crt0mega/mvt
1
0
Fork 0
mirror of https://github.com/mvt-project/mvt.git synced 2024-06-18 10:29:01 +00:00
Code Issues Projects Releases Wiki Activity

Added lookups for non-system packages on check-adb too

Browse Source
This commit is contained in:
Nex 2022-01-28 12:25:50 +01:00
parent 28e1348aa7
commit 59b069f006
1 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
mvt/android/modules/adb/packages.py
View File

@ -9,6 +9,8 @@ import os
import pkg_resources import pkg_resources
from .base import AndroidExtraction from .base import AndroidExtraction
from mvt.android.lookups.koodous import koodous_lookup
from mvt.android.lookups.virustotal import virustotal_lookup
log = logging.getLogger(__name__) log = logging.getLogger(__name__)
@ -157,13 +159,19 @@ class Packages(AndroidExtraction):
if result["package_name"] == package_name: if result["package_name"] == package_name:
self.results[i][cmd["field"]] = True self.results[i][cmd["field"]] = True
packages_to_lookup = []
for result in self.results: for result in self.results:
if result["system"]: if result["system"]:
continue continue
packages_to_lookup.append(result)
self.log.info("Found non-system package with name \"%s\" installed by \"%s\" on %s", self.log.info("Found non-system package with name \"%s\" installed by \"%s\" on %s",
result["package_name"], result["installer"], result["timestamp"]) result["package_name"], result["installer"], result["timestamp"])
if not self.fast_mode:
virustotal_lookup(packages_to_lookup)
koodous_lookup(packages_to_lookup)
self.log.info("Extracted at total of %d installed package names", self.log.info("Extracted at total of %d installed package names",
len(self.results)) len(self.results))