mirror of
https://github.com/kubeshark/kubeshark.git
synced 2025-10-30 20:59:12 +00:00
113 lines
2.9 KiB
Go
113 lines
2.9 KiB
Go
package utils
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
"github.com/google/martian/har"
|
|
"mizuserver/pkg/tap"
|
|
"net/url"
|
|
"strings"
|
|
|
|
)
|
|
|
|
func FilterSensitiveInfoFromHarRequest(harOutputItem *tap.OutputChannelItem) {
|
|
filterHarHeaders(harOutputItem.HarEntry.Request.Headers)
|
|
filterHarHeaders(harOutputItem.HarEntry.Response.Headers)
|
|
|
|
harOutputItem.HarEntry.Request.Cookies = nil
|
|
harOutputItem.HarEntry.Response.Cookies = nil
|
|
|
|
harOutputItem.HarEntry.Request.URL = filterUrl(harOutputItem.HarEntry.Request.URL)
|
|
for i, queryString := range harOutputItem.HarEntry.Request.QueryString {
|
|
if isFieldNameSensitive(queryString.Name) {
|
|
harOutputItem.HarEntry.Request.QueryString[i].Value = maskedFieldPlaceholderValue
|
|
}
|
|
}
|
|
|
|
if harOutputItem.HarEntry.Request.PostData != nil {
|
|
filteredRequestBody, err := filterHttpBody([]byte(harOutputItem.HarEntry.Request.PostData.Text))
|
|
if err == nil {
|
|
harOutputItem.HarEntry.Request.PostData.Text = string(filteredRequestBody)
|
|
}
|
|
}
|
|
if harOutputItem.HarEntry.Response.Content != nil {
|
|
filteredResponseBody, err := filterHttpBody(harOutputItem.HarEntry.Response.Content.Text)
|
|
if err == nil {
|
|
harOutputItem.HarEntry.Response.Content.Text = filteredResponseBody
|
|
}
|
|
}
|
|
}
|
|
|
|
func filterHarHeaders(headers []har.Header) {
|
|
for i, header := range headers {
|
|
if isFieldNameSensitive(header.Name) {
|
|
headers[i].Value = maskedFieldPlaceholderValue
|
|
}
|
|
}
|
|
}
|
|
|
|
func isFieldNameSensitive(fieldName string) bool {
|
|
name := strings.ToLower(fieldName)
|
|
name = strings.ReplaceAll(name, "_", "")
|
|
name = strings.ReplaceAll(name, "-", "")
|
|
name = strings.ReplaceAll(name, " ", "")
|
|
|
|
for _, sensitiveField := range personallyIdentifiableDataFields {
|
|
if strings.Contains(name, sensitiveField) {
|
|
return true
|
|
}
|
|
}
|
|
|
|
return false
|
|
}
|
|
|
|
func filterHttpBody(bytes []byte) ([]byte, error){
|
|
var bodyJsonMap map[string] interface{}
|
|
err := json.Unmarshal(bytes ,&bodyJsonMap)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
filterJsonMap(bodyJsonMap)
|
|
return json.Marshal(bodyJsonMap)
|
|
}
|
|
|
|
func filterJsonMap(jsonMap map[string] interface{}) {
|
|
for key, value := range jsonMap {
|
|
if value == nil {
|
|
return
|
|
}
|
|
nestedMap, isNested := value.(map[string] interface{})
|
|
if isNested {
|
|
filterJsonMap(nestedMap)
|
|
} else {
|
|
if isFieldNameSensitive(key) {
|
|
jsonMap[key] = maskedFieldPlaceholderValue
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
func filterUrl(originalUrl string) string {
|
|
parsedUrl, err := url.Parse(originalUrl)
|
|
if err != nil {
|
|
return originalUrl
|
|
} else {
|
|
if len(parsedUrl.RawQuery) > 0 {
|
|
newQueryArgs := make([]string, 0)
|
|
for urlQueryParamName, urlQueryParamValues := range parsedUrl.Query() {
|
|
newValues := urlQueryParamValues
|
|
if isFieldNameSensitive(urlQueryParamName) {
|
|
newValues = []string {maskedFieldPlaceholderValue}
|
|
}
|
|
for _, paramValue := range newValues {
|
|
newQueryArgs = append(newQueryArgs, fmt.Sprintf("%s=%s", urlQueryParamName, paramValue))
|
|
}
|
|
}
|
|
|
|
parsedUrl.RawQuery = strings.Join(newQueryArgs, "&")
|
|
}
|
|
|
|
return parsedUrl.String()
|
|
}
|
|
}
|