pwnagotchi/pwnagotchi/plugins/default/api.py

__author__ = 'evilsocket@gmail.com'
__version__ = '1.0.0'
__name__ = 'api'
__license__ = 'GPL3'
__description__ = 'This plugin signals the unit cryptographic identity to api.pwnagotchi.ai'

import os
import logging
import requests
import glob
import subprocess
import pwnagotchi
import pwnagotchi.utils as utils

OPTIONS = dict()
AUTH = utils.StatusFile('/root/.api-enrollment.json', data_format='json')
REPORT = utils.StatusFile('/root/.api-report.json', data_format='json')


def on_loaded():
    logging.info("api plugin loaded.")


def get_api_token(log, keys):
    global AUTH

    if AUTH.newer_then_minutes(25) and AUTH.data is not None and 'token' in AUTH.data:
        return AUTH.data['token']

    if AUTH.data is None:
        logging.info("api: enrolling unit ...")
    else:
        logging.info("api: refreshing token ...")

    identity = "%s@%s" % (pwnagotchi.name(), keys.fingerprint)
    # sign the identity string to prove we own both keys
    _, signature_b64 = keys.sign(identity)

    api_address = 'https://api.pwnagotchi.ai/api/v1/unit/enroll'
    enrollment = {
        'identity': identity,
        'public_key': keys.pub_key_pem_b64,
        'signature': signature_b64,
        'data': {
            'duration': log.duration,
            'epochs': log.epochs,
            'train_epochs': log.train_epochs,
            'avg_reward': log.avg_reward,
            'min_reward': log.min_reward,
            'max_reward': log.max_reward,
            'deauthed': log.deauthed,
            'associated': log.associated,
            'handshakes': log.handshakes,
            'peers': log.peers,
            'uname': subprocess.getoutput("uname -a")
        }
    }

    r = requests.post(api_address, json=enrollment)
    if r.status_code != 200:
        raise Exception("(status %d) %s" % (r.status_code, r.json()))

    AUTH.update(data=r.json())

    logging.info("api: done")

    return AUTH.data["token"]


def parse_packet(packet, info):
    from scapy.all import Dot11Elt, Dot11Beacon, Dot11, Dot11ProbeResp, Dot11AssoReq, Dot11ReassoReq

    if packet.haslayer(Dot11Beacon):
        if packet.haslayer(Dot11Beacon) \
                or packet.haslayer(Dot11ProbeResp) \
                or packet.haslayer(Dot11AssoReq) \
                or packet.haslayer(Dot11ReassoReq):
            if 'bssid' not in info and hasattr(packet[Dot11], 'addr3'):
                info['bssid'] = packet[Dot11].addr3
            if 'essid' not in info and hasattr(packet[Dot11Elt], 'info'):
                info['essid'] = packet[Dot11Elt].info.decode('utf-8')

    return info


def parse_pcap(filename):
    logging.info("api: parsing %s ..." % filename)

    essid = bssid = None

    try:
        from scapy.all import rdpcap

        info = {}

        for pkt in rdpcap(filename):
            info = parse_packet(pkt, info)
            if 'essid' in info and info['essid'] is not None and 'bssid' in info and info['bssid'] is not None:
                break

        bssid = info['bssid'] if 'bssid' in info else None
        essid = info['essid'] if 'essid' in info else None

    except Exception as e:
        bssid = None
        logging.error("api: %s" % e)

    return essid, bssid


def api_report_ap(token, essid, bssid):
    logging.info("api: reporting %s (%s)" % (essid, bssid))

    try:
        api_address = 'https://api.pwnagotchi.ai/api/v1/unit/report/ap'
        headers = {'Authorization': 'access_token %s' % token}
        report = {
            'essid': essid,
            'bssid': bssid,
        }
        r = requests.post(api_address, headers=headers, json=report)
        if r.status_code != 200:
            raise Exception("(status %d) %s" % (r.status_code, r.text))
    except Exception as e:
        logging.error("api: %s" % e)
        return False

    return True


def on_internet_available(ui, keys, config, log):
    global REPORT

    try:

        pcap_files = glob.glob(os.path.join(config['bettercap']['handshakes'], "*.pcap"))
        num_networks = len(pcap_files)
        reported = REPORT.data_field_or('reported', default=[])
        num_reported = len(reported)
        num_new = num_networks - num_reported

        if num_new > 0:
            logging.info("api: %d new networks to report" % num_new)
            token = get_api_token(log, keys)

            if OPTIONS['report']:
                for pcap_file in pcap_files:
                    net_id = os.path.basename(pcap_file).replace('.pcap', '')
                    if net_id not in reported:
                        essid, bssid = parse_pcap(pcap_file)
                        if bssid:
                            if api_report_ap(token, essid, bssid):
                                reported.append(net_id)
                                REPORT.update(data={'reported': reported})
            else:
                logging.info("api: reporting disabled")

    except Exception as e:
        logging.exception("error while enrolling the unit")
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00			`__author__ = 'evilsocket@gmail.com'`
			`__version__ = '1.0.0'`
			`__name__ = 'api'`
			`__license__ = 'GPL3'`
			`__description__ = 'This plugin signals the unit cryptographic identity to api.pwnagotchi.ai'`

new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`import os`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00			`import logging`
			`import requests`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`import glob`
new: reporting session data to the api 2019-10-07 10:25:46 +02:00			`import subprocess`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00			`import pwnagotchi`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`import pwnagotchi.utils as utils`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00
			`OPTIONS = dict()`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`AUTH = utils.StatusFile('/root/.api-enrollment.json', data_format='json')`
			`REPORT = utils.StatusFile('/root/.api-report.json', data_format='json')`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00

