Commit Graph

1861 Commits (ed600871ae96dd96a96f908329799e4c98cdc47e)

Author SHA1 Message Date
Ice3man543 66dacccfb4 Fixed matcher type integer issue 2021-11-20 19:47:05 +05:30
Sajad f74ff3fc49
Tag based struct validation (#1256)
* Added tag based struct validation
2021-11-20 13:25:27 +05:30
mzack ed55de71d9 fixing internal normalized value 2021-11-20 02:26:16 +01:00
GitHub Action b8246ab8e5 Auto Generate Syntax Docs + JSONSchema [Fri Nov 19 10:55:27 UTC 2021] 🤖 2021-11-19 10:55:27 +00:00
LuitelSamikshya 4b8ec29d8d
struct to enums changes for Matchers (#1246)
* struct to enums changes for Matchers
2021-11-19 16:24:09 +05:30
forgedhallpass 09eba6c0cf
feat: In case of binary data, show a hexadecimal view as well #1080 (#1266)
Highlight the longest occurrences when there are matches that are substrings of each other
2021-11-19 15:45:43 +05:30
mzack 71d4e5318a . 2021-11-18 22:28:10 +01:00
mzack 359eb7c3d2 making iota zero based 2021-11-18 21:58:32 +01:00
mzack bdffa373cf solving linting issues 2021-11-18 21:54:24 +01:00
mzack b42f0d32ea Merge branch 'dev' into research-aws-signing 2021-11-18 21:50:49 +01:00
mzack ddb07ebb75 adding support for aws file credential 2021-11-18 21:44:58 +01:00
GitHub Action 5a0f483cd3 Auto Generate Syntax Docs + JSONSchema [Thu Nov 18 20:12:46 UTC 2021] 🤖 2021-11-18 20:12:46 +00:00
LuitelSamikshya 2856e7e247
Extractor + Headless Actions structures to enums (#1217)
* enum support for extractor
2021-11-19 01:41:10 +05:30
GitHub Action ccb588f383 Auto Generate Syntax Docs + JSONSchema [Thu Nov 18 13:53:42 UTC 2021] 🤖 2021-11-18 13:53:42 +00:00
Mzack9999 7f5f791e23
Adding dns trace support in dns templates (#1236)
* Adding dns trace support in dns templates + minor refactoring
2021-11-18 19:22:11 +05:30
LuitelSamikshya d078b72381
enum changes for http method (#1234)
* enum changes for http method
2021-11-18 19:20:21 +05:30
GitHub Action 25189c3ae7 Auto Generate Syntax Docs + JSONSchema [Thu Nov 18 13:50:07 UTC 2021] 🤖 2021-11-18 13:50:07 +00:00
LuitelSamikshya 64a93a4570
enum changes for network type (#1233)
* enum changes for network type
2021-11-18 19:18:47 +05:30
LuitelSamikshya 4ff90c1373
struct to enum changes for Dns Type (#1245)
* struct to enum changes for Dns Type
2021-11-18 19:17:34 +05:30
mzack 38ff8f75b1 adding signature syntax validation 2021-11-17 01:28:35 +01:00
mzack 0379afc748 Merge branch 'dev' into research-aws-signing 2021-11-17 00:03:00 +01:00
Ice3man eaa0d37065
feat #1092: Validate binary values + precompile them as well (#1213)
* Added validation for binary values + precompile them

* Changed name of the binary matcher field

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2021-11-17 02:04:27 +05:30
sandeep f73b20e415 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into research-aws-signing 2021-11-17 02:02:07 +05:30
Ice3man 50a816fce9
Fixed a crash with uninitialized interactsh client (#1251)
* Fixed a crash with uninitialized interactsh client
2021-11-16 20:02:39 +05:30
Ice3man543 cc33366acb fixed a conditon with workflow type switch 2021-11-14 15:30:28 +05:30
mzack eb61c519c3 converting to post-processor prototype 2021-11-13 03:17:05 +01:00
mzack e517797cfa moving aws signing logic to helper library 2021-11-13 02:13:48 +01:00
mzack 34889d50f8 correcting variable name 2021-11-12 19:58:12 +01:00
mzack 882a156b63 Merge branch 'dev' into research-aws-signing 2021-11-12 19:55:35 +01:00
mzack 041361c45e Adding aws sign prototype 2021-11-12 19:29:45 +01:00
GitHub Action dc0c568cb8 Auto Generate Syntax Docs + JSONSchema [Thu Nov 11 23:16:47 UTC 2021] 🤖 2021-11-11 23:16:47 +00:00
Ice3man543 cdb08e0879 misc fixes to websocket 2021-11-12 04:44:02 +05:30
Ice3man543 90a0502b60 Misc fixes to default part 2021-11-11 17:30:25 +05:30
Ice3man543 c1a35b3ff9 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into more-protocols 2021-11-11 17:21:25 +05:30
sullo 1d74f6ada2
Typo (#1242) 2021-11-10 23:25:22 +05:30
Mzack9999 ac75d9aa9b
Improving error handling in client certificate library (#1237) 2021-11-10 22:42:49 +05:30
Mzack9999 09b5fb11e8
Better error handling for return value of helper http library (#1239) 2021-11-10 22:41:42 +05:30
mzack 56b7d78fed Fixing http test using local http mock server 2021-11-10 18:04:53 +01:00
LuitelSamikshya 0e46d3e041
feat: Checking socks5 proxy before launching a scan #1001 (#1225)
* Proxy validation and list input support

