nuclei/pkg/protocols/headless/engine/rules.go

package engine

import (
	"fmt"
	"net/http"
	"net/http/httputil"
	"strings"

	"github.com/go-rod/rod"
	"github.com/go-rod/rod/lib/proto"
	"github.com/projectdiscovery/nuclei/v3/pkg/protocols/common/protocolstate"
)

// routingRuleHandler handles proxy rule for actions related to request/response modification
func (p *Page) routingRuleHandler(httpClient *http.Client) func(ctx *rod.Hijack) {
	return func(ctx *rod.Hijack) {
		// usually browsers don't use chunked transfer encoding, so we set the content-length nevertheless
		ctx.Request.Req().ContentLength = int64(len(ctx.Request.Body()))
		for _, rule := range p.rules {
			if rule.Part != "request" {
				continue
			}

			switch rule.Action {
			case ActionSetMethod:
				rule.Do(func() {
					ctx.Request.Req().Method = rule.Args["method"]
				})
			case ActionAddHeader:
				ctx.Request.Req().Header.Add(rule.Args["key"], rule.Args["value"])
			case ActionSetHeader:
				ctx.Request.Req().Header.Set(rule.Args["key"], rule.Args["value"])
			case ActionDeleteHeader:
				ctx.Request.Req().Header.Del(rule.Args["key"])
			case ActionSetBody:
				body := rule.Args["body"]
				ctx.Request.Req().ContentLength = int64(len(body))
				ctx.Request.SetBody(body)
			}
		}

		// each http request is performed via the native go http client
		// we first inject the shared cookies
		if !p.options.DisableCookie {
			if cookies := p.ctx.CookieJar.Cookies(ctx.Request.URL()); len(cookies) > 0 {
				httpClient.Jar.SetCookies(ctx.Request.URL(), cookies)
			}
		}

		// perform the request
		_ = ctx.LoadResponse(httpClient, true)

		if !p.options.DisableCookie {
			// retrieve the updated cookies from the native http client and inject them into the shared cookie jar
			// keeps existing one if not present
			if cookies := httpClient.Jar.Cookies(ctx.Request.URL()); len(cookies) > 0 {
				p.ctx.CookieJar.SetCookies(ctx.Request.URL(), cookies)
			}
		}

		for _, rule := range p.rules {
			if rule.Part != "response" {
				continue
			}

			switch rule.Action {
			case ActionAddHeader:
				ctx.Response.Headers().Add(rule.Args["key"], rule.Args["value"])
			case ActionSetHeader:
				ctx.Response.Headers().Set(rule.Args["key"], rule.Args["value"])
			case ActionDeleteHeader:
				ctx.Response.Headers().Del(rule.Args["key"])
			case ActionSetBody:
				body := rule.Args["body"]
				ctx.Response.Headers().Set("Content-Length", fmt.Sprintf("%d", len(body)))
				ctx.Response.SetBody(rule.Args["body"])
			}
		}

		// store history
		req := ctx.Request.Req()
		var rawReq string
		if raw, err := httputil.DumpRequestOut(req, true); err == nil {
			rawReq = string(raw)
		}

		// attempts to rebuild the response
		var rawResp strings.Builder
		respPayloads := ctx.Response.Payload()
		if respPayloads != nil {
			rawResp.WriteString(fmt.Sprintf("HTTP/1.1 %d %s\n", respPayloads.ResponseCode, respPayloads.ResponsePhrase))
			for _, header := range respPayloads.ResponseHeaders {
				rawResp.WriteString(header.Name + ": " + header.Value + "\n")
			}
			rawResp.WriteString("\n")
			rawResp.WriteString(ctx.Response.Body())
		}

		// dump request
		historyData := HistoryData{
			RawRequest:  rawReq,
			RawResponse: rawResp.String(),
		}
		p.addToHistory(historyData)
	}
}

