#!/usr/bin/env python # -*- coding: utf-8 -*- # ***********************IMPORTANT NMAP LICENSE TERMS************************ # * * # * The Nmap Security Scanner is (C) 1996-2019 Insecure.Com LLC ("The Nmap * # * Project"). Nmap is also a registered trademark of the Nmap Project. * # * This program is free software; you may redistribute and/or modify it * # * under the terms of the GNU General Public License as published by the * # * Free Software Foundation; Version 2 ("GPL"), BUT ONLY WITH ALL OF THE * # * CLARIFICATIONS AND EXCEPTIONS DESCRIBED HEREIN. This guarantees your * # * right to use, modify, and redistribute this software under certain * # * conditions. If you wish to embed Nmap technology into proprietary * # * software, we sell alternative licenses (contact sales@nmap.com). * # * Dozens of software vendors already license Nmap technology such as * # * host discovery, port scanning, OS detection, version detection, and * # * the Nmap Scripting Engine. * # * * # * Note that the GPL places important restrictions on "derivative works", * # * yet it does not provide a detailed definition of that term. To avoid * # * misunderstandings, we interpret that term as broadly as copyright law * # * allows. For example, we consider an application to constitute a * # * derivative work for the purpose of this license if it does any of the * # * following with any software or content covered by this license * # * ("Covered Software"): * # * * # * o Integrates source code from Covered Software. * # * * # * o Reads or includes copyrighted data files, such as Nmap's nmap-os-db * # * or nmap-service-probes. * # * * # * o Is designed specifically to execute Covered Software and parse the * # * results (as opposed to typical shell or execution-menu apps, which will * # * execute anything you tell them to). * # * * # * o Includes Covered Software in a proprietary executable installer. The * # * installers produced by InstallShield are an example of this. Including * # * Nmap with other software in compressed or archival form does not * # * trigger this provision, provided appropriate open source decompression * # * or de-archiving software is widely available for no charge. For the * # * purposes of this license, an installer is considered to include Covered * # * Software even if it actually retrieves a copy of Covered Software from * # * another source during runtime (such as by downloading it from the * # * Internet). * # * * # * o Links (statically or dynamically) to a library which does any of the * # * above. * # * * # * o Executes a helper program, module, or script to do any of the above. * # * * # * This list is not exclusive, but is meant to clarify our interpretation * # * of derived works with some common examples. Other people may interpret * # * the plain GPL differently, so we consider this a special exception to * # * the GPL that we apply to Covered Software. Works which meet any of * # * these conditions must conform to all of the terms of this license, * # * particularly including the GPL Section 3 requirements of providing * # * source code and allowing free redistribution of the work as a whole. * # * * # * As another special exception to the GPL terms, the Nmap Project grants * # * permission to link the code of this program with any version of the * # * OpenSSL library which is distributed under a license identical to that * # * listed in the included docs/licenses/OpenSSL.txt file, and distribute * # * linked combinations including the two. * # * * # * The Nmap Project has permission to redistribute Npcap, a packet * # * capturing driver and library for the Microsoft Windows platform. * # * Npcap is a separate work with it's own license rather than this Nmap * # * license. Since the Npcap license does not permit redistribution * # * without special permission, our Nmap Windows binary packages which * # * contain Npcap may not be redistributed without special permission. * # * * # * Any redistribution of Covered Software, including any derived works, * # * must obey and carry forward all of the terms of this license, including * # * obeying all GPL rules and restrictions. For example, source code of * # * the whole work must be provided and free redistribution must be * # * allowed. All GPL references to "this License", are to be treated as * # * including the terms and conditions