/
censys.go
129 lines (111 loc) · 3.29 KB
/
censys.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
package censys
import (
"encoding/json"
"fmt"
"net/http"
"net/url"
"github.com/pkg/errors"
"github.com/projectdiscovery/uncover/uncover"
)
const (
URL = "https://search.censys.io/api/v2/hosts/search?q=%s&per_page=%d&virtual_hosts=EXCLUDE"
MaxPerPage = 100
)
type Agent struct {
options *uncover.AgentOptions
}
func New() (uncover.Agent, error) {
return &Agent{}, nil
}
func NewWithOptions(options *uncover.AgentOptions) (uncover.Agent, error) {
return &Agent{options: options}, nil
}
func (agent *Agent) Name() string {
return "censys"
}
func (agent *Agent) Query(session *uncover.Session, query *uncover.Query) (chan uncover.Result, error) {
if session.Keys.CensysToken == "" || session.Keys.CensysSecret == "" {
return nil, errors.New("empty censys keys")
}
results := make(chan uncover.Result)
go func() {
defer close(results)
var numberOfResults int
nextCursor := ""
for {
censysRequest := &CensysRequest{
Query: query.Query,
PerPage: MaxPerPage,
Cursor: nextCursor,
}
censysResponse := agent.query(URL, session, censysRequest, results)
if censysResponse == nil {
break
}
nextCursor = censysResponse.Results.Links.Next
if nextCursor == "" || numberOfResults > query.Limit || len(censysResponse.Results.Hits) == 0 {
break
}
numberOfResults += len(censysResponse.Results.Hits)
}
}()
return results, nil
}
func (agent *Agent) queryURL(session *uncover.Session, URL string, censysRequest *CensysRequest) (*http.Response, error) {
censysURL := fmt.Sprintf(URL, url.QueryEscape(censysRequest.Query), censysRequest.PerPage)
if censysRequest.Cursor != "" {
censysURL += fmt.Sprintf("&cursor=%s", censysRequest.Cursor)
}
request, err := uncover.NewHTTPRequest(http.MethodGet, censysURL, nil)
if err != nil {
return nil, err
}
request.Header.Set("Accept", "application/json")
request.SetBasicAuth(session.Keys.CensysToken, session.Keys.CensysSecret)
agent.options.RateLimiter.Take()
return session.Do(request)
}
func (agent *Agent) query(URL string, session *uncover.Session, censysRequest *CensysRequest, results chan uncover.Result) *CensysResponse {
// query certificates
resp, err := agent.queryURL(session, URL, censysRequest)
if err != nil {
results <- uncover.Result{Source: agent.Name(), Error: err}
// httputil.DrainResponseBody(resp)
return nil
}
censysResponse := &CensysResponse{}
if err := json.NewDecoder(resp.Body).Decode(censysResponse); err != nil {
results <- uncover.Result{Source: agent.Name(), Error: err}
return nil
}
for _, censysResult := range censysResponse.Results.Hits {
result := uncover.Result{Source: agent.Name()}
if ip, ok := censysResult["ip"]; ok {
result.IP = ip.(string)
}
if name, ok := censysResult["name"]; ok {
result.Host = name.(string)
}
if services, ok := censysResult["services"]; ok {
for _, serviceData := range services.([]interface{}) {
if serviceData, ok := serviceData.(map[string]interface{}); ok {
result.Port = int(serviceData["port"].(float64))
raw, _ := json.Marshal(censysResult)
result.Raw = raw
results <- result
}
}
} else {
raw, _ := json.Marshal(censysResult)
result.Raw = raw
// only ip
results <- result
}
}
return censysResponse
}
type CensysRequest struct {
Query string
PerPage int
Cursor string
}