Commit Graph

336 Commits (0dea929665801d59f00179f6715524bed68a86cc)

Author SHA1 Message Date
Mzack9999 ed855c9224 adding random generators - close #234 2020-10-11 20:26:27 +02:00
Mzack9999 236f3b2dfb using § marker - Closes #347 2020-10-11 19:37:34 +02:00
Víctor Zamanillo ec725ed925 Better Result initialization with matches and extractions 2020-10-11 12:27:01 +02:00
Víctor Zamanillo c349aaf50a Fixed invalid memory address or nil pointer dereference of result 2020-10-11 12:23:20 +02:00
Víctor Zamanillo e6fc8cec99 Fixed noctx 2020-10-11 12:15:12 +02:00
Víctor Zamanillo b3b786a615 Fixed bodyclose 2020-10-11 12:14:57 +02:00
Víctor Zamanillo 21d0b08aaf Fixed shadow declaration of err 2020-10-11 11:53:59 +02:00
Víctor Zamanillo 5c00615c0d Fixed copylocks: return copies lock value: Result 2020-10-11 11:46:43 +02:00
Víctor Zamanillo b9cc87a361 Fixed maligned 2020-10-11 11:45:48 +02:00
Víctor Zamanillo 0901e37ee5 gofmt 2020-10-11 11:03:57 +02:00
Víctor Zamanillo c50a57ed72 Try to read ignore file from current working directory
Implements #350
2020-10-11 11:02:24 +02:00
Mzack9999 83aef7e468 added missing pipeline flag 2020-10-11 01:41:45 +02:00
Mzack9999 583b065ea4 small logic change 2020-10-10 20:59:19 +02:00
Mzack9999 371b58d20b reducing locking 2020-10-10 17:53:17 +02:00
Mzack9999 e91fd95e97
Merge branch 'master' into feature-turbo-intruder 2020-10-09 23:13:41 +02:00
Mzack9999 ac710e002d rate-limit rework 2020-10-09 23:11:07 +02:00
Mzack9999 c7301e4a6a adding connection pool within same template 2020-10-09 21:52:16 +02:00
Mzack9999 7ab1933e17 minor refactor 2020-10-09 02:23:38 +02:00
Mzack9999 eb73df76a1 working poc 2020-10-08 16:34:47 +02:00
Víctor Zamanillo 677706940a Fixed ignored input path
Only the template port  takes preference over the input URL, not paths.
2020-10-07 16:17:46 +02:00
bauthard 7da51a8dd5
Merge pull request #344 from projectdiscovery/feature-stop-at-first-match
adding stop at first http match cli option
2020-10-07 17:28:03 +05:30
Mzack9999 1fccfc103c solving conflict 2020-10-06 22:12:34 +02:00
Mzack9999 1ac7ae1c76 merge from master 2020-10-06 22:09:53 +02:00
Mzack9999 e12003c471 adding stop at first http match cli option 2020-10-06 21:38:44 +02:00
Mzack9999 ec497696ee connection header logic fix 2020-10-06 20:39:42 +02:00
Mzack9999 86ebb277bf adding flag to disable host header and content length 2020-10-05 22:19:48 +02:00
Mzack9999 6f52252608 nil pointer fix 2020-10-05 20:45:45 +02:00
Mzack9999 0229fa8f23 fixing new line character causing smuggling to fail 2020-10-05 02:21:20 +02:00
Mzack9999 6cfb4e7473 updating go modules 2020-10-03 20:54:03 +02:00
Mzack9999 d2cf8f1501
Merge branch 'master' into feature-raw-requests 2020-10-03 20:51:18 +02:00
Mzack9999 52d7db0d8f Merge branch 'master' into feature-raw-requests 2020-10-03 20:48:42 +02:00
Ice3man543 f26d518a83 Allow comments with # in nuclei-ignore 2020-10-02 15:02:11 +05:30
Mzack9999 1ad383338c converts duration to seconds 2020-10-01 18:16:24 +02:00
Mzack9999 0ecc798e2f begin of work on turbo intruder/pipelining 2020-10-01 01:08:43 +02:00
Mzack9999 7dcbc23693 adding missing type conversion 2020-09-30 20:36:57 +02:00
Mzack9999 fd1d24922e adding response time to DSL 2020-09-30 01:05:55 +02:00
Mzack9999 36801c4490 updated go modules 2020-09-29 22:14:37 +02:00
Mzack9999 0cfe496a4f wip 2020-09-29 00:24:38 +02:00
Víctor Zamanillo d515728bdd Handle data from char device on stdin 2020-09-28 12:50:00 +02:00
Mzack9999 e19ded6b26 wip - partial implementation of full raw http 2020-09-28 02:17:35 +02:00
Mzack9999 f940dfd903 wip rawhttp 2020-09-27 02:25:40 +02:00
Mzack9999 3756c743eb updating go modules 2020-09-24 01:12:57 +02:00
Mzack9999 2a117d7dc9
Merge pull request #251 from projectdiscovery/dont-quit-on-error
Don't quit http requests on an error
2020-09-24 01:10:50 +02:00
Mzack9999 207e78bf57 Merge branch 'rate-limit' of github.com:CasperGN/nuclei into CasperGN-rate-limit 2020-09-24 01:09:41 +02:00
Mzack9999 d73ea47ce3 wip 2020-09-23 23:44:13 +02:00
Mzack9999 c18a7ff7a4
Merge branch 'master' into dont-quit-on-error 2020-09-23 23:39:43 +02:00
