Merge branch 'master' of https://github.com/smicallef/spiderfoot

Author: smicallef

.travis.yml

@@ -5,6 +5,7 @@ language: python
 python:
   - "3.6"
   - "3.8"
+  - "3.9"
 
 cache: pip
 

VERSION

@@ -1 +1 @@
-SpiderFoot 3.3-DEV
+SpiderFoot 3.3

dyn/HEADER.tmpl

@@ -2,7 +2,7 @@
 <html lang="en">
   <head>
     <meta charset="utf-8">
-    <title>SpiderFoot v3.3-DEV</title>
+    <title>SpiderFoot v3.3</title>
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
     <meta name="description" content="">
     <meta name="author" content="">
@@ -64,13 +64,13 @@ class="nav-item"><a href="${docroot}/opts" class="nav-link"><i class="glyphicon
     <div class="modal-content">
 
     <div class="modal-header">
-      <h3 class="modal-title">SpiderFoot 3.3-DEV</h3>
+      <h3 class="modal-title">SpiderFoot 3.3</h3>
     </div>
 
     <div class="modal-body">
     <p>SpiderFoot is an open source, GPL-licensed footprinting tool, created by <a href='https://twitter.com/binarypool' target=_new>Steve Micallef</a>. It is designed to be easy to use, fast and extensible.</p>
     <p>If you have any bugs to report, or requests for enhancements, please contact the support mailing list at <a href=mailto:support@spiderfoot.net>support@spiderfoot.net</a>.
-    <p>You are running version <b>3.3-DEV</b>.</p>
+    <p>You are running version <b>3.3</b>.</p>
     <p> Visit the project website at <a href='https://www.spiderfoot.net/r.php?u=aHR0cHM6Ly93d3cuc3BpZGVyZm9vdC5uZXQv&s=os_int' target=_new>https://www.spiderfoot.net/</a>.</p>
     <p> View the documentation at <a href='https://www.spiderfoot.net/documentation/' target=_new>https://www.spiderfoot.net/documentation/</a>.</p>
     <p> Check out the Github repo at <a href='https://github.com/smicallef/spiderfoot' target=_new>https://github.com/smicallef/spiderfoot</a>.</p>

modules/sfp_archiveorg.py

@@ -165,7 +165,7 @@ def handleEvent(self, event):
                 ret = None
 
             if not ret:
-                self.sf.error("Unable to process empty response from archive.org: {eventData}")
+                self.sf.debug("Empty response from archive.org for {eventData}")
                 continue
 
             if len(ret['archived_snapshots']) < 1:

modules/sfp_binaryedge.py

@@ -438,6 +438,10 @@ def handleEvent(self, event):
 
                         try:
                             banner = prec['result']['data']['service']['banner']
+                            if '\\r\\n\\r\\n' in banner and "HTTP/" in banner:
+                                # We don't want the content after HTTP banners
+                                banner = banner.split('\\r\\n\\r\\n')[0]
+                                banner = banner.replace("\\r\\n", "\n")
                         except Exception:
                             self.sf.debug("No banner information found.")
                             continue

modules/sfp_pageinfo.py

@@ -85,6 +85,15 @@ def handleEvent(self, event):
             self.sf.debug("Not gathering page info for external site " + eventSource)
             return
 
+        # Ignore javascript and CSS
+        if ".css?" in eventSource or eventSource.endswith(".css"):
+            self.sf.debug("Not attempting to match CSS content.")
+            return
+
+        if ".js?" in eventSource or eventSource.endswith(".js"):
+            self.sf.debug("Not attempting to match JS content.")
+            return
+
         if eventSource in self.results:
             self.sf.debug("Already checked this page for a page type, skipping.")
             return

modules/sfp_s3bucket.py

@@ -161,6 +161,8 @@ def handleEvent(self, event):
         if eventName == "LINKED_URL_EXTERNAL":
             if ".amazonaws.com" in eventData:
                 b = self.sf.urlFQDN(eventData)
+                if b in self.opts['endpoints']:
+                    b += "/" + eventData.split(b + "/")[1].split("/")[0]
                 evt = SpiderFootEvent("CLOUD_STORAGE_BUCKET", b, self.__name__, event)
                 self.notifyListeners(evt)
             return None