// routingRuleHandlerNative handles native proxy rule
func (p *Page) routingRuleHandlerNative(e *proto.FetchRequestPaused) error {
	// ValidateNFailRequest validates if Local file access is enabled
	// and local network access is enables if not it will fail the request
	// that don't match the rules
	if err := protocolstate.ValidateNFailRequest(p.options.Options, p.page, e); err != nil {
		return err
	}
	body, _ := FetchGetResponseBody(p.page, e)
	headers := make(map[string][]string)
	for _, h := range e.ResponseHeaders {
		headers[h.Name] = []string{h.Value}
	}

	var statusCode int
	if e.ResponseStatusCode != nil {
		statusCode = *e.ResponseStatusCode
	}

	// attempts to rebuild request
	var rawReq strings.Builder
	rawReq.WriteString(fmt.Sprintf("%s %s %s\n", e.Request.Method, e.Request.URL, "HTTP/1.1"))
	for _, header := range e.Request.Headers {
		rawReq.WriteString(fmt.Sprintf("%s\n", header.String()))
	}
	if e.Request.HasPostData {
		rawReq.WriteString(fmt.Sprintf("\n%s\n", e.Request.PostData))
	}

	// attempts to rebuild the response
	var rawResp strings.Builder
	rawResp.WriteString(fmt.Sprintf("HTTP/1.1 %d %s\n", statusCode, e.ResponseStatusText))
	for _, header := range e.ResponseHeaders {
		rawResp.WriteString(header.Name + ": " + header.Value + "\n")
	}
	rawResp.WriteString("\n")
	rawResp.Write(body)

	// dump request
	historyData := HistoryData{
		RawRequest:  rawReq.String(),
		RawResponse: rawResp.String(),
	}
	p.addToHistory(historyData)

	return FetchContinueRequest(p.page, e)
}
Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30			`package engine`

			`import (`
			`"fmt"`
fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`"net/http"`
Adding support for full navigation history to headless matchers 2021-12-29 09:48:46 +01:00			`"net/http/httputil"`
			`"strings"`
Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30
			`"github.com/go-rod/rod"`
extending request/response hijacking with native calls (#3091) * extending request/response hijacking with native calls * fixing tests 2023-01-05 12:56:18 +01:00			`"github.com/go-rod/rod/lib/proto"`
nuclei v3 : misc updates (#4247) * use parsed options while signing * update project layout to v3 * fix .gitignore * remove example template * misc updates * bump tlsx version * hide template sig warning with env * js: retain value while using log * fix nil pointer derefernce * misc doc update --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-10-17 17:44:13 +05:30			`"github.com/projectdiscovery/nuclei/v3/pkg/protocols/common/protocolstate"`
Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30			`)`

