pwnagotchi/pwnagotchi/plugins/default/grid.py

__author__ = 'evilsocket@gmail.com'
__version__ = '1.0.0'
__name__ = 'grid'
__license__ = 'GPL3'
__description__ = 'This plugin signals the unit cryptographic identity and list of pwned networks and list of pwned networks to api.pwnagotchi.ai'

import os
import logging
import requests
import glob
import json
import subprocess
import pwnagotchi
import pwnagotchi.utils as utils
from pwnagotchi.utils import WifiInfo, extract_from_pcap

OPTIONS = dict()
AUTH = utils.StatusFile('/root/.api-enrollment.json', data_format='json')
REPORT = utils.StatusFile('/root/.api-report.json', data_format='json')


def on_loaded():
    logging.info("grid plugin loaded.")


def get_api_token(last_session, keys):
    global AUTH

    if AUTH.newer_then_minutes(25) and AUTH.data is not None and 'token' in AUTH.data:
        return AUTH.data['token']

    if AUTH.data is None:
        logging.info("grid: enrolling unit ...")
    else:
        logging.info("grid: refreshing token ...")

    identity = "%s@%s" % (pwnagotchi.name(), keys.fingerprint)
    # sign the identity string to prove we own both keys
    _, signature_b64 = keys.sign(identity)

    brain = {}
    try:
        with open('/root/brain.json') as fp:
            brain = json.load(fp)
    except:
        pass

    api_address = 'https://api.pwnagotchi.ai/api/v1/unit/enroll'
    enrollment = {
        'identity': identity,
        'public_key': keys.pub_key_pem_b64,
        'signature': signature_b64,
        'data': {
            'duration': last_session.duration,
            'epochs': last_session.epochs,
            'train_epochs': last_session.train_epochs,
            'avg_reward': last_session.avg_reward,
            'min_reward': last_session.min_reward,
            'max_reward': last_session.max_reward,
            'deauthed': last_session.deauthed,
            'associated': last_session.associated,
            'handshakes': last_session.handshakes,
            'peers': last_session.peers,
            'uname': subprocess.getoutput("uname -a"),
            'brain': brain,
            'version': pwnagotchi.version
        }
    }

    r = requests.post(api_address, json=enrollment)
    if r.status_code != 200:
        raise Exception("(status %d) %s" % (r.status_code, r.json()))

    AUTH.update(data=r.json())

    logging.info("grid: done")

    return AUTH.data["token"]


def parse_pcap(filename):
    logging.info("grid: parsing %s ..." % filename)

    net_id = os.path.basename(filename).replace('.pcap', '')

    if '_' in net_id:
        # /root/handshakes/ESSID_BSSID.pcap
        essid, bssid = net_id.split('_')
    else:
        # /root/handshakes/BSSID.pcap
        essid, bssid = '', net_id

    it = iter(bssid)
    bssid = ':'.join([a + b for a, b in zip(it, it)])

    info = {
        WifiInfo.ESSID: essid,
        WifiInfo.BSSID: bssid,
    }

    try:
        info = extract_from_pcap(filename, [WifiInfo.BSSID, WifiInfo.ESSID])
    except Exception as e:
        logging.error("grid: %s" % e)

    return info[WifiInfo.ESSID], info[WifiInfo.BSSID]


def api_report_ap(last_session, keys, token, essid, bssid):
    while True:
        token = AUTH.data['token']
        logging.info("grid: reporting %s (%s)" % (essid, bssid))
        try:
            api_address = 'https://api.pwnagotchi.ai/api/v1/unit/report/ap'
            headers = {'Authorization': 'access_token %s' % token}
            report = {
                'essid': essid,
                'bssid': bssid,
            }
            r = requests.post(api_address, headers=headers, json=report)
            if r.status_code != 200:
                if r.status_code == 401:
                    logging.warning("token expired")
                    token = get_api_token(last_session, keys)
                    continue
                else:
                    raise Exception("(status %d) %s" % (r.status_code, r.text))
            else:
                return True
        except Exception as e:
            logging.error("grid: %s" % e)
            return False


def is_excluded(what):
    for skip in OPTIONS['exclude']:
        skip = skip.lower()
        what = what.lower()
        if skip in what or skip.replace(':', ':') in what:
            return True
    return False


def on_internet_available(agent):
    global REPORT

    try:
        logging.debug("internet available")

        config = agent.config()
        keys = agent.keypair()

        logging.debug("checking pcaps")

        pcap_files = glob.glob(os.path.join(config['bettercap']['handshakes'], "*.pcap"))
        num_networks = len(pcap_files)
        reported = REPORT.data_field_or('reported', default=[])
        num_reported = len(reported)
        num_new = num_networks - num_reported

        token = get_api_token(agent.last_session, agent.keypair())
        if num_new > 0:
            if OPTIONS['report']:
                logging.info("grid: %d new networks to report" % num_new)
                logging.debug("OPTIONS: %s" % OPTIONS)
                logging.debug("  exclude: %s" % OPTIONS['exclude'])

                for pcap_file in pcap_files:
                    net_id = os.path.basename(pcap_file).replace('.pcap', '')
                    if net_id not in reported:
                        if is_excluded(net_id):
                            logging.info("skipping %s due to exclusion filter" % pcap_file)
                            continue

