Update v0.13

Author: j3ssie

cmd/config.go

@@ -2,6 +2,7 @@ package cmd
 
 import (
 	"fmt"
+	"github.com/fatih/color"
 	"os"
 	"path"
 	"path/filepath"
@@ -26,32 +27,31 @@ func init() {
 	configCmd.Flags().Bool("clean", false, "Clean old record")
 	configCmd.Flags().StringP("action", "a", "", "Action")
 	// used for cred action
-	configCmd.Flags().String("user", "", "Username")
-	configCmd.Flags().String("pass", "", "Password")
-	configCmd.Flags().Bool("hh", false, "More helper")
-	configCmd.Flags().Bool("mics", true, "Skip import mics signatures")
 	configCmd.Flags().Bool("poll", false, "Polling all record in OOB config")
-	// used for update action
 	configCmd.Flags().String("secret", "", "Secret of Burp Collab")
 	configCmd.Flags().String("collab", "", "List of Burp Collab File")
-	configCmd.Flags().String("repo", "", "Signature Repo")
-	configCmd.Flags().StringVarP(&options.Server.Key, "key", "K", "", "Private Key to pull repo")
+	// used for update action
+	configCmd.Flags().BoolVar(&options.Config.SkipMics, "mics", true, "Skip import mics signatures")
+	configCmd.Flags().BoolVarP(&options.Config.Forced, "yes", "y", false, "Forced to delete old folder")
+	configCmd.Flags().StringVar(&options.Config.Username, "user", "", "Username")
+	configCmd.Flags().StringVar(&options.Config.Password, "pass", "", "Password")
+	configCmd.Flags().StringVar(&options.Config.Repo, "repo", "", "Signature Repo")
+	configCmd.Flags().StringVarP(&options.Config.PrivateKey, "key", "K", "", "Private Key to pull repo")
 	configCmd.SetHelpFunc(configHelp)
 	RootCmd.AddCommand(configCmd)
 
 }
 
-func runConfig(cmd *cobra.Command, _ []string) error {
+func runConfig(cmd *cobra.Command, args []string) error {
+	sort.Strings(args)
 	// print more help
 	helps, _ := cmd.Flags().GetBool("hh")
-	mics, _ := cmd.Flags().GetBool("mics")
 	if helps == true {
 		HelpMessage()
 		os.Exit(1)
 	}
 	// turn on verbose by default
 	options.Verbose = true
-
 	polling, _ := cmd.Flags().GetBool("poll")
 	// polling all oob
 	if polling == true {
@@ -64,17 +64,41 @@ func runConfig(cmd *cobra.Command, _ []string) error {
 	}
 
