External/nuclei
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei.git synced 2025-12-26 23:25:31 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,173 Commits 49 Branches 135 Tags
Commit Graph

1649 Commits

Author SHA1 Message Date
Mzack9999
a4cdba0691
Improving literals detection in expression engine (#2148) 
* Improving literals detection in expression engine

* fixing lint errors

* re-add accidentally deleted test
 2022-06-13 13:55:06 +05:30
Sajad
e7591ec8b3
use request numbering as per template definition in req-condition (#2135) 
* use original request number instead of current iteration in request-condition

* add previousEvent tracking back for request condition

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-06-11 14:29:05 +05:30
tanimdiucse123
e575f53be7
Empty string test can be improved (#2115) 
It is not recommended to use len for empty string test.

A string can be tested for its emptiness either by treating it as a slice and calculating the length of the slice, or by treating it as a string and directly comparing the value. While both produce identical code when compiled, it makes more sense to treat a string as itself, than a slice, for the sake of comparison of values.

Examples

Bad practice

len(s) == 0

Recommended

s == ""

The recommended practice is considered more idiomatic in Go.

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
 2022-06-11 14:11:43 +05:30
Sandeep Singh
5281d342c0
Merge pull request #2138 from mikerott/dev 
protect against multiple unnecessary Init calls
 2022-06-10 18:12:31 +05:30
Mike Rheinheimer
22a8d72c65 protect against multiple unnecessary Init calls 2022-06-09 17:18:49 -05:00
forgedhallpass
9fd9892f49 test: extra DSL function test cases 2022-06-08 20:58:46 +03:00
forgedhallpass
04e7e053de refactor: replace date, time, time_format, time_to_string DSL functions to date_time 2022-06-08 20:41:32 +03:00
forgedhallpass
ef20e0711b refactor: replace date, time, time_format, time_to_string DSL functions to date_time 2022-06-08 20:33:55 +03:00
forgedhallpass
a10d58c6d2 refactor: rename concat_ws DSL function to join 2022-06-08 16:31:33 +03:00
forgedhallpass
145bdaabe5 refactor: extract duplicated hashing logic 2022-06-08 16:11:15 +03:00
forgedhallpass
6d8908c352 refactor: replace hmac_sha1 and hmac_sha256 DSL functions with hmac 2022-06-08 16:00:14 +03:00
James Turner
9d37bd6c0c Add two new DSL helper functions 
hmac_sha1 and concat_ws (with seperator) this are helpful in
signing API requests.
 2022-06-07 18:26:22 +03:00
forgedhallpass
f3514e9b92 Merge branch 'dev' into new_dsl_functions 2022-06-07 17:26:10 +03:00
Sajad
7170cc2828
dsl matcher separate ignorable(No parameter) errors from others (#2127) 2022-06-07 18:23:07 +05:30
Mzack9999
cc37382519
Adding Client TLS1.0 (#2091) 
* Adding Client TLS1.0

* bumping fastdialer version
 2022-06-04 17:45:16 +05:30
Sajad
b79817e0a9
change dsl evaluate warning messages to error (#2096) 
* change dsl evaluate warning messages to error

* add template-id to dsl match error logs
 2022-06-03 13:41:36 +05:30
Sami
fa369b728e
ssl protocol with ms flag crash (#2101) 
* crash with ssl protocol when used with ms flag fix

* added missing template info in case of failure
 2022-06-03 13:32:45 +05:30
sandeep
900addc43f version update 2022-06-03 03:02:11 +05:30
M4rtin Hsu
aebd32b198
Add decimal to hexadecimal helper function (#2076) 
* Add decimal to hexadecimal auxiliary functions

* Fixed unit test

* Modify the helper function name and check the unit test.

* dsl function update

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
 2022-06-03 02:17:35 +05:30
Ice3man
2b631e8e95
Add optional line number for file templates by default (#1966) 
* Add optional line number for file templates by default

* updating docs

* misc flag update

Co-authored-by: mzack <marco.rivoli.nvh@gmail.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-06-02 17:06:50 +05:30
Mzack9999
4bcb94e4df
Increasing timeout and fixed error msg (#2092) 
* Increasing timeout and fixed error msg

* increasing timeout
 2022-06-02 00:00:18 +05:30
Sajad
9f600d2829
keep the original extactor var for multiple results while preparing data for matchers (#1948) 2022-05-31 02:46:51 +05:30
Ice3man
be5f1a7623
Added redirected matched URL + stop-at-first-match for redirect chains (#2050) 
* Added redirected matched URL + stop-at-first-match for redirect chains