                        essid, bssid = parse_pcap(pcap_file)
                        if bssid:
                            if is_excluded(essid) or is_excluded(bssid):
                                logging.debug("not reporting %s due to exclusion filter" % pcap_file)

                            elif api_report_ap(agent.last_session, keys, token, essid, bssid):
                                    reported.append(net_id)
                                    REPORT.update(data={'reported': reported})
            else:
                logging.debug("grid: reporting disabled")

    except Exception as e:
        logging.exception("error while enrolling the unit")
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00			`__author__ = 'evilsocket@gmail.com'`
			`__version__ = '1.0.0'`
fix: api plugin is now called grid and opt-out 2019-10-07 16:23:38 +02:00			`__name__ = 'grid'`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00			`__license__ = 'GPL3'`
fix: api plugin is now called grid and opt-out 2019-10-07 16:23:38 +02:00			`__description__ = 'This plugin signals the unit cryptographic identity and list of pwned networks and list of pwned networks to api.pwnagotchi.ai'`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`import os`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00			`import logging`
			`import requests`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`import glob`
new: grid plugin now reports brain.json info 2019-10-09 23:14:02 +02:00			`import json`
new: reporting session data to the api 2019-10-07 10:25:46 +02:00			`import subprocess`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00			`import pwnagotchi`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`import pwnagotchi.utils as utils`
Put pcap parsing in utils class 2019-10-07 19:59:28 +02:00			`from pwnagotchi.utils import WifiInfo, extract_from_pcap`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00
			`OPTIONS = dict()`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`AUTH = utils.StatusFile('/root/.api-enrollment.json', data_format='json')`
			`REPORT = utils.StatusFile('/root/.api-report.json', data_format='json')`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00

			`def on_loaded():`
misc: small fix or general refactoring i did not bother commenting 2019-10-08 15:09:32 +02:00			`logging.info("grid plugin loaded.")`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00

fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`def get_api_token(last_session, keys):`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`global AUTH`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`if AUTH.newer_then_minutes(25) and AUTH.data is not None and 'token' in AUTH.data:`
			`return AUTH.data['token']`

			`if AUTH.data is None:`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`logging.info("grid: enrolling unit ...")`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`else:`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`logging.info("grid: refreshing token ...")`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00
			`identity = "%s@%s" % (pwnagotchi.name(), keys.fingerprint)`
			`# sign the identity string to prove we own both keys`
			`_, signature_b64 = keys.sign(identity)`

new: grid plugin now reports brain.json info 2019-10-09 23:14:02 +02:00			`brain = {}`
			`try:`
			`with open('/root/brain.json') as fp:`
			`brain = json.load(fp)`
			`except:`
			`pass`

new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`api_address = 'https://api.pwnagotchi.ai/api/v1/unit/enroll'`
			`enrollment = {`
			`'identity': identity,`
			`'public_key': keys.pub_key_pem_b64,`
			`'signature': signature_b64,`
			`'data': {`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`'duration': last_session.duration,`
			`'epochs': last_session.epochs,`
			`'train_epochs': last_session.train_epochs,`
			`'avg_reward': last_session.avg_reward,`
			`'min_reward': last_session.min_reward,`
			`'max_reward': last_session.max_reward,`
			`'deauthed': last_session.deauthed,`
			`'associated': last_session.associated,`
			`'handshakes': last_session.handshakes,`
			`'peers': last_session.peers,`
new: grid plugin now reports brain.json info 2019-10-09 23:14:02 +02:00			`'uname': subprocess.getoutput("uname -a"),`
fix: reporting software version from the grid plugin 2019-10-10 16:43:48 +02:00			`'brain': brain,`
			`'version': pwnagotchi.version`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`}`
			`}`

			`r = requests.post(api_address, json=enrollment)`
			`if r.status_code != 200:`
			`raise Exception("(status %d) %s" % (r.status_code, r.json()))`

			`AUTH.update(data=r.json())`

fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`logging.info("grid: done")`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00
			`return AUTH.data["token"]`


			`def parse_pcap(filename):`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`logging.info("grid: parsing %s ..." % filename)`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00
misc: small fix or general refactoring i did not bother commenting 2019-10-07 15:32:44 +02:00			`net_id = os.path.basename(filename).replace('.pcap', '')`

			`if '_' in net_id:`
			`# /root/handshakes/ESSID_BSSID.pcap`
			`essid, bssid = net_id.split('_')`
			`else:`
			`# /root/handshakes/BSSID.pcap`
			`essid, bssid = '', net_id`