 	action, _ := cmd.Flags().GetString("action")
+	// backward compatible
+	if action == "" && len(args) > 0 {
+		action = args[0]
+	}
+	getJaelesEnv(&options)
+
 	switch action {
+	case "init":
+		if utils.FolderExists(options.RootFolder) {
+			if options.Config.Forced {
+				os.RemoveAll(options.RootFolder)
+			} else {
+				mess := fmt.Sprintf("Looks like you already have signatures in %s\nDo you want to to override it?", options.RootFolder)
+				c := utils.PromptConfirm(mess)
+				if c {
+					utils.InforF("Cleaning root folder")
+					os.RemoveAll(options.RootFolder)
+				}
+			}
+		}
+		reloadSignature(options.SignFolder, options.Config.SkipMics)
+		break
 	case "update":
-		// in case we want to in private repo
-		username, _ := cmd.Flags().GetString("user")
-		password, _ := cmd.Flags().GetString("pass")
-		options.Server.Username = username
-		options.Server.Password = password
+		// only ask if use default Repo
+		if utils.FolderExists(options.RootFolder) && options.Config.Repo == "" {
+			mess := fmt.Sprintf("Looks like you already have signatures in %s\nDo you want to to override it?", options.RootFolder)
+			c := utils.PromptConfirm(mess)
+			if c {
+				utils.InforF("Cleaning root folder")
+				os.RemoveAll(options.RootFolder)
+			}
+		}
 		core.UpdatePlugins(options)
-		repo, _ := cmd.Flags().GetString("repo")
-		core.UpdateSignature(options, repo)
-		reloadSignature(path.Join(options.RootFolder, "base-signatures"), mics)
+		core.UpdateSignature(options)
+		reloadSignature(path.Join(options.RootFolder, "base-signatures"), options.Config.SkipMics)
 		break
 	case "clear":
 		utils.GoodF("Cleaning your DB")
@@ -86,10 +110,8 @@ func runConfig(cmd *cobra.Command, _ []string) error {
 		os.RemoveAll(options.RootFolder)
 		break
 	case "cred":
-		username, _ := cmd.Flags().GetString("user")
-		password, _ := cmd.Flags().GetString("pass")
-		database.CreateUser(username, password)
-		utils.GoodF("Create new credentials %v:%v \n", username, password)
+		database.CreateUser(options.Config.Username, options.Config.Password)
+		utils.GoodF("Create new credentials %v:%v \n", options.Config.Username, options.Config.Password)
 		break
 	case "oob":
 		secret, _ := cmd.Flags().GetString("secret")
@@ -99,12 +121,9 @@ func runConfig(cmd *cobra.Command, _ []string) error {
 			database.ImportCollab(secret, collab)
 		}
 		break
-	case "init":
-		reloadSignature(options.SignFolder, mics)
-		break
 	case "reload":
 		os.RemoveAll(path.Join(options.RootFolder, "base-signatures"))
-		reloadSignature(options.SignFolder, mics)
+		reloadSignature(options.SignFolder, options.Config.SkipMics)
 		break
 	case "add":
 		addSignature(options.SignFolder)
@@ -263,34 +282,55 @@ Mics Flags:
 	h += "\nOthers Commands:\n"
 	h += "  jaeles server -s '/tmp/custom-signature/sensitive/.*' -L 2\n"
 	h += "  jaeles server --host 0.0.0.0 --port 5000 -s '/tmp/custom-signature/sensitive/.*' -L 2\n"
-	h += "  jaeles config -a reload --signDir /tmp/standard-signatures/\n"
-	h += "  jaeles config -a add -B /tmp/custom-active-signatures/\n"
-	h += "  jaeles config -a update --repo https://github.com/jaeles-project/jaeles-signatures\n"
+	h += "  jaeles config reload --signDir /tmp/standard-signatures/\n"
+	h += "  jaeles config add -B /tmp/custom-active-signatures/\n"
+	h += "  jaeles config update --repo https://github.com/jaeles-project/jaeles-signatures\n"
 	h += "  jaeles report -o /tmp/scanned/out\n"
 	h += "  jaeles report -o /tmp/scanned/out --title 'Passive Report'\n"
 	h += "  jaeles report -o /tmp/scanned/out --title 'Verbose Report' --sverbose\n"
-	h += "\nOfficial Documentation can be found here: https://jaeles-project.github.io/\n"
 	fmt.Println(h)
+	fmt.Printf("Official Documentation can be found here: %s\n", color.GreenString(libs.DOCS))
+
 }
 
