nuclei/pkg/executer/executer_dns.go

package executer

import (
	"fmt"
	"os"
	"regexp"

	"github.com/logrusorgru/aurora"
	"github.com/pkg/errors"
	"github.com/projectdiscovery/gologger"
	"github.com/projectdiscovery/nuclei/v2/internal/bufwriter"
	"github.com/projectdiscovery/nuclei/v2/internal/progress"
	"github.com/projectdiscovery/nuclei/v2/pkg/matchers"
	"github.com/projectdiscovery/nuclei/v2/pkg/requests"
	"github.com/projectdiscovery/nuclei/v2/pkg/templates"
	retryabledns "github.com/projectdiscovery/retryabledns"
)

// DNSExecuter is a client for performing a DNS request
// for a template.
type DNSExecuter struct {
	coloredOutput bool
	debug         bool
	jsonOutput    bool
	jsonRequest   bool
	Results       bool
	dnsClient     *retryabledns.Client
	template      *templates.Template
	dnsRequest    *requests.DNSRequest
	writer        *bufwriter.Writer

	colorizer   aurora.Aurora
	decolorizer *regexp.Regexp
}

// DefaultResolvers contains the list of resolvers known to be trusted.
var DefaultResolvers = []string{
	"1.1.1.1:53", // Cloudflare
	"1.0.0.1:53", // Cloudflare
	"8.8.8.8:53", // Google
	"8.8.4.4:53", // Google
}

// DNSOptions contains configuration options for the DNS executer.
type DNSOptions struct {
	ColoredOutput bool
	Debug         bool
	JSON          bool
	JSONRequests  bool
	Template      *templates.Template
	DNSRequest    *requests.DNSRequest
	Writer        *bufwriter.Writer

	Colorizer   aurora.Aurora
	Decolorizer *regexp.Regexp
}

// NewDNSExecuter creates a new DNS executer from a template
// and a DNS request query.
func NewDNSExecuter(options *DNSOptions) *DNSExecuter {
	dnsClient := retryabledns.New(DefaultResolvers, options.DNSRequest.Retries)

	executer := &DNSExecuter{
		debug:         options.Debug,
		jsonOutput:    options.JSON,
		jsonRequest:   options.JSONRequests,
		dnsClient:     dnsClient,
		template:      options.Template,
		dnsRequest:    options.DNSRequest,
		writer:        options.Writer,
		coloredOutput: options.ColoredOutput,
		colorizer:     options.Colorizer,
		decolorizer:   options.Decolorizer,
	}

	return executer
}

// ExecuteDNS executes the DNS request on a URL
func (e *DNSExecuter) ExecuteDNS(p progress.IProgress, reqURL string) (result Result) {
	// Parse the URL and return domain if URL.
	var domain string
	if isURL(reqURL) {
		domain = extractDomain(reqURL)
	} else {
		domain = reqURL
	}

	// Compile each request for the template based on the URL
	compiledRequest, err := e.dnsRequest.MakeDNSRequest(domain)
	if err != nil {
		result.Error = errors.Wrap(err, "could not make dns request")

		p.Drop(1)

		return
	}

	if e.debug {
		gologger.Infof("Dumped DNS request for %s (%s)\n\n", reqURL, e.template.ID)
		fmt.Fprintf(os.Stderr, "%s\n", compiledRequest.String())
	}

	// Send the request to the target servers
	resp, err := e.dnsClient.Do(compiledRequest)
	if err != nil {
		result.Error = errors.Wrap(err, "could not send dns request")

		p.Drop(1)

		return
	}

	p.Update()

	gologger.Verbosef("Sent for [%s] to %s\n", "dns-request", e.template.ID, reqURL)

	if e.debug {
		gologger.Infof("Dumped DNS response for %s (%s)\n\n", reqURL, e.template.ID)
		fmt.Fprintf(os.Stderr, "%s\n", resp.String())
	}

	matcherCondition := e.dnsRequest.GetMatchersCondition()

	for _, matcher := range e.dnsRequest.Matchers {
		// Check if the matcher matched
		if !matcher.MatchDNS(resp) {
			// If the condition is AND we haven't matched, return.
			if matcherCondition == matchers.ANDCondition {
				return
			}
		} else {
			// If the matcher has matched, and its an OR
			// write the first output then move to next matcher.
			if matcherCondition == matchers.ORCondition && len(e.dnsRequest.Extractors) == 0 {
				e.writeOutputDNS(domain, compiledRequest, resp, matcher, nil)
				result.GotResults = true
			}
		}
	}

