0007005: metagoofil does not do the metadata analysis stage - which is kind of the point of its existance - Kali Linux Bug Tracker

ID	Project	Category	View Status	Date Submitted	Last Update

0007005	Kali Linux	Kali Package Bug	public	2021-01-22 05:18	2021-03-02 08:48

Reporter	bl4krat	Assigned To	sbrun
Priority	normal	Severity	major	Reproducibility	always
Status	resolved	Resolution	fixed
Product Version	2020.4

Summary	0007005: metagoofil does not do the metadata analysis stage - which is kind of the point of its existance
Description	Version 2.2 which gets installed by apt (and therefore, i suspect, the default version included with the distribution) ONLY downloads the files. It lacks the libraries and code to do the metadata parsing. Also, this version doesnt play nicely when it receives a status 429 (too many requests) from the server - it just throws and exception.
Steps To Reproduce	Try this: metagoofil -d https://sans.org -t doc,pdf,xls -l 200 -o sans_files -f sans_results.html This complains that sans_results.html is an unexpected parameter. the functionality to save the exfiltration result to this file does not exist in the script. So try this: metagoofil -d https://sans.org -t doc,pdf,xls -l 200 -o sans_files -f This time (on my vm) it will download the .docs and .pdf's, and then throw an exception when it gets a 429 from the server. It SHOULD deal with the 429 gracefully and back off the request rate a bit. Finally (having waited a long time for the server to get out of it's grumpy mood).... metagoofil -d https://sans.org -t xls -l 200 -o sans_files -f Now the .xls files are downloaded... and the program ends. No attempt is made to search the metadata - there is no code in the script to do this.
Additional Information	I have solved this on my VM by installing what appears to be an older version (still 2.2, but it's a python 2 script with all the necessary libraries and code) by doing: sudo rm -rf /usr/share/metagoofil sudo git clone https://github.com/WiReD-/metagoofil.git /usr/share/metagoofil and then editing /usr/bin/metagoofil so that it runs /usr/share/metagoofil/metagoofil.py with python2 (not 3).

bl4krat 2021-01-22 05:29 reporter ~0014135	I dont know who owns https://github.com/WiReD-/metagoofil.git, but it includes the GNU v2 public licence.

sbrun 2021-02-02 09:20 manager ~0014181	Thanks for your report. Python 2 is EOL since one year. We removed the old Python2 tools or switched to Python 3 versions. For metagoofil we switched to an other upstream repo to have python 3 support. This version does not extract metadata (see https://github.com/opsdisk/metagoofil/blob/master/README.md) I will report the issue with status 429 to upstream.

sbrun 2021-02-02 09:30 manager ~0014182	https://github.com/opsdisk/metagoofil/issues/21

sbrun 2021-03-02 08:47 manager ~0014258	version 2.2.+git20210226-0kali1fixes exception 429 issue

Date Modified	Username	Field	Change
2021-01-22 05:18	bl4krat	New Issue
2021-01-22 05:29	bl4krat	Note Added: 0014135
2021-02-02 09:20	sbrun	Assigned To	=> sbrun
2021-02-02 09:20	sbrun	Status	new => confirmed
2021-02-02 09:20	sbrun	Note Added: 0014181
2021-02-02 09:24	sbrun	Relationship added	related to 0007025
2021-02-02 09:30	sbrun	Note Added: 0014182
2021-03-02 08:47	sbrun	Note Added: 0014258
2021-03-02 08:48	sbrun	Status	confirmed => resolved
2021-03-02 08:48	sbrun	Resolution	open => fixed