feat: added sysinfo

Author: hanshal101

client/client.go

@@ -16,7 +16,7 @@ import (
 )
 
 func getBpfFilter(logType string) string {
-	excludePort := "not port 5051 and not port 22 and not port 63262 and not port 62616"
+	excludePort := "not port 5051 and not port 22 and not port 63262 and not port 62616 and not port 8888"
 
 	switch logType {
 	case "http":

cmd/main.go

@@ -11,6 +11,7 @@ import (
 	"github.com/hanshal101/snapwall/database/migrate"
 	"github.com/hanshal101/snapwall/database/psql"
 	"github.com/hanshal101/snapwall/internal/router"
+	"github.com/hanshal101/snapwall/internal/sysinfo"
 	"github.com/joho/godotenv"
 )
 
@@ -32,6 +33,9 @@ func main() {
 	// go enforcer.ReconcileEnforcer(ctx, 5*time.Second)
 	r := gin.Default()
 	r.Use(cors.Default())
+
+	r.GET("/sysinfo", sysinfo.GetSystemInfo)
+
 	// POLICY Routes
 	policy := r.Group("/policies")
 	router.PolicyRoutes(policy)

go.mod

@@ -4,19 +4,21 @@ go 1.23.0
 
 require (
 	github.com/ClickHouse/clickhouse-go/v2 v2.28.2
+	github.com/coreos/go-iptables v0.8.0
+	github.com/gin-contrib/cors v1.7.2
 	github.com/gin-gonic/gin v1.10.0
 	github.com/google/gopacket v1.1.19
+	github.com/shirou/gopsutil v3.21.11+incompatible
 	google.golang.org/grpc v1.66.0
 	gorm.io/gorm v1.25.11
 )
 
 require (
 	github.com/ClickHouse/ch-go v0.61.5 // indirect
 	github.com/andybalholm/brotli v1.1.0 // indirect
-	github.com/coreos/go-iptables v0.8.0 // indirect
-	github.com/gin-contrib/cors v1.7.2 // indirect
 	github.com/go-faster/city v1.0.1 // indirect
 	github.com/go-faster/errors v0.7.1 // indirect
+	github.com/go-ole/go-ole v1.2.6 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/jackc/pgpassfile v1.0.0 // indirect
 	github.com/jackc/pgservicefile v0.0.0-20221227161230-091c0ba34f0a // indirect
@@ -29,6 +31,9 @@ require (
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/segmentio/asm v1.2.0 // indirect
 	github.com/shopspring/decimal v1.4.0 // indirect
+	github.com/tklauser/go-sysconf v0.3.12 // indirect
+	github.com/tklauser/numcpus v0.6.1 // indirect
+	github.com/yusufpapurcu/wmi v1.2.3 // indirect
 	go.opentelemetry.io/otel v1.26.0 // indirect
 	go.opentelemetry.io/otel/trace v1.26.0 // indirect
 	golang.org/x/sync v0.8.0 // indirect
@@ -60,7 +65,7 @@ require (
 	github.com/ugorji/go/codec v1.2.12 // indirect
 	golang.org/x/arch v0.8.0 // indirect
 	golang.org/x/crypto v0.26.0 // indirect
-	golang.org/x/net v0.28.0
+	golang.org/x/net v0.28.0 // indirect
 	golang.org/x/sys v0.23.0 // indirect
 	golang.org/x/text v0.17.0 // indirect
 	google.golang.org/protobuf v1.34.1

