armorlib 0.2.3

Easily scan files for threats to security and privacy.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182

extern crate armorlib;
#[macro_use]
extern crate clap;
#[macro_use]
extern crate log;
extern crate simplelog;

use clap::{App, Arg, SubCommand};

fn main() {
    simplelog::CombinedLogger::init(vec![
        simplelog::TermLogger::new(simplelog::LevelFilter::Info, simplelog::Config::default())
            .unwrap(),
    ]).unwrap();

    let matches = App::new("ArmorLib CLI")
        .version(crate_version!())
        .about("Easily scan files for threats to security and privacy.")
        .author(crate_authors!())
        .subcommand(
            SubCommand::with_name("scan")
                .about("scans the file at the given path")
                .arg(
                    Arg::with_name("path")
                        .help("Sets the path of the file to be scanned")
                        .required(true)
                        .index(1),
                )
                // .arg(
                //     Arg::with_name("output_location")
                //         .help("Sets the path of the output file")
                //         .required(false)
                //         .index(2),
                // ),
        )
        .subcommand(
            SubCommand::with_name("modules")
                .about("get information about the available scan modules"),
        )
        .subcommand(
            SubCommand::with_name("preprocessors")
                .about("get information about the available preprocessors"),
        )
        .get_matches();
    run(matches);
}

fn run(matches: clap::ArgMatches) {
    match matches.subcommand() {
        ("scan", Some(m)) => run_scan(m),
        ("modules", Some(m)) => run_modules(m),
        ("preprocessors", Some(m)) => run_preprocessors(m),
        _ => error!("no command specified; try running with `--help`."),
    }
}

fn run_scan(matches: &clap::ArgMatches) {
    use std::fs::File;
    use std::io::prelude::*;
    use std::path::Path;
    use armorlib::finding::Severity;

    let path: String = String::from(matches.value_of("path").unwrap()); // safe to unwrap, CLAP makes sure of it

    info!("loading file {}", path);

    let mut f = match File::open(&path) {
        Ok(file) => file,
        Err(error) => {
            error!("unable to open {}: {}", path, error);
            return;
        }
    };
    let mut contents: Vec<u8> = Vec::new();
    match f.read_to_end(&mut contents) {
        Ok(size) => info!("successfully read {} bytes", size),
        Err(error) => {
            error!("unable to read {}: {}", path, error);
            return;
        }
    }

    let parsed_path: &Path = Path::new(&path);
    let file_extension: Option<String> = match parsed_path.extension() {
        Some(osstring) => match osstring.to_str() {
            Some(string) => Some(String::from(string)),
            None => None,
        },
        None => None,
    };

    let scan_modules = armorlib::scan_modules::make_default_scan_modules();

    info!(
        "processing with {} scan modules and {} available preprocessors...",
        scan_modules.len(),
        armorlib::preprocessors::make_default_preprocessors().len()
    );

    let results = armorlib::coordinator::process(
        scan_modules,
        Vec::new(),
        armorlib::binary_object::BinaryObject {
            data: contents,
            file_path: match parsed_path.canonicalize() {
                Ok(buf) => match buf.to_str() {
                    Some(string) => Some(String::from(string)),
                    None => {
                        error!("unnable to canonicalize path {}", path);
                        return;
                    }
                },
                Err(error) => {
                    error!("unable to canonicalize path {}: {}", path, error);
                    return;
                }
            },
        },
        file_extension,
    );

    let result = match results {
        Ok(result) => result,
        Err(error) => {
            error!("an error occurred while processing: {}", error);
            return;
        }
    };

    info!("RESULTS ------------------------------------");

    for report in result.reports {
        info!("→ {} ({})", report.module_info.0, report.module_info.1);
        match report.error {
            Some(error) => warn!("    encountered an error: {}", error),
            None => info!("    scanned successfully"),
        }

        match report.findings {
            Some(findings) => {
                info!("    had {} findings:", findings.len());
                for finding in findings {
                    info!("        - {} ({})", finding.title, finding.id);
                    info!("          {}", finding.description);
                    match finding.severity {
                        Severity::Ok(description) => info!("          OK: {}", description),
                        Severity::Warn(description) => warn!("          WARNING: {}", description),
                        Severity::Danger(description) => warn!("          DANGER: {}", description),
                        Severity::Severe(description) => warn!("          SEVERE: {}", description),
                    }
                }
            }
            None => info!("    (had no findings)"),
        }
    }
}

fn run_modules(_matches: &clap::ArgMatches) {
    let modules = armorlib::scan_modules::make_default_scan_modules();
    info!(
        "there are currently {} scan modules available:",
        modules.len()
    );
    for module in modules {
        info!("    → {}: {}", module.name(), module.description());
    }
}

fn run_preprocessors(_matches: &clap::ArgMatches) {
    let preprocessors = armorlib::preprocessors::make_default_preprocessors();
    info!(
        "there are currently {} preprocessors available:",
        preprocessors.len()
    );
    for preprocessor in preprocessors {
        info!(
            "    → {}: {}",
            preprocessor.name(),
            preprocessor.description()
        );
    }
}