CyberMind-FR
a6d2b75db8
Analytics addon enhancements: - SQL injection detection (25+ patterns) - XSS detection (30+ patterns) - Command injection detection (20+ patterns) - Path traversal detection (12+ patterns) - SSRF detection (10+ patterns) - XXE/LDAP injection detection - Log4Shell (CVE-2021-44228) detection - Known CVE patterns (Spring4Shell, MOVEit, etc.) - Rate limiting and bot detection - CrowdSec integration with severity levels LuCI interface rewrite (KISS): - Simplified status view with threat monitor - Security alerts table with severity badges - Service controls (start/stop/restart) - RPCD backend with alerts/threat_stats endpoints - Clean settings form Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
204 lines
6.9 KiB
JavaScript
204 lines
6.9 KiB
JavaScript
'use strict';
|
|
'require view';
|
|
'require poll';
|
|
'require rpc';
|
|
'require ui';
|
|
|
|
var callStatus = rpc.declare({
|
|
object: 'luci.mitmproxy',
|
|
method: 'status'
|
|
});
|
|
|
|
var callAlerts = rpc.declare({
|
|
object: 'luci.mitmproxy',
|
|
method: 'alerts'
|
|
});
|
|
|
|
var callStart = rpc.declare({
|
|
object: 'luci.mitmproxy',
|
|
method: 'start'
|
|
});
|
|
|
|
var callStop = rpc.declare({
|
|
object: 'luci.mitmproxy',
|
|
method: 'stop'
|
|
});
|
|
|
|
var callRestart = rpc.declare({
|
|
object: 'luci.mitmproxy',
|
|
method: 'restart'
|
|
});
|
|
|
|
var callClearAlerts = rpc.declare({
|
|
object: 'luci.mitmproxy',
|
|
method: 'clear_alerts'
|
|
});
|
|
|
|
function severityColor(sev) {
|
|
return { critical: '#e74c3c', high: '#e67e22', medium: '#f39c12', low: '#3498db' }[sev] || '#666';
|
|
}
|
|
|
|
function severityIcon(sev) {
|
|
return { critical: '🔴', high: '🟠', medium: '🟡', low: '🔵' }[sev] || '⚪';
|
|
}
|
|
|
|
return view.extend({
|
|
load: function() {
|
|
return Promise.all([
|
|
callStatus().catch(function() { return {}; }),
|
|
callAlerts().catch(function() { return { alerts: [] }; })
|
|
]);
|
|
},
|
|
|
|
render: function(data) {
|
|
var status = data[0] || {};
|
|
var alertsData = data[1] || {};
|
|
var alerts = alertsData.alerts || [];
|
|
var self = this;
|
|
|
|
var view = E('div', { 'class': 'cbi-map' }, [
|
|
E('h2', {}, _('mitmproxy - HTTPS Intercepting Proxy')),
|
|
|
|
// Service Status Card
|
|
E('div', { 'class': 'cbi-section' }, [
|
|
E('h3', {}, _('Service Status')),
|
|
E('div', { 'class': 'cbi-section-node' }, [
|
|
E('table', { 'class': 'table' }, [
|
|
E('tr', { 'class': 'tr' }, [
|
|
E('td', { 'class': 'td', 'width': '33%' }, E('strong', {}, _('Status'))),
|
|
E('td', { 'class': 'td' }, [
|
|
E('span', {
|
|
'style': 'display: inline-block; width: 12px; height: 12px; border-radius: 50%; margin-right: 8px; background: ' + (status.running ? '#27ae60' : '#e74c3c')
|
|
}),
|
|
status.running ? _('Running') : _('Stopped')
|
|
])
|
|
]),
|
|
E('tr', { 'class': 'tr' }, [
|
|
E('td', { 'class': 'td' }, E('strong', {}, _('Mode'))),
|
|
E('td', { 'class': 'td' }, status.mode || 'regular')
|
|
]),
|
|
E('tr', { 'class': 'tr' }, [
|
|
E('td', { 'class': 'td' }, E('strong', {}, _('Proxy Port'))),
|
|
E('td', { 'class': 'td' }, status.proxy_port || 8888)
|
|
]),
|
|
E('tr', { 'class': 'tr' }, [
|
|
E('td', { 'class': 'td' }, E('strong', {}, _('Web UI'))),
|
|
E('td', { 'class': 'td' }, status.running ?
