Added vhost templating support

v2/internal/progress/progress.go

@@ -186,5 +186,7 @@ func (p *Progress) Stop() {
 			gologger.Warningf("Couldn't stop statistics: %s\n", err)
 		}
 	}
-	_ = p.server.Shutdown(context.Background())
+	if p.server != nil {
+		_ = p.server.Shutdown(context.Background())
+	}
 }

v2/internal/runner/options.go

@@ -13,6 +13,7 @@ import (
 // Options contains the configuration options for tuning
 // the template requesting process.
 type Options struct {
+	Vhost                bool                   // Mark the input specified as VHOST input
 	RandomAgent          bool                   // Generate random User-Agent
 	Metrics              bool                   // Metrics enables display of metrics via an http endpoint
 	Sandbox              bool                   // Sandbox mode allows users to run isolated workflows with system commands disabled
@@ -69,6 +70,7 @@ func (m *multiStringFlag) Set(value string) error {
 func ParseOptions() *Options {
 	options := &Options{}
 
+	flag.BoolVar(&options.Vhost, "vhost", false, "Input supplied is a comma-separated vhost list")
 	flag.BoolVar(&options.Sandbox, "sandbox", false, "Run workflows in isolated sandbox mode")
 	flag.BoolVar(&options.Metrics, "metrics", false, "Expose nuclei metrics on a port")
 	flag.IntVar(&options.MetricsPort, "metrics-port", 9092, "Port to expose nuclei metrics on")

v2/internal/runner/processor.go

@@ -46,6 +46,7 @@ func (r *Runner) processTemplateWithList(p *progress.Progress, template *templat
 			Template:      template,
 			DNSRequest:    value,
 			Writer:        r.output,
+			VHost:         r.options.Vhost,
 			JSON:          r.options.JSON,
 			JSONRequests:  r.options.JSONRequests,
 			NoMeta:        r.options.NoMeta,
@@ -68,6 +69,7 @@ func (r *Runner) processTemplateWithList(p *progress.Progress, template *templat
 			RandomAgent:      r.options.RandomAgent,
 			CustomHeaders:    r.options.CustomHeaders,
 			JSON:             r.options.JSON,
+			Vhost:            r.options.Vhost,
 			JSONRequests:     r.options.JSONRequests,
 			NoMeta:           r.options.NoMeta,
 			CookieReuse:      value.CookieReuse,
@@ -114,7 +116,6 @@ func (r *Runner) processTemplateWithList(p *progress.Progress, template *templat
 				gologger.Warningf("[%s] Could not execute step: %s\n", r.colorizer.Colorizer.BrightBlue(template.ID), result.Error)
 			}
 		}(URL)
-
 		return nil
 	})
 
@@ -235,6 +236,7 @@ func (r *Runner) preloadWorkflowTemplates(p *progress.Progress, workflow *workfl
 					ProxySocksURL:    r.options.ProxySocksURL,
 					RandomAgent:      r.options.RandomAgent,
 					CustomHeaders:    r.options.CustomHeaders,
+					Vhost:            r.options.Vhost,
 					JSON:             r.options.JSON,
 					JSONRequests:     r.options.JSONRequests,
 					CookieJar:        jar,
@@ -253,6 +255,7 @@ func (r *Runner) preloadWorkflowTemplates(p *progress.Progress, workflow *workfl
 					Debug:         r.options.Debug,
 					Template:      t,
 					Writer:        r.output,
+					VHost:         r.options.Vhost,
 					JSON:          r.options.JSON,
 					JSONRequests:  r.options.JSONRequests,
 					ColoredOutput: !r.options.NoColor,
@@ -309,6 +312,7 @@ func (r *Runner) preloadWorkflowTemplates(p *progress.Progress, workflow *workfl
 						ProxySocksURL: r.options.ProxySocksURL,
 						RandomAgent:   r.options.RandomAgent,
 						CustomHeaders: r.options.CustomHeaders,
+						Vhost:         r.options.Vhost,
 						CookieJar:     jar,
 						TraceLog:      r.traceLog,
 					}
@@ -317,6 +321,7 @@ func (r *Runner) preloadWorkflowTemplates(p *progress.Progress, workflow *workfl
 						Debug:    r.options.Debug,
 						Template: t,
 						Writer:   r.output,
+						VHost:    r.options.Vhost,
 						TraceLog: r.traceLog,
 					}
 				}

v2/pkg/executer/executer_dns.go

@@ -4,6 +4,7 @@ import (
 	"fmt"
 	"os"
 	"regexp"
+	"strings"
 