			`it = iter(bssid)`
			`bssid = ':'.join([a + b for a, b in zip(it, it)])`

			`info = {`
Put pcap parsing in utils class 2019-10-07 19:59:28 +02:00			`WifiInfo.ESSID: essid,`
			`WifiInfo.BSSID: bssid,`
misc: small fix or general refactoring i did not bother commenting 2019-10-07 15:32:44 +02:00			`}`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00
			`try:`
Put pcap parsing in utils class 2019-10-07 19:59:28 +02:00			`info = extract_from_pcap(filename, [WifiInfo.BSSID, WifiInfo.ESSID])`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`except Exception as e:`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`logging.error("grid: %s" % e)`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00
Put pcap parsing in utils class 2019-10-07 19:59:28 +02:00			`return info[WifiInfo.ESSID], info[WifiInfo.BSSID]`
misc: small fix or general refactoring i did not bother commenting 2019-10-07 15:32:44 +02:00

fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`def api_report_ap(last_session, keys, token, essid, bssid):`
misc: small fix or general refactoring i did not bother commenting 2019-10-07 15:32:44 +02:00			`while True:`
misc: small fix or general refactoring i did not bother commenting 2019-10-07 15:45:11 +02:00			`token = AUTH.data['token']`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`logging.info("grid: reporting %s (%s)" % (essid, bssid))`
misc: small fix or general refactoring i did not bother commenting 2019-10-07 15:32:44 +02:00			`try:`
			`api_address = 'https://api.pwnagotchi.ai/api/v1/unit/report/ap'`
			`headers = {'Authorization': 'access_token %s' % token}`
			`report = {`
			`'essid': essid,`
			`'bssid': bssid,`
			`}`
			`r = requests.post(api_address, headers=headers, json=report)`
			`if r.status_code != 200:`
			`if r.status_code == 401:`
			`logging.warning("token expired")`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`token = get_api_token(last_session, keys)`
misc: small fix or general refactoring i did not bother commenting 2019-10-07 15:32:44 +02:00			`continue`
			`else:`
			`raise Exception("(status %d) %s" % (r.status_code, r.text))`
			`else:`
			`return True`
			`except Exception as e:`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`logging.error("grid: %s" % e)`
misc: small fix or general refactoring i did not bother commenting 2019-10-07 15:32:44 +02:00			`return False`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00

fix: fixed grid plugin exclusion list use 2019-10-11 09:37:50 +02:00			`def is_excluded(what):`
			`for skip in OPTIONS['exclude']:`
			`skip = skip.lower()`
			`what = what.lower()`
			`if skip in what or skip.replace(':', ':') in what:`
			`return True`
			`return False`


fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`def on_internet_available(agent):`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`global REPORT`

			`try:`
fix: fixed grid plugin exclusion list use 2019-10-11 09:37:50 +02:00			`logging.debug("internet available")`

fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`config = agent.config()`
			`keys = agent.keypair()`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00
fix: fixed grid plugin exclusion list use 2019-10-11 09:37:50 +02:00			`logging.debug("checking pcaps")`

new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`pcap_files = glob.glob(os.path.join(config['bettercap']['handshakes'], "*.pcap"))`
			`num_networks = len(pcap_files)`
			`reported = REPORT.data_field_or('reported', default=[])`
			`num_reported = len(reported)`
			`num_new = num_networks - num_reported`

fix: grid plugin was not enrolling partially opted-in units 2019-10-08 18:52:36 +02:00			`token = get_api_token(agent.last_session, agent.keypair())`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`if num_new > 0:`
			`if OPTIONS['report']:`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`logging.info("grid: %d new networks to report" % num_new)`
fix: fixed grid plugin exclusion list use 2019-10-11 09:37:50 +02:00			`logging.debug("OPTIONS: %s" % OPTIONS)`
			`logging.debug(" exclude: %s" % OPTIONS['exclude'])`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`for pcap_file in pcap_files:`
			`net_id = os.path.basename(pcap_file).replace('.pcap', '')`
fix: fixed grid plugin exclusion list use 2019-10-11 09:37:50 +02:00			`if net_id not in reported:`
			`if is_excluded(net_id):`
			`logging.info("skipping %s due to exclusion filter" % pcap_file)`
			`continue`

new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`essid, bssid = parse_pcap(pcap_file)`
			`if bssid:`
fix: fixed grid plugin exclusion list use 2019-10-11 09:37:50 +02:00			`if is_excluded(essid) or is_excluded(bssid):`
			`logging.debug("not reporting %s due to exclusion filter" % pcap_file)`

			`elif api_report_ap(agent.last_session, keys, token, essid, bssid):`
			`reported.append(net_id)`
			`REPORT.update(data={'reported': reported})`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`else:`
fix: on_internet_available plugins callback is now called for both MANU and AUTO mode (fixes #210) 2019-10-08 14:54:03 +02:00			`logging.debug("grid: reporting disabled")`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00
			`except Exception as e:`
			`logging.exception("error while enrolling the unit")`