External/nuclei
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei.git synced 2025-12-18 13:45:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
4,262 Commits 49 Branches 135 Tags
Commit Graph

42 Commits

Author SHA1 Message Date
Josh Soref
4c1c5301b9
Spelling (#4008) 
* spelling: addresses

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: asynchronous

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: basic

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: brute force

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: constant

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: disables

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: engine

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: every time

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: execution

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: false positives

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: from

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: further

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: github

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: gitlab

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: highlight

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: hygiene

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: ignore

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: input

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: item

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: itself

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: latestxxx

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: navigation

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: negative

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: nonexistent

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: occurred

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: override

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: overrides

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: payload

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: performed

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: respective

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: retrieve

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: scanlist

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: separated

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: separator

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: severity

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: source

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: strategy

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: string

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: templates

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: terminal

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: timeout

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: trailing slash

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: trailing

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* spelling: websocket

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

---------

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2023-08-02 00:03:43 +05:30
Ramana Reddy
1eb4c7c80c
support disable-path-automerge in unsafe mode (#3888) 
* support disable-path-automerge in unsafe mode

* fix dump request url

* dep update

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
 2023-07-04 19:04:13 +05:30
Tarun Koyalwar
38129bac18
preserve order of query parameters (#3887) 
* preserve order of parameters

* rawhttp version bump

---------

Co-authored-by: Mzack9999 <mzack9999@protonmail.com>
 2023-07-03 12:43:24 +05:30
Ramana Reddy
cddae989f3
Add template option to disable merging target url path with raw request path (#3799) 
* add template option to disable merging target url path with raw request path

* rename disable-merge-path -> disable-path-automerge
add integration test
 2023-06-19 20:22:17 +05:30
Tarun Koyalwar
7f5e4e2336
aws signer: fix missing x-content-sha256 header (#3601) 
* fix missing x-content-sha256 header

* fix variable priority in self-contained templates

* remove debug statement

* adds generic raw request parser for self-contained req

* more integration tests

* bug fix: 10x faster race requests

* fix failing integration test
 2023-05-01 12:15:35 +05:30
Tarun Koyalwar
21b03a2e8a
bug fix in url path and adds integration tests (#3331) 
* fix unsafe edgecases+ adds integration test

* bug fixes and more url testcases

* upgrade cfssl

* fix template id in integration test
 2023-02-20 22:26:04 +05:30
Tarun Koyalwar
628628893c
fix make http request inconsistencies (#3243) 
* fix make http request inconsistencies

* remove parameters from http vars

* fix trailingslash unit test

* naming conventions: best practices

* fix publish docs action

* remove branch ref from push
 2023-02-01 17:23:28 +05:30
Tarun Koyalwar
0b2a3e296a
fix url encoding issues and inconsistencies (#3211) 
* fix url encoding issues

* complete requested changes and improvements

* fix missing issue-tracker-config.yaml

* fuzz: deepcopy and use urlutil.Params
 2023-01-24 22:04:52 +05:30
Tarun Koyalwar
4aa2002e72
urlencode key characters only (#3150) 
* only encode key characters

* improve test cases
 2023-01-05 16:41:59 +05:30
Tarun Koyalwar
a5b39dcaa5
automerge url parameters from input and templates (#3010) 
* fix automerge url parameters

* fix url encoding & refactor raw request

* handle trailing slash edgecases

* minor code refactoring
 2022-12-13 12:09:31 +05:30
vrenzolaverace
2aaf2a2158
Use utils helpers libraries (#2809) (#2810) 
* Use utils helpers libraries (#2809)

* Use utils helpers libraries (#2809)
 2022-11-07 01:54:23 +05:30
Mzack9999
cc0c20053a
Improving unsafe uri path (#2722) 
* Improving unsafe uri path

