| 名称 | 29 |类型 | 30 |状态 | 31 |日志 | 32 |配置 | 33 |操作 | 34 ||
|---|---|---|---|---|---|---|
| {{ .Name }} | 40 |{{ .Pottype }} | 41 | {{ if eq .State 0 }} 42 |已关闭 | 43 | {{ end }} 44 | {{ if eq .State 1 }} 45 |运行中 | 46 | {{ end }} 47 |查看日志 | 48 |配置参数 | 49 |50 | {{ if eq .State 0 }} 51 | 启动 52 | {{ end }} 53 | {{ if eq .State 1 }} 54 | 关闭 55 | {{ end }} 56 | | 57 |
Welcome to nginx!
14 |If you see this page, the nginx web server is successfully installed and 15 | working. Further configuration is required.
16 | 17 |For online documentation and support please refer to
18 | nginx.org.
19 | Commercial support is available at
20 | nginx.com.
Thank you for using nginx.
23 | 24 | 25 | -------------------------------------------------------------------------------- /honeyPot/plugins/goby/resource/index.html: -------------------------------------------------------------------------------- 1 | 2 | 3 |Welcome to nginx!
14 |If you see this page, the nginx web server is successfully installed and 15 | working. Further configuration is required.
16 | 17 |For online documentation and support please refer to
18 | nginx.org.
19 | Commercial support is available at
20 | nginx.com.
Thank you for using nginx.
23 | 24 | 25 | -------------------------------------------------------------------------------- /honeyPot/admin/upload.go: -------------------------------------------------------------------------------- 1 | package admin 2 | 3 | import ( 4 | "fmt" 5 | "github.com/gin-gonic/gin" 6 | "honeypot/admin/tools" 7 | "net/http" 8 | "os" 9 | ) 10 | 11 | func UploadFile(c *gin.Context) { 12 | islogin := tools.GetSession(c) 13 | if islogin { 14 | if c.Request.Method == "POST" { 15 | f, err := c.FormFile("file") 16 | code := 1 17 | if err == nil { 18 | //调用save之前先删除对应文件 19 | err = os.Remove(tools.VpnFile) 20 | if err != nil { 21 | fmt.Println(err) 22 | } 23 | 24 | //后续其他upload调用需修改dst参数 25 | err = c.SaveUploadedFile(f, tools.VpnFile) 26 | if err != nil { 27 | fmt.Println(err) 28 | } else { 29 | code = 0 30 | } 31 | } 32 | c.JSON(http.StatusOK, gin.H{"code": code}) 33 | } 34 | } else { 35 | c.HTML(http.StatusOK, "login.html", nil) 36 | } 37 | } 38 | -------------------------------------------------------------------------------- /honeyPot/plugins/burpsuite/resource/index.php: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 |
28 | 
29 |
30 |
31 |
--------------------------------------------------------------------------------
/honeyPot/plugins/vpn/resource/help/tool.js:
--------------------------------------------------------------------------------
1 | function isIe6(){
2 | var ua = navigator.userAgent.toLowerCase();
3 | return /msie 6/.test(ua);
4 | }
5 | function $id(id){
6 | return document.getElementById(id);
7 | }
8 |
9 | function layoutTopLink(){
10 | if(layoutTopLink.timer!=null){
11 | window.clearTimeout(layoutTopLink.timer);
12 | }
13 | layoutTopLink.timer = window.setTimeout(function(){
14 | var el = $id("returnTop");
15 | //alert(document.body.clientHeight);
16 | var de = document.documentElement;
17 | if(de){
18 | el.style.right = "0px";
19 | //alert(de.scrollTop+de.clientHeight);
20 | el.style.top = (de.scrollTop+de.clientHeight-el.offsetHeight)+"px";
21 | }
22 | },50);
23 | }
24 | layoutTopLink.timer = null;
25 |
26 | window.onload = function(){
27 | if(isIe6()){
28 | layoutTopLink();
29 | window.onscroll = function(){
30 | layoutTopLink();
31 | }
32 | }
33 | }
--------------------------------------------------------------------------------
/honeyPot/main.go:
--------------------------------------------------------------------------------
1 | package main
2 |
3 | import (
4 | "flag"
5 | "fmt"
6 | "honeypot/admin"
7 | "honeypot/admin/db"
8 | "honeypot/admin/tools"
9 | "honeypot/utils"
10 | "os"
11 | )
12 |
13 | var Vinit *bool
14 | var Vstart *bool
15 |
16 | func init() {
17 | tools.CreateUploadDic()
18 | admin.Exit()
19 | flag.CommandLine = flag.NewFlagSet(os.Args[0], flag.ExitOnError)
20 | Vinit = flag.Bool("init", false, "初始化数据")
21 | Vstart = flag.Bool("start", false, "启动平台")
22 | utils.Vip = flag.String("ip","0.0.0.0","平台启动IP")
23 | utils.Vport = flag.String("port","80","平台启动端口")
24 | flag.Parse()
25 | }
26 |
27 | func main() {
28 | _, err := os.Stat(tools.DbPath)
29 | if err != nil {
30 | fmt.Printf("\"数据库文件不存在,请进行初始化操作,使用 %s -h 查看操作方法\\n\",os.Args[0]")
31 | os.Exit(1)
32 | }
33 | if *Vinit {
34 | db.DbInit()
35 | }
36 | if *Vstart {
37 | utils.Start()
38 | defer utils.Stop()
39 | }
40 | }
41 |
--------------------------------------------------------------------------------
/honeyPot/plugins/burpsuite/resource/index.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
29 |
27 | 
28 |
29 |
30 |
--------------------------------------------------------------------------------
/honeyPot/plugins/goby/goby.go:
--------------------------------------------------------------------------------
1 | package goby
2 |
3 | import (
4 | "embed"
5 | "github.com/gin-contrib/static"
6 | "github.com/gin-gonic/gin"
7 | "honeypot/admin/tools"
8 | "honeypot/plugins"
9 | mylog "honeypot/utils/log"
10 | "net/http"
11 | )
12 |
13 | var (
14 | ip string
15 | port string
16 | )
17 |
18 | var staticfile = tools.RandomAdminUrl()
19 |
20 | //go:embed resource
21 | var resource embed.FS
22 |
23 | func render(c *gin.Context) {
24 | c.Writer.Header().Set("Server", "Nginx/
28 |
12 |
29 |
13 |
24 |
28 |
25 |
26 |
27 | {{.result}}
30 | 31 | -------------------------------------------------------------------------------- /honeyPot/admin/admin.go: -------------------------------------------------------------------------------- 1 | package admin 2 | 3 | import ( 4 | "github.com/gin-contrib/sessions" 5 | "github.com/gin-contrib/sessions/cookie" 6 | "github.com/gin-gonic/gin" 7 | "honeypot/admin/tools" 8 | mylog "honeypot/utils/log" 9 | "html/template" 10 | "io/fs" 11 | "net/http" 12 | ) 13 | 14 | var Adminurl = tools.RandomAdminUrl() 15 | 16 | func Admin() http.Handler { 17 | gin.SetMode(gin.ReleaseMode) 18 | router := gin.New() 19 | router.Use(mylog.HttpLog("admin", "log")) 20 | fe, _ := fs.Sub(StaFS, "jkxtmw") 21 | router.StaticFS("jkxtmw", http.FS(fe)) 22 | router.StaticFS(Adminurl+"/jkxtmw", http.FS(fe)) 23 | templ := template.Must(template.New("").ParseFS(HtmlFS, "html/*.html")) 24 | router.SetHTMLTemplate(templ) 25 | store := cookie.NewStore([]byte("secure")) 26 | //设置session过期时间为两小时 27 | store.Options(sessions.Options{MaxAge: 120 * 60}) 28 | router.Use(sessions.Sessions("sessionid", store)) 29 | router.GET("/", tools.IndexPage) 30 | { 31 | v1 := router.Group(Adminurl) 32 | { 33 | v1.GET("/", Pot) 34 | v1.GET("/login", Pot) 35 | v1.POST("/login", Login) 36 | v1.GET("/logout", logout) 37 | v1.GET("/log", log) 38 | v1.GET("/log/:logname", log) 39 | v1.POST("/log", log) 40 | v1.POST("/logcount", CountLog) 41 | v1.POST("/log/logcount", CountLog) 42 | v1.POST("/logsearch", LogSearch) 43 | v1.POST("/log/logsearch", LogSearch) 44 | v1.GET("/changepass", ChangePass) 45 | v1.POST("/changepass", ChangePass) 46 | v1.GET("/potconfig", PotConfig) 47 | v1.POST("/potconfig", PotConfig) 48 | v1.POST("/uploadfile", UploadFile) 49 | v1.POST("/potcontrol", PotControl) 50 | } 51 | } 52 | tools.PageNotFound(router) 53 | return router 54 | } 55 | -------------------------------------------------------------------------------- /honeyPot/admin/login.go: -------------------------------------------------------------------------------- 1 | package admin 2 | 3 | import ( 4 | "crypto/md5" 5 | "database/sql" 6 | "fmt" 7 | "github.com/gin-contrib/sessions" 8 | "github.com/gin-gonic/gin" 9 | _ "github.com/mattn/go-sqlite3" 10 | "honeypot/admin/tools" 11 | "net/http" 12 | ) 13 | 14 | type user struct { 15 | username string 16 | password string 17 | } 18 | 19 | var State = make(map[string]interface{}) 20 | 21 | func checkErr(err error) { 22 | if err != nil { 23 | panic(err) 24 | } 25 | } 26 | 27 | func queryData() (l []user, e error) { 28 | db, err := sql.Open("sqlite3", tools.DbPath) 29 | checkErr(err) 30 | // 查询数据 31 | rows, err := db.Query("SELECT USER,PASS FROM USER WHERE ID =1") 32 | checkErr(err) 33 | var result = make([]user, 0) 34 | for rows.Next() { 35 | var username,password string 36 | err = rows.Scan(&username, &password) 37 | checkErr(err) 38 | result = append(result, user{username, password}) 39 | } 40 | db.Close() 41 | return result, nil 42 | } 43 | 44 | // Login 登录 45 | func Login(c *gin.Context) { 46 | if c.Request.Method == "POST"{ 47 | username := c.PostForm("username") 48 | password := c.PostForm("password") 49 | passmd5 := md5.Sum([]byte(password)) 50 | passstr := fmt.Sprintf("%x", passmd5) 51 | res, _ := queryData() 52 | if username == res[0].username && passstr == res[0].password{ 53 | State["state"]=1 54 | State["text"]="登录成功" 55 | session := sessions.Default(c) 56 | session.Set("secure", "admin") 57 | session.Save() 58 | c.JSON(http.StatusOK, gin.H{"code": 1, "message": "登录成功"}) 59 | }else{ 60 | State["state"]=0 61 | State["text"]="用户名或密码错误" 62 | c.JSON(http.StatusOK, gin.H{"code": 0, "message": "登录失败"}) 63 | //c.HTML(http.StatusOK, "login.html", honeyPot.H{ 64 | // "result": State["text"], 65 | //}) 66 | } 67 | } 68 | } 69 | -------------------------------------------------------------------------------- /honeyPot/admin/html/pwd.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 |
13 | {{if .IsLogin}}
14 |
20 |
44 |
45 |
--------------------------------------------------------------------------------
/honeyPot/admin/changepass.go:
--------------------------------------------------------------------------------
1 | package admin
2 |
3 | import (
4 | "crypto/md5"
5 | "database/sql"
6 | "fmt"
7 | "github.com/gin-gonic/gin"
8 | "honeypot/admin/tools"
9 | "net/http"
10 | )
11 |
12 | func updateData(pass string) bool {
13 | db, err := sql.Open("sqlite3", tools.DbPath)
14 | checkErr(err)
15 | // 更新数据
16 | querystring := fmt.Sprintf("update USER SET PASS = '%s' WHERE id =1", pass)
17 | _, err = db.Exec(querystring)
18 | if err != nil {
19 | return false
20 | }
21 | return true
22 | }
23 |
24 | func ChangePass(c *gin.Context) {
25 | islogin := tools.GetSession(c)
26 | if islogin {
27 | if c.Request.Method == "GET" {
28 | c.HTML(http.StatusOK, "pwd.html", gin.H{
29 | "IsLogin": islogin,
30 | })
31 | }
32 | if c.Request.Method == "POST" {
33 | oldpass := c.PostForm("oldpass")
34 | password1 := c.PostForm("password1")
35 | password2 := c.PostForm("password2")
36 | passmd5 := md5.Sum([]byte(oldpass))
37 | passstr := fmt.Sprintf("%x", passmd5)
38 | res, _ := queryData()
39 | if oldpass != "" && password1 != "" && password2 != "" {
40 | if passstr != res[0].password {
41 | c.JSON(http.StatusOK, gin.H{"code": -1, "message": "旧密码错误"})
42 | return
43 | }
44 | if password1 != password2 {
45 | c.JSON(http.StatusOK, gin.H{"code": 0, "message": "两次输入的密码不一致"})
46 | return
47 | }
48 | if !tools.CheckPass(8, 20, 4, password1) && !tools.CheckPass(8, 15, 4, password1) {
49 | c.JSON(http.StatusOK, gin.H{"code": 3, "message": "密码长度必须大于8位,并且必须包含大小写字母,数字和特殊符号"})
50 | } else {
51 | passmd51 := md5.Sum([]byte(password1))
52 | passstr1 := fmt.Sprintf("%x", passmd51)
53 | result := updateData(passstr1)
54 | if result {
55 | c.JSON(http.StatusOK, gin.H{"code": 1, "message": "密码修改成功"})
56 | } else {
57 | c.JSON(http.StatusOK, gin.H{"code": 2, "message": "密码修改失败"})
58 | return
59 | }
60 | }
61 | }
62 | }
63 | } else {
64 | c.HTML(http.StatusOK, "login.html", nil)
65 | }
66 | }
67 |
--------------------------------------------------------------------------------
/honeyPot/utils/mysql/gtid_set.go:
--------------------------------------------------------------------------------
1 | /*
2 | Copyright 2017 Google Inc.
3 |
4 | Licensed under the Apache License, Version 2.0 (the "License");
5 | you may not use this file except in compliance with the License.
6 | You may obtain a copy of the License at
7 |
8 | http://www.apache.org/licenses/LICENSE-2.0
9 |
10 | Unless required by applicable law or agreedto in writing, software
11 | distributed under the License is distributed on an "AS IS" BASIS,
12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | See the License for the specific language governing permissions and
14 | limitations under the License.
