console.py

#!/usr/bin/python2.7
# -*- coding: utf-8

from classes import Passwords
from utils import Utils
import time
import json
from PIL import Image
import base64
import requests
import re
import concurrent.futures
import random
import sys
import signal
import io
import logging
logger = logging.getLogger(__name__)

original_sigint = None
DATABASE_ENDPOINT = "https://vhack.olympiccode.ga/database/submit.php"


class Console:
    ut = Utils()

    def __init__(self, player):
        global original_sigint
        self.username = player.username
        self.password = player.password
        self.uhash = player.uhash
        original_sigint = signal.getsignal(signal.SIGINT)
        signal.signal(signal.SIGINT, self.exit_gracefully)

    def myinfo(self):
        temp = self.ut.requestString(self.username, self.password, self.uhash, "vh_update.php", gcm="eW7lxzLY9bE:APA91bEO2sZd6aibQerL3Uy-wSp3gM7zLs93Xwoj4zIhnyNO8FLyfcODkIRC1dc7kkDymiWxy_dTQ-bXxUUPIhN6jCUBVvGqoNXkeHhRvEtqAtFuYJbknovB_0gItoXiTev7Lc5LJgP2")
        return temp

    def requestPassword(self, ip):
        arr = self.ut.requestArray(self.username, self.password, "vh_vulnScan.php", target=ip)
        imgs = Passwords(arr)
        return imgs

    def enterPassword(self, target, passwd):
        passwd = passwd.split("p")
        temp = self.ut.requestString(self.username, self.password, self.uhash, "vh_trTransfer.php", target=str(target), port="0")  # passwd[1].strip()
        result = json.loads(temp)
        if str(result["result"]) == "0":
            return temp
        else:
            return False

    def check_Cluster(self):
        temp = self.ut.requestString(self.username, self.password, self.uhash, "vh_ClusterData.php")
        return temp

    def scanUser(self):
        arr = self.ut.requestArray(self.username, self.password, self.uhash, "vh_scanHost.php")
        return arr

    def GetTournamentPosition(self):
        temp = self.ut.requestString(self.username, self.password, self.uhash, "vh_tournamentData.php")
        return temp

    def AttackCluster(self, tag):
        temp = self.ut.requestString(self.username, self.password, self.uhash, "vh_startDDoS.php", ctag=str(tag))
        return temp

    def ScanCluster(self, tag):
        temp = self.ut.requestString(self.username, self.password, self.uhash, "vh_scanTag.php")
        return temp

    def transferMoney(self, ip):
        arr = self.ut.requestArray(self.username, self.password, self.uhash, "vh_trTransfer.php", target=ip)
        return arr

    def clearLog(self, ip):
        s = self.ut.requestString(self.username, self.password, self.uhash, "vh_clearAccessLogs.php", target=ip)
        if s == "0":
            return True
        else:
            return False

    def uploadSpyware(self, ip):
        s = self.ut.requestString(self.username, self.password, self.uhash, "vh_spywareUpload.php", target=ip)
        if s == "0":
            return True
        else:
            return False

    def getTournament(self):
        temp = self.ut.requestString(self.username, self.password, self.uhash, "vh_update.php")
        if "tournamentActive" in temp:
            if "2" not in temp.split('tournamentActive":"')[1].split('"')[0]:
                return True
            else:
                return False

    def returncrawler(fd, lineexec):
        fd.write('{0}\n'.format(lineexec.result()))
        fd.flush()

    def get_main_color(self, image_data):
        img = Image.open(io.BytesIO(image_data))
        colors = img.getcolors(256)  # put a higher value if there are many colors in your image
        max_occurence, most_present = 0, 0
        try:
            for c in colors:
                if c[1][0] == 136:
                    FBI = True
                    return FBI

        except TypeError:
            raise Exception("Too many colors in the image")

    def calc_img(self, ut, imgstring, uhash, hostname, mode):
        # pic = cStringIO.StringIO()
        # image_string = cStringIO.StringIO(base64.b64decode(imgstring))
        # image = Image.open(image_string)

        # Overlay on white background, see http://stackoverflow.com/a/7911663/1703216
        # bg = Image.new("RGB", image.size, (255,255,255))
        # bg.paste(image,image)

        imgdata = base64.b64decode(imgstring)
        image = self.get_main_color(imgdata)

        if image:
            logger.info("Matched FBI")
            return 1, hostname

        else:
            try:
                # if int(firewall[2].strip()) < max:
                    try:
                        temp = self.ut.requestString(self.username, self.password, self.uhash, "vh_scanHost.php", hostname=str(hostname))

                        jsons = json.loads(temp)
                        if ".vHack.cc" not in str(jsons['ipaddress']):
                            result = self.attackIP(jsons['ipaddress'], mode)

                            # remove spyware
                            spyware = self.ut.requestArray(self.username, self.password, self.uhash, "vh_spywareInfo.php")
                            if int(spyware[0].split(":")[-1]) > 0 and not int(spyware[0].split(":")[-1]) == 0:
                                self.ut.requestArray(self.username, self.password, self.uhash, "vh_removeSpyware.php")
                                logger.info("I will remove {} Spyware for your account.".format(str(spyware[0].split(":")[-1])))
                            return result, jsons['ipaddress']

