Fork: 0
0xRoM / GoStats
Transfer to URL with SHA Find file
Newer
Older
GoStats / GoStats.php
root on 7 May 2019 14 KB Initial commit
Raw Blame History 
  1. #!/usr/bin/php
  2. <?php
  3. error_reporting(0);
  4.  
  5. /***
  6.  * Configuration Settings - CHANGE THESE
  7.  */
  8. $url = ""; // URL of GoPhish listner e.g. http://www.site.com:8080/
  9. $key = ""; // GoPhish API key
  10. $pwd = "/opt/Pwdlyser/"; // /directory/containing/pwdlyser
  11. $geoip = true; // use freegeoip.net on IP addresses? set to false to disable this.
  12.  
  13. /***
  14.  * Main program - Don't edit below
  15.  */
  16. echo "╔═╗┌─┐╔═╗┌┬┐┌─┐┌┬┐┌─┐\n║ ╦│ │╚═╗ │ ├─┤ │ └─┐ v1.0\n╚═╝└─┘╚═╝ ┴ ┴ ┴ ┴ └─┘\n";
  17.  
  18. foreach (glob("Classes/*.php") as $filename)
  19.     include $filename;
  20.  
  21. $definitions = new \Clapp\CommandLineArgumentDefinition(
  22.     array(
  23.         "help|h"            => "Shows help message",
  24.         "list|l"            => "List campaigns and their ID's",
  25.         "campaign|c=i"      => "Get campaign by id",
  26.         "dump|d=s"          => "Dump user:pass list to </path/to/file.txt>",
  27.         "training|t=s"      => "Dump list of users requiring training </path/to/file.txt>",
  28.         "all|a"             => "All of the below options",
  29.         "ips|i"             => "Top 10 IP's",
  30.         "useragent|u"       => "Top 10 user agents",
  31.         "attempts|m"        => "Top 10 attempts to log in",
  32.         "active|o"          => "Active times",
  33.         "speed|e"           => "Clickthrough speed",
  34.         "stats|s"           => "Victim statistics",
  35.         "pass|p"            => "Password analysis with pwdlyser",
  36.     )
  37. );
  38.  
  39. $filter = new \Clapp\CommandArgumentFilter($definitions, $argv);
  40.  
  41. if ($filter->getParam('h') === true || $argc < 2) {
  42.     fwrite(STDERR, $definitions->getUsage());
  43.     exit(0);
  44. } 
  45.  
  46. /* Get list of campaigns */
  47. if ($filter->getParam("list") !== false) {
  48. 	echo "[+] Getting data from server\n";
  49. 	$curl = new curl();
  50.     $curl->url = "$url/api/campaigns/?api_key=$key";
  51.     $list = $curl->curlQuery();
  52.  
  53.     if(isset($list->message) && $list->message == "Invalid API Key"){
  54.     	echo "[!] Invalid API key\n";
  55.     	exit(0);
  56.     }else{
  57.     	echo "[id] -campaign name-\n";
  58.     	foreach($list as $id)
  59.     		echo "[".$id['id']."] ".$id['name']."\n";
  60.     }
  61.     exit(0);
  62. } 
  63.  
  64. /* Get campaign data */
  65. $campid = $filter->getParam('c');
  66. if ($campid == null || !is_numeric($campid)) {
  67.     echo "[!] Campaign ID not set\nn";
  68.     exit(0);
  69. }else{
  70. 	echo "[+] Getting data from server\n";
  71. 	$curl = new curl();
  72.     $curl->url = "$url/api/campaigns/$campid?api_key=$key";
  73.     $list = $curl->curlQuery();
  74.     if(isset($list->message) && $list->message == "Invalid API Key"){
  75.     	echo "[!] Invalid API key\n";
  76.     	exit(0);
  77.     }else{
  78.     	/* all data got correctly time to do stuff! */
  79.     	echo "[$campid] ".$list['name']."\n";
  80.     	echo "\n--- Notable times ---\n";
  81.  
