Init gravatar recon

Signed-off-by: Hadi <112569860+anotherhadi@users.noreply.github.com>
2025-09-25 19:47:06 +02:00
parent a6383c9de3
commit 8729b0c779
15 changed files with 359 additions and 103 deletions
--- a/back/search/dataleak/dataleak.go
+++ b/back/search/dataleak/dataleak.go
@@ -15,13 +15,14 @@ type LeakResult struct {
 	Duration time.Duration
 	Rows     []map[string]string
 	Error    string
+	Inactive bool
 	LimitHit bool // Whether the search hit the limit
 }

 func Search(s *server.Server, queryText, column string, exactMatch bool) LeakResult {
 	if len(*(s.Dataleaks)) == 0 {
 		return LeakResult{
-			Error: "No dataleak configured",
+			Inactive: true,
 		}
 	}
 	now := time.Now()
--- a/back/search/osint/github.go
+++ b/back/search/osint/github.go
@@ -14,15 +14,13 @@ import (
 type GithubResult struct {
 	Duration time.Duration
 	Error    string
+	Inactive bool

 	UsernameResult *recon_username.UsernameResult
 	EmailResult    *recon_email.EmailResult
 }

-func Search(s *server.Server, queryText, column string) *GithubResult {
-	if !s.Settings.GithubRecon {
-		return nil
-	}
+func GithubSearch(s *server.Server, queryText, queryType string) GithubResult {
 	gr := GithubResult{}
 	now := time.Now()
 	settings := github_recon_settings.GetDefaultSettings()
@@ -35,56 +33,27 @@ func Search(s *server.Server, queryText, column string) *GithubResult {

 	queryText = strings.TrimSpace(queryText)

-	if column == "email" || strings.HasSuffix(column, "_email") ||
-		column == "username" || strings.HasSuffix(column, "_username") ||
-		column == "" || column == "all" {
-		if isValidEmail(queryText) {
-			settings.Target = queryText
-			settings.TargetType = github_recon_settings.TargetEmail
-			result := recon_email.Email(settings)
-			gr.EmailResult = &result
-		} else if isValidUsername(queryText) {
-			settings.Target = queryText
-			settings.TargetType = github_recon_settings.TargetUsername
-			result, err := recon_username.Username(settings)
-			if err != nil {
-				gr.Error = err.Error()
-			}
-			if result.User.Username == "" {
-				gr.UsernameResult = nil
-			} else {
-				gr.UsernameResult = &result
-			}
+	if queryType == "email" {
+		settings.Target = queryText
+		settings.TargetType = github_recon_settings.TargetEmail
+		result := recon_email.Email(settings)
+		gr.EmailResult = &result
+	} else if queryType == "username" {
+		settings.Target = queryText
+		settings.TargetType = github_recon_settings.TargetUsername
+		result, err := recon_username.Username(settings)
+		if err != nil {
+			gr.Error = err.Error()
+		}
+		if result.User.Username == "" {
+			gr.UsernameResult = nil
 		} else {
-			return nil
+			gr.UsernameResult = &result
 		}
 	} else {
-		return nil
+		return GithubResult{Inactive: true}
 	}

 	gr.Duration = time.Since(now)
-	return &gr
-}
-
-func isValidEmail(email string) bool {
-	if !strings.Contains(email, "@") || !strings.Contains(email, ".") {
-		return false
-	}
-	if strings.HasPrefix(email, "@") || strings.HasSuffix(email, "@") {
-		return false
-	}
-	if strings.Contains(email, " ") {
-		return false
-	}
-	return true
-}
-
-func isValidUsername(username string) bool {
-	if len(username) < 1 || len(username) > 39 {
-		return false
-	}
-	if strings.Contains(username, " ") {
-		return false
-	}
-	return true
+	return gr
 }
--- a/back/search/osint/gravatar.go
+++ b/back/search/osint/gravatar.go
@@ -0,0 +1,32 @@
+package osint
+
+import (
+	"time"
+
+	"github.com/anotherhadi/eleakxir/backend/server"
+	gravatar_recon "github.com/anotherhadi/gravatar-recon"
+)
+
+type GravatarResult struct {
+	Duration time.Duration
+	Error    string
+	Inactive bool
+
+	Results []gravatar_recon.GravatarProfile
+}
+
+func GravatarSearch(s *server.Server, queryText string) GravatarResult {
+	gr := GravatarResult{}
+	now := time.Now()
+	results, err := gravatar_recon.GetGravatarProfiles(queryText)
+
+	if err != nil {
+		gr.Error = err.Error()
+		return gr
+	}
+
+	gr.Results = *results
+
+	gr.Duration = time.Since(now)
+	return gr
+}
--- a/back/search/search.go
+++ b/back/search/search.go
@@ -19,8 +19,9 @@ type Query struct {
 	ExactMatch bool   // Whether to search for an exact match