of this license text as well. * # * * # * Because this license imposes special exceptions to the GPL, Covered * # * Work may not be combined (even as part of a larger work) with plain GPL * # * software. The terms, conditions, and exceptions of this license must * # * be included as well. This license is incompatible with some other open * # * source licenses as well. In some cases we can relicense portions of * # * Nmap or grant special permissions to use it in other open source * # * software. Please contact fyodor@nmap.org with any such requests. * # * Similarly, we don't incorporate incompatible open source software into * # * Covered Software without special permission from the copyright holders. * # * * # * If you have any questions about the licensing restrictions on using * # * Nmap in other works, we are happy to help. As mentioned above, we also * # * offer an alternative license to integrate Nmap into proprietary * # * applications and appliances. These contracts have been sold to dozens * # * of software vendors, and generally include a perpetual license as well * # * as providing support and updates. They also fund the continued * # * development of Nmap. Please email sales@nmap.com for further * # * information. * # * * # * If you have received a written license agreement or contract for * # * Covered Software stating terms other than these, you may choose to use * # * and redistribute Covered Software under those terms instead of these. * # * * # * Source is provided to this software because we believe users have a * # * right to know exactly what a program is going to do before they run it. * # * This also allows you to audit the software for security holes. * # * * # * Source code also allows you to port Nmap to new platforms, fix bugs, * # * and add new features. You are highly encouraged to send your changes * # * to the dev@nmap.org mailing list for possible incorporation into the * # * main distribution. By sending these changes to Fyodor or one of the * # * Insecure.Org development mailing lists, or checking them into the Nmap * # * source code repository, it is understood (unless you specify * # * otherwise) that you are offering the Nmap Project the unlimited, * # * non-exclusive right to reuse, modify, and relicense the code. Nmap * # * will always be available Open Source, but this is important because * # * the inability to relicense code has caused devastating problems for * # * other Free Software projects (such as KDE and NASM). We also * # * occasionally relicense the code to third parties as discussed above. * # * If you wish to specify special license conditions of your * # * contributions, just say so when you send them. * # * * # * This program is distributed in the hope that it will be useful, but * # * WITHOUT ANY WARRANTY; without even the implied warranty of * # * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Nmap * # * license file for more details (it's in a COPYING file included with * # * Nmap, and also available from https://svn.nmap.org/nmap/COPYING) * # * * # ***************************************************************************/ import gtk import os.path import re import copy from zenmapGUI.higwidgets.higwindows import HIGWindow from zenmapGUI.higwidgets.higboxes import HIGVBox from zenmapGUI.higwidgets.higbuttons import HIGButton, HIGToggleButton from zenmapGUI.higwidgets.higboxes import HIGVBox, HIGHBox, HIGSpacer,\ hig_box_space_holder from zenmapGUI.higwidgets.higlabels import HIGSectionLabel, HIGEntryLabel,\ HintWindow from zenmapGUI.higwidgets.higtables import HIGTable from zenmapGUI.higwidgets.higdialogs import HIGAlertDialog from types import StringTypes import datetime from zenmapCore.Name import APP_DISPLAY_NAME import zenmapCore.I18N from zenmapCore.UmitLogging import log from zenmapCore.NmapOptions import split_quoted from zenmapCore.SearchResult import SearchDir, SearchDB, SearchDummy from zenmapCore.UmitConf import is_maemo from zenmapCore.UmitConf import SearchConfig from zenmapGUI.FileChoosers import DirectoryChooserDialog search_config = SearchConfig() class SearchParser(object): """This class is responsible for parsing the search string, and updating the search dictionary (which is, in turn, passed to classes that perform the actual search). It holds a reference to the SearchGUI object, which is used to access its