2020-08-29 15:26:11 +02:00
|
|
|
package runner
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"archive/zip"
|
2021-01-11 20:57:37 +05:30
|
|
|
"bufio"
|
2020-08-29 15:26:11 +02:00
|
|
|
"bytes"
|
|
|
|
|
"context"
|
2021-01-11 20:57:37 +05:30
|
|
|
"crypto/md5"
|
|
|
|
|
"encoding/hex"
|
2020-08-29 15:26:11 +02:00
|
|
|
"fmt"
|
|
|
|
|
"io"
|
|
|
|
|
"io/ioutil"
|
|
|
|
|
"net/http"
|
|
|
|
|
"os"
|
|
|
|
|
"path/filepath"
|
2021-07-01 14:36:40 +05:30
|
|
|
"regexp"
|
2021-07-25 03:07:19 +05:30
|
|
|
"runtime"
|
2021-01-15 22:05:10 +05:30
|
|
|
"strconv"
|
2020-08-29 15:26:11 +02:00
|
|
|
"strings"
|
|
|
|
|
|
2021-07-25 03:13:46 +05:30
|
|
|
"github.com/apex/log"
|
2020-08-29 15:26:11 +02:00
|
|
|
"github.com/blang/semver"
|
2021-07-25 03:07:19 +05:30
|
|
|
"github.com/google/go-github/github"
|
2021-01-15 22:05:10 +05:30
|
|
|
"github.com/olekukonko/tablewriter"
|
2021-03-05 12:08:31 +05:30
|
|
|
"github.com/pkg/errors"
|
2021-09-07 17:31:46 +03:00
|
|
|
|
2020-08-29 15:26:11 +02:00
|
|
|
"github.com/projectdiscovery/gologger"
|
2021-09-16 20:00:21 +03:00
|
|
|
"github.com/projectdiscovery/nuclei-updatecheck-api/client"
|
2021-07-01 14:36:40 +05:30
|
|
|
"github.com/projectdiscovery/nuclei/v2/pkg/catalog/config"
|
2021-07-25 03:07:19 +05:30
|
|
|
|
|
|
|
|
"github.com/tj/go-update"
|
|
|
|
|
"github.com/tj/go-update/progress"
|
|
|
|
|
githubUpdateStore "github.com/tj/go-update/stores/github"
|
2020-08-29 15:26:11 +02:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
const (
|
2021-08-25 18:52:51 +05:30
|
|
|
userName = "projectdiscovery"
|
|
|
|
|
repoName = "nuclei-templates"
|
|
|
|
|
nucleiIgnoreFile = ".nuclei-ignore"
|
|
|
|
|
nucleiConfigFilename = ".templates-config.json"
|
2020-08-29 15:26:11 +02:00
|
|
|
)
|
|
|
|
|
|
2021-07-01 14:36:40 +05:30
|
|
|
var reVersion = regexp.MustCompile(`\d+\.\d+\.\d+`)
|
|
|
|
|
|
2020-08-29 15:26:11 +02:00
|
|
|
// updateTemplates checks if the default list of nuclei-templates
|
2021-09-01 17:34:51 +03:00
|
|
|
// exist in the user's home directory, if not the latest revision
|
|
|
|
|
// is downloaded from GitHub.
|
2020-08-29 15:26:11 +02:00
|
|
|
//
|
2021-09-01 17:34:51 +03:00
|
|
|
// If the path exists but does not contain the latest version of public templates,
|
|
|
|
|
// the new version is downloaded from GitHub to the templates' directory, overwriting the old content.
|
2020-08-29 15:26:11 +02:00
|
|
|
func (r *Runner) updateTemplates() error {
|
|
|
|
|
home, err := os.UserHomeDir()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2021-08-23 16:11:26 +03:00
|
|
|
configDir := filepath.Join(home, ".config", "nuclei")
|
2021-03-22 15:48:27 +05:30
|
|
|
_ = os.MkdirAll(configDir, os.ModePerm)
|
2020-08-29 15:26:11 +02:00
|
|
|
|
2021-08-25 18:52:51 +05:30
|
|
|
if err := r.readInternalConfigurationFile(home, configDir); err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not read configuration file")
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
|
2021-09-01 17:34:51 +03:00
|
|
|
// If the config doesn't exist, create it now.