go.sum

@@ -30,6 +30,8 @@ github.com/go-faster/city v1.0.1 h1:4WAxSZ3V2Ws4QRDrscLEDcibJY8uf41H6AhXDrNDcGw=
 github.com/go-faster/city v1.0.1/go.mod h1:jKcUJId49qdW3L1qKHH/3wPeUstCVpVSXTM6vO3VcTw=
 github.com/go-faster/errors v0.7.1 h1:MkJTnDoEdi9pDabt1dpWf7AA8/BaSYZqibYyhZ20AYg=
 github.com/go-faster/errors v0.7.1/go.mod h1:5ySTjWFiphBs07IKuiL69nxdfd5+fzh1u7FPGZP2quo=
+github.com/go-ole/go-ole v1.2.6 h1:/Fpf6oFPoeFik9ty7siob0G6Ke8QvQEuVcuChpwXzpY=
+github.com/go-ole/go-ole v1.2.6/go.mod h1:pprOEPIfldk/42T2oK7lQ4v4JSDwmV0As9GaiUsvbm0=
 github.com/go-playground/assert/v2 v2.2.0 h1:JvknZsQTYeFEAhQwI4qEt9cyV5ONwRHC+lYKSsYSR8s=
 github.com/go-playground/assert/v2 v2.2.0/go.mod h1:VDjEfimB/XKnb+ZQfWdccd7VUvScMdVu0Titje2rxJ4=
 github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=
@@ -109,6 +111,8 @@ github.com/rogpeppe/go-internal v1.10.0 h1:TMyTOH3F/DB16zRVcYyreMH6GnZZrwQVAoYjR
 github.com/rogpeppe/go-internal v1.10.0/go.mod h1:UQnix2H7Ngw/k4C5ijL5+65zddjncjaFoBhdsK/akog=
 github.com/segmentio/asm v1.2.0 h1:9BQrFxC+YOHJlTlHGkTrFWf59nbL3XnCoFLTwDCI7ys=
 github.com/segmentio/asm v1.2.0/go.mod h1:BqMnlJP91P8d+4ibuonYZw9mfnzI9HfxselHZr5aAcs=
+github.com/shirou/gopsutil v3.21.11+incompatible h1:+1+c1VGhc88SSonWP6foOcLhvnKlUeu/erjjvaPEYiI=
+github.com/shirou/gopsutil v3.21.11+incompatible/go.mod h1:5b4v6he4MtMOwMlS0TUMTu2PcXUg8+E1lC7eC3UO/RA=
 github.com/shopspring/decimal v1.4.0 h1:bxl37RwXBklmTi0C79JfXCEBD1cqqHt0bbgBAGFp81k=
 github.com/shopspring/decimal v1.4.0/go.mod h1:gawqmDU56v4yIKSwfBSFip1HdCCXN8/+DMd9qYNcwME=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
@@ -125,6 +129,10 @@ github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXl
 github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/tidwall/pretty v1.0.0/go.mod h1:XNkn88O1ChpSDQmQeStsy+sBenx6DDtFZJxhVysOjyk=
+github.com/tklauser/go-sysconf v0.3.12 h1:0QaGUFOdQaIVdPgfITYzaTegZvdCjmYO52cSFAEVmqU=
+github.com/tklauser/go-sysconf v0.3.12/go.mod h1:Ho14jnntGE1fpdOqQEEaiKRpvIavV0hSfmBq8nJbHYI=
+github.com/tklauser/numcpus v0.6.1 h1:ng9scYS7az0Bk4OZLvrNXNSAO2Pxr1XXRAPyjhIx+Fk=
+github.com/tklauser/numcpus v0.6.1/go.mod h1:1XfjsgE2zo8GVw7POkMbHENHzVg3GzmoZ9fESEdAacY=
 github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI=
 github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
 github.com/ugorji/go/codec v1.2.12 h1:9LC83zGrHhuUA9l16C9AHXAqEV/2wBQ4nkvumAE65EE=
@@ -135,6 +143,8 @@ github.com/xdg-go/stringprep v1.0.3/go.mod h1:W3f5j4i+9rC0kuIEJL0ky1VpHXQU3ocBgk
 github.com/youmark/pkcs8 v0.0.0-20181117223130-1be2e3e5546d/go.mod h1:rHwXgn7JulP+udvsHwJoVG1YGAP6VLg4y9I5dyZdqmA=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
+github.com/yusufpapurcu/wmi v1.2.3 h1:E1ctvB7uKFMOJw3fdOW32DwGE9I7t++CRUEMKvFoFiw=
+github.com/yusufpapurcu/wmi v1.2.3/go.mod h1:SBZ9tNy3G9/m5Oi98Zks0QjeHVDvuK0qfxQmPyzfmi0=
 go.mongodb.org/mongo-driver v1.11.4/go.mod h1:PTSz5yu21bkT/wXpkS7WR5f0ddqw5quethTUn9WM+2g=
 go.opentelemetry.io/otel v1.26.0 h1:LQwgL5s/1W7YiiRwxf03QGnWLb2HW4pLiAhaA5cZXBs=
 go.opentelemetry.io/otel v1.26.0/go.mod h1:UmLkJHUAidDval2EICqBMbnAd0/m2vmpf/dAM+fvFs4=
@@ -168,12 +178,15 @@ golang.org/x/sync v0.8.0 h1:3NFvSEYkUoMifnESzZl15y791HH1qU2xm6eCJU5ZPXQ=
 golang.org/x/sync v0.8.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20190916202348-b4ddaad3f8a3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.23.0 h1:YfKFowiIMvtgl1UERQoTPPToxltDeZfbj4H7dVUCwmM=
 golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=