15 | */
16 |
17 | package mysql
18 |
19 | // GTIDSet represents the set of transactions received or applied by a server.
20 | // In some flavors, a single GTID is enough to specify the set of all
21 | // transactions that came before it, but in others a more complex structure is
22 | // required.
23 | //
24 | // GTIDSet is wrapped by replication.Position, which is a concrete struct.
25 | // When sending a GTIDSet over RPCs, encode/decode it as a string.
26 | // Most code outside of this package should use replication.Position rather
27 | // than GTIDSet.
28 | type GTIDSet interface {
29 | // String returns the canonical printed form of the set as expected by a
30 | // particular flavor of MySQL.
31 | String() string
32 |
33 | // Flavor returns the key under which the corresponding parser function is
34 | // registered in the transactionSetParsers map.
35 | Flavor() string
36 |
37 | // ContainsGTID returns true if the set contains the specified transaction.
38 | ContainsGTID(GTID) bool
39 |
40 | // Contains returns true if the set is a superset of another set.
41 | Contains(GTIDSet) bool
42 |
43 | // Equal returns true if the set is equal to another set.
44 | Equal(GTIDSet) bool
45 |
46 | // AddGTID returns a new GTIDSet that is expanded to contain the given GTID.
47 | AddGTID(GTID) GTIDSet
48 | }
49 |
50 | // gtidSetParsers maps flavor names to parser functions. It is used by
51 | // ParsePosition().
52 | var gtidSetParsers = make(map[string]func(string) (GTIDSet, error))
53 |
--------------------------------------------------------------------------------
/honeyPot/utils/mysql/auth_server_none.go:
--------------------------------------------------------------------------------
1 | /*
2 | Copyright 2017 Google Inc.
3 |
4 | Licensed under the Apache License, Version 2.0 (the "License");
5 | you may not use this file except in compliance with the License.
6 | You may obtain a copy of the License at
7 |
8 | http://www.apache.org/licenses/LICENSE-2.0
9 |
10 | Unless required by applicable law or agreedto in writing, software
11 | distributed under the License is distributed on an "AS IS" BASIS,
12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | See the License for the specific language governing permissions and
14 | limitations under the License.
15 | */
16 |
17 | package mysql
18 |
19 | import (
20 | "net"
21 |
22 | querypb "vitess.io/vitess/go/vt/proto/query"
23 | )
24 |
25 | // AuthServerNone takes all comers.
26 | // It's meant to be used for testing and prototyping.
27 | // With this config, you can connect to a local vtgate using
28 | // the following command line: 'mysql -P port -h ::'.
29 | // It only uses MysqlNativePassword method.
30 | type AuthServerNone struct{}
31 |
32 | // AuthMethod is part of the AuthServer interface.
33 | // We always return MysqlNativePassword.
34 | func (a *AuthServerNone) AuthMethod(user string) (string, error) {
35 | return MysqlNativePassword, nil
36 | }
37 |
38 | // Salt makes salt
39 | func (a *AuthServerNone) Salt() ([]byte, error) {
40 | return NewSalt()
41 | }
42 |
43 | // ValidateHash validates hash
44 | func (a *AuthServerNone) ValidateHash(salt []byte, user string, authResponse []byte, remoteAddr net.Addr) (Getter, error) {
45 | return &NoneGetter{}, nil
46 | }
47 |
48 | // Negotiate is part of the AuthServer interface.
49 | // It will never be called.
50 | func (a *AuthServerNone) Negotiate(c *Conn, user string, remotAddr net.Addr) (Getter, error) {
51 | panic("Negotiate should not be called as AuthMethod returned mysql_native_password")
52 | }
53 |
54 | func init() {
55 | RegisterAuthServerImpl("none", &AuthServerNone{})
56 | }
57 |
58 | // NoneGetter holds the empty string
59 | type NoneGetter struct{}
60 |
61 | // Get returns the empty string
62 | func (ng *NoneGetter) Get() *querypb.VTGateCallerID {
63 | return &querypb.VTGateCallerID{Username: "userData1"}
64 | }
65 |
--------------------------------------------------------------------------------
/honeyPot/utils/mysql/conn_params.go:
--------------------------------------------------------------------------------
1 | /*
2 | Copyright 2017 Google Inc.
3 |
4 | Licensed under the Apache License, Version 2.0 (the "License");
5 | you may not use this file except in compliance with the License.
6 | You may obtain a copy of the License at
7 |
8 | http://www.apache.org/licenses/LICENSE-2.0
9 |
10 | Unless required by applicable law or agreed to in writing, software
11 | distributed under the License is distributed on an "AS IS" BASIS,
12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | See the License for the specific language governing permissions and
14 | limitations under the License.
15 | */
16 |
17 | package mysql
18 |
19 | // ConnParams contains all the parameters to use to connect to mysql.
20 | type ConnParams struct {
21 | Host string `json:"host"`
22 | Port int `json:"port"`
23 | Uname string `json:"uname"`
24 | Pass string `json:"pass"`
25 | DbName string `json:"dbname"`
26 | UnixSocket string `json:"unix_socket"`
27 | Charset string `json:"charset"`
28 | Flags uint64 `json:"flags"`
29 |
30 | // The following SSL flags are only used when flags |= 2048
31 | // is set (CapabilityClientSSL).
32 | SslCa string `json:"ssl_ca"`
33 | SslCaPath string `json:"ssl_ca_path"`
34 | SslCert string `json:"ssl_cert"`
35 | SslKey string `json:"ssl_key"`
36 | ServerName string `json:"server_name"`
37 |
38 | // The following is only set when the deprecated "dbname" flags are
39 | // supplied and will be removed.
40 | DeprecatedDBName string
41 |
42 | // The following is only set to force the client to connect without
43 | // using CapabilityClientDeprecateEOF
44 | DisableClientDeprecateEOF bool
45 | }
46 |
47 | // EnableSSL will set the right flag on the parameters.
48 | func (cp *ConnParams) EnableSSL() {
49 | cp.Flags |= CapabilityClientSSL
50 | }
51 |
52 | // SslEnabled returns if SSL is enabled.
53 | func (cp *ConnParams) SslEnabled() bool {
54 | return (cp.Flags & CapabilityClientSSL) > 0
55 | }
56 |
57 | // EnableClientFoundRows sets the flag for CLIENT_FOUND_ROWS.
58 | func (cp *ConnParams) EnableClientFoundRows() {
59 | cp.Flags |= CapabilityClientFoundRows
60 | }
61 |
--------------------------------------------------------------------------------
/honeyPot/admin/pot.go:
--------------------------------------------------------------------------------
1 | package admin
2 |
3 | import (
4 | "database/sql"
5 | "fmt"
6 | "github.com/gin-gonic/gin"
7 | "honeypot/admin/tools"
8 | "net/http"
9 | )
10 |
11 | type PotData struct {
12 | Name string
13 | Pottype string
14 | State int
15 | Url string
16 | Configid int
17 | }
18 |
19 | func Pot(c *gin.Context) {
20 | islogin := tools.GetSession(c)
21 | //name = c.PostForm("name")
22 | //pottype = c.PostForm("pottype")
23 | //state = c.PostForm("state")
24 | //configid = c.PostForm("configid")
25 | res := PotRead()
26 | if islogin {
27 | if c.Request.Method == "GET" {
28 | c.HTML(http.StatusOK, "index.html", gin.H{
29 | "IsLogin": islogin,
30 | "res": res,
31 | })
32 | }
33 | } else {
34 | c.HTML(http.StatusOK, "login.html", nil)
35 | }
36 | }
37 |
38 | func PotRead() (Pot []PotData) {
39 | db, err := sql.Open("sqlite3", tools.DbPath)
40 | checkErr(err)
41 | // 查询数据
42 | rows, err := db.Query("SELECT name, pottype, state, url,configid FROM pot order by id ASC")
43 | checkErr(err)
44 | var result = make([]PotData, 0)
45 | for rows.Next() {
46 | var (
47 | name, pottype string
48 | state int
49 | url string
50 | configid int
51 | )
52 | err = rows.Scan(&name, &pottype, &state, &url, &configid)
53 | if err == nil {
54 | result = append(result, PotData{name, pottype, state, url, configid})
55 | } else {
56 | result = append(result, PotData{"", "", 0, "#", 0})
57 | }
58 | db.Close()
59 |
60 | }
61 | return result
62 | }
63 |
64 | func Exit() {
65 | db, err := sql.Open("sqlite3", tools.DbPath)
66 | if err != nil {
67 | fmt.Println(err)
68 | }
69 | defer db.Close()
70 |
71 | querysql := "SELECT count(1) FROM sqlite_master WHERE type='table' AND name='pot'"
72 | row, err := db.Query(querysql)
73 | if err != nil {
74 | fmt.Println(err)
75 | }
76 |
77 | var num int
78 | for row.Next() {
79 | err = row.Scan(&num)
80 | if err != nil {
81 | fmt.Println(err)
82 | }
83 | }
84 |
85 | sqlStr := "DROP TABLE IF EXISTS 'goose_db_version';"
86 | if num == 1 {
87 | sqlStr = "UPDATE pot SET state = 0;DROP TABLE IF EXISTS 'goose_db_version';"
88 | }
89 | _, err = db.Exec(sqlStr)
90 | if err != nil {
91 | fmt.Println(err)
92 | }
93 | //fmt.Println("数据库状态恢复成功!")
94 | }
95 |
--------------------------------------------------------------------------------
/honeyPot/plugins/vpn/resource/css/normalize.min.css:
--------------------------------------------------------------------------------
1 | /*! normalize.css v5.0.0 | MIT License | github.com/necolas/normalize.css */html{font-family:sans-serif;line-height:1.15;-ms-text-size-adjust:100%;-webkit-text-size-adjust:100%}body{margin:0}article,aside,footer,header,nav,section{display:block}h1{margin:.67em 0;font-size:2em}figcaption,figure,main{display:block}figure{margin:1em 40px}hr{overflow:visible;box-sizing:content-box;height:0}pre{font-size:1em;font-family:monospace}a{background-color:transparent;-webkit-text-decoration-skip:objects}a:active,a:hover{outline-width:0}abbr[title]{border-bottom:none;text-decoration:underline;text-decoration:underline dotted}b,strong{font-weight:inherit;font-weight:bolder}code,kbd,samp{font-size:1em;font-family:monospace}dfn{font-style:italic}mark{background-color:#ff0;color:#000}small{font-size:80%}sub,sup{position:relative;vertical-align:baseline;font-size:75%;line-height:0}sub{bottom:-.25em}sup{top:-.5em}audio,video{display:inline-block}audio:not([controls]){display:none;height:0}img{border-style:none}svg:not(:root){overflow:hidden}button,input,optgroup,select,textarea{margin:0;font-size:100%;font-family:sans-serif;line-height:1.15}button,input{overflow:visible}button,select{text-transform:none}[type=reset],[type=submit],button,html [type=button]{-webkit-appearance:button}[type=button]::-moz-focus-inner,[type=reset]::-moz-focus-inner,[type=submit]::-moz-focus-inner,button::-moz-focus-inner{padding:0;border-style:none}[type=button]:-moz-focusring,[type=reset]:-moz-focusring,[type=submit]:-moz-focusring,button:-moz-focusring{outline:1px dotted ButtonText}fieldset{margin:0 2px;padding:.35em .625em .75em;border:1px solid silver}legend{display:table;box-sizing:border-box;padding:0;max-width:100%;color:inherit;white-space:normal}progress{display:inline-block;vertical-align:baseline}textarea{overflow:auto}[type=checkbox],[type=radio]{box-sizing:border-box;padding:0}[type=number]::-webkit-inner-spin-button,[type=number]::-webkit-outer-spin-button{height:auto}[type=search]{outline-offset:-2px;-webkit-appearance:textfield}[type=search]::-webkit-search-cancel-button,[type=search]::-webkit-search-decoration{-webkit-appearance:none}::-webkit-file-upload-button{font:inherit;-webkit-appearance:button}details,menu{display:block}summary{display:list-item}canvas{display:inline-block}[hidden],template{display:none}
--------------------------------------------------------------------------------
/honeyPot/admin/html/log1.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
21 |
36 |
40 | {{ else }}
41 |
37 |
38 |
39 | 您还未登录,请登录
42 | {{ end }} 43 |
20 |
26 |
35 |
51 |
52 |
53 |
54 |
--------------------------------------------------------------------------------
/honeyPot/utils/log/sqlitehook.go:
--------------------------------------------------------------------------------
1 | package mylog
2 |
3 | import (
4 | "context"
5 | "database/sql"
6 | "fmt"
7 | _ "github.com/mattn/go-sqlite3"
8 | "github.com/pkg/errors"
9 | "github.com/sirupsen/logrus"
10 | "honeypot/admin/tools"
11 | "time"
12 | )
13 |
14 | type SQLiteHook struct {
15 | db *sql.DB
16 | tablename string
17 | timeout time.Duration
18 | }
19 |
20 | // NewSQLiteHook - create new SQLite3 logrus hook
21 | func NewSQLiteHook(db *sql.DB, tablename string, timeout time.Duration) (hook *SQLiteHook, err error) {
22 | if err = db.Ping(); err != nil {
23 | return
24 | }
25 | hook = &SQLiteHook{
26 | db: db,
27 | tablename: tablename,
28 | timeout: timeout,
29 | }
30 | return
31 | }
32 |
33 | func (hook *SQLiteHook) Fire(entry *logrus.Entry) (err error) {
34 | ctx, cancel := context.WithTimeout(context.Background(), hook.timeout)
35 | defer cancel()
36 |
37 | str, err := entry.String()
38 | if err != nil {
39 | err = errors.Wrap(err, "unable to read logrus entry")
40 | return
41 | }
42 | t := entry.Time.Format("2006-01-02 15:04:05")
43 | var rowLen int
44 | hook.db.QueryRow(fmt.Sprintf("SELECT 1 FROM %s WHERE time = '%s' and clientIP = '%s'",hook.tablename,t,entry.Data["clientIP"])).Scan(&rowLen)
45 |
46 | //插入语句
47 | if rowLen == 0{
48 | if tools.In(hook.tablename, tools.Config("httplog")){
49 | query := fmt.Sprintf("INSERT INTO %s(time,clientIP,statusCode,reqMethod,reqUri,full_message) VALUES (?,?,?,?,?,?)",hook.tablename)
50 | smt, err := hook.db.PrepareContext(ctx, query)
51 | if err != nil {
52 | err = errors.Wrap(err, "unable to insert log entry")
53 | } else {
54 | smt.ExecContext(ctx,
55 | t,
56 | entry.Data["clientIP"],
57 | entry.Data["statusCode"],
58 | entry.Data["reqMethod"],
59 | entry.Data["reqUri"],
60 | str,
61 | )
62 | }
63 | }
64 | if tools.In(hook.tablename, tools.Config("nohttplog")){
65 | query := fmt.Sprintf("INSERT INTO %s(time,msg) VALUES (?,?)",hook.tablename)
66 | smt, err := hook.db.PrepareContext(ctx, query)
67 | if err != nil {
68 | err = errors.Wrap(err, "unable to insert log entry")
69 | } else {
70 | smt.ExecContext(ctx,
71 | t,
72 | str,
73 | )
74 | }
75 | }
76 | }
77 | return
78 | }
79 |
80 | func (hook *SQLiteHook) Levels() []logrus.Level {
81 | return logrus.AllLevels
82 | }
83 |
--------------------------------------------------------------------------------
/honeyPot/utils/mysql/sql_utils.go:
--------------------------------------------------------------------------------
1 | package mysql
2 |
3 | import (
4 | "vitess.io/vitess/go/sqltypes"
5 | "vitess.io/vitess/go/vt/proto/query"
6 | )
7 |
8 | type Column struct {
9 | // Name is the name of the column.
