mirror of
https://github.com/projectdiscovery/nuclei.git
synced 2025-12-29 22:23:02 +00:00
6707bc777a
* fix showing multiple failure matchers per template add integration test * exclude AS134029 from unit test * Add flag for match status per request * chore(deps): bump golangci/golangci-lint-action from 3.4.0 to 3.5.0 (#3777) Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3.4.0 to 3.5.0. - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](https://github.com/golangci/golangci-lint-action/compare/v3.4.0...v3.5.0) --- updated-dependencies: - dependency-name: golangci/golangci-lint-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/xanzy/go-gitlab in /v2 (#3778) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.83.0 to 0.84.0. - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](https://github.com/xanzy/go-gitlab/compare/v0.83.0...v0.84.0) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/spf13/cast from 1.5.0 to 1.5.1 in /v2 (#3780) Bumps [github.com/spf13/cast](https://github.com/spf13/cast) from 1.5.0 to 1.5.1. - [Release notes](https://github.com/spf13/cast/releases) - [Commits](https://github.com/spf13/cast/compare/v1.5.0...v1.5.1) --- updated-dependencies: - dependency-name: github.com/spf13/cast dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * enable no-httpx when passive scan is launched (#3789) * chore(deps): bump github.com/projectdiscovery/fastdialer from 0.0.26 to 0.0.28 in /v2 (#3779) * chore(deps): bump github.com/projectdiscovery/fastdialer in /v2 Bumps [github.com/projectdiscovery/fastdialer](https://github.com/projectdiscovery/fastdialer) from 0.0.26 to 0.0.28. - [Release notes](https://github.com/projectdiscovery/fastdialer/releases) - [Commits](https://github.com/projectdiscovery/fastdialer/compare/v0.0.26...v0.0.28) --- updated-dependencies: - dependency-name: github.com/projectdiscovery/fastdialer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * Bump retryabledns to 0.28 * Update the retryabledns --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: shubhamrasal <shubhamdharmarasal@gmail.com> * deprecatedProtocolNameTemplates concurrent map writes (#3785) * deprecatedProtocolNameTemplates * use syncLock * fix lint error * change version in deprecated warning msg * comment asnmap expand unit test --------- Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> Co-authored-by: Tarun Koyalwar <45962551+tarunKoyalwar@users.noreply.github.com> * Issue 3339 headless fuzz (#3790) * Basic headless fuzzing * Remove debug statements * Add integration tests * Update template * Fix recognize payload value in matcher * Update tempalte * use req.SetURL() --------- Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> * Auto Generate Syntax Docs + JSONSchema [Fri Jun 9 00:23:32 UTC 2023] 🤖 * Add headless header and status matchers (#3794) * add headless header and status matchers * rename headers as header * add integration test for header+status * fix typo * chore(deps): bump golang from 1.20.4-alpine to 1.20.5-alpine (#3809) Bumps golang from 1.20.4-alpine to 1.20.5-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/go-playground/validator/v10 in /v2 (#3810) Bumps [github.com/go-playground/validator/v10](https://github.com/go-playground/validator) from 10.11.2 to 10.14.1. - [Release notes](https://github.com/go-playground/validator/releases) - [Commits](https://github.com/go-playground/validator/compare/v10.11.2...v10.14.1) --- updated-dependencies: - dependency-name: github.com/go-playground/validator/v10 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/projectdiscovery/rawhttp in /v2 (#3811) Bumps [github.com/projectdiscovery/rawhttp](https://github.com/projectdiscovery/rawhttp) from 0.1.11 to 0.1.13. - [Release notes](https://github.com/projectdiscovery/rawhttp/releases) - [Commits](https://github.com/projectdiscovery/rawhttp/compare/v0.1.11...v0.1.13) --- updated-dependencies: - dependency-name: github.com/projectdiscovery/rawhttp dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/go-git/go-git/v5 from 5.6.1 to 5.7.0 in /v2 (#3812) Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) from 5.6.1 to 5.7.0. - [Release notes](https://github.com/go-git/go-git/releases) - [Commits](https://github.com/go-git/go-git/compare/v5.6.1...v5.7.0) --- updated-dependencies: - dependency-name: github.com/go-git/go-git/v5 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/projectdiscovery/hmap in /v2 (#3781) Bumps [github.com/projectdiscovery/hmap](https://github.com/projectdiscovery/hmap) from 0.0.11 to 0.0.13. - [Release notes](https://github.com/projectdiscovery/hmap/releases) - [Commits](https://github.com/projectdiscovery/hmap/compare/v0.0.11...v0.0.13) --- updated-dependencies: - dependency-name: github.com/projectdiscovery/hmap dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Using safe dereferencing * adding comment * fixing and condition * fixing test id * adding integration test * update goflags dependency * update goflags dependency * bump goflags v0.1.9 => v0.1.10 * handle failure matcher flags logic at executor itself * add integration test to matcher status per request * Adding random tls impersonate (#3844) * adding random tls impersonate * dep update --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> * Use templateman enhance api to populate CVE info (#3788) * use templateman enhance api to populate cve info * rename cve-annotate => tmc add additional flags to format, lint and enhance template using templateman apis * minior changes * remove duplicate code * misc update * Add validate and error log option * print if updated * print format and enhance only if updated * make max-request optional * fix reference unmarshal error * fix removing self-contained tag --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io> * fix matcher status with network protocol * fix test * remove -msr flag --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Dogan Can Bakir <65292895+dogancanbakir@users.noreply.github.com> Co-authored-by: shubhamrasal <shubhamdharmarasal@gmail.com> Co-authored-by: 三米前有蕉皮 <kali-team@qq.com> Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> Co-authored-by: Tarun Koyalwar <45962551+tarunKoyalwar@users.noreply.github.com> Co-authored-by: Shubham Rasal <shubham@projectdiscovery.io> Co-authored-by: GitHub Action <action@github.com> Co-authored-by: Mzack9999 <mzack9999@protonmail.com> Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
358 lines
11 KiB
Go
358 lines
11 KiB
Go
package output
|
|
|
|
import (
|
|
"fmt"
|
|
"io"
|
|
"os"
|
|
"path/filepath"
|
|
"regexp"
|
|
"strings"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/pkg/errors"
|
|
|
|
jsoniter "github.com/json-iterator/go"
|
|
"github.com/logrusorgru/aurora"
|
|
|
|
"github.com/projectdiscovery/gologger"
|
|
"github.com/projectdiscovery/interactsh/pkg/server"
|
|
"github.com/projectdiscovery/nuclei/v2/internal/colorizer"
|
|
"github.com/projectdiscovery/nuclei/v2/pkg/model"
|
|
"github.com/projectdiscovery/nuclei/v2/pkg/model/types/severity"
|
|
"github.com/projectdiscovery/nuclei/v2/pkg/operators"
|
|
"github.com/projectdiscovery/nuclei/v2/pkg/types"
|
|
"github.com/projectdiscovery/nuclei/v2/pkg/utils"
|
|
fileutil "github.com/projectdiscovery/utils/file"
|
|
osutils "github.com/projectdiscovery/utils/os"
|
|
)
|
|
|
|
// Writer is an interface which writes output to somewhere for nuclei events.
|
|
type Writer interface {
|
|
// Close closes the output writer interface
|
|
Close()
|
|
// Colorizer returns the colorizer instance for writer
|
|
Colorizer() aurora.Aurora
|
|
// Write writes the event to file and/or screen.
|
|
Write(*ResultEvent) error
|
|
// WriteFailure writes the optional failure event for template to file and/or screen.
|
|
WriteFailure(event InternalEvent) error
|
|
// Request logs a request in the trace log
|
|
Request(templateID, url, requestType string, err error)
|
|
// WriteStoreDebugData writes the request/response debug data to file
|
|
WriteStoreDebugData(host, templateID, eventType string, data string)
|
|
}
|
|
|
|
// StandardWriter is a writer writing output to file and screen for results.