	// All matchers have successfully completed so now start with the
	// next task which is extraction of input from matchers.
	var extractorResults []string

	for _, extractor := range e.dnsRequest.Extractors {
		for match := range extractor.ExtractDNS(resp) {
			if !extractor.Internal {
				extractorResults = append(extractorResults, match)
			}
		}
	}

	// Write a final string of output if matcher type is
	// AND or if we have extractors for the mechanism too.
	if len(e.dnsRequest.Extractors) > 0 || matcherCondition == matchers.ANDCondition {
		e.writeOutputDNS(domain, compiledRequest, resp, nil, extractorResults)

		result.GotResults = true
	}

	return result
}

// Close closes the dns executer for a template.
func (e *DNSExecuter) Close() {}
typo global correction 2020-07-16 10:57:28 +02:00			`package executer`
Added executor + refactor 2020-04-26 05:50:33 +05:30
			`import (`
Added better debug and verbose modes 2020-06-22 19:30:01 +05:30			`"fmt"`
			`"os"`
Add initial coloring support in output results 2020-07-29 00:43:05 +02:00			`"regexp"`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30
Merge branch 'master' into fix-175-results-highlight 2020-07-29 01:24:14 +02:00			`"github.com/logrusorgru/aurora"`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`"github.com/pkg/errors"`
Added better debug and verbose modes 2020-06-22 19:30:01 +05:30			`"github.com/projectdiscovery/gologger"`
Fixed inconsistent output hopefully 2020-09-10 16:32:01 +05:30			`"github.com/projectdiscovery/nuclei/v2/internal/bufwriter"`
Merge branch 'master' into fix-175-results-highlight 2020-07-29 01:24:14 +02:00			`"github.com/projectdiscovery/nuclei/v2/internal/progress"`
v2 update 2020-07-01 16:17:24 +05:30			`"github.com/projectdiscovery/nuclei/v2/pkg/matchers"`
			`"github.com/projectdiscovery/nuclei/v2/pkg/requests"`
			`"github.com/projectdiscovery/nuclei/v2/pkg/templates"`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`retryabledns "github.com/projectdiscovery/retryabledns"`
			`)`

typo global correction 2020-07-16 10:57:28 +02:00			`// DNSExecuter is a client for performing a DNS request`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`// for a template.`
typo global correction 2020-07-16 10:57:28 +02:00			`type DNSExecuter struct {`
Use manual progressbar rendering to allow syncing with other output Refactor into an interface to return a no-op impl, avoid the need to conditionally invoke any of the methods. 2020-07-31 23:07:33 +02:00			`coloredOutput bool`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00			`debug bool`
			`jsonOutput bool`
			`jsonRequest bool`
			`Results bool`
			`dnsClient *retryabledns.Client`
			`template *templates.Template`
			`dnsRequest *requests.DNSRequest`
Fixed inconsistent output hopefully 2020-09-10 16:32:01 +05:30			`writer *bufwriter.Writer`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00
			`colorizer aurora.Aurora`
			`decolorizer *regexp.Regexp`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`}`

