More structure

cmd/ip.go

@@ -10,106 +10,12 @@ import (
 	"fmt"
 	"log"
 	"os"
+	"soc-cli/internal/apis"
 
 	"github.com/spf13/cobra"
 	"github.com/spf13/viper"
 )
 
-const (
-	greyNoiseAPIURL = "https://api.greynoise.io/v3/community/%s"
-	ipInfoAPIURL    = "https://ipinfo.io/%s?token=%s"
-	abuseAPIURL     = "https://api.abuseipdb.com/api/v2/check?ipAddress=%s&maxAgeInDays=90"
-)
-
-type ipInfo struct {
-	IP       string `json:"ip"`
-	Country  string `json:"country"`
-	Hostname string `json:"hostname"`
-	Org      string `json:"org"`
-}
-
-type greyNoiseInfo struct {
-	IP             string `json:"ip"`
-	Noise          bool   `json:"noise"`
-	Riot           bool   `json:"riot"`
-	Classification string `json:"classification"`
-	Name           string `json:"name"`
-	Link           string `json:"link"`
-}
-
-type abuseIPDBResponse struct {
-	Data struct {
-		IPAddress            string   `json:"ipAddress"`
-		IsPublic             bool     `json:"isPublic"`
-		IPVersion            int      `json:"ipVersion"`
-		IsWhitelisted        bool     `json:"isWhitelisted"`
-		AbuseConfidenceScore int      `json:"abuseConfidenceScore"`
-		CountryCode          string   `json:"countryCode"`
-		UsageType            string   `json:"usageType"`
-		ISP                  string   `json:"isp"`
-		Domain               string   `json:"domain"`
-		Hostnames            []string `json:"hostnames"`
-		TotalReports         int      `json:"totalReports"`
-		LastReportedAt       string   `json:"lastReportedAt"`
-		Reports              []struct {
-			ReporterID      int    `json:"reporterId"`
-			ReporterCountry string `json:"reporterCountry"`
-			ReportedAt      string `json:"reportedAt"`
-			Comment         string `json:"comment"`
-		} `json:"reports"`
-	} `json:"data"`
-}
-
-// Get threat intelligence from GreyNoise API
-func getGreyNoiseData(ip string, apiKey string) *greyNoiseInfo {
-	apiUrl := fmt.Sprintf(greyNoiseAPIURL, ip)
-
-	headers := map[string]string{
-		"key": apiKey,
-	}
-
-	var greyNoiseData greyNoiseInfo
-
-	err := MakeAPIRequest(apiUrl, headers, &greyNoiseData)
-	if err != nil {
-		log.Fatalf("Error fetching AbuseIPDB info: %v", err)
-	}
-
-	return &greyNoiseData
-}
-
-func getIPInfo(ip string, apiKey string) *ipInfo {
-	apiUrl := fmt.Sprintf(ipInfoAPIURL, ip, apiKey)
-
-	var info ipInfo
-
-	err := MakeAPIRequest(apiUrl, nil, &info)
-	if err != nil {
-		log.Fatalf("Error fetching IP info: %v", err)
-	}
-
-	return &info
-}
-
-// getAbuseIPDBInfo fetches data from AbuseIPDB for a specific IP address
-func getAbuseIPDBInfo(ip string, apiKey string) *abuseIPDBResponse {
-	apiUrl := fmt.Sprintf(abuseAPIURL, ip)
-
-	headers := map[string]string{
-		"Key":    apiKey,
-		"Accept": "application/json",
-	}
-
-	var data abuseIPDBResponse
-
-	err := MakeAPIRequest(apiUrl, headers, &data)
-	if err != nil {
-		log.Fatalf("Error fetching AbuseIPDB info: %v", err)
-	}
-
-	return &data
-}
-
 func analyzeIP(ip string) {
 
 	// Validate provided IP address
@@ -141,12 +47,12 @@ func analyzeIP(ip string) {
 	}
 
 	// Fetch IpInfo api
-	ipInfoData := getIPInfo(ip, ipInfoApiKey)
+	ipInfoData := apis.GetIPInfo(ip, ipInfoApiKey)
 
 	// Fetch GreyNoise threat intelligence
-	greyNoiseData := getGreyNoiseData(ip, greyNoiseApiKey)
+	greyNoiseData := apis.GetGreyNoiseData(ip, greyNoiseApiKey)
 
