daffainfo
/
nuclei
mirror of https://github.com/daffainfo/nuclei.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,218 Commits
1 Branch
0 Tags
28 MiB
Commit Graph

2383 Commits (57b2ec7ade9334c03b4eb19bf135843e1a405ead)

Author SHA1 Message Date
Mzack9999 57b2ec7ade
Adding offline http tests (#2276) 2022-07-12 02:58:36 +05:30
Mzack9999 1c332bb85b
Improving RFC request/response passive parsing (#2192) 
* Improving RFC request/response passive parsing

* adding test
 2022-07-11 22:43:10 +05:30
Mzack9999 3c945f6ae9
Adding stricter check on offline templates list (#2213) 2022-07-11 22:38:07 +05:30
Ice3man 5b3c2861c2
Added interact-url placeholder support to variables in http requests (#2237) 
* Added interact-url placeholder support to variables in http requests

* Fixed variable errors

* Fixed issue with interactsh in req
 2022-07-11 22:18:13 +05:30
sullo fd9c865416
Add new sites to ban list (#2215) 
* Add new sites to ban list
* ntelbras.com/
* andmp.com/
* blacklanternsecurity.com/
* pwnwiki.org/
* 0dayhack.net/
* correkt.horse/
* poc.wgpsec.org
* ctf\-writeup.revers3c.com/

* Update cve-annotate to use a contains instead of regex, as it's slightly faster

* Tighten up matchers a little

* small refactor

* Remove lead / from skip domains
Remove stray debug printf

Co-authored-by: mzack <marco.rivoli.nvh@gmail.com>
 2022-07-08 20:28:22 +05:30
anykno 73a0043f2d
fix: socks5 proxy not working on https target (#2228) 
* fix: socks5 proxy not working on https target

* small name refactor

Co-authored-by: mzack <marco.rivoli.nvh@gmail.com>
 2022-07-01 15:31:00 +05:30
Mzack9999 476773ff8c
Replacing hasstdin with helper library (#2191) 
* Replacing hasstdin with helper library

* adding timeout reader on stdin

* adding large input read timeout

* reducing stdin timeout + nostdin flag

* go mod update

* readme update

* go mod tidy

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-06-30 17:51:54 +05:30
dependabot[bot] b0e5da2699
chore(deps): bump github.com/owenrumney/go-sarif/v2 in /v2 (#2200) 
Bumps [github.com/owenrumney/go-sarif/v2](https://github.com/owenrumney/go-sarif) from 2.1.1 to 2.1.2.
- [Release notes](https://github.com/owenrumney/go-sarif/releases)
- [Changelog](https://github.com/owenrumney/go-sarif/blob/main/.goreleaser.yml)
- [Commits](https://github.com/owenrumney/go-sarif/compare/v2.1.1...v2.1.2)

---
updated-dependencies:
- dependency-name: github.com/owenrumney/go-sarif/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-30 17:02:37 +05:30
dependabot[bot] 3e6603a792
chore(deps): bump github.com/aws/aws-sdk-go in /v2 (#2246) 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.43 to 1.44.45.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.43...v1.44.45)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-30 16:53:40 +05:30
dependabot[bot] deca59a5d7
chore(deps): bump github.com/projectdiscovery/interactsh in /v2 (#2248) 
Bumps [github.com/projectdiscovery/interactsh](https://github.com/projectdiscovery/interactsh) from 1.0.4 to 1.0.5.
- [Release notes](https://github.com/projectdiscovery/interactsh/releases)
- [Changelog](https://github.com/projectdiscovery/interactsh/blob/main/.goreleaser.yml)
- [Commits](https://github.com/projectdiscovery/interactsh/compare/v1.0.4...v1.0.5)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/interactsh
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-30 16:53:23 +05:30
Mzack9999 3838d06aeb
Adding prototype for unexpected fields validation in matchers (#2171) 
* Adding unexpected fields validation

* using expected fields

* adding missing expected field

* using reflect
 2022-06-30 16:50:54 +05:30
dependabot[bot] b238899581
chore(deps): bump github.com/go-rod/rod from 0.107.1 to 0.107.3 in /v2 (#2230) 
Bumps [github.com/go-rod/rod](https://github.com/go-rod/rod) from 0.107.1 to 0.107.3.
- [Release notes](https://github.com/go-rod/rod/releases)
- [Commits](https://github.com/go-rod/rod/compare/v0.107.1...v0.107.3)

---
updated-dependencies:
- dependency-name: github.com/go-rod/rod
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-30 10:34:08 +05:30
dependabot[bot] a9405b6881
chore(deps): bump github.com/hashicorp/go-version in /v2 (#2239) 
Bumps [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/hashicorp/go-version/releases)
- [Changelog](https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/go-version/compare/v1.5.0...v1.6.0)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-version
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-30 10:33:29 +05:30
dependabot[bot] 1c6bf0958c
chore(deps): bump github.com/projectdiscovery/wappalyzergo in /v2 (#2240) 
Bumps [github.com/projectdiscovery/wappalyzergo](https://github.com/projectdiscovery/wappalyzergo) from 0.0.47 to 0.0.48.
- [Release notes](https://github.com/projectdiscovery/wappalyzergo/releases)
- [Commits](https://github.com/projectdiscovery/wappalyzergo/compare/v0.0.47...v0.0.48)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/wappalyzergo
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-30 10:33:16 +05:30
dependabot[bot] 1f7c782d8d
chore(deps): bump github.com/xanzy/go-gitlab in /v2 (#2241) 
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.68.0 to 0.68.2.
- [Release notes](https://github.com/xanzy/go-gitlab/releases)
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go)
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.68.0...v0.68.2)