search_dict dictionary, so that all dictionary handling is performed here. It is also responsible for adding additional directories to the SearchGUI object via the 'dir:' operator.""" def __init__(self, search_gui, search_keywords): self.search_gui = search_gui self.search_dict = search_gui.search_dict # We need to make an operator->searchkey mapping, since the search # entry field and the search classes have different syntax. # # NOTE: if you want to add a new search key not handled by the # SearchResult class, you should add a new method match_CRITERIANAME to # the SearchResult class. For example, if you'd like a "noodles" # criteria, you need to create the method # SearchResult.match_noodles(self, noodles_string). To see how searches # are actually performed, start reading from the SearchResult.search() # method. self.ops2keys = copy.deepcopy(search_keywords) # This is not really an operator (see below) self.ops2keys["dir"] = "dir" def update(self, search): """Updates the search dictionary by parsing the input string.""" # Kill leftover keys and parse again. SLOW? Not really. self.search_dict.clear() for word in split_quoted(search): if word.find(":") != -1: # We have an operator in our word, so we make the part left of # the semicolon a key, and the part on the right a value op, arg = word.split(":", 1) if op in self.ops2keys: key = self.ops2keys[op] if key in self.search_dict: self.search_dict[key].append(arg) else: self.search_dict[key] = [arg] else: # Just a simple keyword if "keyword" in self.search_dict: self.search_dict["keyword"].append(word) else: self.search_dict["keyword"] = [word] # Check if we have any dir: operators in our map, and if so, add them # to the search_gui object and remove them from the map. The dir: # operator isn't a real operator, in a sense that it doesn't need to be # processed by the SearchResult.search() function. It is needed only to # create a new SearchDir object, which is then used to perform the # actual search(). self.search_gui.init_search_dirs(self.search_dict.pop("dir", [])) class SearchGUI(gtk.VBox, object): """This class is a VBox that holds the search entry field and buttons on top, and the results list on the bottom. The "Cancel" and "Open" buttons are a part of the SearchWindow class, not SearchGUI.""" def __init__(self, search_window): gtk.VBox.__init__(self) self._create_widgets() self._pack_widgets() self._connect_events() # Search options self.options = {} self.options["file_extension"] = search_config.file_extension self.options["directory"] = search_config.directory self.options["search_db"] = search_config.search_db self.parsed_results = {} self._set_result_view() self.id = 0 self.search_window = search_window # The Search* objects are created once per Search Window invocation, so # that they get a list of scans only once, not whenever the search # conditions change if self.options["search_db"]: try: self.search_db = SearchDB() except ImportError, e: self.search_db = SearchDummy() self.no_db_warning.show() self.no_db_warning.set_text( 'Warning: The database of saved scans is not ' 'available. (%s.) Use "Include Directory" under ' '"Expressions" to search a directory.' % str(e)) # Search directories can be added via the "dir:" operator, so it needs # to be a map self.search_dirs = {} self.init_search_dirs() # We create an empty search dictionary, since SearchParser will fill it # with keywords as it encounters different operators in the search # string. self.search_dict = dict() # We need to define our own keyword search dictionary search_keywords = dict() search_keywords["keyword"] = "keyword" search_keywords["profile"] = "profile" search_keywords["pr"] = "profile" search_keywords["target"] = "target" search_keywords["t"] = "target" search_keywords["option"] = "option" search_keywords["o"] = "option" search_keywords["date"] = "date" search_keywords["d"] = "date" search_keywords["after"] = "after" search_keywords["a"] = "after" search_keywords["before"] = "before" search_keywords["b"] = "before" search_keywords["os"] = "os" search_keywords["scanned"] = "scanned" search_keywords["sp"] = "scanned" search_keywords["open"] = "open" search_keywords["op"] = "open" search_keywords["closed"] = "closed" search_keywords["cp"] = "closed" search_keywords["filtered"] = "filtered" search_keywords["fp"] = "filtered" search_keywords["unfiltered"] = "unfiltered" search_keywords["ufp"] = "unfiltered" search_keywords["open|filtered"] = "open_filtered" search_keywords["ofp"] = "open_filtered" search_keywords["closed|filtered"] = "closed_filtered" search_keywords["cfp"] = "closed_filtered" search_keywords["service"] = "service" search_keywords["s"] = "service" search_keywords["inroute"] = "in_route" search_keywords["ir"] = "in_route" self.search_parser = SearchParser(self, search_keywords) # This list holds the (operator, argument) tuples, parsed from the GUI # criteria rows self.gui_criteria_list = [] # Do an initial "empty" search, so that the results window initially # holds all scans in the database self.search_parser.update("") self.start_search() def init_search_dirs(self, dirs=[]): # Start fresh self.search_dirs.clear() # If specified, add the search directory from the Zenmap config file to # the map conf_dir = self.options["directory"] if conf_dir: self.search_dirs[conf_dir] = SearchDir( conf_dir, self.options["file_extension"]) # Process any other dirs (as added by the dir: operator) for dir in dirs: self.search_dirs[dir] = SearchDir( dir, self.options["file_extension"]) def _create_widgets(self): # Search box and buttons self.search_top_hbox = HIGHBox() self.search_label = HIGSectionLabel(_("Search:")) self.search_entry = gtk.Entry() self.expressions_btn = HIGToggleButton( _("Expressions "), gtk.STOCK_EDIT) # The quick reference tooltip button self.search_tooltip_btn = HIGButton(" ", gtk.STOCK_INFO) # The expression VBox. This is only visible once the user clicks on # "Expressions" self.expr_vbox = gtk.VBox() # Results section self.result_list = gtk.ListStore(str, str, int) # title, date, id self.result_view = gtk.TreeView(self.result_list) self.result_scrolled = gtk.ScrolledWindow() self.result_title_column = gtk.TreeViewColumn(_("Scan")) self.result_date_column = gtk.TreeViewColumn(_("Date")) self.no_db_warning = gtk.Label() self.no_db_warning.set_line_wrap(True) self.no_db_warning.set_no_show_all(True) self.expr_window = None def _pack_widgets(self): # Packing label, search box and buttons self.search_top_hbox.set_spacing(4) self.search_top_hbox.pack_start(self.search_label, False) self.search_top_hbox.pack_start(self.search_entry, True) self.search_top_hbox.pack_start(self.expressions_btn, False) self.search_top_hbox.pack_start(self.search_tooltip_btn, False) # The expressions (if any) should be tightly packed so that they don't # take too much screen real-estate self.expr_vbox.set_spacing(0) # Packing the result section self.result_scrolled.add(self.result_view) self.result_scrolled.set_policy( gtk.POLICY_AUTOMATIC, gtk.POLICY_AUTOMATIC) # Packing it all together self.set_spacing(4) self.pack_start(self.search_top_hbox, False) self.pack_start(self.expr_vbox, False) self.pack_start(self.result_scrolled, True) self.pack_start(self.no_db_warning, False) def _connect_events(self): self.search_entry.connect("changed", self.update_search_entry) self.search_tooltip_btn.connect("clicked", self.show_quick_help) self.expressions_btn.connect("toggled", self.expressions_clicked) def show_quick_help(self, widget=None, extra=None): hint_window = HintWindow(QUICK_HELP_TEXT) hint_window.show_all() def expressions_clicked(self, widget=None, extra=None): if (len(self.expr_vbox.get_children()) == 0 and self.search_entry.get_text() == ""): # This is the first time the user has clicked on "Show Expressions" # and the search entry box is empty, so we add a single Criterion # row self.expr_vbox.pack_start(Criterion(self)) if self.expressions_btn.get_active(): # The Expressions GUI is about to be displayed. It needs to reflect # all the conditions in the search entry field, so a comparison # between the entry field and the GUI needs to be performed. # Make the search entry field insensitive while expressions are # visible self.search_entry.set_sensitive(False) # Get a map of operator => argument from the Expressions GUI so # that we can compare them with the ones in the search entry field gui_ops = {} for criterion in self.expr_vbox.get_children(): if criterion.operator in gui_ops: gui_ops[criterion.operator].append(criterion.argument) else: gui_ops[criterion.operator] = [criterion.argument] # We compare the search entry field to the Expressions GUI. Every # (operator, value) pair must be present in the GUI after this loop # is done. for op, args in