Home Explore Help
Sign In
Botnet_Research
/
hostage
5
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: b75cceb1b0
Branches Tags
hostage
/
src
/
de
/
tudarmstadt
/
informatik
/
hostage
/
protocol
/
HTTP.java

HTTP.java 6.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193 
  1. package de.tudarmstadt.informatik.hostage.protocol;
    2. 

  2. 

  3. import java.security.SecureRandom;
    4. 

  4. import java.text.SimpleDateFormat;
    5. 

  5. import java.util.ArrayList;
    6. 

  6. import java.util.Calendar;
    7. 

  7. import java.util.List;
    8. 

  8. import java.util.Locale;
    9. 

  9. import java.util.TimeZone;
    10. 

  10. 

  11. import de.tudarmstadt.informatik.hostage.commons.HelperUtils;
    12. 

  12. import de.tudarmstadt.informatik.hostage.wrapper.Packet;
    13. 

  13. 

  14. 

  15. /**
    16. 

  16.  * HTTP protocol.
    17. 

  17.  * Implementation of RFC document 1945.
    18. 

  18.  * It can handle the following requests: GET, HEAD, TRACE, POST, DELETE.
    19. 

  19.  * For all other requests '400 Bad Request' will be replied.
    20. 

  20.  * @author Wulf Pfeiffer
    21. 

  21.  */
    22. 

  22. public class HTTP implements Protocol {
    23. 

  23. 	
    24. 

  24. 	@Override
    25. 

  25. 	public int getDefaultPort() {
    26. 

  26. 		return 80;
    27. 

  27. 	}
    28. 

  28. 

  29. 	@Override
    30. 

  30. 	public TALK_FIRST whoTalksFirst() {
    31. 

  31. 		return TALK_FIRST.CLIENT;
    32. 

  32. 	}
    33. 

  33. 	
    34. 

  34. 	@Override
    35. 

  35. 	public List<Packet> processMessage(Packet requestPacket) {
    36. 

  36. 		String request = null;
    37. 

  37. 		if (requestPacket != null) {
    38. 

  38. 			request = requestPacket.toString();
    39. 

  39. 		}
    40. 

  40. 		List<Packet> responsePackets = new ArrayList<Packet>();
    41. 

  41. 		this.request = request;
    42. 

  42. 

  43. 		if(!request.contains(httpVersion)){
    44. 

  44. 			responsePackets.add(buildPacket(STATUS_CODE_505, ""));
    45. 

  45. 		} else if(request.contains(GET)) {
    46. 

  46. 			responsePackets.add(buildPacket(STATUS_CODE_200, GET));
    47. 

  47. 		} else if(request.contains(HEAD)) {
    48. 

  48. 			responsePackets.add(buildPacket(STATUS_CODE_200, HEAD));
    49. 

  49. 		} else if(request.contains(TRACE)){
    50. 

  50. 			responsePackets.add(buildPacket(STATUS_CODE_200, TRACE));
    51. 

  51. 		} else if(request.contains(OPTIONS)){
    52. 

  52. 			responsePackets.add(buildPacket(STATUS_CODE_400, OPTIONS));
    53. 

  53. 		} else if(request.contains(POST)){
    54. 

  54. 			responsePackets.add(buildPacket(STATUS_CODE_200, POST));
    55. 

  55. 		} else if(request.contains(PUT)){
    56. 

  56. 			responsePackets.add(buildPacket(STATUS_CODE_400, PUT));
    57. 

  57. 		} else if(request.contains(DELETE)){
    58. 

  58. 			responsePackets.add(buildPacket(STATUS_CODE_200, DELETE));
    59. 

  59. 		} else if(request.contains(CONNECT)){
    60. 

  60. 			responsePackets.add(buildPacket(STATUS_CODE_400, CONNECT));
    61. 

  61. 		} else {
    62. 

  62. 			responsePackets.add(buildPacket(STATUS_CODE_400, ""));
    63. 

  63. 		}
    64. 

  64. 		return responsePackets;
    65. 

  65. 	}
    66. 

  66. 

  67. 	@Override
    68. 

  68. 	public boolean isClosed() {
    69. 

  69. 		return true;
    70. 

  70. 	}
    71. 

  71. 

  72. 	@Override
    73. 

  73. 	public boolean isSecure() {
    74. 

  74. 		return false;
    75. 

  75. 	}
    76. 

  76. 

  77. 	@Override
    78. 

  78. 	public Class<String> getType() {
    79. 

  79. 		return String.class;
    80. 

  80. 	}
    81. 

  81. 

  82. 	@Override
    83. 

  83. 	public String toString() {
    84. 

  84. 		return "HTTP";
    85. 

  85. 	}
    86. 

  86. 

  87. 	/**
    88. 

  88. 	 * Builds a html response that can be sent
    89. 

  89. 	 * @param code response code that was determined
    90. 

  90. 	 * @param type request type that was sent by the client
    91. 

  91. 	 * @return the html response
    92. 

  92. 	 */
    93. 

  93. 	private Packet buildPacket(String code, String type) {
    94. 

  94. 		String document = "";
    95. 

  95. 		if (type.equals(GET)) {
    96. 

  96. 			document = htmlDocument;
    97. 

  97. 		} else if (type.equals(HEAD) || type.equals(DELETE)) {
    98. 

  98. 			document = "";
    99. 

  99. 		} else if (type.equals(TRACE)) {
    100. 

  100. 			document = request;
    101. 

  101. 		} else {
    102. 

  102. 			document = errorHtmlPrefix + " " + code + errorHtmlSuffix;
    103. 

  103. 		}
    104. 

  104. 

  105. 		return new Packet(httpVersion + " " + code + headerPrefix + document.length() + headerSuffix + document);
    106. 

  106. 	}
    107. 

  107. 	
    108. 

  108. 	/**
    109. 

  109. 	 * Get the current time in html header format.
    110. 

  110. 	 * @return the formatted server time.
    111. 

  111. 	 */
    112. 

  112. 	private static String getServerTime() {
    113. 

  113. 	    Calendar calendar = Calendar.getInstance();
    114. 

  114. 	    SimpleDateFormat dateFormat = new SimpleDateFormat(
    115. 

  115. 	        "EEE, dd MMM yyyy HH:mm:ss z", Locale.US);
    116. 

  116. 	    dateFormat.setTimeZone(TimeZone.getTimeZone("GMT"));
    117. 

  117. 	    return dateFormat.format(calendar.getTime());
    118. 

  118. 	}
    119. 

  119. 

  120. 	/** Whole request that was sent by the client */
    121. 

  121. 	private String request	= "";
    122. 

  122. 	//version stuff
    123. 

  123. 	private static String[][][] possibleHttpVersions = {
    124. 

  124. 		{{"Apache/2.0."},{"28","32","35","36","39","40","42","43","44","45","46","47","48","49","50","51","52","53","54","55","58","59","61","63","64","65"}},
    125. 

  125. 		{{"Apache/2.2."},{"0","2","3","4","6","8","9","10","11","12","13","14","15","16","17","18","19","20","21","22","23","24","25"}},
    126. 

  126. 		{{"Apache/2.3."},{"4","5","6","8","10","11","12","14","15","16"}},
    127. 

  127. 		{{"Apache/2.4."},{"1","2","3","4","6"}}
    128. 

  128. 	};
    129. 

  129. 	private static String initServerVersion() {
    130. 

  130. 		SecureRandom rndm = new SecureRandom();
    131. 

  131. 		int majorVersion = rndm.nextInt(possibleHttpVersions.length);
    132. 

  132. 		return possibleHttpVersions[majorVersion][0][0] + possibleHttpVersions[majorVersion][1][rndm.nextInt(possibleHttpVersions[majorVersion][1].length)];
    133. 

  133. 	}
    134. 

  134. 	private String httpVersion	= "HTTP/1.1";
    135. 

  135. 	private static String serverVersion = initServerVersion();
    136. 

  136. 	private static String htmlDocumentContent = HelperUtils.getRandomString(32, false);
    137. 

  137. 	//request codes
    138. 

  138. 	private static final String OPTIONS	= "OPTIONS";
    139. 

  139. 	private static final String GET 	= "GET";
    140. 

  140. 	private static final String HEAD 	= "HEAD";
    141. 

  141. 	private static final String POST	= "POST";
    142. 

  142. 	private static final String PUT		= "PUT";
    143. 

  143. 	private static final String DELETE	= "DELETE";
    144. 

  144. 	private static final String TRACE	= "TRACE";
    145. 

  145. 	private static final String CONNECT	= "CONNECT";
    146. 

  146. 	
    147. 

  147. 	private static final String STATUS_CODE_200	= "200 OK\r\n";
    148. 

  148. 	private static final String STATUS_CODE_400	= "400 Bad Request\r\n";
    149. 

  149. 	private static final String STATUS_CODE_505	= "505 HTTP Version not supported\r\n";
    150. 

  150. 	
    151. 

  151. 	//html header pre and suffix
    152. 

  152. 	private String headerPrefix =				
    153. 

  153. 			"Date: " + getServerTime() + "\r\n" +
    154. 

  154. 			"Server: " + serverVersion + " \r\n" +
    155. 

  155. 			"Vary: Accept-Encoding\r\n" +
    156. 

  156. 			"Content-Length: ";
    157. 

  157. 	private String headerSuffix =
    158. 

  158. 			"\r\n" +	
    159. 

  159. 			"Keep-Alive: timeout=5, max=100\r\n" +
    160. 

  160. 			"Connection: Keep-Alive\r\n" +
    161. 

  161. 			"Content-Type: text/html\r\n" +
    162. 

  162. 			"\r\n";
    163. 

  163. 	//html website
    164. 

  164. 	private String htmlDocument = 
    165. 

  165. 			"<!doctype html>\n" +
    166. 

  166. 			"<html lang=\"en\">\n" +
    167. 

  167. 			"<head>\n" +
    168. 

  168. 			"<meta charset=\"UTF-8\">\n" +
    169. 

  169. 			"<title>" + htmlDocumentContent + "</title>\n" +
    170. 

  170. 			"<body>" + htmlDocumentContent + "</body>\n" +
    171. 

  171. 			"</head>\n" +
    172. 

  172. 			"</html>";
    173. 

  173. 	//html error pre and suffix
    174. 

  174. 	private String errorHtmlPrefix =
    175. 

  175. 			"<!doctype html>\n" +
    176. 

  176. 			"<html lang=\"en\">\n" +
    177. 

  177. 			"<head>\n" +
    178. 

  178. 			"<meta charset=\"UTF-8\">\n" +
    179. 

  179. 			"<title>";
    180. 

  180. 	private String errorHtmlSuffix =
    181. 

  181. 			"</title>\n" +
    182. 

  182. 			"</head>\n" +
    183. 

  183. 			"</html>";
    184. 

  184. 

  185. 	/**
    186. 

  186. 	 * Sets the html document content for HTTP and HTTPS.
    187. 

  187. 	 * 
    188. 

  188. 	 * @param htmlDocumentContent
    189. 

  189. 	 */
    190. 

  190. 	public static void setHtmlDocumentContent(String htmlDocumentContent) {
    191. 

  191. 		HTTP.htmlDocumentContent = htmlDocumentContent;
    192. 

  192. 	}
    193. 

  193. }
    194.