more
This commit is contained in:
parent
e530decc2f
commit
73b01c6793
@ -1,7 +1,7 @@
|
|||||||
root_folders:
|
root_folders:
|
||||||
- /applications #common
|
- /applications #common
|
||||||
- /etc #common
|
- /etc #common
|
||||||
- /home #common
|
- $HOMESEARCH #common, use this instead of "/home"
|
||||||
- /lib
|
- /lib
|
||||||
- /lib32
|
- /lib32
|
||||||
- /lib64
|
- /lib64
|
||||||
@ -20,7 +20,7 @@ root_folders:
|
|||||||
common_file_folders:
|
common_file_folders:
|
||||||
- /applications
|
- /applications
|
||||||
- /etc
|
- /etc
|
||||||
- /home
|
- $HOMESEARCH
|
||||||
- /mnt
|
- /mnt
|
||||||
- /opt
|
- /opt
|
||||||
- /private
|
- /private
|
||||||
@ -32,7 +32,7 @@ common_file_folders:
|
|||||||
common_directory_folders:
|
common_directory_folders:
|
||||||
- /applications
|
- /applications
|
||||||
- /etc
|
- /etc
|
||||||
- /home
|
- $HOMESEARCH
|
||||||
- /mnt
|
- /mnt
|
||||||
- /opt
|
- /opt
|
||||||
- /private
|
- /private
|
||||||
@ -40,6 +40,11 @@ common_directory_folders:
|
|||||||
- /usr
|
- /usr
|
||||||
- /var
|
- /var
|
||||||
|
|
||||||
|
peas_search_markup: "peass{SEARCHES_HERE}"
|
||||||
|
find_search_markup: "peass{FIND_HERE}"
|
||||||
|
find_template: >
|
||||||
|
`eval_bckgrd "find peass{FIND_HERE} 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
||||||
|
|
||||||
|
|
||||||
defaults:
|
defaults:
|
||||||
auto_check: False #The builder will generate a ceck for the file
|
auto_check: False #The builder will generate a ceck for the file
|
||||||
@ -103,13 +108,13 @@ search:
|
|||||||
:
|
:
|
||||||
type: d
|
type: d
|
||||||
search_in:
|
search_in:
|
||||||
- etc
|
- /etc
|
||||||
|
|
||||||
? "system.d"
|
? "system.d"
|
||||||
:
|
:
|
||||||
type: d
|
type: d
|
||||||
search_in:
|
search_in:
|
||||||
- etc
|
- /etc
|
||||||
|
|
||||||
MySQL:
|
MySQL:
|
||||||
config:
|
config:
|
||||||
@ -199,9 +204,9 @@ search:
|
|||||||
check_extra_path: '/tmp/.*sess_.*|/var/tmp/.*sess_.*'
|
check_extra_path: '/tmp/.*sess_.*|/var/tmp/.*sess_.*'
|
||||||
type: f
|
type: f
|
||||||
search_in:
|
search_in:
|
||||||
- tmp
|
- /tmp
|
||||||
- var
|
- /var
|
||||||
- mnt
|
- /mnt
|
||||||
|
|
||||||
PHP_files:
|
PHP_files:
|
||||||
config:
|
config:
|
||||||
@ -506,19 +511,21 @@ search:
|
|||||||
:
|
:
|
||||||
type: f
|
type: f
|
||||||
search_in:
|
search_in:
|
||||||
- tmp
|
- /tmp
|
||||||
|
|
||||||
? "*ssh*config*"
|
? "*ssh*config*"
|
||||||
:
|
:
|
||||||
type: f
|
type: f
|
||||||
search_in:
|
search_in:
|
||||||
- usr home
|
- /usr
|
||||||
|
- $HOMESEARCH
|
||||||
|
|
||||||
? "*config*ssh*"
|
? "*config*ssh*"
|
||||||
:
|
:
|
||||||
type: f
|
type: f
|
||||||
search_in:
|
search_in:
|
||||||
- usr home
|
- /usr
|
||||||
|
- $HOMESEARCH
|
||||||
|
|
||||||
Cloud credentials:
|
Cloud credentials:
|
||||||
config:
|
config:
|
||||||
@ -627,7 +634,7 @@ search:
|
|||||||
check_extra_path: "/etc/init.d/"
|
check_extra_path: "/etc/init.d/"
|
||||||
type: f
|
type: f
|
||||||
search_in:
|
search_in:
|
||||||
- etc
|
- /etc
|
||||||
|
|
||||||
Logstash:
|
Logstash:
|
||||||
config:
|
config:
|
||||||
@ -1063,7 +1070,7 @@ search:
|
|||||||
|
|
||||||
type: d
|
type: d
|
||||||
search_in:
|
search_in:
|
||||||
- home
|
- $HOMESEARCH
|
||||||
|
|
||||||
Chrome:
|
Chrome:
|
||||||
config:
|
config:
|
||||||
@ -1122,7 +1129,7 @@ search:
|
|||||||
just_list_file: True
|
just_list_file: True
|
||||||
|
|
||||||
search_in:
|
search_in:
|
||||||
- home
|
- $HOMESEARCH
|
||||||
|
|
||||||
Autologin:
|
Autologin:
|
||||||
config:
|
config:
|
||||||
|
@ -990,120 +990,6 @@ if [ "`echo $CHECKS | grep ProCronSrvcsTmrsSocks`" ] || [ "`echo $CHECKS | grep
|
|||||||
|
|
||||||
printf $GREEN"Caching directories using$Y $THREADS$GREEN threads "$NC
|
printf $GREEN"Caching directories using$Y $THREADS$GREEN threads "$NC
|
||||||
|
|
||||||
SYSTEMD_RELEVANT_NAMES="*.service"
|
|
||||||
TIMERS_RELEVANT_NAMES="*.timer"
|
|
||||||
SOCKETS_RELEVANT_NAMES="*.socket"
|
|
||||||
DBUS_RELEVANT_NAMES="system.d session.d"
|
|
||||||
|
|
||||||
MYSQL_RELEVANT_NAMES="mysql"
|
|
||||||
