updates

malice-plugins · Feb 10, 2019 · e2c95dd · e2c95dd
1 parent 1c57e12
commit e2c95dd
Show file tree

Hide file tree

Showing 9 changed files with 50 additions and 28 deletions.
diff --git a/Makefile b/Makefile
@@ -50,6 +50,10 @@ push: build tag
 	docker push $(ORG)/$(NAME):$(VERSION)
 	docker push $(ORG)/$(NAME):latest
 
+.PHONY: key
+key:
+	@$(shell cat license.key | base64 | pbcopy)
+
 go-test:
 	go get
 	go test -v
@@ -79,7 +83,7 @@ ifeq ("$(shell docker inspect -f {{.State.Running}} elasticsearch)", "true")
 	@docker rm -f elasticsearch || true
 endif
 	@echo "===> Starting elasticsearch"
-	@docker run --init -d --name elasticsearch -p 9200:9200 malice/elasticsearch:6.5; sleep 15
+	@docker run --init -d --name elasticsearch malice/elasticsearch:6.6; sleep 20
 
 .PHONY: malware
 malware:
@@ -104,7 +108,7 @@ test_elastic: start_elasticsearch malware
 	docker run --rm --link elasticsearch -e MALICE_ELASTICSEARCH_URL=http://elasticsearch:9200 -v $(PWD):/malware $(ORG)/$(NAME):$(VERSION) -V $(MALWARE)
 	@echo "===> ${NAME} test_elastic NOT found"
 	docker run --rm --link elasticsearch -e MALICE_ELASTICSEARCH_URL=http://elasticsearch:9200 -v $(PWD):/malware $(ORG)/$(NAME):$(VERSION) -V $(NOT_MALWARE)
-	http localhost:9200/malice/_search | jq . > docs/elastic.json
+	@docker run --rm --link elasticsearch --entrypoint=sh blacktop/httpie -c "http elasticsearch:9200/malice/_search | jq ." > docs/elastic.json
 
 .PHONY: test_markdown
 test_markdown: test_elastic

diff --git a/NOTES.md b/NOTES.md
@@ -9,6 +9,8 @@
 
 ### License
 
+> **NOTE:** I have to VPN to Cali for the site to work
+
 - Get Trial Code Here: https://www.kaspersky.com/small-to-medium-business-security/downloads/file-server-free-trial
 - To convert your activation code to a license.key go here: https://activation.kaspersky.com/en/
 - Activate Trial Code Here: https://keyfile.kaspersky.com/en/
@@ -29,10 +31,6 @@ https://my.kaspersky.com/MyLicenses#allx
 - https://products.s.kaspersky-labs.com/multilanguage/endpoints/kesl/klnagent_10.1.1-26_i386.deb
 - https://products.s.kaspersky-labs.com/multilanguage/file_servers/kavlinuxserver8.0/kav4fs_8.0.4-312_i386.deb
 
-## Stargazers over time
-
-[![Stargazers over time](https://starcharts.herokuapp.com/maliceio/malice.svg)](https://starcharts.herokuapp.com/maliceio/malice)
-
 ## Others
 
 - https://bitbucket.org/cse-assemblyline/alsvc_kaspersky/src

diff --git a/README.md b/README.md
@@ -2,7 +2,7 @@
 
 # malice-kaspersky
 
-[![Circle CI](https://circleci.com/gh/malice-plugins/kaspersky.png?style=shield)](https://circleci.com/gh/malice-plugins/kaspersky) [![License](http://img.shields.io/:license-mit-blue.svg)](http://doge.mit-license.org) [![Docker Stars](https://img.shields.io/docker/stars/malice/kaspersky.svg)](https://store.docker.com/community/images/malice/kaspersky) [![Docker Pulls](https://img.shields.io/docker/pulls/malice/kaspersky.svg)](https://store.docker.com/community/images/malice/kaspersky) [![Docker Image](https://img.shields.io/badge/docker%20image-615MB-blue.svg)](https://store.docker.com/community/images/malice/kaspersky)
+[![Circle CI](https://circleci.com/gh/malice-plugins/kaspersky.png?style=shield)](https://circleci.com/gh/malice-plugins/kaspersky) [![License](http://img.shields.io/:license-mit-blue.svg)](http://doge.mit-license.org) [![Docker Stars](https://img.shields.io/docker/stars/malice/kaspersky.svg)](https://store.docker.com/community/images/malice/kaspersky) [![Docker Pulls](https://img.shields.io/docker/pulls/malice/kaspersky.svg)](https://store.docker.com/community/images/malice/kaspersky) [![Docker Image](https://img.shields.io/badge/docker%20image-618MB-blue.svg)](https://store.docker.com/community/images/malice/kaspersky)
 
 Malice Kaspersky Antivirus Plugin
 

diff --git a/docs/SAMPLE.md b/docs/SAMPLE.md
@@ -1,10 +1,10 @@
 #### Kaspersky
 | Infected      | Result      | Engine      | Updated      |
 |:-------------:|:-----------:|:-----------:|:------------:|
-| true | Backdoor.Win32.Lecna.ab | 8.0.4.312 | 20190107 |
+| true | Backdoor.Win32.Lecna.ab | 8.0.4.312 | 20190210 |
 