 // HelpMessage print help message
 func HelpMessage() {
-	h := "\nConfig Command example:\n\n"
-	h += "  jaeles config -a init\n\n"
-	h += "  jaeles config -a update --repo http://github.com/jaeles-project/another-signatures --user admin --pass admin\n"
-	h += "  jaeles config -a update --repo [email protected]/jaeles-project/another-signatures -K your_private_key\n"
-	h += "  jaeles config -a clean\n"
-	h += "  jaeles config -a reload\n"
-	h += "  jaeles config -a reload --signDir /tmp/standard-signatures/\n"
-	h += "  jaeles config -a add --signDir /tmp/standard-signatures/\n"
-	h += "  jaeles config -a cred --user sample --pass not123456\n\n"
+	h := `
+Usage:
+  jaeles config [action]
+
+Config Command examples:
+  # Init default signatures
+  jaeles config init
+
+  # Update latest signatures
+  jaeles config update
+  jaeles config update --repo http://github.com/jaeles-project/another-signatures --user admin --pass admin
+  jaeles config update --repo [email protected]/jaeles-project/another-signatures -K your_private_key
+
+  # Reload signatures from a standard signatures folder (contain passives + resources)
+  jaeles config reload --signDir ~/standard-signatures/
+  
+  # Add custom signatures from folder
+  jaeles config add --signDir ~/custom-signatures/
+
+  # Clean old stuff
+  jaeles config clean
+
+  # More examples
+  jaeles config add --signDir /tmp/standard-signatures/
+  jaeles config cred --user sample --pass not123456
+	`
 	fmt.Println(h)
+	fmt.Printf("Official Documentation can be found here: %s\n", color.GreenString(libs.DOCS))
+
 }
 
 func ScanHelp(cmd *cobra.Command, _ []string) {
 	fmt.Println(libs.Banner())
 	fmt.Println(cmd.UsageString())
 	ScanMessage()
+	fmt.Printf("Official Documentation can be found here: %s\n", color.GreenString(libs.DOCS))
 }
 
 // ScanMessage print help message
@@ -315,20 +355,34 @@ func ScanMessage() {
 	h += "  cat urls.txt | grep 'interesting' | jaeles scan -L 5 -c 50 -s 'fuzz/.*' -U list_of_urls.txt --proxy http://127.0.0.1:8080\n"
 	h += "\n"
 	fmt.Println(h)
+	fmt.Printf("Official Documentation can be found here: %s\n", color.GreenString(libs.DOCS))
 }
 
 // ServerHelp report help message
 func ServerHelp(cmd *cobra.Command, _ []string) {
 	fmt.Println(libs.Banner())
 	fmt.Println(cmd.UsageString())
+	fmt.Printf("Official Documentation can be found here: %s\n", color.GreenString(libs.DOCS))
+
 }
 
 // ReportHelp report help message
 func ReportHelp(cmd *cobra.Command, _ []string) {
 	fmt.Println(libs.Banner())
 	fmt.Println(cmd.UsageString())
+	fmt.Printf("Official Documentation can be found here: %s\n", color.GreenString(libs.DOCS))
+}
+
+func getJaelesEnv(options *libs.Options) {
+	if utils.GetOSEnv("JAELES_REPO") != "JAELES_REPO" {
+		options.Config.Repo = utils.GetOSEnv("JAELES_REPO")
+	}
+	if utils.GetOSEnv("JAELES_KEY") != "JAELES_KEY" {
+		options.Config.PrivateKey = utils.GetOSEnv("JAELES_KEY")
+	}
 }
 
+// CleanOutput clean the output folder in case nothing found
 func CleanOutput() {
 	// clean output
 	if utils.DirLength(options.Output) == 0 {

cmd/root.go

@@ -128,6 +128,7 @@ func initConfig() {
 		_, err = database.InitDB(utils.NormalizePath(options.Server.DBPath))
 		if err != nil {
 			fmt.Fprintf(os.Stderr, "Can't connect to DB at %v\n", options.Server.DBPath)
+			fmt.Fprintf(os.Stderr, "Use '--no-db' for to disable DB connection if you want.\n")
 			os.Exit(-1)
 		}
 	}

core/config.go

@@ -23,7 +23,7 @@ func InitConfig(options *libs.Options) {
 		os.MkdirAll(options.RootFolder, 0750)
 		// cloning default repo
 		UpdatePlugins(*options)
-		UpdateSignature(*options, "")
+		UpdateSignature(*options)
 	}
 
 	configPath := path.Join(options.RootFolder, "config.yaml")