  82.         if(isset($list['launch_date']) && $list['launch_date'] <> ""){
  83.             $time = date('d-m-Y H:i', $datetime = strtotime(substr($list['launch_date'], 0, 10) . ' ' . substr($list['launch_date'], 11, 8 )));
  84.             echo "Campaign launched: $time\n";
  85.         }
  86.  
  87.     	foreach($list['timeline'] as $record){
  88.     		if($record['message'] == "Email Sent"){
  89.     			$time = date('d-m-Y H:i', $datetime = strtotime(substr($record['time'], 0, 10) . ' ' . substr($record['time'], 11, 8 )));
  90.     			echo "First email sent: $time\n";
  91.     			break;
  92.     		}
  93.     	}
  94.         foreach($list['timeline'] as $record){
  95.             if($record['message'] == "Email Sent"){
  96.                 $time = date('d-m-Y H:i', $datetime = strtotime(substr($record['time'], 0, 10) . ' ' . substr($record['time'], 11, 8 ))); 
  97.             }
  98.         }
  99.         echo "Last email sent:: $time\n";
  100.     	foreach($list['timeline'] as $record){
  101.     		if($record['message'] == "Clicked Link"){
  102.     			$time = date('d-m-Y H:i', $datetime = strtotime(substr($record['time'], 0, 10) . ' ' . substr($record['time'], 11, 8 )));
  103.     			echo "First email opened: $time\n";
  104.     			break;
  105.     		}
  106.     	}
  107.     	foreach($list['timeline'] as $record){
  108.     		if($record['message'] == "Clicked Link"){
  109.     			$time = date('d-m-Y H:i', $datetime = strtotime(substr($record['time'], 0, 10) . ' ' . substr($record['time'], 11, 8 )));
  110.     			echo "First page view: $time\n";
  111.     			break;
  112.     		}
  113.     	}
  114.     	foreach($list['timeline'] as $record){
  115.     		if($record['message'] == "Submitted Data"){
  116.     			$time = date('d-m-Y H:i', $datetime = strtotime(substr($record['time'], 0, 10) . ' ' . substr($record['time'], 11, 8 )));
  117.     			echo "First credentials submitted: $time\n";
  118.     			break;
  119.     		}
  120.     	}
  121.         if(isset($list['completed_date']) && $list['completed_date'] <> ""){
  122.             $time = date('d-m-Y H:i', $datetime = strtotime(substr($list['completed_date'], 0, 10) . ' ' . substr($list['completed_date'], 11, 8 )));
  123.             echo "Campaign finished: $time\n";
  124.         }
  125.     }
  126. } 
  127.  
  128. /* Top 10 IP's */
  129. if ($filter->getParam("ips") !== false || $filter->getParam("all") !== false) {
  130.     $ips = array();
  131.     foreach($list['timeline'] as $item){
  132.     	if($item['details'] <> ""){
  133.     		$details = json_decode($item['details'], true);
  134.     		if($details['browser']['address'] !== "unknown")
  135.     			$ips[] = (string)$details['browser']['address'];
  136.     	}
  137.     }
  138.     $ips = array_count_values($ips);
  139.     arsort($ips);
  140.     $ips = array_slice($ips,0,10,true);
  141.     echo "\n--- Top 10 IP's ---\n";
  142.     foreach($ips as $ip=>$no){
  143.         $geoip_details = "";
  144.         if($geoip == true){
  145.             $geojson = file_get_contents("http://freegeoip.net/json/$ip");
  146.             $geodetails = json_decode($geojson, true);
  147.             $geoip_details = "- ".$geodetails['country_name'].", ".$geodetails['city'];
  148.         }
  149.     	echo "[$no] $ip $geoip_details\n";
  150.     }
  151. }
  152.  
