Class: Wmap::WpTracker

Inherits:

Object

• Object
• Wmap::WpTracker

Includes:

Utils

Defined in:

lib/wmap/wp_tracker.rb

Overview

Main class to automatically track the site inventory

Constant Summary

Max_http_timeout =

set hard stop limit of http time-out to 8 seconds, in order to avoid severe performance penalty for certain ‘weird’ site(s)

8000

Constants included from Utils::DomainRoot

Utils::DomainRoot::File_ccsld, Utils::DomainRoot::File_cctld, Utils::DomainRoot::File_gtld, Utils::DomainRoot::File_tld

Instance Attribute Summary

• #data_dir ⇒ Object

  include Singleton.

• #http_timeout ⇒ Object

  include Singleton.

• #known_wp_sites ⇒ Object readonly

  Returns the value of attribute known_wp_sites.

• #max_parallel ⇒ Object

  include Singleton.

• #sites_wp ⇒ Object

  include Singleton.

• #verbose ⇒ Object

  include Singleton.

Instance Method Summary

• #add(url) ⇒ Object

  ‘setter’ to add wordpress entry to the cache one at a time.

• #initialize(params = {}) ⇒ WpTracker constructor

  WordPress checker instance default variables.

• #is_wp?(url) ⇒ Boolean

  logic to determin if it’s a wordpress site.

• #load_from_file(file = @file_stores, lc = true) ⇒ Object

  ‘setter’ to load the known wordpress sites into an instance variable.

• #open_url(url) ⇒ Object

  Wrapper for the OpenURI open method - create an open_uri object and return the reference upon success.

• #read_url(url) ⇒ Object

  Wrapper to use OpenURI method ‘read’ to return url body contents.

• #refresh(num = @max_parallel) ⇒ Object

  add wordpress site entries (from a sitetracker list).

• #save_to_file!(file_wps = @file_wps, wps = @known_wp_sites) ⇒ Object (also: #save!)

  Save the current domain hash table into a file.

• #wp_css?(site) ⇒ Boolean

  Wordpress detection checkpoint - install.css.

• #wp_login?(url) ⇒ Boolean

  Wordpress detection checkpoint - wp-login.

• #wp_meta?(url) ⇒ Boolean

  Wordpress detection checkpoint - meta generator.

• #wp_readme?(site) ⇒ Boolean

  Wordpress detection checkpoint - readme.html.

• #wp_rpc?(url) ⇒ Boolean

  Wordpress detection checkpoint - xml-rpc.

• #wp_ver(url) ⇒ Object

  Extract the WordPress version.

• #wp_ver_login(url, pattern) ⇒ Object

  Identify wordpress version through the login page.

• #wp_ver_meta(url) ⇒ Object

  Identify wordpress version through the meta link.

• #wp_ver_readme(url) ⇒ Object

  Wordpress version detection via - readme.html.

Methods included from Utils

#cidr_2_ips, #file_2_hash, #file_2_list, #get_nameserver, #get_nameservers, #host_2_ip, #host_2_ips, #is_cidr?, #is_fqdn?, #is_ip?, #list_2_file, #reverse_dns_lookup, #sort_ips, #valid_dns_record?, #zone_transferable?

Methods included from Utils::Logger

#wlog

Methods included from Utils::UrlMagic

#create_absolute_url_from_base, #create_absolute_url_from_context, #host_2_url, #is_site?, #is_ssl?, #is_url?, #make_absolute, #normalize_url, #url_2_host, #url_2_path, #url_2_port, #url_2_site, #urls_on_same_domain?

Methods included from Utils::DomainRoot

#get_domain_root, #get_sub_domain, #is_domain_root?, #print_ccsld, #print_cctld, #print_gtld

Constructor Details

#initialize(params = {}) ⇒ WpTracker

WordPress checker instance default variables

# File 'lib/wmap/wp_tracker.rb', line 27

def initialize (params = {})
	@verbose=params.fetch(:verbose, false)
	@data_dir=params.fetch(:data_dir, File.dirname(__FILE__)+'/../../data/')
	Dir.mkdir(@data_dir) unless Dir.exist?(@data_dir)
   wp_sites=@data_dir+'wp_sites'
   @file_wps=params.fetch(:sites_wp, wp_sites)
	@http_timeout=params.fetch(:http_timeout, 5000)
	@max_parallel=params.fetch(:max_parallel, 40)
	Dir.mkdir(@data_dir) unless Dir.exist?(@data_dir)
	@log_file=@data_dir + "wp_checker.log"
   @known_wp_sites=load_from_file(@file_wps)
end