Co-authored-by: Sajad Parra <parrasajad@gmail.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2021-11-10 21:30:03 +05:30
Sandeep Singh 66074a1842
Merge pull request #1232 from projectdiscovery/fix-redirect-response-bug
fix #1173: perform matching on all redirect responses instead of final
2021-11-10 17:38:35 +05:30
sandeep 4b169fcae1 mod update 2021-11-10 15:09:40 +05:30
Sandeep Singh f78ff42dbe
Merge branch 'dev' into more-protocols 2021-11-09 18:27:13 +05:30
Ice3man543 9b364080ea Fixed some edge cases with status codes in redirect chains 2021-11-09 17:55:42 +05:30
mzack 93060ec0e3 adding tests 2021-11-09 08:50:18 +01:00
Ice3man543 a9f586369a Misc fixes to request normalization 2021-11-09 06:20:10 +05:30
Ice3man543 3e2875267c linter fixes 2021-11-09 06:12:36 +05:30
Ice3man543 8396413f9d Added integration test for the redirect chain http functionality 2021-11-09 06:10:07 +05:30
Ice3man543 155b8cfed9 fix #1173: perform matching on all redirect responses instead of final 2021-11-09 06:00:30 +05:30
mzack 10e1b09bf3 tidying go modules 2021-11-08 19:45:01 +01:00
mzack 9675efa680 Adding support for custom headers via CLI in raw http requests 2021-11-08 19:33:54 +01:00
Sandeep Singh 952a821c6c
Merge pull request #1208 from projectdiscovery/colored_hexdump
Enhance hexdump content highlighting
2021-11-08 18:30:00 +05:30
Ice3man543 5e6b6c6b14 Show errors on invalid URL typo 2021-11-08 17:56:14 +05:30
Ice3man543 7d0529aaf7 Fixed gzip encoding bug + added test case 2021-11-08 17:39:08 +05:30
Ice3man543 88a296c9a7 Adding gzip encoding helpers 2021-11-08 16:24:47 +05:30
Ice3man543 d442c51c1a Changed input to target in core 2021-11-08 16:14:47 +05:30
Ice3man543 ce7534112a Fixed linter issues 2021-11-08 16:10:04 +05:30
Ice3man543 d772dedef1 Make default part for new protocols to response 2021-11-08 16:01:45 +05:30
Ice3man543 213853c45d Merge from dev 2021-11-08 15:40:18 +05:30
Sandeep Singh 3c53e262e3
Merge pull request #1219 from projectdiscovery/uniq-interact
Unique Interactsh URL
2021-11-06 03:33:09 +05:30
sandeep 89c6e76772 Revert "feat: Checking socks5 proxy before launching a scan #1001 (#1169)"
This reverts commit c125df4ef6.
2021-11-05 20:09:00 +05:30
Sajad Parra 6d0d3e1c35 add unique check to test case 2021-11-05 20:00:46 +05:30
LuitelSamikshya c125df4ef6
feat: Checking socks5 proxy before launching a scan #1001 (#1169)
* "#issue1001"