core/update.go

@@ -33,12 +33,12 @@ func UpdatePlugins(options libs.Options) {
 }
 
 // UpdateSignature update latest UI from UI repo
-func UpdateSignature(options libs.Options, customRepo string) {
+func UpdateSignature(options libs.Options) {
 	signPath := path.Join(options.RootFolder, "base-signatures")
-
 	url := libs.SIGNREPO
-	if customRepo != "" {
-		url = customRepo
+	// in case we want to in private repo
+	if options.Config.Repo != "" {
+		url = options.Config.Repo
 	}
 
 	utils.GoodF("Cloning Signature from: %v", url)
@@ -49,16 +49,16 @@ func UpdateSignature(options libs.Options, customRepo string) {
 		os.RemoveAll(options.ResourcesFolder)
 		os.RemoveAll(options.ThirdPartyFolder)
 	}
-	if options.Server.Key != "" {
-		cmd := fmt.Sprintf("GIT_SSH_COMMAND='ssh -o StrictHostKeyChecking=no -i %v' git clone --depth=1 %v %v", options.Server.Key, url, signPath)
+	if options.Config.PrivateKey != "" {
+		cmd := fmt.Sprintf("GIT_SSH_COMMAND='ssh -o StrictHostKeyChecking=no -i %v' git clone --depth=1 %v %v", options.Config.PrivateKey, url, signPath)
 		Execution(cmd)
 	} else {
 		var err error
 		if options.Server.Username != "" && options.Server.Password != "" {
 			_, err = git.PlainClone(signPath, false, &git.CloneOptions{
 				Auth: &http.BasicAuth{
-					Username: options.Server.Username,
-					Password: options.Server.Password,
+					Username: options.Config.Username,
+					Password: options.Config.Password,
 				},
 				URL:               url,
 				RecurseSubmodules: git.DefaultSubmoduleRecursionDepth,

libs/options.go

@@ -52,12 +52,13 @@ type Options struct {
 	AlwaysTrue        bool
 	BaseRoot          bool
 	BurpProxy         bool
-	Server            Server
-	Report            Report
 	ChunkDir          string
 	ChunkRun          bool
 	ChunkSize         int
 	ChunkLimit        int
+	Server            Server
+	Report            Report
+	Config            Config
 }
 
 // Report options for api server
@@ -84,6 +85,16 @@ type Server struct {
 	Key          string
 }
 
+// Config options for api server
+type Config struct {
+	Forced     bool
+	SkipMics   bool
+	Username   string
+	Password   string
+	Repo       string
+	PrivateKey string
+}
+
 // Job define job for running routine
 type Job struct {
 	URL  string

libs/signature.go

@@ -13,6 +13,7 @@ type Signature struct {
 	Donce bool
 	Info  struct {
 		Name       string
+		Author     string
 		Risk       string
 		Confidence string
 		Category   string

libs/version.go

@@ -2,9 +2,11 @@ package libs
 
 const (
 	// VERSION current Jaeles version
-	VERSION = "beta v0.12.4"
+	VERSION = "beta v0.13"
 	// AUTHOR author of this
 	AUTHOR = "@j3ssiejjj"
+	// DOCS link to official documentation
+	DOCS = "http://jaeles-project.github.io/"
 	// SIGNREPO default repo to get signature
 	SIGNREPO = "https://github.com/jaeles-project/jaeles-signatures"
 	// UIREPO default repo to get UI

utils/helper.go

@@ -7,6 +7,7 @@ import (
 	"fmt"
 	"io"
 	"io/ioutil"
+	"log"
 	"os"
 	"path"
 	"path/filepath"
@@ -387,3 +388,23 @@ func ChunkFileBySize(source string, chunk int) [][]string {
 	}
 	return divided
 }
+
+func PromptConfirm(s string) bool {
+	reader := bufio.NewReader(os.Stdin)
+	for {
+		fmt.Printf("%s [y/n]: ", s)
+
+		response, err := reader.ReadString('\n')
+		if err != nil {
+			log.Fatal(err)
+		}
+
+		response = strings.ToLower(strings.TrimSpace(response))
+
+		if response == "y" || response == "yes" {
+			return true
+		} else if response == "n" || response == "no" {
+			return false
+		}
+	}
+}