10 | Name string
11 | // Type is the data type of the column.
12 | Type query.Type
13 | // Default contains the default value of the column or nil if it is NULL.
14 | Default interface{}
15 | // Nullable is true if the column can contain NULL values, or false
16 | // otherwise.
17 | Nullable bool
18 | // Source is the name of the table this column came from.
19 | Source string
20 | // PrimaryKey is true if the column is part of the primary key for its table.
21 | PrimaryKey bool
22 | }
23 |
24 | type Schema []*Column
25 | type SQLRow []interface{}
26 |
27 | func SchemaToFields(s Schema) []*query.Field {
28 | fields := make([]*query.Field, len(s))
29 | for i, c := range s {
30 | var charset uint32 = CharacterSetUtf8
31 | if c.Type == sqltypes.Blob {
32 | charset = CharacterSetBinary
33 | }
34 |
35 | fields[i] = &query.Field{
36 | Name: c.Name,
37 | Type: c.Type,
38 | Charset: charset,
39 | }
40 | }
41 | return fields
42 | }
43 |
44 | func RowToSQL(row SQLRow) []sqltypes.Value {
45 | o := make([]sqltypes.Value, len(row))
46 |
47 | for i, v := range row {
48 | switch value := v.(type) {
49 | case []byte:
50 | o[i] = sqltypes.MakeTrusted(sqltypes.Blob, value)
51 | case string:
52 | o[i] = sqltypes.MakeTrusted(sqltypes.Text, []byte(value))
53 | default:
54 | o[i] = sqltypes.MakeTrusted(sqltypes.Blob, []byte{})
55 | }
56 | }
57 |
58 | return o
59 | }
60 |
61 | func GetMysqlVars() *sqltypes.Result {
62 | r := &sqltypes.Result{Fields: SchemaToFields(Schema{
63 | {Name: "system_time_zone", Type: sqltypes.Text, Nullable: false},
64 | {Name: "time_zone", Type: sqltypes.Text, Nullable: false},
65 | {Name: "init_connect", Type: sqltypes.Text, Nullable: false},
66 | {Name: "auto_increment_increment", Type: sqltypes.Text, Nullable: false},
67 | {Name: "max_allowed_packet", Type: sqltypes.Text, Nullable: false},
68 | })}
69 | r.Rows = append(r.Rows, RowToSQL(SQLRow{"UTC", "SYSTEM", "", "1", "10000"}))
70 | return r
71 | }
--------------------------------------------------------------------------------
/honeyPot/admin/html/index.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
27 | 日期:
28 |
29 | -
30 |
31 |
32 |
33 |
34 | | 时间 | 39 |原始日志 | 40 |
|---|---|
| {{$v.Time}} | 46 |{{$v.Full_message}} | 47 |
17 |
23 |
63 |
64 |
65 |
--------------------------------------------------------------------------------
/honeyPot/utils/mysql/slave_status.go:
--------------------------------------------------------------------------------
1 | /*
2 | Copyright 2017 Google Inc.
3 |
4 | Licensed under the Apache License, Version 2.0 (the "License");
5 | you may not use this file except in compliance with the License.
6 | You may obtain a copy of the License at
7 |
8 | http://www.apache.org/licenses/LICENSE-2.0
9 |
10 | Unless required by applicable law or agreed to in writing, software
11 | distributed under the License is distributed on an "AS IS" BASIS,
12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | See the License for the specific language governing permissions and
14 | limitations under the License.
15 | */
16 |
17 | package mysql
18 |
19 | import (
20 | replicationdatapb "vitess.io/vitess/go/vt/proto/replicationdata"
21 | "vitess.io/vitess/go/vt/vterrors"
22 | )
23 |
24 | // SlaveStatus holds replication information from SHOW SLAVE STATUS.
25 | type SlaveStatus struct {
26 | Position Position
27 | SlaveIORunning bool
28 | SlaveSQLRunning bool
29 | SecondsBehindMaster uint
30 | MasterHost string
31 | MasterPort int
32 | MasterConnectRetry int
33 | }
34 |
35 | // SlaveRunning returns true iff both the Slave IO and Slave SQL threads are
36 | // running.
37 | func (s *SlaveStatus) SlaveRunning() bool {
38 | return s.SlaveIORunning && s.SlaveSQLRunning
39 | }
40 |
41 | // SlaveStatusToProto translates a Status to proto3.
42 | func SlaveStatusToProto(s SlaveStatus) *replicationdatapb.Status {
43 | return &replicationdatapb.Status{
44 | Position: EncodePosition(s.Position),
45 | SlaveIoRunning: s.SlaveIORunning,
46 | SlaveSqlRunning: s.SlaveSQLRunning,
47 | SecondsBehindMaster: uint32(s.SecondsBehindMaster),
48 | MasterHost: s.MasterHost,
49 | MasterPort: int32(s.MasterPort),
50 | MasterConnectRetry: int32(s.MasterConnectRetry),
51 | }
52 | }
53 |
54 | // ProtoToSlaveStatus translates a proto Status, or panics.
55 | func ProtoToSlaveStatus(s *replicationdatapb.Status) SlaveStatus {
56 | pos, err := DecodePosition(s.Position)
57 | if err != nil {
58 | panic(vterrors.Wrapf(err, "cannot decode Position"))
59 | }
60 | return SlaveStatus{
61 | Position: pos,
62 | SlaveIORunning: s.SlaveIoRunning,
63 | SlaveSQLRunning: s.SlaveSqlRunning,
64 | SecondsBehindMaster: uint(s.SecondsBehindMaster),
65 | MasterHost: s.MasterHost,
66 | MasterPort: int(s.MasterPort),
67 | MasterConnectRetry: int(s.MasterConnectRetry),
68 | }
69 | }
70 |
--------------------------------------------------------------------------------
/honeyPot/utils/log/mylog.go:
--------------------------------------------------------------------------------
1 | package mylog
2 |
3 | import (
4 | "database/sql"
5 | "fmt"
6 | "github.com/gin-gonic/gin"
7 | _ "github.com/mattn/go-sqlite3"
8 | "github.com/sirupsen/logrus"
9 | "honeypot/admin/tools"
10 | "io"
11 | "os"
12 | "path"
13 | "strings"
14 | "time"
15 | )
16 |
17 | // 更改日志格式
18 |
19 |
20 | func Logger(filepath string) *logrus.Logger {
21 | now := time.Now()
22 | logFilePath := ""
23 | if dir, err := os.Getwd(); err == nil {
24 | logFilePath = dir + "/logs/" + filepath
25 | }
26 | if err := os.MkdirAll(logFilePath, 0777); err != nil {
27 | }
28 | logFileName := now.Format("2006-01-02") + ".log"
29 | //日志文件
30 | fileName := path.Join(logFilePath, logFileName)
31 | if _, err := os.Stat(fileName); err != nil {
32 | if _, err := os.Create(fileName); err != nil {
33 | fmt.Println(err.Error())
34 | }
35 | }
36 | //写入控制台
37 | writer1 := os.Stdout
38 | //写入文件
39 | writer2, err := os.OpenFile(fileName, os.O_APPEND|os.O_WRONLY, os.ModeAppend)
40 | if err != nil {
41 | fmt.Println("err", err)
42 | }
43 |
44 | //实例化
45 | logger := logrus.New()
46 |
47 | //设置输出
48 | logger.SetOutput(io.MultiWriter(writer1, writer2))
49 |
50 | //设置日志级别
51 | logger.SetLevel(logrus.InfoLevel)
52 |
53 | //设置日志格式
54 | logger.SetFormatter(&logrus.TextFormatter{
55 | TimestampFormat: "2006-01-02 15:04:05",
56 | })
57 | return logger
58 | }
59 |
60 | func HttpLog( filepath string, tablename string) gin.HandlerFunc {
61 | logger := Logger(filepath)
62 | return func(c *gin.Context) {
63 | // 处理请求
64 | c.Next()
65 |
66 | // 请求方式
67 | reqMethod := c.Request.Method
68 |
69 | // 请求路由
70 | reqUri := c.Request.RequestURI
71 |
72 | // 状态码
73 | statusCode := c.Writer.Status()
74 |
75 | // 请求IP
76 | clientIP := c.ClientIP()
77 |
78 | if !strings.Contains(reqUri,"jkxtmw") {
79 | requestlog := logger.WithFields(logrus.Fields{"reqMethod":reqMethod,"statusCode":statusCode,"clientIP":clientIP,"reqUri":reqUri})
80 | requestlog.Info()
81 | SqlHook(logger,tablename)
82 | }
83 | }
84 | }
85 |
86 |
87 | func NoHttpLog(filepath string, tablename string) *logrus.Logger{
88 | logger := Logger(filepath)
89 | SqlHook(logger,tablename)
90 | return logger
91 | }
92 |
93 | func SqlHook( logger *logrus.Logger, tablename string){
94 | timeout := time.Second * 10
95 | db, err := sql.Open("sqlite3", tools.DbPath)
96 | if err != nil {
97 | fmt.Printf("Unable to open database: %s\n", err)
98 | }
99 | //fmt.Println(("Database opened successful"))
100 | logger.SetLevel(logrus.InfoLevel)
101 | hook, err := NewSQLiteHook(db, tablename,timeout)
102 | if err != nil {
103 | fmt.Printf("Unable to initialize hook: %s\n", err)
104 | }
105 | //fmt.Println("Hook initialized successful")
106 | logger.AddHook(hook)
107 | }
108 |
--------------------------------------------------------------------------------
/honeyPot/utils/mysql/replication.go:
--------------------------------------------------------------------------------
1 | /*
2 | Copyright 2017 Google Inc.
3 |
4 | Licensed under the Apache License, Version 2.0 (the "License");
5 | you may not use this file except in compliance with the License.
6 | You may obtain a copy of the License at
7 |
8 | http://www.apache.org/licenses/LICENSE-2.0
9 |
10 | Unless required by applicable law or agreedto in writing, software
11 | distributed under the License is distributed on an "AS IS" BASIS,
12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | See the License for the specific language governing permissions and
14 | limitations under the License.
15 | */
16 |
17 | package mysql
18 |
19 | // This file contains the methods related to replication.
20 |
21 | // WriteComBinlogDump writes a ComBinlogDump command.
22 | // See http://dev.mysql.com/doc/internals/en/com-binlog-dump.html for syntax.
23 | // Returns a SQLError.
24 | func (c *Conn) WriteComBinlogDump(serverID uint32, binlogFilename string, binlogPos uint32, flags uint16) error {
25 | c.sequence = 0
26 | length := 1 + // ComBinlogDump
27 | 4 + // binlog-pos
28 | 2 + // flags
29 | 4 + // server-id
30 | len(binlogFilename) // binlog-filename
31 | data := c.startEphemeralPacket(length)
32 | pos := writeByte(data, 0, ComBinlogDump)
33 | pos = writeUint32(data, pos, binlogPos)
34 | pos = writeUint16(data, pos, flags)
35 | pos = writeUint32(data, pos, serverID)
36 | _ = writeEOFString(data, pos, binlogFilename)
37 | if err := c.writeEphemeralPacket(); err != nil {
38 | return NewSQLError(CRServerGone, SSUnknownSQLState, "%v", err)
39 | }
40 | return nil
41 | }
42 |
43 | // WriteComBinlogDumpGTID writes a ComBinlogDumpGTID command.
44 | // Only works with MySQL 5.6+ (and not MariaDB).
45 | // See http://dev.mysql.com/doc/internals/en/com-binlog-dump-gtid.html for syntax.
46 | func (c *Conn) WriteComBinlogDumpGTID(serverID uint32, binlogFilename string, binlogPos uint64, flags uint16, gtidSet []byte) error {
47 | c.sequence = 0
48 | length := 1 + // ComBinlogDumpGTID
49 | 2 + // flags
50 | 4 + // server-id
51 | 4 + // binlog-filename-len
52 | len(binlogFilename) + // binlog-filename
53 | 8 + // binlog-pos
54 | 4 + // data-size
55 | len(gtidSet) // data
56 | data := c.startEphemeralPacket(length)
57 | pos := writeByte(data, 0, ComBinlogDumpGTID)
58 | pos = writeUint16(data, pos, flags)
59 | pos = writeUint32(data, pos, serverID)
60 | pos = writeUint32(data, pos, uint32(len(binlogFilename)))
61 | pos = writeEOFString(data, pos, binlogFilename)
62 | pos = writeUint64(data, pos, binlogPos)
63 | pos = writeUint32(data, pos, uint32(len(gtidSet)))
64 | pos += copy(data[pos:], gtidSet)
65 | if err := c.writeEphemeralPacket(); err != nil {
66 | return NewSQLError(CRServerGone, SSUnknownSQLState, "%v", err)
67 | }
68 | return nil
69 | }
70 |
--------------------------------------------------------------------------------
/honeyPot/utils/mysql/binlog_event_mariadb.go:
--------------------------------------------------------------------------------
1 | /*
2 | Copyright 2017 Google Inc.
3 |
4 | Licensed under the Apache License, Version 2.0 (the "License");
5 | you may not use this file except in compliance with the License.
6 | You may obtain a copy of the License at
7 |
8 | http://www.apache.org/licenses/LICENSE-2.0
9 |
10 | Unless required by applicable law or agreedto in writing, software
11 | distributed under the License is distributed on an "AS IS" BASIS,
12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | See the License for the specific language governing permissions and
14 | limitations under the License.