Instance Attribute Details

#data_dir ⇒ Object

include Singleton

# File 'lib/wmap/wp_tracker.rb', line 21

def data_dir
  @data_dir
end

#http_timeout ⇒ Object

include Singleton

# File 'lib/wmap/wp_tracker.rb', line 21

def http_timeout
  @http_timeout
end

#known_wp_sites ⇒ Object (readonly)

Returns the value of attribute known_wp_sites.

# File 'lib/wmap/wp_tracker.rb', line 22

def known_wp_sites
  @known_wp_sites
end

#max_parallel ⇒ Object

include Singleton

# File 'lib/wmap/wp_tracker.rb', line 21

def max_parallel
  @max_parallel
end

#sites_wp ⇒ Object

include Singleton

# File 'lib/wmap/wp_tracker.rb', line 21

def sites_wp
  @sites_wp
end

#verbose ⇒ Object

include Singleton

# File 'lib/wmap/wp_tracker.rb', line 21

def verbose
  @verbose
end

Instance Method Details

#add(url) ⇒ Object

‘setter’ to add wordpress entry to the cache one at a time

# File 'lib/wmap/wp_tracker.rb', line 98

def add(url)
   begin
	  puts "Add entry to the local cache table: #{url}" if @verbose
     site=url_2_site(url)
		if @known_wp_sites.key?(site)
			puts "Site is already exist. Skipping: #{site}"
		else
			record=Hash.new
			if is_wp?(site)
         record[site]=true
       else
         record[site]=false
       end
			puts "Entry loaded: #{record}"
		end
     @known_wp_sites.merge!(record)
     return record
	rescue => ee
		puts "Exception on method #{__method__}: #{ee}: #{url}" if @verbose
	end
end

#is_wp?(url) ⇒ Boolean

logic to determin if it’s a wordpress site

Returns:

• (Boolean)

# File 'lib/wmap/wp_tracker.rb', line 121

def is_wp?(url)
	#begin
		site=url_2_site(url)
		if wp_readme?(site)
			found=true
		elsif wp_css?(site)
			found=true
		elsif wp_meta?(site)
			found=true
		elsif wp_login?(site)
			found=true
		elsif wp_rpc?(site)
			found=true
		else
			found=false
		end
		return found
	#rescue => ee
	#	puts "Exception on method #{__method__}: #{ee}: #{url}" if @verbose
	#end
end

#load_from_file(file = @file_stores, lc = true) ⇒ Object

‘setter’ to load the known wordpress sites into an instance variable

# File 'lib/wmap/wp_tracker.rb', line 42

def load_from_file (file=@file_stores, lc=true)
	puts "Loading trusted file: #{file}"	if @verbose
	begin
		known_wp_sites=Hash.new
		f_wp_sites=File.open(file, 'r')
		f_wp_sites.each_line do |line|
			puts "Processing line: #{line}" if @verbose
			line=line.chomp.strip
			next if line.nil?
			next if line.empty?
			next if line =~ /^\s*#/
			line=line.downcase if lc==true
			entry=line.split(',')
			if known_wp_sites.key?(entry[0])
				next
			else
				if entry[1] =~ /yes/i
					known_wp_sites[entry[0]]=true
				else
					known_wp_sites[entry[0]]=false
				end
			end

		end
		f_wp_sites.close
		return known_wp_sites
	rescue => ee
		puts "Exception on method #{__method__}: #{ee}" if @verbose
		return nil
	end
end

#open_url(url) ⇒ Object

Wrapper for the OpenURI open method - create an open_uri object and return the reference upon success