  153. /* Top 10 user agent's */
  154. if ($filter->getParam("useragent") !== false || $filter->getParam("all") !== false) {
  155.     $agents = array();
  156.     foreach($list['timeline'] as $item){
  157.     	if($item['details'] <> "" && $item['message'] == "Clicked Link"){ // only people who visited site, not email user agent
  158.     		$details = json_decode($item['details'], true);
  159.     		if($details['browser']['user-agent'] !== "unknown" && $details['browser']['user-agent'] !== "")
  160.     			$agents[] = (string)$details['browser']['user-agent'];
  161.     	}
  162.     }
  163.     $agents = array_count_values($agents);
  164.     arsort($agents);
  165.     $agents = array_slice($agents,0,10,true);
  166.     echo "\n--- Top 10 User Agents ---\n";
  167.     foreach($agents as $ua=>$no){
  168.     	echo "[$no] $ua\n";
  169.     }
  170. } 
  171.  
  172. /* Top 10 attempts to log in */
  173. if($filter->getParam("attempts") !== false || $filter->getParam("all") !== false) {
  174. 	$userids  = array();
  175. 	foreach($list['results'] as $item){
  176. 		$userids[$item['id']] = $item['email']; 
  177.     }
  178.     
  179. 	$attemptrids = array();
  180. 	foreach($list['timeline'] as $item){
  181. 		if($item['details'] <> ""){
  182.     		$details = json_decode($item['details'], true);
  183.     		if(isset($details['payload']['password'][0]) && $details['payload']['password'][0] <> ""){
  184.     			$attemptrids[$details['payload']['rid'][0]] += 1;
  185.     		}
  186.     	}
  187.     }
  188.     arsort($attemptrids); 
  189.     $attemptrids = array_slice($attemptrids,0,10,true);
  190.     echo "\n--- Top 10 Login Attempts ---\n";
  191.     foreach($attemptrids as $id=>$amount){
  192. 	    $newemail= preg_replace('/(?:^|.@).\K|.\.[^@]*$(*SKIP)(*F)|.(?=.*?\.)/', '*', $userids[$id]);
  193. 	    echo "[$amount] $newemail\n";
  194. 	}
  195. }
  196.  
  197. /* Active times */
  198. if($filter->getParam("active") !== false || $filter->getParam("all") !== false) {
  199.     $active_count = array();
  200.     $active_percent = array();
  201.     $total = 0;
  202.     echo "\n--- Active times (hour, actions & percent) ---\n";
  203.     foreach($list['timeline'] as $item){
  204.         if($item['message'] != "Campaign Created" && $item['message'] != "Email Sent" ){
  205.             $hour = (int)substr($item['time'], 11, 2);
  206.             $active_count[$hour]++;
  207.             $total++;
  208.         }
  209.  
  210.     }
  211.     foreach($active_count as $id => $count) // populate percentages
  212.         $active_percent[$id] = ($count / $total) * 100;
  213.  
  214.     for($i = 0; $i <= 12; $i++){
  215.         $iDsp = str_pad($i, 2, " ", STR_PAD_LEFT);
  216.         $j = $i+12;
  217.         $user1 = str_pad($active_count[$i], 4, " ", STR_PAD_LEFT);
  218.         $user2 = str_pad($active_count[$j], 4, " ", STR_PAD_LEFT);
  219.         $percent1 = number_format($active_percent[$i], 2, '.', '');
  220.         $percent1 = str_pad($percent1, 5, " ", STR_PAD_LEFT);
  221.         $percent2 = number_format($active_percent[$j], 2, '.', '');
  222.         $percent2 = str_pad($percent2, 5, " ", STR_PAD_LEFT);
  223.         
  224.         echo "$iDsp - $user1 = $percent1%  |  $j - $user2 = $percent2% \n";
  225.     }
  226. }
  227.  
  228. /* Clickthrough speed */
  229. if ($filter->getParam("speed") !== false || $filter->getParam("all") !== false) {
  230.     $speed_opened = array();
  231.     $speed_visited = array();
  232.     $speed_offset = array();
  233.     echo "\n--- Clickthrough Speed ---\n";
  234.     foreach($list['timeline'] as $item){
  235.         if($item['message'] == "Email Opened"){
  236.             $details = json_decode($item['details'], true);
  237.             $check_rid = $details['payload']['rid'][0];
  238.  