			`// DefaultResolvers contains the list of resolvers known to be trusted.`
			`var DefaultResolvers = []string{`
			`"1.1.1.1:53", // Cloudflare`
			`"1.0.0.1:53", // Cloudflare`
			`"8.8.8.8:53", // Google`
			`"8.8.4.4:53", // Google`
			`}`

typo global correction 2020-07-16 10:57:28 +02:00			`// DNSOptions contains configuration options for the DNS executer.`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`type DNSOptions struct {`
Use manual progressbar rendering to allow syncing with other output Refactor into an interface to return a no-op impl, avoid the need to conditionally invoke any of the methods. 2020-07-31 23:07:33 +02:00			`ColoredOutput bool`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00			`Debug bool`
			`JSON bool`
			`JSONRequests bool`
			`Template *templates.Template`
			`DNSRequest *requests.DNSRequest`
Fixed inconsistent output hopefully 2020-09-10 16:32:01 +05:30			`Writer *bufwriter.Writer`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00
			`Colorizer aurora.Aurora`
			`Decolorizer *regexp.Regexp`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`}`

typo global correction 2020-07-16 10:57:28 +02:00			`// NewDNSExecuter creates a new DNS executer from a template`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`// and a DNS request query.`
typo global correction 2020-07-16 10:57:28 +02:00			`func NewDNSExecuter(options DNSOptions) DNSExecuter {`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`dnsClient := retryabledns.New(DefaultResolvers, options.DNSRequest.Retries)`
Added executor + refactor 2020-04-26 05:50:33 +05:30
typo global correction 2020-07-16 10:57:28 +02:00			`executer := &DNSExecuter{`
Use manual progressbar rendering to allow syncing with other output Refactor into an interface to return a no-op impl, avoid the need to conditionally invoke any of the methods. 2020-07-31 23:07:33 +02:00			`debug: options.Debug,`
			`jsonOutput: options.JSON,`
add json-requests for DNS 2020-08-04 15:16:41 +02:00			`jsonRequest: options.JSONRequests,`
Use manual progressbar rendering to allow syncing with other output Refactor into an interface to return a no-op impl, avoid the need to conditionally invoke any of the methods. 2020-07-31 23:07:33 +02:00			`dnsClient: dnsClient,`
			`template: options.Template,`
			`dnsRequest: options.DNSRequest,`
			`writer: options.Writer,`
			`coloredOutput: options.ColoredOutput,`
			`colorizer: options.Colorizer,`
			`decolorizer: options.Decolorizer,`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`}`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00
Added executor + refactor 2020-04-26 05:50:33 +05:30			`return executer`
			`}`

			`// ExecuteDNS executes the DNS request on a URL`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00			`func (e *DNSExecuter) ExecuteDNS(p progress.IProgress, reqURL string) (result Result) {`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`// Parse the URL and return domain if URL.`
			`var domain string`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00			`if isURL(reqURL) {`
			`domain = extractDomain(reqURL)`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`} else {`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00			`domain = reqURL`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`}`

			`// Compile each request for the template based on the URL`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`compiledRequest, err := e.dnsRequest.MakeDNSRequest(domain)`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`if err != nil {`
improved workflow logic 2020-07-10 09:04:38 +02:00			`result.Error = errors.Wrap(err, "could not make dns request")`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00
Use manual progressbar rendering to allow syncing with other output Refactor into an interface to return a no-op impl, avoid the need to conditionally invoke any of the methods. 2020-07-31 23:07:33 +02:00			`p.Drop(1)`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00
improved workflow logic 2020-07-10 09:04:38 +02:00			`return`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`}`

Added better debug and verbose modes 2020-06-22 19:30:01 +05:30			`if e.debug {`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00			`gologger.Infof("Dumped DNS request for %s (%s)\n\n", reqURL, e.template.ID)`
Added better debug and verbose modes 2020-06-22 19:30:01 +05:30			`fmt.Fprintf(os.Stderr, "%s\n", compiledRequest.String())`
			`}`

