Skip to content

samduy/provenance-analysis

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

163 Commits
Report
Report
 
 
lib
lib
 
 
sample
sample
 
 
test
test
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
Makefile
Makefile
 
 
Progress.txt
Progress.txt
 
 
README.md
README.md
 
 
all_files_list.sh
all_files_list.sh
 
 
apt_check.sh
apt_check.sh
 
 
apt_files_list.sh
apt_files_list.sh
 
 
apt_pkglist.sh
apt_pkglist.sh
 
 
apt_show.sh
apt_show.sh
 
 
autotool_list.sh
autotool_list.sh
 
 
checked_list.txt
checked_list.txt
 
 
extract_info.sh
extract_info.sh
 
 
extract_package_dirs.sh
extract_package_dirs.sh
 
 
extract_packages.sh
extract_packages.sh
 
 
get_buildid.sh
get_buildid.sh
 
 
get_md5sum.sh
get_md5sum.sh
 
 
get_stat.sh
get_stat.sh
 
 
git_list.sh
git_list.sh
 
 
github_filesearch.py
github_filesearch.py
 
 
github_latest.py
github_latest.py
 
 
github_search.py
github_search.py
 
 
google_search.py
google_search.py
 
 
internet_info.sh
internet_info.sh
 
 
internet_info_batch.sh
internet_info_batch.sh
 
 
mail-discuss.txt
mail-discuss.txt
 
 
method.txt
method.txt
 
 
mtime_confirm.txt
mtime_confirm.txt
 
 
pip_files_list.sh
pip_files_list.sh
 
 
program_info.sh
program_info.sh
 
 
program_info_batch.sh
program_info_batch.sh
 
 
report.js
report.js
 
 
report.py
report.py
 
 
report_table.jpg
report_table.jpg
 
 
setting.mk
setting.mk
 
 
style.xsl
style.xsl
 
 

Repository files navigation

Manual

0. Prerequisites

GitHub API (Mandatory)

You will need a GitHub-API OAUTH token key in order to use this program. Please go to https://github.com/settings/tokens and get your own key, and save it to a file named token under the root directory of this program.

(More on GitHub OAUTH)

Update APT (Optional)

$ sudo apt-get update

Install some dependant modules (Optional, but recommended)

  • dicttoxml: For outputing results in XML format.
pip install dicttoxml

1. To start analysing

After download all the files from this repo, you only need to run:

$ make

By default the whole machine ("/") will be scanned.

If you want to scan specific director(y|ies) only, please specify in the make command as following:

$ make DIR="/home /usr/"

IMPORTANT: Make sure you have your GitHub key ready, you will be prompted to provide it in case you haven't done it before.

2. To clean all the result

$ make clean-all

3. View the result

Updated 20170921

By default, the final result will be saved to an XML file named report.xml in working directory. This XML file supports XSL transformation so that it can be viewed as HTML with CSS style.

To view the result, please open the file with Firefox or any web browser.

$ firefox ./report.xml

An example of output result

Report table

4. Running log

In case something wrong happens and the analysis stops. You can check the error messages in a file named .error.log

$ tail -f .error.log

Appendix

Program name

Program Provenance Analysis: PROCERATO

The name of the project was inspired by:

About

Program Provenance Analysis

Topics

package-manager analysis audit provenance version software release github-oauth scanning latest-version provenance-analysis

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

1 fork
Report repository

Releases

9 tags

Packages

No packages published

Languages