			`def on_loaded():`
			`logging.info("api plugin loaded.")`


new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`def get_api_token(log, keys):`
			`global AUTH`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`if AUTH.newer_then_minutes(25) and AUTH.data is not None and 'token' in AUTH.data:`
			`return AUTH.data['token']`

			`if AUTH.data is None:`
			`logging.info("api: enrolling unit ...")`
			`else:`
			`logging.info("api: refreshing token ...")`

			`identity = "%s@%s" % (pwnagotchi.name(), keys.fingerprint)`
			`# sign the identity string to prove we own both keys`
			`_, signature_b64 = keys.sign(identity)`

			`api_address = 'https://api.pwnagotchi.ai/api/v1/unit/enroll'`
			`enrollment = {`
			`'identity': identity,`
			`'public_key': keys.pub_key_pem_b64,`
			`'signature': signature_b64,`
			`'data': {`
			`'duration': log.duration,`
			`'epochs': log.epochs,`
			`'train_epochs': log.train_epochs,`
			`'avg_reward': log.avg_reward,`
			`'min_reward': log.min_reward,`
			`'max_reward': log.max_reward,`
			`'deauthed': log.deauthed,`
			`'associated': log.associated,`
			`'handshakes': log.handshakes,`
			`'peers': log.peers,`
			`'uname': subprocess.getoutput("uname -a")`
			`}`
			`}`

			`r = requests.post(api_address, json=enrollment)`
			`if r.status_code != 200:`
			`raise Exception("(status %d) %s" % (r.status_code, r.json()))`

			`AUTH.update(data=r.json())`

			`logging.info("api: done")`

			`return AUTH.data["token"]`


			`def parse_packet(packet, info):`
			`from scapy.all import Dot11Elt, Dot11Beacon, Dot11, Dot11ProbeResp, Dot11AssoReq, Dot11ReassoReq`

			`if packet.haslayer(Dot11Beacon):`
			`if packet.haslayer(Dot11Beacon) \`
			`or packet.haslayer(Dot11ProbeResp) \`
			`or packet.haslayer(Dot11AssoReq) \`
			`or packet.haslayer(Dot11ReassoReq):`
			`if 'bssid' not in info and hasattr(packet[Dot11], 'addr3'):`
			`info['bssid'] = packet[Dot11].addr3`
			`if 'essid' not in info and hasattr(packet[Dot11Elt], 'info'):`
			`info['essid'] = packet[Dot11Elt].info.decode('utf-8')`

			`return info`


			`def parse_pcap(filename):`
			`logging.info("api: parsing %s ..." % filename)`

			`essid = bssid = None`

			`try:`
			`from scapy.all import rdpcap`

			`info = {}`

			`for pkt in rdpcap(filename):`
			`info = parse_packet(pkt, info)`
misc: small fix or general refactoring i did not bother commenting 2019-10-07 14:12:22 +02:00			`if 'essid' in info and info['essid'] is not None and 'bssid' in info and info['bssid'] is not None:`
			`break`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00
			`bssid = info['bssid'] if 'bssid' in info else None`
			`essid = info['essid'] if 'essid' in info else None`

			`except Exception as e:`
			`bssid = None`
			`logging.error("api: %s" % e)`

			`return essid, bssid`


			`def api_report_ap(token, essid, bssid):`
			`logging.info("api: reporting %s (%s)" % (essid, bssid))`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00
			`try:`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`api_address = 'https://api.pwnagotchi.ai/api/v1/unit/report/ap'`
			`headers = {'Authorization': 'access_token %s' % token}`
			`report = {`
			`'essid': essid,`
			`'bssid': bssid,`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00			`}`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`r = requests.post(api_address, headers=headers, json=report)`
			`if r.status_code != 200:`
			`raise Exception("(status %d) %s" % (r.status_code, r.text))`
			`except Exception as e:`
			`logging.error("api: %s" % e)`
			`return False`

			`return True`


			`def on_internet_available(ui, keys, config, log):`
			`global REPORT`

			`try:`

			`pcap_files = glob.glob(os.path.join(config['bettercap']['handshakes'], "*.pcap"))`
			`num_networks = len(pcap_files)`
			`reported = REPORT.data_field_or('reported', default=[])`
			`num_reported = len(reported)`
			`num_new = num_networks - num_reported`

			`if num_new > 0:`
			`logging.info("api: %d new networks to report" % num_new)`
			`token = get_api_token(log, keys)`

			`if OPTIONS['report']:`
			`for pcap_file in pcap_files:`
			`net_id = os.path.basename(pcap_file).replace('.pcap', '')`
			`if net_id not in reported:`
			`essid, bssid = parse_pcap(pcap_file)`
			`if bssid:`
			`if api_report_ap(token, essid, bssid):`
			`reported.append(net_id)`
misc: small fix or general refactoring i did not bother commenting 2019-10-07 14:32:42 +02:00			`REPORT.update(data={'reported': reported})`
new: api plugin will report pwned access points 2019-10-07 13:06:29 +02:00			`else:`
			`logging.info("api: reporting disabled")`
new: fixed rsa identity generation and implemented api enrollment plugin 2019-10-06 23:25:02 +02:00
			`except Exception as e:`
			`logging.exception("error while enrolling the unit")`