Mzack9999 fb816b9973 small change to logic 2020-09-23 23:38:12 +02:00
Mzack9999 ef49270027 small code refactoring 2020-09-23 23:27:48 +02:00
Mzack9999 528793a9b7 Merge branch 'master' of github.com:organiccrap/nuclei into organiccrap-master 2020-09-23 23:25:18 +02:00
Mzack9999 12c9ca7b12 fixing go mod 2020-09-23 22:38:59 +02:00
Víctor Zamanillo 60005290b1 Initial adoption of golangci-lint for CI 2020-08-25 23:33:20 +02:00
bauthard 3a7379dbd7
Merge pull request #255 from vzamanillo/colorizer-fix
Colorizer initialization when using a custom workflow
2020-08-24 23:02:16 +05:30
Víctor Zamanillo bff551eca3 Colorizer initialization when using a custom workflow 2020-08-24 11:21:49 +02:00
Víctor Zamanillo bcbfc33d26 Removed "Loaded template" in favour of "Loading templates..."
"Loaded template" it's a bit noisy and redundant, a single "Loading templates..." before template paths iteration looks much better.
2020-08-24 08:46:56 +02:00
Víctor Zamanillo a02cb66403 Fixed SIGSEGV if no templates config exists 2020-08-23 21:49:27 +02:00
bauthard a725e61c13 Update config.go 2020-08-24 00:28:59 +05:30
Ice3man543 320f312be0 Added nucleiignore feature 2020-08-24 00:16:18 +05:30
Ice3man 3eb37df130
Merge pull request #250 from projectdiscovery/update-delete-fix
Don't delete previous nuclei directory
2020-08-23 11:00:49 -07:00
Ice3man543 d997539e87 Don't quit http requests on an error 2020-08-23 23:30:16 +05:30
Ice3man543 9cf12c6d9a Don't delete previous nuclei directory 2020-08-23 23:20:16 +05:30
Ice3man543 4e74cfd752 Added negative matchers support 2020-08-23 22:55:11 +05:30
rykkard 2b16e12c0f Fix issue where 'all' scope requires matches in both html parts 2020-08-18 20:51:05 -05:00
bauthard 2dfd245f54
Merge pull request #213 from Marmelatze/json-requests-dns
add json-requests for DNS
2020-08-13 17:41:42 +05:30
bauthard e22213f208
Merge pull request #219 from manuelbua/normalize-template-load-msg
Centralize template loaded info message, add output coloring
2020-08-10 11:55:06 +05:30
Manuel Bua 06eca0b2ea Fix minor issue where a dangling comma can cause any severity to match 2020-08-07 21:27:58 +02:00
Manuel Bua d752de530b Centralize template loaded info message, add output coloring 2020-08-07 14:30:57 +02:00
Florian Pfitzer 7a1aa770e9 add json-requests for DNS 2020-08-06 06:12:57 +02:00
bauthard 234d6245db
Merge pull request #208 from Marmelatze/fix-dns-result
fix no result found problem with and condition
2020-08-06 00:37:39 +05:30
Manuel Bua f339214f65 Merge branch 'master' into fix-180-support-template-exclusions 2020-08-04 21:43:06 +02:00
Florian Pfitzer 51412f679b fix no result found problem with and condition 2020-08-04 15:09:30 +02:00
Manuel Bua 65d89d6d87 Use "warning" log-level, prevent too many informative messages 2020-08-02 20:06:45 +02:00
Manuel Bua 136d1064f9 Merge branch 'master' into fix-191-filter-by-severity 2020-08-02 18:58:37 +02:00
Manuel Bua 801d738670 Merge branch 'master' into fix-180-support-template-exclusions 2020-08-02 18:58:30 +02:00
Manuel Bua da22532f81 Add support for severity filtering 2020-08-02 18:33:55 +02:00
Manuel Bua 4a355f0fc0 Add support for template exclusions 2020-08-02 15:48:10 +02:00
Manuel Bua c6df7fbd43 Refactor template resolution logic for reusability 2020-08-02 13:49:16 +02:00
Mzack9999 a0b11d4662 go modules update 2020-08-02 12:36:17 +02:00
bauthard a7fbf5c9e0
version update 2020-08-02 13:44:34 +05:30
Manuel Bua 87dc8bc650 Remove debug code 2020-08-01 23:01:28 +02:00
Manuel Bua a3c3875e38 Better wording in comments 2020-08-01 22:07:08 +02:00
Manuel Bua 63cfd354b9 Use global pipes for capturing, experimental unified rendering 2020-08-01 21:44:14 +02:00
Manuel Bua 29576f9ced Constrain rendering to a specific refresh rate 2020-08-01 15:07:04 +02:00
Manuel Bua 7088c9532e Merge branch 'master' into experimental-progressbar-live-results 2020-07-31 23:37:45 +02:00
Manuel Bua 02238c491b Use manual progressbar rendering to allow syncing with other output
Refactor into an interface to return a no-op impl, avoid the need to
conditionally invoke any of the methods.
