Adding in ScanJNLP

[skalupa]

Describe the change Originally developed by Ryan Borre and Paul Hutelmyer, ScanJnlp analyzes Java Network Launch Protocol (JNLP) files. From the documentation:

JNLP files, used by Java Web Start technology, can launch Java applications from a web browser. While facilitating legitimate applications, they can also be abused for malicious purposes such as distributing malware or executing phishing attacks.

This PR ports the ScanJnlp scanner as well as tests with relevant fixtures to open source Strelka while also updating the scanner table with relevant information on this scanner.

Describe testing procedures This scanner has been running internally for some time, though after porting the scanner, the scanner was tested with a local build of the application.

Sample output Results of the scanner runnin appears as follows:

"jnlp":{2 items
"elapsed":float0.000278
"resource":string"https://example.com/uplib.jar"
}

Checklist

• [X] My code follows the style guidelines of this project
• [X] I have performed a self-review of and tested my code
• [X] I have commented my code, particularly in hard-to-understand areas
• [X] I have made corresponding changes to the documentation
• [X] My changes generate no new warnings

[phutelmyer]

Works well. Thought for a second we were missing the JNLP File taste in yara, but it looks like its been in there for quite some time. This makes that functional.

Thank you!