2020-12-21 00:04:11 +05:30
|
|
|
package output
|
|
|
|
|
|
|
|
|
|
import (
|
2023-11-11 02:12:27 +03:00
|
|
|
"encoding/base64"
|
2022-04-01 14:29:02 -05:00
|
|
|
"fmt"
|
2021-10-30 14:19:11 +03:00
|
|
|
"io"
|
2024-05-25 00:29:04 +05:30
|
|
|
"log/slog"
|
2024-09-24 18:43:35 +05:30
|
|
|
"maps"
|
2020-12-21 00:04:11 +05:30
|
|
|
"os"
|
2022-04-01 14:29:02 -05:00
|
|
|
"path/filepath"
|
2020-12-23 20:46:42 +05:30
|
|
|
"regexp"
|
2022-04-01 14:29:02 -05:00
|
|
|
"strings"
|
2022-05-10 18:47:22 +05:30
|
|
|
"sync"
|
2023-08-18 01:01:16 +05:30
|
|
|
"sync/atomic"
|
2021-01-14 13:21:21 +05:30
|
|
|
"time"
|
2020-12-21 00:04:11 +05:30
|
|
|
|
2021-07-19 21:04:08 +03:00
|
|
|
"github.com/pkg/errors"
|
2023-08-17 13:35:15 -04:00
|
|
|
"go.uber.org/multierr"
|
2021-07-19 21:04:08 +03:00
|
|
|
|
2020-12-21 11:58:33 +05:30
|
|
|
jsoniter "github.com/json-iterator/go"
|
2020-12-21 00:04:11 +05:30
|
|
|
"github.com/logrusorgru/aurora"
|
2021-07-19 21:04:08 +03:00
|
|
|
|
2022-04-01 14:29:02 -05:00
|
|
|
"github.com/projectdiscovery/gologger"
|
2021-04-16 16:56:41 +05:30
|
|
|
"github.com/projectdiscovery/interactsh/pkg/server"
|
2023-10-17 17:44:13 +05:30
|
|
|
"github.com/projectdiscovery/nuclei/v3/internal/colorizer"
|
2023-11-11 02:12:27 +03:00
|
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/catalog/config"
|
2023-10-17 17:44:13 +05:30
|
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/model"
|
|
|
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/model/types/severity"
|
|
|
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/operators"
|
2023-11-28 14:26:23 +05:30
|
|
|
protocolUtils "github.com/projectdiscovery/nuclei/v3/pkg/protocols/utils"
|
2023-10-17 17:44:13 +05:30
|
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/types"
|
2024-05-25 00:29:04 +05:30
|
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/types/nucleierr"
|
2023-10-17 17:44:13 +05:30
|
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/utils"
|
2024-05-25 00:29:04 +05:30
|
|
|
"github.com/projectdiscovery/utils/errkit"
|
2022-11-06 21:24:23 +01:00
|
|
|
fileutil "github.com/projectdiscovery/utils/file"
|
2023-03-24 00:44:32 +05:30
|
|
|
osutils "github.com/projectdiscovery/utils/os"
|
2024-05-15 15:34:59 +02:00
|
|
|
unitutils "github.com/projectdiscovery/utils/unit"
|
2024-05-25 00:29:04 +05:30
|
|
|
urlutil "github.com/projectdiscovery/utils/url"
|
2020-12-21 00:04:11 +05:30
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// Writer is an interface which writes output to somewhere for nuclei events.
|
|
|
|
|
type Writer interface {
|
|
|
|
|
// Close closes the output writer interface
|
|
|
|
|
Close()
|
2020-12-21 12:04:33 +05:30
|
|
|
// Colorizer returns the colorizer instance for writer
|
|
|
|
|
Colorizer() aurora.Aurora
|
2020-12-21 00:04:11 +05:30
|
|
|
// Write writes the event to file and/or screen.
|
2020-12-25 20:33:52 +05:30
|
|
|
Write(*ResultEvent) error
|
2021-11-22 17:53:25 +05:30
|
|
|
// WriteFailure writes the optional failure event for template to file and/or screen.
|
2023-08-17 13:35:15 -04:00
|
|
|
WriteFailure(*InternalWrappedEvent) error
|
2021-02-03 02:09:45 +05:30
|
|
|
// Request logs a request in the trace log
|
2020-12-21 11:58:33 +05:30
|
|
|
Request(templateID, url, requestType string, err error)
|
2025-02-13 17:13:39 +05:30
|
|
|
// RequestStatsLog logs a request stats log
|
|
|
|
|
RequestStatsLog(statusCode, response string)
|
2022-04-01 14:29:02 -05:00
|
|
|
// WriteStoreDebugData writes the request/response debug data to file
|
|
|
|
|
WriteStoreDebugData(host, templateID, eventType string, data string)
|
2025-05-07 17:22:15 +05:30
|
|
|
// ResultCount returns the total number of results written
|
|
|
|
|
ResultCount() int
|
2020-12-21 00:04:11 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// StandardWriter is a writer writing output to file and screen for results.