POSTGRESQL_RELEVANT_NAMES="pgadmin*.db pg_hba.conf postgresql.conf pgsql.conf"
|
|
||||||
APACHE_RELEVANT_NAMES="sites-enabled 000-default"
|
|
||||||
PHP_RELEVANT_NAMES="sess_* *config*.php database.php db.php storage.php"
|
|
||||||
WORDPRESS_RELEVANT_NAMES="wp-config.php"
|
|
||||||
DRUPAL_RELEVANT_NAMES="settings.php"
|
|
||||||
MOODLE_RELEVANT_NAMES="config.php"
|
|
||||||
TOMCAT_RELEVANT_NAMES="tomcat-users.xml"
|
|
||||||
MONGO_RELEVANT_NAMES="mongod*.conf"
|
|
||||||
SUPERVISORD_RELEVANT_NAMES="supervisord.conf"
|
|
||||||
CESI_RELEVANT_NAMES="cesi.conf"
|
|
||||||
RSYNCD_RELEVANT_NAMES="rsyncd.conf rsyncd.secrets"
|
|
||||||
HOSTAPAD_RELEVANT_NAMES="hostapd.conf"
|
|
||||||
ANACONDA_KS_RELEVANT_NAMES="anaconda-ks.cfg"
|
|
||||||
VNC_RELEVANT_NAMES=".vnc"
|
|
||||||
LDAP_RELEVANT_NAMES="ldap"
|
|
||||||
OVPN_RELEVANT_NAMES="*.ovpn"
|
|
||||||
SSH_RELEVANT_NAMES="id_dsa* id_rsa* known_hosts authorized_hosts authorized_keys *.pem *.cer *.crt *.csr *.der *.pfx *.p12 agent* config vault-ssh-helper.hcl .vault-token"
|
|
||||||
CLOUD_KEYS_RELEVANT_NAMES="credentials credentials.db legacy_credentials.db access_tokens.db accessTokens.json azureProfile.json cloud.cfg"
|
|
||||||
KERBEROS_RELEVANT_NAMES="krb5.conf krb5.keytab .k5login kadm5.acl"
|
|
||||||
KIBANA_RELEVANT_NAMES="kibana.y*ml"
|
|
||||||
KNOCK_RELEVANT_NAMES="knockd"
|
|
||||||
LOGSTASH_RELEVANT_NAMES="logstash"
|
|
||||||
ELASTICSEARCH_RELEVANT_NAMES="elasticsearch.y*ml"
|
|
||||||
COUCHDB_RELEVANT_NAMES="couchdb"
|
|
||||||
REDIS_RELEVANT_NAMES="redis.conf"
|
|
||||||
MOSQUITTO_RELEVANT_NAMES="mosquitto.conf"
|
|
||||||
NEO4J_RELEVANT_NAMES="neo4j"
|
|
||||||
ERLANG_RELEVANT_NAMES=".erlang.cookie"
|
|
||||||
GVM_RELEVANT_NAMES="gvm-tools.conf"
|
|
||||||
IPSEC_RELEVANT_NAMES="ipsec.secrets ipsec.conf"
|
|
||||||
IRSSI_RELEVANT_NAMES=".irssi"
|
|
||||||
KEYRING_RELEVANT_NAMES="keyrings *.keyring *.keystore"
|
|
||||||
FILEZILLA_RELEVANT_NAMES="filezilla"
|
|
||||||
BACKUPMANAGER_RELEVANT_NAMES="storage.php database.php"
|
|
||||||
PASSWD_SPLUNK_RELEVANT_NAMES="passwd"
|
|
||||||
GITLAB_RELEVANT_NAMES="secrets.yml gitlab.yml gitlab.rb"
|
|
||||||
PGP_RELEVANT_NAMES="*.pgp *.gpg .gnupg"
|
|
||||||
VIM_RELEVANT_NAMES=".*.swp .viminfo"
|
|
||||||
DOCKER_RELEVANT_NAMES="docker.sock docker.socket Dockerfile docker-compose.yml"
|
|
||||||
FIREFOX_RELEVANT_NAMES=".mozilla"
|
|
||||||
CHROME_RELEVANT_NAMES="google-chrome"
|
|
||||||
AUTOLOGIN_RELEVANT_NAMES="autologin autologin.conf"
|
|
||||||
FASTCGI_RELEVANT_NAMES="fastcgi_params"
|
|
||||||
SNMP_RELEVANT_NAMES="snmpd.conf"
|
|
||||||
PYPIRC_RELEVANT_NAMES=".pypirc"
|
|
||||||
|
|
||||||
DB_RELEVANT_NAMES="*.db *.sqlite *.sqlite3 *.sql"
|
|
||||||
INSTERESTING_RELEVANT_NAMES=".msmtprc .env .google_authenticator *_history .recently-used.xbel .lesshst .sudo_as_admin_successful .profile *bashrc *httpd.conf *.plan .htpasswd .gitconfig .git-credentials .git .svn *.rhost hosts.equiv .ldaprc"
|
|
||||||
PASSWORD_RELEVANT_NAMES="*password* *credential* creds*"
|
|
||||||
BACKUPS_DIRS_RELEVANT_NAMES="backup backups"
|
|
||||||
|
|
||||||
|
|
||||||
FIND_SYSTEMD_RELEVANT_NAMES=$(prep_to_find "$SYSTEMD_RELEVANT_NAMES")
|
|
||||||
FIND_TIMERS_RELEVANT_NAMES=$(prep_to_find "$TIMERS_RELEVANT_NAMES")
|
|
||||||
FIND_SOCKETS_RELEVANT_NAMES=$(prep_to_find "$SOCKETS_RELEVANT_NAMES")
|
|
||||||
FIND_DBUS_RELEVANT_NAMES=$(prep_to_find "$DBUS_RELEVANT_NAMES")
|
|
||||||
|
|
||||||
FIND_MYSQL_RELEVANT_NAMES=$(prep_to_find "$MYSQL_RELEVANT_NAMES")
|
|
||||||
FIND_POSTGRESQL_RELEVANT_NAMES=$(prep_to_find "$POSTGRESQL_RELEVANT_NAMES")
|
|
||||||
FIND_APACHE_RELEVANT_NAMES=$(prep_to_find "$APACHE_RELEVANT_NAMES")
|
|
||||||
FIND_PHP_RELEVANT_NAMES=$(prep_to_find "$PHP_RELEVANT_NAMES")
|
|
||||||
FIND_WORDPRESS_RELEVANT_NAMES=$(prep_to_find "$WORDPRESS_RELEVANT_NAMES")
|
|
||||||
FIND_DRUPAL_RELEVANT_NAMES=$(prep_to_find "$DRUPAL_RELEVANT_NAMES")
|
|
||||||
FIND_MOODLE_RELEVANT_NAMES=$(prep_to_find "$MOODLE_RELEVANT_NAMES")
|
|
||||||
FIND_TOMCAT_RELEVANT_NAMES=$(prep_to_find "$TOMCAT_RELEVANT_NAMES")
|
|
||||||