|
|
E('a', { 'href': 'http://' + window.location.hostname + ':' + (status.web_port || 8082), 'target': '_blank' },
|
|
'http://' + window.location.hostname + ':' + (status.web_port || 8082)) :
|
|
_('Not available'))
|
|
])
|
|
])
|
|
]),
|
|
E('div', { 'style': 'margin-top: 16px;' }, [
|
|
E('button', {
|
|
'class': 'btn cbi-button cbi-button-apply',
|
|
'click': function() {
|
|
ui.showModal(_('Starting...'), [E('p', { 'class': 'spinning' }, _('Please wait...'))]);
|
|
callStart().then(function() { ui.hideModal(); location.reload(); });
|
|
},
|
|
'disabled': status.running
|
|
}, _('Start')),
|
|
' ',
|
|
E('button', {
|
|
'class': 'btn cbi-button cbi-button-reset',
|
|
'click': function() {
|
|
ui.showModal(_('Stopping...'), [E('p', { 'class': 'spinning' }, _('Please wait...'))]);
|
|
callStop().then(function() { ui.hideModal(); location.reload(); });
|
|
},
|
|
'disabled': !status.running
|
|
}, _('Stop')),
|
|
' ',
|
|
E('button', {
|
|
'class': 'btn cbi-button cbi-button-action',
|
|
'click': function() {
|
|
ui.showModal(_('Restarting...'), [E('p', { 'class': 'spinning' }, _('Please wait...'))]);
|
|
callRestart().then(function() { ui.hideModal(); location.reload(); });
|
|
}
|
|
}, _('Restart'))
|
|
])
|
|
]),
|
|
|
|
// Security Threats Card
|
|
E('div', { 'class': 'cbi-section' }, [
|
|
E('h3', {}, [
|
|
_('Security Threats'),
|
|
' ',
|
|
E('span', { 'style': 'font-size: 14px; font-weight: normal; color: #666;' },
|
|
'(' + alerts.length + ' detected)')
|
|
]),
|
|
alerts.length > 0 ?
|
|
E('div', {}, [
|
|
E('div', { 'style': 'margin-bottom: 12px;' }, [
|
|
E('button', {
|
|
'class': 'btn cbi-button',
|
|
'click': function() {
|
|
if (confirm(_('Clear all alerts?'))) {
|
|
callClearAlerts().then(function() { location.reload(); });
|
|
}
|
|
}
|
|
}, _('Clear Alerts'))
|
|
]),
|
|
E('table', { 'class': 'table', 'style': 'font-size: 13px;' }, [
|
|
E('tr', { 'class': 'tr cbi-section-table-titles' }, [
|
|
E('th', { 'class': 'th' }, _('Severity')),
|
|
E('th', { 'class': 'th' }, _('Type')),
|
|
E('th', { 'class': 'th' }, _('Path')),
|
|
E('th', { 'class': 'th' }, _('Source')),
|
|
E('th', { 'class': 'th' }, _('Time'))
|
|
])
|
|
].concat(alerts.slice(-20).reverse().map(function(alert) {
|
|
return E('tr', { 'class': 'tr' }, [
|
|
E('td', { 'class': 'td' }, [
|
|
E('span', {
|
|
'style': 'background: ' + severityColor(alert.severity) + '; color: white; padding: 2px 8px; border-radius: 4px; font-size: 11px; text-transform: uppercase;'
|
|
}, severityIcon(alert.severity) + ' ' + (alert.severity || 'unknown'))
|
|
]),
|
|
E('td', { 'class': 'td' }, (alert.pattern || alert.type || '-').replace(/_/g, ' ')),
|
|
E('td', { 'class': 'td', 'style': 'max-width: 300px; overflow: hidden; text-overflow: ellipsis; white-space: nowrap;' },
|
|
(alert.method || 'GET') + ' ' + (alert.path || '-')),
|
|
E('td', { 'class': 'td' }, [
|
|
alert.ip || '-',
|
|
alert.country ? E('span', { 'style': 'margin-left: 4px; color: #666;' }, '(' + alert.country + ')') : null
|
|
]),
|
|
E('td', { 'class': 'td', 'style': 'white-space: nowrap; color: #666;' },
|
|
alert.time ? alert.time.split('T')[1].split('.')[0] : '-')
|
|
]);
|
|
})))
|
|
]) :
|
|
E('div', { 'class': 'cbi-section-node', 'style': 'text-align: center; padding: 40px; color: #666;' }, [
|
|
E('div', { 'style': 'font-size: 48px; margin-bottom: 16px;' }, '✅'),
|
|
E('p', {}, _('No threats detected')),
|
|
E('p', { 'style': 'font-size: 12px;' }, _('The analytics addon monitors for SQL injection, XSS, command injection, and other attacks.'))
|
|
])
|
|
]),
|
|
|
|
// Info Card
|
|
E('div', { 'class': 'cbi-section' }, [
|
|
E('h3', {}, _('Information')),
|
|
E('div', { 'class': 'cbi-section-node' }, [
|
|
E('p', {}, _('mitmproxy is an interactive HTTPS proxy for traffic inspection and modification.')),
|
|
E('ul', {}, [
|
|
E('li', {}, _('Intercept and inspect HTTP/HTTPS traffic')),
|
|
E('li', {}, _('Detect SQL injection, XSS, and other attacks')),
|
|
E('li', {}, _('Log threats to CrowdSec for automatic blocking')),
|
|
E('li', {}, _('Access the Web UI for detailed traffic analysis'))
|
|
]),
|
|
E('p', { 'style': 'margin-top: 12px;' }, [
|
|
E('strong', {}, _('CA Certificate: ')),
|
|
_('To inspect HTTPS traffic, install the CA certificate from '),
|
|
E('a', { 'href': 'http://mitm.it', 'target': '_blank' }, 'http://mitm.it'),
|
|
_(' on client devices.')
|
|
])
|
|
])
|
|
])
|
|
]);
|
|
|
|
return view;
|
|
},
|
|
|
|
handleSaveApply: null,
|
|
handleSave: null,
|
|
handleReset: null
|
|
});
|