 	"github.com/pkg/errors"
 	"github.com/projectdiscovery/gologger"
@@ -28,6 +29,7 @@ type DNSExecuter struct {
 	jsonRequest   bool
 	noMeta        bool
 	Results       bool
+	vhost         bool
 	traceLog      tracelog.Log
 	dnsClient     *retryabledns.Client
 	template      *templates.Template
@@ -54,6 +56,7 @@ type DNSOptions struct {
 	JSON          bool
 	JSONRequests  bool
 	NoMeta        bool
+	VHost         bool
 	TraceLog      tracelog.Log
 	Template      *templates.Template
 	DNSRequest    *requests.DNSRequest
@@ -76,6 +79,7 @@ func NewDNSExecuter(options *DNSOptions) *DNSExecuter {
 		traceLog:      options.TraceLog,
 		jsonRequest:   options.JSONRequests,
 		dnsClient:     dnsClient,
+		vhost:         options.VHost,
 		template:      options.Template,
 		dnsRequest:    options.DNSRequest,
 		writer:        options.Writer,
@@ -84,13 +88,16 @@ func NewDNSExecuter(options *DNSOptions) *DNSExecuter {
 		decolorizer:   options.Decolorizer,
 		ratelimiter:   options.RateLimiter,
 	}
-
 	return executer
 }
 
 // ExecuteDNS executes the DNS request on a URL
 func (e *DNSExecuter) ExecuteDNS(p *progress.Progress, reqURL string) *Result {
 	result := &Result{}
+	if e.vhost {
+		parts := strings.Split(reqURL, ",")
+		reqURL = parts[0]
+	}
 
 	// Parse the URL and return domain if URL.
 	var domain string

v2/pkg/executer/executer_http.go

@@ -61,6 +61,7 @@ type HTTPExecuter struct {
 	traceLog         tracelog.Log
 	decolorizer      *regexp.Regexp
 	randomAgent      bool
+	vhost            bool
 	coloredOutput    bool
 	debug            bool
 	Results          bool
@@ -81,6 +82,7 @@ type HTTPOptions struct {
 	CookieReuse      bool
 	ColoredOutput    bool
 	StopAtFirstMatch bool
+	Vhost            bool
 	Timeout          int
 	Retries          int
 	ProxyURL         string
@@ -151,9 +153,9 @@ func NewHTTPExecuter(options *HTTPOptions) (*HTTPExecuter, error) {
 		decolorizer:      options.Decolorizer,
 		stopAtFirstMatch: options.StopAtFirstMatch,
 		pf:               options.PF,
+		vhost:            options.Vhost,
 		ratelimiter:      options.RateLimiter,
 	}
-
 	return executer, nil
 }
 
@@ -337,6 +339,13 @@ func (e *HTTPExecuter) ExecuteTurboHTTP(reqURL string) *Result {
 
 // ExecuteHTTP executes the HTTP request on a URL
 func (e *HTTPExecuter) ExecuteHTTP(p *progress.Progress, reqURL string) *Result {
+	var customHost string
+	if e.vhost {
+		parts := strings.Split(reqURL, ",")
+		reqURL = parts[0]
+		customHost = parts[1]
+	}
+
 	// verify if pipeline was requested
 	if e.bulkHTTPRequest.Pipeline {
 		return e.ExecuteTurboHTTP(reqURL)
@@ -383,6 +392,15 @@ func (e *HTTPExecuter) ExecuteHTTP(p *progress.Progress, reqURL string) *Result
 			result.Error = err
 			p.Drop(remaining)
 		} else {
+			if e.vhost {
+				if httpRequest.Request != nil {
+					httpRequest.Request.Host = customHost
+				}
+				if httpRequest.RawRequest != nil && httpRequest.RawRequest.Headers != nil {
+					httpRequest.RawRequest.Headers["Host"] = customHost
+				}
+			}
+
 			e.ratelimiter.Take()
 			// If the request was built correctly then execute it
 			format := "%s_" + strconv.Itoa(requestNumber)

v2/pkg/requests/bulk-http-request.go

@@ -132,7 +132,6 @@ func (r *BulkHTTPRequest) MakeHTTPRequest(baseURL string, dynamicValues map[stri
 	if strings.Contains(data, "\n") {
 		return r.makeHTTPRequestFromRaw(ctx, baseURL, data, values)
 	}
-
 	return r.makeHTTPRequestFromModel(ctx, data, values)
 }
 
@@ -151,7 +150,6 @@ func (r *BulkHTTPRequest) makeHTTPRequestFromModel(ctx context.Context, data str
 	if err != nil {
 		return nil, err
 	}
-
 	return &HTTPRequest{Request: request}, nil
 }