nuclei/pkg/workflows/workflows.go

package workflows

import (
	"fmt"

	"github.com/projectdiscovery/nuclei/v3/pkg/model/types/stringslice"
	"github.com/projectdiscovery/nuclei/v3/pkg/operators"
	"github.com/projectdiscovery/nuclei/v3/pkg/protocols"
	templateTypes "github.com/projectdiscovery/nuclei/v3/pkg/templates/types"
)

// Workflow is a workflow to execute with chained requests, etc.
type Workflow struct {
	// description: |
	//   Workflows is a list of workflows to execute for a template.
	Workflows []*WorkflowTemplate `yaml:"workflows,omitempty" json:"workflows,omitempty" jsonschema:"title=list of workflows to execute,description=List of workflows to execute for template"`

	Options *protocols.ExecutorOptions `yaml:"-" json:"-"`
}

// WorkflowTemplate is a template to be run as part of a workflow
type WorkflowTemplate struct {
	// description: |
	//   Template is a single template or directory to execute as part of workflow.
	// examples:
	//   - name: A single template
	//     value: "\"dns/worksites-detection.yaml\""
	//   - name: A template directory
	//     value: "\"misconfigurations/aem\""
	Template string `yaml:"template,omitempty" json:"template,omitempty" jsonschema:"title=template/directory to execute,description=Template or directory to execute as part of workflow"`
	// description: |
	//    Tags to run templates based on.
	Tags stringslice.StringSlice `yaml:"tags,omitempty" json:"tags,omitempty" jsonschema:"title=tags to execute,description=Tags to run template based on"`
	// description: |
	//    Matchers perform name based matching to run subtemplates for a workflow.
	Matchers []*Matcher `yaml:"matchers,omitempty" json:"matchers,omitempty" jsonschema:"title=name based template result matchers,description=Matchers perform name based matching to run subtemplates for a workflow"`
	// description: |
	//    Subtemplates are run if the `template` field Template matches.
	Subtemplates []*WorkflowTemplate `yaml:"subtemplates,omitempty" json:"subtemplates,omitempty" jsonschema:"title=subtemplate based result matchers,description=Subtemplates are ran if the template field Template matches"`
	// Executers perform the actual execution for the workflow template
	Executers []*ProtocolExecuterPair `yaml:"-" json:"-"`
}

// ProtocolExecuterPair is a pair of protocol executer and its options
type ProtocolExecuterPair struct {
	Executer     protocols.Executer
	Options      *protocols.ExecutorOptions
	TemplateType templateTypes.ProtocolType
}

// Matcher performs conditional matching on the workflow template results.
type Matcher struct {
	// description: |
	//    Name is the name of the items to match.
	Name stringslice.StringSlice `yaml:"name,omitempty" json:"name,omitempty" jsonschema:"title=name of items to match,description=Name of items to match"`
	// description: |
	//   Condition is the optional condition between names. By default,
	//   the condition is assumed to be OR.
	// values:
	//   - "and"
	//   - "or"
	Condition string `yaml:"condition,omitempty" json:"condition,omitempty" jsonschema:"title=condition between names,description=Condition between the names,enum=and,enum=or"`
	// description: |
	//    Subtemplates are run if the name of matcher matches.
	Subtemplates []*WorkflowTemplate `yaml:"subtemplates,omitempty" json:"subtemplates,omitempty" jsonschema:"title=templates to run after match,description=Templates to run after match"`

	condition ConditionType
}

// ConditionType is the type of condition for matcher
type ConditionType int

const (
	// ANDCondition matches responses with AND condition in arguments.
	ANDCondition ConditionType = iota + 1
	// ORCondition matches responses with AND condition in arguments.
	ORCondition
)

// ConditionTypes is a table for conversion of condition type from string.
var ConditionTypes = map[string]ConditionType{
	"and": ANDCondition,
	"or":  ORCondition,
}

// Compile compiles the matcher for workflow
func (matcher *Matcher) Compile() error {
	var ok bool
	if matcher.Condition != "" {
		matcher.condition, ok = ConditionTypes[matcher.Condition]
		if !ok {
			return fmt.Errorf("unknown condition specified: %s", matcher.Condition)
		}
	} else {
		matcher.condition = ORCondition
	}
	return nil
}

// Match matches a name for matcher names or name
func (matcher *Matcher) Match(result *operators.Result) bool {
	names := matcher.Name.ToSlice()
	if len(names) == 0 {
		return false
	}

	for i, name := range names {
		matchOK := result.HasMatch(name)
		extractOK := result.HasExtract(name)

		if !matchOK && !extractOK {
			if matcher.condition == ANDCondition {
				return false
			}
			continue
		}
		if matcher.condition == ORCondition {
			return true
		} else if len(names)-1 == i {
			return true
		}
	}
	return false
}
workflow prototype 2020-06-26 10:23:54 +02:00			`package workflows`

RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`import (`
Added workflow names based condition (#2594) * Added workflow names based condition * Added conditional filtering to workflow executor * Replaced names with single name stringslice * Fixed workflow matcher condition + tests * Fixed workflow item name 2022-09-19 16:49:30 +05:30			`"fmt"`

nuclei v3 : misc updates (#4247) * use parsed options while signing * update project layout to v3 * fix .gitignore * remove example template * misc updates * bump tlsx version * hide template sig warning with env * js: retain value while using log * fix nil pointer derefernce * misc doc update --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-10-17 17:44:13 +05:30			`"github.com/projectdiscovery/nuclei/v3/pkg/model/types/stringslice"`
			`"github.com/projectdiscovery/nuclei/v3/pkg/operators"`
			`"github.com/projectdiscovery/nuclei/v3/pkg/protocols"`
			`templateTypes "github.com/projectdiscovery/nuclei/v3/pkg/templates/types"`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`)`
Rewrote workflows engine in a simpler manner 2020-12-26 02:08:48 +05:30
Added directory support 2020-06-29 17:43:08 +05:30			`// Workflow is a workflow to execute with chained requests, etc.`
workflow prototype 2020-06-26 10:23:54 +02:00			`type Workflow struct {`
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			`// description: \|`
			`// Workflows is a list of workflows to execute for a template.`
fix some json deserialization issues 2023-02-07 16:10:40 +08:00			Workflows []*WorkflowTemplate `yaml:"workflows,omitempty" json:"workflows,omitempty" jsonschema:"title=list of workflows to execute,description=List of workflows to execute for template"`
Added parallelism to workflows 2021-02-22 17:49:02 +05:30
"Executer" to "Executor" (#3760) * Fix spelling of "executer" to "executor" * minor change: use defer file.Close() --------- Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> 2023-05-31 16:58:10 -04:00			Options *protocols.ExecutorOptions `yaml:"-" json:"-"`
Added workflow runtime generation from yaml 2020-11-12 23:28:24 +05:30			`}`

Typo fixes. 2021-09-07 17:31:46 +03:00			`// WorkflowTemplate is a template to be run as part of a workflow`
Added workflow runtime generation from yaml 2020-11-12 23:28:24 +05:30			`type WorkflowTemplate struct {`
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			`// description: \|`
			`// Template is a single template or directory to execute as part of workflow.`
			`// examples:`
			`// - name: A single template`
			`// value: "\"dns/worksites-detection.yaml\""`
			`// - name: A template directory`
			`// value: "\"misconfigurations/aem\""`
fix some json deserialization issues 2023-02-07 16:10:40 +08:00			Template string `yaml:"template,omitempty" json:"template,omitempty" jsonschema:"title=template/directory to execute,description=Template or directory to execute as part of workflow"`
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			`// description: \|`
			`// Tags to run templates based on.`
fix some json deserialization issues 2023-02-07 16:10:40 +08:00			Tags stringslice.StringSlice `yaml:"tags,omitempty" json:"tags,omitempty" jsonschema:"title=tags to execute,description=Tags to run template based on"`
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			`// description: \|`
			`// Matchers perform name based matching to run subtemplates for a workflow.`
fix some json deserialization issues 2023-02-07 16:10:40 +08:00			Matchers []*Matcher `yaml:"matchers,omitempty" json:"matchers,omitempty" jsonschema:"title=name based template result matchers,description=Matchers perform name based matching to run subtemplates for a workflow"`
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			`// description: \|`
Typo fixes. 2021-09-07 17:31:46 +03:00			// Subtemplates are run if the `template` field Template matches.
fix some json deserialization issues 2023-02-07 16:10:40 +08:00			Subtemplates []*WorkflowTemplate `yaml:"subtemplates,omitempty" json:"subtemplates,omitempty" jsonschema:"title=subtemplate based result matchers,description=Subtemplates are ran if the template field Template matches"`
Added directory support to workflows 2021-01-17 12:56:29 +05:30			`// Executers perform the actual execution for the workflow template`
fix some json deserialization issues 2023-02-07 16:10:40 +08:00			Executers []*ProtocolExecuterPair `yaml:"-" json:"-"`
Added directory support to workflows 2021-01-17 12:56:29 +05:30			`}`