  239.             $current_time = strtotime(substr($item['time'], 0, 10) . ' ' . substr($item['time'], 11, 8 ));
  240.             $existing_time = strtotime(substr($speed_opened[$check_rid], 0, 10) . ' ' . substr($speed_opened[$check_rid], 11, 8 ));
  241.  
  242.             if(!isset($speed_opened[$check_rid]) || $existing_time > $current_time)
  243.                 $speed_opened[$check_rid] = $item['time'];       
  244.         }
  245.         if($item['message'] == "Clicked Link"){
  246.             $details = json_decode($item['details'], true);
  247.             $check_rid = $details['payload']['rid'][0];
  248.             if(!isset($speed_visited[$check_rid]))
  249.                 $speed_visited[$check_rid] = $item['time'];
  250.         }
  251.     }
  252.     foreach($speed_opened as $id=>$val){ // remove all the ones that didn't visit site
  253.         if(!isset($speed_visited[$id]))
  254.             unset($speed_opened[$id]);
  255.     }
  256.     foreach($speed_visited as $id=>$val){ // remove all the ones that didn't load email tracking image
  257.         if(!isset($speed_opened[$id]))
  258.             unset($speed_visited[$id]);
  259.     }
  260.     foreach($speed_opened as $id=>$val){ //calculate speed between reading email and clicking link
  261.         $date_opened = substr($val, 0, 10);
  262.         $time_opened = substr($val, 11, 8 );
  263.         $time_opened_stamp = strtotime($date_opened." ".$time_opened);
  264.  
  265.         $date_visited = substr($speed_visited[$id], 0, 10);
  266.         $time_visited = substr($speed_visited[$id], 11, 8 );
  267.         $time_visited_stamp = strtotime($date_visited." ".$time_visited);
  268.  
  269.         $diff = $time_visited_stamp - $time_opened_stamp;
  270.         if($diff > 0)
  271.             $speed_offset[$id] = $diff;
  272.     }
  273.  
  274.     unset($speed_opened); // check me out doing memory management and cleaning up! :D
  275.     unset($speed_visited);
  276.  
  277.     $quickest = min($speed_offset);
  278.     echo "Quickest click: $quickest sec\n";
  279.     $longest = max($speed_offset);
  280.     $longest = floor(($longest / 60) % 60);
  281.     echo "Longest click: $longest min\n";
  282.     $sec_5 = array_reduce($speed_offset, function ($a, $b){
  283.         return ($b <= 5) ? ++$a : $a; });
  284.     echo "Users clicked < 5 sec: $sec_5 \n";
  285.     $sec_30 = array_reduce($speed_offset, function ($a, $b){
  286.         return ($b <= 30) ? ++$a : $a; });
  287.     echo "Users clicked < 30 sec: $sec_30 \n";
  288.     $sec_60 = array_reduce($speed_offset, function ($a, $b){
  289.         return ($b <= 60) ? ++$a : $a; });
  290.     echo "Users clicked < 1 min: $sec_60 \n";
  291. }
  292.  
  293. /* Victim statistics */
  294. if ($filter->getParam("stats") !== false || $filter->getParam("all") !== false) {
  295. 	$status = array();
  296. 	foreach($list['results'] as $item){
  297. 		if($item['status'] <> ""){
  298. 			$status[] = $item['status'];
  299. 		}
  300. 	}
  301. 	echo "\n--- Victim Statistics ---\n";
  302. 	$statusall = count($status);
  303. 	$counts = array_count_values($status);
  304. 	echo "Targets: ".$statusall."\n";
  305. 	$openedpercent = ($counts['Email Opened'] / $statusall) * 100;
  306. 	echo "Email opened: ".$counts['Email Opened']." (".round($openedpercent, 2)."%)\n";
  307. 	$linkpercent = ($counts['Clicked Link'] / $statusall) * 100;
  308. 	echo "Visited link: ".$counts['Clicked Link']." (".round($linkpercent, 2)."%)\n";
  309. 	$subpercent = ($counts['Submitted Data'] / $statusall) * 100;
  310. 	echo "Submitted data: ".$counts['Submitted Data']." (".round($subpercent, 2)."%)\n";
  311. 	foreach($list['timeline'] as $item){
  312. 		if($item['details'] <> ""){
  313. 			$details = json_decode($item['details'], true);
  314.     		if($details['payload']['password'][0] <> "")
  315.     			$totalLoginAttempts++;
  316. 		}
  317. 	}
  318.     echo "Total login attempts: $totalLoginAttempts\n";
  319. }
  320.  