modules/sfp_scylla.py

@@ -27,14 +27,14 @@ class sfp_scylla(SpiderFootPlugin):
         'useCases': ["Footprint", "Investigate", "Passive"],
         'categories': ["Leaks, Dumps and Breaches"],
         'dataSource': {
-            'website': "https://scylla.sh/",
+            'website': "https://scylla.so/",
             'model': "FREE_NOAUTH_UNLIMITED",
             'references': [
-                "https://scylla.sh/crowdsource"
+                "https://scylla.so/crowdsource"
             ],
             'favIcon': "",
             'logo': "",
-            'description': "scylla.sh has two major goals. One is to have a community-oriented database leak community "
+            'description': "scylla.so has two major goals. One is to have a community-oriented database leak community "
             "that is a useful tool for security researchers.\n"
             "The other major goal is to undercut those people that are selling databases.",
         }
@@ -76,15 +76,15 @@ def producedEvents(self):
     # Query Scylla API
     def query(self, qry, per_page=20, start=0):
         params = {
-            'q': 'Email:@' + qry.encode('raw_unicode_escape').decode("ascii", errors='replace'),
+            'q': 'email:@' + qry.encode('raw_unicode_escape').decode("ascii", errors='replace'),
             'size': str(per_page),
             'start': str(start)
         }
 
         headers = {
             'Accept': 'application/json'
         }
-        res = self.sf.fetchUrl('https://scylla.sh/search?' + urllib.parse.urlencode(params),
+        res = self.sf.fetchUrl('https://scylla.so/search?' + urllib.parse.urlencode(params),
                                headers=headers,
                                timeout=15,
                                useragent=self.opts['_useragent'],
@@ -99,7 +99,7 @@ def query(self, qry, per_page=20, start=0):
             return None
 
         if res['content'] is None:
-            self.sf.debug('No response from Scylla.sh')
+            self.sf.debug('No response from Scylla.so')
             return None
 
         try:

modules/sfp_shodan.py

@@ -98,7 +98,11 @@ def query(self, qry):
             return None
 
         try:
-            return json.loads(res['content'])
+            r = json.loads(res['content'])
+            if "error" in r:
+                self.sf.error("Error returned form SHODAN: {r['error']}")
+                return None
+            return r
         except Exception as e:
             self.sf.error(f"Error processing JSON response from SHODAN: {e}")
             return None
@@ -115,7 +119,11 @@ def searchHosts(self, qry):
             return None
 
         try:
-            return json.loads(res['content'])
+            r = json.loads(res['content'])
+            if "error" in r:
+                self.sf.error("Error returned form SHODAN: {r['error']}")
+                return None
+            return r
         except Exception as e:
             self.sf.error(f"Error processing JSON response from SHODAN: {e}")
             return None
@@ -136,7 +144,14 @@ def searchHtml(self, qry):
             return None
 
         try:
-            return json.loads(res['content'])
+            r = json.loads(res['content'])
+            if "error" in r:
+                self.sf.error("Error returned form SHODAN: {r['error']}")
+                return None
+            if r.get('total', 0) == 0:
+                self.sf.info("No SHODAN info found for {qry}")
+                return None
+            return r
         except Exception as e:
             self.sf.error(f"Error processing JSON response from SHODAN: {e}")
             return None

modules/sfp_spider.py

@@ -136,7 +136,7 @@ def processUrl(self, url):
                                    self.getTarget().getNames())
 
         if not links:
-            self.sf.info(f"No links found at {url}")
+            self.sf.debug(f"No links found at {url}")
             return None
 
         # Notify modules about the links found
@@ -301,7 +301,7 @@ def handleEvent(self, event):
         if spiderTarget is None:
             return None
 
-        self.sf.info("Initiating spider of " + spiderTarget + " from " + srcModuleName)
+        self.sf.debug("Initiating spider of " + spiderTarget + " from " + srcModuleName)
 
         # Link the spidered URL to the event that triggered it
         self.urlEvents[spiderTarget] = event
@@ -368,7 +368,7 @@ def spiderFrom(self, startingPoint):
                         break
 
             nextLinks = self.cleanLinks(links)
-            self.sf.info(f"Found links: {nextLinks}")
+            self.sf.debug(f"Found links: {nextLinks}")
 
             # We've scanned through another layer of the site
             levelsTraversed += 1
@@ -379,7 +379,7 @@ def spiderFrom(self, startingPoint):
 
             # We've reached the end of our journey..
             if len(nextLinks) == 0:
-                self.sf.info("No more links found to spider, finishing..")
+                self.sf.debug("No more links found to spider, finishing..")
                 keepSpidering = False
 
             # We've been asked to stop scanning