|
|
|
|
|
type StandardWriter struct {
|
2023-11-18 16:25:37 +05:30
|
|
|
json bool
|
|
|
|
|
jsonReqResp bool
|
|
|
|
|
timestamp bool
|
|
|
|
|
noMetadata bool
|
|
|
|
|
matcherStatus bool
|
|
|
|
|
mutex *sync.Mutex
|
|
|
|
|
aurora aurora.Aurora
|
|
|
|
|
outputFile io.WriteCloser
|
|
|
|
|
traceFile io.WriteCloser
|
|
|
|
|
errorFile io.WriteCloser
|
|
|
|
|
severityColors func(severity.Severity) string
|
|
|
|
|
storeResponse bool
|
|
|
|
|
storeResponseDir string
|
2023-11-28 14:26:23 +05:30
|
|
|
omitTemplate bool
|
2023-11-18 16:25:37 +05:30
|
|
|
DisableStdout bool
|
|
|
|
|
AddNewLinesOutputFile bool // by default this is only done for stdout
|
2024-08-16 09:12:38 +03:00
|
|
|
KeysToRedact []string
|
2025-02-13 18:46:28 +05:30
|
|
|
|
|
|
|
|
// JSONLogRequestHook is a hook that can be used to log request/response
|
|
|
|
|
// when using custom server code with output
|
|
|
|
|
JSONLogRequestHook func(*JSONLogRequest)
|
2025-05-07 17:22:15 +05:30
|
|
|
|
|
|
|
|
resultCount atomic.Int32
|
2020-12-21 00:04:11 +05:30
|
|
|
}
|
|
|
|
|
|
2025-02-13 17:13:39 +05:30
|
|
|
var _ Writer = &StandardWriter{}
|
|
|
|
|
|
2020-12-23 20:46:42 +05:30
|
|
|
var decolorizerRegex = regexp.MustCompile(`\x1B\[[0-9;]*[a-zA-Z]`)
|
|
|
|
|
|
2020-12-25 12:55:46 +05:30
|
|
|
// InternalEvent is an internal output generation structure for nuclei.
|
|
|
|
|
type InternalEvent map[string]interface{}
|
|
|
|
|
|
2024-03-05 01:08:01 +01:00
|
|
|
func (ie InternalEvent) Set(k string, v interface{}) {
|
|
|
|
|
ie[k] = v
|
|
|
|
|
}
|
|
|
|
|
|
2020-12-25 12:55:46 +05:30
|
|
|
// InternalWrappedEvent is a wrapped event with operators result added to it.
|
|
|
|
|
type InternalWrappedEvent struct {
|
2023-03-17 14:41:16 +01:00
|
|
|
// Mutex is internal field which is implicitly used
|
|
|
|
|
// to synchronize callback(event) and interactsh polling updates
|
|
|
|
|
// Refer protocols/http.Request.ExecuteWithResults for more details
|
|
|
|
|
sync.RWMutex
|
|
|
|
|
|
2020-12-25 12:55:46 +05:30
|
|
|
InternalEvent InternalEvent
|
2020-12-26 02:09:16 +05:30
|
|
|
Results []*ResultEvent
|
2020-12-25 12:55:46 +05:30
|
|
|
OperatorsResult *operators.Result
|
2021-11-22 17:53:25 +05:30
|
|
|
UsesInteractsh bool
|
2023-08-18 01:01:16 +05:30
|
|
|
// Only applicable if interactsh is used
|
|
|
|
|
// This is used to avoid duplicate successful interactsh events
|
|
|
|
|
InteractshMatched atomic.Bool
|
2023-03-17 14:41:16 +01:00
|
|
|
}
|
|
|
|
|
|
2024-09-24 18:43:35 +05:30
|
|
|
func (iwe *InternalWrappedEvent) CloneShallow() *InternalWrappedEvent {
|
|
|
|
|
return &InternalWrappedEvent{
|
|
|
|
|
InternalEvent: maps.Clone(iwe.InternalEvent),
|
|
|
|
|
Results: nil,
|
|
|
|
|
OperatorsResult: nil,
|
|
|
|
|
UsesInteractsh: iwe.UsesInteractsh,
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-17 14:41:16 +01:00
|
|
|
func (iwe *InternalWrappedEvent) HasOperatorResult() bool {
|
|
|
|
|
iwe.RLock()
|
|
|
|
|
defer iwe.RUnlock()
|
|
|
|
|
|
|
|
|
|
return iwe.OperatorsResult != nil
|
|
|
|
|
}
|
|
|
|
|
|
2023-04-16 19:49:35 +02:00
|
|
|
func (iwe *InternalWrappedEvent) HasResults() bool {
|
|
|
|
|
iwe.RLock()
|
|
|
|
|
defer iwe.RUnlock()
|
|
|
|
|
|
|
|
|
|
return len(iwe.Results) > 0
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-17 14:41:16 +01:00
|
|
|
func (iwe *InternalWrappedEvent) SetOperatorResult(operatorResult *operators.Result) {
|
|
|
|
|
iwe.Lock()
|
|
|
|
|
defer iwe.Unlock()
|
|
|
|
|
|
|
|
|
|
iwe.OperatorsResult = operatorResult
|
2020-12-25 12:55:46 +05:30
|
|
|
}
|
|
|
|
|
|
2020-12-25 20:33:52 +05:30
|
|
|
// ResultEvent is a wrapped result event for a single nuclei output.
|
|
|
|
|
type ResultEvent struct {
|
2021-11-22 17:53:25 +05:30
|
|
|
// Template is the relative filename for the template
|
|
|
|
|
Template string `json:"template,omitempty"`
|
|
|
|
|
// TemplateURL is the URL of the template for the result inside the nuclei
|
|
|
|
|
// templates repository if it belongs to the repository.
|
|
|
|
|
TemplateURL string `json:"template-url,omitempty"`
|
2020-12-25 12:55:46 +05:30
|
|
|
// TemplateID is the ID of the template for the result.
|
2021-10-19 01:26:21 +05:30
|
|
|
TemplateID string `json:"template-id"`
|
2021-06-05 18:01:08 +05:30
|
|
|
// TemplatePath is the path of template
|
2022-12-27 20:02:48 +05:30
|
|
|
TemplatePath string `json:"template-path,omitempty"`
|
2023-11-11 02:12:27 +03:00
|
|
|
// TemplateEncoded is the base64 encoded template
|
|
|
|
|
TemplateEncoded string `json:"template-encoded,omitempty"`
|
2020-12-25 12:55:46 +05:30
|
|
|
// Info contains information block of the template for the result.
|
2021-07-12 17:20:01 +03:00
|
|
|
Info model.Info `json:"info,inline"`
|
2020-12-25 12:55:46 +05:30
|
|
|
// MatcherName is the name of the matcher matched if any.
|
2021-10-19 01:26:21 +05:30
|
|
|
MatcherName string `json:"matcher-name,omitempty"`
|
2021-01-11 21:11:35 +05:30
|
|
|
// ExtractorName is the name of the extractor matched if any.
|
2021-10-19 01:26:21 +05:30
|
|
|
ExtractorName string `json:"extractor-name,omitempty"`
|
2020-12-25 12:55:46 +05:30
|
|
|
// Type is the type of the result event.
|
|
|
|
|
Type string `json:"type"`
|
|
|
|
|
// Host is the host input on which match was found.
|
|
|
|
|
Host string `json:"host,omitempty"`
|
2023-11-28 14:26:23 +05:30
|
|
|
// Port is port of the host input on which match was found (if applicable).
|
|
|
|
|
Port string `json:"port,omitempty"`
|
|
|
|
|
// Scheme is the scheme of the host input on which match was found (if applicable).
|
|
|
|
|
Scheme string `json:"scheme,omitempty"`
|
|
|
|
|
// URL is the Base URL of the host input on which match was found (if applicable).
|
|
|
|
|
URL string `json:"url,omitempty"`
|
2021-03-05 19:25:09 +05:30
|
|
|
// Path is the path input on which match was found.
|
|
|
|
|
Path string `json:"path,omitempty"`
|
2020-12-25 12:55:46 +05:30
|
|
|
// Matched contains the matched input in its transformed form.
|
2021-10-19 01:26:21 +05:30
|
|
|
Matched string `json:"matched-at,omitempty"`
|
2020-12-25 12:55:46 +05:30
|
|
|
// ExtractedResults contains the extraction result from the inputs.
|
2021-10-19 01:26:21 +05:30
|
|
|
ExtractedResults []string `json:"extracted-results,omitempty"`
|
2021-09-07 17:31:46 +03:00
|
|
|
// Request is the optional, dumped request for the match.
|
2020-12-25 12:55:46 +05:30
|
|
|
Request string `json:"request,omitempty"`
|
2021-09-07 17:31:46 +03:00
|
|
|
// Response is the optional, dumped response for the match.
|
2020-12-25 12:55:46 +05:30
|
|
|
Response string `json:"response,omitempty"`
|
|
|
|
|
// Metadata contains any optional metadata for the event
|
|
|
|
|
Metadata map[string]interface{} `json:"meta,omitempty"`
|
2021-01-16 12:06:27 +05:30
|
|
|
// IP is the IP address for the found result event.
|
|
|
|
|
IP string `json:"ip,omitempty"`
|
2021-01-14 13:21:21 +05:30
|
|
|
// Timestamp is the time the result was found at.
|
|
|
|
|
Timestamp time.Time `json:"timestamp"`
|
2021-04-16 16:56:41 +05:30
|
|
|
// Interaction is the full details of interactsh interaction.
|
|
|
|
|
Interaction *server.Interaction `json:"interaction,omitempty"`
|
2021-10-15 13:55:50 +05:30
|
|
|
// CURLCommand is an optional curl command to reproduce the request
|
|
|
|
|
// Only applicable if the report is for HTTP.
|
2021-11-22 17:53:25 +05:30
|
|
|
CURLCommand string `json:"curl-command,omitempty"`
|
|
|
|
|
// MatcherStatus is the status of the match
|
2022-02-10 15:59:05 +05:30
|
|
|
MatcherStatus bool `json:"matcher-status"`
|
2022-02-23 23:32:25 +01:00
|
|
|
// Lines is the line count for the specified match
|
2023-07-28 10:18:15 -04:00
|
|
|
Lines []int `json:"matched-line,omitempty"`
|
2024-10-14 20:55:46 +07:00
|
|
|
// GlobalMatchers identifies whether the matches was detected in the response
|
|
|
|
|
// of another template's result event
|
|
|
|
|
GlobalMatchers bool `json:"global-matchers,omitempty"`
|
2022-02-10 15:59:05 +05:30
|
|
|
|
2024-03-10 22:02:42 +05:30
|
|
|
// IssueTrackers is the metadata for issue trackers
|
|
|
|
|
IssueTrackers map[string]IssueTrackerMetadata `json:"issue_trackers,omitempty"`
|
2024-03-30 23:50:31 +05:30
|
|
|
// ReqURLPattern when enabled contains base URL pattern that was used to generate the request
|
|
|
|
|
// must be enabled by setting protocols.ExecuterOptions.ExportReqURLPattern to true
|
|
|
|
|
ReqURLPattern string `json:"req_url_pattern,omitempty"`
|
2024-03-10 22:02:42 +05:30
|
|
|
|
2024-05-03 18:46:28 +05:30
|
|
|
// Fields related to HTTP Fuzzing functionality of nuclei.
|
|
|
|
|
// The output contains additional fields when the result is
|
|
|
|
|
// for a fuzzing template.
|
|
|
|
|
IsFuzzingResult bool `json:"is_fuzzing_result,omitempty"`
|
|
|
|
|
FuzzingMethod string `json:"fuzzing_method,omitempty"`
|
|
|
|
|
FuzzingParameter string `json:"fuzzing_parameter,omitempty"`
|
|
|
|
|
FuzzingPosition string `json:"fuzzing_position,omitempty"`
|
2024-11-19 11:51:32 +05:30
|
|
|
AnalyzerDetails string `json:"analyzer_details,omitempty"`
|
2024-05-03 18:46:28 +05:30
|
|
|
|
2021-06-06 15:52:13 +05:30
|
|
|
FileToIndexPosition map[string]int `json:"-"`
|
2024-09-19 18:58:20 +05:30
|
|
|
TemplateVerifier string `json:"-"`
|
2023-11-27 19:54:45 +01:00
|
|
|
Error string `json:"error,omitempty"`
|
2020-12-25 12:55:46 +05:30
|
|
|
}
|
2020-12-21 00:04:11 +05:30
|
|
|
|
2024-03-10 22:02:42 +05:30
|
|
|
type IssueTrackerMetadata struct {
|
|
|
|
|
// IssueID is the ID of the issue created
|
|
|
|
|
IssueID string `json:"id,omitempty"`
|
|
|
|
|
// IssueURL is the URL of the issue created
|
|
|
|
|
IssueURL string `json:"url,omitempty"`
|
|
|
|
|
}
|
|
|
|
|
|
2020-12-21 00:04:11 +05:30
|
|
|
// NewStandardWriter creates a new output writer based on user configurations
|
2022-12-15 16:41:23 +01:00
|
|
|
func NewStandardWriter(options *types.Options) (*StandardWriter, error) {
|
2025-07-01 00:40:44 +07:00
|
|
|
resumeBool := options.Resume != ""
|
|
|
|
|
|
2022-12-15 16:41:23 +01:00
|
|
|
auroraColorizer := aurora.NewAurora(!options.NoColor)
|
2020-12-21 00:04:11 +05:30
|
|
|
|
2021-10-30 14:19:11 +03:00
|
|
|
var outputFile io.WriteCloser
|
2022-12-15 16:41:23 +01:00
|
|
|
if options.Output != "" {
|
|
|
|
|
output, err := newFileOutputWriter(options.Output, resumeBool)
|
2020-12-21 00:04:11 +05:30
|
|
|
if err != nil {
|
|
|
|
|
return nil, errors.Wrap(err, "could not create output file")
|
|
|
|
|
}
|
|
|
|
|
outputFile = output
|
|
|
|
|
}
|
2021-10-30 14:19:11 +03:00
|
|
|
var traceOutput io.WriteCloser
|
2022-12-15 16:41:23 +01:00
|
|
|
if options.TraceLogFile != "" {
|
|
|
|
|
output, err := newFileOutputWriter(options.TraceLogFile, resumeBool)
|
2020-12-21 11:58:33 +05:30
|
|
|
if err != nil {
|
|
|
|
|
return nil, errors.Wrap(err, "could not create output file")
|
|
|
|
|
}
|
|
|
|
|
traceOutput = output
|
|
|
|
|
}
|
2021-10-30 14:19:11 +03:00
|
|
|
var errorOutput io.WriteCloser
|
2022-12-15 16:41:23 +01:00
|
|
|
if options.ErrorLogFile != "" {
|
|
|
|
|
output, err := newFileOutputWriter(options.ErrorLogFile, resumeBool)
|
2021-10-30 12:39:38 +03:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, errors.Wrap(err, "could not create error file")
|
|
|
|
|
}
|
|
|
|
|
errorOutput = output
|
|
|
|
|
}
|
2022-04-01 14:29:02 -05:00
|
|
|
// Try to create output folder if it doesn't exist
|
2022-12-15 16:41:23 +01:00
|
|
|
if options.StoreResponse && !fileutil.FolderExists(options.StoreResponseDir) {
|
|
|
|
|
if err := fileutil.CreateFolder(options.StoreResponseDir); err != nil {
|
|
|
|
|
gologger.Fatal().Msgf("Could not create output directory '%s': %s\n", options.StoreResponseDir, err)
|
2022-04-01 14:29:02 -05:00
|
|
|
}
|
|
|
|
|
}
|
2023-06-30 23:32:00 +05:30
|
|
|
|
2020-12-21 00:04:11 +05:30
|
|
|
writer := &StandardWriter{
|
2023-07-04 16:37:56 -04:00
|
|
|
json: options.JSONL,
|
|
|
|
|
jsonReqResp: !options.OmitRawRequests,
|
|
|
|
|
noMetadata: options.NoMeta,
|
|
|
|
|
matcherStatus: options.MatcherStatus,
|
|
|
|
|
timestamp: options.Timestamp,
|
|
|
|
|
aurora: auroraColorizer,
|
|
|
|
|
mutex: &sync.Mutex{},
|
|
|
|
|
outputFile: outputFile,
|
|
|
|
|
traceFile: traceOutput,
|
|
|
|
|
errorFile: errorOutput,
|
|
|
|
|
severityColors: colorizer.New(auroraColorizer),
|
|
|
|
|
storeResponse: options.StoreResponse,
|
|
|
|
|
storeResponseDir: options.StoreResponseDir,
|
2023-11-11 02:12:27 +03:00
|
|
|
omitTemplate: options.OmitTemplate,
|
2024-08-16 09:12:38 +03:00
|
|
|
KeysToRedact: options.Redact,
|
2020-12-21 00:04:11 +05:30
|
|
|
}
|
2025-02-24 18:22:57 +07:00
|
|
|
|
|
|
|
|
if v := os.Getenv("DISABLE_STDOUT"); v == "true" || v == "1" {
|
|
|
|
|
writer.DisableStdout = true
|
|
|
|
|
}
|
|
|
|
|
|
2020-12-21 00:04:11 +05:30
|
|
|
return writer, nil
|
|
|
|
|
}
|
|
|
|
|
|
2025-05-07 17:22:15 +05:30
|
|
|
func (w *StandardWriter) ResultCount() int {
|
|
|
|
|
return int(w.resultCount.Load())
|
|
|
|
|
}
|
|
|
|
|
|
2020-12-21 00:04:11 +05:30
|
|
|
// Write writes the event to file and/or screen.
|
2020-12-25 20:33:52 +05:30
|
|
|
func (w *StandardWriter) Write(event *ResultEvent) error {
|
2021-11-22 17:53:25 +05:30
|
|
|
// Enrich the result event with extra metadata on the template-path and url.
|
|
|
|
|
if event.TemplatePath != "" {
|
2024-09-19 18:58:20 +05:30
|
|
|
event.Template, event.TemplateURL = utils.TemplatePathURL(types.ToString(event.TemplatePath), types.ToString(event.TemplateID), event.TemplateVerifier)
|
2021-11-22 17:53:25 +05:30
|
|
|
}
|
2023-11-11 02:12:27 +03:00
|
|
|
|
2024-08-16 09:12:38 +03:00
|
|
|
if len(w.KeysToRedact) > 0 {
|
|
|
|
|
event.Request = redactKeys(event.Request, w.KeysToRedact)
|
|
|
|
|
event.Response = redactKeys(event.Response, w.KeysToRedact)
|
|
|
|
|
event.CURLCommand = redactKeys(event.CURLCommand, w.KeysToRedact)
|
|
|
|
|
event.Matched = redactKeys(event.Matched, w.KeysToRedact)
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-08 11:43:23 +05:30
|
|
|
event.Timestamp = time.Now()
|
|
|
|
|
|
2020-12-21 00:04:11 +05:30
|
|
|
var data []byte
|
|
|
|
|
var err error
|
|
|
|
|
|
|
|
|
|
if w.json {
|
|
|
|
|
data, err = w.formatJSON(event)
|
|
|
|
|
} else {
|
2021-02-26 13:13:11 +05:30
|
|
|
data = w.formatScreen(event)
|
2020-12-21 00:04:11 +05:30
|
|
|
}
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not format output")
|
|
|
|
|
}
|
2021-02-05 14:43:11 +05:30
|
|
|
if len(data) == 0 {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
2022-05-10 18:47:22 +05:30
|
|
|
w.mutex.Lock()
|
|
|
|
|
defer w.mutex.Unlock()
|
|
|
|
|
|
2023-11-18 16:25:37 +05:30
|
|
|
if !w.DisableStdout {
|
|
|
|
|
_, _ = os.Stdout.Write(data)
|
|
|
|
|
_, _ = os.Stdout.Write([]byte("\n"))
|
|
|
|
|
}
|
2022-04-01 14:29:02 -05:00
|
|
|
|
2020-12-21 00:04:11 +05:30
|
|
|
if w.outputFile != nil {
|
2020-12-23 20:46:42 +05:30
|
|
|
if !w.json {
|
|
|
|
|
data = decolorizerRegex.ReplaceAll(data, []byte(""))
|
|
|
|
|
}
|
2021-10-30 14:19:11 +03:00
|
|
|
if _, writeErr := w.outputFile.Write(data); writeErr != nil {
|
2025-03-29 23:15:21 +08:00
|
|
|
return errors.Wrap(writeErr, "could not write to output")
|
2020-12-21 00:04:11 +05:30
|
|
|
}
|
2023-11-18 16:25:37 +05:30
|
|
|
if w.AddNewLinesOutputFile && w.json {
|
|
|
|
|
_, _ = w.outputFile.Write([]byte("\n"))
|
|
|
|
|
}
|
2020-12-21 00:04:11 +05:30
|
|
|
}
|
2025-05-07 17:22:15 +05:30
|
|
|
w.resultCount.Add(1)
|
2020-12-21 00:04:11 +05:30
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2024-08-16 09:12:38 +03:00
|
|
|
func redactKeys(data string, keysToRedact []string) string {
|
|
|
|
|
for _, key := range keysToRedact {
|
|
|
|
|
keyPattern := regexp.MustCompile(fmt.Sprintf(`(?i)(%s\s*[:=]\s*["']?)[^"'\r\n&]+(["'\r\n]?)`, regexp.QuoteMeta(key)))
|
|
|
|
|
data = keyPattern.ReplaceAllString(data, `$1***$2`)
|
|
|
|
|
}
|
|
|
|
|
return data
|
|
|
|
|
}
|
|
|
|
|
|
2021-10-30 12:46:26 +03:00
|
|
|
// JSONLogRequest is a trace/error log request written to file
|
|
|
|
|
type JSONLogRequest struct {
|
2024-06-14 20:24:52 +02:00
|
|
|
Template string `json:"template"`
|
|
|
|
|
Type string `json:"type"`
|
|
|
|
|
Input string `json:"input"`
|
|
|
|
|
Timestamp *time.Time `json:"timestamp,omitempty"`
|
|
|
|
|
Address string `json:"address"`
|
|
|
|
|
Error string `json:"error"`
|
|
|
|
|
Kind string `json:"kind,omitempty"`
|
|
|
|
|
Attrs interface{} `json:"attrs,omitempty"`
|
2020-12-21 11:58:33 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Request writes a log the requests trace log
|
2021-10-30 12:46:26 +03:00
|
|
|
func (w *StandardWriter) Request(templatePath, input, requestType string, requestErr error) {
|
2025-02-13 18:46:28 +05:30
|
|
|
if w.traceFile == nil && w.errorFile == nil && w.JSONLogRequestHook == nil {
|
2020-12-21 11:58:33 +05:30
|
|
|
return
|
|
|
|
|
}
|
2025-02-13 17:13:39 +05:30
|
|
|
|
|
|
|
|
request := getJSONLogRequestFromError(templatePath, input, requestType, requestErr)
|
|
|
|
|
if w.timestamp {
|
|
|
|
|
ts := time.Now()
|
|
|
|
|
request.Timestamp = &ts
|
|
|
|
|
}
|
|
|
|
|
data, err := jsoniter.Marshal(request)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2025-02-13 18:46:28 +05:30
|
|
|
if w.JSONLogRequestHook != nil {
|
|
|
|
|
w.JSONLogRequestHook(request)
|
|
|
|
|
}
|
|
|
|
|
|
2025-02-13 17:13:39 +05:30
|
|
|
if w.traceFile != nil {
|
|
|
|
|
_, _ = w.traceFile.Write(data)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if requestErr != nil && w.errorFile != nil {
|
|
|
|
|
_, _ = w.errorFile.Write(data)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func getJSONLogRequestFromError(templatePath, input, requestType string, requestErr error) *JSONLogRequest {
|
2021-10-30 12:46:26 +03:00
|
|
|
request := &JSONLogRequest{
|
|
|
|
|
Template: templatePath,
|
|
|
|
|
Input: input,
|
|
|
|
|
Type: requestType,
|
2020-12-21 11:58:33 +05:30
|
|
|
}
|
2025-02-13 17:13:39 +05:30
|
|
|
|
2024-05-25 00:29:04 +05:30
|
|
|
parsed, _ := urlutil.ParseAbsoluteURL(input, false)
|
|
|
|
|
if parsed != nil {
|
|
|
|
|
request.Address = parsed.Hostname()
|
|
|
|
|
port := parsed.Port()
|
|
|
|
|
if port == "" {
|
|
|
|
|
switch parsed.Scheme {
|
|
|
|
|
case urlutil.HTTP:
|
|
|
|
|
port = "80"
|
|
|
|
|
case urlutil.HTTPS:
|
|
|
|
|
port = "443"
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
request.Address += ":" + port
|
|
|
|
|
}
|
|
|
|
|
errX := errkit.FromError(requestErr)
|
|
|
|
|
if errX == nil {
|
2020-12-21 11:58:33 +05:30
|
|
|
request.Error = "none"
|
2024-05-25 00:29:04 +05:30
|
|
|
} else {
|
|
|
|
|
request.Kind = errkit.ErrKindUnknown.String()
|
|
|
|
|
var cause error
|
|
|
|
|
if len(errX.Errors()) > 1 {
|
|
|
|
|
cause = errX.Errors()[0]
|
|
|
|
|
}
|
|
|
|
|
if cause == nil {
|
|
|
|
|
cause = errX
|
|
|
|
|
}
|
|
|
|
|
cause = tryParseCause(cause)
|
|
|
|
|
request.Error = cause.Error()
|
|
|
|
|
request.Kind = errkit.GetErrorKind(requestErr, nucleierr.ErrTemplateLogic).String()
|
|
|
|
|
if len(errX.Attrs()) > 0 {
|
|
|
|
|
request.Attrs = slog.GroupValue(errX.Attrs()...)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// check if address slog attr is avaiable in error if set use it
|
|
|
|
|
if val := errkit.GetAttrValue(requestErr, "address"); val.Any() != nil {
|
|
|
|
|
request.Address = val.String()
|
2020-12-21 11:58:33 +05:30
|
|
|
}
|
2025-02-13 17:13:39 +05:30
|
|
|
return request
|
2020-12-21 11:58:33 +05:30
|
