Tr4ilGo is a small piece of code that aims to process dataleaks, specifically email:password files that can be found on hacker forums, into a sqlite database. These dataleaks can easilly be a few Gbytes and thus using Python and linearly processing these files will take forever. Tr4ilGo tries to use goroutines to parallise this process. It still takes time, but it is still faster than Python.
This software is still in alpha. It works, but I'm still trying to make it a bit more user friendly. This is where you come in. If you want to help out, you can:
- give me some feedback on what you want tr4ilGo to do
- push some helpfull modification to improve the software
- The main issue is some sort of memory saturation. If you leave the program run for too long, it gets killed. I thing there is a variable that must become too big, but I haven't found which one yet. any ideas?
This software being in alpha, there is no interface, nor command line interactions. If you want to change something, you'll need to modify the code. This will change when a beta version is reached.
First, you'll need to install Golang. I'm working with go version go1.15.8 linux/amd64
. But later versions should work.
There are a few dependencies that you will also need
go get github.com/vbauerster/mpb
go get github.com/sirupsen/logrus
go get github.com/evilsocket/islazy/tui
go get github.com/mattn/go-sqlite3
IMPORTANT : for the moment, the file structure for where the email:pwd files are is important. It needs to follow the following structure.
cwd
is the name of the folder where you store your file leaks. For me it's an external HDD named HASH DB
. Then in there you should have a folder with the collection of leaks Parent
. For the moment, this folder is hardcoded to be named Collection 1
, but it can be anything.
Finally, in these collection, there should be a list of directories in which the text files are.
media/parrot/HASH DB
└── Parent
├── name1
│ ├── 0.txt
│ ├── 1.txt
│ └── 2.txt
└── name2
├── 0.txt
├── 1.txt
└── 2.txt
A text file should be in the following format
[email protected]:password
In case the seperator is something else, such as ;
as it can be in some file, you can either change it in the txt file, or you can add a condition in worker.go
switch {
case strings.Contains(line, ":"):
seperator = ":"
case strings.Contains(line, ";"):
seperator = ";"
}
Now you should be able to compile from source. you can clone the repo and build it
gh repo clone guanicoe/tr4ilGo
go build -o tr4ilGo
If everything goes to correctly, you can run the program with sudo
sudo ./tr4ilGo
I've added some command line parameters. You can read them by using sudo ./tr4ilGo -h
Usage of ./tr4ilGo:
-b int
Batch size when inserting to database. When scrapping the file list, a slice is made and when it reaches a given size, a batch INSERT is made to the database. (default 1000)
-d string
Name of the database. (default "creds.db")
-p string
Name of the parent directory (default "Collection 1")
-r Delets the database to start fresh. NO RETURN
-u string
Path where the raw leak files are. (default "/media/parrot/HASH DB")
-v string
Log level [default: WARN | v: INFO | vv: DEBUG ]
-w int
Number of workers to go scan files. Each worker will scrap one text file at a time. (default 50)
The sqlite file is made of 4 tables.
- I'll add some flexibility and some sort of menu so the program can be used in cli.
- I will also change the database structure as it can be obtimised.
- Might also add some tools to actually interact with the database such as showing stats, or filtering tools to generate clean files.