daffainfo
/
nuclei
mirror of https://github.com/daffainfo/nuclei.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,054 Commits
1 Branch
0 Tags
28 MiB
Commit Graph

558 Commits (f9269bcaf5a5b3eafe9b74b4cd096af9b7e57dbb)

Author SHA1 Message Date
sandeep 50bad75cb4 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into interactsh-first-match-stop 2021-12-21 15:46:37 +05:30
Sajad Parra 911045ae9a add stop at first match for interactsh matchers 2021-12-21 14:20:03 +05:30
mzack 0a9f890fdd Removing invalid negative paths for windows 2021-12-20 14:11:55 +01:00
mzack 63b194c10a refactoring stop-resume logic with better tracking 2021-12-16 22:32:03 +01:00
Ice3man fea3fabdf2
Misc changes to update logic (#1212) 
* Misc changes to update logic

* Misc adjustments to update logic

* update: build check

* update: revert test update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2021-12-16 13:59:19 +05:30
mzack e279e0437d moving resume file to config folder 2021-12-10 12:45:29 +01:00
mzack 2f4b131f26 fixing resume skipping on-going scans 2021-12-10 12:27:34 +01:00
mzack9999 edc6e5f9b3 fix cross-os chunks calculation 2021-12-06 18:56:52 +01:00
Mzack9999 40d01412cb Fixing templates bundle unzip on windows 2021-12-06 18:12:39 +01:00
Sandeep Singh df55f7a2eb
Disabling no-sandbox in headless engine (#1135) 
* Disabling no-sandbox in headless engine

* limiting disabling sandbox to bare minimum

* adding warnings related to linux os and root user requirement

Co-authored-by: mzack <marco.rivoli.nvh@gmail.com>
 2021-12-05 20:14:16 +05:30
Mzack9999 3c88afac0c
Fixing payloads path during validation (#1320) 
* Fixing payloads path during validation

* Added GH Action for public template parsing / validation

* tracking payload errors as syntax warnings

* improving path parsing + introducing hard failure for runtime errors on validation

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2021-12-05 19:41:14 +05:30
Sandeep Singh a0da7452e3
Merge pull request #1315 from projectdiscovery/validate-flag 
validate flag updates
 2021-12-02 17:23:34 +05:30
LuitelSamikshya 6d5146e540 validate flag updates 2021-12-01 10:35:18 -06:00
Ice3man d6cfa556b8
Merge pull request #1306 from projectdiscovery/fix-stdin-reading 
fix: #1274 spawned nuclei child process hangs reading stdin
 2021-11-30 00:28:00 +05:30
mzack 2140ffa382 Adding stop-resume support 2021-11-29 14:38:45 +01:00
Ice3man543 c9943c0b2a fix: #1274 spawned nuclei child process hangs reading stdin 
Next and final attempt at fixing the stdin parsing issue when spawing as child from nodejs
 2021-11-29 14:38:55 +05:30
forgedhallpass 7e22d70ded refactor/documentation: typos and grammatical errors 2021-11-25 18:54:16 +02:00
forgedhallpass ec6889931d refactor: linter driven fixes 
* x = x + ""  => x += ""
* pre-allocating slice with known size
* added t.Helper() methods in test helpers
* complex if-else conditions replaced by switches
* errors should be checked using error.Is() instead of ==
* function parameter should start with lower case letter
* removed unnecessary type definition
* variable/label naming convention: camelCase instead of snake_case
 2021-11-25 17:57:22 +02:00
forgedhallpass 3fd1f57b96 refactor: godoc and comment uniformization 
Adding space after // and before the godoc/comment
 2021-11-25 17:03:56 +02:00
forgedhallpass fdd22ab668 refactor: Wrap errors using %w in fmt.Errorf 
see:
 * https://github.com/xxpxxxxp/intellij-plugin-golangci-lint/blob/master/explanation/goerr113.md
 * https://go.dev/blog/go1.13-errors#wrapping-errors-with-w
 2021-11-25 16:24:37 +02:00
forgedhallpass f9c214a66f refactor: update logic refactor to make it more testable 
Introduced logic to test for zip slip (path traversal)
 2021-11-25 16:24:28 +02:00
forgedhallpass 4bccb6cf8a fix: File and directory creation permission changes 
Directories: 0755 (5 - group and other can read cd into the directory and read it's content)
Files: 0644 (4 - group and other can only read the created files)
Tests files: 0777
 2021-11-25 14:37:57 +02:00
Ice3man 1581c96e4e
Added matched-status flag + template-path and url to output (#1272) 
* Added matched-status flag + template-path and url to output
 2021-11-22 17:53:25 +05:30
Mzack9999 ca9676f52e
Adding support for clustering within workflow (#1255) 
* Adding support for clustering within workflow
 2021-11-22 04:49:53 +05:30
Sajad f74ff3fc49
Tag based struct validation (#1256) 
* Added tag based struct validation
 2021-11-20 13:25:27 +05:30
Ice3man 50a816fce9
Fixed a crash with uninitialized interactsh client (#1251) 
* Fixed a crash with uninitialized interactsh client
 2021-11-16 20:02:39 +05:30
Ice3man543 c1a35b3ff9 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into more-protocols 2021-11-11 17:21:25 +05:30
LuitelSamikshya 0e46d3e041
feat: Checking socks5 proxy before launching a scan #1001 (#1225) 
* Proxy validation and list input support