|
|
type StandardWriter struct {
|
|
json bool
|
|
jsonReqResp bool
|
|
timestamp bool
|
|
noMetadata bool
|
|
matcherStatus bool
|
|
mutex *sync.Mutex
|
|
aurora aurora.Aurora
|
|
outputFile io.WriteCloser
|
|
traceFile io.WriteCloser
|
|
errorFile io.WriteCloser
|
|
severityColors func(severity.Severity) string
|
|
storeResponse bool
|
|
storeResponseDir string
|
|
}
|
|
|
|
var decolorizerRegex = regexp.MustCompile(`\x1B\[[0-9;]*[a-zA-Z]`)
|
|
|
|
// InternalEvent is an internal output generation structure for nuclei.
|
|
type InternalEvent map[string]interface{}
|
|
|
|
// InternalWrappedEvent is a wrapped event with operators result added to it.
|
|
type InternalWrappedEvent struct {
|
|
// Mutex is internal field which is implicitly used
|
|
// to synchronize callback(event) and interactsh polling updates
|
|
// Refer protocols/http.Request.ExecuteWithResults for more details
|
|
sync.RWMutex
|
|
|
|
InternalEvent InternalEvent
|
|
Results []*ResultEvent
|
|
OperatorsResult *operators.Result
|
|
UsesInteractsh bool
|
|
}
|
|
|
|
func (iwe *InternalWrappedEvent) HasOperatorResult() bool {
|
|
iwe.RLock()
|
|
defer iwe.RUnlock()
|
|
|
|
return iwe.OperatorsResult != nil
|
|
}
|
|
|
|
func (iwe *InternalWrappedEvent) HasResults() bool {
|
|
iwe.RLock()
|
|
defer iwe.RUnlock()
|
|
|
|
return len(iwe.Results) > 0
|
|
}
|
|
|
|
func (iwe *InternalWrappedEvent) SetOperatorResult(operatorResult *operators.Result) {
|
|
iwe.Lock()
|
|
defer iwe.Unlock()
|
|
|
|
iwe.OperatorsResult = operatorResult
|
|
}
|
|
|
|
// ResultEvent is a wrapped result event for a single nuclei output.
|
|
type ResultEvent struct {
|
|
// Template is the relative filename for the template
|
|
Template string `json:"template,omitempty"`
|
|
// TemplateURL is the URL of the template for the result inside the nuclei
|
|
// templates repository if it belongs to the repository.
|
|
TemplateURL string `json:"template-url,omitempty"`
|
|
// TemplateID is the ID of the template for the result.
|
|
TemplateID string `json:"template-id"`
|
|
// TemplatePath is the path of template
|
|
TemplatePath string `json:"template-path,omitempty"`
|
|
// Info contains information block of the template for the result.
|
|
Info model.Info `json:"info,inline"`
|
|
// MatcherName is the name of the matcher matched if any.
|
|
MatcherName string `json:"matcher-name,omitempty"`
|
|
// ExtractorName is the name of the extractor matched if any.
|
|
ExtractorName string `json:"extractor-name,omitempty"`
|
|
// Type is the type of the result event.
|
|
Type string `json:"type"`
|
|
// Host is the host input on which match was found.
|
|
Host string `json:"host,omitempty"`
|
|
// Path is the path input on which match was found.
|
|
Path string `json:"path,omitempty"`
|
|
// Matched contains the matched input in its transformed form.
|
|
Matched string `json:"matched-at,omitempty"`
|
|
// ExtractedResults contains the extraction result from the inputs.
|
|
ExtractedResults []string `json:"extracted-results,omitempty"`
|
|
// Request is the optional, dumped request for the match.
|
|
Request string `json:"request,omitempty"`
|
|
// Response is the optional, dumped response for the match.
|
|
Response string `json:"response,omitempty"`
|
|
// Metadata contains any optional metadata for the event
|
|
Metadata map[string]interface{} `json:"meta,omitempty"`
|
|
// IP is the IP address for the found result event.
|
|
IP string `json:"ip,omitempty"`
|
|
// Timestamp is the time the result was found at.
|
|
Timestamp time.Time `json:"timestamp"`
|
|
// Interaction is the full details of interactsh interaction.
|
|
Interaction *server.Interaction `json:"interaction,omitempty"`
|
|
// CURLCommand is an optional curl command to reproduce the request
|
|
// Only applicable if the report is for HTTP.
