<a href="https://colab.research.google.com/github/carlosfmorenog/SpreadingTheWord/blob/main/SpreadingtheWord.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

# Spreading the Word in Python

In this activity, we will learn how to create a very basic message using Python. Moreover, you will learn how this message can be propagated in a virtual environment.

## Basic Requirements

For this activity, you are required to install the `os` python module (using `pip install os`) in case you don't already have it. Also, you need the following files:
* `file1.py`: This script simply prints "Hello world!". If you are working locally in your computer, save it in the same directory that you are using for this notebook. Otherwise, we will load it directly from GitHub.
* `file2.py`: This code cracks a hashed password using a brute force approach. If you are working locally in your computer, save it in a subdirectory from the path where this notebook is saved (you can use any name for the subdirectory). Otherwise, we will load it directly in a subdirectory called `Data` via GitHub.


Run the following cell to load the two `.py` files from my GitHub website

In [None]:
!git clone https://github.com/carlosfmorenog/SpreadingTheWord

Cloning into 'SpreadingTheWord'...
remote: Enumerating objects: 8, done.[K
remote: Counting objects: 100% (8/8), done.[K
remote: Compressing objects: 100% (4/4), done.[K
remote: Total 8 (delta 0), reused 5 (delta 0), pack-reused 0[K
Receiving objects: 100% (8/8), done.


## Implementing from Scratch

Spreading messages can be used for good or bad. In the case of malware, it inserts inself into a system (usually in a secert way) with the intent of compromising a program or the whole system.

In this laboratory, we will design a simple code in Python which will replicate itself into other `.py` files.

### Search for .py files

**STEP 1**: We will implement a function called `search` which will be in charge of exploring a directory and its subdirectories to find all `.py` files. To do so, first you need to extract the list of files and subdirectories that are located in the current directory. To do so, you can use the command `filelist = os.listdir(path)`, where `path` is the current directory.

**HINT**: If you got the data from GitHub, you can use the command `os.path.abspath("SpreadingTheWord")`. Otherwise, you should use `os.path.abspath("")`

In [None]:
## Use this cell to
## 1) import the os module,
## 2) find the list of files/directories in the current directory and save them in a variable "filelist" and,
## 3) print filelist.
import os
filelist = os.listdir(os.path.abspath("SpreadingTheWord"))
filelist

['Data', '.git', 'file1.py', 'README.md']

If you are exploring the `GitHub` data, you should see a list of the files and folders cloned from the repo, including `file1.py`, `.git`, `README.md` and `Data`, which contains `file2.py`. You will even see this Jupyter Notebook but not the original one, but the cloned copy!

If you are working in your computer, you will see similar things, and possibly a folder called `.ipynb_checkpoints`.

**STEP 2**: Using a `for` loop, iterate `filelist` to see which files have the `.py` extension.

**HINT**: When you iterate `filelist` you are examining strings, therefore you can take advantage of the string data structure and check if the last 3 positins of any given string are the characters `.py`. Once you have found a string that ends in `.py`, remember to **add** the path of the current directory to the name of the file separated by the "/" character or the "_\_\" characters before appending to the list.

In [None]:
## Use this cell to iterate filelist and find the .py files. If one is found, append it to a "filestoinfect" list.
## In the end, print "filestoinfect".
filestoinfect = []
for name in filelist:
    if name[-3:] == ".py":
        filestoinfect.append(os.path.abspath("")+"/"+name)
filestoinfect

['/content/file1.py']

If done have done this correctly, you should be able to append the malware and `file1.py` but **NOT** `file2.py`. This is due to the fact that we have only explored the current directory, but not its subdirectories!

**STEP 3**: Using a for loop, iterate once again `filelist` to **print** the names of the subdirectories.

**HINT**: You can use the command `os.path.isdir("SpreadingTheWord/"+name)` to know if a certain name is in the filelist is a directory or not.

In [None]:
## Use this cell to iterate filelist and print the subdirectories.
for name in filelist:
  if os.path.isdir("SpreadingTheWord/"+name):
        print("SpreadingTheWord/"+name)

SpreadingTheWord/Data
SpreadingTheWord/.git


If you have done this step correctly, then you will print the subdirectories of your current path, including `Data`, the one where `file2.py` is stored. If you are doing this excercise online, a folder called `.git` will appear, and if you are working locally in your computer, you will see a folder called `.ipynb_checkpoints`, which is autogenerated by Jupyter Notebook as an autosave.

**STEP 4**: Now that we have all of these elements, create a `search()` function which will take a `path` as an input and will return the list of files to infect.

In [None]:
## Use this cell to implement the search function.
import os
def search(path):
    # 1. Define "filestospreadmessage" as an empty list.
    filestospreadmessage = []
    # 2. Find the list of files/irectories in the specified path and save them in variable "filelist".
    filelist = os.listdir(path)
    # 3. for name in filelist:
    for name in filelist:
        # 3.a. Check if name is a subdirectory. If true, call again the search function in this subdirectory.
        # HINT: To avoid reset filestospreadmessage when you call the function, use filestospreadmessage.extend(search(path+"/"+name))
        if os.path.isdir("SpreadingTheWord/"+name):
            filestospreadmessage.extend(search(path+"/"+name))
        # 3.b. Else, if it is a .py file, append it to "filestospreadmessage"
        elif name[-3:] == ".py":
            filestospreadmessage.append(path+"/"+name)
    return filestospreadmessage

## Use the search function in the current directory
filestospreadmessage = search(os.path.abspath("SpreadingTheWord"))
print("List of files to spread message into:\n")
print(filestospreadmessage)

List of files to spread message into:

['/content/SpreadingTheWord/Data/file2.py', '/content/SpreadingTheWord/file1.py']


If the function was implemented correctly, then you will be able to print the malware and the two victim files.

### Spread the message into .py files

To insert the message into the files, you have to loop the `filestospreadmessage` list and get each of the files. This consists in two steps:
1. Loading the file to be infected and storing the instructions of the `.py` file into a `temp` variable.
2. Adding the message to the temp and rewritting the loaded file.

In [None]:
def spread(filestospreadmessage):
    message = '# This file is has a message inside!\n'
    for name in filestospreadmessage:
        # 1. Open the file, load the instructions in a temp variable and close the file.
        f = open(name)
        temp = f.read()
        f.close()
        # 2. Open the the file in "write mode" and write the malware and close the file.
        f = open(name,'w')
        f.write(message+temp)
        f.close()
        print("File "+name.split("/")[-1]+" has the message!")
    return

spread(filestospreadmessage)

File file2.py has the message!
File file1.py has the message!


Now, inspect the victim files and see if the first line of the file has the message.

The first line of the code should be: `# This file is has a message inside!`

# Your Turn

Create a Python file called `malware.py` and paste the `search()` and the `spread()` functions. Apply the following changes to the functions:

* `search()`: Implement a mechanism that **EXCLUDES** `malware.py` from the `filestospreadmessage` list the file that is running the malware (**HINT**: Use some type of marker to avoid spreading the message to malware.py itself!).
* `spread()`: Spread the message to the files using **the code contained in `malware.py`** instead of the one line comment, so that when an unsuspected user runs a victim code, the malware keeps propagating!
* ADDITIONAL CHANGES: Print a message (for instance, "THE MALWARE IS OUT! X FILES HAVE BEEN INFECTED!") where X is the number of files that have been infected by the malware. (**HINT**: Use a counter inside the `spread()` function).

**NOTE**: Make sure that the very last line of `malware.py` is empty or a `'\n'` string, so that when the code is copied into the victims, it doesn't overlap the first instruction of the victim.