mirror of
https://github.com/projectdiscovery/nuclei.git
synced 2025-12-17 22:45:28 +00:00
f26996cb89
* introducing execution id * wip * . * adding separate execution context id * lint * vet * fixing pg dialers * test ignore * fixing loader FD limit * test * fd fix * wip: remove CloseProcesses() from dev merge * wip: fix merge issue * protocolstate: stop memguarding on last dialer delete * avoid data race in dialers.RawHTTPClient * use shared logger and avoid race conditions * use shared logger and avoid race conditions * go mod * patch executionId into compiled template cache * clean up comment in Parse * go mod update * bump echarts * address merge issues * fix use of gologger * switch cmd/nuclei to options.Logger * address merge issues with go.mod * go vet: address copy of lock with new Copy function * fixing tests * disable speed control * fix nil ExecuterOptions * removing deprecated code * fixing result print * default logger * cli default logger * filter warning from results * fix performance test * hardcoding path * disable upload * refactor(runner): uses `Warning` instead of `Print` for `pdcpUploadErrMsg` Signed-off-by: Dwi Siswanto <git@dw1.io> * Revert "disable upload" This reverts commit 114fbe6663361bf41cf8b2645fd2d57083d53682. * Revert "hardcoding path" This reverts commit cf12ca800e0a0e974bd9fd4826a24e51547f7c00. --------- Signed-off-by: Dwi Siswanto <git@dw1.io> Co-authored-by: Mzack9999 <mzack9999@protonmail.com> Co-authored-by: Dwi Siswanto <git@dw1.io> Co-authored-by: Dwi Siswanto <25837540+dwisiswant0@users.noreply.github.com>
130 lines
3.7 KiB
Go
130 lines
3.7 KiB
Go
package runner
|
|
|
|
import (
|
|
"bytes"
|
|
"path/filepath"
|
|
"sort"
|
|
"strings"
|
|
|
|
"github.com/alecthomas/chroma/quick"
|
|
jsoniter "github.com/json-iterator/go"
|
|
"github.com/logrusorgru/aurora"
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/catalog/config"
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/catalog/loader"
|
|
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/templates"
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/types"
|
|
)
|
|
|
|
// log available templates for verbose (-vv)
|
|
func (r *Runner) logAvailableTemplate(tplPath string) {
|
|
t, err := r.parser.ParseTemplate(tplPath, r.catalog)
|
|
tpl, ok := t.(*templates.Template)
|
|
if !ok {
|
|
panic("not a template")
|
|
}
|
|
if err != nil {
|
|
r.Logger.Error().Msgf("Could not parse file '%s': %s\n", tplPath, err)
|
|
} else {
|
|
r.verboseTemplate(tpl)
|
|
}
|
|
}
|
|
|
|
// log available templates for verbose (-vv)
|
|
func (r *Runner) verboseTemplate(tpl *templates.Template) {
|
|
r.Logger.Print().Msgf("%s\n", templates.TemplateLogMessage(tpl.ID,
|
|
types.ToString(tpl.Info.Name),
|
|
tpl.Info.Authors.ToSlice(),
|
|
tpl.Info.SeverityHolder.Severity))
|
|
}
|
|
|
|
func (r *Runner) listAvailableStoreTemplates(store *loader.Store) {
|
|
r.Logger.Print().Msgf(
|
|
"\nListing available %v nuclei templates for %v",
|
|
config.DefaultConfig.TemplateVersion,
|
|
config.DefaultConfig.TemplatesDirectory,
|
|
)
|
|
for _, tpl := range store.Templates() {
|
|
if hasExtraFlags(r.options) {
|
|
if r.options.TemplateDisplay {
|
|
colorize := !r.options.NoColor
|
|
path := tpl.Path
|
|
tplBody, err := store.ReadTemplateFromURI(path, true)
|
|
if err != nil {
|
|
r.Logger.Error().Msgf("Could not read the template %s: %s", path, err)
|
|
continue
|
|
}
|
|
if colorize {
|
|
path = aurora.Cyan(tpl.Path).String()
|
|
tplBody, err = r.highlightTemplate(&tplBody)
|
|
if err != nil {
|
|
r.Logger.Error().Msgf("Could not highlight the template %s: %s", tpl.Path, err)
|
|
continue
|
|
}
|
|
}
|
|
r.Logger.Print().Msgf("Template: %s\n\n%s", path, tplBody)
|
|
} else {
|
|
r.Logger.Print().Msgf("%s\n", strings.TrimPrefix(tpl.Path, config.DefaultConfig.TemplatesDirectory+string(filepath.Separator)))
|
|
}
|
|
} else {
|
|
r.verboseTemplate(tpl)
|
|
}
|
|
}
|
|
}
|
|
|
|
func (r *Runner) listAvailableStoreTags(store *loader.Store) {
|
|
r.Logger.Print().Msgf(
|
|
"\nListing available %v nuclei tags for %v",
|
|
config.DefaultConfig.TemplateVersion,
|
|
config.DefaultConfig.TemplatesDirectory,
|
|
)
|
|
tagsMap := make(map[string]int)
|
|
for _, tpl := range store.Templates() {
|
|
for _, tag := range tpl.Info.Tags.ToSlice() {
|
|
tagsMap[tag]++
|
|
}
|
|
}
|
|
type kv struct {
|
|
Key string `json:"tag"`
|
|
Value int `json:"count"`
|
|
}
|
|
var tagsList []kv
|
|
for k, v := range tagsMap {
|
|
tagsList = append(tagsList, kv{k, v})
|
|
}
|
|
sort.Slice(tagsList, func(i, j int) bool {
|
|
return tagsList[i].Value > tagsList[j].Value
|
|
})
|
|
|
|
for _, tag := range tagsList {
|
|
if r.options.JSONL {
|
|
marshalled, _ := jsoniter.Marshal(tag)
|
|
r.Logger.Debug().Msgf("%s", string(marshalled))
|
|
} else {
|
|
r.Logger.Debug().Msgf("%s (%d)", tag.Key, tag.Value)
|
|
}
|
|
}
|
|
}
|
|
|
|
func (r *Runner) highlightTemplate(body *[]byte) ([]byte, error) {
|
|
var buf bytes.Buffer
|
|
// YAML lexer, true color terminal formatter and monokai style
|
|
err := quick.Highlight(&buf, string(*body), "yaml", "terminal16m", "monokai")
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return buf.Bytes(), nil
|
|
}
|
|
|
|
func hasExtraFlags(options *types.Options) bool {
|
|
return options.Templates != nil || options.Authors != nil ||
|
|
options.Tags != nil || len(options.ExcludeTags) > 3 ||
|
|
options.IncludeTags != nil || options.IncludeIds != nil ||
|
|
options.ExcludeIds != nil || options.IncludeTemplates != nil ||
|
|
options.ExcludedTemplates != nil || options.ExcludeMatchers != nil ||
|
|
options.Severities != nil || options.ExcludeSeverities != nil ||
|
|
options.Protocols != nil || options.ExcludeProtocols != nil ||
|
|
options.IncludeConditions != nil || options.TemplateList
|
|
}
|