dissect.target.plugins.apps.shell.wget

Module Contents

Classes

WgetPlugin

Wget shell plugin.

Attributes

WgetHstsRecord

dissect.target.plugins.apps.shell.wget.WgetHstsRecord

class dissect.target.plugins.apps.shell.wget.WgetPlugin(target: dissect.target.target.Target)

Bases: dissect.target.plugin.Plugin

Wget shell plugin.

__namespace__ = 'wget'

Defines the plugin namespace.

artifacts

check_compatible() → None

Perform a compatibility check with the target.

This function should return None if the plugin is compatible with the current target (self.target). For example, check if a certain file exists. Otherwise it should raise an UnsupportedPluginError.

Raises:

UnsupportedPluginError – If the plugin could not be loaded.

hsts() → collections.abc.Iterator[WgetHstsRecord]

Yield domain entries found in wget HSTS files.

When using the wget command-line utility, a file named .wget-hsts is created in the user’s home directory by default. The .wget-hsts file records HTTP Strict Transport Security (HSTS) information for the websites visited by the user via wget.

References

• https://www.gnu.org/software/wget

• https://gitlab.com/gnuwget/wget/-/blob/master/src/hsts.c

• https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security

Yields WgetHstsRecord records with the following fields:

ts_created          (datetime):  When the host was first added to the HSTS file
host                (uri):       The host that was accessed over TLS by wget
explicit_port       (boolean):   If the TCP port for TLS should be checked
include_subdomains  (boolean):   If subdomains are included in the HSTS check
max_age             (datetime):  Time to live of the entry in the HSTS file
source              (path):      Location of the .wget-hsts file