|
|
CURLCommand string `json:"curl-command,omitempty"`
|
|
// MatcherStatus is the status of the match
|
|
MatcherStatus bool `json:"matcher-status"`
|
|
// Lines is the line count for the specified match
|
|
Lines []int `json:"matched-line"`
|
|
|
|
FileToIndexPosition map[string]int `json:"-"`
|
|
}
|
|
|
|
// NewStandardWriter creates a new output writer based on user configurations
|
|
func NewStandardWriter(options *types.Options) (*StandardWriter, error) {
|
|
resumeBool := false
|
|
if options.Resume != "" {
|
|
resumeBool = true
|
|
}
|
|
auroraColorizer := aurora.NewAurora(!options.NoColor)
|
|
|
|
var outputFile io.WriteCloser
|
|
if options.Output != "" {
|
|
output, err := newFileOutputWriter(options.Output, resumeBool)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, "could not create output file")
|
|
}
|
|
outputFile = output
|
|
}
|
|
var traceOutput io.WriteCloser
|
|
if options.TraceLogFile != "" {
|
|
output, err := newFileOutputWriter(options.TraceLogFile, resumeBool)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, "could not create output file")
|
|
}
|
|
traceOutput = output
|
|
}
|
|
var errorOutput io.WriteCloser
|
|
if options.ErrorLogFile != "" {
|
|
output, err := newFileOutputWriter(options.ErrorLogFile, resumeBool)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, "could not create error file")
|
|
}
|
|
errorOutput = output
|
|
}
|
|
// Try to create output folder if it doesn't exist
|
|
if options.StoreResponse && !fileutil.FolderExists(options.StoreResponseDir) {
|
|
if err := fileutil.CreateFolder(options.StoreResponseDir); err != nil {
|
|
gologger.Fatal().Msgf("Could not create output directory '%s': %s\n", options.StoreResponseDir, err)
|
|
}
|
|
}
|
|
|
|
writer := &StandardWriter{
|
|
json: options.JSONL,
|
|
jsonReqResp: options.JSONRequests,
|
|
noMetadata: options.NoMeta,
|
|
matcherStatus: options.MatcherStatus,
|
|
timestamp: options.Timestamp,
|
|
aurora: auroraColorizer,
|
|
mutex: &sync.Mutex{},
|
|
outputFile: outputFile,
|
|
traceFile: traceOutput,
|
|
errorFile: errorOutput,
|
|
severityColors: colorizer.New(auroraColorizer),
|
|
storeResponse: options.StoreResponse,
|
|
storeResponseDir: options.StoreResponseDir,
|
|
}
|
|
return writer, nil
|
|
}
|
|
|
|
// Write writes the event to file and/or screen.
|
|
func (w *StandardWriter) Write(event *ResultEvent) error {
|
|
// Enrich the result event with extra metadata on the template-path and url.
|
|
if event.TemplatePath != "" {
|
|
event.Template, event.TemplateURL = utils.TemplatePathURL(types.ToString(event.TemplatePath))
|
|
}
|
|
event.Timestamp = time.Now()
|
|
|
|
var data []byte
|
|
var err error
|
|
|
|
if w.json {
|
|
data, err = w.formatJSON(event)
|
|
} else {
|
|
data = w.formatScreen(event)
|
|
}
|
|
if err != nil {
|
|
return errors.Wrap(err, "could not format output")
|
|
}
|
|
if len(data) == 0 {
|
|
return nil
|
|
}
|
|
w.mutex.Lock()
|
|
defer w.mutex.Unlock()
|
|
|
|
_, _ = os.Stdout.Write(data)
|
|
_, _ = os.Stdout.Write([]byte("\n"))
|
|
|
|
if w.outputFile != nil {
|
|
if !w.json {
|
|
data = decolorizerRegex.ReplaceAll(data, []byte(""))
|
|
}
|
|
if _, writeErr := w.outputFile.Write(data); writeErr != nil {
|
|
return errors.Wrap(err, "could not write to output")
|
|
}
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// JSONLogRequest is a trace/error log request written to file