|
2021-03-22 17:10:58 +05:30
|
|
|
if r.templatesConfig == nil {
|
2021-07-01 14:36:40 +05:30
|
|
|
currentConfig := &config.Config{
|
2021-08-23 14:53:37 +03:00
|
|
|
TemplatesDirectory: filepath.Join(home, "nuclei-templates"),
|
2021-07-01 14:36:40 +05:30
|
|
|
NucleiVersion: config.Version,
|
2021-03-22 17:10:58 +05:30
|
|
|
}
|
2021-09-15 04:01:40 +05:30
|
|
|
if writeErr := config.WriteConfiguration(currentConfig); writeErr != nil {
|
2021-03-22 17:17:58 +05:30
|
|
|
return errors.Wrap(writeErr, "could not write template configuration")
|
2021-03-22 17:10:58 +05:30
|
|
|
}
|
|
|
|
|
r.templatesConfig = currentConfig
|
|
|
|
|
}
|
2021-03-31 21:27:40 +05:30
|
|
|
|
2021-09-13 15:45:24 +05:30
|
|
|
if r.options.NoUpdateTemplates && !r.options.UpdateTemplates {
|
2021-07-29 19:24:39 +05:30
|
|
|
return nil
|
|
|
|
|
}
|
2021-09-13 15:03:04 +05:30
|
|
|
client.InitNucleiVersion(config.Version)
|
2021-09-16 20:00:21 +03:00
|
|
|
r.fetchLatestVersionsFromGithub(configDir) // also fetch the latest versions
|
2021-08-25 18:52:51 +05:30
|
|
|
|
2020-08-29 15:26:11 +02:00
|
|
|
ctx := context.Background()
|
2021-09-15 03:48:40 +05:30
|
|
|
|
|
|
|
|
var noTemplatesFound bool
|
|
|
|
|
if _, err := os.Stat(r.templatesConfig.TemplatesDirectory); os.IsNotExist(err) {
|
|
|
|
|
noTemplatesFound = true
|
2021-03-22 15:48:27 +05:30
|
|
|
}
|
|
|
|
|
|
2021-09-15 04:01:40 +05:30
|
|
|
if r.templatesConfig.TemplateVersion == "" || (r.options.TemplatesDirectory != "" && r.templatesConfig.TemplatesDirectory != r.options.TemplatesDirectory) || noTemplatesFound {
|
2021-07-03 16:13:32 +05:30
|
|
|
gologger.Info().Msgf("nuclei-templates are not installed, installing...\n")
|
2020-08-29 15:26:11 +02:00
|
|
|
|
2021-09-01 17:34:51 +03:00
|
|
|
// Use the custom location if the user has given a template directory
|
2021-07-01 14:36:40 +05:30
|
|
|
r.templatesConfig = &config.Config{
|
2021-08-23 14:53:37 +03:00
|
|
|
TemplatesDirectory: filepath.Join(home, "nuclei-templates"),
|
2021-03-22 15:48:27 +05:30
|
|
|
}
|
2021-08-23 14:53:37 +03:00
|
|
|
if r.options.TemplatesDirectory != "" && r.options.TemplatesDirectory != filepath.Join(home, "nuclei-templates") {
|
2021-08-25 18:52:51 +05:30
|
|
|
r.templatesConfig.TemplatesDirectory, _ = filepath.Abs(r.options.TemplatesDirectory)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
2021-09-16 20:00:21 +03:00
|
|
|
r.fetchLatestVersionsFromGithub(configDir) // also fetch the latest versions
|
2020-08-29 15:26:11 +02:00
|
|
|
|
2021-09-13 15:45:24 +05:30
|
|
|
version, err := semver.Parse(r.templatesConfig.NucleiTemplatesLatestVersion)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2020-08-29 15:26:11 +02:00
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
// Download the repository and write the revision to a HEAD file.
|
2021-09-13 15:45:24 +05:30
|
|
|
asset, getErr := r.getLatestReleaseFromGithub(r.templatesConfig.NucleiTemplatesLatestVersion)
|
2020-08-29 15:26:11 +02:00
|
|
|
if getErr != nil {
|
|
|
|
|
return getErr
|
|
|
|
|
}
|
2021-01-11 20:57:37 +05:30
|
|
|
gologger.Verbose().Msgf("Downloading nuclei-templates (v%s) to %s\n", version.String(), r.templatesConfig.TemplatesDirectory)
|
2020-08-29 15:26:11 +02:00
|
|
|
|
2021-08-31 12:55:52 +03:00
|
|
|
if _, err := r.downloadReleaseAndUnzip(ctx, version.String(), asset.GetZipballURL()); err != nil {
|
2020-08-29 15:26:11 +02:00
|
|
|
return err
|
|
|
|
|
}
|
2021-09-15 04:01:40 +05:30
|
|
|
r.templatesConfig.TemplateVersion = version.String()
|
2020-08-29 15:26:11 +02:00
|
|
|
|
2021-09-16 20:00:21 +03:00
|
|
|
if err := config.WriteConfiguration(r.templatesConfig); err != nil {
|
2020-08-29 15:26:11 +02:00
|
|
|
return err
|
|
|
|
|
}
|
2021-07-08 00:37:58 +05:30
|
|
|
gologger.Info().Msgf("Successfully downloaded nuclei-templates (v%s). GoodLuck!\n", version.String())
|
2020-08-29 15:26:11 +02:00
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Get the configuration currently on disk.