---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-30 10:33:01 +05:30
dependabot[bot] c02a2b25a2
chore(deps): bump github.com/aws/aws-sdk-go in /v2 (#2238) 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.37 to 1.44.43.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.37...v1.44.43)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-28 20:23:17 +05:30
dependabot[bot] 0684ad4672
chore(deps): bump github.com/stretchr/testify from 1.7.2 to 1.7.5 in /v2 (#2220) 
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.2 to 1.7.5.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.7.2...v1.7.5)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-28 20:22:48 +05:30
dependabot[bot] 924e9c74f9
chore(deps): bump github.com/miekg/dns from 1.1.49 to 1.1.50 in /v2 (#2197) 
Bumps [github.com/miekg/dns](https://github.com/miekg/dns) from 1.1.49 to 1.1.50.
- [Release notes](https://github.com/miekg/dns/releases)
- [Changelog](https://github.com/miekg/dns/blob/master/Makefile.release)
- [Commits](https://github.com/miekg/dns/compare/v1.1.49...v1.1.50)

---
updated-dependencies:
- dependency-name: github.com/miekg/dns
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-28 20:22:00 +05:30
Ice3man f3de611b49
Added enhancements for http variables support (#2223) 2022-06-28 20:20:18 +05:30
Ice3man 8040b66370
Added http request timeout support with annotations (#2233) 
* Added http request timeout support with annotations

* Added nolint statements for lostcontext

* misc

* misc
 2022-06-27 18:36:46 +05:30
Ice3man ffe6ab04b3
Added include-templates force-loading for templates (#2232) 
* Added include-templates force-loading for templates

* Fixed loader case with include-templates

* Added integration test for excluded-template in loader
 2022-06-27 18:09:29 +05:30
Ice3man 7875b06fc8
Added exclude-matchers support for template & matchers (#2218) 
* Added exclude-matchers support for template & matchers

* Fixed panics due to typo

* Added support for only template ID + misc cleanup
 2022-06-24 23:09:27 +05:30
Ice3man 9073b753ca
Added aes_gcm implementation for DSL function (#2196) 
* Added aes_gcm implementation for DSL function

* Added integration test for dsl-functions.yaml
 2022-06-23 16:16:24 +05:30
sandeep 7f28c048a6 version update 2022-06-22 00:45:08 +05:30
Mzack9999 0b351e83f3
Add self diagnostic functionality (#2178) 
* Adding Self-Diagnostic

* adding comment
 2022-06-22 00:40:10 +05:30
dependabot[bot] 1047047790
chore(deps): bump github.com/go-rod/rod from 0.106.8 to 0.107.1 in /v2 (#2114) 
* chore(deps): bump github.com/go-rod/rod from 0.106.8 to 0.107.1 in /v2

Bumps [github.com/go-rod/rod](https://github.com/go-rod/rod) from 0.106.8 to 0.107.1.
- [Release notes](https://github.com/go-rod/rod/releases)
- [Commits](https://github.com/go-rod/rod/compare/v0.106.8...v0.107.1)

---
updated-dependencies:
- dependency-name: github.com/go-rod/rod
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* fixing function call

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: mzack <marco.rivoli.nvh@gmail.com>
 2022-06-22 00:31:08 +05:30
Mzack9999 112762f024
Adding http request validation at compile time (#2193) 
* Adding http request validation at compile time

* misc update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-06-22 00:26:06 +05:30
Ice3man 50d21c0464
Fixed a issue with random invalid matches in DSL (#2195) 2022-06-21 21:58:43 +05:30
M. Ángel Jimeno af4854f90d
output: fix WriteStoreDebugData file permissions (#2187) 
Fixes #2180
 2022-06-20 17:10:22 +05:30
dependabot[bot] cba6dbb8f4
chore(deps): bump github.com/aws/aws-sdk-go in /v2 (#2185) 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.36 to 1.44.37.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.36...v1.44.37)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-20 15:00:02 +05:30
dependabot[bot] 979fd4c884
chore(deps): bump github.com/projectdiscovery/wappalyzergo in /v2 (#2186) 
Bumps [github.com/projectdiscovery/wappalyzergo](https://github.com/projectdiscovery/wappalyzergo) from 0.0.46 to 0.0.47.
- [Release notes](https://github.com/projectdiscovery/wappalyzergo/releases)
- [Commits](https://github.com/projectdiscovery/wappalyzergo/compare/v0.0.46...v0.0.47)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/wappalyzergo
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-20 14:59:42 +05:30
Mzack9999 93b4983b36
Merge pull request #2182 from projectdiscovery/dependabot/go_modules/v2/dev/github.com/aws/aws-sdk-go-1.44.36 
chore(deps): bump github.com/aws/aws-sdk-go from 1.44.35 to 1.44.36 in /v2
 2022-06-17 16:59:32 +02:00
Mzack9999 3362342127
Merge pull request #2179 from projectdiscovery/maint-goflags-refactor 
Using library creategroup helper
 2022-06-17 16:59:07 +02:00
dependabot[bot] bbb219cec4
chore(deps): bump github.com/aws/aws-sdk-go in /v2 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.35 to 1.44.36.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.35...v1.44.36)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-17 05:25:11 +00:00
Sajad 644c951449
use formedURL instead reqURL in http request dump message (#2174) 2022-06-16 17:24:21 +05:30
mzack c2f5b41ef3 Using library creategroup helper 2022-06-16 13:14:53 +02:00
dependabot[bot] cd16f8d225
chore(deps): bump github.com/aws/aws-sdk-go in /v2 (#2175) 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.34 to 1.44.35.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.34...v1.44.35)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-06-16 14:42:08 +05:30
Sajad b715a601e8
Adding nil operator check on clustering (#2173) 
* add nil operator check