* changes for #issue1001

* minor changes

* minor

* flag consolidation and proxy file #issue1001

* readme changes

* review changes

* enviroment variable changes

* review comment changes

* review changes

* removed commented out code
2021-11-05 09:21:52 -05:00
Ice3man543 e8197f127f Fixed rmeote url loader test cases 2021-11-05 17:24:23 +05:30
Ice3man543 1c360e0344 Fixed DSL test 2021-11-05 17:04:42 +05:30
Ice3man543 0a09b9e451 Added test + misc 2021-11-05 16:59:24 +05:30
Sajad Parra 4d8eaad0a3 add unit test for unique interactsh url #1068 2021-11-05 15:27:49 +05:30
Ice3man543 8ad3ebcd05 Made code changes as per review comments 2021-11-05 03:01:41 +05:30
Sajad Parra 41393fc09d unique payload per interactsh placeholder #1068 2021-11-04 17:13:47 +05:30
Ice3man543 f3675d547a URL parsing addition for websocket URLs 2021-11-04 03:02:29 +05:30
Ice3man543 12321c23af Splitting big function into small 2021-11-04 02:56:59 +05:30
Ice3man543 53164c3f3e Misc linter related changes 2021-11-04 02:44:47 +05:30
Ice3man543 a60b10afca Added an enum for attackType 2021-11-04 02:41:56 +05:30
Ice3man543 a7c8d0473c Removed duplicate attackType logic + move attackType to generators 2021-11-04 02:28:48 +05:30
Ice3man543 91a7b4df6a Validate opcode before proceeding with websocket 2021-11-03 20:08:11 +05:30
Ice3man543 645ae30a47 Moved to an enum for TemplateType in protocols 2021-11-03 19:53:45 +05:30
Ice3man543 390ca8b3c6 Merge from dev 2021-11-03 18:58:00 +05:30
Sandeep Singh 0f897a3977
Merge pull request #1186 from projectdiscovery/protocol-types
Added new type and exclude-type flag
2021-11-03 18:47:26 +05:30
Ice3man543 4a0229c13d Websocket protocol rename 2021-11-03 18:36:54 +05:30
Ice3man543 956fb9296c fix merge conflict 2021-11-03 17:20:03 +05:30
Ice3man543 47949c0b52 Use separate type enum for protocol types 2021-11-03 17:18:35 +05:30
Ice3man543 cf7628c450 Misc changes according to review 2021-11-03 02:34:48 +05:30
Ice3man543 b3162decff Merge branch 'engine-execution' of https://github.com/projectdiscovery/nuclei into more-protocols 2021-11-03 02:24:00 +05:30
Ice3man543 bdb415b0c7 Misc changes as per review 2021-11-03 02:23:48 +05:30
sandeep 2224880d89 misc flag update 2021-11-02 22:57:00 +05:30
Ice3man c2df13ea22
Merge pull request #1185 from projectdiscovery/dns-variables
Added more variables for DNS requests
2021-11-02 17:54:45 +05:30
Ice3man 09cad2557c
Merge pull request #1123 from EndPositive/remote-template-workflow-lists
Remote template workflow lists
2021-11-02 16:12:29 +05:30
Ice3man543 87c3071ba7 Misc 2021-11-02 14:59:05 +05:30
Ice3man 191797380e
bug: Bug in URL parsing for unsafe templates #830
Fixed raw request path not correct with unsafe
2021-11-02 10:42:59 +02:00
forgedhallpass 8f6280dc9d refactor: In case of binary data, show a hexadecimal view as well #1080
* small enhancements with regards to dumping responses
2021-11-01 20:45:54 +02:00
forgedhallpass b477508521 feat: In case of binary data, show a hexadecimal view as well #1080
* the ASCII column in the hex dump represents non-printable ASCII characters with a "." character, so in order to enable proper highlighting, those characters has to be replaced in the generated regex as well
2021-11-01 20:44:55 +02:00
Ice3man543 f8c6f0ba64 Added debug for SSL 2021-11-01 18:02:45 +05:30
Ice3man543 a274cc5722 Misc integration test 2021-11-01 15:51:56 +05:30
Ice3man543 bb05be7b95 Added integration tests for websocket + misc fixes 2021-11-01 15:47:20 +05:30
forgedhallpass b91166a034 Merge remote-tracking branch 'origin/dev' into colored_hexdump 2021-11-01 11:57:45 +02:00
GitHub Action e1c39f255c Auto Generate Syntax Docs + JSONSchema [Mon Nov 1 09:46:34 UTC 2021] 🤖 2021-11-01 09:46:34 +00:00
Sandeep Singh 1863e8f76a
Merge pull request #1130 from zerodivisi0n/feature/case-insensitive-match
Add case-insensitive option to template
2021-11-01 15:15:22 +05:30
Ice3man 331ae0f03b
Merge pull request #1171 from kchason/client-cert-auth
Add Support for Client Certificate Authentication
2021-10-31 02:08:18 +05:30
forgedhallpass 38f2cf245e feat: In case of binary data, show a hexadecimal view as well #1080
* added Compact hex view to the output if the -vv flag is provided
2021-10-30 16:41:10 +03:00
Alexey Zhuchkov bccc8e921b Add test for output 2021-10-30 15:04:16 +03:00
Alexey Zhuchkov b8ebbc27f5 Use io.WriteCloser in output writer 2021-10-30 14:28:30 +03:00
Alexey Zhuchkov cd2db280bf Move output mutex to fileWriter 2021-10-30 14:28:30 +03:00
Alexey Zhuchkov 1eb0378952 Unwrap errors in json log output 2021-10-30 14:28:30 +03:00
Alexey Zhuchkov 463c1c0142 Use template path in output request 2021-10-30 14:28:30 +03:00
Alexey Zhuchkov 933ed2429d Update json log request format 2021-10-30 14:28:30 +03:00
Alexey Zhuchkov 3f1186da2b Add error log support 2021-10-30 14:12:21 +03:00
forgedhallpass 04e3c0165a feat: In case of binary data, show a hexadecimal view as well #1080 2021-10-30 13:17:47 +03:00
Alexey Zhuchkov 392ea23f1d Add integration tests for case-insensitive flag 2021-10-29 19:11:57 +03:00
Alexey Zhuchkov 897f11213c Add unit tests for case-insensitive flag in protocols 2021-10-29 19:11:09 +03:00