FIND_MONGO_RELEVANT_NAMES=$(prep_to_find "$MONGO_RELEVANT_NAMES")
|
|
||||||
FIND_SUPERVISORD_RELEVANT_NAMES=$(prep_to_find "$SUPERVISORD_RELEVANT_NAMES")
|
|
||||||
FIND_CESI_RELEVANT_NAMES=$(prep_to_find "$CESI_RELEVANT_NAMES")
|
|
||||||
FIND_RSYNCD_RELEVANT_NAMES=$(prep_to_find "$RSYNCD_RELEVANT_NAMES")
|
|
||||||
FIND_HOSTAPAD_RELEVANT_NAMES=$(prep_to_find "$HOSTAPAD_RELEVANT_NAMES")
|
|
||||||
FIND_ANACONDA_KS_RELEVANT_NAMES=$(prep_to_find "$ANACONDA_KS_RELEVANT_NAMES")
|
|
||||||
FIND_VNC_RELEVANT_NAMES=$(prep_to_find "$VNC_RELEVANT_NAMES")
|
|
||||||
FIND_LDAP_RELEVANT_NAMES=$(prep_to_find "$LDAP_RELEVANT_NAMES")
|
|
||||||
FIND_OVPN_RELEVANT_NAMES=$(prep_to_find "$OVPN_RELEVANT_NAMES")
|
|
||||||
FIND_SSH_RELEVANT_NAMES=$(prep_to_find "$SSH_RELEVANT_NAMES")
|
|
||||||
FIND_CLOUD_KEYS_RELEVANT_NAMES=$(prep_to_find "$CLOUD_KEYS_RELEVANT_NAMES")
|
|
||||||
FIND_KERBEROS_RELEVANT_NAMES=$(prep_to_find "$KERBEROS_RELEVANT_NAMES")
|
|
||||||
FIND_KIBANA_RELEVANT_NAMES=$(prep_to_find "$KIBANA_RELEVANT_NAMES")
|
|
||||||
FIND_KNOCK_RELEVANT_NAMES=$(prep_to_find "$sK_RELEVANT_NAMES")
|
|
||||||
FIND_LOGSTASH_RELEVANT_NAMES=$(prep_to_find "$LOGSTASH_RELEVANT_NAMES")
|
|
||||||
FIND_ELASTICSEARCH_RELEVANT_NAMES=$(prep_to_find "$ELASTICSEARCH_RELEVANT_NAMES")
|
|
||||||
FIND_COUCHDB_RELEVANT_NAMES=$(prep_to_find "$COUCHDB_RELEVANT_NAMES")
|
|
||||||
FIND_REDIS_RELEVANT_NAMES=$(prep_to_find "$REDIS_RELEVANT_NAMES")
|
|
||||||
FIND_MOSQUITTO_RELEVANT_NAMES=$(prep_to_find "$MOSQUITTO_RELEVANT_NAMES")
|
|
||||||
FIND_NEO4J_RELEVANT_NAMES=$(prep_to_find "$NEO4J_RELEVANT_NAMES")
|
|
||||||
FIND_ERLANG_RELEVANT_NAMES=$(prep_to_find "$ERLANG_RELEVANT_NAMES")
|
|
||||||
FIND_GVM_RELEVANT_NAMES=$(prep_to_find "$GVM_RELEVANT_NAMES")
|
|
||||||
FIND_IPSEC_RELEVANT_NAMES=$(prep_to_find "$IPSEC_RELEVANT_NAMES")
|
|
||||||
FIND_IRSSI_RELEVANT_NAMES=$(prep_to_find "$IRSSI_RELEVANT_NAMES")
|
|
||||||
FIND_KEYRING_RELEVANT_NAMES=$(prep_to_find "$KEYRING_RELEVANT_NAMES")
|
|
||||||
FIND_FILEZILLA_RELEVANT_NAMES=$(prep_to_find "$FILEZILLA_RELEVANT_NAMES")
|
|
||||||
FIND_BACKUPMANAGER_RELEVANT_NAMES=$(prep_to_find "$BACKUPMANAGER_RELEVANT_NAMES")
|
|
||||||
FIND_PASSWD_SPLUNK_RELEVANT_NAMES=$(prep_to_find "$PASSWD_SPLUNK_RELEVANT_NAMES")
|
|
||||||
FIND_GITLAB_RELEVANT_NAMES=$(prep_to_find "$GITLAB_RELEVANT_NAMES")
|
|
||||||
FIND_PGP_RELEVANT_NAMES=$(prep_to_find "$PGP_RELEVANT_NAMES")
|
|
||||||
FIND_VIM_RELEVANT_NAMES=$(prep_to_find "$VIM_RELEVANT_NAMES")
|
|
||||||
FIND_DOCKER_RELEVANT_NAMES=$(prep_to_find "$DOCKER_RELEVANT_NAMES")
|
|
||||||
FIND_FIREFOX_RELEVANT_NAMES=$(prep_to_find "$FIREFOX_RELEVANT_NAMES")
|
|
||||||
FIND_CHROME_RELEVANT_NAMES=$(prep_to_find "$CHROME_RELEVANT_NAMES")
|
|
||||||
FIND_AUTOLOGIN_RELEVANT_NAMES=$(prep_to_find "$AUTOLOGIN_RELEVANT_NAMES")
|
|
||||||
FIND_FASTCGI_RELEVANT_NAMES=$(prep_to_find "$FASTCGI_RELEVANT_NAMES")
|
|
||||||
FIND_SNMP_RELEVANT_NAMES=$(prep_to_find "$SNMP_RELEVANT_NAMES")
|
|
||||||
PYPIRC_RELEVANT_NAMES=$(prep_to_find "$PYPIRC_RELEVANT_NAMES")
|
|
||||||
|
|
||||||
FIND_DB_RELEVANT_NAMES=$(prep_to_find "$DB_RELEVANT_NAMES")
|
|
||||||
FIND_INSTERESTING_RELEVANT_NAMES=$(prep_to_find "$INSTERESTING_RELEVANT_NAMES")
|
|
||||||
FIND_PASSWORD_RELEVANT_NAMES=$(prep_to_find "$PASSWORD_RELEVANT_NAMES")
|
|
||||||
FIND_BACKUPS_DIRS_RELEVANT_NAMES=$(prep_to_find "$BACKUPS_DIRS_RELEVANT_NAMES")
|
|
||||||
|
|
||||||
#Get home
|
#Get home
|
||||||
HOMESEARCH="/home/ /Users/ /root/ `cat /etc/passwd 2>/dev/null | grep "sh$" | cut -d ":" -f 6 | grep -Ev "^/root|^/home|^/Users" | tr "\n" " "`"
|
HOMESEARCH="/home/ /Users/ /root/ `cat /etc/passwd 2>/dev/null | grep "sh$" | cut -d ":" -f 6 | grep -Ev "^/root|^/home|^/Users" | tr "\n" " "`"
|
||||||
@ -1111,38 +997,8 @@ if [ "`echo $CHECKS | grep ProCronSrvcsTmrsSocks`" ] || [ "`echo $CHECKS | grep
|
|||||||
HOMESEARCH="$HOME $HOMESEARCH"
|
HOMESEARCH="$HOME $HOMESEARCH"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# Directories
|
|
||||||
CONT_THREADS=0
|
CONT_THREADS=0
|
||||||
