External/nuclei
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei.git synced 2025-12-22 18:06:46 +00:00
Code Issues Packages Projects Releases Wiki Activity
5,709 Commits 49 Branches 135 Tags
Commit Graph

5709 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dependabot[bot]
5b2f58a6a6
chore(deps): bump github.com/projectdiscovery/clistats in /v2 (#3271) 
Bumps [github.com/projectdiscovery/clistats](https://github.com/projectdiscovery/clistats) from 0.0.11 to 0.0.12.
- [Release notes](https://github.com/projectdiscovery/clistats/releases)
- [Commits](https://github.com/projectdiscovery/clistats/compare/v0.0.11...v0.0.12)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/clistats
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-07 04:48:45 +05:30
dependabot[bot]
1b1c471ee9
chore(deps): bump github.com/go-rod/rod from 0.112.2 to 0.112.4 in /v2 (#3270) 
Bumps [github.com/go-rod/rod](https://github.com/go-rod/rod) from 0.112.2 to 0.112.4.
- [Release notes](https://github.com/go-rod/rod/releases)
- [Commits](https://github.com/go-rod/rod/compare/v0.112.2...v0.112.4)

---
updated-dependencies:
- dependency-name: github.com/go-rod/rod
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-07 04:48:23 +05:30
dependabot[bot]
99157c280a
chore(deps): bump github.com/antchfx/htmlquery in /v2 (#3272) 
Bumps [github.com/antchfx/htmlquery](https://github.com/antchfx/htmlquery) from 1.2.6 to 1.3.0.
- [Release notes](https://github.com/antchfx/htmlquery/releases)
- [Commits](https://github.com/antchfx/htmlquery/compare/v1.2.6...v1.3.0)

---
updated-dependencies:
- dependency-name: github.com/antchfx/htmlquery
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-07 04:48:08 +05:30
Mzack9999
1128969ac3
Merge pull request #3275 from projectdiscovery/issue-3274-data-race-raceReq 
fix data race in race requests
 2023-02-06 21:55:53 +01:00
Ice3man
197d055c5e
Use httpx as library for http probing (#3261) 
* Use httpx as library for http probing

* Changed HTTP method to HEAD for probing
 2023-02-06 23:34:33 +05:30
Tarun Koyalwar
d18fa6f6b2 fix data race in race requests 2023-02-06 16:18:30 +05:30
Tarun Koyalwar
32a6adb82e
fix data race in payload (#3265) 2023-02-05 00:00:01 +05:30
Tarun Koyalwar
628628893c
fix make http request inconsistencies (#3243) 
* fix make http request inconsistencies

* remove parameters from http vars

* fix trailingslash unit test

* naming conventions: best practices

* fix publish docs action

* remove branch ref from push
 2023-02-01 17:23:28 +05:30
xm1k3
a81c754db5
support env var from report yaml (#3188) 
* added support yaml for report options

* better to use .HasPrefix()

* wip: working on unmarshal YAML optimization

* managed yaml tag + nil pointers + unit test

* implemented tests

* removed unused code from reporting + code refactoring

* WIP: code refactoring and tests

* check on env var

* more test coverage and added callback func

* docs + renaming func

* moved callback logic + removed yaml validation

* used yaml decoder

* struct typo

* refactoring walk method with generic signature

* removed yamlwrapper refs, used yaml2 + docs

implemented test to check also fields without yaml tag

* used DecodeAndValidate()

* removed double import reference

---------

Co-authored-by: mzack <marco.rivoli.nvh@gmail.com>
Co-authored-by: Mzack9999 <mzack9999@protonmail.com>
 2023-02-01 02:38:17 +05:30
Tarun Koyalwar
68d1b2f3f3
fix nuclei panic with ratelimit v0.0.5 (#3257) 
* fix ratelimit panic