Alexey Zhuchkov bfb69b2ff2 Extract getMatchPart method in protocols 2021-10-29 19:10:17 +03:00
Alexey Zhuchkov 3a47413cd4 Add case-insensitive flag to matchers and extractors 2021-10-29 19:08:23 +03:00
Ice3man543 75f18f169c Adding response highlighting to websocket 2021-10-29 18:30:24 +05:30
Ice3man543 a10b79d7a8 merge from engine-refactor and dev 2021-10-29 18:26:06 +05:30
Ice3man543 15d467f9ff Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into more-protocols 2021-10-29 17:54:02 +05:30
Ice3man543 5393cc4cd5 Adjusting packages for more API-type design 2021-10-29 03:19:43 +05:30
sandeep 8ce192c62a Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into protocol-types 2021-10-29 00:58:21 +05:30
Ice3man543 1ca2cf3bea Misc 2021-10-28 23:17:05 +05:30
sandeep 533fb3f108 misc flag update 2021-10-28 22:02:22 +05:30
Ice3man543 0abc7202b1 Misc fixes with goflags 2021-10-28 17:45:38 +05:30
Ice3man543 d124dbacc7 Moved all important execution stuff to engine 2021-10-28 17:20:07 +05:30
kchason c3503922c9 Merge remote-tracking branch 'origin/client-cert-auth' into client-cert-auth
# Conflicts:
#	v2/pkg/protocols/headless/engine/http_client.go
2021-10-27 12:15:12 -04:00
kchason 4a1440a17b Merge dev branch 2021-10-27 12:13:23 -04:00
kchason a539184ffd Switch logic to a shared package 2021-10-27 12:11:42 -04:00
Ice3man543 df78ea72c5 misc 2021-10-27 18:41:39 +05:30
Ice3man543 c16c93fe7c refactor the modules to core 2021-10-27 16:50:36 +05:30
Ice3man543 97645dde52 Added new workpool package + Misc refactor 2021-10-27 15:53:04 +05:30
Ice3man543 2a84b9eb44 misc 2021-10-26 20:40:02 +05:30
Ice3man543 a0318ffc8f Started refactor of template compilation + protocol building 2021-10-26 20:36:44 +05:30
Jop Zitman 1dce8af045 Linting issues 2021-10-26 15:34:33 +02:00
Jop Zitman 86cf09fa3f Merge branch 'dev' into remote-template-workflow-lists
# Conflicts:
#	v2/cmd/nuclei/main.go
2021-10-26 15:33:39 +02:00
Ice3man 808ed4edd2
Merge branch 'dev' into client-cert-auth 2021-10-26 16:42:02 +05:30
Ice3man e0afa2cee4
Merge pull request #1157 from projectdiscovery/issue-1095-realistic-http-client
Making headless httpclient more similar to real browsers
2021-10-26 16:39:21 +05:30
Ice3man543 f058029841 Misc 2021-10-26 16:29:00 +05:30
Ice3man543 2777211351 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into interactsh-integration-test 2021-10-26 15:31:06 +05:30
Ice3man543 6541b04f4c Added new type and exclude-type flag 2021-10-25 23:24:42 +05:30
Ice3man a4bea4f954
Merge pull request #1184 from projectdiscovery/fix-curl-panic
fix panic: Only generate curl command if request is not nil
2021-10-25 20:01:21 +05:30
Ice3man543 ba108580c6 Fixed fqdn issue with tld parser 2021-10-25 19:36:37 +05:30
Ice3man543 09a2d88364 Misc 2021-10-25 19:33:37 +05:30
Ice3man543 bfaea5b89d Added more variables for DNS requests 2021-10-25 18:35:45 +05:30
Ice3man543 4a29443752 fix panic: Only generate curl command if request is not nil 2021-10-25 18:22:33 +05:30
Ice3man543 c6445519ec Fixed bug with github client and paths with no slash 2021-10-25 18:19:27 +05:30
Ice3man543 ca6cc51302 Color change for warning disclaimer 2021-10-25 17:47:39 +05:30
Ice3man543 ef3397b84d Mark error for template syntax warning 2021-10-25 17:42:01 +05:30
Ice3man 1deedf5463
Merge pull request #1151 from zerodivisi0n/feature/template-id
Add regexp pattern for template-id
2021-10-25 17:38:00 +05:30
GitHub Action 1f8a9474cf Auto Generate Syntax Docs + JSONSchema [Mon Oct 25 12:00:09 UTC 2021] 🤖 2021-10-25 12:00:09 +00:00
Ice3man 29e764961e
Merge branch 'dev' into interactsh-integration-test 2021-10-25 17:29:33 +05:30
Ice3man aa8b15c1f4
Merge pull request #1111 from projectdiscovery/issue-829-network-read-all
Adding support to read tcp data stream till the end
2021-10-25 17:28:56 +05:30
Ice3man 542aba861f
Merge pull request #1155 from projectdiscovery/issue-1129-headless-proxy
Adding proxy socks support to headless browser
2021-10-25 17:27:52 +05:30
kchason a911245d26 Re-add short command for env-vars lost during merge conflict resolution 2021-10-24 22:53:28 -04:00
kchason 99492911a3 Revert "Missing error package"
This reverts commit 18deddb07a.
2021-10-21 14:21:52 -04:00
kchason 18deddb07a Missing error package 2021-10-21 14:10:47 -04:00
kchason 4b70560cc9 Merge branch 'master' into client-cert-auth 2021-10-21 13:59:39 -04:00
kchason f5b9eb32a1 Client certificate authentication for pooled connections 2021-10-21 13:54:56 -04:00
kchason 0a57a1aa4d Client certificate authentication for headless connections 2021-10-21 13:48:13 -04:00
sandeep fdb7c0d6cd dev update 2021-10-21 06:20:40 +05:30
sandeep f260ed6da7 readme + version update 2021-10-21 06:17:18 +05:30
sandeep dd311897fc misc flag update 2021-10-21 06:05:09 +05:30
sandeep fa79a16a9d reverting #1017 2021-10-21 05:56:15 +05:30
Alexey Zhuchkov ff7a5997a2 Return multiple errors in template validation 2021-10-20 23:24:11 +03:00
Alexey Zhuchkov 5d0f6b2622 Improve invalid template id tests 2021-10-20 23:14:04 +03:00
Alexey Zhuchkov f1cd0a5d28 Update template id regexp 2021-10-20 23:07:24 +03:00
Ice3man f25c7c3a1d
Merge branch 'dev' into more-protocols 2021-10-20 21:29:28 +05:30