			`// routingRuleHandler handles proxy rule for actions related to request/response modification`
fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`func (p Page) routingRuleHandler(httpClient http.Client) func(ctx *rod.Hijack) {`
			`return func(ctx *rod.Hijack) {`
			`// usually browsers don't use chunked transfer encoding, so we set the content-length nevertheless`
			`ctx.Request.Req().ContentLength = int64(len(ctx.Request.Body()))`
			`for _, rule := range p.rules {`
			`if rule.Part != "request" {`
			`continue`
			`}`
Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30
fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`switch rule.Action {`
			`case ActionSetMethod:`
			`rule.Do(func() {`
			`ctx.Request.Req().Method = rule.Args["method"]`
			`})`
			`case ActionAddHeader:`
			`ctx.Request.Req().Header.Add(rule.Args["key"], rule.Args["value"])`
			`case ActionSetHeader:`
			`ctx.Request.Req().Header.Set(rule.Args["key"], rule.Args["value"])`
			`case ActionDeleteHeader:`
			`ctx.Request.Req().Header.Del(rule.Args["key"])`
			`case ActionSetBody:`
			`body := rule.Args["body"]`
			`ctx.Request.Req().ContentLength = int64(len(body))`
			`ctx.Request.SetBody(body)`
			`}`
Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30			`}`
Extend headless contextargs (#3850) * extend headless contextargs * using darwin-latest * grouping page options * temp commenting code out * fixing test * adding more checks * more checks * fixing first navigation metadata * adding integration test * proto update --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-06-26 19:25:51 +02:00
			`// each http request is performed via the native go http client`
			`// we first inject the shared cookies`
fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`if !p.options.DisableCookie {`
feat(headless): eval DSL exprs in args (#6017) * refactor(headless): mv `input` -> `ctx` field name Signed-off-by: Dwi Siswanto <git@dw1.io> * feat(headless): eval DSL exprs in args Signed-off-by: Dwi Siswanto <git@dw1.io> * chore(headless): rm duplicate imports Signed-off-by: Dwi Siswanto <git@dw1.io> * feat(headless): rm duplicate dumped req vars * refactor(headless): unify `getTimeParameter` retrieval Now, `getTimeParameter` tries to get the parameter as an integer, then as a `time.Duration`, and finally falls back to the default value (multiplied by the unit). Signed-off-by: Dwi Siswanto <git@dw1.io> * feat(headless): adjust default timeout value to 5s Signed-off-by: Dwi Siswanto <git@dw1.io> * refactor(headless): use `getTimeParameter` Signed-off-by: Dwi Siswanto <git@dw1.io> * chore(headless): add nolint directive - `replaceWithValues` Signed-off-by: Dwi Siswanto <git@dw1.io> * feat(headless): revert parameter automerge & adds `inputURL` field Signed-off-by: Dwi Siswanto <git@dw1.io> * test(headless): add headless-dsl integration test Signed-off-by: Dwi Siswanto <git@dw1.io> --------- Signed-off-by: Dwi Siswanto <git@dw1.io> 2025-02-10 21:46:35 +07:00			`if cookies := p.ctx.CookieJar.Cookies(ctx.Request.URL()); len(cookies) > 0 {`
fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`httpClient.Jar.SetCookies(ctx.Request.URL(), cookies)`
			`}`
Extend headless contextargs (#3850) * extend headless contextargs * using darwin-latest * grouping page options * temp commenting code out * fixing test * adding more checks * more checks * fixing first navigation metadata * adding integration test * proto update --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-06-26 19:25:51 +02:00			`}`

fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`// perform the request`
			`_ = ctx.LoadResponse(httpClient, true)`
Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30
fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`if !p.options.DisableCookie {`
			`// retrieve the updated cookies from the native http client and inject them into the shared cookie jar`
			`// keeps existing one if not present`
			`if cookies := httpClient.Jar.Cookies(ctx.Request.URL()); len(cookies) > 0 {`
feat(headless): eval DSL exprs in args (#6017) * refactor(headless): mv `input` -> `ctx` field name Signed-off-by: Dwi Siswanto <git@dw1.io> * feat(headless): eval DSL exprs in args Signed-off-by: Dwi Siswanto <git@dw1.io> * chore(headless): rm duplicate imports Signed-off-by: Dwi Siswanto <git@dw1.io> * feat(headless): rm duplicate dumped req vars * refactor(headless): unify `getTimeParameter` retrieval Now, `getTimeParameter` tries to get the parameter as an integer, then as a `time.Duration`, and finally falls back to the default value (multiplied by the unit). Signed-off-by: Dwi Siswanto <git@dw1.io> * feat(headless): adjust default timeout value to 5s Signed-off-by: Dwi Siswanto <git@dw1.io> * refactor(headless): use `getTimeParameter` Signed-off-by: Dwi Siswanto <git@dw1.io> * chore(headless): add nolint directive - `replaceWithValues` Signed-off-by: Dwi Siswanto <git@dw1.io> * feat(headless): revert parameter automerge & adds `inputURL` field Signed-off-by: Dwi Siswanto <git@dw1.io> * test(headless): add headless-dsl integration test Signed-off-by: Dwi Siswanto <git@dw1.io> --------- Signed-off-by: Dwi Siswanto <git@dw1.io> 2025-02-10 21:46:35 +07:00			`p.ctx.CookieJar.SetCookies(ctx.Request.URL(), cookies)`
fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`}`
Extend headless contextargs (#3850) * extend headless contextargs * using darwin-latest * grouping page options * temp commenting code out * fixing test * adding more checks * more checks * fixing first navigation metadata * adding integration test * proto update --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-06-26 19:25:51 +02:00			`}`

fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`for _, rule := range p.rules {`
			`if rule.Part != "response" {`
			`continue`
			`}`
refactor: linter driven fixes * x = x + "" => x += "" * pre-allocating slice with known size * added t.Helper() methods in test helpers * complex if-else conditions replaced by switches * errors should be checked using error.Is() instead of == * function parameter should start with lower case letter * removed unnecessary type definition * variable/label naming convention: camelCase instead of snake_case 2021-11-25 17:57:22 +02:00
fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`switch rule.Action {`
			`case ActionAddHeader:`
			`ctx.Response.Headers().Add(rule.Args["key"], rule.Args["value"])`
			`case ActionSetHeader:`
			`ctx.Response.Headers().Set(rule.Args["key"], rule.Args["value"])`
			`case ActionDeleteHeader:`
			`ctx.Response.Headers().Del(rule.Args["key"])`
			`case ActionSetBody:`
			`body := rule.Args["body"]`
			`ctx.Response.Headers().Set("Content-Length", fmt.Sprintf("%d", len(body)))`
			`ctx.Response.SetBody(rule.Args["body"])`
			`}`
Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30			`}`
Adding support for full navigation history to headless matchers 2021-12-29 09:48:46 +01:00
fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`// store history`
			`req := ctx.Request.Req()`
			`var rawReq string`
			`if raw, err := httputil.DumpRequestOut(req, true); err == nil {`
			`rawReq = string(raw)`
			`}`
Adding support for full navigation history to headless matchers 2021-12-29 09:48:46 +01:00
fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`// attempts to rebuild the response`
			`var rawResp strings.Builder`
			`respPayloads := ctx.Response.Payload()`
			`if respPayloads != nil {`
			`rawResp.WriteString(fmt.Sprintf("HTTP/1.1 %d %s\n", respPayloads.ResponseCode, respPayloads.ResponsePhrase))`
			`for _, header := range respPayloads.ResponseHeaders {`
			`rawResp.WriteString(header.Name + ": " + header.Value + "\n")`
			`}`
			`rawResp.WriteString("\n")`
			`rawResp.WriteString(ctx.Response.Body())`
Adding support for full navigation history to headless matchers 2021-12-29 09:48:46 +01:00			`}`