* move nil pointer check
 2022-06-16 14:41:05 +05:30
dependabot[bot] 2bcdf28cca
chore(deps): bump github.com/aws/aws-sdk-go in /v2 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.33 to 1.44.34.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.33...v1.44.34)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-15 05:19:35 +00:00
Mzack9999 e72d5dd350
Merge pull request #2153 from projectdiscovery/dependabot/go_modules/v2/dev/github.com/projectdiscovery/wappalyzergo-0.0.46 
chore(deps): bump github.com/projectdiscovery/wappalyzergo from 0.0.45 to 0.0.46 in /v2
 2022-06-14 10:50:46 +02:00
Mzack9999 fbbe9e652f
Merge pull request #2159 from projectdiscovery/dependabot/go_modules/v2/dev/github.com/aws/aws-sdk-go-1.44.33 
chore(deps): bump github.com/aws/aws-sdk-go from 1.44.32 to 1.44.33 in /v2
 2022-06-14 10:50:36 +02:00
sullo a5fd6b79ab
Skip dead sites in reference annotation (#2156) 
* Typo

* * Add list of dead reference sites
* Skip dead sites when annotating references

* Tighten up site regexes

* Lint cleanup

* One last url regex cleanup

* small code optimization

* using raw strings for regexes

Co-authored-by: mzack <marco.rivoli.nvh@gmail.com>
 2022-06-14 11:04:00 +05:30
dependabot[bot] 623f000339
chore(deps): bump github.com/aws/aws-sdk-go in /v2 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.32 to 1.44.33.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.32...v1.44.33)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-14 05:19:17 +00:00
Mzack9999 39e4a1fc9e
Merge pull request #2152 from projectdiscovery/dependabot/go_modules/v2/dev/github.com/aws/aws-sdk-go-1.44.32 
chore(deps): bump github.com/aws/aws-sdk-go from 1.44.31 to 1.44.32 in /v2
 2022-06-13 13:49:45 +02:00
Mzack9999 a4cdba0691
Improving literals detection in expression engine (#2148) 
* Improving literals detection in expression engine

* fixing lint errors

* re-add accidentally deleted test
 2022-06-13 13:55:06 +05:30
dependabot[bot] 54c398449d
chore(deps): bump github.com/projectdiscovery/wappalyzergo in /v2 
Bumps [github.com/projectdiscovery/wappalyzergo](https://github.com/projectdiscovery/wappalyzergo) from 0.0.45 to 0.0.46.
- [Release notes](https://github.com/projectdiscovery/wappalyzergo/releases)
- [Commits](https://github.com/projectdiscovery/wappalyzergo/compare/v0.0.45...v0.0.46)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/wappalyzergo
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-13 05:28:08 +00:00
dependabot[bot] 8f0741e6a2
chore(deps): bump github.com/aws/aws-sdk-go in /v2 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.31 to 1.44.32.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.31...v1.44.32)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-13 05:28:00 +00:00
Sajad e7591ec8b3
use request numbering as per template definition in req-condition (#2135) 
* use original request number instead of current iteration in request-condition

* add previousEvent tracking back for request condition

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-06-11 14:29:05 +05:30
tanimdiucse123 e575f53be7
Empty string test can be improved (#2115) 
It is not recommended to use len for empty string test.

A string can be tested for its emptiness either by treating it as a slice and calculating the length of the slice, or by treating it as a string and directly comparing the value. While both produce identical code when compiled, it makes more sense to treat a string as itself, than a slice, for the sake of comparison of values.

Examples

Bad practice

len(s) == 0

Recommended

s == ""

The recommended practice is considered more idiomatic in Go.

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
 2022-06-11 14:11:43 +05:30
Sami 01c0336872
truncated custom header workaround (#2133) 
* truncated custom header workaround

* Revert "truncated custom header workaround"

This reverts commit e6abc4ee482186566307fe6b9045748d0060cc8b.

* go mod update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-06-10 21:23:13 +05:30