# File 'lib/wmap/wp_tracker.rb', line 188

def open_url(url)
#url_object = nil
puts "Open url #{url} by creating an open_uri object. Return the reference upon success." if @verbose
if url =~ /http\:/i
	# patch for allow the 'un-safe' URL redirection i.e. https://www.example.com -> http://www.example.com
	url_object = open(url, :allow_redirections=>:safe, :read_timeout=>Max_http_timeout/1000)
elsif url =~ /https\:/i
	url_object = open(url,:ssl_verify_mode => 0, :allow_redirections =>:safe, :read_timeout=>Max_http_timeout/1000)
else
	raise "Invalid URL format - please specify the protocol prefix http(s) in the URL: #{url}"
end
return url_object
end

#read_url(url) ⇒ Object

Wrapper to use OpenURI method ‘read’ to return url body contents

# File 'lib/wmap/wp_tracker.rb', line 174

def read_url(url)
   begin
     puts "Wrapper to return the OpenURI object for url: #{url}" if @verbose
		url_object=open_url(url)
		html_body=url_object.read
     doc = Nokogiri::HTML(html_body)
     return doc
   rescue => ee
     puts "Exception on method #{__method__}: #{ee}" if @verbose
     return nil
   end
end

#refresh(num = @max_parallel) ⇒ Object

add wordpress site entries (from a sitetracker list)

# File 'lib/wmap/wp_tracker.rb', line 144

def refresh (num=@max_parallel)
   #begin
	  puts "Add entries to the local cache table from site tracker: " if @verbose
		results=Hash.new
		wps=Wmap::SiteTracker.instance.known_sites.keys
		if wps.size > 0
			Parallel.map(wps, :in_processes => num) { |target|
				add(target)
			}.each do |process|
				if process.nil?
					next
				elsif process.empty?
					#do nothing
				else
					results.merge!(process)
				end
			end
			@known_wp_sites.merge!(results)
			puts "Done loading entries."
			return results
		else
			puts "Error: no entry is loaded. Please check your list and try again."
		end
		return results
	#rescue => ee
	#	puts "Exception on method #{__method__}: #{ee}" if @verbose
	#end
end

#save_to_file!(file_wps = @file_wps, wps = @known_wp_sites) ⇒ Object Also known as: save!

Save the current domain hash table into a file

# File 'lib/wmap/wp_tracker.rb', line 75

def save_to_file!(file_wps=@file_wps, wps=@known_wp_sites)
	puts "Saving the current wordpress site table from memory to file: #{file_wps} ..." if @verbose
	begin
		timestamp=Time.now
		f=File.open(file_wps, 'w')
		f.write "# Local wps file created by class #{self.class} method #{__method__} at: #{timestamp}\n"
		f.write "# domain name, free zone transfer detected?\n"
		wps.keys.sort.map do |key|
			if wps[key]
				f.write "#{key}, yes\n"
			else
				f.write "#{key}, no\n"
			end
		end
		f.close
		puts "WordPress site cache table is successfully saved: #{file_wps}"
	rescue => ee
		puts "Exception on method #{__method__}: #{ee}" if @verbose
	end
end

#wp_css?(site) ⇒ Boolean

Wordpress detection checkpoint - install.css

Returns:

• (Boolean)

# File 'lib/wmap/wp_tracker.rb', line 222

def wp_css?(site)
  css_url=site + "wp-admin/css/install.css"
  k=Wmap::UrlChecker.new
  if k.response_code(css_url) == 200
    k=nil
    parser = CssParser::Parser.new
    parser.load_uri!(css_url)
    rule = parser.find_by_selector('#logo a')
    if rule.length >0
      if rule[0] =~ /wordpress/i
        return true
      end
    end
  else
    k=nil
    return false
  end
  return false
end

#wp_login?(url) ⇒ Boolean

Wordpress detection checkpoint - wp-login

Returns:

• (Boolean)

# File 'lib/wmap/wp_tracker.rb', line 260

def wp_login?(url)
site=url_2_site(url)
login_url=site + "wp-login.php"
  k=Wmap::UrlChecker.new
  if k.response_code(login_url) == 200
    k=nil
    doc=read_url(login_url)
    links=doc.css('link')
    if links.to_s =~ /login.min.css/i
      return true
    else
      return false
    end
  end
return false
end

#wp_meta?(url) ⇒ Boolean

Wordpress detection checkpoint - meta generator

Returns:

• (Boolean)