FIND_DIR_VAR=`eval_bckgrd "find /var -type d $FIND_BACKUPS_DIRS_RELEVANT_NAMES -o $FIND_FILEZILLA_RELEVANT_NAMES -o $FIND_MYSQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_LDAP_RELEVANT_NAMES -o $FIND_KERBEROS_RELEVANT_NAMES -o $FIND_LOGSTASH_RELEVANT_NAMES -o $FIND_COUCHDB_RELEVANT_NAMES -o $FIND_NEO4J_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_IRSSI_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
peass{SEARCHES_HERE}
|
||||||
FIND_DIR_ETC=`eval_bckgrd "find /etc -type d $FIND_BACKUPS_DIRS_RELEVANT_NAMES -o $FIND_FILEZILLA_RELEVANT_NAMES -o $FIND_MYSQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_LDAP_RELEVANT_NAMES -o $FIND_KERBEROS_RELEVANT_NAMES -o $FIND_LOGSTASH_RELEVANT_NAMES -o $FIND_COUCHDB_RELEVANT_NAMES -o $FIND_NEO4J_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_DBUS_RELEVANT_NAMES -o $FIND_IRSSI_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_DIR_HOME=`eval_bckgrd "find $HOMESEARCH -type d $FIND_CHROME_RELEVANT_NAMES -o $FIND_FIREFOX_RELEVANT_NAMES -o $FIND_BACKUPS_DIRS_RELEVANT_NAMES -o $FIND_FILEZILLA_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_VNC_RELEVANT_NAMES -o $FIND_LDAP_RELEVANT_NAMES -o $FIND_KERBEROS_RELEVANT_NAMES -o $FIND_LOGSTASH_RELEVANT_NAMES -o $FIND_COUCHDB_RELEVANT_NAMES -o $FIND_NEO4J_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_IRSSI_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_DIR_TMP=`eval_bckgrd "find /tmp -type d $FIND_BACKUPS_DIRS_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_LDAP_RELEVANT_NAMES -o $FIND_KERBEROS_RELEVANT_NAMES -o $FIND_LOGSTASH_RELEVANT_NAMES -o $FIND_COUCHDB_RELEVANT_NAMES -o $FIND_NEO4J_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_DIR_USR=`eval_bckgrd "find /usr -type d $FIND_BACKUPS_DIRS_RELEVANT_NAMES -o $FIND_MYSQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_LDAP_RELEVANT_NAMES -o $FIND_KERBEROS_RELEVANT_NAMES -o $FIND_LOGSTASH_RELEVANT_NAMES -o $FIND_COUCHDB_RELEVANT_NAMES -o $FIND_NEO4J_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_IRSSI_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_DIR_OPT=`eval_bckgrd "find /opt -type d $FIND_BACKUPS_DIRS_RELEVANT_NAMES -o $FIND_FILEZILLA_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_LDAP_RELEVANT_NAMES -o $FIND_KERBEROS_RELEVANT_NAMES -o $FIND_LOGSTASH_RELEVANT_NAMES -o $FIND_COUCHDB_RELEVANT_NAMES -o $FIND_NEO4J_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_IRSSI_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_DIR_MNT=`eval_bckgrd "find /mnt -type d $FIND_MYSQL_RELEVANT_NAMES -o $FIND_CHROME_RELEVANT_NAMES -o $FIND_FIREFOX_RELEVANT_NAMES -o $FIND_BACKUPS_DIRS_RELEVANT_NAMES -o $FIND_FILEZILLA_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_VNC_RELEVANT_NAMES -o $FIND_LDAP_RELEVANT_NAMES -o $FIND_KERBEROS_RELEVANT_NAMES -o $FIND_LOGSTASH_RELEVANT_NAMES -o $FIND_COUCHDB_RELEVANT_NAMES -o $FIND_NEO4J_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_IRSSI_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
|
|
||||||
#MacOS Directories
|
|
||||||
FIND_DIR_PRIVATE=`eval_bckgrd "find /private -type d $FIND_BACKUPS_DIRS_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_LDAP_RELEVANT_NAMES -o $FIND_KERBEROS_RELEVANT_NAMES -o $FIND_LOGSTASH_RELEVANT_NAMES -o $FIND_COUCHDB_RELEVANT_NAMES -o $FIND_NEO4J_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_IRSSI_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_DIR_APPLICATIONS=`eval_bckgrd "find /Applications -type d $FIND_BACKUPS_DIRS_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_LDAP_RELEVANT_NAMES -o $FIND_KERBEROS_RELEVANT_NAMES -o $FIND_LOGSTASH_RELEVANT_NAMES -o $FIND_COUCHDB_RELEVANT_NAMES -o $FIND_NEO4J_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_IRSSI_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
|
|
||||||
# All
|
|
||||||
