nuclei/v2/pkg/operators/operators.go

package operators

import (
	"github.com/pkg/errors"

	"github.com/projectdiscovery/nuclei/v2/pkg/operators/extractors"
	"github.com/projectdiscovery/nuclei/v2/pkg/operators/matchers"
)

// Operators contains the operators that can be applied on protocols
type Operators struct {
	// description: |
	//   Matchers contains the detection mechanism for the request to identify
	//   whether the request was successful by doing pattern matching
	//   on request/responses.
	//
	//   Multiple matchers can be combined with `matcher-condition` flag
	//   which accepts either `and` or `or` as argument.
	Matchers []*matchers.Matcher `yaml:"matchers,omitempty" jsonschema:"title=matchers to run on response,description=Detection mechanism to identify whether the request was successful by doing pattern matching"`
	// description: |
	//   Extractors contains the extraction mechanism for the request to identify
	//   and extract parts of the response.
	Extractors []*extractors.Extractor `yaml:"extractors,omitempty" jsonschema:"title=extractors to run on response,description=Extractors contains the extraction mechanism for the request to identify and extract parts of the response"`
	// description: |
	//   MatchersCondition is the condition between the matchers. Default is OR.
	// values:
	//   - "and"
	//   - "or"
	MatchersCondition string `yaml:"matchers-condition,omitempty" jsonschema:"title=condition between the matchers,description=Conditions between the matchers,enum=and,enum=or"`
	// cached variables that may be used along with request.
	matchersCondition matchers.ConditionType
}

// Compile compiles the operators as well as their corresponding matchers and extractors
func (r *Operators) Compile() error {
	if r.MatchersCondition != "" {
		r.matchersCondition = matchers.ConditionTypes[r.MatchersCondition]
	} else {
		r.matchersCondition = matchers.ORCondition
	}

	for _, matcher := range r.Matchers {
		if err := matcher.CompileMatchers(); err != nil {
			return errors.Wrap(err, "could not compile matcher")
		}
	}
	for _, extractor := range r.Extractors {
		if err := extractor.CompileExtractors(); err != nil {
			return errors.Wrap(err, "could not compile extractor")
		}
	}
	return nil
}

// GetMatchersCondition returns the condition for the matchers
func (r *Operators) GetMatchersCondition() matchers.ConditionType {
	return r.matchersCondition
}

// Result is a result structure created from operators running on data.
type Result struct {
	// Matched is true if any matchers matched
	Matched bool
	// Extracted is true if any result type values were extracted
	Extracted bool
	// Matches is a map of matcher names that we matched
	Matches map[string]struct{}
	// Extracts contains all the data extracted from inputs
	Extracts map[string][]string
	// OutputExtracts is the list of extracts to be displayed on screen.
	OutputExtracts []string
	// DynamicValues contains any dynamic values to be templated
	DynamicValues map[string]interface{}
	// PayloadValues contains payload values provided by user. (Optional)
	PayloadValues map[string]interface{}
}

// Merge merges a result structure into the other.
func (r *Result) Merge(result *Result) {
	if !r.Matched && result.Matched {
		r.Matched = result.Matched
	}
	if !r.Extracted && result.Extracted {
		r.Extracted = result.Extracted
	}

	for k, v := range result.Matches {
		r.Matches[k] = v
	}
	for k, v := range result.Extracts {
		r.Extracts[k] = v
	}
	r.OutputExtracts = append(r.OutputExtracts, result.OutputExtracts...)
	for k, v := range result.DynamicValues {
		r.DynamicValues[k] = v
	}
	for k, v := range result.PayloadValues {
		r.PayloadValues[k] = v
	}
}

// MatchFunc performs matching operation for a matcher on model and returns true or false.
type MatchFunc func(data map[string]interface{}, matcher *matchers.Matcher) (bool, []string)

// ExtractFunc performs extracting operation for an extractor on model and returns true or false.
type ExtractFunc func(data map[string]interface{}, matcher *extractors.Extractor) map[string]struct{}

// Execute executes the operators on data and returns a result structure
func (r *Operators) Execute(data map[string]interface{}, match MatchFunc, extract ExtractFunc) (*Result, bool) {
	matcherCondition := r.GetMatchersCondition()

	var matches bool
	result := &Result{
		Matches:       make(map[string]struct{}),
		Extracts:      make(map[string][]string),
		DynamicValues: make(map[string]interface{}),
	}

	// Start with the extractors first and evaluate them.
	for _, extractor := range r.Extractors {
		var extractorResults []string

		for match := range extract(data, extractor) {
			extractorResults = append(extractorResults, match)

			if extractor.Internal {
				if _, ok := result.DynamicValues[extractor.Name]; !ok {
					result.DynamicValues[extractor.Name] = match
				}
			} else {
				result.OutputExtracts = append(result.OutputExtracts, match)
			}
		}
		if len(extractorResults) > 0 && !extractor.Internal && extractor.Name != "" {
			result.Extracts[extractor.Name] = extractorResults
		}
	}

	for _, matcher := range r.Matchers {
		// Check if the matcher matched
		if isMatch, _ := match(data, matcher); isMatch {
			// If the matcher has matched, and it's an OR
			// write the first output then move to next matcher.
			if matcherCondition == matchers.ORCondition && matcher.Name != "" {
				result.Matches[matcher.Name] = struct{}{}
			}

			matches = true
		} else if matcherCondition == matchers.ANDCondition {
			if len(result.DynamicValues) > 0 {
				return result, true
			}
			return nil, false
		}
	}

	result.Matched = matches
	result.Extracted = len(result.OutputExtracts) > 0
	if len(result.DynamicValues) > 0 {
		return result, true
	}

	// Don't print if we have matchers, and they have not matched, regardless of extractor
	if len(r.Matchers) > 0 && !matches {
		return nil, false
	}
	// Write a final string of output if matcher type is
	// AND or if we have extractors for the mechanism too.
	if len(result.Extracts) > 0 || len(result.OutputExtracts) > 0 || matches {
		return result, true
	}
	return nil, false
}

// ExecuteInternalExtractors executes internal dynamic extractors
func (r *Operators) ExecuteInternalExtractors(data map[string]interface{}, extract ExtractFunc) map[string]interface{} {
	dynamicValues := make(map[string]interface{})

	// Start with the extractors first and evaluate them.
	for _, extractor := range r.Extractors {
		if !extractor.Internal {
			continue
		}
		for match := range extract(data, extractor) {
			if _, ok := dynamicValues[extractor.Name]; !ok {
				dynamicValues[extractor.Name] = match
			}
		}
	}
	return dynamicValues
}
Separating matchers, extractors and requests as protocols and operators 2020-12-21 14:31:32 +05:30			`package operators`

			`import (`
Modelling the data flow process and operations for executers 2020-12-25 02:24:55 +05:30			`"github.com/pkg/errors"`
RES-84 # Improve Nuclei CLI interface * fixed issues reported by the linter 2021-07-19 21:04:08 +03:00
Separating matchers, extractors and requests as protocols and operators 2020-12-21 14:31:32 +05:30			`"github.com/projectdiscovery/nuclei/v2/pkg/operators/extractors"`
			`"github.com/projectdiscovery/nuclei/v2/pkg/operators/matchers"`
			`)`

			`// Operators contains the operators that can be applied on protocols`
			`type Operators struct {`
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			`// description: \|`
			`// Matchers contains the detection mechanism for the request to identify`
			`// whether the request was successful by doing pattern matching`
			`// on request/responses.`
			`//`
Typo fixes. 2021-09-07 17:31:46 +03:00			// Multiple matchers can be combined with `matcher-condition` flag
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			// which accepts either `and` or `or` as argument.
Added jsonschema generation for yaml syntax 2021-08-23 23:50:45 +05:30			Matchers []*matchers.Matcher `yaml:"matchers,omitempty" jsonschema:"title=matchers to run on response,description=Detection mechanism to identify whether the request was successful by doing pattern matching"`
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			`// description: \|`
			`// Extractors contains the extraction mechanism for the request to identify`
			`// and extract parts of the response.`
Added jsonschema generation for yaml syntax 2021-08-23 23:50:45 +05:30			Extractors []*extractors.Extractor `yaml:"extractors,omitempty" jsonschema:"title=extractors to run on response,description=Extractors contains the extraction mechanism for the request to identify and extract parts of the response"`
Added new YAML based doc to structures 2021-07-27 16:03:56 +05:30			`// description: \|`
			`// MatchersCondition is the condition between the matchers. Default is OR.`
			`// values:`
			`// - "and"`
			`// - "or"`
Added jsonschema generation for yaml syntax 2021-08-23 23:50:45 +05:30			MatchersCondition string `yaml:"matchers-condition,omitempty" jsonschema:"title=condition between the matchers,description=Conditions between the matchers,enum=and,enum=or"`
Separating matchers, extractors and requests as protocols and operators 2020-12-21 14:31:32 +05:30			`// cached variables that may be used along with request.`
			`matchersCondition matchers.ConditionType`
			`}`

Modelling the data flow process and operations for executers 2020-12-25 02:24:55 +05:30			`// Compile compiles the operators as well as their corresponding matchers and extractors`
			`func (r *Operators) Compile() error {`
			`if r.MatchersCondition != "" {`
			`r.matchersCondition = matchers.ConditionTypes[r.MatchersCondition]`
			`} else {`
Fixed a bug with conditions in nuclei 2020-12-30 13:26:55 +05:30			`r.matchersCondition = matchers.ORCondition`
Modelling the data flow process and operations for executers 2020-12-25 02:24:55 +05:30			`}`

			`for _, matcher := range r.Matchers {`
			`if err := matcher.CompileMatchers(); err != nil {`
			`return errors.Wrap(err, "could not compile matcher")`
			`}`
			`}`
			`for _, extractor := range r.Extractors {`
			`if err := extractor.CompileExtractors(); err != nil {`
			`return errors.Wrap(err, "could not compile extractor")`
			`}`
			`}`
			`return nil`
			`}`

Separating matchers, extractors and requests as protocols and operators 2020-12-21 14:31:32 +05:30			`// GetMatchersCondition returns the condition for the matchers`
			`func (r *Operators) GetMatchersCondition() matchers.ConditionType {`
			`return r.matchersCondition`
			`}`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30
			`// Result is a result structure created from operators running on data.`
			`type Result struct {`
Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30			`// Matched is true if any matchers matched`
			`Matched bool`
			`// Extracted is true if any result type values were extracted`
			`Extracted bool`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`// Matches is a map of matcher names that we matched`
			`Matches map[string]struct{}`
			`// Extracts contains all the data extracted from inputs`
			`Extracts map[string][]string`
More refactoring of nuclei packages 2020-12-24 20:47:41 +05:30			`// OutputExtracts is the list of extracts to be displayed on screen.`
			`OutputExtracts []string`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`// DynamicValues contains any dynamic values to be templated`
Add dynamic extracted values to history 2021-01-01 16:52:41 +05:30			`DynamicValues map[string]interface{}`
Misc work on making http protocol runnable 2020-12-29 01:30:07 +05:30			`// PayloadValues contains payload values provided by user. (Optional)`
			`PayloadValues map[string]interface{}`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`}`

Working interactsh integration 2021-04-18 16:10:10 +05:30			`// Merge merges a result structure into the other.`
			`func (r Result) Merge(result Result) {`
			`if !r.Matched && result.Matched {`
			`r.Matched = result.Matched`
			`}`
			`if !r.Extracted && result.Extracted {`
			`r.Extracted = result.Extracted`
			`}`

			`for k, v := range result.Matches {`
			`r.Matches[k] = v`
			`}`
			`for k, v := range result.Extracts {`
			`r.Extracts[k] = v`
			`}`
Fixed lint errors 2021-05-01 18:28:24 +05:30			`r.OutputExtracts = append(r.OutputExtracts, result.OutputExtracts...)`
Working interactsh integration 2021-04-18 16:10:10 +05:30			`for k, v := range result.DynamicValues {`
			`r.DynamicValues[k] = v`
			`}`
			`for k, v := range result.PayloadValues {`
			`r.PayloadValues[k] = v`
			`}`
			`}`

More refactoring of nuclei packages 2020-12-24 20:47:41 +05:30			`// MatchFunc performs matching operation for a matcher on model and returns true or false.`
[feature] Add coloring to debug information #999 [WIP] TODO: * if there are multiple matchers, make sure the response is only displayed once, with all the matching values colored * remove code duplication from the request.go files 2021-09-29 19:43:46 +03:00			`type MatchFunc func(data map[string]interface{}, matcher *matchers.Matcher) (bool, []string)`
More refactoring of nuclei packages 2020-12-24 20:47:41 +05:30
Typo fixes. 2021-09-07 17:31:46 +03:00			`// ExtractFunc performs extracting operation for an extractor on model and returns true or false.`
More refactoring of nuclei packages 2020-12-24 20:47:41 +05:30			`type ExtractFunc func(data map[string]interface{}, matcher *extractors.Extractor) map[string]struct{}`

Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`// Execute executes the operators on data and returns a result structure`
Grouping things, added more internal result types, restructuring 2020-12-25 12:55:46 +05:30			`func (r Operators) Execute(data map[string]interface{}, match MatchFunc, extract ExtractFunc) (Result, bool) {`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`matcherCondition := r.GetMatchersCondition()`

Fixed a bug with conditions in nuclei 2020-12-30 13:26:55 +05:30			`var matches bool`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`result := &Result{`
			`Matches: make(map[string]struct{}),`
			`Extracts: make(map[string][]string),`
Add dynamic extracted values to history 2021-01-01 16:52:41 +05:30			`DynamicValues: make(map[string]interface{}),`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`}`
Working interactsh integration 2021-04-18 16:10:10 +05:30
Misc 2021-03-09 16:35:53 +05:30			`// Start with the extractors first and evaluate them.`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`for _, extractor := range r.Extractors {`
More refactoring of nuclei packages 2020-12-24 20:47:41 +05:30			`var extractorResults []string`

			`for match := range extract(data, extractor) {`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`extractorResults = append(extractorResults, match)`

			`if extractor.Internal {`
			`if _, ok := result.DynamicValues[extractor.Name]; !ok {`
			`result.DynamicValues[extractor.Name] = match`
			`}`
			`} else {`
More refactoring of nuclei packages 2020-12-24 20:47:41 +05:30			`result.OutputExtracts = append(result.OutputExtracts, match)`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`}`
			`}`
Added extractor name field 2021-01-11 21:11:35 +05:30			`if len(extractorResults) > 0 && !extractor.Internal && extractor.Name != "" {`
Fixed a bug with conditions in nuclei 2020-12-30 13:26:55 +05:30			`result.Extracts[extractor.Name] = extractorResults`
			`}`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`}`

Misc 2021-03-09 16:35:53 +05:30			`for _, matcher := range r.Matchers {`
			`// Check if the matcher matched`
[feature] Add coloring to debug information #999 [WIP] TODO: * if there are multiple matchers, make sure the response is only displayed once, with all the matching values colored * remove code duplication from the request.go files 2021-09-29 19:43:46 +03:00			`if isMatch, _ := match(data, matcher); isMatch {`
Typo fixes. 2021-09-07 17:31:46 +03:00			`// If the matcher has matched, and it's an OR`
Misc 2021-03-09 16:35:53 +05:30			`// write the first output then move to next matcher.`
			`if matcherCondition == matchers.ORCondition && matcher.Name != "" {`
			`result.Matches[matcher.Name] = struct{}{}`
			`}`
[feature] Add coloring to debug information #999 [WIP] TODO: * if there are multiple matchers, make sure the response is only displayed once, with all the matching values colored * remove code duplication from the request.go files 2021-09-29 19:43:46 +03:00
Misc 2021-03-09 16:35:53 +05:30			`matches = true`
[feature] Add coloring to debug information #999 [WIP] TODO: * if there are multiple matchers, make sure the response is only displayed once, with all the matching values colored * remove code duplication from the request.go files 2021-09-29 19:43:46 +03:00			`} else if matcherCondition == matchers.ANDCondition {`
			`if len(result.DynamicValues) > 0 {`
			`return result, true`
			`}`
			`return nil, false`
Misc 2021-03-09 16:35:53 +05:30			`}`
			`}`

Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30			`result.Matched = matches`
			`result.Extracted = len(result.OutputExtracts) > 0`
			`if len(result.DynamicValues) > 0 {`
			`return result, true`
			`}`
Merge branch 'dev' into patch-4 2021-09-16 20:35:43 +03:00
[feature] Add coloring to debug information #999 [WIP] TODO: * if there are multiple matchers, make sure the response is only displayed once, with all the matching values colored * remove code duplication from the request.go files 2021-09-29 19:43:46 +03:00			`// Don't print if we have matchers, and they have not matched, regardless of extractor`
Fixed a bug with conditions in nuclei 2020-12-30 13:26:55 +05:30			`if len(r.Matchers) > 0 && !matches {`
			`return nil, false`
			`}`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`// Write a final string of output if matcher type is`
			`// AND or if we have extractors for the mechanism too.`
Add headless chrome based templates support (#562) 2021-02-21 16:31:34 +05:30			`if len(result.Extracts) > 0 \|\| len(result.OutputExtracts) > 0 \|\| matches {`
Misc work on extractor and replacer 2020-12-24 12:56:28 +05:30			`return result, true`
			`}`
			`return nil, false`
			`}`
Added internal extractor support to network templates 2021-07-06 18:34:25 +05:30
			`// ExecuteInternalExtractors executes internal dynamic extractors`
			`func (r *Operators) ExecuteInternalExtractors(data map[string]interface{}, extract ExtractFunc) map[string]interface{} {`
			`dynamicValues := make(map[string]interface{})`

			`// Start with the extractors first and evaluate them.`
			`for _, extractor := range r.Extractors {`
			`if !extractor.Internal {`
			`continue`
			`}`
			`for match := range extract(data, extractor) {`
			`if _, ok := dynamicValues[extractor.Name]; !ok {`
			`dynamicValues[extractor.Name] = match`
			`}`
			`}`
			`}`
			`return dynamicValues`
			`}`