                        # else:
                        #     temp = self.ut.requestString("user::::pass::::uhash::::hostname", self.username + "::::" + self.password + "::::" + str(uhash) + "::::" + jsons['ipaddress'], "vh_scanHost.php")
                        #     if not ".vHack.cc" in str(jsons['ipaddress']) and int(jsons['vuln']) == 1:
                        #         time.sleep(1)
                        #         self.attackIP(jsons['ipaddress'], max, mode)

                    except TypeError as e:
                        logger.error(e)
                        return 0, 0, "type error" + e
                # else:
                #    print "Firewall level is to High"
                #    return 0, 0

            except ValueError as e:
                logger.error(e)
                return 0, 0, "value error"

    def getIP(self, blank, max, mode, active_protecte_cluster_ddos):
        stat_cluster = self.check_Cluster()
        stat_cluster = json.loads(stat_cluster)
        try:
            stat_cluter_blocked = stat_cluster['blocked']
        except:
            stat_cluter_blocked = ""

        if "Your Cluster is blocked" in stat_cluter_blocked and active_protecte_cluster_ddos:
            logger.info("wait 2 minutes {}".format(stat_cluter_blocked))
            time.sleep(120)
        else:
            temp = self.ut.requestString(self.username, self.password, self.uhash, "vh_getImg.php", by=str(random.randint(0, 1)))
            jsons = json.loads(temp)
            list_image = []
            list_hostname = []

            for i in range(0, len(jsons["data"])):
                hostname = str(jsons["data"][i]["hostname"])
                imgstring = 'data: image/png;base64,' + jsons["data"][i]['img']
                imgstring = imgstring.split('base64,')[-1].strip()
                list_image.append(imgstring)
                list_hostname.append(hostname)

            logger.info("Packing IP list {}".format(len(list_image)))
            # fd = open("database.txt", "a")

            with concurrent.futures.ThreadPoolExecutor(max_workers=4) as executor:
                for i, image in enumerate(list_image):
                    wait_for = executor.submit(self.calc_img, self.ut, list_image[i], self.uhash, list_hostname[i], mode)

                    try:
                        result, ip = wait_for.result()

                    except TypeError:
                        result = False
                    except ValueError:
                        result = False

                    except ValueError:
                        result = False

                    if result:
                        with open("database.text", "a") as f:
                            f.write(ip + "\n")

    def send2DB(ip, username, money, ipsplevel, fwlevel, avlevel):
        logger.info("send to database")
        try:
            s = requests.session()
            if ip == username:
                s.get(DATABASE_ENDPOINT + "?IP={}&MONEY={}&IPSP={}&FW={}&AV={}".format(ip, money, ipsplevel, fwlevel, avlevel), timeout=15)
            else:
                s.get(DATABASE_ENDPOINT + "?IP={}&USR={}&MONEY={}&IPSP={}&FW={}&AV={}".format(ip, username, money, ipsplevel, fwlevel, avlevel), timeout=15)
            s.close()
        except Exception as e:
            logger.error(e)
            s.close()

    def attackIP(self, ip, mode):
        temp = self.ut.requestString(self.username, self.password, self.uhash, "vh_loadRemoteData.php", target=ip)
        jsons = json.loads(temp)

        # o = OCR()
        # imgs = o.getSolution(str(temp))
        imgs = True
        if imgs is not None:
            try:
                # user = jsons['username']
                winchance = jsons['winchance']
            except TypeError:
                logger.error("error")
                return False

            try:
                if winchance:
                    fwlevel = jsons['fw']
                    avlevel = jsons['av']
                    # spamlevel = jsons['spam']
                    sdklevel = jsons['sdk']
                    # ipsplevel = jsons['ipsp']
                    money = jsons['money']
                    saving = jsons['savings']
                    anonymous = jsons['anonymous']
                    username = jsons['username']
                    # winlo = jsons['winelo']
                    winchance = jsons['winchance']
                    # spywarelevel = jsons['spyware']
                else:
                    avlevel = "????"
                    winchance = 0
                    logger.info("no scan username")
                    return False

            except TypeError:
                fwlevel = jsons['fw']
                avlevel = jsons['av']
                # spamlevel = jsons['spam']
                sdklevel = jsons['sdk']
                # ipsplevel = jsons['ipsp']
                money = jsons['money']
                saving = jsons['savings']
                anonymous = jsons['anonymous']
                username = jsons['username']
                # winlo = jsons['winelo']
                winchance = jsons['winchance']
                # spywarelevel = jsons['spyware']

            if type(winchance) == "str":
                if "?" in winchance:
                    winchance = 0
                    logger.info("no chance")
                    return False