15 | */
16 |
17 | package mysql
18 |
19 | import (
20 | "encoding/binary"
21 |
22 | "vitess.io/vitess/go/vt/proto/vtrpc"
23 | "vitess.io/vitess/go/vt/vterrors"
24 | )
25 |
26 | // mariadbBinlogEvent wraps a raw packet buffer and provides methods to examine
27 | // it by implementing BinlogEvent. Some methods are pulled in from
28 | // binlogEvent.
29 | type mariadbBinlogEvent struct {
30 | binlogEvent
31 | }
32 |
33 | // NewMariadbBinlogEvent creates a BinlogEvent instance from given byte array
34 | func NewMariadbBinlogEvent(buf []byte) BinlogEvent {
35 | return mariadbBinlogEvent{binlogEvent: binlogEvent(buf)}
36 | }
37 |
38 | // IsGTID implements BinlogEvent.IsGTID().
39 | func (ev mariadbBinlogEvent) IsGTID() bool {
40 | return ev.Type() == eMariaGTIDEvent
41 | }
42 |
43 | // GTID implements BinlogEvent.GTID().
44 | //
45 | // Expected format:
46 | // # bytes field
47 | // 8 sequence number
48 | // 4 domain ID
49 | // 1 flags2
50 | func (ev mariadbBinlogEvent) GTID(f BinlogFormat) (GTID, bool, error) {
51 | const FLStandalone = 1
52 |
53 | data := ev.Bytes()[f.HeaderLength:]
54 | flags2 := data[8+4]
55 |
56 | return MariadbGTID{
57 | Sequence: binary.LittleEndian.Uint64(data[:8]),
58 | Domain: binary.LittleEndian.Uint32(data[8 : 8+4]),
59 | Server: ev.ServerID(),
60 | }, flags2&FLStandalone == 0, nil
61 | }
62 |
63 | // PreviousGTIDs implements BinlogEvent.PreviousGTIDs().
64 | func (ev mariadbBinlogEvent) PreviousGTIDs(f BinlogFormat) (Position, error) {
65 | return Position{}, vterrors.Errorf(vtrpc.Code_INTERNAL, "MariaDB should not provide PREVIOUS_GTIDS_EVENT events")
66 | }
67 |
68 | // StripChecksum implements BinlogEvent.StripChecksum().
69 | func (ev mariadbBinlogEvent) StripChecksum(f BinlogFormat) (BinlogEvent, []byte, error) {
70 | switch f.ChecksumAlgorithm {
71 | case BinlogChecksumAlgOff, BinlogChecksumAlgUndef:
72 | // There is no checksum.
73 | return ev, nil, nil
74 | default:
75 | // Checksum is the last 4 bytes of the event buffer.
76 | data := ev.Bytes()
77 | length := len(data)
78 | checksum := data[length-4:]
79 | data = data[:length-4]
80 | return mariadbBinlogEvent{binlogEvent: binlogEvent(data)}, checksum, nil
81 | }
82 | }
83 |
--------------------------------------------------------------------------------
/honeyPot/admin/html/log.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
24 |
25 |
61 |
62 |
20 |
26 |
43 |
44 |
45 |
46 |
70 |
71 |
72 |
73 |
--------------------------------------------------------------------------------
/honeyPot/admin/db/sql/001_create_tables.sql:
--------------------------------------------------------------------------------
1 | -- +goose Up
2 | PRAGMA foreign_keys = false;
3 |
4 |
5 | DROP TABLE IF EXISTS "USER";
6 | CREATE TABLE "USER" (
7 | "id" integer NOT NULL,
8 | "USER" TEXT NOT NULL,
9 | "PASS" text NOT NULL,
10 | PRIMARY KEY ("id")
11 | );
12 |
13 |
14 | INSERT INTO "USER" VALUES (1, 'venus', '4f98416a6d70405114960fdcef0bc3e5');
15 |
16 | DROP TABLE IF EXISTS "burplog";
17 | CREATE TABLE "burplog" (
18 | "id" INTEGER NOT NULL,
19 | "time" text,
20 | "clientIP" text,
21 | "statusCode" text(3),
22 | "reqMethod" TEXT(5),
23 | "reqUri" TEXT,
24 | "full_message" TEXT,
25 | PRIMARY KEY ("id")
26 | );
27 |
28 |
29 | DROP TABLE IF EXISTS "gobylog";
30 | CREATE TABLE "gobylog" (
31 | "id" INTEGER NOT NULL,
32 | "time" text,
33 | "clientIP" text,
34 | "statusCode" text(3),
35 | "reqMethod" TEXT(5),
36 | "reqUri" TEXT,
37 | "full_message" TEXT,
38 | PRIMARY KEY ("id")
39 | );
40 |
41 |
42 | DROP TABLE IF EXISTS "log";
43 | CREATE TABLE "log" (
44 | "id" INTEGER NOT NULL,
45 | "time" text,
46 | "clientIP" text,
47 | "statusCode" text(3),
48 | "reqMethod" TEXT(5),
49 | "reqUri" TEXT,
50 | "full_message" TEXT,
51 | PRIMARY KEY ("id")
52 | );
53 |
54 |
55 | DROP TABLE IF EXISTS "mysqllog";
56 | CREATE TABLE "mysqllog" (
57 | "id" INTEGER NOT NULL,
58 | "time" TEXT,
59 | "msg" TEXT,
60 | PRIMARY KEY ("id")
61 | );
62 |
63 |
64 | DROP TABLE IF EXISTS "pot";
65 | CREATE TABLE "pot" (
66 | "id" INTEGER NOT NULL,
67 | "name" text NOT NULL,
68 | "pottype" TEXT NOT NULL,
69 | "state" integer NOT NULL,
70 | "url" TEXT NOT NULL,
71 | "configid" integer NOT NULL,
72 | PRIMARY KEY ("id")
73 | );
74 |
75 |
76 | INSERT INTO "pot" VALUES (1, 'BurpSuite蜜罐', '反制/命令执行', 0, 'burplog', 1001);
77 | INSERT INTO "pot" VALUES (2, 'VPN蜜罐', '诱导/反制', 0, 'vpnlog', 1002);
78 | INSERT INTO "pot" VALUES (3, 'Goby蜜罐', '反制/命令执行', 0, 'gobylog', 1003);
79 | INSERT INTO "pot" VALUES (4, 'Mysql蜜罐', '文件读取', 0, 'mysqllog', 1004);
80 |
81 | DROP TABLE IF EXISTS "pot_config";
82 | CREATE TABLE "pot_config" (
83 | "configid" INTEGER(4) NOT NULL,
84 | "port" integer(5) NOT NULL,
85 | "payload" text NOT NULL,
86 | "fileexists" integer(1) NOT NULL DEFAULT 0,
87 | "username" TEXT NOT NULL,
88 | "password" TEXT NOT NULL DEFAULT '',
89 | "filelist" TEXT NOT NULL DEFAULT '',
90 | "ip" TEXT NOT NULL DEFAULT '',
91 | PRIMARY KEY ("configid")
92 | );
93 |
94 | INSERT INTO "pot_config" VALUES (1004, 0, 0, 0, 0, 0, 0, 0);
95 | INSERT INTO "pot_config" VALUES (1003, 0, 0, 0, 0, 0, 0, 0);
96 | INSERT INTO "pot_config" VALUES (1002, 0, 0, 0, 0, 0, 0, 0);
97 | INSERT INTO "pot_config" VALUES (1001, 0, 0, 0, 0, 0, 0, 0);
98 |
99 | DROP TABLE IF EXISTS "vpnlog";
100 | CREATE TABLE "vpnlog" (
101 | "id" INTEGER NOT NULL,
102 | "time" text,
103 | "clientIP" text,
104 | "statusCode" text(3),
105 | "reqMethod" TEXT(5),
106 | "reqUri" TEXT,
107 | "full_message" TEXT,
108 | PRIMARY KEY ("id")
109 | );
110 |
--------------------------------------------------------------------------------
/honeyPot/utils/mysql/binlog_event_mysql56.go:
--------------------------------------------------------------------------------
1 | /*
2 | Copyright 2017 Google Inc.
3 |
4 | Licensed under the Apache License, Version 2.0 (the "License");
5 | you may not use this file except in compliance with the License.
6 | You may obtain a copy of the License at
7 |
8 | http://www.apache.org/licenses/LICENSE-2.0
9 |
10 | Unless required by applicable law or agreedto in writing, software
11 | distributed under the License is distributed on an "AS IS" BASIS,
12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | See the License for the specific language governing permissions and
14 | limitations under the License.
15 | */
16 |
17 | package mysql
18 |
19 | import (
20 | "encoding/binary"
21 |
22 | "vitess.io/vitess/go/vt/proto/vtrpc"
23 | "vitess.io/vitess/go/vt/vterrors"
24 | )
25 |
26 | // mysql56BinlogEvent wraps a raw packet buffer and provides methods to examine
27 | // it by implementing BinlogEvent. Some methods are pulled in from
28 | // binlogEvent.
29 | type mysql56BinlogEvent struct {
30 | binlogEvent
31 | }
32 |
33 | // NewMysql56BinlogEvent creates a BinlogEvent from given byte array
34 | func NewMysql56BinlogEvent(buf []byte) BinlogEvent {
35 | return mysql56BinlogEvent{binlogEvent: binlogEvent(buf)}
36 | }
37 |
38 | // IsGTID implements BinlogEvent.IsGTID().
39 | func (ev mysql56BinlogEvent) IsGTID() bool {
40 | return ev.Type() == eGTIDEvent
41 | }
42 |
43 | // GTID implements BinlogEvent.GTID().
44 | //
45 | // Expected format:
46 | // # bytes field
47 | // 1 flags
48 | // 16 SID (server UUID)
49 | // 8 GNO (sequence number, signed int)
50 | func (ev mysql56BinlogEvent) GTID(f BinlogFormat) (GTID, bool, error) {
51 | data := ev.Bytes()[f.HeaderLength:]
52 | var sid SID
53 | copy(sid[:], data[1:1+16])
54 | gno := int64(binary.LittleEndian.Uint64(data[1+16 : 1+16+8]))
55 | return Mysql56GTID{Server: sid, Sequence: gno}, false /* hasBegin */, nil
56 | }
57 |
58 | // PreviousGTIDs implements BinlogEvent.PreviousGTIDs().
59 | func (ev mysql56BinlogEvent) PreviousGTIDs(f BinlogFormat) (Position, error) {
60 | data := ev.Bytes()[f.HeaderLength:]
61 | set, err := NewMysql56GTIDSetFromSIDBlock(data)
62 | if err != nil {
63 | return Position{}, err
64 | }
65 | return Position{
66 | GTIDSet: set,
67 | }, nil
68 | }
69 |
70 | // StripChecksum implements BinlogEvent.StripChecksum().
71 | func (ev mysql56BinlogEvent) StripChecksum(f BinlogFormat) (BinlogEvent, []byte, error) {
72 | switch f.ChecksumAlgorithm {
73 | case BinlogChecksumAlgOff, BinlogChecksumAlgUndef:
74 | // There is no checksum.
75 | return ev, nil, nil
76 | case BinlogChecksumAlgCRC32:
77 | // Checksum is the last 4 bytes of the event buffer.
78 | data := ev.Bytes()
79 | length := len(data)
80 | checksum := data[length-4:]
81 | data = data[:length-4]
82 | return mysql56BinlogEvent{binlogEvent: binlogEvent(data)}, checksum, nil
83 | default:
84 | // MySQL 5.6 does not guarantee that future checksum algorithms will be
85 | // 4 bytes, so we can't support them a priori.
86 | return ev, nil, vterrors.Errorf(vtrpc.Code_INTERNAL, "unsupported checksum algorithm: %v", f.ChecksumAlgorithm)
87 | }
88 | }
89 |
--------------------------------------------------------------------------------
/honeyPot/utils/mysql/charset.go:
--------------------------------------------------------------------------------
1 | /*
2 | Copyright 2017 Google Inc.
3 |
4 | Licensed under the Apache License, Version 2.0 (the "License");
5 | you may not use this file except in compliance with the License.
6 | You may obtain a copy of the License at
7 |
8 | http://www.apache.org/licenses/LICENSE-2.0
9 |
10 | Unless required by applicable law or agreedto in writing, software
11 | distributed under the License is distributed on an "AS IS" BASIS,
12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | See the License for the specific language governing permissions and
14 | limitations under the License.
15 | */
16 |
17 | package mysql
18 |
19 | import (
20 | "fmt"
21 | "strconv"
22 |
23 | binlogdatapb "vitess.io/vitess/go/vt/proto/binlogdata"
24 | "vitess.io/vitess/go/vt/proto/vtrpc"
25 | "vitess.io/vitess/go/vt/vterrors"
26 | )
27 |
28 | // This file contains utility methods for Conn objects. Only useful on the client
29 | // side.
30 |
31 | // ExecuteFetchMap returns a map from column names to cell data for a query
32 | // that should return exactly 1 row.
33 | func ExecuteFetchMap(conn *Conn, query string) (map[string]string, error) {
34 | qr, err := conn.ExecuteFetch(query, 1, true)
35 | if err != nil {
36 | return nil, err
37 | }
38 | if len(qr.Rows) != 1 {
39 | return nil, vterrors.Errorf(vtrpc.Code_OUT_OF_RANGE, "query %#v returned %d rows, expected 1", query, len(qr.Rows))
40 | }
41 | if len(qr.Fields) != len(qr.Rows[0]) {
42 | return nil, vterrors.Errorf(vtrpc.Code_INTERNAL, "query %#v returned %d column names, expected %d", query, len(qr.Fields), len(qr.Rows[0]))
43 | }
44 |
45 | rowMap := make(map[string]string)
46 | for i, value := range qr.Rows[0] {
47 | rowMap[qr.Fields[i].Name] = value.ToString()
48 | }
49 | return rowMap, nil
50 | }
51 |
52 | // GetCharset returns the current numerical values of the per-session character
53 | // set variables.
54 | func GetCharset(conn *Conn) (*binlogdatapb.Charset, error) {
55 | // character_set_client
56 | row, err := ExecuteFetchMap(conn, "SHOW COLLATION WHERE `charset`=@@session.character_set_client AND `default`='Yes'")
57 | if err != nil {
58 | return nil, err
59 | }
60 | client, err := strconv.ParseInt(row["Id"], 10, 16)
61 | if err != nil {
62 | return nil, err
63 | }
64 |
65 | // collation_connection
66 | row, err = ExecuteFetchMap(conn, "SHOW COLLATION WHERE `collation`=@@session.collation_connection")
67 | if err != nil {
68 | return nil, err
69 | }
70 | connection, err := strconv.ParseInt(row["Id"], 10, 16)
71 | if err != nil {
72 | return nil, err
73 | }
74 |
75 | // collation_server
76 | row, err = ExecuteFetchMap(conn, "SHOW COLLATION WHERE `collation`=@@session.collation_server")
77 | if err != nil {
78 | return nil, err
79 | }
80 | server, err := strconv.ParseInt(row["Id"], 10, 16)
81 | if err != nil {
82 | return nil, err
83 | }
84 |
85 | return &binlogdatapb.Charset{
86 | Client: int32(client),
87 | Conn: int32(connection),
88 | Server: int32(server),
89 | }, nil
90 | }
91 |
92 | // SetCharset changes the per-session character set variables.
93 | func SetCharset(conn *Conn, cs *binlogdatapb.Charset) error {
94 | sql := fmt.Sprintf(
95 | "SET @@session.character_set_client=%d, @@session.collation_connection=%d, @@session.collation_server=%d",
96 | cs.Client, cs.Conn, cs.Server)
97 | _, err := conn.ExecuteFetch(sql, 1, false)
98 | return err
99 | }
100 |
--------------------------------------------------------------------------------
/honeyPot/admin/potconfig.go:
--------------------------------------------------------------------------------
1 | package admin
2 |
3 | import (
4 | "database/sql"
5 | "fmt"
6 | "github.com/gin-gonic/gin"
7 | "honeypot/admin/tools"
8 | "net/http"
9 | "strconv"
10 | "strings"
11 | )
12 |
13 | type PotConfigs struct {
14 | Configid int
15 | Port int
16 | Payload string
17 | Fileexists int
18 | Username string
19 | Password string
20 | Filelist string
21 | Ip string
22 | }
23 |
24 | // PotConfig 重启系统后需初始化相关表
25 | func PotConfig(c *gin.Context) {
26 | islogin := tools.GetSession(c)
27 | if islogin {
28 | if c.Request.Method == "GET" {
29 | configid, _ := strconv.Atoi(c.Query("configid"))
30 | res := ConfigRead(configid)
31 | res.Filelist = tools.ZeroToNull(res.Filelist)
32 | res.Payload = tools.ZeroToNull(res.Payload)
33 | res.Username = tools.ZeroToNull(res.Username)
34 | res.Password = tools.ZeroToNull(res.Password)
35 | res.Ip = tools.ZeroToNull(res.Ip)
36 | filename := ""
37 |
38 | if configid == 1002 {
39 | _, err := tools.PathExists(tools.VpnFile)
40 | if err == nil {
41 | ss := strings.Split(tools.VpnFile, "/")
42 | filename = ss[len(ss)-1]
43 | }
44 | }
45 |
46 | c.HTML(http.StatusOK, "potconfig.html", gin.H{
47 | "filename": filename,
48 | "res": res,
49 | })
50 | }
51 | if c.Request.Method == "POST" {
52 | username := tools.Strip(tools.ZeroToNull(c.PostForm("username")))
53 | password := tools.Strip(tools.ZeroToNull(c.PostForm("password")))
54 | port, _ := strconv.Atoi(tools.Strip(c.PostForm("port")))
55 | filelist := tools.ZeroToNull(c.PostForm("filelist"))
56 | configid, _ := strconv.Atoi(tools.Strip(c.PostForm("configid")))
57 | payload := tools.ZeroToNull(c.PostForm("payload"))
58 | fileexists, _ := strconv.Atoi(c.PostForm("fileexists"))
59 | ip := tools.Strip(tools.ZeroToNull(c.PostForm("ip")))
60 |
61 | config1 := PotConfigs{configid, port, payload, fileexists, username, password, filelist, ip}
62 | code := ConfigSave(config1)
63 | c.JSON(http.StatusOK, gin.H{"code": code})
64 | }
65 | } else {
66 | c.HTML(http.StatusOK, "login.html", nil)
67 | }
68 | }
69 |
70 | func ConfigRead(configid int) (PotConfig1 PotConfigs) {
71 | db, err := sql.Open("sqlite3", tools.DbPath)
72 | checkErr(err)
73 | defer db.Close()
74 |
75 | querystring := fmt.Sprintf("SELECT * FROM pot_config WHERE configid = %d", configid)
76 | rows, err := db.Query(querystring)
77 | checkErr(err)
78 | result := PotConfigs{configid, 0, "", 0, "", "", "", ""}
79 | for rows.Next() {
80 | var (
81 | port int
82 | payload string
83 | fileexists int
84 | username string
85 | password string
86 | filelist string
87 | ip string
88 | )
89 | err = rows.Scan(&configid, &port, &payload, &fileexists, &username, &password, &filelist, &ip)
90 | if err == nil {
91 | result = PotConfigs{configid, port, payload, fileexists, username, password, filelist, ip}
92 | }
93 |
94 | }
95 | return result
96 | }
97 |
98 | func ConfigSave(PotConfig1 PotConfigs) (code int) {
99 | db, err := sql.Open("sqlite3", tools.DbPath)
100 | checkErr(err)
101 | defer db.Close()
102 |
103 | sqlStr := "UPDATE pot_config SET port = ?,payload = ?,fileexists = ?,username = ?,password = ?,filelist = ?,ip = ? WHERE configid = ?"
104 | stmt, err := db.Prepare(sqlStr)
105 | checkErr(err)
106 |
107 | _, err = stmt.Exec(PotConfig1.Port, PotConfig1.Payload, PotConfig1.Fileexists, PotConfig1.Username, PotConfig1.Password, PotConfig1.Filelist, PotConfig1.Ip, PotConfig1.Configid)
108 | if err != nil {
109 | checkErr(err)
110 | } else {
111 | return 0
112 | }
113 |
114 | return 1
115 | }
116 |
--------------------------------------------------------------------------------
/honeyPot/admin/jkxtmw/js/Pagination.js:
--------------------------------------------------------------------------------
1 | (function ($) {
2 |
3 | let Name = "Pagination";
4 |
5 | $.fn.Pagination = function (options) {
6 | let myDoom = this;
7 | // 默认值
8 | options = options || {};
9 | options.page = options.page || 1; // 当前页数
10 | options.count = options.count || 1; // 总数量
11 | options.limit = options.limit || 10; // 每页数量
12 | options.groups = options.groups || 5; // 连续出现几个页码按钮
13 | options.prev = options.prev || ''; // 自定义上一页按钮
14 | options.next = options.next || ''; // 自定义下一页按钮
15 | options.first = options.first || ''; // 自定义首页按钮
16 | options.last = options.last || ''; // 自定义尾页按钮
17 | options.onPageChange = options.onPageChange || function (page) {console.log(page)};
18 |
19 | let PageFloat = Math.floor(options.groups / 2), // 页码浮动量 10/2 = 5
20 | maxPage = Math.ceil(options.count / options.limit), // 总页数
21 | pageListHtml = "";
22 |
23 | let i = options.page - PageFloat;
24 | if (options.page + PageFloat > maxPage ){ i = maxPage - (PageFloat * 2);} // 100 - 5 * 2 = 90
25 | if (i < 1){i = 1 ;}
26 |
27 | do {
28 | let Selected = "";
29 | if (i === options.page){
30 | Selected = 'active';
31 | }
32 | pageListHtml += '| 时间 | 50 |请求IP | 51 |状态码 | 52 |请求方式 | 53 |请求地址 | 54 |原始日志 | 55 |
|---|---|---|---|---|---|
| {{$v.Time}} | 61 |{{$v.ClientIP}} | 62 |{{$v.StatusCode}} | 63 |{{$v.ReqMethod}} | 64 |{{$v.ReqUri}} | 65 |{{$v.Full_message}} | 66 |
13 |
97 |
98 |
99 |
--------------------------------------------------------------------------------
/honeyPot/plugins/vpn/resource/css/installClient.css:
--------------------------------------------------------------------------------
1 | /*2016.6.28 by zsy*/
2 | html,body{
3 | padidng:0;
4 | margin:0;
5 | min-width: 1060px;
6 | }
7 | div,span,ul,li{
8 | padding:0;
9 | margin:0;
10 | }
11 | /*清除浮动*/
12 | .clearfix:after{
13 | content:".";
14 | display:block;
15 | height:0;
16 | clear:both;
17 | visibility:hidden;
18 | }
19 | /*雪碧图*/
20 | .ecSpirit{
21 | background-image: url("../images/ec/ecSpirit.png"/*tpa=https://218.26.12.94/com/images/ec/ecSpirit.png*/);
22 | background-size:506px;
23 | }
24 | /*----------------------------------header------------------------------------*/
25 | .header{
26 | height:44px;
27 | min-width: 1060px;
28 | }
29 | /*----------------------------------navBar--------------------------------*/
30 | .nav{
31 | height:111px;
32 | background: #4489de;
33 | text-align: center;
34 | margin-bottom: 20px;
35 | }
36 | #navBar{
37 | width:1060px;
38 | height:111px;
39 | margin:0 auto;
40 | position: relative;
41 | text-align: center;
42 | color:#fff;
43 | cursor: pointer;
44 | -webkit-tap-highlight-color:rgba(0,0,0,0);
45 | }
46 | .deviceBtn{
47 | position:relative;
48 | /*top:-4px;*/
49 | display: inline-block;
50 | width:212px;
51 | height:71px;
52 | padding:20px 0;
53 | float:left;
54 | text-align:center;
55 | color:#fff;
56 | background: #4589DE;
57 | }
58 | #navAnim{
59 | position: absolute;
60 | box-sizing: border-box;
61 | width:212px;
62 | height:0;
63 | border-top:3px solid #4489de;
64 | border-bottom:3px solid #4489de;
65 | top:-4px;
66 | left:0;
67 | }
68 | #navBar .clickedBtn{
69 | -webkit-tap-highlight-color:rgba(0,0,0,0);
70 | }
71 | #navBar .deviceName{
72 | width:100%;
73 | height:20px;
74 | line-height:20px;
75 | font:16px 'Cambria';
76 | }
77 | .activeBtn{
78 | color:#4589DE;
79 | background: #fff;
80 | }
81 | /*-----------选中样式---分开写为了兼容低版本firefox不支持background-position-x/y分别设置------*/
82 | .windowsBtn span{
83 | background-position:0 -38px;
84 | }
85 | .macBtn span{
86 | background-position:-56px -38px;
87 | }
88 | .linuxBtn span{
89 | background-position:-112px -38px;
90 | }
91 | .androidBtn span{
92 | background-position:-169px -38px;
93 | }
94 | .iosBtn span{
95 | background-position:-224px -38px;
96 | }
97 | .windowsActiveBtn span{
98 | background-position:0 -94px;
99 | }
100 | .macActiveBtn span{
101 | background-position:-56px -94px;
102 | }
103 | .linuxActiveBtn span{
104 | background-position:-112px -94px;
105 | }
106 | .androidActiveBtn span{
107 | background-position:-169px -94px;
108 | }
109 | .iosActiveBtn span{
110 | background-position:-224px -94px;
111 | }
112 | /*----------------------------main------------------------------*/
113 | .mainWrap{
114 | width:100%;
115 | margin-top: 20px;
116 | text-align: center;
117 | }
118 | .main{
119 | width:1060px;
120 | height:550px;
121 | margin: 0 auto;
122 | overflow:hidden;
123 | position:relative;
124 | }
125 | .ulbox{
126 | width:5300px;
127 | position: absolute;
128 | left:0;
129 | }
130 | .ulbox ul{
131 | list-style: none;
132 | }
133 | .ulbox ul li{
134 | width:1060px;
135 | float:left;
136 | }
137 | /*-------------------------内容块左边------------------------*/
138 | .mainLeft{
139 | position: relative;
140 | display:inline-block;
141 | float: left;
142 | width:600px;
143 | }
144 | /*-------------------------内容块右边------------------------*/
145 | .mainRight{
146 | box-sizing: border-box;
147 | width:460px;
148 | display:inline-block;
149 | float:right;
150 | padding:140px 0 0 0;
151 | text-align: left;
152 | }
153 | .mainRight .title{
154 | font:bold 30px 'Cambria';
155 | margin:5px 0;
156 | }
157 | .mainRight .title span:nth-child(1){
158 | font-weight:normal;
159 | }
160 | .mainRight .subTitle{
161 | max-width: 470px;
162 | font:lighter 18px '微软雅黑';
163 | color:#5c5c5c;
164 | }
165 | .mainRight .downBtn{
166 | width:300px;
167 | display: block;
168 | height:36px;
169 | line-height:60px;
170 | border-radius:5px;
171 | margin:32px 0 20px 0;
172 | padding:15px 0;
173 | text-decoration:none;
174 | background:#99CC00;
175 | text-align:center;
176 | font:25px 'Microsoft YaHei';
177 | white-spacing:no-wrap;
178 | color:#fff;
179 | cursor:pointer;
180 | box-shadow: 1px 1px 5px 1px rgba(0,0,0,0.3);
181 | }
182 | .mainRight .downBtn:hover{
183 | background: #add633;
184 | box-shadow: 1px 1px 5px 1px rgba(0,0,0,0.25);
185 | }
186 | .mainRight .downBtn:active{
187 | background: #8abc00;
188 | }
189 | .mainRight .info{
190 | color:#a5a5a5;
191 | font:lighter 15px '微软雅黑';
192 | }
193 | .mainRight .help, .mainRight .tipsInfo{
194 | margin:22px 0;
195 | color:#a5a5a5;
196 | font-size: 14px;
197 | font-family: "Microsoft Yahei", sans-serif;
198 | }
199 | .mainRight .help a{
200 | color:#4489de;
201 | }
202 | .mainRight #linuxVersion span,.mainRight #androidVersion span{
203 | color:#a5a5a5;
204 | line-height: 17px;
205 | font-size: 15px;
206 | }
207 | .mainRight #linuxVersion a,.mainRight #androidVersion a{
208 | color:#4489DE;
209 | text-decoration: none;
210 | line-height: 21px;
211 | font-size: 13px;
212 | }
213 | .mainRight #linuxVersion a:hover,.mainRight #androidVersion a:hover{
214 | text-decoration:underline;
215 | }
--------------------------------------------------------------------------------
/honeyPot/utils/mysql/streaming_query.go:
--------------------------------------------------------------------------------
1 | /*
2 | Copyright 2017 Google Inc.
