daffainfo
/
nuclei
mirror of https://github.com/daffainfo/nuclei.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
4,976 Commits
1 Branch
0 Tags
28 MiB
Commit Graph

296 Commits (dev)

Author SHA1 Message Date
Mzack9999 d576db3893
Merge pull request #5035 from projectdiscovery/bugfix-4947-internal-resolvers 
Fixing internal resolver override
 2024-04-15 17:02:09 +01:00
GitHub Action f2c0b4b443 Auto Generate Syntax Docs + JSONSchema [Mon Apr 15 14:44:52 UTC 2024] 🤖 2024-04-15 14:44:52 +00:00
Mzack9999 998a25d744
Merge pull request #5034 from projectdiscovery/feat-4948-dns-srv 
adding dns srv type
 2024-04-15 15:43:44 +01:00
Levente Kováts 0d5e26d7bd
run workflow subtemplates with new ScanContext (#5031) 
fix projectdiscovery/nuclei#4933
 2024-04-12 04:20:11 +05:30
mzack 38e185c410 simpler logic 2024-04-12 00:32:06 +02:00
mzack 7b71886309 Fixing internal resolver override 2024-04-11 19:10:31 +02:00
mzack 2ed33e4723 adding dns srv type 2024-04-11 18:57:50 +02:00
mzack 582a85d9c0 mimic follow behavior 2024-04-09 18:31:22 +02:00
mzack 7e363984b2 Merge branch 'dev' into feat-3072-init-adaptive-speed 2024-04-09 15:19:51 +02:00
Tarun Koyalwar 375d1ddcde
fix missing port in javascript result (#5023) 
* add ip support in js output

* js: if dialed ip is missing resolve and get first ip

* ssl: fix incorrect port in output
 2024-04-09 02:09:44 +05:30
sandeep 24120e0e82 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into dev 2024-04-09 01:02:22 +05:30
sandeep 1ed3213565 version update 2024-04-09 01:02:11 +05:30
Tarun Koyalwar 74dee426ed
fuzz: fix missing expression evaluation before use (#5019) 2024-04-09 00:58:35 +05:30
Tarun Koyalwar f159e8fa66
fix dynamic extractor + payloads edgecase by sending req sequentially (#5016) 
* explicitly handle edgecase #4993 instead of hot fix

* fix typo
 2024-04-08 22:21:26 +05:30
Ice3man a844e6f7ab
feat: fixed bug due to parallel auto setting in http (#4992) 
* feat: fixed bug due to parallel auto setting in http

* increased threshold

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
 2024-04-08 16:04:57 +05:30
Tarun Koyalwar b86fcb5546
fix index out of range error (#4998) 2024-04-08 14:11:32 +05:30
Muhammad Daffa ffbe5deebb
feat: added asreproastable (#4990) 
* feat: added asreproastable

* ldap: remove FilterAccountEnabled from AsRepRoastable

* run 'make jsupdate'

---------

Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
 2024-04-08 03:31:30 +05:30
Ramana Reddy 8c27ca2591
fix(schema): generation of missing JSON schema definitions (#4995) 
* fix(schema): generation of missing JSON schema definitions

* make headers and data to accept multi-type inputs

* misc update
 2024-04-08 03:29:42 +05:30
Mzack9999 d0a0c6d0c3 internal sync fix + speed up 2024-04-05 15:45:21 +02:00
mzack af7450737a making payload concurrency dynamic via direct int change 2024-04-03 23:06:08 +02:00
Mzack9999 a140a4194e boh - placing resize in wrapped method 2024-04-03 19:40:09 +02:00
Mzack9999 620287f76b deprecating rlm 2024-04-03 19:28:39 +02:00
Mzack9999 3c62b56fd9 panic at the pool 2024-04-03 19:02:30 +02:00
Mzack9999 774db61655 lightweight adaptivity on workpool 2024-04-03 18:50:46 +02:00
Mzack9999 a8d1393e96 init- using resizable components 2024-04-03 17:50:57 +02:00
Dogan Can Bakir e99420603f
fix raw req single slash issue (#4955) 
* fix raw req single slash issue

* fix raw unsafe req single slash issue

* commit to last commit

* minor
 2024-04-03 19:39:35 +05:30
sandeep b687c11f6b misc option update 2024-04-03 18:51:34 +05:30
David Fisher 143f179e7b
Remove prefix v from Sarif exporters (#4976) 
because: In config.Version there is already
a `v`` prefix, such as `v3.2.2``.

Prior to this commit the versions were being
tagged as `vv3.2.2`

this commit: Removes the 'v' prefix from the
Sarif exporter in the ToolDetails for both
FullName and SemanticVersion.
 2024-04-03 17:19:27 +05:30
Tarun Koyalwar 3907e20bde
fix multiple panics & missing matcher-status in flow templates (#4978) 
* validate and fix empty internal-event

* fix on error with interactsh req

* disable clustering in flow & multiproto

* fix empty/missing matcher-status result

* fix cluster unit test

* fix no results found unit test
 2024-04-03 17:19:06 +05:30
Tarun Koyalwar 9951626f1f
bump utils (#4975) 
* bump utils

* fix windows build + dev version update

* use utils from main

* use v0.0.87 of utils
 2024-04-02 16:32:52 +05:30
GitHub Action 39ee0b7c39 Auto Generate Syntax Docs + JSONSchema [Mon Apr 1 13:49:30 UTC 2024] 🤖 2024-04-01 13:49:30 +00:00
Tarun Koyalwar 255032f4f2
pre-condition in code , fuzz and other misc updates (#4966) 
* fuzz: rename 'filters' -> 'pre-condition'

* code proto: pre-condition + integration test

* feat: dsl document generator

* update dsl page header

* fix lint error

* add js defined helper funcs in docs

* remove panic recovery unless its for third party(go-rod,goja)

* handle dynamic values flattening edgecase in flow+multiprotocol

* fix order of kv in form-data (failing test)

* fix template loading counters

* Revert "handle dynamic values flattening edgecase in flow+multiprotocol"

This reverts commit 58fdd4faf7df5d654b46a9585011f614d5c98aa4.

* fix flow iteration using 'iterate'
 2024-04-01 19:18:21 +05:30
Tarun Koyalwar 1d8b10be2a
fix empty template-id in scan logs (#4969) 2024-04-01 12:25:17 +05:30
Tarun Koyalwar 25e7799c09
req_url_pattern for vuln_hash calculation + unit test (#4964) 2024-03-30 23:50:31 +05:30
GitHub Action 5ce912e316 Auto Generate Syntax Docs + JSONSchema [Fri Mar 29 08:03:07 UTC 2024] 🤖 2024-03-29 08:03:07 +00:00
Tarun Koyalwar e88889b263
add `-dast` flag and multiple bug fixes for dast templates (#4941) 
* add default get method

* remove residual payload logic from old implementation

* fuzz: clone current state of component

* fuzz: bug fix stacking of payloads in multiple mode

* improve stdout template loading stats

* stdout: force display warnings if no templates are loaded

* update flags in README.md

* quote non-ascii chars in extractor output

* aws request signature can only be used in signed & verified tmpls

* deprecate request signature

* remove logic related to deprecated fuzzing input

* update test to use ordered params

* fix interactsh-url lazy eval: #4946

* output: skip unnecessary updates when unescaping

* updates as per requested changes
 2024-03-29 13:31:30 +05:30
Tarun Koyalwar 17d67f6608 minor updates 2024-03-27 23:52:08 +05:30
kchason fb3c3d828d
Initial switch of libraries 2024-03-25 15:52:20 -04:00
Tarun Koyalwar c1bd4f82ea
Multiple bug fixes in query param fuzzing (#4925) 
* fuzz: check and handle typed slice

* do not query encode params + fuzz/allow duplicates params

* sometimes order matters ~query params

* component: fix broken iterator

* result upload add meta params
 2024-03-25 10:08:26 +05:30
sandeep 8a9dc11f36 version update 2024-03-17 16:29:50 +05:30
Tarun Koyalwar 59a624f2bd
add more nil checks and create default map (#4896) 
* add more nil checks and create default map

* fix more panic in interactsh

* early exit
 2024-03-17 16:25:26 +05:30
sandeep 3ee1bfa4ba version update 2024-03-15 18:53:38 +05:30
Sandeep Singh 0b70d58665
Merge pull request #4893 from projectdiscovery/js-hot-fix 
js protocol: fix breaking json export issue
 2024-03-15 18:50:31 +05:30
Mzack9999 7d06c97a0d
Merge pull request #4867 from projectdiscovery/maint-runner-cache 
Internal Templates Loader/Parser caches refactoring
 2024-03-15 14:05:12 +01:00
Tarun Koyalwar a8ec9819fc bump goja version + nuclei version 2024-03-15 18:12:57 +05:30
mzack bf2699462f lint 2024-03-15 13:40:28 +01:00
mzack 2dd8c8c5ae removing err 2024-03-15 13:36:57 +01:00
Tarun Koyalwar 94817ca300 js protocol: fix breaking json export issue 2024-03-15 18:04:08 +05:30
Mzack9999 df67578d98
Merge pull request #4885 from debasishbsws/go-git-version-upgrade 
update go-git version from v4 to v5 fix GHSA-449p-3h89-pw88 GHSA-mw99-9chc-xw7r
 2024-03-15 00:44:56 +01:00
mzack d988de45f6 merge 2024-03-15 00:01:09 +01:00