            if mode == "Potator":
                if winchance > 20:
                    password = self.enterPassword(ip, self.uhash)
                    jsons = json.loads(password)
                    if int(jsons["result"]) == 0:
                        try:
                            if "?" not in str(money) and str(jsons['result']) == 0:
                                logger.info("\nYour Money: {:11,}$\n[TargetIP: {}]\n\nMade {:11,}$ and {:2d}Rep.\n Antivirus: {} Firewall: {} Sdk: {} TotalMoney: {:11,}$\n YourWinChance: {} Anonymous: {} username: {} saving: {}\n".format(
                                            jsons['newmoney'], ip, jsons['amount'], jsons['eloch'], avlevel, fwlevel, sdklevel, money, winchance, anonymous, username, saving))
                                try:
                                    ip = re.search(r'\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}', username).group()
                                except AttributeError:
                                    pass
                                # print ip, type(ip), username, type(username)
                                # self.send2DB(ip, username, money, ipsplevel, fwlevel, avlevel)
                            else:
                                logger.info("\nYour Money: {:11,}$\n[TargetIP: {}]\n\nMade {:11,}$ and {:2d}Rep.\n Antivirus: {} Firewall: {} Sdk: {} TotalMoney: {:11,}$\n YourWinChance: {} Anonymous: {} username: {} saving: {}\n".format(
                                            jsons['newmoney'], ip, jsons['amount'], jsons['eloch'], avlevel, fwlevel, sdklevel, money, winchance, anonymous, username, saving))
                                try:
                                    ip = re.search(r'\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}', username).group()
                                except AttributeError:
                                    pass
                                # print ip, type(ip), username, type(username)
                                # self.send2DB(ip, username, money, ipsplevel, fwlevel, avlevel)

                                return True

                        except KeyError:
                            logger.info("Bad attack")
                            return False

                        except ValueError as e:
                            logger.error("error: {}".format(e))
                            return True
                    else:
                        logger.error("Password Wrong")
                        return False
                else:
                    logger.info("winchance is poor: {}".format(winchance))
                    return False

            if "?" not in str(avlevel) and "?" not in str(winchance) and mode == "Secure":
                if int(winchance) > 75 and str(anonymous) == "YES":
                    password = self.enterPassword(ip, self.uhash)
                    jsons = json.loads(password)
                    if int(jsons["result"]) == 0:
                        try:
                            if "?" not in str(money) and str(jsons['result']) == 0:
                                logger.info("\nYour Money: {:11,}$\n[TargetIP: {}]\n\nMade {:11,}$ and {:2d}Rep.\n Antivirus: {} Firewall: {} Sdk: {} TotalMoney: {:11,}$\n YourWinChance: {} Anonymous: {} username: {} saving: {}\n".format(
                                            jsons['newmoney'], ip, jsons['amount'], jsons['eloch'], avlevel, fwlevel, sdklevel, money, winchance, anonymous, username, saving))
                                try:
                                    ip = re.search(r'\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}', username).group()
                                except AttributeError:
                                    pass
                                # print ip, type(ip), username, type(username)
                                # self.send2DB(ip, username, money, ipsplevel, fwlevel, avlevel)
                                return True
                            else:
                                logger.info("\nYour Money: {:11,}$\n[TargetIP: {}]\n\nMade {:11,}$ and {:2d}Rep.\n Antivirus: {} Firewall: {} Sdk: {} TotalMoney: {:11,}$\n YourWinChance: {} Anonymous: {} username: {} saving: {}\n".format(
                                            jsons['newmoney'], ip, jsons['amount'], jsons['eloch'], avlevel, fwlevel, sdklevel, money, winchance, anonymous, username, saving))
                                try:
                                    ip = re.search(r'\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}', username).group()
                                except AttributeError:
                                    pass
                                # print ip, type(ip), username, type(username)
                                # self.send2DB(ip, username, money, ipsplevel, fwlevel, avlevel)
                                return True

                        except KeyError:
                            logger.error("Bad attack")
                            return False
                    else:
                        logger.error("Password Incorrect")
                        return False
                else:
                    # print "\n"
                    if int(winchance) < 75:
                        logger.info("winchance is poor: {}".format(winchance))
                        # print "passed"
                        return False
                    if str(anonymous) == "NO":
                        logger.info("Hack Anonymous is needed")
                        # print "passed"
                        return False
            else:
                if "?" in str(avlevel):
                    logger.info("Cant load User")
                    return False
                else:
                    logger.error("Scan to low ({})".format(avlevel))
                    return False
        else:
            logger.info("Password Error")
            return False

    def attack(self, obj):
        for i in range(0, (obj.attacks_normal * random.randint(1, 2))):
            self.getIP(True, obj.maxanti_normal, obj.mode, obj.active_cluster_protection)
            logger.info("wait anti-blocking...")

    def exit_gracefully(self, signum, frame):
        # restore the original signal handler as otherwise evil things will happen
        # in raw_input when CTRL+C is pressed, and our signal handler is not re-entrant
        signal.signal(signal.SIGINT, original_sigint)

        try:
            if raw_input("\nReally quit? (y/n)> ").lower().startswith('y'):
                sys.exit(1)

        except KeyboardInterrupt:
            logger.info("Ok ok, quitting")
            sys.exit(1)

        # restore the exit gracefully handler here
        signal.signal(signal.SIGINT, self.exit_gracefully)