self.search_dict.iteritems(): for arg in args: if (op not in gui_ops) or (arg not in gui_ops[op]): # We need to add this pair to the GUI self.expr_vbox.pack_start( Criterion(self, op, arg), False) # Now we check if there are any leftover criterion rows that aren't # present in the search_dict (for example, if a user has deleted # something from the search entry field) for criterion in self.expr_vbox.get_children(): if (criterion.operator not in self.search_dict or criterion.argument not in self.search_dict[ criterion.operator]): criterion.destroy() # If we have deleted all rows, add an empty one if len(self.expr_vbox.get_children()) == 0: self.expr_vbox.pack_start(Criterion(self)) # Display all elements self.expr_vbox.show_all() else: # The Expressions GUI is about to be hidden. No updates to the # search entry field are necessary, since it gets updated on every # change in one of the criterion rows. self.expr_vbox.hide_all() self.search_entry.set_sensitive(True) def close(self): if self.expr_window is not None: self.expr_window.close() def add_criterion(self, caller): # We need to find where the caller (Criteria object) is located among # all the rows, so that we can insert the new row after it caller_index = self.expr_vbox.get_children().index(caller) # Make a new Criteria row and insert it after the calling row criteria = Criterion(self, "keyword") self.expr_vbox.pack_start(criteria, False) self.expr_vbox.reorder_child(criteria, caller_index + 1) criteria.show_all() def remove_criterion(self, c): if len(self.expr_vbox.get_children()) > 1: c.destroy() self.criterion_changed() def criterion_changed(self): # We go through all criteria rows and make a new search string search_string = "" for criterion in self.expr_vbox.get_children(): if criterion.operator != "keyword": search_string += criterion.operator + ":" search_string += criterion.argument.replace(" ", "") + " " self.search_entry.set_text(search_string.strip()) self.search_parser.update(self.search_entry.get_text()) self.start_search() def add_search_dir(self, dir): if dir not in self.search_dirs: self.search_dirs[dir] = SearchDir( dir, self.options["file_extension"]) def update_search_entry(self, widget, extra=None): """Called when the search entry field is modified.""" self.search_parser.update(widget.get_text()) self.start_search() def start_search(self): if not self.options["search_db"] and not self.options["directory"]: d = HIGAlertDialog( message_format=_("No search method selected!"), secondary_text=_( "%s can search results on directories or inside its " "own database. Please select a method by choosing a " "directory or by checking the search data base option " "in the 'Search options' tab before starting a search" ) % APP_DISPLAY_NAME) d.run() d.destroy() return self.clear_result_list() matched = 0 total = 0 if self.options["search_db"]: total += len(self.search_db.get_scan_results()) for result in self.search_db.search(**self.search_dict): self.append_result(result) matched += 1 for search_dir in self.search_dirs.itervalues(): total += len(search_dir.get_scan_results()) for result in search_dir.search(**self.search_dict): self.append_result(result) matched += 1 #total += len(self.search_tabs.get_scan_results()) #for result in self.search_tabs.search(**self.search_dict): # self.append_result(result) # matched += 1 self.search_window.set_label_text( "Matched %s out of %s scans." % ( str(matched), str(total))) def clear_result_list(self): for i in range(len(self.result_list)): iter = self.result_list.get_iter_root() del(self.result_list[iter]) def append_result(self, parsed_result): title = parsed_result.scan_name try: date = datetime.datetime.fromtimestamp(float(parsed_result.start)) date_field = date.strftime("%Y-%m-%d %H:%M") except ValueError: date_field = _("Unknown") self.parsed_results[self.id] = [title, parsed_result] self.result_list.append([title, date_field, self.id]) self.id += 1 def get_selected_results(self): selection = self.result_view.get_selection() rows = selection.get_selected_rows() list_store = rows[0] results = {} for row in rows[1]: r = row[0] results[list_store[r][2]] = self.parsed_results[list_store[r][2]] return results def _set_result_view(self): self.result_view.set_enable_search(True) self.result_view.set_search_column(0) selection = self.result_view.get_selection() selection.set_mode(gtk.SELECTION_MULTIPLE) self.result_view.append_column(self.result_title_column) self.result_view.append_column(self.result_date_column) self.result_title_column.set_resizable(True) self.result_title_column.set_min_width(200) self.result_date_column.set_resizable(True) self.result_title_column.set_sort_column_id(0) self.result_date_column.set_sort_column_id(1) self.result_title_column.set_reorderable(True) self.result_date_column.set_reorderable(True) cell = gtk.CellRendererText() self.result_title_column.pack_start(cell, True) self.result_date_column.pack_start(cell, True) self.result_title_column.set_attributes(cell, text=0) self.result_date_column.set_attributes(cell, text=1) selected_results = property(get_selected_results) class Criterion(gtk.HBox): """This class holds one criterion row, represented as an HBox. It holds a ComboBox and a Subcriterion's subclass instance, depending on the selected entry in the ComboBox. For example, when the 'Target' option is selected, a SimpleSubcriterion widget is displayed, but when the 'Date' operator is selected, a DateSubcriterion widget is displayed.""" def __init__(self, search_window, operator="keyword", argument=""): """A reference to the search window is passed so that we can call add_criterion and remove_criterion.""" gtk.HBox.__init__(self) self.search_window = search_window self.default_operator = operator self.default_argument = argument # We need this as a map, so that we can pass the operator into # the SimpleSubcriterion instance self.combo_entries = {"Keyword": ["keyword"], "Profile Name": ["profile"], "Target": ["target"], "Options": ["option"], "Date": ["date", "after", "before"], "Operating System": ["os"], "Port": ["open", "scanned", "closed", "filtered", "unfiltered", "open_filtered", "closed_filtered"], "Service": ["service"], "Host In Route": ["inroute"], "Include Directory": ["dir"]} self._create_widgets() self._pack_widgets() self._connect_events() def _create_widgets(self): # A ComboBox containing the list of operators self.operator_combo = gtk.combo_box_new_text() # Sort all the keys from combo_entries and make an entry for each of # them sorted_entries = self.combo_entries.keys() sorted_entries.sort() for name in sorted_entries: self.operator_combo.append_text(name) # Select the default operator for entry, operators in self.combo_entries.iteritems(): for operator in operators: if operator == self.default_operator: self.operator_combo.set_active(sorted_entries.index(entry)) break # Create a subcriterion self.subcriterion = self.new_subcriterion( self.default_operator, self.default_argument) # The "add" and "remove" buttons self.add_btn = HIGButton(" ", gtk.STOCK_ADD) self.remove_btn = HIGButton(" ", gtk.STOCK_REMOVE) def _pack_widgets(self): self.pack_start(self.operator_combo, False) self.pack_start(self.subcriterion, True, True) self.pack_start(self.add_btn, False) self.pack_start(self.remove_btn, False) def _connect_events(self): self.operator_combo.connect("changed", self.operator_changed) self.add_btn.connect("clicked", self.add_clicked) self.remove_btn.connect("clicked", self.remove_clicked) def get_operator(self): return self.subcriterion.operator def get_argument(self): return self.subcriterion.argument def add_clicked(self, widget=None, extra=None): self.search_window.add_criterion(self) def remove_clicked(self, widget=None, extra=None): self.search_window.remove_criterion(self) def value_changed(self, op, arg): """Subcriterion instances call this method when something changes inside of them.""" # We let the search window know about the change self.search_window.criterion_changed() def new_subcriterion(self, operator="keyword", argument=""): if operator in self.combo_entries["Date"]: return DateSubcriterion(operator, argument) elif operator in self.combo_entries["Port"]: return PortSubcriterion(operator, argument) elif operator == "dir": return DirSubcriterion(operator, argument) else: return SimpleSubcriterion(operator, argument) def operator_changed(self, widget=None, extra=None): """This function is called when the user selects a different entry in the Criterion's ComboBox.""" # Destroy the previous subcriterion self.subcriterion.destroy() # Create a new subcriterion depending on the selected operator selected = self.operator_combo.get_active_text() operator = self.combo_entries[selected][0] self.subcriterion = self.new_subcriterion(operator) # Pack it, and place it on the right side of the ComboBox self.pack_start(self.subcriterion, True, True) self.reorder_child(self.subcriterion, 1) # Notify the search window about the change self.search_window.criterion_changed() # Good to go self.subcriterion.show_all() operator = property(get_operator) argument = property(get_argument) class Subcriterion(gtk.HBox): """This class is a base class for all subcriterion types. Depending on the criterion selected in the Criterion's ComboBox, a subclass of Subcriterion is created to display the appropriate GUI.""" def __init__(self): gtk.HBox.