External/nuclei
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei.git synced 2025-12-17 22:35:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
nuclei/pkg/operators/common/dsl/dsl.go

141 lines
3.5 KiB
Go
Raw Normal View History

Misc modifications, cleaning up things
2020-12-22 03:54:55 +05:30
package dsl
begin of work on fuzzing - only working for raw requests with payload (TODO code cleanup)
2020-05-04 23:24:59 +02:00
import (
hash as a string
2020-10-16 14:18:50 +02:00
"fmt"
begin of work on fuzzing - only working for raw requests with payload (TODO code cleanup)
2020-05-04 23:24:59 +02:00
"strings"
Adding number/string conversion helpers
2022-03-10 10:57:59 +01:00
begin of work on fuzzing - only working for raw requests with payload (TODO code cleanup)
2020-05-04 23:24:59 +02:00
"github.com/Knetic/govaluate"
resolve() helper function (#3321) * started the implementation of resolve helper function * fixes go mod and sum * fixes and use makeDslWithOptionalArgsFunction signature * added tests * added more dnsTypes based on dnsx docs * used dns client pool * dsl functions * fixes on dnsclientpool, added init() * go mod tidy * go mod tidy * dsl signature makeMultiSignatureDslFunction * error on len * managed mx * fix on mx record * dns types managed with FirstNonZero func * error handling * utils to stable version * version bump * fixing var name --------- Co-authored-by: Mzack9999 <mzack9999@protonmail.com>
2023-03-03 23:51:24 +01:00
"github.com/miekg/dns"
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
"github.com/projectdiscovery/dsl"
deps update (#3477) * deps update * fixing gologger via callback
2023-03-28 23:12:08 +02:00
"github.com/projectdiscovery/gologger"
nuclei v3 : misc updates (#4247) * use parsed options while signing * update project layout to v3 * fix .gitignore * remove example template * misc updates * bump tlsx version * hide template sig warning with env * js: retain value while using log * fix nil pointer derefernce * misc doc update --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-10-17 17:44:13 +05:30
"github.com/projectdiscovery/nuclei/v3/pkg/protocols/dns/dnsclientpool"
"github.com/projectdiscovery/nuclei/v3/pkg/types"
resolve() helper function (#3321) * started the implementation of resolve helper function * fixes go mod and sum * fixes and use makeDslWithOptionalArgsFunction signature * added tests * added more dnsTypes based on dnsx docs * used dns client pool * dsl functions * fixes on dnsclientpool, added init() * go mod tidy * go mod tidy * dsl signature makeMultiSignatureDslFunction * error on len * managed mx * fix on mx record * dns types managed with FirstNonZero func * error handling * utils to stable version * version bump * fixing var name --------- Co-authored-by: Mzack9999 <mzack9999@protonmail.com>
2023-03-03 23:51:24 +01:00
sliceutil "github.com/projectdiscovery/utils/slice"
javascript protocol for scripting (includes 15+ proto libs) (#4109) * rebase js-layer PR from @ice3man543 * package restructuring * working * fix duplicated event & matcher status * fix lint error * fix response field * add new functions * multiple minor improvements * fix incorrect stats in js protocol * sort output metadata in cli * remove temp files * remove dead code * add unit and integration test * fix lint error * add jsdoclint using llm * fix error in test * add js lint using llm * generate docs of libs * llm lint * remove duplicated docs * update generated docs * update prompt in doclint * update docs * temp disable version check test * fix unit test and add retry * fix panic in it * update and move jsdocs * updated jsdocs * update docs * update container platform in test * dir restructure and adding docs * add api_reference and remove markdown docs * fix imports * add javascript design and contribution docs * add js protocol documentation * update integration test and docs * update doc ext mdx->md * minor update to docs * new integration test and more * move go libs and add docs * gen new net docs and more * final docs update * add new devtool * use fastdialer * fix build fail * use fastdialer + network sandbox support * add reserved keyword 'Port' * update Port to new syntax * misc update * always enable templatectx in js protocol * move docs to 'js-proto-docs' repo * remove scrapefuncs binary --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-09-16 16:02:17 +05:30
stringsutil "github.com/projectdiscovery/utils/strings"
begin of work on fuzzing - only working for raw requests with payload (TODO code cleanup)
2020-05-04 23:24:59 +02:00
)