2020-07-31 23:36:56 +02:00
bauthard 2685fdd1b9
Merge pull request #193 from projectdiscovery/bugfix-update-go-modules
updating gologger module
2020-07-31 22:29:26 +05:30
bauthard ad0630da19
Merge pull request #192 from projectdiscovery/169-bugfix
fixing relative path issue
2020-07-31 22:29:00 +05:30
Mzack9999 5d0e1b693e no-pbar to pbar 2020-07-31 18:46:23 +02:00
Mzack9999 97f4175bc4 updating gologger module 2020-07-31 18:16:55 +02:00
Manuel Bua 058c4ffbbf Experimental live results output with active progressbar
See 333809f3d6 for an early implementation of this.
2020-07-31 17:35:05 +02:00
Mzack9999 f4486ef89a fixing relative path issue 2020-07-31 17:13:51 +02:00
Manuel Bua 2ebc0cf83e Merge branch 'master' into fix-175-results-highlight 2020-07-29 21:57:44 +02:00
Mzack9999 5cc3d9fe14 corrected payload issue 2020-07-29 21:20:39 +02:00
Mzack9999 7edad4bb33 adding -no-pbar option 2020-07-29 20:07:13 +02:00
Mzack9999 d5d745e9b0 adding missing check to pointer 2020-07-29 19:50:54 +02:00
Manuel Bua 7d22f6cfb4 Merge branch 'master' into fix-175-results-highlight 2020-07-29 01:24:14 +02:00
Manuel Bua f8e52ced4e Add initial coloring support in output results 2020-07-29 00:43:05 +02:00
Mzack9999 db11acd7b2 version bump :) 2020-07-28 20:41:12 +02:00
Mzack9999 43a96b958a making progress bar respect silent flag 2020-07-28 20:39:07 +02:00
Manuel Bua 9d2539f856 Makes stdio capturing global
This dramatically lower chances of reaching max open files limit as it
works with two os.Pipe only, but it may be sub-optimal in some cases
such as with the `-debug` switch because there are no guarded writes
anymore when using `fmt.Fprintf` directly, such as when dumping request
or responses.
2020-07-27 21:35:24 +02:00
Manuel Bua 24c53628ea Capture additional DNS logging 2020-07-27 21:15:38 +02:00
Manuel Bua ba75e35a4b Merge branch 'master' into enumeration-progressbar 2020-07-27 20:45:47 +02:00
Manuel Bua 6209b25d9a Ensure an empty progressbar is aborted 2020-07-27 20:39:13 +02:00
Manuel Bua 53b280cf32 Ensure workflows can be run alone as well 2020-07-27 20:38:48 +02:00
Mzack9999 a7c1f43b41 adding speed to workflows 2020-07-27 19:36:40 +02:00
Manuel Bua 8718d52546 Ensure input URLs and requests are present before tracking any progress 2020-07-27 18:47:23 +02:00
Manuel Bua 3916983bdb Merge branch 'master' into enumeration-progressbar 2020-07-27 00:25:36 +02:00
Manuel Bua 06cffee6aa Add support for workflows 2020-07-27 00:00:34 +02:00
Mzack9999 f45e01eda6 multi-matcher correction 2020-07-26 22:07:03 +02:00
Mzack9999 c659d432b3 hacky silent output within workflow 2020-07-26 21:30:03 +02:00
Mzack9999 573088450f adding missing input flag 2020-07-26 21:17:42 +02:00
Mzack9999 8c437fbd40 adding workflow's same directory path search for template variables 2020-07-26 20:14:05 +02:00
Manuel Bua 660c8420c1 Remove unused code 2020-07-26 16:57:19 +02:00
Manuel Bua baa1715c44 Better input sanitization, skip empty lines 2020-07-26 16:56:53 +02:00
Manuel Bua 4d8131c8d8 Add support for DNS requests 2020-07-26 16:36:01 +02:00
Manuel Bua ea6229300d Merge branch 'master' into enumeration-progressbar 2020-07-26 15:46:21 +02:00
Manuel Bua 3cc79c2c49 Properly close file after use 2020-07-26 15:35:26 +02:00
