<a href="%s">View Uploaded Samples.</a>' %
reverse('crits.samples.views.view_upload_list',
args=[filedata.name, result]))
response = {'success': True, 'message': message}
md5_response = result
elif len(result) == 1:
md5_response = None
if not request.FILES:
response['success'] = result[0].get('success', False)
if (response['success'] == False):
response['message'] = result[0].get(
'message', response.get('message'))
else:
md5_response = [result[0].get('object').md5]
else:
md5_response = [result[0]]
response['success'] = True
if md5_response != None:
response['message'] = (
'File uploaded successfully. <a href="%s">View Sample.</a>'
% reverse('crits.samples.views.detail',
args=md5_response))
if response['success']:
if request.POST.get('email'):
for s in md5_response:
email_errmsg = mail_sample(s, [request.user.email])
if email_errmsg is not None:
msg = "<br>Error emailing sample %s: %s\n" % (
s, email_errmsg)
response['message'] = response['message'] + msg
if reload_page:
response['redirect_url'] = reverse(
'crits.samples.views.detail', args=[related_md5])
return render_to_response("file_upload_response.html",
{'response': json.dumps(response)},
RequestContext(request))
else:
if related_md5: #if this is a 'related' upload, hide field so it doesn't reappear
form.fields['related_md5'].widget = forms.HiddenInput()
return render_to_response(
'file_upload_response.html', {
'response':
json.dumps({
'success': False,
'form': form.as_table()
})
}, RequestContext(request))
def upload_attach(request, email_id):
"""
Upload an attachment for an email.
:param request: Django request object (Required)
:type request: :class:`django.http.HttpRequest`
:param email_id: The ObjectId of the email to upload attachment for.
:type email_id: str
:returns: :class:`django.http.HttpResponse`
"""
redirect = reverse('crits-emails-views-email_detail', args=[email_id])
user = request.user
if request.method != 'POST':
return HttpResponseRedirect(redirect)
file_form = UploadFileForm(request.user, request.POST, request.FILES)
json_reply = {'success': False}
if not file_form.is_valid():
file_form.fields['related_md5_event'].widget = forms.HiddenInput() #hide field so it doesn't reappear
json_reply['form'] = file_form.as_table()
return render(request, 'file_upload_response.html', {'response': json.dumps(json_reply)})
if not user.has_access_to(EmailACL.ADD_ATTACHMENT):
json_reply['message'] = "User does not have permission to upload attachment."
return render(request, 'file_upload_response.html',
{'response': json.dumps(json_reply)})
analyst = request.user.username
users_sources = user_sources(analyst)
method = file_form.cleaned_data['method'] or "Add to Email"
bucket_list = file_form.cleaned_data.get(form_consts.Common.BUCKET_LIST_VARIABLE_NAME)
ticket = file_form.cleaned_data.get(form_consts.Common.TICKET_VARIABLE_NAME)
email_addr = None
if request.POST.get('email'):
email_addr = request.user.email
email = Email.objects(id=email_id,
source__name__in=users_sources).first()
if not email:
json_reply['message'] = "Could not find email."
return render(request, 'file_upload_response.html', {'response': json.dumps(json_reply)})
result = create_email_attachment(email,
file_form,
analyst,
file_form.cleaned_data['source'],
method,
file_form.cleaned_data['reference'],
file_form.cleaned_data['campaign'],
file_form.cleaned_data['confidence'],
bucket_list,
ticket,
request.FILES.get('filedata'),
request.POST.get('filename'),
request.POST.get('md5'),
email_addr,
file_form.cleaned_data['inherit_sources'])
# If successful, tell the browser to redirect back to this email.
if result['success']:
result['redirect_url'] = redirect
return render(request, 'file_upload_response.html', {'response': json.dumps(result)})
def upload_file(request):
"""
Upload a new sample.
:param request: Django request object (Required)
:type request: :class:`django.http.HttpRequest`
:returns: :class:`django.http.HttpResponse`
"""
if request.method == 'POST':
form = UploadFileForm(request.user, request.POST, request.FILES)
email_errmsg = None
if form.is_valid():
campaign = form.cleaned_data['campaign']
confidence = form.cleaned_data['confidence']
source = form.cleaned_data['source']
reference = form.cleaned_data['reference']
try:
if request.FILES:
sample_md5 = handle_uploaded_file(
request.FILES['filedata'],
source,
reference,
form.cleaned_data['file_format'],
form.cleaned_data['password'],
user=request.user.username,
campaign=campaign,
confidence=confidence,
parent_md5=form.cleaned_data['parent_md5'],
bucket_list=form.cleaned_data[
form_consts.Common.BUCKET_LIST_VARIABLE_NAME],
ticket=form.cleaned_data[
form_consts.Common.TICKET_VARIABLE_NAME])
else:
filename = request.POST['filename'].strip()
md5 = request.POST['md5'].strip().lower()
sample_md5 = handle_uploaded_file(
None,
source,
reference,
form.cleaned_data['file_format'],
None,
user=request.user.username,
campaign=campaign,
confidence=confidence,
parent_md5=form.cleaned_data['parent_md5'],
filename=filename,
md5=md5,
bucket_list=form.cleaned_data[
form_consts.Common.BUCKET_LIST_VARIABLE_NAME],
ticket=form.cleaned_data[
form_consts.Common.TICKET_VARIABLE_NAME],
is_return_only_md5=False)
if 'email' in request.POST:
for s in sample_md5:
email_errmsg = mail_sample(s, [request.user.email])
except ZipFileError, zfe:
return render_to_response(
'file_upload_response.html', {
'response':
json.dumps({
'success': False,
'message': zfe.value
})
}, RequestContext(request))
else:
response = {
'success': False,
'message': 'Unknown error; unable to upload file.'
}
if len(sample_md5) > 1:
filedata = request.FILES['filedata']
message = ('<a href="%s">View Uploaded Samples.</a>' %
reverse('crits.samples.views.view_upload_list',
args=[filedata.name, sample_md5]))
response = {'success': True, 'message': message}
elif len(sample_md5) == 1:
md5_response = None
if not request.FILES:
response['success'] = sample_md5[0].get(
'success', False)
if (response['success'] == False):
response['message'] = sample_md5[0].get(
'message', response.get('message'))
else:
md5_response = sample_md5[0].get('object').md5
else:
md5_response = sample_md5[0]
response['success'] = True
if md5_response != None:
response['message'] = (
'File uploaded successfully. <a href="%s">View Sample.</a>'
% reverse('crits.samples.views.detail',
args=[md5_response]))
if email_errmsg is not None:
msg = "<br>Error sending email: %s" % email_errmsg
response['message'] = response['message'] + msg
return render_to_response("file_upload_response.html",
{'response': json.dumps(response)},
RequestContext(request))
else:
return render_to_response(
'file_upload_response.html', {
'response':
json.dumps({
'success': False,
'form': form.as_table()
})
}, RequestContext(request))