Memory usage optimizations (#2350) * Replaced strings.Replaced with fasttemplate reducing allocations Custom template parsing logic was replaced with fasttemplate package for reducing allocations in the replacer.Replace hotpath leading to allocation reduction which accounted for 30% of total nuclei allocations. $ go test -bench=. -benchmem goos: darwin goarch: arm64 pkg: github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/replacer BenchmarkReplacer-8 837232 1422 ns/op 2112 B/op 31 allocs/op BenchmarkReplacerNew-8 3672765 320.3 ns/op 48 B/op 4 allocs/op * Fixed tests failing * Use pre-compiled map of DSL expressions * Reworked expression parsing logic to reduce memory allocations $ go test -bench=. -benchmem goos: darwin goarch: arm64 pkg: github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions BenchmarkEvaluate-8 31560 37769 ns/op 31731 B/op 265 allocs/op BenchmarkEvaluateNew-8 109144 9621 ns/op 6253 B/op 116 allocs/op
2022-08-23 13:16:41 +05:30
var (
HelperFunctions map[string]govaluate.ExpressionFunction
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
FunctionNames []string
javascript protocol for scripting (includes 15+ proto libs) (#4109) * rebase js-layer PR from @ice3man543 * package restructuring * working * fix duplicated event & matcher status * fix lint error * fix response field * add new functions * multiple minor improvements * fix incorrect stats in js protocol * sort output metadata in cli * remove temp files * remove dead code * add unit and integration test * fix lint error * add jsdoclint using llm * fix error in test * add js lint using llm * generate docs of libs * llm lint * remove duplicated docs * update generated docs * update prompt in doclint * update docs * temp disable version check test * fix unit test and add retry * fix panic in it * update and move jsdocs * updated jsdocs * update docs * update container platform in test * dir restructure and adding docs * add api_reference and remove markdown docs * fix imports * add javascript design and contribution docs * add js protocol documentation * update integration test and docs * update doc ext mdx->md * minor update to docs * new integration test and more * move go libs and add docs * gen new net docs and more * final docs update * add new devtool * use fastdialer * fix build fail * use fastdialer + network sandbox support * add reserved keyword 'Port' * update Port to new syntax * misc update * always enable templatectx in js protocol * move docs to 'js-proto-docs' repo * remove scrapefuncs binary --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-09-16 16:02:17 +05:30
// knownPorts is a list of known ports for protocols implemented in nuclei
knowPorts = []string{"80", "443", "8080", "8081", "8443", "53"}
Add template sign/verify functionality (#3029) * add template sign/verify functionality * fixing syntax
2023-02-25 23:24:46 +01:00
)
Added time + zlib dsl functions + misc
2022-03-16 14:12:26 +05:30
feat: Improve DSL function UX #1295
2021-11-26 17:14:25 +02:00
func init() {
remove deprecated dsl helper func
2023-08-07 23:50:16 +05:30
_ = dsl.AddFunction(dsl.NewWithMultipleSignatures("resolve", []string{
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
"(host string) string",
"(format string) string",
remove deprecated dsl helper func
2023-08-07 23:50:16 +05:30
}, false, func(args ...interface{}) (interface{}, error) {
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
argCount := len(args)
if argCount == 0 || argCount > 2 {
tlsx dep update (#3633) * tlsx dep update * upgrde httpx => 1.3.0 * Fix check for OS made in MustDisableSandbox() (#3631) Signed-off-by: iamargus95 <kamathsuraj95@gmail.com> * Fix wrong template loading in dev branch (#3629) * Templates wrong loading * Add tests to cover following scenarios - check optional fields only if template loaded - it should return warning only if template is loaded * enable color in windows (#3634) * enable color in windows * fixed win workflow * typo update --------- Signed-off-by: iamargus95 <kamathsuraj95@gmail.com> Co-authored-by: Ramana Reddy <ramanaredy.manda@gmail.com> Co-authored-by: Suraj Kamath <kamathsuraj95@gmail.com> Co-authored-by: Shubham Rasal <shubham@projectdiscovery.io>
2023-05-02 16:22:41 +05:30
return nil, dsl.ErrInvalidDslFunction
Added ssl protocol to nuclei
2021-09-22 22:41:07 +05:30
}
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
format := "4"
var dnsType uint16
if len(args) > 1 {
format = strings.ToLower(types.ToString(args[1]))
Integrated deserialization helpers to nuclei + Misc bug fixes
2021-07-18 05:35:06 +05:30
}
feat: Improve DSL function UX #1295 (#1351) * feat: Improve DSL function UX #1295 Sort the output signatures * feat: Improve DSL function UX #1295 Sort the output signatures. Lint: simplified the sorting.
