murphysecurity
diff --git a/‎chunkupload/filter.go‎
Lines changed: 50 additions & 0 deletions b/‎chunkupload/filter.go‎
Lines changed: 50 additions & 0 deletions
diff --git a/‎cmd/murphy/internal/scan/cmd.go‎
Lines changed: 2 additions & 0 deletions b/‎cmd/murphy/internal/scan/cmd.go‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎cmd/murphy/internal/scan/scan.go‎
Lines changed: 5 additions & 1 deletion b/‎cmd/murphy/internal/scan/scan.go‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎envinspection/inspection.go‎
Lines changed: 46 additions & 4 deletions b/‎envinspection/inspection.go‎
Lines changed: 46 additions & 4 deletions
@@ -1,7 +1,10 @@
 package chunkupload
 
 import (
+	"encoding/binary"
+	"io"
 	"io/fs"
+	"os"
 	"strings"
 )
 
@@ -27,4 +30,51 @@ var DiscardDot Filter = func(path string, entry fs.DirEntry) (FilterVote, error)
 	}
 	return FilterAdd, nil
 }
+
+var BinaryOnly Filter = func(path string, entry fs.DirEntry) (FilterVote, error) {
+	if entry.IsDir() {
+		return FilterAdd, nil
+	}
+	eFormat, _ := detectFileFormat(path)
+	if eFormat != "" {
+		return FilterAdd, nil
+	}
+	return FilterSkip, nil
+}
+
 var uploadAll Filter = func(path string, entry fs.DirEntry) (FilterVote, error) { return FilterAdd, nil }
+
+func detectFileFormat(path string) (string, error) {
+	file, err := os.Open(path)
+	if err != nil {
+		return "", err
+	}
+	defer func() { _ = file.Close() }()
+
+	magic := make([]byte, 4)
+	_, err = io.ReadFull(file, magic)
+	if err != nil {
+		return "", err
+	}
+
+	// Check ELF (0x7f 'E' 'L' 'F')
+	if magic[0] == 0x7f && magic[1] == 'E' && magic[2] == 'L' && magic[3] == 'F' {
+		return "ELF", nil
+	}
+
+	// Check Mach-O (32-bit or 64-bit, big or little endian)
+	magicNum := binary.BigEndian.Uint32(magic)
+	switch magicNum {
+	case 0xfeedface, 0xcefaedfe, // 32-bit Mach-O
+		0xfeedfacf, 0xcffaedfe, // 64-bit Mach-O
+		0xcafebabe, 0xbebafeca: // FAT binary
+		return "Mach-O", nil
+	}
+
+	// Check PE (first two bytes 'M' 'Z')
+	if magic[0] == 'M' && magic[1] == 'Z' {
+		return "PE", nil
+	}
+
+	return "", nil
+}
@@ -45,6 +45,7 @@ var scanCodeHash bool
 var gradleProjectFilter gradle.ProjectFilter
 var branch string
 var mavenModuleName []string
+var binaryOnly bool
 
 func Cmd() *cobra.Command {
 	var c cobra.Command
@@ -67,6 +68,7 @@ func Cmd() *cobra.Command {
 	c.Flags().Var(&webhookMode, "webhook-mode", "specify the webhook mode, currently supports: simple, full")
 	c.Flags().StringVar(&extraData, "extra-data", "", "specify the extra data")
 	c.Flags().BoolVar(&scanCodeHash, "scan-snippets", false, "Enable scanning of code snippets to detect SBOM and  vulnerabilities. Disabled by default")
+	c.Flags().BoolVar(&binaryOnly, "binary-only", false, "only scan binary files, skip source code scanning")
 	return &c
 }
 
 
@@ -238,7 +238,11 @@ func scan(ctx context.Context, dir string, accessType model.AccessType, mode mod
 	}
 	if task.Mode != model.ScanModeSource || isDeep {
 		cv.DisplayUploading(ctx)
-		e = chunkupload.UploadDirectory(ctx, task.ProjectPath, chunkupload.DiscardDot, chunkupload.Params{
+		var filter = chunkupload.DiscardDot
+		if binaryOnly {
+			filter = chunkupload.BinaryOnly
+		}
+		e = chunkupload.UploadDirectory(ctx, task.ProjectPath, filter, chunkupload.Params{
 			SubtaskId: task.SubtaskId,
 		}, concurrentNumber)
 		if e != nil {
 
@@ -15,7 +15,6 @@ import (
 )
 
 func InspectEnv(ctx context.Context) error {
-	var LOG = logctx.Use(ctx).Sugar()
 	task := model.UseScanTask(ctx)
 	if task == nil {
 		panic("task == nil")
@@ -36,6 +35,20 @@ func InspectEnv(ctx context.Context) error {
 		ModulePath:     "/InstalledSoftware", // never be empty, workaround for the platform issue
 	}
 
+	// 获取软件包列表
+	inspectInstalledSoftware(ctx, &module)
+
+	// 获取进程文件列表
+	inspectProcessFiles(ctx)
+
+	return nil
+}
+
+// 检查已安装的软件
+func inspectInstalledSoftware(ctx context.Context, module *model.Module) {
+	LOG := logctx.Use(ctx).Sugar()
+	task := model.UseScanTask(ctx)
+
 	var scanFunc []func(ctx context.Context) ([]model.DependencyItem, error)
 	if runtime.GOOS == "windows" {
 		scanFunc = append(scanFunc, listInstalledSoftwareWindows /*listRunningProcessExecutableFileWindows*/)
@@ -77,9 +90,38 @@ func InspectEnv(ctx context.Context) error {
 	for i := range module.Dependencies {
 		module.Dependencies[i].IsOnline.SetOnline(false)
 		module.Dependencies[i].IsDirectDependency = true
-		module.Dependencies[i].EcoRepo.Repository = packageManager
+		module.Dependencies[i].EcoRepo.Repository = module.PackageManager
 	}
-	task.Modules = append(task.Modules, module)
+	task.Modules = append(task.Modules, *module)
+}
 
-	return nil
+// 检查进程文件
+func inspectProcessFiles(ctx context.Context) {
+	LOG := logctx.Use(ctx).Sugar()
+	task := model.UseScanTask(ctx)
+
+	// 仅在Linux系统上执行进程文件检查
+	if runtime.GOOS != "linux" {
+		LOG.Info("Process file inspection is only supported on Linux, skipping...")
+		return
+	}
+
+	// 获取进程相关的模块列表
+	processModules, err := listProcessFiles(ctx)
+	if err != nil {
+		LOG.Warnf("Process file inspection error: %s", err)
+		scanerr.Add(ctx, scanerr.Param{
+			Kind:    "process_file_inspection_error",
+			Content: err.Error(),
+		})
+		return
+	}
+
+	// 添加进程模块到任务中
+	if len(processModules) > 0 {
+		task.Modules = append(task.Modules, processModules...)
+		LOG.Infof("Process file inspection succeeded, found %d processes", len(processModules))
+	} else {
+		LOG.Info("No process files found")
+	}
 }