Skip to content

Commit

Permalink
Code QA
Browse files Browse the repository at this point in the history
  • Loading branch information
@ajinabraham
ajinabraham committed Dec 3, 2023
1 parent 7a493d4 commit 287b18a
Show file tree
Hide file tree
Showing 5 changed files with 38 additions and 69 deletions.
18 changes: 10 additions & 8 deletions mobsf/DynamicAnalyzer/views/ios/corellium_apis.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,8 @@
from copy import deepcopy
from socket import gethostname

from django.conf import settings

import requests

SUCCESS_RESP = (200, 204)
Expand All @@ -15,9 +17,9 @@

class CorelliumAPI:

def __init__(self, api_key, project_id) -> None:
def __init__(self, project_id) -> None:
self.api = 'https://app.corellium.com/api/v1'
self.api_key = api_key
self.api_key = getattr(settings, 'CORELLIUM_API_KEY', '')
self.headers = {
'Content-Type': 'application/json',
'Authorization': f'Bearer {self.api_key}',
Expand Down Expand Up @@ -130,9 +132,9 @@ def create_ios_instance(self, flavor, version):

class CorelliumModelsAPI:

def __init__(self, api_key) -> None:
def __init__(self) -> None:
self.api = 'https://app.corellium.com/api/v1'
self.api_key = api_key
self.api_key = getattr(settings, 'CORELLIUM_API_KEY', '')
self.headers = {
'Accept': 'application/json',
'Content-Type': 'application/json',
Expand Down Expand Up @@ -170,9 +172,9 @@ def get_supported_os(self, model):

class CorelliumInstanceAPI:

def __init__(self, api_key, instance_id) -> None:
def __init__(self, instance_id) -> None:
self.api = 'https://app.corellium.com/api/v1'
self.api_key = api_key
self.api_key = getattr(settings, 'CORELLIUM_API_KEY', '')
self.headers = {
'Accept': 'application/json',
'Content-Type': 'application/json',
Expand Down Expand Up @@ -398,9 +400,9 @@ def device_input(self, event, x, y):

class CorelliumAgentAPI:

def __init__(self, api_key, instance_id) -> None:
def __init__(self, instance_id) -> None:
self.api = 'https://app.corellium.com/api/v1'
self.api_key = api_key
self.api_key = getattr(settings, 'CORELLIUM_API_KEY', '')
self.headers = {
'Accept': 'application/json',
'Content-Type': 'application/json',
Expand Down
70 changes: 21 additions & 49 deletions mobsf/DynamicAnalyzer/views/ios/corellium_instance.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -64,8 +64,7 @@ def start_instance(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
r = ci.start_instance()
if r == OK:
data = {
Expand All @@ -92,8 +91,7 @@ def stop_instance(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
r = ci.stop_instance()
if r == OK:
data = {
Expand All @@ -120,8 +118,7 @@ def unpause_instance(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
r = ci.unpause_instance()
if r == OK:
data = {
Expand All @@ -148,8 +145,7 @@ def reboot_instance(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
r = ci.reboot_instance()
if r == OK:
data = {
Expand All @@ -176,8 +172,7 @@ def destroy_instance(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
r = ci.remove_instance()
if r == OK:
data = {
Expand All @@ -204,8 +199,7 @@ def list_apps(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ca = CorelliumAgentAPI(apikey, instance_id)
ca = CorelliumAgentAPI(instance_id)
# Get apps in device
r = ca.list_apps()
app_list = []
Expand Down Expand Up @@ -258,13 +252,7 @@ def get_supported_models(request, api=False):
'status': 'failed',
'message': 'Failed to obtain iOS models'}
try:
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
if not apikey:
data = {
'status': 'failed',
'message': 'Missing Corellium API key'}
return send_response(data, api)
cm = CorelliumModelsAPI(apikey)
cm = CorelliumModelsAPI()
r = cm.get_models()
if r:
data = {'status': OK, 'message': r}
Expand All @@ -283,11 +271,7 @@ def get_supported_os(request, api=False):
'message': 'Failed to obtain iOS versions'}
try:
model = request.POST['model']
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
if not apikey:
data['message'] = 'Missing Corellium API key'
return send_response(data, api)
cm = CorelliumModelsAPI(apikey)
cm = CorelliumModelsAPI()
r = cm.get_supported_os(model)
if r:
data = {'status': OK, 'message': r}
Expand Down Expand Up @@ -318,8 +302,7 @@ def create_vm_instance(request, api=False):
failed = common_check(project_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
c = CorelliumAPI(apikey, project_id)
c = CorelliumAPI(project_id)
r = c.create_ios_instance(flavor, version)
if r:
data = {
Expand Down Expand Up @@ -395,8 +378,7 @@ def setup_environment(request, checksum, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ca = CorelliumAgentAPI(apikey, instance_id)
ca = CorelliumAgentAPI(instance_id)
if not ca.agent_ready():
data['message'] = (
f'Agent is not ready with {instance_id}'
Expand All @@ -415,7 +397,7 @@ def setup_environment(request, checksum, api=False):
if msg != OK:
if 'Please re-sign.' in msg:
# Try AppSync IPA Install
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
out = appsync_ipa_install(ci.get_ssh_connection_string())
if out and out != OK:
data['message'] = out
Expand Down Expand Up @@ -447,11 +429,10 @@ def run_app(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
if not strict_package_check(bundle_id):
data['message'] = 'Invalid iOS Bundle id'
return send_response(data, api)
ca = CorelliumAgentAPI(apikey, instance_id)
ca = CorelliumAgentAPI(instance_id)
if (ca.agent_ready()
and ca.unlock_device()
and ca.run_app(bundle_id) == OK):
Expand All @@ -476,11 +457,10 @@ def remove_app(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
if not strict_package_check(bundle_id):
data['message'] = 'Invalid iOS Bundle id'
return send_response(data, api)
ca = CorelliumAgentAPI(apikey, instance_id)
ca = CorelliumAgentAPI(instance_id)
if (ca.agent_ready()
and ca.remove_app(bundle_id) == OK):
data['status'] = OK
Expand Down Expand Up @@ -510,8 +490,7 @@ def take_screenshot(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
r = ci.screenshot()
if r:
data['status'] = OK
Expand Down Expand Up @@ -566,8 +545,7 @@ def network_capture(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
state = request.POST.get('state')
if state == 'on':
msg = 'Enabled'
Expand Down Expand Up @@ -602,8 +580,7 @@ def live_pcap_download(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
pcap = ci.download_network_capture()
if pcap:
res = HttpResponse(
Expand Down Expand Up @@ -638,8 +615,7 @@ def ssh_execute(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
if not SSH_TARGET:
logger.info('Setting up SSH tunnel')
SSH_TARGET, _jmp = ssh_jump_host(
Expand Down Expand Up @@ -698,8 +674,7 @@ def download_data(request, bundle_id, api=False):
if not strict_package_check(bundle_id):
data['message'] = 'Invalid iOS Bundle id'
return send_response(data, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
checksum = get_md5(bundle_id.encode('utf-8'))
# App Container download
logger.info('Downloading app container data')
Expand Down Expand Up @@ -752,8 +727,7 @@ def touch(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
ci.device_input(event, x_axis, y_axis)
data = {'status': 'ok'}
except Exception as exp:
Expand All @@ -776,8 +750,7 @@ def system_logs(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
data = {'status': 'ok', 'message': ci.console_log()}
return send_response(data)
logger.info('Getting system logs')
Expand Down Expand Up @@ -815,10 +788,9 @@ def upload_file(request, api=False):
failed = common_check(instance_id)
if failed:
return send_response(failed, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
form = UploadFileForm(request.POST, request.FILES)
if form.is_valid():
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
fobject = request.FILES['file']
ssh_file_upload(
ci.get_ssh_connection_string(),
Expand Down
10 changes: 3 additions & 7 deletions mobsf/DynamicAnalyzer/views/ios/dynamic_analyzer.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -63,11 +63,8 @@ def dynamic_analysis(request, api=False):
# Corellium
instances = []
project_id = None
corellium_api_key = getattr(settings, 'CORELLIUM_API_KEY', '')
corellium_project_id = getattr(settings, 'CORELLIUM_PROJECT_ID', '')
if corellium_api_key:
ios_dynamic = True
c = CorelliumAPI(corellium_api_key, corellium_project_id)
ios_dynamic = bool(getattr(settings, 'CORELLIUM_API_KEY', ''))
c = CorelliumAPI(getattr(settings, 'CORELLIUM_PROJECT_ID', ''))
if c.api_ready() and c.api_auth() and c.get_projects():
instances = c.get_instances()
project_id = c.project_id
Expand Down Expand Up @@ -108,8 +105,7 @@ def dynamic_analyzer(request, api=False):
app_dir = Path(settings.UPLD_DIR) / bundle_hash
if not app_dir.exists():
app_dir.mkdir()
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)
configure_proxy(request, bundleid, ci)
context = {
'hash': bundle_hash,
Expand Down
4 changes: 2 additions & 2 deletions mobsf/DynamicAnalyzer/views/ios/frida_core.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,7 +31,7 @@ class Frida:

def __init__(
self,
ci,
ssh_string,
app_hash,
bundle_id,
defaults,
Expand All @@ -40,7 +40,7 @@ def __init__(
extras,
code,
action):
self.ssh_connection_string = ci.get_ssh_connection_string()
self.ssh_connection_string = ssh_string
self.app_container = None
self.hash = app_hash
self.bundle_id = bundle_id
Expand Down
5 changes: 2 additions & 3 deletions mobsf/DynamicAnalyzer/views/ios/tests_frida.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -106,8 +106,7 @@ def ios_instrument(request, api=False):
if new_bundle_id and not strict_package_check(new_bundle_id):
data['message'] = 'Invalid iOS Bundle id'
return send_response(data, api)
apikey = getattr(settings, 'CORELLIUM_API_KEY', '')
ci = CorelliumInstanceAPI(apikey, instance_id)
ci = CorelliumInstanceAPI(instance_id)

# Fill extras
extras = {}
Expand All @@ -130,7 +129,7 @@ def ios_instrument(request, api=False):
return invalid_params(api)

frida_obj = Frida(
ci,
ci.get_ssh_connection_string(),
md5_hash,
bundle_id,
default_hooks.split(','),
Expand Down

0 comments on commit 287b18a

Please sign in to comment.