lib/Net/SinFP3/Output/ExportP.pm

#
# $Id: ExportP.pm 13 2012-08-31 08:40:28Z gomor $
#
package Net::SinFP3::Output::ExportP;
use strict;
use warnings;

use base qw(Net::SinFP3::Output);
__PACKAGE__->cgBuildIndices;

sub new {
   my $self = shift->SUPER::new(
      @_,
   );

   return $self;
}

sub run {
   my $self = shift->SUPER::run(@_) or return;

   my $global = $self->global;
   my $log    = $global->log;
   my $db     = $global->db;

   if (ref($db) !~ /Net::SinFP3::DB::SinFP3/) {
      $log->fatal("Give a Net::SinFP3::DB::SinFP3 object (you gave [".
                  ref($db)."]");
   }

   my $idList = $db->searchSignaturePIds;
   for my $id (sort { $a <=> $b } map { $_->{idSignatureP} } @$idList) {
      my $s = $db->retrieveSignatureP($id);
      $s    = $db->lookupPatternsP($s);
      _printSignatureP($db, $s);
   }
}

sub _printSignatureP {
   my ($db, $s) = @_;

   print
      $s->{ipVersion}. ': '.
      $s->{systemClass}. ': '.
      $s->{vendor}. ': '.
      $s->{os}. ': '.
      $s->{osVersion}. ': ['.
      $s->{osVersionFamily}. ']';

   my $osVersionChildren = $db->getOsVersionChildrenPList($s->{idSignatureP});
   my $buf = '';
   for my $osVersion (@$osVersionChildren) {
      $buf .= $osVersion.', ';
   }
   $buf =~ s/, $//;
   print " ($buf)" if $buf;
   print "\n";

   print
      'ID: '. $s->{idSignatureP}. "\n".
      'Trusted: '.$s->{trusted}."\n";

   for my $h ('Heuristic0', 'Heuristic1', 'Heuristic2') {
      my $mTcpFlagsHeuristic   = 'patternTcpFlags'.$h;
      my $mTcpWindowHeuristic  = 'patternTcpWindow'.$h;
      my $mTcpOptionsHeuristic = 'patternTcpOptions'.$h;
      my $mTcpMssHeuristic     = 'patternTcpMss'.$h;
      my $mTcpWScaleHeuristic  = 'patternTcpWScale'.$h;
      my $mTcpOLengthHeuristic = 'patternTcpOLength'.$h;

      my $idTcpFlags   = 'idPatternTcpFlags';
      my $idTcpWindow  = 'idPatternTcpWindow';
      my $idTcpOptions = 'idPatternTcpOptions';
      my $idTcpMss     = 'idPatternTcpMss';
      my $idTcpWScale  = 'idPatternTcpWScale';
      my $idTcpOLength = 'idPatternTcpOLength';

      (my $hn = $h) =~ s/euristic//;

      print
         "SP$hn: ".
         $s->{$mTcpFlagsHeuristic}.' '.
         $s->{$mTcpWindowHeuristic}.' '.
         $s->{$mTcpOptionsHeuristic}.' '.
         $s->{$mTcpMssHeuristic}.' '.
         $s->{$mTcpWScaleHeuristic}.' '.
         $s->{$mTcpOLengthHeuristic}.
         "\n";
   }

   print "\n";

   return 1;
}

1;

__END__

=head1 NAME

Net::SinFP3::Output::ExportP - export passive signature

=head1 DESCRIPTION

Go to http://www.networecon.com/tools/sinfp/ to know more.

=head1 AUTHOR

Patrice E<lt>GomoRE<gt> Auffret

=head1 COPYRIGHT AND LICENSE

Copyright (c) 2011-2012, Patrice E<lt>GomoRE<gt> Auffret

You may distribute this module under the terms of the Artistic license.
See LICENSE.Artistic file in the source distribution archive.

=cut

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)