__init__(self) self.operator = "" self.argument = "" def value_changed(self): """Propagates the operator and the argument up to the Criterion parent.""" self.get_parent().value_changed(self.operator, self.argument) class SimpleSubcriterion(Subcriterion): """This class represents all 'simple' criterion types that need only an entry box in order to define the criterion.""" def __init__(self, operator="keyword", argument=""): Subcriterion.__init__(self) self.operator = operator self.argument = argument self._create_widgets() self._pack_widgets() self._connect_widgets() def _create_widgets(self): self.entry = gtk.Entry() if self.argument: self.entry.set_text(self.argument) def _pack_widgets(self): self.pack_start(self.entry, True) def _connect_widgets(self): self.entry.connect("changed", self.entry_changed) def entry_changed(self, widget=None, extra=None): self.argument = widget.get_text() self.value_changed() class PortSubcriterion(Subcriterion): """This class shows the port criterion GUI.""" def __init__(self, operator="open", argument=""): Subcriterion.__init__(self) self.operator = operator self.argument = argument self._create_widgets() self._pack_widgets() self._connect_widgets() def _create_widgets(self): self.entry = gtk.Entry() if self.argument: self.entry.set_text(self.argument) self.label = gtk.Label(" is ") self.port_state_combo = gtk.combo_box_new_text() states = ["open", "scanned", "closed", "filtered", "unfiltered", "open|filtered", "closed|filtered"] for state in states: self.port_state_combo.append_text(state) self.port_state_combo.set_active( states.index(self.operator.replace("_", "|"))) def _pack_widgets(self): self.pack_start(self.entry, True) self.pack_start(self.label, False) self.pack_start(self.port_state_combo, False) def _connect_widgets(self): self.entry.connect("changed", self.entry_changed) self.port_state_combo.connect("changed", self.port_criterion_changed) def entry_changed(self, widget=None, extra=None): self.argument = widget.get_text() self.value_changed() def port_criterion_changed(self, widget=None, extra=None): self.operator = widget.get_active_text() self.value_changed() class DirSubcriterion(Subcriterion): def __init__(self, operator="dir", argument=""): Subcriterion.__init__(self) self.operator = operator self.argument = argument self._create_widgets() self._pack_widgets() self._connect_widgets() def _create_widgets(self): self.dir_entry = gtk.Entry() if self.argument: self.dir_entry.set_text(self.argument) self.chooser_btn = HIGButton("Choose...", gtk.STOCK_OPEN) def _pack_widgets(self): self.pack_start(self.dir_entry, True) self.pack_start(self.chooser_btn, False) def _connect_widgets(self): self.chooser_btn.connect("clicked", self.choose_clicked) self.dir_entry.connect("changed", self.dir_entry_changed) def choose_clicked(self, widget=None, extra=None): # Display a directory chooser dialog chooser_dlg = DirectoryChooserDialog("Include folder in search") if chooser_dlg.run() == gtk.RESPONSE_OK: self.dir_entry.set_text(chooser_dlg.get_filename()) chooser_dlg.destroy() def dir_entry_changed(self, widget=None, extra=None): self.argument = widget.get_text() self.value_changed() class DateSubcriterion(Subcriterion): def __init__(self, operator="date", argument=""): Subcriterion.