|
2021-09-15 04:01:40 +05:30
|
|
|
verText := r.templatesConfig.TemplateVersion
|
2020-08-29 15:26:11 +02:00
|
|
|
indices := reVersion.FindStringIndex(verText)
|
|
|
|
|
if indices == nil {
|
|
|
|
|
return fmt.Errorf("invalid release found with tag %s", err)
|
|
|
|
|
}
|
|
|
|
|
if indices[0] > 0 {
|
|
|
|
|
verText = verText[indices[0]:]
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
oldVersion, err := semver.Make(verText)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
2021-09-13 15:45:24 +05:30
|
|
|
version, err := semver.Parse(r.templatesConfig.NucleiTemplatesLatestVersion)
|
2020-08-29 15:26:11 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if version.EQ(oldVersion) {
|
2021-09-13 15:47:29 +05:30
|
|
|
if r.options.UpdateTemplates {
|
|
|
|
|
gologger.Info().Msgf("No new updates found for nuclei templates")
|
|
|
|
|
}
|
2021-09-15 04:01:40 +05:30
|
|
|
return config.WriteConfiguration(r.templatesConfig)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if version.GT(oldVersion) {
|
2021-07-03 16:13:32 +05:30
|
|
|
gologger.Info().Msgf("Your current nuclei-templates v%s are outdated. Latest is v%s\n", oldVersion, version.String())
|
|
|
|
|
gologger.Info().Msgf("Downloading latest release...")
|
2020-08-29 15:26:11 +02:00
|
|
|
|
|
|
|
|
if r.options.TemplatesDirectory != "" {
|
2021-01-15 22:05:10 +05:30
|
|
|
r.templatesConfig.TemplatesDirectory = r.options.TemplatesDirectory
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
2021-09-15 04:01:40 +05:30
|
|
|
r.templatesConfig.TemplateVersion = version.String()
|
2020-08-29 15:26:11 +02:00
|
|
|
|
2021-01-15 22:05:10 +05:30
|
|
|
gologger.Verbose().Msgf("Downloading nuclei-templates (v%s) to %s\n", version.String(), r.templatesConfig.TemplatesDirectory)
|
2021-09-13 15:45:24 +05:30
|
|
|
|
|
|
|
|
asset, err := r.getLatestReleaseFromGithub(r.templatesConfig.NucleiTemplatesLatestVersion)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2021-08-31 12:55:52 +03:00
|
|
|
if _, err := r.downloadReleaseAndUnzip(ctx, version.String(), asset.GetZipballURL()); err != nil {
|
2020-08-29 15:26:11 +02:00
|
|
|
return err
|
|
|
|
|
}
|
2021-09-16 20:00:21 +03:00
|
|
|
if err := config.WriteConfiguration(r.templatesConfig); err != nil {
|
2020-08-29 15:26:11 +02:00
|
|
|
return err
|
|
|
|
|
}
|
2021-07-08 00:37:58 +05:30
|
|
|
gologger.Info().Msgf("Successfully updated nuclei-templates (v%s). GoodLuck!\n", version.String())
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2021-08-25 18:52:51 +05:30
|
|
|
// readInternalConfigurationFile reads the internal configuration file for nuclei
|
|
|
|
|
func (r *Runner) readInternalConfigurationFile(home, configDir string) error {
|
|
|
|
|
templatesConfigFile := filepath.Join(configDir, nucleiConfigFilename)
|
|
|
|
|
if _, statErr := os.Stat(templatesConfigFile); !os.IsNotExist(statErr) {
|
|
|
|
|
configuration, readErr := config.ReadConfiguration()
|
|
|
|
|
if readErr != nil {
|
|
|
|
|
return readErr
|
|
|
|
|
}
|
|
|
|
|
r.templatesConfig = configuration
|
|
|
|
|
|
|
|
|
|
if configuration.TemplatesDirectory != "" && configuration.TemplatesDirectory != filepath.Join(home, "nuclei-templates") {
|
|
|
|
|
r.options.TemplatesDirectory = configuration.TemplatesDirectory
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2021-09-01 17:34:51 +03:00
|
|
|
// checkNucleiIgnoreFileUpdates checks .nuclei-ignore file for updates from GitHub
|
2021-08-25 18:52:51 +05:30
|
|
|
func (r *Runner) checkNucleiIgnoreFileUpdates(configDir string) bool {
|
2021-09-11 18:40:07 +05:30
|
|
|
data, err := client.GetLatestIgnoreFile()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return false
|
|
|
|
|
}
|
|
|
|
|
if len(data) > 0 {
|
|
|
|
|
_ = ioutil.WriteFile(filepath.Join(configDir, nucleiIgnoreFile), data, 0644)
|
|
|
|
|
}
|
|
|
|
|
if r.templatesConfig != nil {
|
2021-09-15 04:01:40 +05:30
|
|
|
if err := config.WriteConfiguration(r.templatesConfig); err != nil {
|
2021-09-11 18:40:07 +05:30