* fixing raw path output
 2022-10-27 20:09:38 +02:00
Ice3man
4dc98a1d95
Added support for blank Request-URI which specifies no slash suffix (#2414) 2022-08-10 10:15:09 -07:00
Ice3man
d5578200f0
Fixed query parameter addition to http raw requests (#1975) 2022-05-10 17:33:27 +05:30
Mzack9999
7b032b1733 annotation prototype 2022-04-04 09:32:41 +02:00
mzack
6746071979 Refactoring file templates to handle large files in chunks + removing deprecated io methods 2022-02-23 13:54:46 +01:00
Mzack9999
3748eae5fb
Fixing full URL output with unsafe requests (#1445) 
* Fixing full URL output with unsafe requests

* using request url as matched url if empty
 2022-01-10 18:54:33 +05:30
LuitelSamikshya
d152986485
Change filepath to path (#1382) 
* filepath to path

* change to revert

* reverted change

* update: disabling cached nuclei temporarily

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2021-12-16 16:36:20 +05:30
forgedhallpass
7e22d70ded refactor/documentation: typos and grammatical errors 2021-11-25 18:54:16 +02:00
forgedhallpass
fdd22ab668 refactor: Wrap errors using %w in fmt.Errorf 
see:
 * https://github.com/xxpxxxxp/intellij-plugin-golangci-lint/blob/master/explanation/goerr113.md
 * https://go.dev/blog/go1.13-errors#wrapping-errors-with-w
 2021-11-25 16:24:37 +02:00
mzack
9675efa680 Adding support for custom headers via CLI in raw http requests 2021-11-08 19:33:54 +01:00
Ice3man
191797380e
bug: Bug in URL parsing for unsafe templates #830 
Fixed raw request path not correct with unsafe
 2021-11-02 10:42:59 +02:00
Ice3man543
eac57fb229 Fixed host header not working in raw request 2021-10-18 18:39:32 +05:30
Ice3man543
736a530bde Added self-contained http requests implementation 2021-10-14 22:26:01 +05:30
Sullo
3abffe1f5d Only add a Host header automatically if the raw request is *not* marked unsafe. 
This will prevent nuclei from adding it when the template author doesn’t want it and uses unsafe: true
Templates using raw requests without Host header were modified in https://github.com/projectdiscovery/nuclei-templates/pull/2784
 2021-09-30 13:22:53 -04:00
mzack
50fa95747a Removing unwanted bytes operation for unsafe requests 2021-09-26 08:31:24 +02:00
Mzack9999
79dd0549cd Better host header handling in RFC comliant requests 2021-05-02 20:10:49 +02:00
Ice3man543
8512b684c5 Lint errors fix 2021-02-26 13:13:11 +05:30
Mzack9999
a4c1d2d9c2 Fixing output endpoint in unsafe request without host header 2021-02-24 22:36:40 +01:00
Ice3man543
a86bc9e586 Fixed raw http newline formatting 2021-02-22 18:59:03 +05:30
Ice3man543
d541b09928 Rawhttp fixes, render non-printable chars with unsafe 2021-02-22 18:22:44 +05:30
Mzack9999
39ca5ab7aa adding full request override 2021-02-20 02:02:57 +01:00
Mzack9999
527d6e2f67 Adding ordered headers - Fixes #534 2021-02-20 00:35:39 +01:00
Ice3man543
5d8a436368 Fixed path & port parsing for raw requests 2021-02-08 16:07:16 +05:30
Ice3man543
74c023016c Fixed raw request hostname with port issue 2021-02-05 15:03:58 +05:30
Ice3man543
d963fc0840 Fixed rawhttp header formatting issues 2021-02-01 16:21:49 +05:30
Ice3man543
8b93d5e1d2 Fixed extractions + input path clear + misc 2021-01-14 18:27:48 +05:30
Ice3man543
acb4d270ca Misc fixes 2021-01-12 02:26:19 +05:30
Ice3man543
4d800d8c0c Fixed bugs with progress and http path / handling 2021-01-12 02:00:11 +05:30
Ice3man543
99d16a4d02 More work on network protocol support + misc fixes 2020-12-30 21:14:04 +05:30
Ice3man543
7b02ef9c01 Starting to refactor http executer part 2020-12-26 14:55:15 +05:30
Ice3man543
7dcb6388d4 Raw request parser added in own package + test 2020-12-21 16:46:25 +05:30