			`// ProtocolExecuterPair is a pair of protocol executer and its options`
			`type ProtocolExecuterPair struct {`
Added probing for URL + input based on protocol (#2614) * Added workflow names based condition * Added conditional filtering to workflow executor * Replaced names with single name stringslice * Added probing for URL + input based on protocol * Remove debug comments * Fixed typo * Fixed failing tests * Fixed workflow matcher condition + tests * Fixed workflow item name * Switch to if-else * Fixed review comment strict * Increase bulk size * Added default port for SSL protocol + misc changes * Fixed failing tests * Fixed misc changes to executer * Fixed failing self-contained and offlinehttp tests * Fixed atomic increment operation * misc update * Fixed failing builds Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2022-10-20 17:23:00 +05:30			`Executer protocols.Executer`
"Executer" to "Executor" (#3760) * Fix spelling of "executer" to "executor" * minor change: use defer file.Close() --------- Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> 2023-05-31 16:58:10 -04:00			`Options *protocols.ExecutorOptions`
Added probing for URL + input based on protocol (#2614) * Added workflow names based condition * Added conditional filtering to workflow executor * Replaced names with single name stringslice * Added probing for URL + input based on protocol * Remove debug comments * Fixed typo * Fixed failing tests * Fixed workflow matcher condition + tests * Fixed workflow item name * Switch to if-else * Fixed review comment strict * Increase bulk size * Added default port for SSL protocol + misc changes * Fixed failing tests * Fixed misc changes to executer * Fixed failing self-contained and offlinehttp tests * Fixed atomic increment operation * misc update * Fixed failing builds Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2022-10-20 17:23:00 +05:30			`TemplateType templateTypes.ProtocolType`
Added workflow runtime generation from yaml 2020-11-12 23:28:24 +05:30			`}`

			`// Matcher performs conditional matching on the workflow template results.`
			`type Matcher struct {`
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			`// description: \|`
Added workflow names based condition (#2594) * Added workflow names based condition * Added conditional filtering to workflow executor * Replaced names with single name stringslice * Fixed workflow matcher condition + tests * Fixed workflow item name 2022-09-19 16:49:30 +05:30			`// Name is the name of the items to match.`
fix some json deserialization issues 2023-02-07 16:10:40 +08:00			Name stringslice.StringSlice `yaml:"name,omitempty" json:"name,omitempty" jsonschema:"title=name of items to match,description=Name of items to match"`
Added workflow names based condition (#2594) * Added workflow names based condition * Added conditional filtering to workflow executor * Replaced names with single name stringslice * Fixed workflow matcher condition + tests * Fixed workflow item name 2022-09-19 16:49:30 +05:30			`// description: \|`
			`// Condition is the optional condition between names. By default,`
			`// the condition is assumed to be OR.`
			`// values:`
			`// - "and"`
			`// - "or"`
fix some json deserialization issues 2023-02-07 16:10:40 +08:00			Condition string `yaml:"condition,omitempty" json:"condition,omitempty" jsonschema:"title=condition between names,description=Condition between the names,enum=and,enum=or"`
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			`// description: \|`
Typo fixes. 2021-09-07 17:31:46 +03:00			`// Subtemplates are run if the name of matcher matches.`
fix some json deserialization issues 2023-02-07 16:10:40 +08:00			Subtemplates []*WorkflowTemplate `yaml:"subtemplates,omitempty" json:"subtemplates,omitempty" jsonschema:"title=templates to run after match,description=Templates to run after match"`
Added workflow names based condition (#2594) * Added workflow names based condition * Added conditional filtering to workflow executor * Replaced names with single name stringslice * Fixed workflow matcher condition + tests * Fixed workflow item name 2022-09-19 16:49:30 +05:30
			`condition ConditionType`
			`}`

			`// ConditionType is the type of condition for matcher`
			`type ConditionType int`

			`const (`
			`// ANDCondition matches responses with AND condition in arguments.`
			`ANDCondition ConditionType = iota + 1`
			`// ORCondition matches responses with AND condition in arguments.`
			`ORCondition`
			`)`

			`// ConditionTypes is a table for conversion of condition type from string.`
			`var ConditionTypes = map[string]ConditionType{`
			`"and": ANDCondition,`
			`"or": ORCondition,`
			`}`

			`// Compile compiles the matcher for workflow`
			`func (matcher *Matcher) Compile() error {`
			`var ok bool`
			`if matcher.Condition != "" {`
			`matcher.condition, ok = ConditionTypes[matcher.Condition]`
			`if !ok {`
			`return fmt.Errorf("unknown condition specified: %s", matcher.Condition)`
			`}`
			`} else {`
			`matcher.condition = ORCondition`
			`}`
			`return nil`
			`}`

			`// Match matches a name for matcher names or name`
			`func (matcher Matcher) Match(result operators.Result) bool {`
			`names := matcher.Name.ToSlice()`
			`if len(names) == 0 {`
			`return false`
			`}`

			`for i, name := range names {`
Making matcher name case insensitive 2022-11-25 17:22:50 +01:00			`matchOK := result.HasMatch(name)`
			`extractOK := result.HasExtract(name)`
Added workflow names based condition (#2594) * Added workflow names based condition * Added conditional filtering to workflow executor * Replaced names with single name stringslice * Fixed workflow matcher condition + tests * Fixed workflow item name 2022-09-19 16:49:30 +05:30
			`if !matchOK && !extractOK {`
			`if matcher.condition == ANDCondition {`
			`return false`
			`}`
			`continue`
			`}`
			`if matcher.condition == ORCondition {`
			`return true`
			`} else if len(names)-1 == i {`
			`return true`
			`}`
			`}`
			`return false`
adding workflow's same directory path search for template variables 2020-07-26 20:14:05 +02:00			`}`