add: scanner configs

Author: amirhnajafiz

internal/config/default.go

@@ -18,6 +18,12 @@ func Default() Config {
 		},
 		Scanner: scanner.Config{
 			Command: "python scanner.py --host %s",
+			Enable:  false,
+			Defaults: []string{
+				"2fa",
+				"authentication",
+				"injection",
+			},
 		},
 		MySQL: sql.Config{
 			Host:     "127.0.0.1",

internal/config/scanner/config.go

@@ -1,5 +1,7 @@
 package scanner
 
 type Config struct {
-	Command string `koanf:"command"`
+	Command  string   `koanf:"command"`
+	Enable   bool     `koanf:"enable"`
+	Defaults []string `koanf:"defaults"`
 }

internal/core/scanner/scanner.go

@@ -3,9 +3,19 @@ package scanner
 import "os/exec"
 
 // Scan a host by using apt-scanner
-func Scan(command string) ([]string, error) {
+func Scan(command string, enable bool, defaults ...string) ([]string, error) {
 	r := new(report)
 
+	// load default vulnerabilities
+	for _, tmp := range defaults {
+		r.vulnerabilities = append(r.vulnerabilities, tmp)
+	}
+
+	// check scanner enable
+	if !enable {
+		return r.vulnerabilities, nil
+	}
+
 	// execute command
 	cmd := exec.Command(command)
 	if err := cmd.Start(); err != nil {

internal/core/worker/pool.go

@@ -2,6 +2,7 @@ package worker
 
 import (
 	"github.com/ptaas-tool/base-api/internal/config"
+	"github.com/ptaas-tool/base-api/internal/config/scanner"
 	"log"
 
 	"github.com/ptaas-tool/base-api/internal/config/ftp"
@@ -11,10 +12,11 @@ import (
 )
 
 type Pool struct {
-	cfg    ftp.Config
-	ai     ai.Config
-	client client.HTTPClient
-	models *models.Interface
+	cfg     ftp.Config
+	ai      ai.Config
+	scanner scanner.Config
+	client  client.HTTPClient
+	models  *models.Interface
 
 	template string
 	capacity int
@@ -29,6 +31,7 @@ func New(cfg config.Config, client client.HTTPClient, models *models.Interface,
 		ai:       cfg.AI,
 		cfg:      cfg.FTP,
 		client:   client,
+		scanner:  cfg.Scanner,
 		models:   models,
 		capacity: capacity,
 		template: template,
@@ -60,6 +63,7 @@ func (p *Pool) Register() {
 				ai:       &aiInstance,
 				cfg:      p.cfg,
 				client:   p.client,
+				scanner:  p.scanner,
 				models:   p.models,
 				channel:  p.channel,
 				reruns:   p.reruns,

internal/core/worker/worker.go

@@ -9,6 +9,7 @@ import (
 	"time"
 
 	"github.com/ptaas-tool/base-api/internal/config/ftp"
+	scannerCfg "github.com/ptaas-tool/base-api/internal/config/scanner"
 	"github.com/ptaas-tool/base-api/internal/core/ai"
 	"github.com/ptaas-tool/base-api/internal/core/scanner"
 	"github.com/ptaas-tool/base-api/internal/utils/crypto"
@@ -27,6 +28,7 @@ type worker struct {
 	done     chan int
 	template string
 	cfg      ftp.Config
+	scanner  scannerCfg.Config
 	client   client.HTTPClient
 	models   *models.Interface
 	ai       *ai.AI
@@ -190,7 +192,7 @@ func (w worker) execute(id int) {
 	})
 
 	// start scanner
-	vulnerabilities, err := scanner.Scan(command)
+	vulnerabilities, err := scanner.Scan(command, w.scanner.Enable, w.scanner.Defaults...)
 	if err != nil {
 		log.Println(fmt.Errorf("[worker.execute] failed to scan host error=%w", err))
 	}