FIND_HOME=`eval_bckgrd "find $HOMESEARCH $PYPIRC_RELEVANT_NAMES -o $FIND_SNMP_RELEVANT_NAMES -o $FIND_FASTCGI_RELEVANT_NAMES -o $FIND_MOODLE_RELEVANT_NAMES -o $FIND_AUTOLOGIN_RELEVANT_NAMES -o $FIND_DOCKER_RELEVANT_NAMES -o $FIND_VIM_RELEVANT_NAMES -o $FIND_PGP_RELEVANT_NAMES -o $FIND_GITLAB_RELEVANT_NAMES -o $FIND_PASSWD_SPLUNK_RELEVANT_NAMES -o $FIND_BACKUPMANAGER_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES -o $FIND_POSTGRESQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_PHP_RELEVANT_NAMES -o $FIND_WORDPRESS_RELEVANT_NAMES -o $FIND_DRUPAL_RELEVANT_NAMES -o $FIND_TOMCAT_RELEVANT_NAMES -o $FIND_MONGO_RELEVANT_NAMES -o $FIND_SUPERVISORD_RELEVANT_NAMES -o $FIND_CESI_RELEVANT_NAMES -o $FIND_RSYNCD_RELEVANT_NAMES -o $FIND_HOSTAPAD_RELEVANT_NAMES -o $FIND_ANACONDA_KS_RELEVANT_NAMES -o $FIND_OVPN_RELEVANT_NAMES -o $FIND_SSH_RELEVANT_NAMES -o $FIND_CLOUD_KEYS_RELEVANT_NAMES -o $FIND_KIBANA_RELEVANT_NAMES -o $FIND_ELASTICSEARCH_RELEVANT_NAMES -o $FIND_REDIS_RELEVANT_NAMES -o $FIND_MOSQUITTO_RELEVANT_NAMES -o $FIND_DB_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_PASSWORD_RELEVANT_NAMES -o $FIND_ERLANG_RELEVANT_NAMES -o $FIND_GVM_RELEVANT_NAMES -o $FIND_IPSEC_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_ETC=`eval_bckgrd "find /etc/ $PYPIRC_RELEVANT_NAMES -o $FIND_SNMP_RELEVANT_NAMES -o $FIND_FASTCGI_RELEVANT_NAMES -o $FIND_MOODLE_RELEVANT_NAMES -o $FIND_AUTOLOGIN_RELEVANT_NAMES -o $FIND_DOCKER_RELEVANT_NAMES -o $FIND_VIM_RELEVANT_NAMES -o $FIND_GITLAB_RELEVANT_NAMES -o $FIND_PASSWD_SPLUNK_RELEVANT_NAMES -o $FIND_BACKUPMANAGER_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES -o $FIND_POSTGRESQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_PHP_RELEVANT_NAMES -o $FIND_WORDPRESS_RELEVANT_NAMES -o $FIND_DRUPAL_RELEVANT_NAMES -o $FIND_TOMCAT_RELEVANT_NAMES -o $FIND_MONGO_RELEVANT_NAMES -o $FIND_SUPERVISORD_RELEVANT_NAMES -o $FIND_CESI_RELEVANT_NAMES -o $FIND_RSYNCD_RELEVANT_NAMES -o $FIND_HOSTAPAD_RELEVANT_NAMES -o $FIND_ANACONDA_KS_RELEVANT_NAMES -o $FIND_OVPN_RELEVANT_NAMES -o $FIND_SSH_RELEVANT_NAMES -o $FIND_CLOUD_KEYS_RELEVANT_NAMES -o $FIND_KIBANA_RELEVANT_NAMES -o $FIND_KNOCK_RELEVANT_NAMES -o $FIND_ELASTICSEARCH_RELEVANT_NAMES -o $FIND_REDIS_RELEVANT_NAMES -o $FIND_MOSQUITTO_RELEVANT_NAMES -o $FIND_DB_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES -o $FIND_ERLANG_RELEVANT_NAMES -o $FIND_GVM_RELEVANT_NAMES -o $FIND_IPSEC_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_VAR=`eval_bckgrd "find /var/ $PYPIRC_RELEVANT_NAMES -o $FIND_SNMP_RELEVANT_NAMES -o $FIND_FASTCGI_RELEVANT_NAMES -o $FIND_MOODLE_RELEVANT_NAMES -o $FIND_AUTOLOGIN_RELEVANT_NAMES -o $FIND_DOCKER_RELEVANT_NAMES -o $FIND_VIM_RELEVANT_NAMES -o $FIND_GITLAB_RELEVANT_NAMES -o $FIND_PASSWD_SPLUNK_RELEVANT_NAMES -o $FIND_BACKUPMANAGER_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES -o $FIND_POSTGRESQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_PHP_RELEVANT_NAMES -o $FIND_WORDPRESS_RELEVANT_NAMES -o $FIND_DRUPAL_RELEVANT_NAMES -o $FIND_TOMCAT_RELEVANT_NAMES -o $FIND_MONGO_RELEVANT_NAMES -o $FIND_SUPERVISORD_RELEVANT_NAMES -o $FIND_CESI_RELEVANT_NAMES -o $FIND_RSYNCD_RELEVANT_NAMES -o $FIND_HOSTAPAD_RELEVANT_NAMES -o $FIND_ANACONDA_KS_RELEVANT_NAMES -o $FIND_SSH_RELEVANT_NAMES -o $FIND_CLOUD_KEYS_RELEVANT_NAMES -o $FIND_KIBANA_RELEVANT_NAMES -o $FIND_ELASTICSEARCH_RELEVANT_NAMES -o $FIND_REDIS_RELEVANT_NAMES -o $FIND_MOSQUITTO_RELEVANT_NAMES -o $FIND_DB_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES -o $FIND_ERLANG_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_TMP=`eval_bckgrd "find /tmp/ $PYPIRC_RELEVANT_NAMES -o $FIND_SNMP_RELEVANT_NAMES -o $FIND_FASTCGI_RELEVANT_NAMES -o $FIND_MOODLE_RELEVANT_NAMES -o $FIND_DOCKER_RELEVANT_NAMES -o $FIND_VIM_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES -o $FIND_POSTGRESQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_PHP_RELEVANT_NAMES -o $FIND_WORDPRESS_RELEVANT_NAMES -o $FIND_DRUPAL_RELEVANT_NAMES -o $FIND_TOMCAT_RELEVANT_NAMES -o $FIND_MONGO_RELEVANT_NAMES -o $FIND_SUPERVISORD_RELEVANT_NAMES -o $FIND_CESI_RELEVANT_NAMES -o $FIND_RSYNCD_RELEVANT_NAMES -o $FIND_HOSTAPAD_RELEVANT_NAMES -o $FIND_ANACONDA_KS_RELEVANT_NAMES -o $FIND_OVPN_RELEVANT_NAMES -o $FIND_SSH_RELEVANT_NAMES -o $FIND_CLOUD_KEYS_RELEVANT_NAMES -o $FIND_KIBANA_RELEVANT_NAMES -o $FIND_ELASTICSEARCH_RELEVANT_NAMES -o $FIND_REDIS_RELEVANT_NAMES -o $FIND_MOSQUITTO_RELEVANT_NAMES -o $FIND_DB_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_GVM_RELEVANT_NAMES -o $FIND_IPSEC_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_OPT=`eval_bckgrd "find /opt/ $PYPIRC_RELEVANT_NAMES -o $FIND_SNMP_RELEVANT_NAMES -o $FIND_FASTCGI_RELEVANT_NAMES -o $FIND_MOODLE_RELEVANT_NAMES -o $FIND_DOCKER_RELEVANT_NAMES -o $FIND_VIM_RELEVANT_NAMES -o $FIND_GITLAB_RELEVANT_NAMES -o $FIND_PASSWD_SPLUNK_RELEVANT_NAMES -o $FIND_BACKUPMANAGER_RELEVANT_NAMES -o $FIND_POSTGRESQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_PHP_RELEVANT_NAMES -o $FIND_WORDPRESS_RELEVANT_NAMES -o $FIND_DRUPAL_RELEVANT_NAMES -o $FIND_TOMCAT_RELEVANT_NAMES -o $FIND_MONGO_RELEVANT_NAMES -o $FIND_SUPERVISORD_RELEVANT_NAMES -o $FIND_CESI_RELEVANT_NAMES -o $FIND_RSYNCD_RELEVANT_NAMES -o $FIND_HOSTAPAD_RELEVANT_NAMES -o $FIND_ANACONDA_KS_RELEVANT_NAMES -o $FIND_SSH_RELEVANT_NAMES -o $FIND_CLOUD_KEYS_RELEVANT_NAMES -o $FIND_KIBANA_RELEVANT_NAMES -o $FIND_ELASTICSEARCH_RELEVANT_NAMES -o $FIND_REDIS_RELEVANT_NAMES -o $FIND_MOSQUITTO_RELEVANT_NAMES -o $FIND_DB_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_GVM_RELEVANT_NAMES -o $FIND_IPSEC_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_USR=`eval_bckgrd "find /usr/ $PYPIRC_RELEVANT_NAMES -o $FIND_SNMP_RELEVANT_NAMES -o $FIND_FASTCGI_RELEVANT_NAMES -o $FIND_MOODLE_RELEVANT_NAMES -o $FIND_DOCKER_RELEVANT_NAMES -o $FIND_VIM_RELEVANT_NAMES -o $FIND_GITLAB_RELEVANT_NAMES -o $FIND_PASSWD_SPLUNK_RELEVANT_NAMES -o $FIND_BACKUPMANAGER_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES -o $FIND_POSTGRESQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_PHP_RELEVANT_NAMES -o $FIND_WORDPRESS_RELEVANT_NAMES -o $FIND_DRUPAL_RELEVANT_NAMES -o $FIND_TOMCAT_RELEVANT_NAMES -o $FIND_MONGO_RELEVANT_NAMES -o $FIND_SUPERVISORD_RELEVANT_NAMES -o $FIND_CESI_RELEVANT_NAMES -o $FIND_RSYNCD_RELEVANT_NAMES -o $FIND_HOSTAPAD_RELEVANT_NAMES -o $FIND_ANACONDA_KS_RELEVANT_NAMES -o $FIND_OVPN_RELEVANT_NAMES -o $FIND_SSH_RELEVANT_NAMES -o $FIND_CLOUD_KEYS_RELEVANT_NAMES -o $FIND_KIBANA_RELEVANT_NAMES -o $FIND_ELASTICSEARCH_RELEVANT_NAMES -o $FIND_REDIS_RELEVANT_NAMES -o $FIND_MOSQUITTO_RELEVANT_NAMES -o $FIND_DB_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES -o $FIND_ERLANG_RELEVANT_NAMES -o $FIND_GVM_RELEVANT_NAMES -o $FIND_IPSEC_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_MNT=`eval_bckgrd "find /mnt/ $PYPIRC_RELEVANT_NAMES -o $FIND_SNMP_RELEVANT_NAMES -o $FIND_FASTCGI_RELEVANT_NAMES -o $FIND_MOODLE_RELEVANT_NAMES -o $FIND_AUTOLOGIN_RELEVANT_NAMES -o $FIND_KNOCK_RELEVANT_NAMES -o $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES -o $FIND_DOCKER_RELEVANT_NAMES -o $FIND_VIM_RELEVANT_NAMES -o $FIND_PGP_RELEVANT_NAMES -o $FIND_GITLAB_RELEVANT_NAMES -o $FIND_PASSWD_SPLUNK_RELEVANT_NAMES -o $FIND_BACKUPMANAGER_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES -o $FIND_POSTGRESQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_PHP_RELEVANT_NAMES -o $FIND_WORDPRESS_RELEVANT_NAMES -o $FIND_DRUPAL_RELEVANT_NAMES -o $FIND_TOMCAT_RELEVANT_NAMES -o $FIND_MONGO_RELEVANT_NAMES -o $FIND_SUPERVISORD_RELEVANT_NAMES -o $FIND_CESI_RELEVANT_NAMES -o $FIND_RSYNCD_RELEVANT_NAMES -o $FIND_HOSTAPAD_RELEVANT_NAMES -o $FIND_ANACONDA_KS_RELEVANT_NAMES -o $FIND_OVPN_RELEVANT_NAMES -o $FIND_SSH_RELEVANT_NAMES -o $FIND_CLOUD_KEYS_RELEVANT_NAMES -o $FIND_KIBANA_RELEVANT_NAMES -o $FIND_ELASTICSEARCH_RELEVANT_NAMES -o $FIND_REDIS_RELEVANT_NAMES -o $FIND_MOSQUITTO_RELEVANT_NAMES -o $FIND_DB_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_PASSWORD_RELEVANT_NAMES -o $FIND_ERLANG_RELEVANT_NAMES -o $FIND_GVM_RELEVANT_NAMES -o $FIND_IPSEC_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_LIB=`eval_bckgrd "find /lib/ $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_RUN=`eval_bckgrd "find /run/ $FIND_DOCKER_RELEVANT_NAMES -o $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_SYSTEMD=`eval_bckgrd "find /systemd/ $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_SYSTEM=`eval_bckgrd "find /system/ $FIND_VIM_RELEVANT_NAMES -o $FIND_GITLAB_RELEVANT_NAMES -o $FIND_PASSWD_SPLUNK_RELEVANT_NAMES -o $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_SYS=`eval_bckgrd "find /sys/ $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_SNAP=`eval_bckgrd "find /snap/ $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
