• Home
• org.mvnsearch
• osquery-spring-boot-starter
• 0.1.0
• source code
• OsqueryProcess.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.mvnsearch.osquery.OsqueryProcess Maven / Gradle / Ivy

package org.mvnsearch.osquery;

import org.springframework.util.StreamUtils;
import org.springframework.util.StringUtils;

import java.nio.charset.Charset;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.List;

/**
 * osquery process
 *
 * @author linux_china
 */
public class OsqueryProcess {
  private String osqueryiPath = "osqueryi";

  public void setOsqueryiPath(String osqueryiPath) {
    this.osqueryiPath = osqueryiPath;
  }

  public String getVersion() {
    ProcessResult result = execute("--version");
    return result.getOutput().substring(result.getOutput().lastIndexOf(" ") + 1).trim();
  }

  public List getTables() {
    ProcessResult result = execute("--L");
    List tables = new ArrayList<>();
    String[] lines = result.getOutput().split(System.lineSeparator());
    for (String line : lines) {
      tables.add(line.replace("=>", "").trim());
    }
    return tables;
  }

  public ProcessResult getTableOutput(String table, String format) {
    if (StringUtils.isEmpty(format)) {
      return execute("--A", table);
    } else if (format.equals("csv")) {
      return execute("--csv", "--separator", ",", "--A", table);
    } else {
      return execute("--A", table, "--" + format);
    }
  }

  public ProcessResult query(String sql, String format) {
    if (StringUtils.isEmpty(format)) {
      return execute(sql);
    } else if (format.equals("csv")) {
      return execute("--csv", "--separator", ",", sql);
    } else {
      return execute("--" + format, sql);
    }
  }

  private ProcessResult execute(String... args) {
    try {
      List command = new ArrayList<>();
      command.add(osqueryiPath);
      command.addAll(Arrays.asList(args));
      ProcessBuilder pb = new ProcessBuilder(command);
      Process p = pb.start();
      String output = StreamUtils.copyToString(p.getInputStream(), Charset.defaultCharset());
      String error = StreamUtils.copyToString(p.getErrorStream(), Charset.defaultCharset());
      //Wait to get exit value
      int exitValue = p.waitFor();
      return new ProcessResult(exitValue, output, error);
    } catch (Exception e) {
      return new ProcessResult(-1, null, e.getMessage());
    }
  }


}