3 |
4 | Licensed under the Apache License, Version 2.0 (the "License");
5 | you may not use this file except in compliance with the License.
6 | You may obtain a copy of the License at
7 |
8 | http://www.apache.org/licenses/LICENSE-2.0
9 |
10 | Unless required by applicable law or agreedto in writing, software
11 | distributed under the License is distributed on an "AS IS" BASIS,
12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 | See the License for the specific language governing permissions and
14 | limitations under the License.
15 | */
16 |
17 | package mysql
18 |
19 | import (
20 | "vitess.io/vitess/go/sqltypes"
21 |
22 | querypb "vitess.io/vitess/go/vt/proto/query"
23 | )
24 |
25 | // This file contains the methods needed to execute streaming queries.
26 |
27 | // ExecuteStreamFetch starts a streaming query. Fields(), FetchNext() and
28 | // CloseResult() can be called once this is successful.
29 | // Returns a SQLError.
30 | func (c *Conn) ExecuteStreamFetch(query string) (err error) {
31 | defer func() {
32 | if err != nil {
33 | if sqlerr, ok := err.(*SQLError); ok {
34 | sqlerr.Query = query
35 | }
36 | }
37 | }()
38 |
39 | // Sanity check.
40 | if c.fields != nil {
41 | return NewSQLError(CRCommandsOutOfSync, SSUnknownSQLState, "streaming query already in progress")
42 | }
43 |
44 | // Send the query as a COM_QUERY packet.
45 | if err := c.WriteComQuery(query); err != nil {
46 | return err
47 | }
48 |
49 | // Get the result.
50 | _, _, colNumber, _, _, err := c.readComQueryResponse()
51 | if err != nil {
52 | return err
53 | }
54 | if colNumber == 0 {
55 | // OK packet, means no results. Save an empty Fields array.
56 | c.fields = make([]*querypb.Field, 0)
57 | return nil
58 | }
59 |
60 | // Read the fields, save them.
61 | fields := make([]querypb.Field, colNumber)
62 | fieldsPointers := make([]*querypb.Field, colNumber)
63 |
64 | // Read column headers. One packet per column.
65 | // Build the fields.
66 | for i := 0; i < colNumber; i++ {
67 | fieldsPointers[i] = &fields[i]
68 | if err := c.readColumnDefinition(fieldsPointers[i], i); err != nil {
69 | return err
70 | }
71 | }
72 |
73 | // Read the EOF after the fields if necessary.
74 | if c.Capabilities&CapabilityClientDeprecateEOF == 0 {
75 | // EOF is only present here if it's not deprecated.
76 | data, err := c.readEphemeralPacket()
77 | if err != nil {
78 | return NewSQLError(CRServerLost, SSUnknownSQLState, "%v", err)
79 | }
80 | defer c.recycleReadPacket()
81 | if isEOFPacket(data) {
82 | // This is what we expect.
83 | // Warnings and status flags are ignored.
84 | // goto: end
85 | } else if isErrorPacket(data) {
86 | return ParseErrorPacket(data)
87 | } else {
88 | return NewSQLError(CRCommandsOutOfSync, SSUnknownSQLState, "unexpected packet after fields: %v", data)
89 | }
90 | }
91 |
92 | c.fields = fieldsPointers
93 | return nil
94 | }
95 |
96 | // Fields returns the fields for an ongoing streaming query.
97 | func (c *Conn) Fields() ([]*querypb.Field, error) {
98 | if c.fields == nil {
99 | return nil, NewSQLError(CRCommandsOutOfSync, SSUnknownSQLState, "no streaming query in progress")
100 | }
101 | if len(c.fields) == 0 {
102 | // The query returned an empty field list.
103 | return nil, nil
104 | }
105 | return c.fields, nil
106 | }
107 |
108 | // FetchNext returns the next result for an ongoing streaming query.
109 | // It returns (nil, nil) if there is nothing more to read.
110 | func (c *Conn) FetchNext() ([]sqltypes.Value, error) {
111 | if c.fields == nil {
112 | // We are already done, and the result was closed.
113 | return nil, NewSQLError(CRCommandsOutOfSync, SSUnknownSQLState, "no streaming query in progress")
114 | }
115 |
116 | if len(c.fields) == 0 {
117 | // We received no fields, so there is no data.
118 | return nil, nil
119 | }
120 |
121 | data, err := c.ReadPacket()
122 | if err != nil {
123 | return nil, err
124 | }
125 |
126 | if isEOFPacket(data) {
127 | // Warnings and status flags are ignored.
128 | c.fields = nil
129 | return nil, nil
130 | } else if isErrorPacket(data) {
131 | // Error packet.
132 | return nil, ParseErrorPacket(data)
133 | }
134 |
135 | // Regular row.
136 | return c.parseRow(data, c.fields)
137 | }
138 |
139 | // CloseResult can be used to terminate a streaming query
140 | // early. It just drains the remaining values.
141 | func (c *Conn) CloseResult() {
142 | for c.fields != nil {
143 | rows, err := c.FetchNext()
144 | if err != nil || rows == nil {
145 | // We either got an error, or got the last result.
146 | c.fields = nil
147 | }
148 | }
149 | }
150 |
--------------------------------------------------------------------------------
/honeyPot/admin/potcontrol.go:
--------------------------------------------------------------------------------
1 | package admin
2 |
3 | import (
4 | "context"
5 | "database/sql"
6 | "fmt"
7 | "github.com/gin-gonic/gin"
8 | "golang.org/x/sync/errgroup"
9 | "honeypot/admin/tools"
10 | "honeypot/plugins/burpsuite"
11 | "honeypot/plugins/goby"
12 | "honeypot/plugins/mysql"
13 | "honeypot/plugins/vpn"
14 | "net/http"
15 | "strconv"
16 | "strings"
17 | "time"
18 | )
19 |
20 | var (
21 | G errgroup.Group
22 | GobyPot *http.Server
23 | VpnPot *http.Server
24 | BurpPot *http.Server
25 | )
26 |
27 | func PotControl(c *gin.Context){
28 | islogin := tools.GetSession(c)
29 | if islogin {
30 | if c.Request.Method == "POST" {
31 | configid, _ := strconv.Atoi(tools.Strip(c.PostForm("configid")))
32 | state, _ := strconv.Atoi(c.PostForm("state"))
33 |
34 | //确认状态一致
35 | if 0 == checkState(configid, state) {
36 | //执行实际的关闭开启操作
37 | code := changePot(configid, state)
38 |
39 | if code == 0 {
40 | code = changeState(configid, state)
41 | c.JSON(http.StatusOK, gin.H{"code": code})
42 | return
43 | }
44 | }
45 |
46 | c.JSON(http.StatusOK, gin.H{"code": 5})
47 | }
48 | }else {
49 | c.HTML(http.StatusOK, "login.html", nil)
50 | }
51 | }
52 |
53 | //检查蜜罐状态,port不为0且状态一致
54 | func checkState(configid, state int) (code int) {
55 | db, err := sql.Open("sqlite3", tools.DbPath)
56 | checkErr(err)
57 | defer db.Close()
58 | code = 1
59 |
60 | querystring := fmt.Sprintf("SELECT p.state,pc.port FROM pot as p, pot_config AS pc WHERE p.configid = %d and p.configid = pc.configid", configid)
61 | rows, err := db.Query(querystring)
62 | checkErr(err)
63 | for rows.Next() {
64 | var (
65 | state1 int
66 | port int
67 | )
68 | _ = rows.Scan(&state1, &port)
69 | if port > 0 && state == state1 {
70 | code = 0
71 | }
72 |
73 | }
74 | return code
75 | }
76 |
77 | //改变蜜罐状态,四个状态:0:启动成功;1:启动失败;2:关闭成功;3:关闭失败
78 | func changeState(configid, state int) (code int) {
79 | db, err := sql.Open("sqlite3", tools.DbPath)
80 | checkErr(err)
81 | defer db.Close()
82 |
83 | if state == 0 {
84 | state = 1
85 | } else {
86 | state = 0
87 | }
88 |
89 | sqlStr := "UPDATE pot SET state = ? WHERE configid = ?"
90 | stmt, err := db.Prepare(sqlStr)
91 | checkErr(err)
92 |
93 | _, err = stmt.Exec(state, configid)
94 | if err != nil {
95 | checkErr(err)
96 | } else {
97 | return 0
98 | }
99 |
100 | return 1
101 | }
102 |
103 | //实际蜜罐状态改变;0:成功;1:失败
104 | func changePot(configid, state int) (code int) {
105 | potconfig := ConfigRead(configid)
106 | port := strconv.Itoa(potconfig.Port)
107 |
108 | ctx, cancel := context.WithTimeout(context.Background(), 5*time.Second)
109 | defer cancel()
110 |
111 | //mysql蜜罐
112 | if configid == 1004 {
113 | //启动操作
114 | if state == 0 {
115 | go mysql.Mysql(mysql.PotConfigs(potconfig))
116 | }
117 | if state == 1 {
118 | mysql.Shutdown()
119 | }
120 | }
121 |
122 | //goby蜜罐
123 | if configid == 1003 {
124 | if state == 0 {
125 | payload := strings.Replace(potconfig.Payload, "'", "\\'", -1)
126 | api := tools.GobyApi1 + payload + tools.GobyApi2
127 |
128 | tools.WriteFile(tools.GobyFile, api)
129 | _, err := tools.PathExists(tools.GobyFile)
130 | if err != nil {
131 | return 1
132 | }
133 |
134 | goby.SetInfo(potconfig.Ip, port)
135 |
136 | GobyPot = &http.Server{
137 | Addr: ":" + port,
138 | Handler: goby.Goby(),
139 | ReadTimeout: 2 * time.Second,
140 | WriteTimeout: 5 * time.Second,
141 | }
142 | GobyPot.SetKeepAlivesEnabled(false)
143 |
144 | G.Go(func() error {
145 | return GobyPot.ListenAndServe()
146 | })
147 | }
148 | if state == 1 {
149 | if err := GobyPot.Shutdown(ctx); err != nil {
150 | fmt.Println("goby Shutdown:", err)
151 | return 1
152 | }
153 | }
154 | }
155 |
156 | //vpn蜜罐
157 | if configid == 1002 {
158 | if state == 0 {
159 | _, err := tools.PathExists(tools.VpnFile)
160 | if err != nil {
161 | return 1
162 | }
163 |
164 | VpnPot = &http.Server{
165 | Addr: ":" + port,
166 | Handler: vpn.VPN(),
167 | ReadTimeout: 2 * time.Second,
168 | WriteTimeout: 5 * time.Second,
169 | }
170 | VpnPot.SetKeepAlivesEnabled(false)
171 |
172 | G.Go(func() error {
173 | return VpnPot.ListenAndServe()
174 | })
175 | }
176 | if state == 1 {
177 | if err := VpnPot.Shutdown(ctx); err != nil {
178 | fmt.Println("vpn Shutdown:", err)
179 | return 1
180 | }
181 | }
182 | }
183 |
184 | //burp蜜罐
185 | if configid == 1001 {
186 | if state == 0 {
187 | api := tools.BurpApi1 + potconfig.Payload + tools.BurpApi2
188 |
189 | tools.WriteFile(tools.BurpFile, api)
190 |
191 | _, err := tools.PathExists(tools.BurpFile)
192 |
193 | if err != nil {
194 | return 1
195 | }
196 |
197 | BurpPot = &http.Server{
198 | Addr: ":" + port,
199 | Handler: burpsuite.BurpSuite(),
200 | ReadTimeout: 2 * time.Second,
201 | WriteTimeout: 5 * time.Second,
202 | }
203 | BurpPot.SetKeepAlivesEnabled(false)
204 |
205 | G.Go(func() error {
206 | return BurpPot.ListenAndServe()
207 | })
208 | }
209 | if state == 1 {
210 | if err := BurpPot.Shutdown(ctx); err != nil {
211 | fmt.Println("burp Shutdown:", err)
212 | return 1
213 | }
214 | }
215 | }
216 |
217 | return 0
218 | }
219 |
220 |
221 |
--------------------------------------------------------------------------------
/honeyPot/admin/jkxtmw/js/fileinput-zh.js:
--------------------------------------------------------------------------------
1 | /*!
2 | * FileInput Chinese Translations
3 | *
4 | * This file must be loaded after 'fileinput.js'. Patterns in braces '{}', or
5 | * any HTML markup tags in the messages must not be converted or translated.