|
|
type JSONLogRequest struct {
|
|
Template string `json:"template"`
|
|
Input string `json:"input"`
|
|
Error string `json:"error"`
|
|
Type string `json:"type"`
|
|
}
|
|
|
|
// Request writes a log the requests trace log
|
|
func (w *StandardWriter) Request(templatePath, input, requestType string, requestErr error) {
|
|
if w.traceFile == nil && w.errorFile == nil {
|
|
return
|
|
}
|
|
request := &JSONLogRequest{
|
|
Template: templatePath,
|
|
Input: input,
|
|
Type: requestType,
|
|
}
|
|
if unwrappedErr := utils.UnwrapError(requestErr); unwrappedErr != nil {
|
|
request.Error = unwrappedErr.Error()
|
|
} else {
|
|
request.Error = "none"
|
|
}
|
|
|
|
data, err := jsoniter.Marshal(request)
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
if w.traceFile != nil {
|
|
_, _ = w.traceFile.Write(data)
|
|
}
|
|
|
|
if requestErr != nil && w.errorFile != nil {
|
|
_, _ = w.errorFile.Write(data)
|
|
}
|
|
}
|
|
|
|
// Colorizer returns the colorizer instance for writer
|
|
func (w *StandardWriter) Colorizer() aurora.Aurora {
|
|
return w.aurora
|
|
}
|
|
|
|
// Close closes the output writing interface
|
|
func (w *StandardWriter) Close() {
|
|
if w.outputFile != nil {
|
|
w.outputFile.Close()
|
|
}
|
|
if w.traceFile != nil {
|
|
w.traceFile.Close()
|
|
}
|
|
if w.errorFile != nil {
|
|
w.errorFile.Close()
|
|
}
|
|
}
|
|
|
|
// WriteFailure writes the failure event for template to file and/or screen.
|
|
func (w *StandardWriter) WriteFailure(event InternalEvent) error {
|
|
if !w.matcherStatus {
|
|
return nil
|
|
}
|
|
templatePath, templateURL := utils.TemplatePathURL(types.ToString(event["template-path"]))
|
|
var templateInfo model.Info
|
|
if event["template-info"] != nil {
|
|
templateInfo = event["template-info"].(model.Info)
|
|
}
|
|
data := &ResultEvent{
|
|
Template: templatePath,
|
|
TemplateURL: templateURL,
|
|
TemplateID: types.ToString(event["template-id"]),
|
|
TemplatePath: types.ToString(event["template-path"]),
|
|
Info: templateInfo,
|
|
Type: types.ToString(event["type"]),
|
|
Host: types.ToString(event["host"]),
|
|
MatcherStatus: false,
|
|
Timestamp: time.Now(),
|
|
}
|
|
return w.Write(data)
|
|
}
|
|
func sanitizeFileName(fileName string) string {
|
|
fileName = strings.ReplaceAll(fileName, "http:", "")
|
|
fileName = strings.ReplaceAll(fileName, "https:", "")
|
|
fileName = strings.ReplaceAll(fileName, "/", "_")
|
|
fileName = strings.ReplaceAll(fileName, "\\", "_")
|
|
fileName = strings.ReplaceAll(fileName, "-", "_")
|
|
fileName = strings.ReplaceAll(fileName, ".", "_")
|
|
if osutils.IsWindows() {
|
|
fileName = strings.ReplaceAll(fileName, ":", "_")
|
|
}
|
|
fileName = strings.TrimPrefix(fileName, "__")
|
|
return fileName
|
|
}
|
|
func (w *StandardWriter) WriteStoreDebugData(host, templateID, eventType string, data string) {
|
|
if w.storeResponse {
|
|
filename := sanitizeFileName(fmt.Sprintf("%s_%s", host, templateID))
|
|
subFolder := filepath.Join(w.storeResponseDir, sanitizeFileName(eventType))
|
|
if !fileutil.FolderExists(subFolder) {
|
|
_ = fileutil.CreateFolder(subFolder)
|
|
}
|
|
filename = filepath.Join(subFolder, fmt.Sprintf("%s.txt", filename))
|
|
f, err := os.OpenFile(filename, os.O_APPEND|os.O_WRONLY|os.O_CREATE, 0644)
|
|
if err != nil {
|
|
fmt.Print(err)
|
|
return
|
|
}
|
|
_, _ = f.WriteString(fmt.Sprintln(data))
|
|
f.Close()
|
|
}
|
|
|
|
}
|