internal/logs/logs.go

@@ -85,6 +85,7 @@ func GetLogs(c *gin.Context) {
 			&logEntry.Destination,
 			&logEntry.Port,
 			&logEntry.Protocol,
+			&logEntry.Severity,
 		); err != nil {
 			log.Fatalf("Error scanning row: %v", err)
 			c.JSON(http.StatusBadGateway, gin.H{"error": "Error scanning row"})
@@ -131,6 +132,7 @@ func GetLogsByPort(c *gin.Context) {
 			&logEntry.Destination,
 			&logEntry.Port,
 			&logEntry.Protocol,
+			&logEntry.Severity,
 		); err != nil {
 			log.Printf("Error scanning row: %v", err)
 			continue
@@ -177,6 +179,51 @@ func GetLogsByIP(c *gin.Context) {
 			&logEntry.Destination,
 			&logEntry.Port,
 			&logEntry.Protocol,
+			&logEntry.Severity,
+		); err != nil {
+			log.Printf("Error scanning row: %v", err)
+			continue
+		}
+
+		logs = append(logs, logEntry)
+	}
+
+	if err := rows.Err(); err != nil {
+		log.Printf("Error iterating over rows: %v", err)
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "Error retrieving logs"})
+		return
+	}
+
+	c.JSON(http.StatusOK, logs)
+}
+
+func GetIntruderLogs(c *gin.Context) {
+	query := `
+        SELECT time, type, source, destination, port, protocol, severity
+        FROM service_logs
+        WHERE severity = ?
+    `
+
+	rows, err := clickhouse.CHClient.Query(context.TODO(), query, "HIGH")
+	if err != nil {
+		log.Printf("Error executing query: %v", err)
+		c.JSON(http.StatusBadRequest, gin.H{"error": "Error executing query"})
+		return
+	}
+	defer rows.Close()
+
+	var logs []models.Log
+	for rows.Next() {
+		var logEntry models.Log
+
+		if err := rows.Scan(
+			&logEntry.Time,
+			&logEntry.Type,
+			&logEntry.Source,
+			&logEntry.Destination,
+			&logEntry.Port,
+			&logEntry.Protocol,
+			&logEntry.Severity,
 		); err != nil {
 			log.Printf("Error scanning row: %v", err)
 			continue

internal/router/router.go

@@ -27,4 +27,5 @@ func LogRoutes(r *gin.RouterGroup) {
 	r.GET("", logs.GetLogs)
 	r.GET("/port/:portNumber", logs.GetLogsByPort)
 	r.GET("/:ioType/ip/:ipAddress", logs.GetLogsByIP)
+	r.GET("/intruder", logs.GetIntruderLogs)
 }

internal/sysinfo/sysinfo.go

@@ -0,0 +1,68 @@
+package sysinfo
+
+import (
+	"net/http"
+
+	"github.com/gin-gonic/gin"
+	"github.com/hanshal101/snapwall/models"
+	"github.com/shirou/gopsutil/cpu"
+	"github.com/shirou/gopsutil/disk"
+	"github.com/shirou/gopsutil/host"
+	"github.com/shirou/gopsutil/mem"
+)
+
+func getSysInfo() (*models.SystemInfo, error) {
+	cpuInfo, err := cpu.Info()
+	if err != nil {
+		return nil, err
+	}
+
+	memInfo, err := mem.VirtualMemory()
+	if err != nil {
+		return nil, err
+	}
+
+	partitions, err := disk.Partitions(true)
+	if err != nil {
+		return nil, err
+	}
+
+	var diskInfo []disk.UsageStat
+	for _, partition := range partitions {
+		usage, err := disk.Usage(partition.Mountpoint)
+		if err == nil {
+			diskInfo = append(diskInfo, *usage)
+		}
+	}
+
+	hostInfo, err := host.Info()
+	if err != nil {
+		return nil, err
+	}
+
+	uptime, err := host.Uptime()
+	if err != nil {
+		return nil, err
+	}
+
+	return &models.SystemInfo{
+		CPUInfo:    cpuInfo,
+		MemoryInfo: memInfo,
+		DiskInfo:   diskInfo,
+		HostInfo:   hostInfo,
+		Uptime:     uptime,
+	}, nil
+}
+
+func GetSystemInfo(c *gin.Context) {
+	sysInfo, err := getSysInfo()
+	if err != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{
+			"error": "Failed to fetch system information",
+		})
+		return
+	}
+
+	c.JSON(http.StatusOK, sysInfo)
+
+}

models/config.go

@@ -3,6 +3,10 @@ package models
 import (
 	"time"
 
+	"github.com/shirou/gopsutil/cpu"
+	"github.com/shirou/gopsutil/disk"
+	"github.com/shirou/gopsutil/host"
+	"github.com/shirou/gopsutil/mem"
 	"gorm.io/gorm"
 )
 
@@ -43,3 +47,11 @@ type Log struct {
 	Protocol    string    `json:"protocol"`
 	Severity    string    `json:"severity"`
 }
+
+type SystemInfo struct {
+	CPUInfo    []cpu.InfoStat         `json:"cpu_info"`
+	MemoryInfo *mem.VirtualMemoryStat `json:"memory_info"`
+	DiskInfo   []disk.UsageStat       `json:"disk_info"`
+	HostInfo   *host.InfoStat         `json:"host_info"`
+	Uptime     uint64                 `json:"uptime"`
+}