apiclient.xyz/abuse.ch
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix(core): update

Browse Source
This commit is contained in:
Philipp Kunz
2023-07-28 07:31:59 +02:00
parent 461ec9d6b6
commit 429df4c0d1
10 changed files with 319 additions and 154 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ts/00_commitinfo_data.ts
View File

@ -3,6 +3,6 @@
*/
export const commitinfo = {
name: '@apiclient.xyz/abuse.ch',
version: '1.0.2',
version: '1.0.3',
description: 'an unofficial client to retrieve abuse.ch data'
}

76
ts/abuse.ch.classes.threatfox.ts Normal file
View File

@ -0,0 +1,76 @@
import * as plugins from './plugins.js';
import * as paths from './paths.js';
export interface IThreatFoxData {
ID: string;
Dateadded: string;
URL: string;
URLStatus: string;
Threat: string;
AssociatedTags: string;
ThreatFoxLink: string;
Reporter: string;
}
export class ThreatFox {
private static readonly THREATFOX_API_URL: string = 'https://threatfox.abuse.ch/export/csv/full'; // Replace with actual API endpoint
public async getData(): Promise<IThreatFoxData[]> {
plugins.smartfile.fs.ensureDirSync(paths.threatFoxTmp);
const zipPath = plugins.path.join(paths.threatFoxTmp, 'threatfox.zip');
const csvPath = plugins.path.join(paths.threatFoxTmp, 'full.csv');
const response = await fetch(ThreatFox.THREATFOX_API_URL);
if (!response.ok) {
throw new Error(`HTTP error! status: ${response.status}`);
}
await new Promise((resolve, reject) => {
const fileStream = plugins.fs.createWriteStream(zipPath);
// @ts-ignore
const readable = plugins.stream.Readable.from(response.body);
plugins.stream.pipeline(readable, fileStream, (err) => {
if (err) reject(err);
else resolve(null);
});
});
await new Promise((resolve, reject) => {
plugins.stream.pipeline(
plugins.fs.createReadStream(zipPath),
plugins.unzipper.Extract({ path: paths.threatFoxTmp }),
(err) => {
if (err) reject(err);
else resolve(null);
}
);
});
let data: IThreatFoxData[] = [];
await new Promise((resolve, reject) => {
plugins.stream.pipeline(
plugins.fs.createReadStream(csvPath),
plugins.csv({
headers: ['ID', 'Dateadded', 'URL', 'URLStatus', 'Threat', 'AssociatedTags', 'ThreatFoxLink', 'Reporter'],
mapValues: ({ header, value }) => value.trim()
}),
(err) => {
if (err) reject(err);
}
)
.on('data', (row) => {
data.push(row);
})
.on('end', resolve)
.on('error', reject);
});
data = data.map((item) => {
return {
...item,
URL: item.URL?.replace('http', 'ht-NOCLICK-NOLINK-tp'),
}
});
plugins.smartfile.fs.removeSync(paths.threatFoxTmp);
return data;
}
}

76
ts/abuse.ch.classes.urlhouse.ts Normal file
View File

@ -0,0 +1,76 @@
import * as plugins from './plugins.js';
import * as paths from './paths.js';
export interface IUrlHouseData {
ID: string;
Dateadded: string;
URL: string;
URLStatus: string;
Threat: string;
AssociatedTags: string;
UrlHausLink: string;
Reporter: string;
}
export class UrlHouse {
private static readonly URLHOUSE_API_URL: string = 'https://urlhaus.abuse.ch/downloads/csv/';
public async getData(): Promise<IUrlHouseData[]> {
plugins.smartfile.fs.ensureDirSync(paths.urlHouseTmp);
const zipPath = plugins.path.join(paths.urlHouseTmp, 'urlhaus.zip');
const csvPath = plugins.path.join(paths.urlHouseTmp, 'csv.txt');
const response = await fetch(UrlHouse.URLHOUSE_API_URL);
if (!response.ok) {
throw new Error(`HTTP error! status: ${response.status}`);
}
await new Promise((resolve, reject) => {
const fileStream = plugins.fs.createWriteStream(zipPath);
// @ts-ignore
const readable = plugins.stream.Readable.from(response.body);
plugins.stream.pipeline(readable, fileStream, (err) => {
if (err) reject(err);
else resolve(null);
});
});
await new Promise((resolve, reject) => {
plugins.stream.pipeline(
plugins.fs.createReadStream(zipPath),
plugins.unzipper.Extract({ path: paths.urlHouseTmp }),
(err) => {
if (err) reject(err);
else resolve(null);
}
);
});
let data: IUrlHouseData[] = [];
await new Promise((resolve, reject) => {
plugins.stream.pipeline(
plugins.fs.createReadStream(csvPath),
plugins.csv({
headers: ['ID', 'Dateadded', 'URL', 'URLStatus', 'Threat', 'AssociatedTags', 'UrlHausLink', 'Reporter'],
mapValues: ({ header, value }) => value.trim()
}),
(err) => {
if (err) reject(err);
}
)
.on('data', (row) => {
data.push(row);
})
.on('end', resolve)
.on('error', reject);
});
data = data.map((item) => {
return {
...item,
URL: item.URL?.replace('http', 'ht-NOCLICK-NOLINK-tp'),
}
});
plugins.smartfile.fs.removeSync(paths.urlHouseTmp);
return data;
}
}

0
ts/abuse.ch.plugins.ts
View File

5
ts/index.ts
View File

@ -1,3 +1,2 @@
import * as plugins from './abuse.ch.plugins.js';
export let demoExport = 'Hi there! :) This is an exported string';
export * from './abuse.ch.classes.urlhouse.js';
export * from './abuse.ch.classes.threatfox.js';

7
ts/paths.ts Normal file
View File

@ -0,0 +1,7 @@
import * as plugins from './plugins.js';
export const packageDir = plugins.path.join(plugins.smartpath.get.dirnameFromImportMetaUrl(import.meta.url), '../');
export const nogitDir = plugins.path.join(packageDir, '.nogit');
export const urlHouseTmp = plugins.path.join(nogitDir, 'tmp.urlhaus');
export const threatFoxTmp = plugins.path.join(nogitDir, 'tmp.threatfox');

25
ts/plugins.ts Normal file
View File

@ -0,0 +1,25 @@
// node native
import * as stream from 'stream';
import * as util from 'util';
import unzipper from 'unzipper';
import csv from 'csv-parser';
import * as fs from 'fs';
import * as path from 'path';
export {
stream,
util,
unzipper,
csv,
fs,
path,
}
// @push.rocks scope
import * as smartfile from '@push.rocks/smartfile';
import * as smartpath from '@push.rocks/smartpath';
export {
smartfile,
smartpath,
}