|
|
}
|
|
|
|
|
|
2020-12-21 12:04:33 +05:30
|
|
|
// Colorizer returns the colorizer instance for writer
|
|
|
|
|
func (w *StandardWriter) Colorizer() aurora.Aurora {
|
|
|
|
|
return w.aurora
|
|
|
|
|
}
|
|
|
|
|
|
2020-12-21 00:04:11 +05:30
|
|
|
// Close closes the output writing interface
|
|
|
|
|
func (w *StandardWriter) Close() {
|
2020-12-21 11:58:33 +05:30
|
|
|
if w.outputFile != nil {
|
2025-07-01 00:40:44 +07:00
|
|
|
_ = w.outputFile.Close()
|
2020-12-21 11:58:33 +05:30
|
|
|
}
|
|
|
|
|
if w.traceFile != nil {
|
2025-07-01 00:40:44 +07:00
|
|
|
_ = w.traceFile.Close()
|
2020-12-21 11:58:33 +05:30
|
|
|
}
|
2021-10-30 12:39:38 +03:00
|
|
|
if w.errorFile != nil {
|
2025-07-01 00:40:44 +07:00
|
|
|
_ = w.errorFile.Close()
|
2021-10-30 12:39:38 +03:00
|
|
|
}
|
2020-12-21 00:04:11 +05:30
|
|
|
}
|
2021-11-22 17:53:25 +05:30
|
|
|
|
|
|
|
|
// WriteFailure writes the failure event for template to file and/or screen.
|
2023-08-17 13:35:15 -04:00
|
|
|
func (w *StandardWriter) WriteFailure(wrappedEvent *InternalWrappedEvent) error {
|
2021-11-22 17:53:25 +05:30
|
|
|
if !w.matcherStatus {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
2023-08-17 13:35:15 -04:00
|
|
|
if len(wrappedEvent.Results) > 0 {
|
|
|
|
|
errs := []error{}
|
|
|
|
|
for _, result := range wrappedEvent.Results {
|
|
|
|
|
result.MatcherStatus = false // just in case
|
|
|
|
|
if err := w.Write(result); err != nil {
|
|
|
|
|
errs = append(errs, err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if len(errs) > 0 {
|
|
|
|
|
return multierr.Combine(errs...)
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
// if no results were found, manually create a failure event
|
|
|
|
|
event := wrappedEvent.InternalEvent
|
|
|
|
|
|
2024-09-19 18:58:20 +05:30
|
|
|
templatePath, templateURL := utils.TemplatePathURL(types.ToString(event["template-path"]), types.ToString(event["template-id"]), types.ToString(event["template-verifier"]))
|
2022-06-03 03:02:45 -05:00
|
|
|
var templateInfo model.Info
|
|
|
|
|
if event["template-info"] != nil {
|
|
|
|
|
templateInfo = event["template-info"].(model.Info)
|
|
|
|
|
}
|
2023-11-28 14:26:23 +05:30
|
|
|
fields := protocolUtils.GetJsonFieldsFromURL(types.ToString(event["host"]))
|
|
|
|
|
if types.ToString(event["ip"]) != "" {
|
|
|
|
|
fields.Ip = types.ToString(event["ip"])
|
|
|
|
|
}
|
|
|
|
|
if types.ToString(event["path"]) != "" {
|
|
|
|
|
fields.Path = types.ToString(event["path"])
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-22 17:53:25 +05:30
|
|
|
data := &ResultEvent{
|
|
|
|
|
Template: templatePath,
|
|
|
|
|
TemplateURL: templateURL,
|
|
|
|
|
TemplateID: types.ToString(event["template-id"]),
|
|
|
|
|
TemplatePath: types.ToString(event["template-path"]),
|
2022-06-03 03:02:45 -05:00
|
|
|
Info: templateInfo,
|
2021-11-22 17:53:25 +05:30
|
|
|
Type: types.ToString(event["type"]),
|
2023-11-28 14:26:23 +05:30
|
|
|
Host: fields.Host,
|
|
|
|
|
Path: fields.Path,
|
|
|
|
|
Port: fields.Port,
|
|
|
|
|
Scheme: fields.Scheme,
|
|
|
|
|
URL: fields.URL,
|
|
|
|
|
IP: fields.Ip,
|
2023-08-17 13:35:15 -04:00
|
|
|
Request: types.ToString(event["request"]),
|
|
|
|
|
Response: types.ToString(event["response"]),
|
2021-11-22 17:53:25 +05:30
|
|
|
MatcherStatus: false,
|
|
|
|
|
Timestamp: time.Now(),
|
2023-11-11 02:12:27 +03:00
|
|
|
//FIXME: this is workaround to encode the template when no results were found
|
|
|
|
|
TemplateEncoded: w.encodeTemplate(types.ToString(event["template-path"])),
|
2023-11-27 19:54:45 +01:00
|
|
|
Error: types.ToString(event["error"]),
|
2021-11-22 17:53:25 +05:30
|
|
|
}
|
|
|
|
|
return w.Write(data)
|
|
|
|
|
}
|
2023-11-11 02:12:27 +03:00
|
|
|
|
2024-05-15 15:34:59 +02:00
|
|
|
var maxTemplateFileSizeForEncoding = unitutils.Mega
|
2023-11-11 02:12:27 +03:00
|
|
|
|
|
|
|
|
func (w *StandardWriter) encodeTemplate(templatePath string) string {
|
|
|
|
|
data, err := os.ReadFile(templatePath)
|
|
|
|
|
if err == nil && !w.omitTemplate && len(data) <= maxTemplateFileSizeForEncoding && config.DefaultConfig.IsCustomTemplate(templatePath) {
|
|
|
|
|
return base64.StdEncoding.EncodeToString(data)
|
|
|
|
|
}
|
|
|
|
|
return ""
|
|
|
|
|
}
|
|
|
|
|
|
2022-04-01 14:29:02 -05:00
|
|
|
func sanitizeFileName(fileName string) string {
|
|
|
|
|
fileName = strings.ReplaceAll(fileName, "http:", "")
|
|
|
|
|
fileName = strings.ReplaceAll(fileName, "https:", "")
|
|
|
|
|
fileName = strings.ReplaceAll(fileName, "/", "_")
|
|
|
|
|
fileName = strings.ReplaceAll(fileName, "\\", "_")
|
|
|
|
|
fileName = strings.ReplaceAll(fileName, "-", "_")
|
|
|
|
|
fileName = strings.ReplaceAll(fileName, ".", "_")
|
2023-03-24 00:44:32 +05:30
|
|
|
if osutils.IsWindows() {
|
|
|
|
|
fileName = strings.ReplaceAll(fileName, ":", "_")
|
|
|
|
|
}
|
2022-04-01 14:29:02 -05:00
|
|
|
fileName = strings.TrimPrefix(fileName, "__")
|
|
|
|
|
return fileName
|
|
|
|
|
}
|
|
|
|
|
func (w *StandardWriter) WriteStoreDebugData(host, templateID, eventType string, data string) {
|
|
|
|
|
if w.storeResponse {
|
2025-02-13 14:50:56 +03:00
|
|
|
if len(host) > 60 {
|
|
|
|
|
host = host[:57] + "..."
|
|
|
|
|
}
|
|
|
|
|
if len(templateID) > 100 {
|
|
|
|
|
templateID = templateID[:97] + "..."
|
|
|
|
|
}
|
|
|
|
|
|
2022-04-01 14:29:02 -05:00
|
|
|
filename := sanitizeFileName(fmt.Sprintf("%s_%s", host, templateID))
|
|
|
|
|
subFolder := filepath.Join(w.storeResponseDir, sanitizeFileName(eventType))
|
|
|
|
|
if !fileutil.FolderExists(subFolder) {
|
|
|
|
|
_ = fileutil.CreateFolder(subFolder)
|
|
|
|
|
}
|
|
|
|
|
filename = filepath.Join(subFolder, fmt.Sprintf("%s.txt", filename))
|
2022-06-20 13:40:22 +02:00
|
|
|
f, err := os.OpenFile(filename, os.O_APPEND|os.O_WRONLY|os.O_CREATE, 0644)
|
2022-04-01 14:29:02 -05:00
|
|
|
if err != nil {
|
2025-06-17 17:02:57 +05:30
|
|
|
gologger.Error().Msgf("Could not open debug output file: %s", err)
|
2022-04-01 14:29:02 -05:00
|
|
|
return
|
|
|
|
|
}
|
2025-07-01 00:40:44 +07:00
|
|
|
_, _ = fmt.Fprintln(f, data)
|
|
|
|
|
_ = f.Close()
|
2022-04-01 14:29:02 -05:00
|
|
|
}
|
|
|
|
|
}
|
2024-05-25 00:29:04 +05:30
|
|
|
|
|
|
|
|
// tryParseCause tries to parse the cause of given error
|
|
|
|
|
// this is legacy support due to use of errorutil in existing libraries
|
|
|
|
|
// but this should not be required once all libraries are updated
|
|
|
|
|
func tryParseCause(err error) error {
|
|
|
|
|
if err == nil {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
msg := err.Error()
|
|
|
|
|
if strings.HasPrefix(msg, "ReadStatusLine:") {
|
|
|
|
|
// last index is actual error (from rawhttp)
|
|
|
|
|
parts := strings.Split(msg, ":")
|
2025-02-13 17:13:39 +05:30
|
|
|
return errkit.New(strings.TrimSpace(parts[len(parts)-1]))
|
2024-05-25 00:29:04 +05:30
|
|
|
}
|
|
|
|
|
if strings.Contains(msg, "read ") {
|
|
|
|
|
// same here
|
|
|
|
|
parts := strings.Split(msg, ":")
|
2025-02-13 17:13:39 +05:30
|
|
|
return errkit.New(strings.TrimSpace(parts[len(parts)-1]))
|
2024-05-25 00:29:04 +05:30
|
|
|
}
|
|
|
|
|
return err
|
|
|
|
|
}
|
2025-02-13 17:13:39 +05:30
|
|
|
|
|
|
|
|
func (w *StandardWriter) RequestStatsLog(statusCode, response string) {}
|