Added executor + refactor 2020-04-26 05:50:33 +05:30			`// Send the request to the target servers`
			`resp, err := e.dnsClient.Do(compiledRequest)`
			`if err != nil {`
improved workflow logic 2020-07-10 09:04:38 +02:00			`result.Error = errors.Wrap(err, "could not send dns request")`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00
Use manual progressbar rendering to allow syncing with other output Refactor into an interface to return a no-op impl, avoid the need to conditionally invoke any of the methods. 2020-07-31 23:07:33 +02:00			`p.Drop(1)`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00
improved workflow logic 2020-07-10 09:04:38 +02:00			`return`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`}`

Use manual progressbar rendering to allow syncing with other output Refactor into an interface to return a no-op impl, avoid the need to conditionally invoke any of the methods. 2020-07-31 23:07:33 +02:00			`p.Update()`
Add support for DNS requests 2020-07-26 16:36:01 +02:00
Enriched verbose request mesages The message "Sent Type request to" is redundant and noisy and does not provide any useful information, we enriched it adding the template id. 2020-08-31 11:58:12 +02:00			`gologger.Verbosef("Sent for [%s] to %s\n", "dns-request", e.template.ID, reqURL)`
Added better debug and verbose modes 2020-06-22 19:30:01 +05:30
			`if e.debug {`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00			`gologger.Infof("Dumped DNS response for %s (%s)\n\n", reqURL, e.template.ID)`
Added better debug and verbose modes 2020-06-22 19:30:01 +05:30			`fmt.Fprintf(os.Stderr, "%s\n", resp.String())`
			`}`

Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`matcherCondition := e.dnsRequest.GetMatchersCondition()`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00
Added executor + refactor 2020-04-26 05:50:33 +05:30			`for _, matcher := range e.dnsRequest.Matchers {`
			`// Check if the matcher matched`
			`if !matcher.MatchDNS(resp) {`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`// If the condition is AND we haven't matched, return.`
			`if matcherCondition == matchers.ANDCondition {`
improved workflow logic 2020-07-10 09:04:38 +02:00			`return`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`}`
			`} else {`
			`// If the matcher has matched, and its an OR`
			`// write the first output then move to next matcher.`
			`if matcherCondition == matchers.ORCondition && len(e.dnsRequest.Extractors) == 0 {`
add json-requests for DNS 2020-08-04 15:16:41 +02:00			`e.writeOutputDNS(domain, compiledRequest, resp, matcher, nil)`
adding missing result bool 2020-07-25 20:45:31 +02:00			`result.GotResults = true`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`}`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`}`
			`}`

Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`// All matchers have successfully completed so now start with the`
			`// next task which is extraction of input from matchers.`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`var extractorResults []string`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00
Added executor + refactor 2020-04-26 05:50:33 +05:30			`for _, extractor := range e.dnsRequest.Extractors {`
finalized + corrected typo 2020-07-16 10:32:00 +02:00			`for match := range extractor.ExtractDNS(resp) {`
wip - output 2020-07-25 21:15:28 +02:00			`if !extractor.Internal {`
			`extractorResults = append(extractorResults, match)`
			`}`
Added unique regex values support 2020-04-27 23:34:08 +05:30			`}`
Added executor + refactor 2020-04-26 05:50:33 +05:30			`}`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30
			`// Write a final string of output if matcher type is`
			`// AND or if we have extractors for the mechanism too.`
			`if len(e.dnsRequest.Extractors) > 0 \|\| matcherCondition == matchers.ANDCondition {`
add json-requests for DNS 2020-08-04 15:16:41 +02:00			`e.writeOutputDNS(domain, compiledRequest, resp, nil, extractorResults)`
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00
fix no result found problem with and condition 2020-08-04 15:09:30 +02:00			`result.GotResults = true`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`}`
improved workflow logic 2020-07-10 09:04:38 +02:00
Initial adoption of golangci-lint for CI 2020-08-25 23:24:31 +02:00			`return result`
Finished executer for per-request execution 2020-04-26 06:33:59 +05:30			`}`

typo global correction 2020-07-16 10:57:28 +02:00			`// Close closes the dns executer for a template.`
Fixed inconsistent output hopefully 2020-09-10 16:32:01 +05:30			`func (e *DNSExecuter) Close() {}`