|
|
|
gologger.Warning().Msgf("Could not get ignore-file from server: %s", err)
|
2021-08-25 18:52:51 +05:30
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true
|
|
|
|
|
}
|
|
|
|
|
|
2021-09-16 20:00:21 +03:00
|
|
|
// getLatestReleaseFromGithub returns the latest release from GitHub
|
2021-09-13 15:45:24 +05:30
|
|
|
func (r *Runner) getLatestReleaseFromGithub(latestTag string) (*github.RepositoryRelease, error) {
|
2020-08-29 15:26:11 +02:00
|
|
|
client := github.NewClient(nil)
|
|
|
|
|
|
2021-09-11 18:40:07 +05:30
|
|
|
release, _, err := client.Repositories.GetReleaseByTag(context.Background(), userName, repoName, "v"+latestTag)
|
2020-08-29 15:26:11 +02:00
|
|
|
if err != nil {
|
2021-09-13 15:45:24 +05:30
|
|
|
return nil, err
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
2021-09-11 18:40:07 +05:30
|
|
|
if release == nil {
|
2021-09-13 15:45:24 +05:30
|
|
|
return nil, errors.New("no version found for the templates")
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
2021-09-13 15:45:24 +05:30
|
|
|
return release, nil
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// downloadReleaseAndUnzip downloads and unzips the release in a directory
|
2021-02-27 20:54:22 +05:30
|
|
|
func (r *Runner) downloadReleaseAndUnzip(ctx context.Context, version, downloadURL string) (*templateUpdateResults, error) {
|
2020-08-29 15:26:11 +02:00
|
|
|
req, err := http.NewRequestWithContext(ctx, http.MethodGet, downloadURL, nil)
|
|
|
|
|
if err != nil {
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, fmt.Errorf("failed to create HTTP request to %s: %s", downloadURL, err)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
res, err := http.DefaultClient.Do(req)
|
|
|
|
|
if err != nil {
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, fmt.Errorf("failed to download a release file from %s: %s", downloadURL, err)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
defer res.Body.Close()
|
|
|
|
|
if res.StatusCode != http.StatusOK {
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, fmt.Errorf("failed to download a release file from %s: Not successful status %d", downloadURL, res.StatusCode)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
buf, err := ioutil.ReadAll(res.Body)
|
|
|
|
|
if err != nil {
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, fmt.Errorf("failed to create buffer for zip file: %s", err)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
reader := bytes.NewReader(buf)
|
2021-09-01 17:36:07 +03:00
|
|
|
zipReader, err := zip.NewReader(reader, reader.Size())
|
2020-08-29 15:26:11 +02:00
|
|
|
if err != nil {
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, fmt.Errorf("failed to uncompress zip file: %s", err)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
|
2021-09-01 17:34:51 +03:00
|
|
|
// Create the template folder if it doesn't exist
|
2021-08-31 12:55:52 +03:00
|
|
|
if err := os.MkdirAll(r.templatesConfig.TemplatesDirectory, os.ModePerm); err != nil {
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, fmt.Errorf("failed to create template base folder: %s", err)
|
|
|
|
|
}
|
|
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
results, err := r.compareAndWriteTemplates(zipReader)
|
2021-02-27 20:54:22 +05:30
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("failed to write templates: %s", err)
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-05 04:35:53 +05:30
|
|
|
if r.options.Verbose {
|
2021-07-03 16:37:21 +05:30
|
|
|
r.printUpdateChangelog(results, version)
|
|
|
|
|
}
|
2021-08-23 14:53:37 +03:00
|
|
|
checksumFile := filepath.Join(r.templatesConfig.TemplatesDirectory, ".checksum")
|
2021-08-31 12:55:52 +03:00
|
|
|
if err := writeTemplatesChecksum(checksumFile, results.checksums); err != nil {
|
2021-03-05 12:08:31 +05:30
|
|
|
return nil, errors.Wrap(err, "could not write checksum")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Write the additions to a cached file for new runs.
