vtscan

package module

v0.1.0 Latest Latest Go to latest Published: Sep 25, 2023 License: GPL-3.0 Imports: 14 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/vrscan/virustotalscan

Links

Open Source Insights

README ¶

virustotalscan

Provides better virustotal.com support to scan and research files and binaries.

To use library just register email and get the key!

Example:

	client, err := Register("your_registered@email.here")

	found, err := client.Check(filebuf)

	if found { some alert }

Documentation ¶

Index ¶

Constants
Variables
type ConnChecker
- func NewDefferedConnChecker(useLocalVThelper bool, conn net.Conn, vtscan *Vtscan, onalert func(), ...) *ConnChecker
type Flusher
- func (f *Flusher) Run()
type ServerAnswer
type Vtscan
- func Register(email string, server_ip string) (*Vtscan, error)

Constants ¶

View Source

const (
	FC_CONN_READ  = fcConnDir(1) // server <= client
	FC_CONN_WRITE = fcConnDir(2) // server => client
)

direction of data moving

Variables ¶

View Source

var GetServerConn = func() func() *serverConn {
	connLog := zipologger.GetLoggerBySuffix("vtlconn.log", "./logs/", 2, 2, 2, false)

	dialer := net.Dialer{
		Timeout:   time.Millisecond * 500,
		KeepAlive: time.Second * 15,
	}

	port := ":89"

	var sconn = &serverConn{}

	go func() {
		for {

			conn, err := dialer.Dial("tcp", port)
			if err != nil {
				connLog.Printf("error: %s", err.Error())
				time.Sleep(2 * time.Second)
				continue
			}

			sconn.setConn(conn)

			for {
				time.Sleep(2 * time.Second)
				if !sconn.pingpong() {
					sconn.Fail()

					break
				}
			}
		}
	}()

	return func() *serverConn {
		return sconn
	}
}()

nil if no good connection

Functions ¶

This section is empty.

Types ¶

type ConnChecker ¶ added in v0.0.19

type ConnChecker struct {
	// contains filtered or unexported fields
}

func NewDefferedConnChecker ¶ added in v0.0.6

func NewDefferedConnChecker(useLocalVThelper bool, conn net.Conn, vtscan *Vtscan, onalert func(), onerror func(err error)) *ConnChecker

Creates MITM conn, called deffered alert if something found

func (*ConnChecker) Close ¶ added in v0.0.19

func (c *ConnChecker) Close() error

func (*ConnChecker) Conn ¶ added in v0.0.26

func (c *ConnChecker) Conn() net.Conn

net.Conn if needed

func (*ConnChecker) Flush ¶ added in v0.0.25

func (c *ConnChecker) Flush() *Flusher

flushes current checks to server and wait till em ends stop launch for new to continue checking call .Run()

func (*ConnChecker) LocalAddr ¶ added in v0.0.19

func (c *ConnChecker) LocalAddr() net.Addr

func (*ConnChecker) Read ¶ added in v0.0.19

func (c *ConnChecker) Read(b []byte) (int, error)

from conn to buffer

func (*ConnChecker) RemoteAddr ¶ added in v0.0.19

func (c *ConnChecker) RemoteAddr() net.Addr

func (*ConnChecker) SetDeadline ¶ added in v0.0.19

func (c *ConnChecker) SetDeadline(t time.Time) error

func (*ConnChecker) SetLogAll ¶ added in v0.0.19

func (c *ConnChecker) SetLogAll(b bool)

func (*ConnChecker) SetLogger ¶ added in v0.0.19

func (c *ConnChecker) SetLogger(log *zipologger.Logger)

func (*ConnChecker) SetReadDeadline ¶ added in v0.0.19

func (c *ConnChecker) SetReadDeadline(t time.Time) error

func (*ConnChecker) SetWriteDeadline ¶ added in v0.0.19

func (c *ConnChecker) SetWriteDeadline(t time.Time) error

func (*ConnChecker) Write ¶ added in v0.0.19

func (c *ConnChecker) Write(b []byte) (int, error)

to conn

type Flusher ¶ added in v0.0.25

type Flusher struct {
	// contains filtered or unexported fields
}

func (*Flusher) Run ¶ added in v0.0.25

func (f *Flusher) Run()

continue work after flush

type ServerAnswer ¶

type ServerAnswer struct {
	Status  string
	Message string
	Record  struct {
		Token string
	}
}

type Vtscan ¶

type Vtscan struct {
	// contains filtered or unexported fields
}

func Register ¶

func Register(email string, server_ip string) (*Vtscan, error)

Register client instance by email server_ip - only for raw socket data, if paid

func (*Vtscan) Check ¶

func (v *Vtscan) Check(buf []byte) (bool, error)

Sends to the server file or buffer to scan for known signatures.

Based on server answer:

200 OK 		- nothing found

403 EXPIRED - token is expired
403 DENIED  - access denied

200 SUSPICIOUS 	- Suspicious file
200 FOUND 	- Signature found

415 INCORRECTBUFFER - Incorrect buffer (too huge or absent)
500 ERROR 	- Some error on server

Returns:

true if something found with description

func (*Vtscan) FastCheck ¶ added in v0.0.4

func (v *Vtscan) FastCheck(connId []byte, dir fcConnDir, packetNum int64, data []byte) (bool, []byte, error)

Sends to the server file or buffer to scan for known signatures.

Protocol:

[16] connId: google's UUID to determinate unique connection [1] dir: fcConnDir [8] packetNum: counter of sended packets [4] dl bytes: data len [dl]: data to check

Returns:

true if something found with description

func (*Vtscan) LastError ¶ added in v0.0.4

func (v *Vtscan) LastError() error

func (*Vtscan) SocketIsConnected ¶ added in v0.0.8

func (v *Vtscan) SocketIsConnected() bool

func (*Vtscan) StartSocketSender ¶ added in v0.0.30

func (v *Vtscan) StartSocketSender()

start raw socket listener

func (*Vtscan) Token ¶ added in v0.0.4

func (v *Vtscan) Token() string

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL