-
Notifications
You must be signed in to change notification settings - Fork 11
/
Copy pathandroid_tencentsecure.py
112 lines (93 loc) · 3.42 KB
/
android_tencentsecure.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
# coding=utf-8
__author__ = 'YangLiyuan'
import json
import PA_runtime
from PA_runtime import *
import clr
try:
clr.AddReference('model_secure')
clr.AddReference('bcp_im')
clr.AddReference('ScriptUtils')
except:
pass
del clr
import bcp_im
import model_secure
from ScriptUtils import CASE_NAME, DEBUG, exc, tp, base_analyze, parse_decorator, BaseParser, BaseAndroidParser
VERSION_APP_VALUE = 1
@parse_decorator
def analyze_tcsecure(node, extract_deleted, extract_source):
return base_analyze(AndroidTencentSecureParser,
node,
bcp_im.CONTACT_ACCOUNT_TYPE_IM_OTHER,
VERSION_APP_VALUE,
build_name='腾讯手机管家',
db_name='TCSecure_A')
class AndroidTencentSecureParser(BaseParser):
''' com.tencent.qqpimsecure
Android
!encryptqqsecure2.db
!fea_tunnel_en.db
qqsecure.db
wx_favorite
tb_software_info
recent_iden
wifi_signal_table
pf_soft_list_profile_db_table_name
sw_system_software_info app 包名, 名称, 版本
'''
def __init__(self, node, db_name):
super(AndroidTencentSecureParser, self).__init__(node, db_name)
self.VERSION_VALUE_DB = model_secure.VERSION_VALUE_DB
self.root = node.Parent
self.Generate = model_secure.GenerateModel
self.csm = model_secure.SM()
def parse_main(self):
if self._read_db('qqsecure.db'):
self.parse_wifi('wifi_signal_table')
self.parse_callrecord('recent_iden')
def parse_wifi(self, table_name):
''' wifi_signal_table
FieldName SQLType
ssid TEXT
bssid TEXT
first_recog_time TEXT
last_recog_time TEXT
signal_hist TEXT
'''
for rec in self._read_table(table_name, read_delete=False):
try:
if (self._is_empty(rec, 'ssid', 'bssid')
or rec['bssid'].Value.count(':') != 5):
continue
wifi = model_secure.WifiSignal()
wifi.ssid = rec['ssid'].Value
wifi.bssid = rec['bssid'].Value
wifi.first_time = rec['first_recog_time'].Value
wifi.last_time = rec['last_recog_time'].Value
self.csm.db_insert_table_wifi_signal(wifi)
except:
exc()
self.csm.db_commit()
def parse_callrecord(self, table_name):
''' recent_iden
FieldName SQLType
id INTEGER
phone_number TEXT
value1 TEXT
value2 INT2
'''
for rec in self._read_table(table_name, read_delete=False):
try:
cr = model_secure.Callrecord()
if (self._is_empty(rec, 'phone_number')
or self._is_duplicate(rec, 'id')):
continue
cr.id = rec['id'].Value
cr.phone_number = rec['phone_number'].Value
# cr.date
# cr.call_type = model_secure.
self.csm.db_insert_table_callrecord(cr)
except:
exc()
self.csm.db_commit()