|
2021-08-23 14:53:37 +03:00
|
|
|
additionsFile := filepath.Join(r.templatesConfig.TemplatesDirectory, ".new-additions")
|
2021-03-05 12:08:31 +05:30
|
|
|
buffer := &bytes.Buffer{}
|
|
|
|
|
for _, addition := range results.additions {
|
|
|
|
|
buffer.WriteString(addition)
|
|
|
|
|
buffer.WriteString("\n")
|
|
|
|
|
}
|
2021-08-31 12:55:52 +03:00
|
|
|
|
|
|
|
|
if err := ioutil.WriteFile(additionsFile, buffer.Bytes(), os.ModePerm); err != nil {
|
2021-03-05 12:08:31 +05:30
|
|
|
return nil, errors.Wrap(err, "could not write new additions file")
|
|
|
|
|
}
|
2021-02-27 20:54:22 +05:30
|
|
|
return results, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type templateUpdateResults struct {
|
|
|
|
|
additions []string
|
|
|
|
|
deletions []string
|
|
|
|
|
modifications []string
|
|
|
|
|
totalCount int
|
|
|
|
|
checksums map[string]string
|
|
|
|
|
}
|
|
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
// compareAndWriteTemplates compares and returns the stats of a template update operations.
|
|
|
|
|
func (r *Runner) compareAndWriteTemplates(zipReader *zip.Reader) (*templateUpdateResults, error) {
|
2021-02-27 20:54:22 +05:30
|
|
|
results := &templateUpdateResults{
|
|
|
|
|
checksums: make(map[string]string),
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
|
2021-01-11 20:57:37 +05:30
|
|
|
// We use file-checksums that are md5 hashes to store the list of files->hashes
|
|
|
|
|
// that have been downloaded previously.
|
|
|
|
|
// If the path isn't found in new update after being read from the previous checksum,
|
|
|
|
|
// it is removed. This allows us fine-grained control over the download process
|
|
|
|
|
// as well as solves a long problem with nuclei-template updates.
|
2021-08-23 14:53:37 +03:00
|
|
|
checksumFile := filepath.Join(r.templatesConfig.TemplatesDirectory, ".checksum")
|
2021-09-01 17:36:07 +03:00
|
|
|
templateChecksumsMap, _ := createTemplateChecksumsMap(checksumFile)
|
|
|
|
|
for _, zipTemplateFile := range zipReader.File {
|
|
|
|
|
directory, name := filepath.Split(zipTemplateFile.Name)
|
2020-08-29 15:26:11 +02:00
|
|
|
if name == "" {
|
|
|
|
|
continue
|
|
|
|
|
}
|
2021-08-23 16:11:26 +03:00
|
|
|
paths := strings.Split(directory, string(os.PathSeparator))
|
|
|
|
|
finalPath := filepath.Join(paths[1:]...)
|
2020-08-29 15:26:11 +02:00
|
|
|
|
2021-04-02 18:44:28 +05:30
|
|
|
if strings.HasPrefix(name, ".") || strings.HasPrefix(finalPath, ".") || strings.EqualFold(name, "README.md") {
|
2021-01-15 22:05:10 +05:30
|
|
|
continue
|
|
|
|
|
}
|
2021-02-27 20:54:22 +05:30
|
|
|
results.totalCount++
|
2021-08-23 14:53:37 +03:00
|
|
|
templateDirectory := filepath.Join(r.templatesConfig.TemplatesDirectory, finalPath)
|
2021-08-31 12:55:52 +03:00
|
|
|
if err := os.MkdirAll(templateDirectory, os.ModePerm); err != nil {
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, fmt.Errorf("failed to create template folder %s : %s", templateDirectory, err)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
|
2021-08-23 14:53:37 +03:00
|
|
|
templatePath := filepath.Join(templateDirectory, name)
|
2021-01-15 22:05:10 +05:30
|
|
|
|
|
|
|
|
isAddition := false
|
2021-03-09 15:00:22 +05:30
|
|
|
if _, statErr := os.Stat(templatePath); os.IsNotExist(statErr) {
|
2021-01-15 22:05:10 +05:30
|
|
|
isAddition = true
|
|
|
|
|
}
|
2021-09-01 17:36:07 +03:00
|
|
|
templateFile, err := os.OpenFile(templatePath, os.O_TRUNC|os.O_CREATE|os.O_WRONLY, 0777)
|
2020-08-29 15:26:11 +02:00
|
|
|
if err != nil {
|
2021-09-01 17:36:07 +03:00
|
|
|
templateFile.Close()
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, fmt.Errorf("could not create uncompressed file: %s", err)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
zipTemplateFileReader, err := zipTemplateFile.Open()
|
2020-08-29 15:26:11 +02:00
|
|
|
if err != nil {
|
2021-09-01 17:36:07 +03:00
|
|
|
templateFile.Close()
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, fmt.Errorf("could not open archive to extract file: %s", err)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
2021-01-11 20:57:37 +05:30
|
|
|
hasher := md5.New()
|
2020-08-29 15:26:11 +02:00
|
|
|
|
2021-01-11 20:57:37 +05:30
|
|
|
// Save file and also read into hasher for md5
|
2021-09-01 17:36:07 +03:00
|
|
|
if _, err := io.Copy(templateFile, io.TeeReader(zipTemplateFileReader, hasher)); err != nil {
|
|
|
|
|
templateFile.Close()
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, fmt.Errorf("could not write template file: %s", err)
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
2021-09-01 17:36:07 +03:00
|
|
|
templateFile.Close()
|
2021-01-15 20:35:15 +05:30
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
oldChecksum, checksumOK := templateChecksumsMap[templatePath]
|
2021-02-27 20:54:22 +05:30
|
|
|
|
|
|
|
|
checksum := hex.EncodeToString(hasher.Sum(nil))
|
2021-01-15 22:05:10 +05:30
|
|
|
if isAddition {
|
2021-08-23 14:53:37 +03:00
|
|
|
results.additions = append(results.additions, filepath.Join(finalPath, name))
|
2021-02-27 20:54:22 +05:30
|
|
|
} else if checksumOK && oldChecksum[0] != checksum {
|
2021-08-23 14:53:37 +03:00
|
|
|
results.modifications = append(results.modifications, filepath.Join(finalPath, name))
|
2021-01-15 22:05:10 +05:30
|
|
|
}
|
2021-02-27 20:54:22 +05:30
|
|
|
results.checksums[templatePath] = checksum
|
2021-01-11 20:57:37 +05:30
|
|
|
}
|
|
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
// If we don't find the previous file in the newly downloaded list,
|
|
|
|
|
// and it hasn't been changed on the disk, delete it.
|
|
|
|
|
for templatePath, templateChecksums := range templateChecksumsMap {
|
|
|
|
|
_, ok := results.checksums[templatePath]
|
|
|
|
|
if !ok && templateChecksums[0] == templateChecksums[1] {
|
|
|
|
|
os.Remove(templatePath)
|
|
|
|
|
results.deletions = append(results.deletions, strings.TrimPrefix(strings.TrimPrefix(templatePath, r.templatesConfig.TemplatesDirectory), string(os.PathSeparator)))
|
2021-01-11 20:57:37 +05:30
|
|
|
}
|
|
|
|
|
}
|
2021-02-27 20:54:22 +05:30
|
|
|
return results, nil
|
2021-01-11 20:57:37 +05:30
|
|
|
}
|
|
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
// createTemplateChecksumsMap reads the previous checksum file from the disk.
|
|
|
|
|
// Creates a map of template paths and their previous and currently calculated checksums as values.
|
|
|
|
|
func createTemplateChecksumsMap(checksumsFilePath string) (map[string][2]string, error) {
|
|
|
|
|
checksumFile, err := os.Open(checksumsFilePath)
|
2021-01-11 20:57:37 +05:30
|
|
|
if err != nil {
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, err
|
2021-01-11 20:57:37 +05:30
|
|
|
}
|
2021-09-01 17:36:07 +03:00
|
|
|
defer checksumFile.Close()
|
|
|
|
|
scanner := bufio.NewScanner(checksumFile)
|
2021-01-11 20:57:37 +05:30
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
templatePathChecksumsMap := make(map[string][2]string)
|
2021-01-11 20:57:37 +05:30
|
|
|
for scanner.Scan() {
|
|
|
|
|
text := scanner.Text()
|
|
|
|
|
if text == "" {
|
|
|
|
|
continue
|
|
|
|
|
}
|
2021-09-01 17:36:07 +03:00
|
|
|
|
2021-01-11 20:57:37 +05:30
|
|
|
parts := strings.Split(text, ",")
|
|
|
|
|
if len(parts) < 2 {
|
|
|
|
|
continue
|
|
|
|
|
}
|
2021-09-01 17:36:07 +03:00
|
|
|
templatePath := parts[0]
|
|
|
|
|
expectedTemplateChecksum := parts[1]
|
2021-01-11 20:57:37 +05:30
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
templateFile, err := os.Open(templatePath)
|
2021-01-11 20:57:37 +05:30
|
|
|
if err != nil {
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, err
|
2021-01-11 20:57:37 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
|
|
hasher := md5.New()
|
2021-09-01 17:36:07 +03:00
|
|
|
if _, err := io.Copy(hasher, templateFile); err != nil {
|
2021-02-27 20:54:22 +05:30
|
|
|
return nil, err
|
2021-01-11 20:57:37 +05:30
|
|
|
}
|
2021-09-01 17:36:07 +03:00
|
|
|
templateFile.Close()
|
2021-01-15 22:05:10 +05:30
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
values := [2]string{expectedTemplateChecksum}
|
2021-01-11 20:57:37 +05:30
|
|
|
values[1] = hex.EncodeToString(hasher.Sum(nil))
|
2021-09-01 17:36:07 +03:00
|
|
|
templatePathChecksumsMap[templatePath] = values
|
2021-01-11 20:57:37 +05:30
|
|
|
}
|
2021-09-01 17:36:07 +03:00
|
|
|
return templatePathChecksumsMap, nil
|
2021-01-11 20:57:37 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// writeTemplatesChecksum writes the nuclei-templates checksum data to disk.
|
|
|
|
|
func writeTemplatesChecksum(file string, checksum map[string]string) error {
|
|
|
|
|
f, err := os.Create(file)
|
|
|
|
|
if err != nil {
|
2021-01-15 22:05:10 +05:30
|
|
|
return err
|
2021-01-11 20:57:37 +05:30
|
|
|
}
|
|
|
|
|
defer f.Close()
|
|
|
|
|
|
2021-02-27 20:54:22 +05:30
|
|
|
builder := &strings.Builder{}
|
2021-01-11 20:57:37 +05:30
|
|
|
for k, v := range checksum {
|
2021-02-27 20:54:22 +05:30
|
|
|
builder.WriteString(k)
|
|
|
|
|
builder.WriteString(",")
|
|
|
|
|
builder.WriteString(v)
|
|
|
|
|
builder.WriteString("\n")
|
|
|
|
|
|
|
|
|
|
if _, checksumErr := f.WriteString(builder.String()); checksumErr != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
builder.Reset()
|
2020-08-29 15:26:11 +02:00
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
2021-01-15 22:05:10 +05:30
|
|
|
|
2021-02-27 20:54:22 +05:30
|
|
|
func (r *Runner) printUpdateChangelog(results *templateUpdateResults, version string) {
|
2021-07-03 16:13:32 +05:30
|
|
|
if len(results.additions) > 0 && r.options.Verbose {
|
2021-02-27 20:54:22 +05:30
|
|
|
gologger.Print().Msgf("\nNewly added templates: \n\n")
|
2021-01-15 22:05:10 +05:30
|
|
|
|
2021-02-27 20:54:22 +05:30
|
|
|
for _, addition := range results.additions {
|
2021-01-15 22:05:10 +05:30
|
|
|
gologger.Print().Msgf("%s", addition)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
gologger.Print().Msgf("\nNuclei Templates v%s Changelog\n", version)
|
|
|
|
|
data := [][]string{
|
2021-02-27 20:54:22 +05:30
|
|
|
{strconv.Itoa(results.totalCount), strconv.Itoa(len(results.additions)), strconv.Itoa(len(results.deletions))},
|
2021-01-15 22:05:10 +05:30
|
|
|
}
|
|
|
|
|
table := tablewriter.NewWriter(os.Stdout)
|
2021-02-27 20:54:22 +05:30
|
|
|
table.SetHeader([]string{"Total", "Added", "Removed"})
|
2021-01-15 22:05:10 +05:30
|
|
|
for _, v := range data {
|
|
|
|
|
table.Append(v)
|
|
|
|
|
}
|
|
|
|
|
table.Render()
|
|
|
|
|
}
|
2021-07-01 14:36:40 +05:30
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
// fetchLatestVersionsFromGithub fetches the latest versions of nuclei repos from GitHub
|
2021-09-16 16:49:09 +05:30
|
|
|
//
|
2021-09-16 17:27:06 +05:30
|
|
|
// This fetches latest nuclei/templates/ignore from https://version-check.nuclei.sh/versions
|
|
|
|
|
// If you want to disable this automatic update check, use -nut flag.
|
2021-09-15 04:01:40 +05:30
|
|
|
func (r *Runner) fetchLatestVersionsFromGithub(configDir string) {
|
2021-09-11 18:40:07 +05:30
|
|
|
versions, err := client.GetLatestNucleiTemplatesVersion()
|
2021-07-01 14:36:40 +05:30
|
|
|
if err != nil {
|
2021-09-11 18:40:07 +05:30
|
|
|
gologger.Warning().Msgf("Could not fetch latest releases: %s", err)
|
2021-09-13 15:03:04 +05:30
|
|
|
return
|
2021-07-01 14:36:40 +05:30
|
|
|
}
|
|
|
|
|
if r.templatesConfig != nil {
|
2021-09-11 18:40:07 +05:30
|
|
|
r.templatesConfig.NucleiLatestVersion = versions.Nuclei
|
|
|
|
|
r.templatesConfig.NucleiTemplatesLatestVersion = versions.Templates
|
2021-07-01 14:36:40 +05:30
|
|
|
|
2021-09-15 04:01:40 +05:30
|
|
|
// If the fetch has resulted in new version of ignore file, update.
|
|
|
|
|
if r.templatesConfig.NucleiIgnoreHash == "" || r.templatesConfig.NucleiIgnoreHash != versions.IgnoreHash {
|
|
|
|
|
r.templatesConfig.NucleiIgnoreHash = versions.IgnoreHash
|
|
|
|
|
r.checkNucleiIgnoreFileUpdates(configDir)
|
|
|
|
|
}
|
2021-07-01 14:36:40 +05:30
|
|
|
}
|
|
|
|
|
}
|
2021-07-25 03:07:19 +05:30
|
|
|
|
2021-09-01 17:36:07 +03:00
|
|
|
// updateNucleiVersionToLatest implements nuclei auto-update using GitHub Releases.
|
2021-07-25 03:13:46 +05:30
|
|
|
func updateNucleiVersionToLatest(verbose bool) error {
|
|
|
|
|
if verbose {
|
|
|
|
|
log.SetLevel(log.DebugLevel)
|
|
|
|
|
}
|
2021-07-25 03:37:05 +05:30
|
|
|
var command string
|
|
|
|
|
switch runtime.GOOS {
|
|
|
|
|
case "windows":
|
|
|
|
|
command = "nuclei.exe"
|
|
|
|
|
default:
|
|
|
|
|
command = "nuclei"
|
|
|
|
|
}
|
2021-07-25 03:07:19 +05:30
|
|
|
m := &update.Manager{
|
2021-07-25 03:37:05 +05:30
|
|
|
Command: command,
|
2021-07-25 03:07:19 +05:30
|
|
|
Store: &githubUpdateStore.Store{
|
2021-07-25 03:37:05 +05:30
|
|
|
Owner: "projectdiscovery",
|
2021-07-25 03:07:19 +05:30
|
|
|
Repo: "nuclei",
|
|
|
|
|
Version: config.Version,
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
releases, err := m.LatestReleases()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not fetch latest release")
|
|
|
|
|
}
|
|
|
|
|
if len(releases) == 0 {
|
2021-07-25 16:06:12 +05:30
|
|
|
gologger.Info().Msgf("No new updates found for nuclei engine!")
|
2021-07-25 04:25:31 +05:30
|
|
|
return nil
|
2021-07-25 03:07:19 +05:30
|
|
|
}
|
|
|
|
|
|
|
|
|
|
latest := releases[0]
|
|
|
|
|
var currentOS string
|
|
|
|
|
switch runtime.GOOS {
|
|
|
|
|
case "darwin":
|
|
|
|
|
currentOS = "macOS"
|
|
|
|
|
default:
|
|
|
|
|
currentOS = runtime.GOOS
|
|
|
|
|
}
|
|
|
|
|
final := latest.FindZip(currentOS, runtime.GOARCH)
|
|
|
|
|
if final == nil {
|
|
|
|
|
return fmt.Errorf("no compatible binary found for %s/%s", currentOS, runtime.GOARCH)
|
|
|
|
|
}
|
|
|
|
|
tarball, err := final.DownloadProxy(progress.Reader)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not download latest release")
|
|
|
|
|
}
|
|
|
|
|
if err := m.Install(tarball); err != nil {
|
|
|
|
|
return errors.Wrap(err, "could not install latest release")
|
|
|
|
|
}
|
2021-07-25 04:31:22 +05:30
|
|
|
gologger.Info().Msgf("Successfully updated to Nuclei %s\n", latest.Version)
|
2021-07-25 03:07:19 +05:30
|
|
|
return nil
|
|
|
|
|
}
|