__init__(self) self.text2op = {"is": "date", "after": "after", "before": "before"} self.operator = operator self._create_widgets() self._pack_widgets() self._connect_widgets() # Count the fuzzy operators, so that we can append them to the argument # later self.fuzzies = argument.count("~") argument = argument.replace("~", "") self.minus_notation = False if re.match("\d\d\d\d-\d\d-\d\d$", argument) is not None: year, month, day = argument.split("-") self.date = datetime.date(int(year), int(month), int(day)) self.argument = argument elif re.match("[-|\+]\d+$", argument) is not None: # Convert the date from the "-n" notation into YYYY-MM-DD parsed_date = datetime.date.fromordinal( datetime.date.today().toordinal() + int(argument)) self.argument = argument self.date = datetime.date( parsed_date.year, parsed_date.month, parsed_date.day) self.minus_notation = True else: self.date = datetime.date.today() self.argument = self.date.isoformat() # Append fuzzy operators, if any self.argument += "~" * self.fuzzies def _create_widgets(self): self.date_criterion_combo = gtk.combo_box_new_text() self.date_criterion_combo.append_text("is") self.date_criterion_combo.append_text("after") self.date_criterion_combo.append_text("before") if self.operator == "date": self.date_criterion_combo.set_active(0) elif self.operator == "after": self.date_criterion_combo.set_active(1) else: self.date_criterion_combo.set_active(2) self.date_button = HIGButton() def _pack_widgets(self): self.pack_start(self.date_criterion_combo, False) self.pack_start(self.date_button, True) def _connect_widgets(self): self.date_criterion_combo.connect( "changed", self.date_criterion_changed) self.date_button.connect("clicked", self.show_calendar) def date_criterion_changed(self, widget=None, extra=None): self.operator = self.text2op[widget.get_active_text()] # Let the parent know that the operator has changed self.value_changed() def show_calendar(self, widget): calendar = DateCalendar() calendar.connect_calendar(self.update_button) calendar.show_all() def update_button(self, widget): cal_date = widget.get_date() # Add 1 to month because gtk.Calendar date is zero-based. self.date = datetime.date(cal_date[0], cal_date[1] + 1, cal_date[2]) # Set the argument, using the search format if self.minus_notation: # We need to calculate the date's offset from today, so that we can # represent the date in the "-n" notation today = datetime.date.today() offset = self.date.toordinal() - today.toordinal() if offset > 0: self.argument = "+" + str(offset) else: self.argument = str(offset) else: self.argument = self.date.isoformat() self.argument += "~" * self.fuzzies # Let the parent know about the change self.value_changed() def set_date(self, date): self.date_button.set_label(date.strftime("%d %b %Y")) self._date = date def get_date(self): return self._date date = property(get_date, set_date) _date = datetime.date.today() class DateCalendar(gtk.Window, object): def __init__(self): gtk.Window.__init__(self, gtk.WINDOW_POPUP) self.set_position(gtk.WIN_POS_MOUSE) self.calendar = gtk.Calendar() self.add(self.calendar) def connect_calendar(self, update_button_cb): self.calendar.connect("day-selected-double-click", self.kill_calendar, update_button_cb) def kill_calendar(self, widget, method): method(widget) self.destroy() QUICK_HELP_TEXT = _("""\ Entering the text into the search performs a keyword search - the \ search string is matched against the entire output of each scan. To refine the search, you can use operators to search only within \ a specific part of a scan. Operators can be added to the search \ interactively if you click on the Expressions button, or you can \ enter them manually into the search field. Most operators have a short \ form, listed. profile: (pr:) - Profile used. target: (t:) - User-supplied target, or a rDNS result. option: (o:) - Scan options. date: (d:) - The date when scan was performed. Fuzzy matching is \ possible using the "~" suffix. Each "~" broadens the search by one day \ on "each side" of the date. In addition, it is possible to use the \ \"date:-n\" notation which means "n days ago". after: (a:) - Matches scans made after the supplied date \ (YYYY-MM-DD or -n). before (b:) - Matches scans made before the supplied \ date(YYYY-MM-DD or -n). os: - All OS-related fields. scanned: (sp:) - Matches a port if it was among those scanned. open: (op:) - Open ports discovered in a scan. closed: (cp:) - Closed ports discovered in a scan. filtered: (fp:) - Filtered ports discovered in scan. unfiltered: (ufp:) - Unfiltered ports found in a scan (using, for \ example, an ACK scan). open|filtered: (ofp:) - Ports in the \"open|filtered\" state. closed|filtered: (cfp:) - Ports in the \"closed|filtered\" state. service: (s:) - All service-related fields. inroute: (ir:) - Matches a router in the scan's traceroute output. """)