 #### Kaspersky
 | Infected      | Result      | Engine      | Updated      |
 |:-------------:|:-----------:|:-----------:|:------------:|
-| false |  | 8.0.4.312 | 20190107 |
+| false |  | 8.0.4.312 | 20190210 |
 
diff --git a/docs/elastic.json b/docs/elastic.json
@@ -1,5 +1,5 @@
 {
-  "took": 59,
+  "took": 154,
   "timed_out": false,
   "_shards": {
     "total": 1,
@@ -14,43 +14,43 @@
       {
         "_index": "malice",
         "_type": "samples",
-        "_id": "ObEWKmgBEZR801PrnCBZ",
+        "_id": "mUL81GgBOBH6onWOE_9t",
         "_score": 1,
         "_source": {
           "plugins": {
             "av": {
               "kaspersky": {
-                "database": "9314122",
+                "database": "9515591",
                 "engine": "8.0.4.312",
                 "infected": true,
-                "markdown": "#### Kaspersky\n| Infected      | Result      | Engine      | Updated      |\n|:-------------:|:-----------:|:-----------:|:------------:|\n| true | Backdoor.Win32.Lecna.ab | 8.0.4.312 | 20190107 |\n",
+                "markdown": "#### Kaspersky\n| Infected      | Result      | Engine      | Updated      |\n|:-------------:|:-----------:|:-----------:|:------------:|\n| true | Backdoor.Win32.Lecna.ab | 8.0.4.312 | 20190210 |\n",
                 "result": "Backdoor.Win32.Lecna.ab",
-                "updated": "20190107"
+                "updated": "20190210"
               }
             }
           },
-          "scan_date": "2019-01-07T20:52:31.440651364Z"
+          "scan_date": "2019-02-10T01:18:36.3730451Z"
         }
       },
       {
         "_index": "malice",
         "_type": "samples",
-        "_id": "OrEXKmgBEZR801PrBiBu",
+        "_id": "mkL81GgBOBH6onWOfv9w",
         "_score": 1,
         "_source": {
           "plugins": {
             "av": {
               "kaspersky": {
-                "database": "9314122",
+                "database": "9515591",
                 "engine": "8.0.4.312",
                 "infected": false,
-                "markdown": "#### Kaspersky\n| Infected      | Result      | Engine      | Updated      |\n|:-------------:|:-----------:|:-----------:|:------------:|\n| false |  | 8.0.4.312 | 20190107 |\n",
+                "markdown": "#### Kaspersky\n| Infected      | Result      | Engine      | Updated      |\n|:-------------:|:-----------:|:-----------:|:------------:|\n| false |  | 8.0.4.312 | 20190210 |\n",
                 "result": "",
-                "updated": "20190107"
+                "updated": "20190210"
               }
             }
           },
-          "scan_date": "2019-01-07T20:52:58.604237586Z"
+          "scan_date": "2019-02-10T01:19:03.7903367Z"
         }
       }
     ]

diff --git a/docs/results.json b/docs/results.json
@@ -1,9 +1,9 @@
 {
   "kaspersky": {
     "infected": true,
-    "result": "EICAR-Test-File",
+    "result": "Backdoor.Win32.Lecna.ab",
     "engine": "8.0.4.312",
-    "database": "9314122",
-    "updated": "20190107"
+    "database": "9515591",
+    "updated": "20190210"
   }
 }
diff --git a/go.mod b/go.mod
@@ -0,0 +1,20 @@
+module github.com/malice-plugins/kaspersky
+
+require (
+	github.com/Sirupsen/logrus v1.3.0
+	github.com/fatih/structs v1.1.0
+	github.com/gorilla/context v1.1.1
+	github.com/gorilla/mux v1.6.2
+	github.com/konsorten/go-windows-terminal-sequences v1.0.1
+	github.com/mailru/easyjson v0.0.0-20180823135443-60711f1a8329
+	github.com/malice-plugins/pkgs v0.0.0-20190107161315-79532f02e4f0
+	github.com/moul/http2curl v1.0.0
+	github.com/olivere/elastic v6.2.15+incompatible
+	github.com/parnurzeal/gorequest v0.2.15
+	github.com/pkg/errors v0.8.1
+	github.com/urfave/cli v1.20.0
+	golang.org/x/crypto v0.0.0-20190103213133-ff983b9c42bc
+	golang.org/x/net v0.0.0-20190107155100-1a61f4433d85
+	golang.org/x/sys v0.0.0-20190107070147-cb59ee366067
+	golang.org/x/text v0.3.0
+)
diff --git a/tests/av_license.out b/tests/av_license.out
@@ -1,8 +1,8 @@
  * Starting Kaspersky Lab Framework Supervisor kav4fs-supervisor
    ...done.
 License status:
-	Aggregate expiration date:           2019-01-11
-	Days remaining until expiration:     4
+	Aggregate expiration date:           2019-03-12
+	Days remaining until expiration:     30
 	Functionality:                       Full functionality
 	License status:                      Valid
-	Active license number:               1D64-0003F5-5728612E
+	Active license number:               1D64-0003F5-572B42CD
diff --git a/tests/av_version.out b/tests/av_version.out
@@ -2,7 +2,7 @@
    ...done.
 Name:                Kaspersky Anti-Virus for Linux File Server
 Version:             8.0.4.312
-Install date:        2019-01-07 20:42:08
+Install date:        2019-02-10 01:04:56
 License state:       Installed
-License expire date: 2019-01-11
+License expire date: 2019-03-12