 	// Services
-	Datawells   bool // Whether to include datawells in the search
-	GithubRecon bool // Whether to include github-recon in the search
+	Datawells     bool // Whether to include datawells in the search
+	GithubRecon   bool // Whether to include github-recon in the search
+	GravatarRecon bool // Whether to include gravatar-recon in the search
 }

 type Result struct {
@@ -29,27 +30,25 @@ type Result struct {
 	Status string // "pending", "completed"
 	Query  Query

-	LeakResult   dataleak.LeakResult
-	GithubResult osint.GithubResult
+	LeakResult     dataleak.LeakResult
+	GithubResult   osint.GithubResult
+	GravatarResult osint.GravatarResult
 }

 func Search(s *server.Server, q Query, r *Result, mu *sync.RWMutex) {
 	var wg sync.WaitGroup

-	cleanQueryText := strings.TrimPrefix(q.Text, "^")
-	cleanQueryText = strings.TrimSuffix(q.Text, "$")
-
 	mu.Lock()
 	r.Date = time.Now()
 	r.Status = "pending"
 	r.Query = q
 	mu.Unlock()

-	wg.Add(2)
+	wg.Add(3)
 	go func() {
 		if !q.Datawells {
 			mu.Lock()
-			r.LeakResult = dataleak.LeakResult{Error: "not enabled"}
+			r.LeakResult = dataleak.LeakResult{Inactive: true}
 			mu.Unlock()
 			wg.Done()
 			return
@@ -61,21 +60,52 @@ func Search(s *server.Server, q Query, r *Result, mu *sync.RWMutex) {
 		wg.Done()
 	}()

+	cleanQueryText := strings.TrimPrefix(q.Text, "^")
+	cleanQueryText = strings.TrimSuffix(q.Text, "$")
+	isEmail := false
+	isUsername := false
+
+	if q.Column == "email" || strings.HasSuffix(q.Column, "_email") ||
+		q.Column == "username" || strings.HasSuffix(q.Column, "_username") ||
+		q.Column == "" || q.Column == "all" {
+		if isValidEmail(cleanQueryText) {
+			isEmail = true
+		} else if isValidUsername(cleanQueryText) {
+			isUsername = true
+		}
+	}
+
 	go func() {
-		if !q.GithubRecon {
+		if !q.GithubRecon || !s.Settings.GithubRecon || (!isEmail && !isUsername) {
 			mu.Lock()
-			r.GithubResult = osint.GithubResult{Error: "not enabled"}
+			r.GithubResult = osint.GithubResult{Inactive: true}
 			mu.Unlock()
 			wg.Done()
 			return
 		}
-		githubResult := osint.Search(s, cleanQueryText, q.Column)
-		mu.Lock()
-		if githubResult == nil {
-			r.GithubResult = osint.GithubResult{}
-		} else {
-			r.GithubResult = *githubResult
+		var githubResult osint.GithubResult
+		if isEmail {
+			githubResult = osint.GithubSearch(s, cleanQueryText, "email")
+		} else if isUsername {
+			githubResult = osint.GithubSearch(s, cleanQueryText, "username")
 		}
+		mu.Lock()
+		r.GithubResult = githubResult
+		mu.Unlock()
+		wg.Done()
+	}()
+
+	go func() {
+		if !q.GravatarRecon || !s.Settings.GravatarRecon || !isEmail {
+			mu.Lock()
+			r.GravatarResult = osint.GravatarResult{Inactive: true}
+			mu.Unlock()
+			wg.Done()
+			return
+		}
+		gravatarResult := osint.GravatarSearch(s, cleanQueryText)
+		mu.Lock()
+		r.GravatarResult = gravatarResult
 		mu.Unlock()
 		wg.Done()
 	}()
@@ -91,3 +121,26 @@ func EncodeQueryID(q Query, dataleaksCount uint64) string {
 	raw, _ := json.Marshal(q)
 	return fmt.Sprintf("%d:%s", dataleaksCount, base64.URLEncoding.EncodeToString(raw))
 }
+
+func isValidEmail(email string) bool {
+	if !strings.Contains(email, "@") || !strings.Contains(email, ".") {
+		return false
+	}
+	if strings.HasPrefix(email, "@") || strings.HasSuffix(email, "@") {
+		return false
+	}
+	if strings.Contains(email, " ") {
+		return false
+	}
+	return true
+}
+
+func isValidUsername(username string) bool {
+	if len(username) < 1 || len(username) > 39 {
+		return false
+	}
+	if strings.Contains(username, " ") {
+		return false
+	}
+	return true
+}