ail-framework/bin/BankAccount.py

125 lines
3.6 KiB
Python
Raw Permalink Normal View History

2018-07-26 13:31:58 +00:00
#!/usr/bin/env python3
# -*-coding:UTF-8 -*
"""
2018-07-27 08:20:03 +00:00
The BankAccount Module
2018-07-26 13:31:58 +00:00
======================
2018-07-31 08:58:23 +00:00
It apply IBAN regexes on paste content and warn if above a threshold.
2018-07-26 13:31:58 +00:00
"""
import redis
import time
2018-08-01 13:26:29 +00:00
import redis
import datetime
2018-07-26 13:31:58 +00:00
import re
import string
2018-07-27 08:20:03 +00:00
from itertools import chain
2018-07-26 13:31:58 +00:00
from packages import Paste
from pubsublogger import publisher
from Helper import Process
import signal
class TimeoutException(Exception):
pass
def timeout_handler(signum, frame):
raise TimeoutException
signal.signal(signal.SIGALRM, timeout_handler)
2018-07-27 08:20:03 +00:00
_LETTERS_IBAN = chain(enumerate(string.digits + string.ascii_uppercase),
enumerate(string.ascii_lowercase, 10))
LETTERS_IBAN = {ord(d): str(i) for i, d in _LETTERS_IBAN}
2018-07-26 13:31:58 +00:00
def iban_number(iban):
2018-07-27 08:20:03 +00:00
return (iban[4:] + iban[:4]).translate(LETTERS_IBAN)
2018-07-26 13:31:58 +00:00
def is_valid_iban(iban):
iban_numb = iban_number(iban)
iban_numb_check = iban_number(iban[:2] + '00' + iban[4:])
check_digit = '{:0>2}'.format(98 - (int(iban_numb_check) % 97))
if check_digit == iban[2:4] and int(iban_numb) % 97 == 1:
# valid iban
print('valid iban')
return True
return False
def check_all_iban(l_iban, paste, filename):
nb_valid_iban = 0
for iban in l_iban:
2018-07-27 08:20:03 +00:00
iban = iban[0]+iban[1]+iban[2]
iban = ''.join(e for e in iban if e.isalnum())
#iban = iban.upper()
res = iban_regex_verify.findall(iban)
2018-08-01 13:26:29 +00:00
date = datetime.datetime.now().strftime("%Y%m")
2018-07-27 08:20:03 +00:00
if res:
print('checking '+iban)
if is_valid_iban(iban):
print('------')
nb_valid_iban = nb_valid_iban + 1
2018-09-12 09:21:11 +00:00
server_statistics.hincrby('iban_by_country:'+date, iban[0:2], 1)
2018-07-27 08:20:03 +00:00
2018-07-26 13:31:58 +00:00
if(nb_valid_iban > 0):
to_print = 'Iban;{};{};{};'.format(paste.p_source, paste.p_date, paste.p_name)
publisher.warning('{}Checked found {} IBAN;{}'.format(
2018-11-02 15:07:27 +00:00
to_print, nb_valid_iban, paste.p_rel_path))
2018-07-26 13:31:58 +00:00
msg = 'infoleak:automatic-detection="iban";{}'.format(filename)
p.populate_set_out(msg, 'Tags')
#Send to duplicate
p.populate_set_out(filename, 'Duplicate')
if __name__ == "__main__":
publisher.port = 6380
publisher.channel = "Script"
config_section = 'BankAccount'
p = Process(config_section)
max_execution_time = p.config.getint("BankAccount", "max_execution_time")
2018-08-01 13:26:29 +00:00
# ARDB #
server_statistics = redis.StrictRedis(
host=p.config.get("ARDB_Statistics", "host"),
port=p.config.getint("ARDB_Statistics", "port"),
db=p.config.getint("ARDB_Statistics", "db"),
decode_responses=True)
2018-07-26 13:31:58 +00:00
publisher.info("BankAccount started")
2018-07-27 08:20:03 +00:00
#iban_regex = re.compile(r'\b[A-Za-z]{2}[0-9]{2}(?:[ ]?[0-9]{4}){4}(?:[ ]?[0-9]{1,2})?\b')
iban_regex = re.compile(r'\b([A-Za-z]{2}[ \-]?[0-9]{2})(?=(?:[ \-]?[A-Za-z0-9]){9,30})((?:[ \-]?[A-Za-z0-9]{3,5}){2,6})([ \-]?[A-Za-z0-9]{1,3})\b')
iban_regex_verify = re.compile(r'^([A-Z]{2})([0-9]{2})([A-Z0-9]{9,30})$')
2018-07-26 13:31:58 +00:00
while True:
message = p.get_from_set()
if message is not None:
filename = message
paste = Paste.Paste(filename)
content = paste.get_p_content()
signal.alarm(max_execution_time)
try:
l_iban = iban_regex.findall(content)
except TimeoutException:
2018-11-02 15:07:27 +00:00
print ("{0} processing timeout".format(paste.p_rel_path))
2018-07-26 13:31:58 +00:00
continue
else:
signal.alarm(0)
if(len(l_iban) > 0):
check_all_iban(l_iban, paste, filename)
else:
2018-07-27 08:20:03 +00:00
publisher.debug("Script BankAccount is Idling 10s")
2018-07-26 13:31:58 +00:00
time.sleep(10)