External/nuclei
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei.git synced 2025-12-24 19:45:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,895 Commits 49 Branches 135 Tags
Commit Graph

1883 Commits

Author SHA1 Message Date
Mzack9999
84abef3f70 Merge branch 'dev' into issue-2188-reporting-client 2023-02-24 15:58:43 +01:00
Alexandre ZANNI
e3e60d0ba8
uncover: add criminalip support (#3162) 
* update uncover engine options

* add criminalip support

* update criminalIP variable

---------

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
Co-authored-by: shubhamrasal <shubhamdharmarasal@gmail.com>
 2023-02-21 00:23:11 +05:30
Tarun Koyalwar
21b03a2e8a
bug fix in url path and adds integration tests (#3331) 
* fix unsafe edgecases+ adds integration test

* bug fixes and more url testcases

* upgrade cfssl

* fix template id in integration test
 2023-02-20 22:26:04 +05:30
Sandeep Singh
ba7fcd08ff
Merge branch 'dev' into issue-2188-reporting-client 2023-02-20 15:26:16 +05:30
xm1k3
cc2f796d2f
Helper function for IP Formats (#3286) 
* implemented ip_format helper function

* added tests on ip_format() helper

* fixes on logic

* fixes related to mapcidr docs

* better error value

* fixes + unit test to check index 11

* added call for integration tests

* fixes on dsl-functions number

---------

Co-authored-by: Mzack9999 <mzack9999@protonmail.com>
 2023-02-17 01:47:40 +05:30
Ice3man
ecc1964ad9 Added optional doNotCache to protocols.ExecuterOptions 2023-02-13 18:00:25 +05:30
Mzack9999
d608ffaeb2
clear after stop (#3312) 
* clear after stop

* fixing data races

* adding atomic cache

* fixing lint errors

* fixing imports
 2023-02-13 16:46:41 +05:30
Sandeep Singh
687a481a85
Nuclei v2.8.9 release preparation (#3281) 
* nuclei v2.8.9 release

* dep update

* fix go mod error

---------

Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
 2023-02-10 19:25:31 +05:30
Tarun Koyalwar
e622b989fe
fix url re-encoding issues (#3294) 
* fix double url encoding in urls

* remove extra slash

* url encode matchedURL
 2023-02-10 18:28:28 +05:30
Ice3man
7e7bb1ed0a
AES CBC PKCS5Padding helper function update (#3287) 
* Added DSL helper functions for CVE + misc

* Added aes_cbc with pkcspadding

* Misc

* Misc

* Misc

* Removed debug statement

* Misc

* Misc

* Fixed tests
 2023-02-09 20:22:42 +05:30
Mzack9999
518944f6e8
Adding proxy use in headless binary download (#3290) 
* Adding proxy use in headless binary download

* bumping utils
 2023-02-09 20:01:49 +05:30
Mzack9999
454a883241
Using retryablehttp for templates loading (#3291) 
* Using retryablehttp for templates loading

* Update compile_test.go
 2023-02-09 19:15:44 +05:30
Tarun Koyalwar
a62e57f6c0
fix publish docs (#3296) 
* add branch ref while checkout

* Auto Generate Syntax Docs + JSONSchema [Thu Feb  9 13:36:50 UTC 2023] 🤖

---------

Co-authored-by: GitHub Action <action@github.com>
 2023-02-09 19:14:43 +05:30
Mzack9999
0618ccb923 fixing lint errors 2023-02-07 10:18:28 +01:00
Mzack9999
02df1f2879 removing go 1.20 helpers 2023-02-07 10:16:37 +01:00
Mzack9999
cc343c6eda restoring 1.19 as 1.20 is marked unstable 2023-02-07 10:08:50 +01:00
Mzack9999
d57aec5ec7 converting reporting client to interface 2023-02-07 09:45:49 +01:00
Mzack9999
7556416e5b
adding interactsh support to sni (#3276) 2023-02-07 14:02:10 +05:30
Mzack9999
1fbd2c069a
adding json schema for extractor (#3240) 
* adding json schema for extractor

* adding argument validation
 2023-02-07 14:01:34 +05:30
xm1k3
1e5358b1fa
Improve passive templates error handling (#3098) 
* fixes on passive templates

* Auto Generate Syntax Docs + JSONSchema [Thu Dec 29 08:47:22 UTC 2022] 🤖

* removed empty line

* warning management

When passive flag is provided we ignore all templates which are not compatible, without posting misleading errors

* removing redundant code

* skip offline errors with err var

* remove check on debug flag + used errors.Is() to check errors

important note for future refactoring: use errorsutil.Is() instead of errors.Is()

---------

Co-authored-by: GitHub Action <action@github.com>
Co-authored-by: Mzack9999 <mzack9999@protonmail.com>
 2023-02-07 05:10:38 +05:30
GitHub Action
afe2114d58 Auto Generate Syntax Docs + JSONSchema [Mon Feb 6 23:25:05 UTC 2023] 🤖 2023-02-06 23:25:05 +00:00
Tarun Koyalwar
d18fa6f6b2 fix data race in race requests 2023-02-06 16:18:30 +05:30
Tarun Koyalwar
32a6adb82e
fix data race in payload (#3265) 2023-02-05 00:00:01 +05:30
Tarun Koyalwar
628628893c
fix make http request inconsistencies (#3243) 
* fix make http request inconsistencies