2021-12-09 10:32:01 +02:00
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
switch format {
case "4", "a":
dnsType = dns.TypeA
case "6", "aaaa":
dnsType = dns.TypeAAAA
case "cname":
dnsType = dns.TypeCNAME
case "ns":
dnsType = dns.TypeNS
case "txt":
dnsType = dns.TypeTXT
case "srv":
dnsType = dns.TypeSRV
case "ptr":
dnsType = dns.TypePTR
case "mx":
dnsType = dns.TypeMX
case "soa":
dnsType = dns.TypeSOA
case "caa":
dnsType = dns.TypeCAA
default:
return nil, fmt.Errorf("invalid dns type")
feat: Improve DSL function UX #1295 Added support for letting people know if: * the DSL expression does not return a boolean value * an invalid custom function signature was provided and then display all available function signatures * an invalid function was provided and then display the correct signature Unified the DSL function names to use snake case. The old signatures are also kept for backward compatibility.
2021-12-07 17:34:36 +02:00
}
Misc modifications, cleaning up things
2020-12-22 03:54:55 +05:30
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
err := dnsclientpool.Init(&types.Options{})
if err != nil {
return nil, err
feat: Improve DSL function UX #1295 Added support for letting people know if: * the DSL expression does not return a boolean value * an invalid custom function signature was provided and then display all available function signatures * an invalid function was provided and then display the correct signature Unified the DSL function names to use snake case. The old signatures are also kept for backward compatibility.
2021-12-07 17:34:36 +02:00
}
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
dnsClient, err := dnsclientpool.Get(nil, &dnsclientpool.Configuration{})
if err != nil {
return nil, err
feat: Improve DSL function UX #1295 Added support for letting people know if: * the DSL expression does not return a boolean value * an invalid custom function signature was provided and then display all available function signatures * an invalid function was provided and then display the correct signature Unified the DSL function names to use snake case. The old signatures are also kept for backward compatibility.
2021-12-07 17:34:36 +02:00
}
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
// query
rawResp, err := dnsClient.Query(types.ToString(args[0]), dnsType)
if err != nil {
return nil, err
feat: Improve DSL function UX #1295 Added support for letting people know if: * the DSL expression does not return a boolean value * an invalid custom function signature was provided and then display all available function signatures * an invalid function was provided and then display the correct signature Unified the DSL function names to use snake case. The old signatures are also kept for backward compatibility.
2021-12-07 17:34:36 +02:00
}
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
dnsValues := map[uint16][]string{
dns.TypeA: rawResp.A,
dns.TypeAAAA: rawResp.AAAA,
dns.TypeCNAME: rawResp.CNAME,
dns.TypeNS: rawResp.NS,
dns.TypeTXT: rawResp.TXT,
dns.TypeSRV: rawResp.SRV,
dns.TypePTR: rawResp.PTR,
dns.TypeMX: rawResp.MX,
dns.TypeCAA: rawResp.CAA,
chore(deps): bump github.com/projectdiscovery/fastdialer from 0.0.26 to 0.0.28 in /v2 (#3779) * chore(deps): bump github.com/projectdiscovery/fastdialer in /v2 Bumps [github.com/projectdiscovery/fastdialer](https://github.com/projectdiscovery/fastdialer) from 0.0.26 to 0.0.28. - [Release notes](https://github.com/projectdiscovery/fastdialer/releases) - [Commits](https://github.com/projectdiscovery/fastdialer/compare/v0.0.26...v0.0.28) --- updated-dependencies: - dependency-name: github.com/projectdiscovery/fastdialer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * Bump retryabledns to 0.28 * Update the retryabledns --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: shubhamrasal <shubhamdharmarasal@gmail.com>
2023-06-08 11:35:53 +05:30
dns.TypeSOA: rawResp.GetSOARecords(),
refactor: replace date, time, time_format, time_to_string DSL functions to date_time
2022-06-08 17:43:52 +03:00
}
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
if values, ok := dnsValues[dnsType]; ok {
firstFound, found := sliceutil.FirstNonZero(values)
if found {
return firstFound, nil
refactor: replace date, time, time_format, time_to_string DSL functions to date_time
2022-06-08 17:43:52 +03:00
}
}
New dsl functions (#2545) * Update GO version to 1.18 * Removed redundant entry from the .gitignore file * Added new DSL functions to_unix_time(input string, optionalLayout string) int64 hex_to_dec(input string) float64 oct_to_dec(input string|number) float64 bin_to_dec(intput string|number) float64 * Notify if debug is enabled when a proxy cannot be validated * Documentation: Go version requirement updated to 1.18 * test fix: Timezone agnostic date expectation in the assertion * code review: extracted the default date-time layouts into a global variable
2022-09-06 22:14:29 +03:00
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
return "", fmt.Errorf("no records found")
remove deprecated dsl helper func