# File 'lib/wmap/wp_tracker.rb', line 243

def wp_meta?(url)
site=url_2_site(url)
  k=Wmap::UrlChecker.new
  if k.response_code(site) == 200
    k=nil
    doc=read_url(site)
    meta=doc.css('meta')
    if meta.to_s =~ /wordpress/i
      return true
    else
      return false
    end
  end
return false
end

#wp_readme?(site) ⇒ Boolean

Wordpress detection checkpoint - readme.html

Returns:

• (Boolean)

# File 'lib/wmap/wp_tracker.rb', line 203

def wp_readme?(site)
  readme_url=site + "readme.html"
  k=Wmap::UrlChecker.new
  if k.response_code(readme_url) == 200
    k=nil
    doc=read_url(readme_url)
    title=doc.css('title')
    if title.to_s =~ /wordpress/i
      return true
    else
      return false
    end
  else
    k=nil
    return false
  end
end

#wp_rpc?(url) ⇒ Boolean

Wordpress detection checkpoint - xml-rpc

Returns:

• (Boolean)

# File 'lib/wmap/wp_tracker.rb', line 278

def wp_rpc?(url)
site=url_2_site(url)
rpc_url=site + "xmlrpc.php"
  k=Wmap::UrlChecker.new
#puts "res code", k.response_code(rpc_url)
  if k.response_code(rpc_url) == 405 # method not allowed
    k=nil
    return true
  end
return false
end

#wp_ver(url) ⇒ Object

Extract the WordPress version

# File 'lib/wmap/wp_tracker.rb', line 291

def wp_ver(url)
	if !wp_ver_readme(url).nil?
		return wp_ver_readme(url)
	elsif !wp_ver_meta(url).nil?
		return wp_ver_meta(url)
	elsif !wp_ver_login(url,"login.min.css").nil?
		return wp_ver_login(url,"login.min.css")
	elsif !wp_ver_login(url,"buttons.min.css").nil?
		return wp_ver_login(url,"buttons.min.css")
	elsif !wp_ver_login(url,"wp-admin.min.css").nil?
		return wp_ver_login(url,"wp-admin.min.css")
	else
		return nil
	end
end

#wp_ver_login(url, pattern) ⇒ Object

Identify wordpress version through the login page

# File 'lib/wmap/wp_tracker.rb', line 308

def wp_ver_login(url,pattern)
puts "Check for #{pattern}" if @verbose
site=url_2_site(url)
login_url=site + "wp-login.php"
  k=Wmap::UrlChecker.new
#puts "Res code: #{k.response_code(login_url)}" if @verbose
  if k.response_code(login_url) == 200
    doc=read_url(login_url)
	#puts doc.inspect
    links=doc.css('link')
	#puts links.inspect if @verbose
	links.each do |tag|
     if tag.to_s.include?(pattern)
			puts tag.to_s if @verbose
			k=nil
       return tag.to_s.scan(/[\d+\.]+\d+/).first
     end
	end
  end
  k=nil
  return nil
end

#wp_ver_meta(url) ⇒ Object

Identify wordpress version through the meta link

# File 'lib/wmap/wp_tracker.rb', line 332

def wp_ver_meta(url)
site=url_2_site(url)
  k=Wmap::UrlChecker.new
  if k.response_code(site) == 200
    doc=read_url(site)
	#puts doc.inspect
    meta=doc.css('meta')
	#puts meta.inspect
	meta.each do |tag|
     if tag.to_s =~ /wordpress/i
			#puts tag.to_s
			k=nil
       return tag.to_s.scan(/[\d+\.]+\d+/).first
     end
	end
  end
  k=nil
  return nil
end

#wp_ver_readme(url) ⇒ Object

Wordpress version detection via - readme.html

# File 'lib/wmap/wp_tracker.rb', line 353

def wp_ver_readme(url)
	site=url_2_site(url)
   readme_url=site + "readme.html"
   k=Wmap::UrlChecker.new
	puts "Res code: #{k.response_code(readme_url)}" if @verbose
   if k.response_code(readme_url) == 200
     k=nil
     doc=read_url(readme_url)
		puts doc if @verbose
     logo=doc.css('h1#logo')[0]
     puts logo.inspect if @verbose
		return logo.to_s.scan(/[\d+\.]+\d+/).first
   end
   k=nil
   return nil
end