daffainfo
/
nuclei
mirror of https://github.com/daffainfo/nuclei.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,385 Commits
1 Branch
0 Tags
28 MiB
Commit Graph

640 Commits (0682b485d01a412a0d8639c804786cffa1bb00f6)

Author SHA1 Message Date
Sandeep Singh f78ff42dbe
Merge branch 'dev' into more-protocols 2021-11-09 18:27:13 +05:30
Ice3man543 9b364080ea Fixed some edge cases with status codes in redirect chains 2021-11-09 17:55:42 +05:30
mzack 93060ec0e3 adding tests 2021-11-09 08:50:18 +01:00
Ice3man543 a9f586369a Misc fixes to request normalization 2021-11-09 06:20:10 +05:30
Ice3man543 155b8cfed9 fix #1173: perform matching on all redirect responses instead of final 2021-11-09 06:00:30 +05:30
mzack 9675efa680 Adding support for custom headers via CLI in raw http requests 2021-11-08 19:33:54 +01:00
Sandeep Singh 952a821c6c
Merge pull request #1208 from projectdiscovery/colored_hexdump 
Enhance hexdump content highlighting
 2021-11-08 18:30:00 +05:30
Ice3man543 5e6b6c6b14 Show errors on invalid URL typo 2021-11-08 17:56:14 +05:30
Ice3man543 7d0529aaf7 Fixed gzip encoding bug + added test case 2021-11-08 17:39:08 +05:30
Ice3man543 ce7534112a Fixed linter issues 2021-11-08 16:10:04 +05:30
Ice3man543 d772dedef1 Make default part for new protocols to response 2021-11-08 16:01:45 +05:30
Ice3man543 213853c45d Merge from dev 2021-11-08 15:40:18 +05:30
sandeep 89c6e76772 Revert "feat: Checking socks5 proxy before launching a scan #1001 (#1169)" 
This reverts commit c125df4ef6.
 2021-11-05 20:09:00 +05:30
Sajad Parra 6d0d3e1c35 add unique check to test case 2021-11-05 20:00:46 +05:30
LuitelSamikshya c125df4ef6
feat: Checking socks5 proxy before launching a scan #1001 (#1169) 
* "#issue1001"

* changes for #issue1001

* minor changes

* minor

* flag consolidation and proxy file #issue1001

* readme changes

* review changes

* enviroment variable changes

* review comment changes

* review changes

* removed commented out code
 2021-11-05 09:21:52 -05:00
Ice3man543 0a09b9e451 Added test + misc 2021-11-05 16:59:24 +05:30
Sajad Parra 4d8eaad0a3 add unit test for unique interactsh url #1068 2021-11-05 15:27:49 +05:30
Ice3man543 8ad3ebcd05 Made code changes as per review comments 2021-11-05 03:01:41 +05:30
Sajad Parra 41393fc09d unique payload per interactsh placeholder #1068 2021-11-04 17:13:47 +05:30
Ice3man543 f3675d547a URL parsing addition for websocket URLs 2021-11-04 03:02:29 +05:30
Ice3man543 12321c23af Splitting big function into small 2021-11-04 02:56:59 +05:30
Ice3man543 53164c3f3e Misc linter related changes 2021-11-04 02:44:47 +05:30
Ice3man543 a60b10afca Added an enum for attackType 2021-11-04 02:41:56 +05:30
Ice3man543 a7c8d0473c Removed duplicate attackType logic + move attackType to generators 2021-11-04 02:28:48 +05:30
Ice3man543 91a7b4df6a Validate opcode before proceeding with websocket 2021-11-03 20:08:11 +05:30
Ice3man543 645ae30a47 Moved to an enum for TemplateType in protocols 2021-11-03 19:53:45 +05:30
Ice3man543 390ca8b3c6 Merge from dev 2021-11-03 18:58:00 +05:30
Ice3man543 4a0229c13d Websocket protocol rename 2021-11-03 18:36:54 +05:30
Ice3man543 cf7628c450 Misc changes according to review 2021-11-03 02:34:48 +05:30
Ice3man c2df13ea22
Merge pull request #1185 from projectdiscovery/dns-variables 
Added more variables for DNS requests
 2021-11-02 17:54:45 +05:30
Ice3man 191797380e
bug: Bug in URL parsing for unsafe templates #830 
Fixed raw request path not correct with unsafe
 2021-11-02 10:42:59 +02:00
forgedhallpass 8f6280dc9d refactor: In case of binary data, show a hexadecimal view as well #1080 
* small enhancements with regards to dumping responses
 2021-11-01 20:45:54 +02:00
forgedhallpass b477508521 feat: In case of binary data, show a hexadecimal view as well #1080 
* the ASCII column in the hex dump represents non-printable ASCII characters with a "." character, so in order to enable proper highlighting, those characters has to be replaced in the generated regex as well
 2021-11-01 20:44:55 +02:00
Ice3man543 f8c6f0ba64 Added debug for SSL 2021-11-01 18:02:45 +05:30
Ice3man543 bb05be7b95 Added integration tests for websocket + misc fixes 2021-11-01 15:47:20 +05:30
forgedhallpass b91166a034 Merge remote-tracking branch 'origin/dev' into colored_hexdump 2021-11-01 11:57:45 +02:00
Sandeep Singh 1863e8f76a
Merge pull request #1130 from zerodivisi0n/feature/case-insensitive-match 
Add case-insensitive option to template
 2021-11-01 15:15:22 +05:30
Ice3man 331ae0f03b
Merge pull request #1171 from kchason/client-cert-auth 
Add Support for Client Certificate Authentication
 2021-10-31 02:08:18 +05:30
forgedhallpass 38f2cf245e feat: In case of binary data, show a hexadecimal view as well #1080 
* added Compact hex view to the output if the -vv flag is provided
 2021-10-30 16:41:10 +03:00
Alexey Zhuchkov 463c1c0142 Use template path in output request 2021-10-30 14:28:30 +03:00
forgedhallpass 04e3c0165a feat: In case of binary data, show a hexadecimal view as well #1080 2021-10-30 13:17:47 +03:00
Alexey Zhuchkov 897f11213c Add unit tests for case-insensitive flag in protocols 2021-10-29 19:11:09 +03:00
Alexey Zhuchkov bfb69b2ff2 Extract getMatchPart method in protocols 2021-10-29 19:10:17 +03:00
Ice3man543 75f18f169c Adding response highlighting to websocket 2021-10-29 18:30:24 +05:30
Ice3man543 a10b79d7a8 merge from engine-refactor and dev 2021-10-29 18:26:06 +05:30
Ice3man543 15d467f9ff Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into more-protocols 2021-10-29 17:54:02 +05:30
Ice3man543 5393cc4cd5 Adjusting packages for more API-type design 2021-10-29 03:19:43 +05:30
Ice3man543 d124dbacc7 Moved all important execution stuff to engine 2021-10-28 17:20:07 +05:30
kchason c3503922c9 Merge remote-tracking branch 'origin/client-cert-auth' into client-cert-auth 
# Conflicts:
#	v2/pkg/protocols/headless/engine/http_client.go
 2021-10-27 12:15:12 -04:00
kchason 4a1440a17b Merge dev branch 2021-10-27 12:13:23 -04:00
kchason a539184ffd Switch logic to a shared package 2021-10-27 12:11:42 -04:00
Ice3man543 c16c93fe7c refactor the modules to core 2021-10-27 16:50:36 +05:30
Ice3man 808ed4edd2
Merge branch 'dev' into client-cert-auth 2021-10-26 16:42:02 +05:30
Ice3man e0afa2cee4
Merge pull request #1157 from projectdiscovery/issue-1095-realistic-http-client 
Making headless httpclient more similar to real browsers
 2021-10-26 16:39:21 +05:30
Ice3man543 ba108580c6 Fixed fqdn issue with tld parser 2021-10-25 19:36:37 +05:30
Ice3man543 09a2d88364 Misc 2021-10-25 19:33:37 +05:30
Ice3man543 bfaea5b89d Added more variables for DNS requests 2021-10-25 18:35:45 +05:30
Ice3man543 4a29443752 fix panic: Only generate curl command if request is not nil 2021-10-25 18:22:33 +05:30
Ice3man aa8b15c1f4
Merge pull request #1111 from projectdiscovery/issue-829-network-read-all 
Adding support to read tcp data stream till the end
 2021-10-25 17:28:56 +05:30
Ice3man 542aba861f
Merge pull request #1155 from projectdiscovery/issue-1129-headless-proxy 
Adding proxy socks support to headless browser
 2021-10-25 17:27:52 +05:30
kchason 99492911a3 Revert "Missing error package" 
This reverts commit 18deddb07a.
 2021-10-21 14:21:52 -04:00
kchason 18deddb07a Missing error package 2021-10-21 14:10:47 -04:00
kchason 4b70560cc9 Merge branch 'master' into client-cert-auth 2021-10-21 13:59:39 -04:00
kchason f5b9eb32a1 Client certificate authentication for pooled connections 2021-10-21 13:54:56 -04:00
kchason 0a57a1aa4d Client certificate authentication for headless connections 2021-10-21 13:48:13 -04:00
Ice3man f25c7c3a1d
Merge branch 'dev' into more-protocols 2021-10-20 21:29:28 +05:30
Sandeep Singh 52382df350
Merge pull request #1121 from projectdiscovery/self-contained-templates 
Added self-contained http/network requests implementation
 2021-10-20 20:54:38 +05:30
Ice3man543 a6c5dbf7fb added todo 2021-10-20 20:29:28 +05:30
Ice3man543 bb6486910f typo 2021-10-20 20:27:36 +05:30
Ice3man543 36edde2241 Added comment for old logic 2021-10-20 20:26:40 +05:30
Ice3man543 b8628a6e5b fixed comment 2021-10-20 20:17:00 +05:30
mzack e6728e8ff9 Making headless httpclient more similar to real browsers 2021-10-20 13:26:47 +02:00
mzack cbc5192e9a Adding proxy socks support to headless browser 2021-10-20 00:02:06 +02:00
mzack ae99a88f52 timer.after => timer 2021-10-19 19:39:33 +02:00
Ice3man543 55eab08faa Slight change to formatting 2021-10-19 21:33:17 +05:30
Ice3man543 612ab61df4 Reworked self-contained requests to template 2021-10-19 21:29:18 +05:30
mzack 0ba3b19f1f fixing merge issues 2021-10-19 11:31:36 +02:00
Mzack9999 cdfafa3013
Merge branch 'dev' into issue-829-network-read-all 2021-10-19 11:28:33 +02:00
Ice3man543 6e7318bcba Misc output fix 2021-10-18 20:34:26 +05:30
Ice3man 6741cfb4f4
Merge pull request #1144 from projectdiscovery/issue-1129-headless-proxy 
Fixing http proxy not working in headless browser
 2021-10-18 19:54:23 +05:30
Ice3man543 0385241732 Misc 2021-10-18 19:48:47 +05:30
Ice3man543 eac57fb229 Fixed host header not working in raw request 2021-10-18 18:39:32 +05:30
mzack a48e5f52e2 Adding support for interactsh in http payloads 2021-10-18 14:25:25 +02:00
mzack fbea7535ca removing unrecognized routine 2021-10-18 09:38:43 +02:00
mzack 83924e203d fixing object assignment 2021-10-18 09:36:22 +02:00
mzack c8edd4ce4a Fixing http proxy not working in headless browser 2021-10-18 09:32:38 +02:00
Ice3man543 e3644cf0d8 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into self-contained-templates 2021-10-17 18:50:16 +05:30
Ice3man543 8c9d9a77bf Added self-contained to network protocol 2021-10-17 18:50:07 +05:30
mzack 5f9b2b3df3 Adding support for CLi/Env variables in network requests 2021-10-17 11:52:48 +02:00
Ice3man543 a820594506 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into self-contained-templates 2021-10-17 10:25:25 +05:30
Sandeep Singh 0d8b74932e
Merge pull request #1128 from projectdiscovery/issue-667-internal-keyword-priority-over-response-headers 
Ensuring internal keyword has priority over response headers in internal map
 2021-10-16 11:14:57 +05:30
Sandeep Singh f7759766f7
Merge pull request #1117 from projectdiscovery/issue-1018-gbk 
Improving gbk detection coverage
 2021-10-16 11:10:03 +05:30
mzack 662fb63156 adding missing decoding on response body 2021-10-16 00:17:33 +02:00
mzack dcc5a2840b ensures internal keyword has priority over response headers in internal map - fixes #667 2021-10-15 18:45:40 +02:00
mzack e7d632a726 moving gbk detection code into helper function 2021-10-15 18:17:00 +02:00
Ice3man 0e3c656103
Added curl command to http request report (#1107) 
* Added curl command to http request report
 2021-10-15 11:25:50 +03:00
Ice3man543 736a530bde Added self-contained http requests implementation 2021-10-14 22:26:01 +05:30
forgedhallpass 9b7a105766
Headless tests refactor - test fix (#1120) 
* Add missing headless actions tests #1102
* test refactor (removed parallel test execution)
 2021-10-14 19:11:07 +03:00
forgedhallpass 7d6386449d Revert "Add missing headless actions tests #1102" 
This reverts commit 4d14063cbe.
 2021-10-14 17:38:56 +03:00
forgedhallpass 4d14063cbe Add missing headless actions tests #1102 
* test refactor
 2021-10-14 17:35:32 +03:00
forgedhallpass 84fb341c7d
Merge pull request #1108 from pmareke/feat/add-missing-examples-in-headless-engine-protocol-actions 
Add missing tests in headless engine protocol actions
 2021-10-14 17:33:04 +03:00
Ice3man c4cc0ad0bf
Merge pull request #1114 from projectdiscovery/misc-cleanups 
Misc sniper payload cleanups
 2021-10-14 16:13:44 +05:30
mzack 88dc16c910 Improving gbk detection coverage 2021-10-14 00:17:24 +02:00
Pedro Lopez Mareque 53281660be chore: refactor tests 2021-10-13 20:45:04 +02:00
Pedro Lopez Mareque 8ee4ed2c17 chore: fix build 2021-10-13 20:29:28 +02:00
Pedro Lopez Mareque 101a1973a4 chore: fix pr comments 2021-10-13 19:52:43 +02:00
forgedhallpass 46d0058470
Merge pull request #1064 from projectdiscovery/colorize_responses 
Implementation for: Add coloring to debug information #999
 2021-10-13 20:51:19 +03:00
forgedhallpass c0ef419048 Add/Expose Headless action that waits until an element appears #1096 
* add timeout and pollTime options
 2021-10-13 20:08:10 +03:00
forgedhallpass 88ee74d68a
Merge pull request #1101 from pmareke/feat/expose-rod-wait-visible 
Expose WaitVisible method from the rod library
 2021-10-13 20:00:13 +03:00
sandeep a9cb83ff27 misc sniper cleanups 2021-10-13 13:19:00 +05:30
mzack f8d5d02570 Adding support to read tcp data stream till the end 2021-10-12 23:28:24 +02:00
forgedhallpass 435ec5cd5d Do not show AND matcher information in the command line output if debug is not enabled #1081 2021-10-12 20:06:55 +03:00
