Detector improvements (#125)

* New tokens and endpoints  (#115)

Co-authored-by: dmarquero <[email protected]>

Author: dustin-decker

pkg/common/http.go

@@ -127,3 +127,11 @@ func SaneHttpClient() *http.Client {
 	httpClient.Transport = NewCustomTransport(nil)
 	return httpClient
 }
+
+//custom timeout for some scanners
+func SaneHttpClientTimeOut(timeOutSeconds int64) *http.Client {
+	httpClient := &http.Client{}
+	httpClient.Timeout = time.Second * time.Duration(timeOutSeconds)
+	httpClient.Transport = NewCustomTransport(nil)
+	return httpClient
+}

pkg/detectors/allsports/allsports.go

@@ -58,7 +58,10 @@ func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (result
 			res, err := client.Do(req)
 			if err == nil {
 				defer res.Body.Close()
-				bodyBytes, _ := ioutil.ReadAll(res.Body)
+				bodyBytes, err := ioutil.ReadAll(res.Body)
+				if err != nil {
+					continue
+				}
 				body := string(bodyBytes)
 
 				if strings.Contains(body, "success") {

pkg/detectors/amadeus/amadeus.go

@@ -65,7 +65,10 @@ func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (result
 				res, err := client.Do(req)
 				if err == nil {
 					defer res.Body.Close()
-					bodyBytes, _ := ioutil.ReadAll(res.Body)
+					bodyBytes, err := ioutil.ReadAll(res.Body)
+					if err != nil {
+						continue
+					}
 					body := string(bodyBytes)
 					if (res.StatusCode >= 200 && res.StatusCode < 300) && strings.Contains(body, "access_token") {
 						s1.Verified = true

pkg/detectors/auth0oauth/auth0oauth.go

@@ -90,7 +90,10 @@ func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (result
 					res, err := client.Do(req)
 					if err == nil {
 						defer res.Body.Close()
-						bodyBytes, _ := ioutil.ReadAll(res.Body)
+						bodyBytes, err := ioutil.ReadAll(res.Body)
+						if err != nil {
+							continue
+						}
 						body := string(bodyBytes)
 
 						// if client_id and client_secret is valid -> 403 {"error":"invalid_grant","error_description":"Invalid authorization code"}

pkg/detectors/baseapiio/baseapiio.go

@@ -57,7 +57,10 @@ func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (result
 			res, err := client.Do(req)
 			if err == nil {
 				defer res.Body.Close()
-				bodyBytes, _ := ioutil.ReadAll(res.Body)
+				bodyBytes, err := ioutil.ReadAll(res.Body)
+				if err != nil {
+					continue
+				}
 				body := string(bodyBytes)
 
 				if strings.Contains(body, "items") {

pkg/detectors/besttime/besttime.go

@@ -55,7 +55,10 @@ func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (result
 			res, err := client.Do(req)
 			if err == nil {
 				defer res.Body.Close()
-				bodyBytes, _ := ioutil.ReadAll(res.Body)
+				bodyBytes, err := ioutil.ReadAll(res.Body)
+				if err != nil {
+					continue
+				}
 				body := string(bodyBytes)
 
 				if strings.Contains(body, `"status": "OK"`) {

pkg/detectors/borgbase/borgbase.go

@@ -64,13 +64,13 @@ func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (result
 				bodyBytes, err := ioutil.ReadAll(res.Body)
 				if err == nil {
 					bodyString := string(bodyBytes)
-					errCode := strings.Contains(bodyString, `"errors"`)
+					validResponse := strings.Contains(bodyString, `"sshList":[]`)
 					defer res.Body.Close()
 					if res.StatusCode >= 200 && res.StatusCode < 300 {
-						if errCode {
-							s1.Verified = false
-						} else {
+						if validResponse {
 							s1.Verified = true
+						} else {
+							s1.Verified = false
 						}
 					} else {
 						//This function will check false positives for common test words, but also it will make sure the key appears 'random' enough to be a real key

pkg/detectors/bulbul/bulbul.go

@@ -55,7 +55,11 @@ func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (result
 			}
 			res, err := client.Do(req)
 			if err == nil {
-				bodyBytes, _ := ioutil.ReadAll(res.Body)
+				bodyBytes, err := ioutil.ReadAll(res.Body)
+
+				if err != nil {
+					continue
+				}
 
 				bodyString := string(bodyBytes)
 				validResponse := strings.Contains(bodyString, `"message":"Successful",`)

pkg/detectors/cexio/cexio.go

@@ -92,14 +92,19 @@ func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (result
 						defer res.Body.Close()
 
 						body, err := ioutil.ReadAll(res.Body)
+						if err != nil {
+							continue
+						}
+						bodyString := string(body)
+						validResponse := strings.Contains(bodyString, `timestamp`)
 						if err != nil {
 							fmt.Print(err.Error())
 						}
 
 						var responseObject Response
 						json.Unmarshal(body, &responseObject)
 
-						if res.StatusCode >= 200 && res.StatusCode < 300 && responseObject.Error == "" {
+						if res.StatusCode >= 200 && res.StatusCode < 300 && validResponse {
 							s1.Verified = true
 						} else {
 							//This function will check false positives for common test words, but also it will make sure the key appears 'random' enough to be a real key

pkg/detectors/coinlayer/coinlayer.go

@@ -49,7 +49,7 @@ func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (result
 		}
 
 		if verify {
-			req, err := http.NewRequestWithContext(ctx, "GET", fmt.Sprintf("https://api.coinlayer.com/api/live?access_key=%s", resMatch), nil)
+			req, err := http.NewRequestWithContext(ctx, "GET", fmt.Sprintf("https://api.coinlayer.com/api/livelive?access_key=%s", resMatch), nil)
 			if err != nil {
 				continue
 			}
@@ -58,13 +58,13 @@ func (s Scanner) FromData(ctx context.Context, verify bool, data []byte) (result
 				bodyBytes, err := ioutil.ReadAll(res.Body)
 				if err == nil {
 					bodyString := string(bodyBytes)
-					errCode := strings.Contains(bodyString, `"code":101`)
+					validResponse := strings.Contains(bodyString, `"success": true`) || strings.Contains(bodyString, `"info":"Access Restricted - Your current Subscription Plan does not support HTTPS Encryption."`)
 					defer res.Body.Close()
 					if res.StatusCode >= 200 && res.StatusCode < 300 {
-						if errCode {
-							s1.Verified = false
-						} else {
+						if validResponse {
 							s1.Verified = true
+						} else {
+							s1.Verified = false
 						}
 					} else {
 						//This function will check false positives for common test words, but also it will make sure the key appears 'random' enough to be a real key