forked from phish-report/IOK
-
Notifications
You must be signed in to change notification settings - Fork 0
/
nethttp.go
61 lines (53 loc) · 1.71 KB
/
nethttp.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
package iok
import (
"bytes"
"context"
"golang.org/x/net/html"
"io"
"net/http"
"net/url"
)
// InputFromHTTPResponse takes a *http.Response returns an Input suitable for calling GetMatches with.
// This is significantly weaker than e.g. InputFromURLScan because it cannot:
// * Identify all requests made by the page (e.g. ones triggered by JavaScript)
// * Fetch the contents of JavaScript/CSS files referenced by the page
func InputFromHTTPResponse(resp *http.Response) (Input, error) {
input := Input{
Hostname: resp.Request.URL.Hostname(),
Requests: []string{resp.Request.URL.String()},
}
for header, values := range resp.Header {
for _, value := range values {
input.Headers = append(input.Headers, http.CanonicalHeaderKey(header)+": "+value)
}
}
for _, cookie := range resp.Cookies() {
input.Cookies = append(input.Cookies, cookie.Name+"="+cookie.Value)
}
body, err := io.ReadAll(resp.Body)
if err != nil {
return input, err
}
input.HTML = string(body)
input.DOM = string(body)
// parse any JS/CSS from the html
node, err := html.Parse(bytes.NewReader(body))
if err == nil {
extractHTML(node, &input,
extractEmbeddedAssets,
extractTitle,
extractRequests(resp.Request.URL), // TODO: what is the correct url to use here in the case of redirects?
)
}
return input, nil
}
// InputFromURL fetches the contents of a URL using the supplied HTTP client
// and constructs an Input suitable for calling GetMatches with.
func InputFromURL(ctx context.Context, u *url.URL, client *http.Client) (Input, error) {
req, _ := http.NewRequestWithContext(ctx, http.MethodGet, u.String(), nil)
resp, err := client.Do(req)
if err != nil {
return Input{}, err
}
return InputFromHTTPResponse(resp)
}