kchason 9c77f15012 Argument checks for presence and validity 2021-10-20 11:32:26 -04:00
GitHub Action 379233c632 Auto Generate Syntax Docs + JSONSchema [Wed Oct 20 15:25:55 UTC 2021] 🤖 2021-10-20 15:25:55 +00:00
Sandeep Singh 52382df350
Merge pull request #1121 from projectdiscovery/self-contained-templates
Added self-contained http/network requests implementation
2021-10-20 20:54:38 +05:30
Ice3man543 a6c5dbf7fb added todo 2021-10-20 20:29:28 +05:30
Ice3man543 bb6486910f typo 2021-10-20 20:27:36 +05:30
Ice3man543 36edde2241 Added comment for old logic 2021-10-20 20:26:40 +05:30
Ice3man543 b8628a6e5b fixed comment 2021-10-20 20:17:00 +05:30
Ice3man543 51f3ea5c88 Added constant for static ports in integration tests 2021-10-20 20:13:40 +05:30
mzack e6728e8ff9 Making headless httpclient more similar to real browsers 2021-10-20 13:26:47 +02:00
sandeep 8e8249e6a5 Added multiple short flags 2021-10-20 16:39:11 +05:30
kchason df12b0d2e6 Add CLI options for passing client cert auth 2021-10-19 23:06:02 -04:00
Alexey Zhuchkov 9e0144b6ae Add template-id validation 2021-10-20 01:31:38 +03:00
mzack cbc5192e9a Adding proxy socks support to headless browser 2021-10-20 00:02:06 +02:00
Alexey Zhuchkov a1e099493d Use simpler regexp for template id validation 2021-10-20 00:43:33 +03:00
mzack ae99a88f52 timer.after => timer 2021-10-19 19:39:33 +02:00
Ice3man 002f3de5c4
Merge pull request #1127 from pmareke/fix/add-validation-for-github-and-gitlab-config
fix: add validation for github and gitblab options
2021-10-19 22:35:48 +05:30
Ice3man543 5383040a83 Misc 2021-10-19 22:28:48 +05:30
Ice3man543 ec424e01e4 MIsc 2021-10-19 22:20:29 +05:30
Ice3man543 c4e5fa49dd Added integration tests for http and network 2021-10-19 22:17:44 +05:30
Ice3man543 de01158556 Removed non-used code 2021-10-19 21:52:40 +05:30
Ice3man543 55eab08faa Slight change to formatting 2021-10-19 21:33:17 +05:30
Ice3man543 612ab61df4 Reworked self-contained requests to template 2021-10-19 21:29:18 +05:30
Pedro López Mareque 2aade725b7 chore: fix pr comment 2021-10-19 17:17:45 +02:00
Pedro López Mareque 8df46e1774 chore: fix pr comment 2021-10-19 17:15:58 +02:00
mzack 0ba3b19f1f fixing merge issues 2021-10-19 11:31:36 +02:00
Mzack9999 cdfafa3013
Merge branch 'dev' into issue-829-network-read-all 2021-10-19 11:28:33 +02:00
Alexey Zhuchkov 5584fc285d Add regexp pattern for template-id 2021-10-19 00:58:49 +03:00
sandeep 2b9bd7e9c3 Uniform JSON output 2021-10-19 01:26:21 +05:30
Pedro López Mareque 17ce2848e6 chore: fix pr comment 2021-10-18 20:57:21 +02:00
Pedro López Mareque 5a03acb2ef chore: fix pr comment 2021-10-18 20:54:30 +02:00
Pedro López Mareque 12cf051271 chore: fix pr comment 2021-10-18 20:52:35 +02:00
Pedro López Mareque befb79decb chore: fix pr comment 2021-10-18 20:49:12 +02:00
Pedro López Mareque 9734297d2d chore: fix pr comment 2021-10-18 20:48:23 +02:00
Pedro López Mareque 2e26b0fa49 chore: fix pr comments 2021-10-18 20:45:51 +02:00
Ice3man543 6e7318bcba Misc output fix 2021-10-18 20:34:26 +05:30
Ice3man 6741cfb4f4
Merge pull request #1144 from projectdiscovery/issue-1129-headless-proxy
Fixing http proxy not working in headless browser
2021-10-18 19:54:23 +05:30
Ice3man543 b01dd81d84 Misc 2021-10-18 19:50:28 +05:30
Ice3man543 0385241732 Misc 2021-10-18 19:48:47 +05:30
Ice3man543 eac57fb229 Fixed host header not working in raw request 2021-10-18 18:39:32 +05:30
mzack a48e5f52e2 Adding support for interactsh in http payloads 2021-10-18 14:25:25 +02:00
mzack fbea7535ca removing unrecognized routine 2021-10-18 09:38:43 +02:00
mzack 83924e203d fixing object assignment 2021-10-18 09:36:22 +02:00
mzack c8edd4ce4a Fixing http proxy not working in headless browser 2021-10-18 09:32:38 +02:00
Ice3man543 e3644cf0d8 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into self-contained-templates 2021-10-17 18:50:16 +05:30
Ice3man543 8c9d9a77bf Added self-contained to network protocol 2021-10-17 18:50:07 +05:30
mzack 5f9b2b3df3 Adding support for CLi/Env variables in network requests 2021-10-17 11:52:48 +02:00
Sandeep Singh 904a833feb
Merge pull request #1132 from voidz0r/dev 2021-10-17 10:40:35 +05:30
Ice3man543 a820594506 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into self-contained-templates 2021-10-17 10:25:25 +05:30
voidz0r fc905ccccc Adding unixtime functionality with seconds offset 2021-10-17 01:02:37 +02:00
Sandeep Singh 680a2ad76b
Merge branch 'dev' into feature-preserve-input-order 2021-10-16 18:47:26 +05:30
Sandeep Singh 0d8b74932e
Merge pull request #1128 from projectdiscovery/issue-667-internal-keyword-priority-over-response-headers
Ensuring internal keyword has priority over response headers in internal map
2021-10-16 11:14:57 +05:30
Sandeep Singh f7759766f7
Merge pull request #1117 from projectdiscovery/issue-1018-gbk
Improving gbk detection coverage
2021-10-16 11:10:03 +05:30
mzack b6104527e1 replacing go get with go install 2021-10-16 01:05:13 +02:00
mzack 662fb63156 adding missing decoding on response body 2021-10-16 00:17:33 +02:00
mzack dcc5a2840b ensures internal keyword has priority over response headers in internal map - fixes #667 2021-10-15 18:45:40 +02:00