fix missing browser init (#5896) * fix missing browser init * . * using lazy init * updating test with new web ui * go mod * sandbox test * non fatal error 2024-12-17 11:08:42 +01:00			`// dump request`
			`historyData := HistoryData{`
			`RawRequest: rawReq,`
			`RawResponse: rawResp.String(),`
			`}`
			`p.addToHistory(historyData)`
Adding support for full navigation history to headless matchers 2021-12-29 09:48:46 +01:00			`}`
Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30			`}`
extending request/response hijacking with native calls (#3091) * extending request/response hijacking with native calls * fixing tests 2023-01-05 12:56:18 +01:00
			`// routingRuleHandlerNative handles native proxy rule`
			`func (p Page) routingRuleHandlerNative(e proto.FetchRequestPaused) error {`
optional file read in headless protocol (#4055) * use -lfa and -lna in headless * fix lna in headless * misc update * fix nil pointer dereference in test * fix lint & unit test * use urlutil * headless protocol scheme improvements * add unit and integration tests * run unit test from binary --------- Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> 2023-08-25 18:30:46 +05:30			`// ValidateNFailRequest validates if Local file access is enabled`
			`// and local network access is enables if not it will fail the request`
			`// that don't match the rules`
Remove singletons from Nuclei engine (continuation of #6210) (#6296) * introducing execution id * wip * . * adding separate execution context id * lint * vet * fixing pg dialers * test ignore * fixing loader FD limit * test * fd fix * wip: remove CloseProcesses() from dev merge * wip: fix merge issue * protocolstate: stop memguarding on last dialer delete * avoid data race in dialers.RawHTTPClient * use shared logger and avoid race conditions * use shared logger and avoid race conditions * go mod * patch executionId into compiled template cache * clean up comment in Parse * go mod update * bump echarts * address merge issues * fix use of gologger * switch cmd/nuclei to options.Logger * address merge issues with go.mod * go vet: address copy of lock with new Copy function * fixing tests * disable speed control * fix nil ExecuterOptions * removing deprecated code * fixing result print * default logger * cli default logger * filter warning from results * fix performance test * hardcoding path * disable upload * refactor(runner): uses `Warning` instead of `Print` for `pdcpUploadErrMsg` Signed-off-by: Dwi Siswanto <git@dw1.io> * Revert "disable upload" This reverts commit 114fbe6663361bf41cf8b2645fd2d57083d53682. * Revert "hardcoding path" This reverts commit cf12ca800e0a0e974bd9fd4826a24e51547f7c00. --------- Signed-off-by: Dwi Siswanto <git@dw1.io> Co-authored-by: Mzack9999 <mzack9999@protonmail.com> Co-authored-by: Dwi Siswanto <git@dw1.io> Co-authored-by: Dwi Siswanto <25837540+dwisiswant0@users.noreply.github.com> 2025-07-09 14:47:26 -05:00			`if err := protocolstate.ValidateNFailRequest(p.options.Options, p.page, e); err != nil {`
optional file read in headless protocol (#4055) * use -lfa and -lna in headless * fix lna in headless * misc update * fix nil pointer dereference in test * fix lint & unit test * use urlutil * headless protocol scheme improvements * add unit and integration tests * run unit test from binary --------- Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> 2023-08-25 18:30:46 +05:30			`return err`
			`}`
extending request/response hijacking with native calls (#3091) * extending request/response hijacking with native calls * fixing tests 2023-01-05 12:56:18 +01:00			`body, _ := FetchGetResponseBody(p.page, e)`
			`headers := make(map[string][]string)`
			`for _, h := range e.ResponseHeaders {`
			`headers[h.Name] = []string{h.Value}`
			`}`

			`var statusCode int`
			`if e.ResponseStatusCode != nil {`
			`statusCode = *e.ResponseStatusCode`
			`}`

			`// attempts to rebuild request`
			`var rawReq strings.Builder`
			`rawReq.WriteString(fmt.Sprintf("%s %s %s\n", e.Request.Method, e.Request.URL, "HTTP/1.1"))`
			`for _, header := range e.Request.Headers {`
			`rawReq.WriteString(fmt.Sprintf("%s\n", header.String()))`
			`}`
			`if e.Request.HasPostData {`
			`rawReq.WriteString(fmt.Sprintf("\n%s\n", e.Request.PostData))`
			`}`

			`// attempts to rebuild the response`
			`var rawResp strings.Builder`
			`rawResp.WriteString(fmt.Sprintf("HTTP/1.1 %d %s\n", statusCode, e.ResponseStatusText))`
			`for _, header := range e.ResponseHeaders {`
			`rawResp.WriteString(header.Name + ": " + header.Value + "\n")`
			`}`
			`rawResp.WriteString("\n")`
			`rawResp.Write(body)`

			`// dump request`
			`historyData := HistoryData{`
			`RawRequest: rawReq.String(),`
			`RawResponse: rawResp.String(),`
			`}`
			`p.addToHistory(historyData)`

			`return FetchContinueRequest(p.page, e)`
			`}`