6 | *
7 | * @see http://github.com/kartik-v/bootstrap-fileinput
8 | * @author kangqf
14 |
15 | {{if eq .res.Configid 1004}}
16 |
36 | {{end}}
37 |
38 | {{if eq .res.Configid 1001}}
39 |
51 | {{end}}
52 |
53 | {{if eq .res.Configid 1003}}
54 |
70 | {{end}}
71 |
72 | {{if eq .res.Configid 1002}}
73 |
89 | {{end}}
90 |
91 |
96 |
92 |
93 |
94 |
95 | {errors}',
89 | msgAjaxError: '{operation} 发生错误. 请重试!',
90 | msgAjaxProgressError: '{operation} 失败',
91 | msgDuplicateFile: '文件 "{name}",大小 "{size} KB" 已经被选中.忽略相同的文件.',
92 | msgResumableUploadRetriesExceeded: '文件 {file} 上传失败超过 {max} 次重试 ! 错误详情: {error}',
93 | msgPendingTime: '{time} 剩余',
94 | msgCalculatingTime: '计算剩余时间',
95 | ajaxOperations: {
96 | deleteThumb: '删除文件',
97 | uploadThumb: '上传文件',
98 | uploadBatch: '批量上传',
99 | uploadExtra: '表单数据上传'
100 | },
101 | dropZoneTitle: '拖拽文件到这里 …支持多文件同时上传', 102 | dropZoneClickTitle: '
(或点击{files}按钮选择文件)', 103 | fileActionSettings: { 104 | removeTitle: '删除文件', 105 | uploadTitle: '上传文件', 106 | downloadTitle: '下载文件', 107 | uploadRetryTitle: '重试', 108 | zoomTitle: '查看详情', 109 | dragTitle: '移动 / 重置', 110 | indicatorNewTitle: '没有上传', 111 | indicatorSuccessTitle: '上传', 112 | indicatorErrorTitle: '上传错误', 113 | indicatorPausedTitle: '上传已暂停', 114 | indicatorLoadingTitle: '上传 …' 115 | }, 116 | previewZoomButtonTitles: { 117 | prev: '预览上一个文件', 118 | next: '预览下一个文件', 119 | toggleheader: '缩放', 120 | fullscreen: '全屏', 121 | borderless: '无边界模式', 122 | close: '关闭当前预览' 123 | } 124 | }; 125 | })); 126 | -------------------------------------------------------------------------------- /honeyPot/admin/logsearch.go: -------------------------------------------------------------------------------- 1 | package admin 2 | 3 | import ( 4 | "database/sql" 5 | "fmt" 6 | "github.com/gin-gonic/gin" 7 | "honeypot/admin/tools" 8 | "net/http" 9 | ) 10 | 11 | func LogSearch(c *gin.Context){ 12 | islogin := tools.GetSession(c) 13 | starttime := c.PostForm("startDate") 14 | endtime := c.PostForm("endDate") 15 | ip := c.PostForm("ip") 16 | method := c.PostForm("reqmethod") 17 | tablename := c.PostForm("tablename") 18 | if tablename == ""{ 19 | tablename = "log" 20 | } 21 | if tools.In(tablename, tools.Config("httplog")){ 22 | res, err := HttpLogSearchQuery(tablename,starttime,endtime,ip,method) 23 | if islogin{ 24 | if err !=nil || len(res)==0{ 25 | res = append(res, HttpLogData{"","","","","",""}) 26 | } 27 | if len(res)!=0{ 28 | if c.Request.Method == "POST"{ 29 | c.JSON(http.StatusOK,gin.H{ 30 | "res" : res, 31 | }) 32 | } 33 | } 34 | } 35 | } 36 | if tools.In(tablename, tools.Config("nohttplog")){ 37 | res, err := NoHttpLogSearchQuery(tablename,starttime,endtime) 38 | if islogin{ 39 | if err !=nil || len(res)==0{ 40 | res = append(res, NohttpLogData{"",""}) 41 | } 42 | if len(res)!=0{ 43 | if c.Request.Method == "POST"{ 44 | c.JSON(http.StatusOK,gin.H{ 45 | "res" : res, 46 | }) 47 | } 48 | } 49 | } 50 | } 51 | } 52 | 53 | func HttpLogSearchQuery(tablename string,starttime string ,endtime string ,ip string, method string) (data []HttpLogData, e error){ 54 | tools.SafeDate(starttime) 55 | tools.SafeDate(endtime) 56 | tools.SafeDate(ip) 57 | tools.SafeDate(method) 58 | db, err := sql.Open("sqlite3", tools.DbPath) 59 | checkErr(err) 60 | // 查询数据 61 | var querystring string 62 | var result = make([]HttpLogData, 0) 63 | if starttime == "" && endtime =="" && ip == "" && method == ""{ 64 | querystring = fmt.Sprintf("SELECT time,clientIp,statusCode,reqMethod,reqUri,full_message FROM %s ORDER BY id DESC",tablename) 65 | } 66 | if starttime == "" && endtime =="" && ip != "" && method == ""{ 67 | querystring = fmt.Sprintf("SELECT time,clientIp,statusCode,reqMethod,reqUri,full_message FROM %s WHERE clientIP='%s' ORDER BY id DESC",tablename,ip) 68 | } 69 | if starttime == "" && endtime =="" && ip == "" && method != ""{ 70 | querystring = fmt.Sprintf("SELECT time,clientIp,statusCode,reqMethod,reqUri,full_message FROM %s WHERE reqMethod='%s' ORDER BY id DESC",tablename,method) 71 | } 72 | if starttime == "" && endtime =="" && ip != "" && method != ""{ 73 | querystring = fmt.Sprintf("SELECT time,clientIp,statusCode,reqMethod,reqUri,full_message FROM %s WHERE clientIP='%s' and reqMethod='%s' ORDER BY id DESC",tablename,ip,method) 74 | } 75 | if starttime != "" && endtime !="" && ip == "" && method == ""{ 76 | querystring = fmt.Sprintf("SELECT time,clientIp,statusCode,reqMethod,reqUri,full_message FROM %s WHERE time >='%s' AND Time <='%s' ORDER BY id DESC",tablename,starttime,endtime) 77 | } 78 | if starttime != "" && endtime !="" && ip != "" && method != ""{ 79 | querystring = fmt.Sprintf("SELECT time,clientIp,statusCode,reqMethod,reqUri,full_message FROM %s WHERE time >='%s' AND Time <='%s' AND clientIP='%s' and reqMethod='%s' ORDER BY id DESC",tablename,starttime,endtime,ip,method) 80 | } 81 | if starttime != "" && endtime !="" && ip == "" && method != ""{ 82 | querystring = fmt.Sprintf("SELECT time,clientIp,statusCode,reqMethod,reqUri,full_message FROM %s WHERE time >='%s' AND Time <='%s' AND reqMethod='%s' ORDER BY id DESC",tablename,starttime,endtime,method) 83 | } 84 | if starttime != "" && endtime !="" && ip != "" && method == ""{ 85 | querystring = fmt.Sprintf("SELECT time,clientIp,statusCode,reqMethod,reqUri,full_message FROM %s WHERE time >='%s' AND Time <='%s' AND clientIP='%s' ORDER BY id DESC",tablename,starttime,endtime,ip) 86 | } 87 | rows, err := db.Query(querystring) 88 | if err != nil{ 89 | fmt.Printf("数据库查询数据失败:%s\n", err) 90 | }else { 91 | for rows.Next() { 92 | var ( 93 | time,clientIp string 94 | statusCode string 95 | reqMethod,reqUri,full_message string 96 | ) 97 | err = rows.Scan(&time, &clientIp, &statusCode ,&reqMethod, &reqUri, &full_message) 98 | if err ==nil{ 99 | result = append(result, HttpLogData{time,clientIp,statusCode,reqMethod,reqUri,full_message}) 100 | }else { 101 | result = append(result, HttpLogData{"","","","","",""}) 102 | } 103 | } 104 | db.Close() 105 | } 106 | 107 | return result, nil 108 | } 109 | 110 | func NoHttpLogSearchQuery(tablename string,starttime string ,endtime string ) (data []NohttpLogData, e error){ 111 | tools.SafeDate(tablename) 112 | tools.SafeDate(starttime) 113 | tools.SafeDate(endtime) 114 | db, err := sql.Open("sqlite3", tools.DbPath) 115 | checkErr(err) 116 | // 查询数据 117 | var querystring string 118 | var result = make([]NohttpLogData, 0) 119 | if starttime == "" && endtime ==""{ 120 | querystring = fmt.Sprintf("SELECT time,msg FROM %s ORDER BY id DESC",tablename) 121 | } 122 | if starttime != "" && endtime !=""{ 123 | querystring = fmt.Sprintf("SELECT time,msg FROM %s WHERE time >='%s' AND Time <='%s' ORDER BY id DESC",tablename,starttime,endtime) 124 | } 125 | rows, err := db.Query(querystring) 126 | if err != nil{ 127 | fmt.Printf("数据库查询数据失败:%s\n", err) 128 | }else { 129 | for rows.Next() { 130 | var ( 131 | time,full_message string 132 | ) 133 | err = rows.Scan(&time, &full_message) 134 | if err ==nil{ 135 | result = append(result, NohttpLogData{time,full_message}) 136 | }else { 137 | result = append(result, NohttpLogData{"",""}) 138 | } 139 | } 140 | db.Close() 141 | } 142 | 143 | return result, nil 144 | } -------------------------------------------------------------------------------- /honeyPot/utils/mysql/sql_error.go: -------------------------------------------------------------------------------- 1 | /* 2 | Copyright 2017 Google Inc. 3 | 4 | Licensed under the Apache License, Version 2.0 (the "License"); 5 | you may not use this file except in compliance with the License. 6 | You may obtain a copy of the License at 7 | 8 | http://www.apache.org/licenses/LICENSE-2.0 9 | 10 | Unless required by applicable law or agreed to in writing, software 11 | distributed under the License is distributed on an "AS IS" BASIS, 12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 | See the License for the specific language governing permissions and 14 | limitations under the License. 15 | */ 16 | 17 | package mysql 18 | 19 | import ( 20 | "bytes" 21 | "fmt" 22 | "regexp" 23 | "strconv" 24 | 25 | "vitess.io/vitess/go/vt/sqlparser" 26 | "vitess.io/vitess/go/vt/vterrors" 27 | 28 | vtrpcpb "vitess.io/vitess/go/vt/proto/vtrpc" 29 | ) 30 | 31 | // SQLError is the error structure returned from calling a db library function 32 | type SQLError struct { 33 | Num int 34 | State string 35 | Message string 36 | Query string 37 | } 38 | 39 | // NewSQLError creates a new SQLError. 40 | // If sqlState is left empty, it will default to "HY000" (general error). 41 | // TODO: Should be aligned with vterrors, stack traces and wrapping 42 | func NewSQLError(number int, sqlState string, format string, args ...interface{}) *SQLError { 43 | if sqlState == "" { 44 | sqlState = SSUnknownSQLState 45 | } 46 | return &SQLError{ 47 | Num: number, 48 | State: sqlState, 49 | Message: fmt.Sprintf(format, args...), 50 | } 51 | } 52 | 53 | // Error implements the error interface 54 | func (se *SQLError) Error() string { 55 | buf := &bytes.Buffer{} 56 | buf.WriteString(se.Message) 57 | 58 | // Add MySQL errno and SQLSTATE in a format that we can later parse. 59 | // There's no avoiding string parsing because all errors 60 | // are converted to strings anyway at RPC boundaries. 61 | // See NewSQLErrorFromError. 62 | fmt.Fprintf(buf, " (errno %v) (sqlstate %v)", se.Num, se.State) 63 | 64 | if se.Query != "" { 65 | fmt.Fprintf(buf, " during query: %s", sqlparser.TruncateForLog(se.Query)) 66 | } 67 | 68 | return buf.String() 69 | } 70 | 71 | // Number returns the internal MySQL error code. 72 | func (se *SQLError) Number() int { 73 | return se.Num 74 | } 75 | 76 | // SQLState returns the SQLSTATE value. 77 | func (se *SQLError) SQLState() string { 78 | return se.State 79 | } 80 | 81 | var errExtract = regexp.MustCompile(`.*\(errno ([0-9]*)\) \(sqlstate ([0-9a-zA-Z]{5})\).*`) 82 | 83 | // NewSQLErrorFromError returns a *SQLError from the provided error. 84 | // If it's not the right type, it still tries to get it from a regexp. 85 | func NewSQLErrorFromError(err error) error { 86 | if err == nil { 87 | return nil 88 | } 89 | 90 | if serr, ok := err.(*SQLError); ok { 91 | return serr 92 | } 93 | 94 | msg := err.Error() 95 | match := errExtract.FindStringSubmatch(msg) 96 | if len(match) < 2 { 97 | // Map vitess error codes into the mysql equivalent 98 | code := vterrors.Code(err) 99 | num := ERUnknownError 100 | switch code { 101 | case vtrpcpb.Code_CANCELED: 102 | num = ERQueryInterrupted 103 | case vtrpcpb.Code_UNKNOWN: 104 | num = ERUnknownError 105 | case vtrpcpb.Code_INVALID_ARGUMENT: 106 | // TODO/demmer there are several more appropriate mysql error 107 | // codes for the various invalid argument cases. 108 | // it would be better to change the call sites to use 109 | // the mysql style "(errno X) (sqlstate Y)" format rather than 110 | // trying to add vitess error codes for all these cases 111 | num = ERUnknownError 112 | case vtrpcpb.Code_DEADLINE_EXCEEDED: 113 | num = ERQueryInterrupted 114 | case vtrpcpb.Code_NOT_FOUND: 115 | num = ERUnknownError 116 | case vtrpcpb.Code_ALREADY_EXISTS: 117 | num = ERUnknownError 118 | case vtrpcpb.Code_PERMISSION_DENIED: 119 | num = ERAccessDeniedError 120 | case vtrpcpb.Code_UNAUTHENTICATED: 121 | num = ERAccessDeniedError 122 | case vtrpcpb.Code_RESOURCE_EXHAUSTED: 123 | num = ERTooManyUserConnections 124 | case vtrpcpb.Code_FAILED_PRECONDITION: 125 | num = ERUnknownError 126 | case vtrpcpb.Code_ABORTED: 127 | num = ERQueryInterrupted 128 | case vtrpcpb.Code_OUT_OF_RANGE: 129 | num = ERUnknownError 130 | case vtrpcpb.Code_UNIMPLEMENTED: 131 | num = ERNotSupportedYet 132 | case vtrpcpb.Code_INTERNAL: 133 | num = ERUnknownError 134 | case vtrpcpb.Code_UNAVAILABLE: 135 | num = ERUnknownError 136 | case vtrpcpb.Code_DATA_LOSS: 137 | num = ERUnknownError 138 | } 139 | 140 | // Not found, build a generic SQLError. 141 | return &SQLError{ 142 | Num: num, 143 | State: SSUnknownSQLState, 144 | Message: msg, 145 | } 146 | } 147 | 148 | num, err := strconv.Atoi(match[1]) 149 | if err != nil { 150 | return &SQLError{ 151 | Num: ERUnknownError, 152 | State: SSUnknownSQLState, 153 | Message: msg, 154 | } 155 | } 156 | 157 | serr := &SQLError{ 158 | Num: num, 159 | State: match[2], 160 | Message: msg, 161 | } 162 | return serr 163 | } 164 | -------------------------------------------------------------------------------- /honeyPot/admin/jkxtmw/js/common.js: -------------------------------------------------------------------------------- 1 | //日期组件 2 | $(function () { 3 | $(".daterangepicker").datetimepicker({ 4 | fontAwesome: 'font-awesome', //解决图标缺失问题,直接用font-awesome代替 5 | forceParse: 0, //设置为0,时间不会跳转1899,会显示当前时间。 