|
|
||||||
#MacOS
|
|
||||||
FIND_PRIVATE=`eval_bckgrd "find /private/ $PYPIRC_RELEVANT_NAMES -o $FIND_SNMP_RELEVANT_NAMES -o $FIND_FASTCGI_RELEVANT_NAMES -o $FIND_DOCKER_RELEVANT_NAMES -o $FIND_MOODLE_RELEVANT_NAMES -o $FIND_VIM_RELEVANT_NAMES -o $FIND_PGP_RELEVANT_NAMES -o $FIND_GITLAB_RELEVANT_NAMES -o $FIND_PASSWD_SPLUNK_RELEVANT_NAMES -o $FIND_BACKUPMANAGER_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES -o $FIND_SYSTEMD_RELEVANT_NAMES -o $FIND_TIMERS_RELEVANT_NAMES -o $FIND_SOCKETS_RELEVANT_NAMES -O $FIND_POSTGRESQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_PHP_RELEVANT_NAMES -o $FIND_WORDPRESS_RELEVANT_NAMES -o $FIND_DRUPAL_RELEVANT_NAMES -o $FIND_TOMCAT_RELEVANT_NAMES -o $FIND_MONGO_RELEVANT_NAMES -o $FIND_SUPERVISORD_RELEVANT_NAMES -o $FIND_CESI_RELEVANT_NAMES -o $FIND_RSYNCD_RELEVANT_NAMES -o $FIND_HOSTAPAD_RELEVANT_NAMES -o $FIND_ANACONDA_KS_RELEVANT_NAMES -o $FIND_OVPN_RELEVANT_NAMES -o $FIND_SSH_RELEVANT_NAMES -o $FIND_CLOUD_KEYS_RELEVANT_NAMES -o $FIND_KIBANA_RELEVANT_NAMES -o $FIND_ELASTICSEARCH_RELEVANT_NAMES -o $FIND_REDIS_RELEVANT_NAMES -o $FIND_MOSQUITTO_RELEVANT_NAMES -o $FIND_DB_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_ERLANG_RELEVANT_NAMES -o $FIND_GVM_RELEVANT_NAMES -o $FIND_IPSEC_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
FIND_APPLICATIONS=`eval_bckgrd "find /Applications/ $PYPIRC_RELEVANT_NAMES -o $FIND_SNMP_RELEVANT_NAMES -o $FIND_FASTCGI_RELEVANT_NAMES -o $FIND_MOODLE_RELEVANT_NAMES -o $FIND_DOCKER_RELEVANT_NAMES -o $FIND_VIM_RELEVANT_NAMES -o $FIND_GITLAB_RELEVANT_NAMES -o $FIND_PASSWD_SPLUNK_RELEVANT_NAMES -o $FIND_BACKUPMANAGER_RELEVANT_NAMES -o $FIND_KEYRING_RELEVANT_NAMES -o $FIND_POSTGRESQL_RELEVANT_NAMES -o $FIND_APACHE_RELEVANT_NAMES -o $FIND_PHP_RELEVANT_NAMES -o $FIND_WORDPRESS_RELEVANT_NAMES -o $FIND_DRUPAL_RELEVANT_NAMES -o $FIND_TOMCAT_RELEVANT_NAMES -o $FIND_MONGO_RELEVANT_NAMES -o $FIND_SUPERVISORD_RELEVANT_NAMES -o $FIND_CESI_RELEVANT_NAMES -o $FIND_RSYNCD_RELEVANT_NAMES -o $FIND_HOSTAPAD_RELEVANT_NAMES -o $FIND_ANACONDA_KS_RELEVANT_NAMES -o $FIND_OVPN_RELEVANT_NAMES -o $FIND_SSH_RELEVANT_NAMES -o $FIND_CLOUD_KEYS_RELEVANT_NAMES -o $FIND_KIBANA_RELEVANT_NAMES -o $FIND_ELASTICSEARCH_RELEVANT_NAMES -o $FIND_REDIS_RELEVANT_NAMES -o $FIND_MOSQUITTO_RELEVANT_NAMES -o $FIND_DB_RELEVANT_NAMES -o $FIND_INSTERESTING_RELEVANT_NAMES -o $FIND_ERLANG_RELEVANT_NAMES -o $FIND_GVM_RELEVANT_NAMES -o $FIND_IPSEC_RELEVANT_NAMES 2>/dev/null | sort; printf \\\$Y'. '\\\$NC 1>&2;"`
|
|
||||||
wait # Always wait at the end
|
wait # Always wait at the end
|
||||||
CONT_THREADS=0 #Reset the threads counter
|
CONT_THREADS=0 #Reset the threads counter
|
||||||
|
|
||||||
|
@ -3,6 +3,8 @@ import yaml
|
|||||||
|
|
||||||
|
|
||||||
CURRENT_DIR = os.path.dirname(os.path.realpath(__file__))
|
CURRENT_DIR = os.path.dirname(os.path.realpath(__file__))
|
||||||
|
LINPEAS_BASE_PATH = CURRENT_DIR + "/base/" + "linpeas_base.sh"
|
||||||
|
FINAL_LINPEAS_PATH = CURRENT_DIR + "/" + "linpeas.sh"
|
||||||
YAML_NAME = "sensitive_files.yaml"
|
YAML_NAME = "sensitive_files.yaml"
|
||||||
FILES_YAML = CURRENT_DIR + "/../build_lists/" + YAML_NAME
|
FILES_YAML = CURRENT_DIR + "/../build_lists/" + YAML_NAME
|
||||||
|
|
||||||
@ -13,8 +15,11 @@ ROOT_FOLDER = YAML_LOADED["root_folders"]
|
|||||||
DEFAULTS = YAML_LOADED["defaults"]
|
DEFAULTS = YAML_LOADED["defaults"]
|
||||||
COMMON_FILE_FOLDERS = YAML_LOADED["common_file_folders"]
|
COMMON_FILE_FOLDERS = YAML_LOADED["common_file_folders"]
|
||||||
COMMON_DIR_FOLDERS = YAML_LOADED["common_directory_folders"]
|
COMMON_DIR_FOLDERS = YAML_LOADED["common_directory_folders"]
|
||||||
assert all(f in ROOT_FOLDER for f in COMMON_FILE_FOLDERS)
|
assert all(f in ROOT_FOLDER for f in COMMON_FILE_FOLDERS)
|
||||||
assert all(f in ROOT_FOLDER for f in COMMON_DIR_FOLDERS)