* fix race conditions in ratelimit

* bump ratelimit to v0.0.6
 2023-01-31 21:27:13 +05:30
Sandeep Singh
6311733b58
Merge pull request #3252 from projectdiscovery/dependabot/go_modules/v2/dev/github.com/xanzy/go-gitlab-0.79.0 
chore(deps): bump github.com/xanzy/go-gitlab from 0.78.0 to 0.79.0 in /v2
 2023-01-30 15:09:21 +05:30
Sandeep Singh
05505bd755
Merge pull request #3251 from projectdiscovery/dependabot/go_modules/v2/dev/github.com/projectdiscovery/ratelimit-0.0.5 
chore(deps): bump github.com/projectdiscovery/ratelimit from 0.0.4 to 0.0.5 in /v2
 2023-01-30 15:09:08 +05:30
Sandeep Singh
e8ae5f1f9c
Merge pull request #3250 from projectdiscovery/dependabot/go_modules/v2/dev/github.com/klauspost/compress-1.15.15 
chore(deps): bump github.com/klauspost/compress from 1.15.13 to 1.15.15 in /v2
 2023-01-30 15:08:22 +05:30
Sandeep Singh
b799f5134c
Merge pull request #3248 from projectdiscovery/dependabot/github_actions/dev/golangci/golangci-lint-action-3.4.0 
chore(deps): bump golangci/golangci-lint-action from 3.3.1 to 3.4.0
 2023-01-30 15:08:02 +05:30
dependabot[bot]
ced0f08065
chore(deps): bump github.com/xanzy/go-gitlab in /v2 
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.78.0 to 0.79.0.
- [Release notes](https://github.com/xanzy/go-gitlab/releases)
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go)
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.78.0...v0.79.0)

---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-30 05:08:11 +00:00
dependabot[bot]
3cb3a2245b
chore(deps): bump github.com/projectdiscovery/ratelimit in /v2 
Bumps [github.com/projectdiscovery/ratelimit](https://github.com/projectdiscovery/ratelimit) from 0.0.4 to 0.0.5.
- [Release notes](https://github.com/projectdiscovery/ratelimit/releases)
- [Commits](https://github.com/projectdiscovery/ratelimit/compare/v0.0.4...v0.0.5)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/ratelimit
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-30 05:06:30 +00:00
dependabot[bot]
9c629ea912
chore(deps): bump github.com/klauspost/compress in /v2 
Bumps [github.com/klauspost/compress](https://github.com/klauspost/compress) from 1.15.13 to 1.15.15.
- [Release notes](https://github.com/klauspost/compress/releases)
- [Changelog](https://github.com/klauspost/compress/blob/master/.goreleaser.yml)
- [Commits](https://github.com/klauspost/compress/compare/v1.15.13...v1.15.15)

---
updated-dependencies:
- dependency-name: github.com/klauspost/compress
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-30 05:06:19 +00:00
dependabot[bot]
ed5ab5118a
chore(deps): bump golangci/golangci-lint-action from 3.3.1 to 3.4.0 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3.3.1 to 3.4.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v3.3.1...v3.4.0)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-30 05:00:58 +00:00
Sandeep Singh
8b578ba429
Merge pull request #3239 from projectdiscovery/dev 
nuclei v2.8.8
v2.8.8 		2023-01-24 23:31:28 +05:30
Sandeep Singh
2a24025397
go mod + version update (#3238) 2023-01-24 22:58:34 +05:30
Tarun Koyalwar
0b2a3e296a
fix url encoding issues and inconsistencies (#3211) 
* fix url encoding issues

* complete requested changes and improvements

* fix missing issue-tracker-config.yaml

* fuzz: deepcopy and use urlutil.Params
 2023-01-24 22:04:52 +05:30
Tarun Koyalwar
edcab07fec
fix aws signer missing template variables (#3206) 
* aws sign: fix missing variables