forgedhallpass 8392143944 Merge remote-tracking branch 'origin/dev' into colorize_responses 2021-10-11 14:00:53 +03:00
Pedro Lopez Mareque 322a6213c6 chore: refactor tests 2021-10-10 17:33:18 +02:00
Pedro Lopez Mareque 8502785a92 chore: add more tests 2021-10-10 17:18:53 +02:00
Pedro Lopez Mareque 62bfdf30b4 chore: add more tests 2021-10-10 13:17:35 +02:00
Pedro Lopez Mareque 3cd1b70bc0 chore: fix screenshot path 2021-10-10 08:36:44 +02:00
Pedro Lopez Mareque e53f54b53f chore: remove files 2021-10-10 08:30:32 +02:00
Pedro Lopez Mareque 2b1ab54a6d chore: add tests 2021-10-10 08:29:58 +02:00
Pedro Lopez Mareque 6d88f26b1f chore: add tests 2021-10-09 23:19:07 +02:00
Pedro Lopez Mareque 05c8f2580e chore: add tests 2021-10-09 19:37:12 +02:00
Pedro Lopez Mareque 4383d8557f chore: add timeout test 2021-10-09 17:30:45 +02:00
Pedro Lopez Mareque 7e12774543 chore: add helper method 2021-10-09 17:08:00 +02:00
Ice3man e79c6262b9
Merge branch 'dev' into cli-variables-as-payload 2021-10-09 19:57:48 +05:30
Ice3man 7de4cc902e
Merge pull request #1089 from projectdiscovery/variables-check 
Added check for unresolved variables
 2021-10-09 19:57:02 +05:30
Ice3man543 df1c133f68 Misc 2021-10-09 19:53:37 +05:30
Ice3man543 3584a4b12a Added validation for invalid payload attack type 2021-10-09 19:53:12 +05:30
Ice3man543 aacbb28052 Removed sniper + made batteringram default + misc 2021-10-09 19:46:23 +05:30
Ice3man e5d021c766
Merge pull request #1104 from projectdiscovery/read-response-http2-3 
Misc changes to offlinehttp
 2021-10-09 18:56:05 +05:30
Ice3man d78841631e
Merge pull request #1074 from nothinux/read-response-http2-3 
Read response from http2 or http3
 2021-10-09 18:53:58 +05:30
Ice3man543 2c88370b35 Made the version validation a bit better 2021-10-09 18:53:17 +05:30
Pedro Lopez Mareque 6ebeaf84a3 feat: add missin actions tests 2021-10-09 13:18:43 +02:00
Pedro Lopez Mareque bd14b0f2ac chore: remove block 2021-10-09 13:00:22 +02:00
Pedro Lopez Mareque d06cd671e2 chore: remove .MustWaitVisible to .MustVisible 2021-10-09 12:29:08 +02:00
Pedro Lopez Mareque 3386c1c5bd chore: add new test 2021-10-09 12:26:18 +02:00
Pedro Lopez Mareque 4e54a61b65 feat: expose WaitVisible method from the rod library 2021-10-09 08:39:29 +02:00
forgedhallpass fc66195b28 [feature] Add coloring to debug information #999 
* Code review changes
 2021-10-08 20:18:00 +03:00
forgedhallpass 52b599ab5d [feature] Add coloring to debug information #999 
* fixed typo in the name of the file
 2021-10-07 22:09:08 +03:00
forgedhallpass 0a9704ebd8 [feature] Add coloring to debug information #999 
* code-review fixes
 2021-10-07 20:54:12 +03:00
Ice3man543 8d6193ef1f Misc 2021-10-07 19:40:16 +05:30
Ice3man543 92e410fdb5 Added variable check to dns protocol 2021-10-07 19:38:31 +05:30
mzack 7651edfa62 misc 2021-10-07 13:02:15 +02:00
mzack 12b6b2ca89 Add support for CLI payload variables 2021-10-07 12:36:27 +02:00
Ice3man543 514d6f94ec Added support for urlencoded variable variation 2021-10-07 05:35:32 +05:30
Ice3man543 4669ee22ce Misc changes to http request execution with variables 2021-10-07 04:50:34 +05:30
Ice3man543 0541040e6b Added templateID to error message 2021-10-07 04:41:31 +05:30
Ice3man543 247ede7170 Misc 2021-10-07 01:48:48 +05:30
Ice3man543 92857497f3 Fixed variable check regex 2021-10-07 01:48:10 +05:30
Ice3man543 ce13bf34d0 Added check for unresolved variables 2021-10-07 01:40:49 +05:30
forgedhallpass b5c161d267 [feature] Add coloring to debug information #999 
* extracted common MakeResultEvent logic and added the MakeResultEventItem method to the Request interface
 2021-10-06 21:54:52 +03:00