External/nuclei
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei.git synced 2025-12-29 09:43:09 +00:00
Code Issues Packages Projects Releases Wiki Activity
4,138 Commits 49 Branches 135 Tags
Commit Graph

3136 Commits

Author SHA1 Message Date
Mzack9999
c35e491edd
Merge pull request #3816 from projectdiscovery/issue-3731-safe-deref 
Issue 3731 safe deref
 2023-06-14 09:54:18 +02:00
Mzack9999
f9039c0557 adding comment 2023-06-12 12:35:21 +02:00
Mzack9999
83b6ab54a6 Using safe dereferencing 2023-06-12 12:30:46 +02:00
dependabot[bot]
caedc8afaf
chore(deps): bump github.com/projectdiscovery/hmap in /v2 (#3781) 
Bumps [github.com/projectdiscovery/hmap](https://github.com/projectdiscovery/hmap) from 0.0.11 to 0.0.13.
- [Release notes](https://github.com/projectdiscovery/hmap/releases)
- [Commits](https://github.com/projectdiscovery/hmap/compare/v0.0.11...v0.0.13)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/hmap
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-06-12 15:53:12 +05:30
dependabot[bot]
d726d09ed7
chore(deps): bump github.com/go-git/go-git/v5 from 5.6.1 to 5.7.0 in /v2 (#3812) 
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) from 5.6.1 to 5.7.0.
- [Release notes](https://github.com/go-git/go-git/releases)
- [Commits](https://github.com/go-git/go-git/compare/v5.6.1...v5.7.0)

---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-06-12 14:30:07 +05:30
dependabot[bot]
f7c02e2977
chore(deps): bump github.com/projectdiscovery/rawhttp in /v2 (#3811) 
Bumps [github.com/projectdiscovery/rawhttp](https://github.com/projectdiscovery/rawhttp) from 0.1.11 to 0.1.13.
- [Release notes](https://github.com/projectdiscovery/rawhttp/releases)
- [Commits](https://github.com/projectdiscovery/rawhttp/compare/v0.1.11...v0.1.13)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/rawhttp
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-06-12 14:29:32 +05:30
dependabot[bot]
1182948ce7
chore(deps): bump github.com/go-playground/validator/v10 in /v2 (#3810) 
Bumps [github.com/go-playground/validator/v10](https://github.com/go-playground/validator) from 10.11.2 to 10.14.1.
- [Release notes](https://github.com/go-playground/validator/releases)
- [Commits](https://github.com/go-playground/validator/compare/v10.11.2...v10.14.1)

---
updated-dependencies:
- dependency-name: github.com/go-playground/validator/v10
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-06-12 14:29:14 +05:30
Dogan Can Bakir
a4ca2021cd
Add headless header and status matchers (#3794) 
* add headless header and status matchers

* rename headers as header

* add integration test for header+status

* fix typo
 2023-06-09 15:03:03 +05:30
GitHub Action
6330dd910a Auto Generate Syntax Docs + JSONSchema [Fri Jun 9 00:23:32 UTC 2023] 🤖 2023-06-09 00:23:32 +00:00
Shubham Rasal
a34b94e62f
Issue 3339 headless fuzz (#3790) 
* Basic headless fuzzing

* Remove debug statements

* Add integration tests

* Update template

* Fix recognize payload value in matcher

* Update tempalte

* use req.SetURL()

---------

Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
 2023-06-09 05:50:44 +05:30
三米前有蕉皮
b4e4715d36
deprecatedProtocolNameTemplates concurrent map writes (#3785) 
* deprecatedProtocolNameTemplates

* use syncLock

* fix lint error

* change version in deprecated warning msg

* comment asnmap expand unit test

---------

Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
Co-authored-by: Tarun Koyalwar <45962551+tarunKoyalwar@users.noreply.github.com>
 2023-06-08 23:58:40 +05:30
dependabot[bot]
78f4d9f5ba
chore(deps): bump github.com/projectdiscovery/fastdialer from 0.0.26 to 0.0.28 in /v2 (#3779) 
* chore(deps): bump github.com/projectdiscovery/fastdialer in /v2

Bumps [github.com/projectdiscovery/fastdialer](https://github.com/projectdiscovery/fastdialer) from 0.0.26 to 0.0.28.
- [Release notes](https://github.com/projectdiscovery/fastdialer/releases)
- [Commits](https://github.com/projectdiscovery/fastdialer/compare/v0.0.26...v0.0.28)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/fastdialer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump retryabledns to 0.28

* Update the retryabledns

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shubhamrasal <shubhamdharmarasal@gmail.com>
 2023-06-08 11:35:53 +05:30
Dogan Can Bakir
512a481997
enable no-httpx when passive scan is launched (#3789) 2023-06-07 18:46:01 +05:30
dependabot[bot]
b80cf85368
chore(deps): bump github.com/spf13/cast from 1.5.0 to 1.5.1 in /v2 (#3780) 
Bumps [github.com/spf13/cast](https://github.com/spf13/cast) from 1.5.0 to 1.5.1.
- [Release notes](https://github.com/spf13/cast/releases)
- [Commits](https://github.com/spf13/cast/compare/v1.5.0...v1.5.1)

---
updated-dependencies:
- dependency-name: github.com/spf13/cast
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-06-06 03:49:59 +05:30
dependabot[bot]
689399323c
chore(deps): bump github.com/xanzy/go-gitlab in /v2 (#3778) 
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.83.0 to 0.84.0.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go)
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.83.0...v0.84.0)

---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-06-06 03:49:04 +05:30
sandeep
82d974ae85 version update 2023-06-01 17:39:28 +05:30
Sandeep Singh
bcb01c5225
uncover dep update (#3773) 2023-06-01 17:37:32 +05:30
dependabot[bot]
cd7d67c040
chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity (#3753) 
Bumps [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) from 1.2.2 to 1.3.0.
- [Release notes](https://github.com/Azure/azure-sdk-for-go/releases)
- [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/release.md)
- [Commits](https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.2.2...sdk/azcore/v1.3.0)

---
updated-dependencies:
- dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azidentity
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-06-01 17:15:52 +05:30
dependabot[bot]
26ea138dde
chore(deps): bump github.com/projectdiscovery/ratelimit in /v2 (#3750) 
Bumps [github.com/projectdiscovery/ratelimit](https://github.com/projectdiscovery/ratelimit) from 0.0.6 to 0.0.8.
- [Release notes](https://github.com/projectdiscovery/ratelimit/releases)
- [Commits](https://github.com/projectdiscovery/ratelimit/compare/v0.0.6...v0.0.8)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/ratelimit
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-06-01 17:15:40 +05:30
dependabot[bot]
3e5eb30577
chore(deps): bump golang.org/x/crypto from 0.7.0 to 0.9.0 in /v2 (#3751) 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.7.0 to 0.9.0.
- [Commits](https://github.com/golang/crypto/compare/v0.7.0...v0.9.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-06-01 17:15:29 +05:30
Tarun Koyalwar
8f55579924
fix gitlab custom template update (#3769) 
* fix gitlab custom template update

* exclude AS134029 from unit test
 2023-06-01 14:59:15 +05:30
Mzack9999
168d9e2c21
Extending multistep support (#3546) 
* Extending multistep support

* duping buffer

* adding python pack/unpack

* fixing deps

* bump dsl version

* fixing go sum

* adding inline matchers/extractors

* pointing to latest dsl

* fixing looping

* refining inline matchers/extractors

* bumping dsl

* bump dsl

* show conn read errors

* removing redundant logic

superseded by js layer

---------

Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
 2023-06-01 06:19:19 +05:30
Keith Chason
4d6080f3bc
"Executer" to "Executor" (#3760) 
* Fix spelling of "executer" to "executor"

* minor change: use defer file.Close()

---------

Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
 2023-06-01 02:28:10 +05:30
sandeep
7d5fa300ee test update 2023-05-28 20:33:35 +05:30
sandeep
8731282282 Merge remote-tracking branch 'origin' into dev 2023-05-28 17:12:23 +05:30
sandeep
74ab1428be Merge branch 'dev' 2023-05-28 16:58:08 +05:30
sandeep
44f8f6bb67 version update 2023-05-28 16:20:04 +05:30
Mzack9999
52973843c1
removing .yml from remote loading (#3745) 2023-05-27 01:40:18 +05:30
GitHub Action
eba34ad56c Auto Generate Syntax Docs + JSONSchema [Thu May 25 16:34:47 UTC 2023] 🤖 2023-05-25 16:34:47 +00:00
Mzack9999
0d2d510689
Adding support for constants (#3692) 
* adding support for constants

* fixing typo

* adding integration test

* fixing lint issues

* fixing template syntax
 2023-05-25 22:02:35 +05:30
Dogan Can Bakir
afaf850c89
fix oob ruleindex (#3738) 
* fix oob ruleindex

* updated expected values for tests

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
 2023-05-25 14:22:51 +05:30
dependabot[bot]
db1072381e
chore(deps): bump github.com/gobwas/ws from 1.1.0 to 1.2.1 in /v2 (#3722) 
Bumps [github.com/gobwas/ws](https://github.com/gobwas/ws) from 1.1.0 to 1.2.1.
- [Release notes](https://github.com/gobwas/ws/releases)
- [Commits](https://github.com/gobwas/ws/compare/v1.1.0...v1.2.1)

---
updated-dependencies:
- dependency-name: github.com/gobwas/ws
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-22 21:22:48 +05:30
dependabot[bot]
462eaba2ac
chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager in /v2 (#3724) 
Bumps [github.com/aws/aws-sdk-go-v2/feature/s3/manager](https://github.com/aws/aws-sdk-go-v2) from 1.11.64 to 1.11.67.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/feature/s3/manager/v1.11.64...feature/s3/manager/v1.11.67)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/feature/s3/manager
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-22 18:10:41 +05:30
dependabot[bot]
fdb7c9f45a
chore(deps): bump github.com/projectdiscovery/mapcidr in /v2 (#3725) 
Bumps [github.com/projectdiscovery/mapcidr](https://github.com/projectdiscovery/mapcidr) from 1.1.1 to 1.1.2.
- [Release notes](https://github.com/projectdiscovery/mapcidr/releases)
- [Changelog](https://github.com/projectdiscovery/mapcidr/blob/main/.goreleaser.yml)
- [Commits](https://github.com/projectdiscovery/mapcidr/compare/v1.1.1...v1.1.2)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/mapcidr
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-22 18:10:27 +05:30
dependabot[bot]
736b319e41
chore(deps): bump github.com/go-rod/rod from 0.112.9 to 0.113.0 in /v2 (#3723) 
Bumps [github.com/go-rod/rod](https://github.com/go-rod/rod) from 0.112.9 to 0.113.0.
- [Release notes](https://github.com/go-rod/rod/releases)
- [Commits](https://github.com/go-rod/rod/compare/v0.112.9...v0.113.0)

---
updated-dependencies:
- dependency-name: github.com/go-rod/rod
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-22 18:10:12 +05:30
sandeep
20bc5fc607 version update 2023-05-21 02:21:07 +05:30
Mzack9999
dfd4d5b855
Adding interact keepalive to reduce server-side id pruning (#3680) 
* adding interact keepalive + improving init logic

* dep update

* go version update

* readme update

* version bump

* fixing invalid format

---------

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
 2023-05-21 01:56:13 +05:30
Keith Chason
42a59189f3
Fix mis-spellings and other comment cleanup (#3704) 2023-05-19 21:06:39 +05:30
dependabot[bot]
280d9d8aff
chore(deps): bump golang.org/x/oauth2 from 0.7.0 to 0.8.0 in /v2 (#3686) 
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.7.0 to 0.8.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.7.0...v0.8.0)

---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
 2023-05-16 21:08:56 +05:30
GitHub Action
9f07977411 Auto Generate Syntax Docs + JSONSchema [Mon May 15 13:47:53 UTC 2023] 🤖 2023-05-15 13:47:53 +00:00
Shubham Rasal
2dd13b9afb
Allow additional properties for variables inside jsonschema (#3669) 
* Allow additional properties in variables inside jsonschema

* Update variables jsonschema function

* Add tags for archive and mime-type
 2023-05-15 19:15:11 +05:30
dependabot[bot]
89ed726ff9
chore(deps): bump github.com/projectdiscovery/httpx in /v2 (#3684) 
Bumps [github.com/projectdiscovery/httpx](https://github.com/projectdiscovery/httpx) from 1.3.0 to 1.3.1.
- [Release notes](https://github.com/projectdiscovery/httpx/releases)
- [Changelog](https://github.com/projectdiscovery/httpx/blob/main/.goreleaser.yml)
- [Commits](https://github.com/projectdiscovery/httpx/compare/v1.3.0...v1.3.1)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/httpx
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-15 17:05:16 +05:30
dependabot[bot]
234101c1e4
chore(deps): bump github.com/aws/aws-sdk-go-v2/credentials in /v2 (#3685) 
Bumps [github.com/aws/aws-sdk-go-v2/credentials](https://github.com/aws/aws-sdk-go-v2) from 1.13.22 to 1.13.24.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/credentials/v1.13.22...credentials/v1.13.24)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/credentials
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-15 16:54:04 +05:30
dependabot[bot]
486f273e61
chore(deps): bump github.com/projectdiscovery/fastdialer in /v2 (#3683) 
Bumps [github.com/projectdiscovery/fastdialer](https://github.com/projectdiscovery/fastdialer) from 0.0.25 to 0.0.26.
- [Release notes](https://github.com/projectdiscovery/fastdialer/releases)
- [Commits](https://github.com/projectdiscovery/fastdialer/compare/v0.0.25...v0.0.26)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/fastdialer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-15 16:50:33 +05:30
Shubham Rasal
06ab56abea
fix memory leak in dns templates (#3676) 
* fix memory leak

* update test to cover the string slice case
 2023-05-12 17:29:37 +05:30
sandeep
06f242e5fc version update 2023-05-12 05:18:32 +05:30
dependabot[bot]
e2b1546484
chore(deps): bump github.com/cloudflare/circl from 1.1.0 to 1.3.3 in /v2 (#3674) 
Bumps [github.com/cloudflare/circl](https://github.com/cloudflare/circl) from 1.1.0 to 1.3.3.
- [Release notes](https://github.com/cloudflare/circl/releases)
- [Commits](https://github.com/cloudflare/circl/compare/v1.1.0...v1.3.3)

---
updated-dependencies:
- dependency-name: github.com/cloudflare/circl
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-12 05:17:38 +05:30
Tarun Koyalwar
4a6a0185f5
Feat template update improvements (#3675) 
* path modification of official templates

* fix deprecated paths counter

* add reset flag to nuclei

* bug fix: deprecated path counter

* ignore meta files

* purge empty dirs

* fix lint error
 2023-05-12 05:17:19 +05:30
GitHub Action
e995b0ce48 Auto Generate Syntax Docs + JSONSchema [Wed May 10 21:58:38 UTC 2023] 🤖 2023-05-10 21:58:38 +00:00
Shubham Rasal
9c2fa8f9c4
Add payload in dns protocol (#3632) 
* add execute function in dns

* Add payload in dns protocol

* Add integration test to cover dns payload

- also check command line overriding a payload variable

* Update matchedAt and remove trailing dot

* Consider payload data for request count

- Update verbose output to print question
- Update dns requests Requests function to consider payload data

* update gitignore

* bump nuclei version to v2.9.4-dev

---------

Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io>
 2023-05-11 03:26:29 +05:30