Co-authored-by: Sajad Parra <parrasajad@gmail.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2021-11-10 21:30:03 +05:30
Ice3man543 213853c45d Merge from dev 2021-11-08 15:40:18 +05:30
Sandeep Singh 3c53e262e3
Merge pull request #1219 from projectdiscovery/uniq-interact 
Unique Interactsh URL
 2021-11-06 03:33:09 +05:30
Sajad Parra 4d8eaad0a3 add unit test for unique interactsh url #1068 2021-11-05 15:27:49 +05:30
Ice3man543 8ad3ebcd05 Made code changes as per review comments 2021-11-05 03:01:41 +05:30
Ice3man543 390ca8b3c6 Merge from dev 2021-11-03 18:58:00 +05:30
Sandeep Singh 0f897a3977
Merge pull request #1186 from projectdiscovery/protocol-types 
Added new type and exclude-type flag
 2021-11-03 18:47:26 +05:30
Ice3man543 47949c0b52 Use separate type enum for protocol types 2021-11-03 17:18:35 +05:30
Ice3man543 cf7628c450 Misc changes according to review 2021-11-03 02:34:48 +05:30
Ice3man 09cad2557c
Merge pull request #1123 from EndPositive/remote-template-workflow-lists 
Remote template workflow lists
 2021-11-02 16:12:29 +05:30
Ice3man543 a274cc5722 Misc integration test 2021-11-01 15:51:56 +05:30
Ice3man543 bb05be7b95 Added integration tests for websocket + misc fixes 2021-11-01 15:47:20 +05:30
Ice3man 331ae0f03b
Merge pull request #1171 from kchason/client-cert-auth 
Add Support for Client Certificate Authentication
 2021-10-31 02:08:18 +05:30
Alexey Zhuchkov 3f1186da2b Add error log support 2021-10-30 14:12:21 +03:00
Ice3man543 5393cc4cd5 Adjusting packages for more API-type design 2021-10-29 03:19:43 +05:30
Ice3man543 1ca2cf3bea Misc 2021-10-28 23:17:05 +05:30
Ice3man543 0abc7202b1 Misc fixes with goflags 2021-10-28 17:45:38 +05:30
Ice3man543 d124dbacc7 Moved all important execution stuff to engine 2021-10-28 17:20:07 +05:30
kchason 4a1440a17b Merge dev branch 2021-10-27 12:13:23 -04:00
Ice3man543 c16c93fe7c refactor the modules to core 2021-10-27 16:50:36 +05:30
Ice3man543 97645dde52 Added new workpool package + Misc refactor 2021-10-27 15:53:04 +05:30
Jop Zitman 86cf09fa3f Merge branch 'dev' into remote-template-workflow-lists 
# Conflicts:
#	v2/cmd/nuclei/main.go
 2021-10-26 15:33:39 +02:00
Ice3man543 6541b04f4c Added new type and exclude-type flag 2021-10-25 23:24:42 +05:30
Ice3man543 ca6cc51302 Color change for warning disclaimer 2021-10-25 17:47:39 +05:30
kchason 4b70560cc9 Merge branch 'master' into client-cert-auth 2021-10-21 13:59:39 -04:00
sandeep fa79a16a9d reverting #1017 2021-10-21 05:56:15 +05:30
kchason 9c77f15012 Argument checks for presence and validity 2021-10-20 11:32:26 -04:00
Ice3man543 c4e5fa49dd Added integration tests for http and network 2021-10-19 22:17:44 +05:30
Ice3man543 de01158556 Removed non-used code 2021-10-19 21:52:40 +05:30
Ice3man543 8c9d9a77bf Added self-contained to network protocol 2021-10-17 18:50:07 +05:30
Ice3man543 a820594506 Merge branch 'dev' of https://github.com/projectdiscovery/nuclei into self-contained-templates 2021-10-17 10:25:25 +05:30
Sandeep Singh 680a2ad76b
Merge branch 'dev' into feature-preserve-input-order 2021-10-16 18:47:26 +05:30
Jop Zitman 81102750a1 Implement integration tests for remote template and workflow urls. 2021-10-14 23:33:08 +02:00
Jop Zitman 14bb1b7b21 Implement `-template-url` and `-workflow-url` for retrieving lists of templates/workflows to run. 2021-10-14 23:33:08 +02:00
Ice3man543 736a530bde Added self-contained http requests implementation 2021-10-14 22:26:01 +05:30
mzack 30558eabf4 Merge branch 'dev' into feature-preserve-input-order 2021-10-12 09:42:23 +02:00
forgedhallpass 8392143944 Merge remote-tracking branch 'origin/dev' into colorize_responses 2021-10-11 14:00:53 +03:00
Ice3man e79c6262b9
Merge branch 'dev' into cli-variables-as-payload 2021-10-09 19:57:48 +05:30
Alexey Zhuchkov 3e8a0af36f Add exclude severity filter 2021-10-08 22:27:27 +03:00
forgedhallpass f96168fc2c [feature] Add coloring to debug information #999 
* Reverted the bug introduced by mistake (checking file exists using os.IsExist vs !os.IsNotExist)
 2021-10-08 20:17:37 +03:00
forgedhallpass 0a9704ebd8 [feature] Add coloring to debug information #999 
* code-review fixes
 2021-10-07 20:54:12 +03:00
mzack fc31688f69 fixing lint errors 2021-10-07 12:40:18 +02:00
mzack 12b6b2ca89 Add support for CLI payload variables 2021-10-07 12:36:27 +02:00
forgedhallpass 742a5c44fc Merge remote-tracking branch 'origin/dev' into colorize_responses 2021-10-05 13:20:21 +03:00
forgedhallpass b55f59ec26 Show the command line for the integration/regression tests when the debug option is enabled. 
* minor code cleanup and code duplication removal
 2021-10-01 18:23:06 +03:00
forgedhallpass d10dfb550e Implicitly set the headless flag if template validation was requested, in order to correctly validate headless templates instead of complaining about "cannot create template executer" 2021-09-30 19:07:59 +03:00
forgedhallpass 8fdc9a7164 Minor optimization: short-circuit the updateTemplates logic if template update was not requested 2021-09-29 19:44:37 +03:00
mzack fc868aba4a misc 2021-09-26 22:36:44 +02:00
mzack 71e4396bd4 Adding support to preserve input order 2021-09-26 22:33:12 +02:00
sandeep 76b86ba2a0 disk cleanups 2021-09-19 16:26:47 +05:30
forgedhallpass 2baf695709 Merge remote-tracking branch 'origin/dev' into code_smells 2021-09-16 20:00:21 +03:00
Sandeep Singh 4845b85328
Merge pull request #1026 from projectdiscovery/github-rate-limit-fix 
GitHub rate limit bug fix
 2021-09-16 21:27:46 +05:30
forgedhallpass 9b45c31db8 Merge remote-tracking branch 'origin/dev' into code_smells 2021-09-16 15:49:51 +03:00
sandeep cefbd376ef misc update 2021-09-16 17:27:06 +05:30
Ice3man543 9bbcb57be0 Added disclaimer for auto update to comments 2021-09-16 16:49:09 +05:30
Ice3man543 4d52fb45e4 Misc changes to update and ignore handling 2021-09-15 04:01:40 +05:30
Ice3man543 6667f285d3 fix: consider missing templates directory in update check 2021-09-15 03:48:40 +05:30
forgedhallpass 01d0fb485c Fixes 1016 # Implicitly enable the Verbose option if VerboseVerbose is set. 2021-09-13 22:18:43 +03:00
Ice3man543 0f232bce25 Don't show message without -ut 2021-09-13 15:47:29 +05:30
Ice3man543 04a4159fa5 Misc changes to update mechanism 2021-09-13 15:45:24 +05:30
Ice3man543 be46cb2b32 Show not found new templates message 2021-09-13 15:32:40 +05:30
Ice3man543 638c7633cb Misc updates 2021-09-13 15:03:04 +05:30
Ice3man543 8a1a739355 Misc 2021-09-13 14:57:30 +05:30
Ice3man543 5cda839152 Fixed an issue with nuclei version for templates 2021-09-13 14:38:22 +05:30
Ice3man543 cb39fd9d13 Use separate nuclei version check infra 2021-09-11 18:40:07 +05:30
forgedhallpass c762cc88aa Merge remote-tracking branch 'origin/dev' into code_smells 2021-09-10 15:33:09 +03:00
Ice3man 8f62da84c0
Merge pull request #1004 from projectdiscovery/new-info-fields 
Added new info block fields classification and remediation
 2021-09-10 15:03:14 +05:30
Ice3man543 e10c4d68ff Fixed issue with duplicate ids in clusterer 2021-09-10 00:21:36 +05:30
Ice3man543 e683212bb8 Made irr default for reporting + misc on new fields 2021-09-09 18:53:55 +05:30
Ice3man543 7d42967139 Merge branch 'master' of https://github.com/projectdiscovery/nuclei into dev 2021-09-08 20:24:00 +05:30
Geeknik Labs c891d113db
Update banner.go 
Missing punctuation.
 2021-09-08 09:10:22 -05:00
forgedhallpass 555e609173 Merge remote-tracking branch 'origin/dev' into code_smells 2021-09-07 17:36:34 +03:00
forgedhallpass 0ce33927c7 Typo fixes. 2021-09-07 17:31:46 +03:00