2023-08-07 23:50:16 +05:30
}))
javascript protocol for scripting (includes 15+ proto libs) (#4109) * rebase js-layer PR from @ice3man543 * package restructuring * working * fix duplicated event & matcher status * fix lint error * fix response field * add new functions * multiple minor improvements * fix incorrect stats in js protocol * sort output metadata in cli * remove temp files * remove dead code * add unit and integration test * fix lint error * add jsdoclint using llm * fix error in test * add js lint using llm * generate docs of libs * llm lint * remove duplicated docs * update generated docs * update prompt in doclint * update docs * temp disable version check test * fix unit test and add retry * fix panic in it * update and move jsdocs * updated jsdocs * update docs * update container platform in test * dir restructure and adding docs * add api_reference and remove markdown docs * fix imports * add javascript design and contribution docs * add js protocol documentation * update integration test and docs * update doc ext mdx->md * minor update to docs * new integration test and more * move go libs and add docs * gen new net docs and more * final docs update * add new devtool * use fastdialer * fix build fail * use fastdialer + network sandbox support * add reserved keyword 'Port' * update Port to new syntax * misc update * always enable templatectx in js protocol * move docs to 'js-proto-docs' repo * remove scrapefuncs binary --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-09-16 16:02:17 +05:30
_ = dsl.AddFunction(dsl.NewWithMultipleSignatures("getNetworkPort", []string{
"(Port string,defaultPort string) string)",
"(Port int,defaultPort int) int",
}, false, func(args ...interface{}) (interface{}, error) {
if len(args) != 2 {
return nil, dsl.ErrInvalidDslFunction
}
port := types.ToString(args[0])
defaultPort := types.ToString(args[1])
if port == "" || stringsutil.EqualFoldAny(port, knowPorts...) {
return defaultPort, nil
}
return port, nil
}))
Add `split` DSL function (#2838) * Add support for showing overloaded DSL method signatures * Add `split` DSL function #2837 * fixing lint warnings * replacing faulty regex with strings methods Co-authored-by: Mzack9999 <mzack9999@protonmail.com> Co-authored-by: mzack <marco.rivoli.nvh@gmail.com>
2022-11-14 02:38:12 +02:00
deps update (#3477) * deps update * fixing gologger via callback
2023-03-28 23:12:08 +02:00
dsl.PrintDebugCallback = func(args ...interface{}) error {
gologger.Info().Msgf("print_debug value: %s", fmt.Sprint(args))
return nil
}
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
HelperFunctions = dsl.HelperFunctions()
FunctionNames = dsl.GetFunctionNames(HelperFunctions)
AES CBC PKCS5Padding helper function update (#3287) * Added DSL helper functions for CVE + misc * Added aes_cbc with pkcspadding * Misc * Misc * Misc * Removed debug statement * Misc * Misc * Fixed tests
2023-02-09 20:22:42 +05:30
}
Return wrapped errors for DSL compilation problems (#2492) This allows the DSL help information to be printed when in debug mode. Fixes #2481
2022-08-29 10:11:32 +02:00
type CompilationError struct {
DslSignature string
WrappedError error
}
func (e *CompilationError) Error() string {
return fmt.Sprintf("could not compile DSL expression %q: %v", e.DslSignature, e.WrappedError)
}
func (e *CompilationError) Unwrap() error {
return e.WrappedError
}
Add generate_jwt & json_{minify,prettify} helper functions (#3160) * feat(dsl): add generate_jwt helper func * feat(dsl): add json_{minify,prettify} & quote_escape * update(dsl): change type of data var to map[string]interface{} * docs(dsl): list valid algos for generate_jwt * test(dsl): add test case for json_{minify,prettify} & quote_escape * update(dsl): refactor generate_jwt * fix(lint): use time.Until instead of t.Sub(time.Now()) (gosimple) * revert(dsl): remove quote_escape func * ability to fuzz jwt noNe algorithm * fix lint error * jwt dsl minor improvement Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
2023-01-15 23:28:51 +07:00
migrate dsl helper functions to dsl repo (#3461) * migrate dsl pkg code to dsl repo * fix lint error * upgrade dsl dependency * upgrade deps --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2023-03-27 18:48:50 +05:30
func GetPrintableDslFunctionSignatures(noColor bool) string {
return dsl.GetPrintableDslFunctionSignatures(noColor)
Add generate_jwt & json_{minify,prettify} helper functions (#3160) * feat(dsl): add generate_jwt helper func * feat(dsl): add json_{minify,prettify} & quote_escape * update(dsl): change type of data var to map[string]interface{} * docs(dsl): list valid algos for generate_jwt * test(dsl): add test case for json_{minify,prettify} & quote_escape * update(dsl): refactor generate_jwt * fix(lint): use time.Until instead of t.Sub(time.Now()) (gosimple) * revert(dsl): remove quote_escape func * ability to fuzz jwt noNe algorithm * fix lint error * jwt dsl minor improvement Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
2023-01-15 23:28:51 +07:00
}
Reference in New Issue Copy Permalink