d-eyes/process/controller/init_windows.go

package controller

import (
	"github.com/gookit/color"
	"github.com/shirou/gopsutil/v3/process"

	"d-eyes/process/models"
	"d-eyes/process/scanner"
	"d-eyes/process/utils"
)

func GetProcess() models.Process {
	ps, err := process.Processes()
	if err != nil {
		return models.Process{}
	}
	return models.Process{Process: ps}
}

func ScanProcess(pid int, rule string, src_path string) {
	var scannerEngine *scanner.Scanner
	var err error

	if rule == "" {
		scannerEngine, err = scanner.NewScannerAllRules(src_path)
	} else {
		rulePath := src_path + "yaraRules\\" + rule + ".yar"
		scannerEngine, err = scanner.NewScanner(rulePath)
		if err != nil {
			color.Redln(err.Error())
			return
		}
	}

	ipList, err := utils.ReadLindIp(src_path + "ip.config")
	Npattern := []string{"ms-msdt:/id\\s+PCWDiagnostic\\s+/skip force\\s+/param"}

	if err == nil {
		err, scanResults := scannerEngine.ScanProcesses(pid, ipList, Npattern)
		if err == nil {
			models.SaveProcessResult(scanResults)
		} else {
			color.Redln(err.Error())
		}
	} else {
		color.Redln(err.Error())
		return
	}
	// todo
	//scannerEngine.Rules.Destroy()
}
feat(d-eyes): init 2023-11-06 16:31:16 +08:00			`package controller`

			`import (`
			`"github.com/gookit/color"`
			`"github.com/shirou/gopsutil/v3/process"`

			`"d-eyes/process/models"`
			`"d-eyes/process/scanner"`
			`"d-eyes/process/utils"`
			`)`

			`func GetProcess() models.Process {`
			`ps, err := process.Processes()`
			`if err != nil {`
			`return models.Process{}`
			`}`
			`return models.Process{Process: ps}`
			`}`

			`func ScanProcess(pid int, rule string, src_path string) {`
			`var scannerEngine *scanner.Scanner`
			`var err error`

			`if rule == "" {`
			`scannerEngine, err = scanner.NewScannerAllRules(src_path)`
			`} else {`
			`rulePath := src_path + "yaraRules\\" + rule + ".yar"`
			`scannerEngine, err = scanner.NewScanner(rulePath)`
			`if err != nil {`
			`color.Redln(err.Error())`
			`return`
			`}`
			`}`

			`ipList, err := utils.ReadLindIp(src_path + "ip.config")`
			`Npattern := []string{"ms-msdt:/id\\s+PCWDiagnostic\\s+/skip force\\s+/param"}`

			`if err == nil {`
			`err, scanResults := scannerEngine.ScanProcesses(pid, ipList, Npattern)`
			`if err == nil {`
			`models.SaveProcessResult(scanResults)`
			`} else {`
			`color.Redln(err.Error())`
			`}`
			`} else {`
			`color.Redln(err.Error())`
			`return`
			`}`
			`// todo`
			`//scannerEngine.Rules.Destroy()`
			`}`