-	abuseIPDBData := getAbuseIPDBInfo(ip, abuseIPDBApiKey)
+	abuseIPDBData := apis.GetAbuseIPDBInfo(ip, abuseIPDBApiKey)
 
 	// Print the IP information
 	fmt.Println(Blue + "IP information from IPInfo" + Reset)

internal/apis/abuseipdb.go

@@ -0,0 +1,51 @@
+package apis
+
+import (
+	"fmt"
+	"log"
+	"soc-cli/internal/util"
+)
+
+const abuseAPIURL = "https://api.abuseipdb.com/api/v2/check?ipAddress=%s&maxAgeInDays=90"
+
+type abuseIPDBResponse struct {
+	Data struct {
+		IPAddress            string   `json:"ipAddress"`
+		IsPublic             bool     `json:"isPublic"`
+		IPVersion            int      `json:"ipVersion"`
+		IsWhitelisted        bool     `json:"isWhitelisted"`
+		AbuseConfidenceScore int      `json:"abuseConfidenceScore"`
+		CountryCode          string   `json:"countryCode"`
+		UsageType            string   `json:"usageType"`
+		ISP                  string   `json:"isp"`
+		Domain               string   `json:"domain"`
+		Hostnames            []string `json:"hostnames"`
+		TotalReports         int      `json:"totalReports"`
+		LastReportedAt       string   `json:"lastReportedAt"`
+		Reports              []struct {
+			ReporterID      int    `json:"reporterId"`
+			ReporterCountry string `json:"reporterCountry"`
+			ReportedAt      string `json:"reportedAt"`
+			Comment         string `json:"comment"`
+		} `json:"reports"`
+	} `json:"data"`
+}
+
+// getAbuseIPDBInfo fetches data from AbuseIPDB for a specific IP address
+func GetAbuseIPDBInfo(ip string, apiKey string) *abuseIPDBResponse {
+	apiUrl := fmt.Sprintf(abuseAPIURL, ip)
+
+	headers := map[string]string{
+		"Key":    apiKey,
+		"Accept": "application/json",
+	}
+
+	var data abuseIPDBResponse
+
+	err := util.MakeAPIRequest(apiUrl, headers, &data)
+	if err != nil {
+		log.Fatalf("Error fetching AbuseIPDB info: %v", err)
+	}
+
+	return &data
+}

internal/apis/greynoise.go

@@ -0,0 +1,36 @@
+package apis
+
+import (
+	"fmt"
+	"log"
+	"soc-cli/internal/util"
+)
+
+const greyNoiseAPIURL = "https://api.greynoise.io/v3/community/%s"
+
+type greyNoiseInfo struct {
+	IP             string `json:"ip"`
+	Noise          bool   `json:"noise"`
+	Riot           bool   `json:"riot"`
+	Classification string `json:"classification"`
+	Name           string `json:"name"`
+	Link           string `json:"link"`
+}
+
+// Get threat intelligence from GreyNoise API
+func GetGreyNoiseData(ip string, apiKey string) *greyNoiseInfo {
+	apiUrl := fmt.Sprintf(greyNoiseAPIURL, ip)
+
+	headers := map[string]string{
+		"key": apiKey,
+	}
+
+	var greyNoiseData greyNoiseInfo
+
+	err := util.MakeAPIRequest(apiUrl, headers, &greyNoiseData)
+	if err != nil {
+		log.Fatalf("Error fetching AbuseIPDB info: %v", err)
+	}
+
+	return &greyNoiseData
+}

internal/apis/ipinfo.go

@@ -0,0 +1,29 @@
+package apis
+
+import (
+	"fmt"
+	"log"
+	"soc-cli/internal/util"
+)
+
+const ipInfoAPIURL = "https://ipinfo.io/%s?token=%s"
+
+type ipInfo struct {
+	IP       string `json:"ip"`
+	Country  string `json:"country"`
+	Hostname string `json:"hostname"`
+	Org      string `json:"org"`
+}
+
+func GetIPInfo(ip string, apiKey string) *ipInfo {
+	apiUrl := fmt.Sprintf(ipInfoAPIURL, ip, apiKey)
+
+	var info ipInfo
+
+	err := util.MakeAPIRequest(apiUrl, nil, &info)
+	if err != nil {
+		log.Fatalf("Error fetching IP info: %v", err)
+	}
+
+	return &info
+}

cmd/api.go → internal/util/api.go

@@ -1,4 +1,4 @@
-package cmd
+package util
 
 import (
 	"encoding/json"