* Pleasing go-linter
 2022-05-30 15:19:09 +05:30
Ice3man
8723a1fd70
Added header as DSL part value (#2052) 
* Added header as DSL part value

* Fixed failing DSL part test cases
 2022-05-30 15:16:27 +05:30
Ice3man
34ed4e531a
Added hang monitor for goroutine dumping (#1949) 
* Added hang monitor for goroutine dumping

* misc

* Made hang monitor optional with flag

* Added stack comparison for monitoring + misc

* Removed debug statements

* misc update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-05-30 14:41:24 +05:30
Mzack9999
dd3b0a3cfc
Increasing buffer size on AND condition (#2030) 
* Increasing buffer size on AND condition

* adding integration tests

* fixing tests data path
 2022-05-30 13:45:28 +05:30
Ice3man
f53f360c74
Fixed websocket status-101 response reading for http (#2081) 2022-05-27 22:36:42 +05:30
Mzack9999
16a05d0aa2
Adding CLI SNI support to unsafe http (#2077) 
* Adding CLI SNI support to unsafe http

* adding http unsafe sni test
 2022-05-27 21:53:07 +05:30
Mzack9999
02eaf91e6a
Adding variables support for headless templates (#2064) 2022-05-27 21:31:56 +05:30
Ice3man
3648c47e35
Fixed template validation edge cases (#2051) 2022-05-25 11:26:05 +05:30
forgedhallpass
096f34e4e3 refactor: DSL date/time functions 2022-05-24 13:38:26 +03:00
forgedhallpass
346db4cf15 refactor: timetostring DSL to time_to_string 2022-05-24 13:11:55 +03:00
forgedhallpass
45c27bc5f0 test: DSL test fixes (hmac_sha256, time_format) 2022-05-24 13:11:03 +03:00
Rahmat
feae805834 Add hmac_sha256 dslExpression 2022-05-24 12:59:09 +03:00
Rahmat
f2ca75c536 Add time_format dslExpression 2022-05-24 12:47:56 +03:00
Ice3man
80f3cec293
Disable printing variables in http protocol output (#2037) 2022-05-23 20:50:51 +05:30
Sajad
4f834f1f33
store vars in values instead of payloads to fix #1882 for self contained http templates (#1924) 
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-05-23 15:12:58 +05:30
sandeep
91c35df911 version + readme update 2022-05-17 16:36:33 +05:30
Mzack9999
d5e4516829
Iterating payloads over HTTP path/raw sequence (#1981) 
* Iterating payloads over path/raw sequence

* fixing logic check
 2022-05-17 15:22:00 +05:30
Ice3man
062fe6d01e
Added urldns gadget from ysoserial (#1985) 2022-05-17 14:33:17 +05:30
Owen Rumney
4a5039cc75
chore(deps): Bump sarif to v2 (#1930) 
Signed-off-by: Owen Rumney <owen@owenrumney.co.uk>

Co-authored-by: mzack <marco.rivoli.nvh@gmail.com>
 2022-05-13 03:48:14 +05:30
Mzack9999
39c7317ec3
Adding SNI override via request annotations (#1970) 
* Adding SNI override via request annotations

* adding cli flag priority
 2022-05-12 16:43:56 +05:30
Sami
6ca4374f91
sonar category: String literals should not be duplicated (#1944) 
* sonar category: String literals should not be duplicated

* lint error fix

* better naming conventions for constants

* improved naming conventions and methods
 2022-05-12 15:40:14 +05:30
Mzack9999
2f1330345f
Adding global SNI support for HTTP protocol via CLI (#1964) 
* Adding global SNI support via CLI

* adding integration test

* adding cli option to docs

* reverting deleted test
 2022-05-11 16:00:39 +05:30
Ice3man
a2947192e2
Added mutex to output writing (#1969) 2022-05-10 18:47:22 +05:30
Ice3man
d5578200f0
Fixed query parameter addition to http raw requests (#1975) 2022-05-10 17:33:27 +05:30
Ice3man
25d6cbd95b
Use nuclei-templates instead of custom autoscan directory list (#1968) 
* Use nuclei-templates instead of custom autoscan directory list

* Use templates directory from config file
 2022-05-10 17:26:46 +05:30
Ice3man
d7d80e3447 Added normalized wappalyzer versioned appName 2022-05-09 11:02:21 +05:30
sandeep
474d66c09d go mod + version update 2022-05-08 15:29:33 +05:30
Mzack9999
a534b9f06c
Fixing directory walk error check on windows (#1951) 
* Fixing directory walk error check on windows

* moving check to helper package

* replacing godirwalk with standard library
 2022-05-08 12:22:21 +05:30