  321. /* Pwdlyzer */
  322. if ($filter->getParam("pass") !== false || $filter->getParam("all") !== false) {
  323. 	$username = array();
  324. 	$password = array();
  325. 	echo "\n--- Password Statistics ---\n";
  326. 	foreach($list['timeline'] as $item){
  327. 		if($item['details'] <> ""){
  328.     		$details = json_decode($item['details'], true);
  329.     		if($details['payload']['password'][0] <> ""){
  330.     			$username[] = $details['payload']['username'][0];
  331.     			$password[] =  $details['payload']['password'][0];
  332.     		}
  333.     	}
  334. 	}
  335. 	$tmpfname = tempnam("/tmp", "GoStats-");
  336. 	$pwdfname = tempnam("/tmp", "GoStats-");
  337. 	$handle = fopen($tmpfname, "w");
  338. 	foreach($username as $id=>$user){
  339. 		fwrite($handle, "$user:".$password[$id]."\n");
  340. 	}
  341. 	fclose($handle);
  342. 	echo "[+] Launching pwdlyzer\n";
  343. 	exec("cd $pwd && ./pwdlyser.py -p $tmpfname --all > $pwdfname");
  344. 	unlink($tmpfname);
  345. 	echo "[+] pwdlyzer results at: $pwdfname\n";
  346. }
  347.  
  348. /* dump username:password list to file */
  349. $dumpfile = $filter->getParam('dump');
  350. if(file_exists($dumpfile)){
  351. 	echo "[!] File already exists ($dumpfile)\n";
  352.     exit(0);
  353. }
  354. if(!file_exists($dumpfile) && isset($dumpfile)){
  355. 	$username = array();
  356. 	$password = array();
  357. 	echo "\n--- Dumping username:password to file ---\n";
  358. 	foreach($list['timeline'] as $item){
  359. 		if($item['details'] <> ""){
  360.     		$details = json_decode($item['details'], true);
  361.     		if($details['payload']['password'][0] <> ""){
  362.     			$username[] = $details['payload']['username'][0];
  363.     			$password[] =  $details['payload']['password'][0];
  364.     		}
  365.     	}
  366. 	}
  367. 	$handle = fopen($dumpfile, "w");
  368. 	foreach($username as $id=>$user){
  369. 		fwrite($handle, "$user:".$password[$id]."\n");
  370. 	}
  371. 	fclose($handle);
  372. 	echo "[+] File created: $dumpfile\n";
  373. }
  374.  
  375. /* dump list of users requiring training */
  376. $dumpfile2 = $filter->getParam('training');
  377. if(file_exists($dumpfile2)){
  378.     echo "[!] File already exists ($dumpfile)\n";
  379.     exit(0);
  380. }
  381. if(!file_exists($dumpfile2) && isset($dumpfile2)){
  382.     $tusername = array();
  383.     $temail = array();
  384.     $tstatus = array();
  385.     echo "\n--- Dumping list of users requiring training ---\n";
  386.     foreach($list['results'] as $item){
  387.         if($item['status'] == "Submitted Data" || $item['status'] == "Clicked Link"){
  388.                 $tusername[] = $item['first_name']." ".$item['last_name'];
  389.                 $temail[] = $item['email'];
  390.                 $tstatus[] = $item['status'];
  391.         }
  392.     }
  393.     $handle = fopen($dumpfile2, "w");
  394.     foreach($tusername as $id=>$user){
  395.         fwrite($handle, "$user, ".$temail[$id].", ".$tstatus[$id]."\n");
  396.     }
  397.     fclose($handle);
  398.     echo "[+] File created: $dumpfile2\n";
  399. }
  400.  
  401. ?>
Buy Me A Coffee