* signer: add aws defaults

* aws signer default values
 2023-01-24 20:50:20 +05:30
dependabot[bot]
f6d6faa25b
chore(deps): bump github.com/projectdiscovery/clistats in /v2 (#3232) 
Bumps [github.com/projectdiscovery/clistats](https://github.com/projectdiscovery/clistats) from 0.0.9 to 0.0.11.
- [Release notes](https://github.com/projectdiscovery/clistats/releases)
- [Commits](https://github.com/projectdiscovery/clistats/compare/v0.0.9...v0.0.11)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/clistats
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-23 16:39:23 +05:30
dependabot[bot]
c6c44d894f
chore(deps): bump github.com/projectdiscovery/wappalyzergo in /v2 (#3229) 
Bumps [github.com/projectdiscovery/wappalyzergo](https://github.com/projectdiscovery/wappalyzergo) from 0.0.77 to 0.0.79.
- [Release notes](https://github.com/projectdiscovery/wappalyzergo/releases)
- [Commits](https://github.com/projectdiscovery/wappalyzergo/compare/v0.0.77...v0.0.79)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/wappalyzergo
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-23 16:32:14 +05:30
dependabot[bot]
0692d2461d
chore(deps): bump github.com/projectdiscovery/rawhttp in /v2 (#3231) 
Bumps [github.com/projectdiscovery/rawhttp](https://github.com/projectdiscovery/rawhttp) from 0.1.4 to 0.1.7.
- [Release notes](https://github.com/projectdiscovery/rawhttp/releases)
- [Commits](https://github.com/projectdiscovery/rawhttp/compare/v0.1.4...v0.1.7)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/rawhttp
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-23 16:31:59 +05:30
dependabot[bot]
f34f2bb4c9
chore(deps): bump github.com/xanzy/go-gitlab in /v2 (#3230) 
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.77.0 to 0.78.0.
- [Release notes](https://github.com/xanzy/go-gitlab/releases)
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go)
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.77.0...v0.78.0)

---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-23 16:31:43 +05:30
Mzack9999
6c56a20544
Adding support for nmhe (#3219) 
* adding support for nmhe

* updating docs
 2023-01-22 15:08:50 +05:30
Tarun Koyalwar
6ebf5a789e
fix host spray race condition (#3213) 
* core: bug fixes

* best practices: uniform comments
 2023-01-20 23:49:04 +05:30
André Angeluci
edb4cb5495
Fixing a typo on the readme file. (#3214) 
Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
 2023-01-19 19:30:51 +05:30
dependabot[bot]
cde9df5576
chore(deps): bump golang from 1.19.4-alpine to 1.19.5-alpine (#3195) 
Bumps golang from 1.19.4-alpine to 1.19.5-alpine.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-17 19:08:08 +05:30
dependabot[bot]
17181bbc57
chore(deps): bump github.com/antchfx/xmlquery in /v2 (#3197) 
Bumps [github.com/antchfx/xmlquery](https://github.com/antchfx/xmlquery) from 1.3.13 to 1.3.14.
- [Release notes](https://github.com/antchfx/xmlquery/releases)
- [Commits](https://github.com/antchfx/xmlquery/compare/v1.3.13...v1.3.14)

---
updated-dependencies:
- dependency-name: github.com/antchfx/xmlquery
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-17 19:07:35 +05:30
dependabot[bot]
228cc6aa76
chore(deps): bump alpine from 3.17.0 to 3.17.1 (#3196) 
Bumps alpine from 3.17.0 to 3.17.1.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-17 18:36:54 +05:30
dependabot[bot]
5201e72c6e
chore(deps): bump github.com/antchfx/htmlquery in /v2 (#3198) 
Bumps [github.com/antchfx/htmlquery](https://github.com/antchfx/htmlquery) from 1.2.5 to 1.2.6.
- [Release notes](https://github.com/antchfx/htmlquery/releases)
- [Commits](https://github.com/antchfx/htmlquery/compare/v1.2.5...v1.2.6)