* remove parameters from http vars

* fix trailingslash unit test

* naming conventions: best practices

* fix publish docs action

* remove branch ref from push
 2023-02-01 17:23:28 +05:30
Sandeep Singh
2a24025397
go mod + version update (#3238) 2023-01-24 22:58:34 +05:30
Tarun Koyalwar
0b2a3e296a
fix url encoding issues and inconsistencies (#3211) 
* fix url encoding issues

* complete requested changes and improvements

* fix missing issue-tracker-config.yaml

* fuzz: deepcopy and use urlutil.Params
 2023-01-24 22:04:52 +05:30
Tarun Koyalwar
edcab07fec
fix aws signer missing template variables (#3206) 
* aws sign: fix missing variables

* signer: add aws defaults

* aws signer default values
 2023-01-24 20:50:20 +05:30
Mzack9999
6c56a20544
Adding support for nmhe (#3219) 
* adding support for nmhe

* updating docs
 2023-01-22 15:08:50 +05:30
Tarun Koyalwar
6ebf5a789e
fix host spray race condition (#3213) 
* core: bug fixes

* best practices: uniform comments
 2023-01-20 23:49:04 +05:30
Ice3man
78c4b9b7d2
Added clustering support for TLS templates (#3209) 
* Added clustering support for DNS protocol templates

* Added clustering support for TLS templates

* Fixed randomly populated info block in ssl templates

* Moved to a switch-case + added tests for clustering
 2023-01-17 18:20:05 +05:30
Ice3man
dbb4de028e
Added clustering support for DNS protocol templates (#3204) 2023-01-17 13:01:20 +05:30
sandeep
08e89cc541 release workflow update 2023-01-15 23:06:22 +05:30
Jaideep Khandelwal
a1642be911
Enable/Disable a reporting source (#3183) 
* Enable/Disable a reporting source

* misc options update

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
 2023-01-15 22:21:16 +05:30
xm1k3
84b0581306
Markdown Reporting Index File (#3129) 
* implemented index.md creation on markdown export

* fixes on markdown generation

added also hyperlink to markdown created

* code optimization and refactoring

* index header refactor
 2023-01-15 22:00:34 +05:30
Dwi Siswanto
94ec553234
Add generate_jwt & json_{minify,prettify} helper functions (#3160) 
* feat(dsl): add generate_jwt helper func

* feat(dsl): add json_{minify,prettify} & quote_escape

* update(dsl): change type of data var to map[string]interface{}

* docs(dsl): list valid algos for generate_jwt

* test(dsl): add test case for json_{minify,prettify} & quote_escape

* update(dsl): refactor generate_jwt

* fix(lint): use time.Until instead of t.Sub(time.Now()) (gosimple)

* revert(dsl): remove quote_escape func

* ability to fuzz jwt noNe algorithm

* fix lint error

* jwt dsl minor improvement

Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
 2023-01-15 21:58:51 +05:30
Ice3man
67c094444e
Added cloud scan progress tracking using stats (#3180) 
* Added cloud scan progress tracking using stats

* Changed log messsage

* Fixed linting error

* Fixed bug in progress calculation logic

* Changed requests to input with cloud flag

* Changed progress name + removed redundant fields
 2023-01-13 13:41:05 +05:30
Mzack9999
e4402e7449
lowering hmap storage requirement via omitempty (#3111) 2023-01-12 20:01:45 +05:30
Tarun Koyalwar
e899afafdf
skip scanallip if input is ip (#3186) 
* skip scanallips for ip input

* uncover,url parsing bug fix

* minor changes:best practices
 2023-01-11 22:50:57 +05:30
Shubham Rasal
25fcae1493
add reporting source in nuclei-cloud (#3151) 
* add reporting source in nuclei-cloud

- `nuclei -cloud -rc reporting-config.yaml`

* update error message

* add severity options for jira,(used for cloud only)
 2023-01-10 22:49:01 +05:30
sandeep
1c046c387b version update 2023-01-05 22:07:02 +05:30
Mzack9999
8beb6b06f9
Extending advanced filtering (#3146) 
* adding more metadata to advanced filtering

* adding functional test cases

* converting metadata to lowercase

* misc update

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
 2023-01-05 21:59:58 +05:30
Tarun Koyalwar
f646e00c3d
fix unsafe raw request matchedUrl (#3155) 
* fix unsafe raw request matchedurl

* quote metadata in CLI output
 2023-01-05 21:02:36 +05:30
Mzack9999
a96f764959
extending request/response hijacking with native calls (#3091) 
* extending request/response hijacking with native calls

* fixing tests
 2023-01-05 17:26:18 +05:30
Tarun Koyalwar
4aa2002e72
urlencode key characters only (#3150) 
* only encode key characters

* improve test cases
 2023-01-05 16:41:59 +05:30
Sandeep Singh
2d7948af55
Fixing host skipping error (#3143) 
* removed error resulting into excessive error count

* banner update
 2023-01-04 00:43:18 +05:30
Tarun Koyalwar
e66ed30cec
fix missing trailing slash (#3127) 
* raw: fix missing trailing slash

* adds rawpath integration test

* rename trailing slash test
 2023-01-03 23:45:34 +05:30
shubhamrasal
b03a90df50 fix template path bug, pass the filepath in executeroptions 2023-01-03 12:17:56 +05:30
Sandeep Singh
e66821b49f
Added more error + display skipped host on default run for more visibility. (#3123) 2023-01-02 19:00:10 +05:30
Sandeep Singh
212d0e5cfc
Adding more error to ignore with hosts (#3121) 2023-01-02 17:09:39 +05:30
sandeep
b6ec247701 version update 2023-01-02 13:59:51 +05:30