Manuel Bua 32e20b13e6 Use single progressbar, tweak styling 2020-07-26 15:31:31 +02:00
Manuel Bua b33a2b6d16 Update outdated comment 2020-07-25 23:22:09 +02:00
Manuel Bua a9560336f4 Refactoring and unused code removal 2020-07-25 23:13:58 +02:00
Manuel Bua 48cf65b563 Automatically de-duplicate supplied user input 2020-07-25 23:02:24 +02:00
Mzack9999 5eb92abb80
Merge pull request #174 from projectdiscovery/bugfix-engine-rework
engine parallelism fix
2020-07-25 22:48:48 +02:00
Manuel Bua c967997a5a Merge branch 'bugfix-engine-rework' into enumeration-progressbar-next 2020-07-25 22:47:32 +02:00
Mzack9999 731241c90e fsm in-memory deduplication 2020-07-25 22:25:21 +02:00
Manuel Bua 24341bf34c Merge branch 'bugfix-engine-rework' into enumeration-progressbar-next 2020-07-25 22:18:28 +02:00
Manuel Bua 65d7246b2f Use custom formatter for percentage, ensure fixed string size is used 2020-07-25 22:15:45 +02:00
Mzack9999 3a8ee75b93 wip - output 2020-07-25 21:44:43 +02:00
Mzack9999 4cc9ad9100 wip - output 2020-07-25 21:15:28 +02:00
Manuel Bua d1c8527f1f Merge branch 'bugfix-engine-rework' into enumeration-progressbar-next 2020-07-25 21:05:47 +02:00
Manuel Bua d8e69cacf2 Pad bar name with spaces (approx. size due to escape codes) 2020-07-25 21:03:38 +02:00
Mzack9999 c05cf9f8c6 adding missing result bool 2020-07-25 20:45:38 +02:00
Manuel Bua bb24061628 Merge branch 'bugfix-engine-rework' into enumeration-progressbar-next 2020-07-25 20:33:01 +02:00
Manuel Bua 436e7223d8 Update output coloring, set a maximum length for template names 2020-07-25 20:29:12 +02:00
Mzack9999 5fa309cb82 2nd race bugfix 2020-07-25 20:11:46 +02:00
Manuel Bua dad381e66e Cleanup pluralization 2020-07-25 19:58:17 +02:00
Manuel Bua 88e683c0b5 Always use a global progress bar, protect input file reading 2020-07-25 15:16:41 +02:00
Manuel Bua 3bfdd0c381 Increment progress instead of altering totals, wrap more std streams 2020-07-25 00:46:18 +02:00
Manuel Bua 8aecbeb821 Experimental support for new parallelism 2020-07-24 22:30:15 +02:00
Wyatt Dahlenburg 6362fad61f Updated runner to ensure relative path was respected in configuration file when using wildcards 2020-07-24 15:29:08 -05:00
Manuel Bua c7d234fe5a Merge branch 'bugfix-engine-rework' into enumeration-progressbar-next 2020-07-24 20:29:04 +02:00
Mzack9999 ab2f96c9e9 more experimental parallelism 2020-07-24 18:12:16 +02:00
Mzack9999 ffdaffd9a7 wip - code refactor 2020-07-24 13:37:01 +02:00
Mzack9999 9f1ac66032 wip - new engine parallelism fix 2020-07-23 23:28:34 +02:00
Manuel Bua 362fee27a4 Initial update to latest updates 2020-07-23 20:19:19 +02:00
Wyatt Dahlenburg 959711edb0 Support template wildcarding 2020-07-23 13:06:58 -05:00
Manuel Bua 04875a55dd Merge branch 'master' into enumeration-progressbar-next
# Conflicts:
#	v2/internal/runner/runner.go
#	v2/pkg/executor/executer_http.go
2020-07-22 22:28:26 +02:00
Florian Pfitzer b3fb45d381 json-request option for request/response output in JSON matches 2020-07-22 11:17:58 +02:00
Mzack9999 eee452a8cd progress tracker fix 2020-07-21 20:51:58 +02:00
Mzack9999 b4aabf4b34 fixed return point 2020-07-20 21:23:04 +02:00
Mzack9999 5f0edcd8aa experimental new syntax 2020-07-20 01:37:07 +02:00
Mzack9999 148c0dec89 updated go modules 2020-07-20 00:50:25 +02:00