---
updated-dependencies:
- dependency-name: github.com/antchfx/htmlquery
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-17 18:35:33 +05:30
dependabot[bot]
f79b05559e
chore(deps): bump github.com/aws/aws-sdk-go-v2/config in /v2 (#3199) 
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.18.7 to 1.18.8.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/config/v1.18.7...config/v1.18.8)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/config
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-17 18:30:13 +05:30
dependabot[bot]
0b8c4cc4b7
chore(deps): bump github.com/projectdiscovery/retryabledns in /v2 (#3200) 
Bumps [github.com/projectdiscovery/retryabledns](https://github.com/projectdiscovery/retryabledns) from 1.0.17 to 1.0.20.
- [Release notes](https://github.com/projectdiscovery/retryabledns/releases)
- [Commits](https://github.com/projectdiscovery/retryabledns/compare/v1.0.17...v1.0.20)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/retryabledns
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-17 18:26:44 +05:30
Ice3man
78c4b9b7d2
Added clustering support for TLS templates (#3209) 
* Added clustering support for DNS protocol templates

* Added clustering support for TLS templates

* Fixed randomly populated info block in ssl templates

* Moved to a switch-case + added tests for clustering
 2023-01-17 18:20:05 +05:30
Ice3man
dbb4de028e
Added clustering support for DNS protocol templates (#3204) 2023-01-17 13:01:20 +05:30
Sandeep Singh
9a15020d38
Merge pull request #3205 from projectdiscovery/3194-fix-panic-target-loading 
Fixed panic with non-existent target and no cloud flag typo
 2023-01-16 19:36:50 +05:30
Ice3man
7200e83d47 Fixed panic with non-existent target and no cloud flag typo 2023-01-16 19:06:04 +05:30
Sandeep Singh
fa3c4fa245
Merge pull request #3193 from projectdiscovery/dev 
nuclei v2.8.7
v2.8.7 		2023-01-15 23:20:24 +05:30
sandeep
08e89cc541 release workflow update 2023-01-15 23:06:22 +05:30
Jaideep Khandelwal
a1642be911
Enable/Disable a reporting source (#3183) 
* Enable/Disable a reporting source

* misc options update

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
 2023-01-15 22:21:16 +05:30
xm1k3
84b0581306
Markdown Reporting Index File (#3129) 
* implemented index.md creation on markdown export

* fixes on markdown generation

added also hyperlink to markdown created

* code optimization and refactoring

* index header refactor
 2023-01-15 22:00:34 +05:30
Dwi Siswanto
94ec553234
Add generate_jwt & json_{minify,prettify} helper functions (#3160) 
* feat(dsl): add generate_jwt helper func

* feat(dsl): add json_{minify,prettify} & quote_escape

* update(dsl): change type of data var to map[string]interface{}

* docs(dsl): list valid algos for generate_jwt

* test(dsl): add test case for json_{minify,prettify} & quote_escape

* update(dsl): refactor generate_jwt

* fix(lint): use time.Until instead of t.Sub(time.Now()) (gosimple)

* revert(dsl): remove quote_escape func

* ability to fuzz jwt noNe algorithm

* fix lint error

* jwt dsl minor improvement

Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
 2023-01-15 21:58:51 +05:30
Ice3man
67c094444e
Added cloud scan progress tracking using stats (#3180) 
* Added cloud scan progress tracking using stats

* Changed log messsage

* Fixed linting error

* Fixed bug in progress calculation logic

* Changed requests to input with cloud flag

* Changed progress name + removed redundant fields
 2023-01-13 13:41:05 +05:30
Mzack9999
e4402e7449
lowering hmap storage requirement via omitempty (#3111) 2023-01-12 20:01:45 +05:30
Mzack9999
0b3992cdb8
moving examples to go file (#3187) 2023-01-12 14:57:32 +05:30
Siddharth Shashikar
924da4197b
Use target filepath instead of target dir path to upload targets (#3182) 2023-01-12 01:34:58 +05:30
Tarun Koyalwar
e899afafdf
skip scanallip if input is ip (#3186) 
* skip scanallips for ip input

* uncover,url parsing bug fix

* minor changes:best practices
 2023-01-11 22:50:57 +05:30
Shubham Rasal
25fcae1493
add reporting source in nuclei-cloud (#3151) 
* add reporting source in nuclei-cloud

- `nuclei -cloud -rc reporting-config.yaml`

* update error message

* add severity options for jira,(used for cloud only)
 2023-01-10 22:49:01 +05:30