mzack e7d632a726 moving gbk detection code into helper function 2021-10-15 18:17:00 +02:00
Pedro Lopez Mareque 61ca557faf chore: improve doc 2021-10-15 14:59:16 +02:00
Pedro Lopez Mareque 5baecfcec2 chore: fix conflicts 2021-10-15 14:55:51 +02:00
Pedro Lopez Mareque 54b3140194 fix: add validation for github and gitblab options 2021-10-15 14:51:55 +02:00
Ice3man 0e3c656103
Added curl command to http request report (#1107)
* Added curl command to http request report
2021-10-15 11:25:50 +03:00
Jop Zitman 81102750a1 Implement integration tests for remote template and workflow urls. 2021-10-14 23:33:08 +02:00
Jop Zitman 14bb1b7b21 Implement `-template-url` and `-workflow-url` for retrieving lists of templates/workflows to run. 2021-10-14 23:33:08 +02:00
Ice3man543 736a530bde Added self-contained http requests implementation 2021-10-14 22:26:01 +05:30
forgedhallpass 9b7a105766
Headless tests refactor - test fix (#1120)
* Add missing headless actions tests #1102
* test refactor (removed parallel test execution)
2021-10-14 19:11:07 +03:00
forgedhallpass 7d6386449d Revert "Add missing headless actions tests #1102"
This reverts commit 4d14063cbe.
2021-10-14 17:38:56 +03:00
forgedhallpass 4d14063cbe Add missing headless actions tests #1102
* test refactor
2021-10-14 17:35:32 +03:00
forgedhallpass 84fb341c7d
Merge pull request #1108 from pmareke/feat/add-missing-examples-in-headless-engine-protocol-actions
Add missing tests in headless engine protocol actions
2021-10-14 17:33:04 +03:00
Ice3man c4cc0ad0bf
Merge pull request #1114 from projectdiscovery/misc-cleanups
Misc sniper payload cleanups
2021-10-14 16:13:44 +05:30
mzack 88dc16c910 Improving gbk detection coverage 2021-10-14 00:17:24 +02:00
Pedro Lopez Mareque 53281660be chore: refactor tests 2021-10-13 20:45:04 +02:00
Pedro Lopez Mareque 8ee4ed2c17 chore: fix build 2021-10-13 20:29:28 +02:00
Pedro Lopez Mareque 101a1973a4 chore: fix pr comments 2021-10-13 19:52:43 +02:00
forgedhallpass 46d0058470
Merge pull request #1064 from projectdiscovery/colorize_responses
Implementation for: Add coloring to debug information #999
2021-10-13 20:51:19 +03:00
forgedhallpass c0ef419048 Add/Expose Headless action that waits until an element appears #1096
* add timeout and pollTime options
2021-10-13 20:08:10 +03:00
forgedhallpass 88ee74d68a
Merge pull request #1101 from pmareke/feat/expose-rod-wait-visible
Expose WaitVisible method from the rod library
2021-10-13 20:00:13 +03:00
GitHub Action fe03cd8e59 Auto Generate Syntax Docs + JSONSchema [Wed Oct 13 07:59:09 UTC 2021] 🤖 2021-10-13 07:59:09 +00:00
sandeep a9cb83ff27 misc sniper cleanups 2021-10-13 13:19:00 +05:30
mzack f8d5d02570 Adding support to read tcp data stream till the end 2021-10-12 23:28:24 +02:00
forgedhallpass d88ed67d2c Do not show AND matcher information in the command line output if debug is not enabled #1081
* integration test fix
2021-10-12 20:18:53 +03:00
forgedhallpass 435ec5cd5d Do not show AND matcher information in the command line output if debug is not enabled #1081 2021-10-12 20:06:55 +03:00
mzack 30558eabf4 Merge branch 'dev' into feature-preserve-input-order 2021-10-12 09:42:23 +02:00
forgedhallpass 8392143944 Merge remote-tracking branch 'origin/dev' into colorize_responses 2021-10-11 14:00:53 +03:00
Pedro Lopez Mareque 322a6213c6 chore: refactor tests 2021-10-10 17:33:18 +02:00
Pedro Lopez Mareque 8502785a92 chore: add more tests 2021-10-10 17:18:53 +02:00
Pedro Lopez Mareque 62bfdf30b4 chore: add more tests 2021-10-10 13:17:35 +02:00
Pedro Lopez Mareque 3cd1b70bc0 chore: fix screenshot path 2021-10-10 08:36:44 +02:00
Pedro Lopez Mareque e53f54b53f chore: remove files 2021-10-10 08:30:32 +02:00
Pedro Lopez Mareque 2b1ab54a6d chore: add tests 2021-10-10 08:29:58 +02:00
Pedro Lopez Mareque 6d88f26b1f chore: add tests 2021-10-09 23:19:07 +02:00
Pedro Lopez Mareque 05c8f2580e chore: add tests 2021-10-09 19:37:12 +02:00
Pedro Lopez Mareque 4383d8557f chore: add timeout test 2021-10-09 17:30:45 +02:00
Pedro Lopez Mareque 7e12774543 chore: add helper method 2021-10-09 17:08:00 +02:00
Ice3man d7eec37052
Merge pull request #1091 from projectdiscovery/cli-variables-as-payload
Cli variables as payload
2021-10-09 20:02:39 +05:30
sandeep cb32a7b5e2 misc update 2021-10-09 20:00:33 +05:30
GitHub Action 1b8ad856d6 Auto Generate Syntax Docs + JSONSchema [Sat Oct 9 14:28:15 UTC 2021] 🤖 2021-10-09 14:28:15 +00:00
Ice3man e79c6262b9
Merge branch 'dev' into cli-variables-as-payload 2021-10-09 19:57:48 +05:30
Ice3man 7de4cc902e
Merge pull request #1089 from projectdiscovery/variables-check
Added check for unresolved variables
2021-10-09 19:57:02 +05:30
Ice3man543 df1c133f68 Misc 2021-10-09 19:53:37 +05:30
Ice3man543 3584a4b12a Added validation for invalid payload attack type 2021-10-09 19:53:12 +05:30
Ice3man543 aacbb28052 Removed sniper + made batteringram default + misc 2021-10-09 19:46:23 +05:30
Ice3man e5d021c766
Merge pull request #1104 from projectdiscovery/read-response-http2-3
Misc changes to offlinehttp
2021-10-09 18:56:05 +05:30
Ice3man aa873be8f4
Merge pull request #1099 from zerodivisi0n/feature/exclude-severity
Add exclude severity filter