6 | language: 'zh-CN', //显示中文 7 | format: 'yyyy-mm-dd hh:ii:ss', //日期格式化 8 | weekStart: 1, //每周的第一天是 9 | initialDate: new Date(), //初始化当前日期 10 | endDate: new Date(), //结束日期,后面的不可选 11 | }); 12 | 13 | //设置endDate的最小值,不能小于startDate 14 | $("#startDate").datetimepicker().on('changeDate', function (e) { 15 | $('#endDate').datetimepicker('setStartDate', e.date); 16 | }) 17 | 18 | //设置startDate的最大值,不能大于endDate 19 | $("#endDate").datetimepicker().on('changeDate', function (e) { 20 | $('#startDate').datetimepicker('setEndDate', e.date); 21 | }) 22 | 23 | // 加载分页组件 24 | setpage() 25 | 26 | //获取url参数 27 | function GetQueryString(name) 28 | { 29 | var reg = new RegExp("(^[a-z]{5}/)"+ name +"/([^&]*)(&|$)"); 30 | var r = window.location.pathname.substr(1).match(reg); 31 | if(r!=null)return unescape(r[2]); return null; 32 | } 33 | 34 | //条件查询 35 | $("#btn1").click(function () { 36 | let tablename = GetQueryString("log") 37 | let startDate = $("#startDate").val() 38 | let endDate = $("#endDate").val() 39 | let ip = $("#ip").val() 40 | let reqmethod = $("#m option:selected").val() 41 | if (startDate !== "" && endDate === "") { 42 | alert("结束日期不能为空") 43 | } 44 | if (endDate !== "" && startDate === "") { 45 | alert("开始日期不能为空") 46 | } 47 | setpage() 48 | $.ajax({ 49 | type: 'post', 50 | url: 'logsearch', 51 | data: { 52 | tablename: tablename, 53 | startDate: startDate, 54 | endDate: endDate, 55 | ip: ip, 56 | reqmethod: reqmethod 57 | }, 58 | dataType: 'json', 59 | success: function (data) { 60 | $.each(data.res, function (index, obj) { 61 | 62 | $("#tr-" + index).show() 63 | 64 | $("#time-" + index).text(obj.Time) 65 | $("#ip-" + index).text(obj.ClientIP) 66 | $("#code-" + index).text(obj.StatusCode) 67 | $("#method-" + index).text(obj.ReqMethod) 68 | $("#uri-" + index).text(obj.ReqUri) 69 | $("#message-" + index).text(obj.Full_message) 70 | 71 | if (index === data.res.length - 1) { 72 | for (let i = index + 1; i < 10; i++) { 73 | $("#tr-" + i).hide() 74 | } 75 | } 76 | }) 77 | } 78 | }) 79 | 80 | }) 81 | 82 | //获取分页数量 83 | function getnum() { 84 | let tablename = GetQueryString("log") 85 | let startDate = $("#startDate").val() 86 | let endDate = $("#endDate").val() 87 | let ip = $("#ip").val() 88 | let reqmethod = $("#m option:selected").val() 89 | let num = 0; 90 | $.ajax({ 91 | type: 'post', 92 | url: 'logcount', 93 | data: { 94 | tablename: tablename, 95 | startDate: startDate, 96 | endDate: endDate, 97 | ip: ip, 98 | reqmethod: reqmethod 99 | }, 100 | dataType: "json", 101 | async: false, 102 | success: function (data) { 103 | num = data.datanum 104 | } 105 | }) 106 | return num 107 | } 108 | 109 | // 分页函数 110 | function setpage() { 111 | $(".myPagination").Pagination({ 112 | page: 1, 113 | count: getnum(), 114 | groups: 5, 115 | onPageChange: function (page) { 116 | let startDate = $("#startDate").val() 117 | let endDate = $("#endDate").val() 118 | let ip = $("#ip").val() 119 | let reqmethod = $("#m option:selected").val() 120 | $.ajax({ 121 | type: 'post', 122 | url: 'log', 123 | data: { 124 | page: page, 125 | startDate: startDate, 126 | endDate: endDate, 127 | ip: ip, 128 | reqmethod: reqmethod 129 | }, 130 | dataType: "json", 131 | success: function (data) { 132 | $.each(data.res, function (index, obj) { 133 | 134 | $("#tr-" + index).show() 135 | 136 | // console.log(obj.ReqUri) 137 | $("#time-" + index).text(obj.Time) 138 | $("#ip-" + index).text(obj.ClientIP) 139 | $("#code-" + index).text(obj.StatusCode) 140 | $("#method-" + index).text(obj.ReqMethod) 141 | $("#uri-" + index).text(obj.ReqUri) 142 | $("#message-" + index).text(obj.Full_message) 143 | if (index === data.res.length - 1) { 144 | for (let i = index + 1; i < 10; i++) { 145 | $("#tr-" + i).hide() 146 | } 147 | } 148 | }) 149 | } 150 | }) 151 | } 152 | }); 153 | } 154 | 155 | }) -------------------------------------------------------------------------------- /honeyPot/utils/mysql/flavor_mysql.go: -------------------------------------------------------------------------------- 1 | /* 2 | Copyright 2017 Google Inc. 3 | 4 | Licensed under the Apache License, Version 2.0 (the "License"); 5 | you may not use this file except in compliance with the License. 6 | You may obtain a copy of the License at 7 | 8 | http://www.apache.org/licenses/LICENSE-2.0 9 | 10 | Unless required by applicable law or agreed to in writing, software 11 | distributed under the License is distributed on an "AS IS" BASIS, 12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 | See the License for the specific language governing permissions and 14 | limitations under the License. 15 | */ 16 | 17 | package mysql 18 | 19 | import ( 20 | "fmt" 21 | "io" 22 | "time" 23 | 24 | "golang.org/x/net/context" 25 | "vitess.io/vitess/go/vt/proto/vtrpc" 26 | "vitess.io/vitess/go/vt/vterrors" 27 | ) 28 | 29 | // mysqlFlavor implements the Flavor interface for Mysql. 30 | type mysqlFlavor struct{} 31 | 32 | // masterGTIDSet is part of the Flavor interface. 33 | func (mysqlFlavor) masterGTIDSet(c *Conn) (GTIDSet, error) { 34 | qr, err := c.ExecuteFetch("SELECT @@GLOBAL.gtid_executed", 1, false) 35 | if err != nil { 36 | return nil, err 37 | } 38 | if len(qr.Rows) != 1 || len(qr.Rows[0]) != 1 { 39 | return nil, vterrors.Errorf(vtrpc.Code_INTERNAL, "unexpected result format for gtid_executed: %#v", qr) 40 | } 41 | return parseMysql56GTIDSet(qr.Rows[0][0].ToString()) 42 | } 43 | 44 | func (mysqlFlavor) startSlaveCommand() string { 45 | return "START SLAVE" 46 | } 47 | 48 | func (mysqlFlavor) startSlaveUntilAfter(pos Position) string { 49 | return fmt.Sprintf("START SLAVE UNTIL SQL_AFTER_GTIDS = '%s'", pos) 50 | } 51 | 52 | func (mysqlFlavor) stopSlaveCommand() string { 53 | return "STOP SLAVE" 54 | } 55 | 56 | // sendBinlogDumpCommand is part of the Flavor interface. 57 | func (mysqlFlavor) sendBinlogDumpCommand(c *Conn, slaveID uint32, startPos Position) error { 58 | gtidSet, ok := startPos.GTIDSet.(Mysql56GTIDSet) 59 | if !ok { 60 | return vterrors.Errorf(vtrpc.Code_INTERNAL, "startPos.GTIDSet is wrong type - expected Mysql56GTIDSet, got: %#v", startPos.GTIDSet) 61 | } 62 | 63 | // Build the command. 64 | sidBlock := gtidSet.SIDBlock() 65 | return c.WriteComBinlogDumpGTID(slaveID, "", 4, 0, sidBlock) 66 | } 67 | 68 | // resetReplicationCommands is part of the Flavor interface. 69 | func (mysqlFlavor) resetReplicationCommands() []string { 70 | return []string{ 71 | "STOP SLAVE", 72 | "RESET SLAVE ALL", // "ALL" makes it forget master host:port. 73 | "RESET MASTER", // This will also clear gtid_executed and gtid_purged. 74 | "SET GLOBAL rpl_semi_sync_master_enabled = false, GLOBAL rpl_semi_sync_slave_enabled = false", // semi-sync will be enabled if needed when slave is started. 75 | } 76 | } 77 | 78 | // setSlavePositionCommands is part of the Flavor interface. 79 | func (mysqlFlavor) setSlavePositionCommands(pos Position) []string { 80 | return []string{ 81 | "RESET MASTER", // We must clear gtid_executed before setting gtid_purged. 82 | fmt.Sprintf("SET GLOBAL gtid_purged = '%s'", pos), 83 | } 84 | } 85 | 86 | // setSlavePositionCommands is part of the Flavor interface. 87 | func (mysqlFlavor) changeMasterArg() string { 88 | return "MASTER_AUTO_POSITION = 1" 89 | } 90 | 91 | // status is part of the Flavor interface. 92 | func (mysqlFlavor) status(c *Conn) (SlaveStatus, error) { 93 | qr, err := c.ExecuteFetch("SHOW SLAVE STATUS", 100, true /* wantfields */) 94 | if err != nil { 95 | return SlaveStatus{}, err 96 | } 97 | if len(qr.Rows) == 0 { 98 | // The query returned no data, meaning the server 99 | // is not configured as a slave. 100 | return SlaveStatus{}, ErrNotSlave 101 | } 102 | 103 | resultMap, err := resultToMap(qr) 104 | if err != nil { 105 | return SlaveStatus{}, err 106 | } 107 | 108 | status := parseSlaveStatus(resultMap) 109 | status.Position.GTIDSet, err = parseMysql56GTIDSet(resultMap["Executed_Gtid_Set"]) 110 | if err != nil { 111 | return SlaveStatus{}, vterrors.Wrapf(err, "SlaveStatus can't parse MySQL 5.6 GTID (Executed_Gtid_Set: %#v)", resultMap["Executed_Gtid_Set"]) 112 | } 113 | return status, nil 114 | } 115 | 116 | // waitUntilPositionCommand is part of the Flavor interface. 117 | func (mysqlFlavor) waitUntilPositionCommand(ctx context.Context, pos Position) (string, error) { 118 | // A timeout of 0 means wait indefinitely. 119 | timeoutSeconds := 0 120 | if deadline, ok := ctx.Deadline(); ok { 121 | timeout := time.Until(deadline) 122 | if timeout <= 0 { 123 | return "", vterrors.Errorf(vtrpc.Code_DEADLINE_EXCEEDED, "timed out waiting for position %v", pos) 124 | } 125 | 126 | // Only whole numbers of seconds are supported. 127 | timeoutSeconds = int(timeout.Seconds()) 128 | if timeoutSeconds == 0 { 129 | // We don't want a timeout <1.0s to truncate down to become infinite. 130 | timeoutSeconds = 1 131 | } 132 | } 133 | 134 | return fmt.Sprintf("SELECT WAIT_UNTIL_SQL_THREAD_AFTER_GTIDS('%s', %v)", pos, timeoutSeconds), nil 135 | } 136 | 137 | // readBinlogEvent is part of the Flavor interface. 138 | func (mysqlFlavor) readBinlogEvent(c *Conn) (BinlogEvent, error) { 139 | result, err := c.ReadPacket() 140 | if err != nil { 141 | return nil, err 142 | } 143 | switch result[0] { 144 | case EOFPacket: 145 | return nil, NewSQLError(CRServerLost, SSUnknownSQLState, "%v", io.EOF) 146 | case ErrPacket: 147 | return nil, ParseErrorPacket(result) 148 | } 149 | return NewMysql56BinlogEvent(result[1:]), nil 150 | } 151 | 152 | // enableBinlogPlaybackCommand is part of the Flavor interface. 153 | func (mysqlFlavor) enableBinlogPlaybackCommand() string { 154 | return "" 155 | } 156 | 157 | // disableBinlogPlaybackCommand is part of the Flavor interface. 158 | func (mysqlFlavor) disableBinlogPlaybackCommand() string { 159 | return "" 160 | } 161 | -------------------------------------------------------------------------------- /honeyPot/utils/mysql/replication_position.go: -------------------------------------------------------------------------------- 1 | /* 2 | Copyright 2017 Google Inc. 3 | 4 | Licensed under the Apache License, Version 2.0 (the "License"); 5 | you may not use this file except in compliance with the License. 6 | You may obtain a copy of the License at 7 | 8 | http://www.apache.org/licenses/LICENSE-2.0 9 | 10 | Unless required by applicable law or agreedto in writing, software 11 | distributed under the License is distributed on an "AS IS" BASIS, 12 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 | See the License for the specific language governing permissions and 14 | limitations under the License. 15 | */ 16 | 17 | package mysql 18 | 19 | import ( 20 | "encoding/json" 21 | "fmt" 22 | "strings" 23 | 24 | "vitess.io/vitess/go/vt/proto/vtrpc" 25 | "vitess.io/vitess/go/vt/vterrors" 26 | ) 27 | 28 | const ( 29 | // MaximumPositionSize is the maximum size of a 30 | // replication position. It is used as the maximum column size in the _vt.reparent_journal and 31 | // other related tables. A row has a maximum size of 65535 bytes. So 32 | // we want to stay under that. We use VARBINARY so the 33 | // character set doesn't matter, we only store ascii 34 | // characters anyway. 35 | MaximumPositionSize = 64000 36 | ) 37 | 38 | // Position represents the information necessary to describe which 39 | // transactions a server has seen, so that it can request a replication stream 40 | // from a new master that picks up where it left off. 41 | // 42 | // This must be a concrete struct because custom Unmarshalers can't be 43 | // registered on an interface. 44 | // 45 | // The == operator should not be used with Position, because the 46 | // underlying GTIDSet might use slices, which are not comparable. Using == in 47 | // those cases will result in a run-time panic. 48 | type Position struct { 49 | // This is a zero byte compile-time check that no one is trying to 50 | // use == or != with Position. Without this, we won't know there's 51 | // a problem until the runtime panic. Note that this must not be 52 | // the last field of the struct, or else the Go compiler will add 53 | // padding to prevent pointers to this field from becoming invalid. 54 | _ [0]struct{ _ []byte } 55 | 56 | // GTIDSet is the underlying GTID set. It must not be anonymous, 57 | // or else Position would itself also implement the GTIDSet interface. 58 | GTIDSet GTIDSet 59 | } 60 | 61 | // Equal returns true if this position is equal to another. 62 | func (rp Position) Equal(other Position) bool { 63 | if rp.GTIDSet == nil { 64 | return other.GTIDSet == nil 65 | } 66 | return rp.GTIDSet.Equal(other.GTIDSet) 67 | } 68 | 69 | // AtLeast returns true if this position is equal to or after another. 70 | func (rp Position) AtLeast(other Position) bool { 71 | if rp.GTIDSet == nil { 72 | return other.GTIDSet == nil 73 | } 74 | return rp.GTIDSet.Contains(other.GTIDSet) 75 | } 76 | 77 | // String returns a string representation of the underlying GTIDSet. 78 | // If the set is nil, it returns "