|
assert all(f in ROOT_FOLDER for f in COMMON_DIR_FOLDERS)
|
||||||
|
PEAS_SEARCH_MARKUP = YAML_LOADED["peas_search_markup"]
|
||||||
|
FIND_SEARCH_MARKUP = YAML_LOADED["find_search_markup"]
|
||||||
|
FIND_TEMPLATE = YAML_LOADED["find_template"]
|
||||||
|
|
||||||
|
|
||||||
class FileRecord:
|
class FileRecord:
|
||||||
@ -45,8 +50,27 @@ class FileRecord:
|
|||||||
self.remove_regex = remove_regex
|
self.remove_regex = remove_regex
|
||||||
self.remove_empty_lines = remove_empty_lines
|
self.remove_empty_lines = remove_empty_lines
|
||||||
self.remove_path = remove_path
|
self.remove_path = remove_path
|
||||||
self.type = search_in
|
|
||||||
self.type = type
|
self.type = type
|
||||||
|
self.search_in = self.__resolve_search_in(search_in)
|
||||||
|
|
||||||
|
def __resolve_search_in(self, search_in):
|
||||||
|
""" Resolve spacial values to the correct directories """
|
||||||
|
|
||||||
|
if "all" in search_in:
|
||||||
|
search_in.remove("all")
|
||||||
|
search_in = ROOT_FOLDER
|
||||||
|
|
||||||
|
if "common" in search_in:
|
||||||
|
search_in.remove("common")
|
||||||
|
if self.type == "d":
|
||||||
|
search_in = list(set(search_in + COMMON_DIR_FOLDERS))
|
||||||
|
else:
|
||||||
|
search_in = list(set(search_in + COMMON_FILE_FOLDERS))
|
||||||
|
|
||||||
|
#Check that folders to search in are specified in ROOT_FOLDER
|
||||||
|
assert all(r in ROOT_FOLDER for r in search_in)
|
||||||
|
|
||||||
|
return search_in
|
||||||
|
|
||||||
|
|
||||||
class PEASRecord:
|
class PEASRecord:
|
||||||
@ -81,9 +105,63 @@ class PEASLoaded:
|
|||||||
)
|
)
|
||||||
|
|
||||||
|
|
||||||
|
class LinpeasBuilder:
|
||||||
|
def __init__(self, ploaded:PEASLoaded):
|
||||||
|
self.ploaded = ploaded
|
||||||
|
self.__get_files_to_search()
|
||||||
|
with open(LINPEAS_BASE_PATH, 'r') as file:
|
||||||
|
self.linpeas_sh = file.read()
|
||||||
|
|
||||||
|
def build(self):
|
||||||
|
find_calls = self.__generate_finds()
|
||||||
|
self.__write_finds(find_calls)
|
||||||
|
self.__write_linpeas()
|
||||||
|
|
||||||
|
|
||||||
|
def __get_files_to_search(self):
|
||||||
|
"""Given a PEASLoaded and find the files that need to be searched on each root folder"""
|
||||||
|
self.dict_to_search = {"d": {}, "f": {}}
|
||||||
|
self.dict_to_search["d"] = {r: set() for r in ROOT_FOLDER}
|
||||||
|
self.dict_to_search["f"] = {r: set() for r in ROOT_FOLDER}
|
||||||
|
|
||||||
|
for precord in self.ploaded.peasrecords:
|
||||||
|
for frecord in precord.filerecords:
|
||||||
|
for folder in frecord.search_in:
|
||||||
|
self.dict_to_search[frecord.type][folder].add(frecord.regex)
|
||||||
|
|
||||||
|
|
||||||
|
def __generate_finds(self):
|
||||||
|
"""Given the regexes to search on each root folder, generate the find command"""
|
||||||
|
finds = []
|
||||||
|
for type,searches in self.dict_to_search.items():
|
||||||
|
for r,regexes in searches.items():
|
||||||
|
find_line = f"{r} "
|
||||||
|
if type == "d": find_line += "-type d "
|
||||||
|
find_line += '-name \\"' + '\\" -o -name \\"'.join(regexes) + '\\"'
|
||||||
|
|
||||||
|
find_line = FIND_TEMPLATE.replace(FIND_SEARCH_MARKUP, find_line)
|
||||||
|
find_line = f"FIND_{r[1:].upper()}={find_line}"
|
||||||
|
finds.append(find_line)
|
||||||
|
|
||||||
|
return finds
|
||||||
|
|
||||||
|
|
||||||
|
def __write_finds(self, find_calls):
|
||||||
|
"""Substitude the markup with the actual find code"""
|
||||||
|
self.linpeas_sh = self.linpeas_sh.replace(PEAS_SEARCH_MARKUP, "\n".join(find_calls))
|
||||||
|
|
||||||
|
def __write_linpeas(self):
|
||||||
|
"""Write on disk the final linpeas"""
|
||||||
|
with open(FINAL_LINPEAS_PATH, "w") as f:
|
||||||
|
f.write(self.linpeas_sh)
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
def main():
|
def main():
|
||||||
ploaded = PEASLoaded()
|
ploaded = PEASLoaded()
|
||||||
print(ploaded.peasrecords)
|
lbuilder = LinpeasBuilder(ploaded)
|
||||||
|
lbuilder.build()
|
||||||
|
|
||||||
main()
|
|
||||||
|
if __name__ == "__main__":
|
||||||
|
main()
|
Loading…
Reference in New Issue
Block a user