2021-10-09 18:55:51 +05:30
Ice3man d78841631e
Merge pull request #1074 from nothinux/read-response-http2-3
Read response from http2 or http3
2021-10-09 18:53:58 +05:30
Ice3man543 2c88370b35 Made the version validation a bit better 2021-10-09 18:53:17 +05:30
Pedro Lopez Mareque 6ebeaf84a3 feat: add missin actions tests 2021-10-09 13:18:43 +02:00
Pedro Lopez Mareque bd14b0f2ac chore: remove block 2021-10-09 13:00:22 +02:00
Pedro Lopez Mareque d06cd671e2 chore: remove .MustWaitVisible to .MustVisible 2021-10-09 12:29:08 +02:00
Pedro Lopez Mareque 3386c1c5bd chore: add new test 2021-10-09 12:26:18 +02:00
Pedro Lopez Mareque 4e54a61b65 feat: expose WaitVisible method from the rod library 2021-10-09 08:39:29 +02:00
forgedhallpass a86c843be5 [issue] Do not show all matcher names for OR conditions #1082
* removing the short circuit in case of matchers with OR operator, because it is intended in cases like technology detection templates etc.
2021-10-08 22:46:53 +03:00
forgedhallpass 61a8ba80b4 If debug is enabled, show matchers that are not named also #1084
* start the indexing of the matcher names from 1 instead of 0
2021-10-08 22:44:40 +03:00
Alexey Zhuchkov 3e8a0af36f Add exclude severity filter 2021-10-08 22:27:27 +03:00
forgedhallpass fc66195b28 [feature] Add coloring to debug information #999
* Code review changes
2021-10-08 20:18:00 +03:00
forgedhallpass f96168fc2c [feature] Add coloring to debug information #999
* Reverted the bug introduced by mistake (checking file exists using os.IsExist vs !os.IsNotExist)
2021-10-08 20:17:37 +03:00
forgedhallpass 52b599ab5d [feature] Add coloring to debug information #999
* fixed typo in the name of the file
2021-10-07 22:09:08 +03:00
forgedhallpass 0a9704ebd8 [feature] Add coloring to debug information #999
* code-review fixes
2021-10-07 20:54:12 +03:00
sandeep bdc38a49a6 misc update 2021-10-07 21:28:54 +05:30
sandeep 100cd41548 mod update 2021-10-07 21:11:02 +05:30
sandeep 7e81989901 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into cli-variables-as-payload 2021-10-07 21:06:38 +05:30
sandeep 30ac8e814a Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into variables-check 2021-10-07 21:06:17 +05:30
sandeep c4b69f5991 interactsh update 2021-10-07 21:03:00 +05:30
Ice3man 40390550da
Merge branch 'dev' into variables-check 2021-10-07 19:45:16 +05:30
Ice3man543 5b3b5b8280 misc 2021-10-07 19:44:22 +05:30
Ice3man543 63ac86e60b Updated go.mod/sum 2021-10-07 19:43:38 +05:30
Ice3man543 8d6193ef1f Misc 2021-10-07 19:40:16 +05:30
Ice3man543 92e410fdb5 Added variable check to dns protocol 2021-10-07 19:38:31 +05:30
mzack 7651edfa62 misc 2021-10-07 13:02:15 +02:00
mzack fc31688f69 fixing lint errors 2021-10-07 12:40:18 +02:00
mzack 571f6b8c4c misc 2021-10-07 12:39:22 +02:00
Mzack9999 e89e233543
Merge branch 'dev' into cli-variables-as-payload 2021-10-07 12:38:36 +02:00
mzack 12b6b2ca89 Add support for CLI payload variables 2021-10-07 12:36:27 +02:00
sandeep 2ef034721f interactsh client update 2021-10-07 14:23:38 +05:30
Ice3man543 514d6f94ec Added support for urlencoded variable variation 2021-10-07 05:35:32 +05:30
Ice3man543 4669ee22ce Misc changes to http request execution with variables 2021-10-07 04:50:34 +05:30
Ice3man543 0541040e6b Added templateID to error message 2021-10-07 04:41:31 +05:30
Ice3man543 247ede7170 Misc 2021-10-07 01:48:48 +05:30
Ice3man543 92857497f3 Fixed variable check regex 2021-10-07 01:48:10 +05:30
Ice3man543 ce13bf34d0 Added check for unresolved variables 2021-10-07 01:40:49 +05:30
forgedhallpass b5c161d267 [feature] Add coloring to debug information #999
* extracted common MakeResultEvent logic and added the MakeResultEventItem method to the Request interface
2021-10-06 21:54:52 +03:00
forgedhallpass 76e952ebd2 Removing duplicate request dumping from integration tests, since nuclei already does it if they are started in debug mode 2021-10-06 21:21:40 +03:00
forgedhallpass 49291cc937 If debug is enabled, show matchers that are not named also #1084
* integration test fix
2021-10-05 22:14:18 +03:00
forgedhallpass 85447ca49d Fixes: Do not show all matcher names for OR conditions #1082 2021-10-05 22:04:09 +03:00
forgedhallpass ed3b80b5d7 If debug is enabled, show matchers that are not named also #1084 2021-10-05 22:02:09 +03:00
forgedhallpass 404f8ebb27 Fixes:Binary matcher always returns true if the input cannot be decoded as hex #1085
* changed the Log to Warn instead of Error, so it wouldn't show up in the output without the verbose flag
2021-10-05 16:49:55 +03:00
forgedhallpass 4d34513881 Fix for Binary matcher always returns true if the input cannot be decoded as hex #1085 2021-10-05 16:44:18 +03:00
forgedhallpass 79de2d82cb [feature] Add coloring to debug information #999
* adding status color support for all existing HTTP versions
2021-10-05 15:10:03 +03:00
forgedhallpass 742a5c44fc Merge remote-tracking branch 'origin/dev' into colorize_responses 2021-10-05 13:20:21 +03:00
GitHub Action eb2dee22f1 Auto Generate Syntax Docs + JSONSchema [Mon Oct 4 20:40:57 UTC 2021] 🤖 2021-10-04 20:40:57 +00:00
mzack 407e5cbfeb Adding support for custom resolvers in DNS templates 2021-10-04 15:31:14 +02:00
