Merge pull request #27 from vulncheck-oss/26-rules-endpoint

tcampbPPU · web-flow · commit 6e7daa536a6d · 2024-07-22T10:40:11.000-04:00
Issue #26 - Add snort & suricata rules endpoint support
diff --git a/rules.go b/rules.go
@@ -0,0 +1,32 @@
+package sdk
+
+import (
+	"io"
+	"net/http"
+	"net/url"
+)
+
+// https://docs.vulncheck.com/api/rules
+func (c *Client) GetRule(rule string) (string, error) {
+
+	// in the future, we can add more indexes. For now, we only have initial-access
+	index := "initial-access"
+
+	client := &http.Client{}
+	req, err := http.NewRequest("GET", c.GetUrl()+"/v3/rules/"+index+"/"+url.QueryEscape(rule), nil)
+	if err != nil {
+		panic(err)
+	}
+
+	c.SetAuthHeader(req)
+
+	res, err := client.Do(req)
+	if err != nil {
+		panic(err)
+	}
+
+	defer res.Body.Close()
+	body, _ := io.ReadAll(res.Body)
+
+	return string(body), nil
+}
diff --git a/rules_test.go b/rules_test.go
@@ -0,0 +1,22 @@
+package sdk
+
+// LIVE TESTS - these tests require a valid token to run
+// func TestGetRule(t *testing.T) {
+// 	t.Run("GetRule", func(t *testing.T) {
+// 		client := Connect("URL", "")
+
+// 		data, err := client.GetRule("suricata")
+// 		if err != nil {
+// 			t.Errorf("Error: %v", err)
+// 		}
+
+// 		if data == "" {
+// 			t.Errorf("Expected a string, got %v", data)
+// 		}
+
+// 		data, err := client.GetRule("snort")
+// 		if err != nil {
+// 			t.Errorf("Error: %v", err)
+// 		}
+// 	})
+// }