Sandeep Singh 7d05446f29
Merge pull request #1069 from sullo/dev
Don't add Host header if unsafe is true
2021-10-04 16:30:29 +05:30
Sandeep Singh 7fce0bce51
Merge branch 'dev' into bugfix-1015-alpine-chrome 2021-10-04 04:22:57 +05:30
sandeep 27cc0d61bc misc update 2021-10-04 04:14:15 +05:30
sandeep 71153c3c39 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into interactsh-integration-test 2021-10-04 03:56:32 +05:30
nothinux e2349b1d2d add test live response 2021-10-02 22:10:05 +07:00
nothinux 0c2b79bbf5 using table driven tests 2021-10-02 15:05:03 +07:00
nothinux d08d9d2dc0 add test for response without http minor version 2021-10-02 14:31:18 +07:00
nothinux 68f3fb51e5 add minor version to HTTP/2 & HTTP/3 2021-10-02 14:30:40 +07:00
forgedhallpass b55f59ec26 Show the command line for the integration/regression tests when the debug option is enabled.
* minor code cleanup and code duplication removal
2021-10-01 18:23:06 +03:00
forgedhallpass 08cd7a4ba7 [feature] Add coloring to debug information #999
* extracted common logic and made sure that all requests implement the same interface
2021-10-01 16:52:38 +03:00
forgedhallpass b8a2b2a1c4 [feature] Add coloring to debug information #999
* fix nil pointer dereference
2021-10-01 15:10:17 +03:00
forgedhallpass 898c9431b5 [feature] Add coloring to debug information #999
* corrected/renamed receivers from one character names to human-readable format
2021-10-01 14:30:04 +03:00
forgedhallpass a00083e221 [feature] Add coloring to debug information #999
* remove some of the code duplication with a different approach
2021-10-01 14:24:45 +03:00
sandeep 4f8fb0e516 Interactsh server update 2021-10-01 00:40:13 +05:30
forgedhallpass aa78b58866 [feature] Add coloring to debug information #999 [WIP]
* if there are multiple matchers, the response is only displayed once, with all the matching values colored
2021-09-30 21:12:44 +03:00
forgedhallpass dccd47ed19 [feature] Add coloring to debug information #999 [WIP]
Return the matched content in case of multiple regex/binary matchers (+test)
2021-09-30 20:36:39 +03:00
Sullo 73cd806dbf Merge branch 'dev' of https://github.com/sullo/nuclei into dev 2021-09-30 13:25:22 -04:00
Sullo 3abffe1f5d Only add a Host header automatically if the raw request is *not* marked unsafe.
This will prevent nuclei from adding it when the template author doesn’t want it and uses unsafe: true
Templates using raw requests without Host header were modified in https://github.com/projectdiscovery/nuclei-templates/pull/2784
2021-09-30 13:22:53 -04:00
forgedhallpass d10dfb550e Implicitly set the headless flag if template validation was requested, in order to correctly validate headless templates instead of complaining about "cannot create template executer" 2021-09-30 19:07:59 +03:00
forgedhallpass 8fdc9a7164 Minor optimization: short-circuit the updateTemplates logic if template update was not requested 2021-09-29 19:44:37 +03:00
forgedhallpass 4be6b3cc96 [feature] Add coloring to debug information #999 [WIP]
TODO:
* if there are multiple matchers, make sure the response is only displayed once, with all the matching values colored
* remove code duplication from the request.go files
2021-09-29 19:43:46 +03:00
Ice3man543 7405254c72 Misc work on ws protocol 2021-09-29 04:53:42 +05:30
Ice3man 8a8d61996f
Merge pull request #1046 from projectdiscovery/matchers-enhancement#555
Add payload, global variable, helper support to matchers
2021-09-27 20:58:50 +05:30
Ice3man543 b76c1f99cc Misc changes to ws protocol 2021-09-27 20:58:05 +05:30
Ice3man543 396f17484e Added websocket protocol support to nuclei 2021-09-27 18:02:49 +05:30
mzack fc868aba4a misc 2021-09-26 22:36:44 +02:00
mzack 71e4396bd4 Adding support to preserve input order 2021-09-26 22:33:12 +02:00
Sandeep Singh b984f7d63c
Merge pull request #1036 from revblock/master
resolves project-discovery/nuclei#822 - Add severity label to GitHub reporter
2021-09-26 18:35:34 +05:30
sandeep 74253459a8 misc update 2021-09-26 18:20:05 +05:30
sandeep 9490146db9 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into disk-cleanup 2021-09-26 18:08:15 +05:30
sandeep 5cd9ce03df version update 2021-09-26 18:03:18 +05:30
Sandeep Singh 91fa16c067
Merge pull request #1060 from projectdiscovery/bugfix-1053-unsafe-unwanted-ops
Removing unwanted bytes operation for unsafe requests
2021-09-26 17:53:00 +05:30
mzack 50fa95747a Removing unwanted bytes operation for unsafe requests 2021-09-26 08:31:24 +02:00
mzack ce205ae8a0 Adding support for installed chrome browser 2021-09-26 07:56:35 +02:00
mzack 0397068dd0 Fixing extended dns edge cases 2021-09-26 07:22:00 +02:00
Ice3man543 1bf023abc2 Disk report should include matcher or extractor name 2021-09-25 21:40:38 +05:30
Ice3man543 0b11b80d8a Fixed some bugs with ssl protocols + misc enhancements 2021-09-24 19:35:00 +05:30
Ice3man543 f6e9acf06f More work on other protocol additions 2021-09-23 18:30:44 +05:30
Ice3man543 5c31b75ac7 Added ssl protocol to nuclei 2021-09-22 22:41:07 +05:30
sandeep aff4197ea9 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into matchers-enhancement#555 2021-09-21 16:36:58 +05:30