mirror of
https://github.com/projectdiscovery/nuclei.git
synced 2025-12-17 23:05:26 +00:00
a4ca2021cd
* add headless header and status matchers * rename headers as header * add integration test for header+status * fix typo
203 lines
5.0 KiB
Go
203 lines
5.0 KiB
Go
package engine
|
|
|
|
import (
|
|
"fmt"
|
|
"net/url"
|
|
"strings"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/go-rod/rod"
|
|
"github.com/go-rod/rod/lib/proto"
|
|
)
|
|
|
|
// Page is a single page in an isolated browser instance
|
|
type Page struct {
|
|
page *rod.Page
|
|
rules []rule
|
|
instance *Instance
|
|
hijackRouter *rod.HijackRouter
|
|
hijackNative *Hijack
|
|
mutex *sync.RWMutex
|
|
History []HistoryData
|
|
InteractshURLs []string
|
|
payloads map[string]interface{}
|
|
}
|
|
|
|
// HistoryData contains the page request/response pairs
|
|
type HistoryData struct {
|
|
RawRequest string
|
|
RawResponse string
|
|
}
|
|
|
|
// Run runs a list of actions by creating a new page in the browser.
|
|
func (i *Instance) Run(baseURL *url.URL, actions []*Action, payloads map[string]interface{}, timeout time.Duration) (map[string]string, *Page, error) {
|
|
page, err := i.engine.Page(proto.TargetCreateTarget{})
|
|
if err != nil {
|
|
return nil, nil, err
|
|
}
|
|
page = page.Timeout(timeout)
|
|
|
|
if i.browser.customAgent != "" {
|
|
if userAgentErr := page.SetUserAgent(&proto.NetworkSetUserAgentOverride{UserAgent: i.browser.customAgent}); userAgentErr != nil {
|
|
return nil, nil, userAgentErr
|
|
}
|
|
}
|
|
|
|
createdPage := &Page{page: page, instance: i, mutex: &sync.RWMutex{}, payloads: payloads}
|
|
|
|
// in case the page has request/response modification rules - enable global hijacking
|
|
if createdPage.hasModificationRules() || containsModificationActions(actions...) {
|
|
hijackRouter := page.HijackRequests()
|
|
if err := hijackRouter.Add("*", "", createdPage.routingRuleHandler); err != nil {
|
|
return nil, nil, err
|
|
}
|
|
createdPage.hijackRouter = hijackRouter
|
|
go hijackRouter.Run()
|
|
} else {
|
|
hijackRouter := NewHijack(page)
|
|
hijackRouter.SetPattern(&proto.FetchRequestPattern{
|
|
URLPattern: "*",
|
|
RequestStage: proto.FetchRequestStageResponse,
|
|
})
|
|
createdPage.hijackNative = hijackRouter
|
|
hijackRouterHandler := hijackRouter.Start(createdPage.routingRuleHandlerNative)
|
|
go func() {
|
|
_ = hijackRouterHandler()
|
|
}()
|
|
}
|
|
|
|
if err := page.SetViewport(&proto.EmulationSetDeviceMetricsOverride{Viewport: &proto.PageViewport{
|
|
Scale: 1,
|
|
Width: float64(1920),
|
|
Height: float64(1080),
|
|
}}); err != nil {
|
|
return nil, nil, err
|
|
}
|
|
|
|
if _, err := page.SetExtraHeaders([]string{"Accept-Language", "en, en-GB, en-us;"}); err != nil {
|
|
return nil, nil, err
|
|
}
|
|
|
|
//FIXME: this is a hack, make sure to fix this in the future. See: https://github.com/go-rod/rod/issues/188
|
|
var e proto.NetworkResponseReceived
|
|
wait := page.WaitEvent(&e)
|
|
|
|
data, err := createdPage.ExecuteActions(baseURL, actions)
|
|
if err != nil {
|
|
return nil, nil, err
|
|
}
|
|
|
|
wait()
|
|
data["header"] = headersToString(e.Response.Headers)
|
|
data["status_code"] = fmt.Sprint(e.Response.Status)
|
|
|
|
return data, createdPage, nil
|
|
}
|
|
|
|
// Close closes a browser page
|
|
func (p *Page) Close() {
|
|
if p.hijackRouter != nil {
|
|
_ = p.hijackRouter.Stop()
|
|
}
|
|
if p.hijackNative != nil {
|
|
_ = p.hijackNative.Stop()
|
|
}
|
|
p.page.Close()
|
|
}
|
|
|
|
// Page returns the current page for the actions
|
|
func (p *Page) Page() *rod.Page {
|
|
return p.page
|
|
}
|
|
|
|
// Browser returns the browser that created the current page
|
|
func (p *Page) Browser() *rod.Browser {
|
|
return p.instance.engine
|
|
}
|
|
|
|
// URL returns the URL for the current page.
|
|
func (p *Page) URL() string {
|
|
info, err := p.page.Info()
|
|
if err != nil {
|
|
return ""
|
|
}
|
|
return info.URL
|
|
}
|
|
|
|
// DumpHistory returns the full page navigation history
|
|
func (p *Page) DumpHistory() string {
|
|
p.mutex.RLock()
|
|
defer p.mutex.RUnlock()
|
|
|
|
var historyDump strings.Builder
|
|
for _, historyData := range p.History {
|
|
historyDump.WriteString(historyData.RawRequest)
|
|
historyDump.WriteString(historyData.RawResponse)
|
|
}
|
|
return historyDump.String()
|
|
}
|
|
|
|
// addToHistory adds a request/response pair to the page history
|
|
func (p *Page) addToHistory(historyData ...HistoryData) {
|
|
p.mutex.Lock()
|
|
defer p.mutex.Unlock()
|
|
|
|
p.History = append(p.History, historyData...)
|
|
}
|
|
|
|
func (p *Page) addInteractshURL(URLs ...string) {
|
|
p.mutex.Lock()
|
|
defer p.mutex.Unlock()
|
|
|
|
p.InteractshURLs = append(p.InteractshURLs, URLs...)
|
|
}
|
|
|
|
func (p *Page) hasModificationRules() bool {
|
|
for _, rule := range p.rules {
|
|
if containsAnyModificationActionType(rule.Action) {
|
|
return true
|
|
}
|
|
}
|
|
return false
|
|
}
|
|
|
|
func containsModificationActions(actions ...*Action) bool {
|
|
for _, action := range actions {
|
|
if containsAnyModificationActionType(action.ActionType.ActionType) {
|
|
return true
|
|
}
|
|
}
|
|
return false
|
|
}
|
|
|
|
func containsAnyModificationActionType(actionTypes ...ActionType) bool {
|
|
for _, actionType := range actionTypes {
|
|
switch actionType {
|
|
case ActionSetMethod:
|
|
return true
|
|
case ActionAddHeader:
|
|
return true
|
|
case ActionSetHeader:
|
|
return true
|
|
case ActionDeleteHeader:
|
|
return true
|
|
case ActionSetBody:
|
|
return true
|
|
}
|
|
}
|
|
return false
|
|
}
|
|
|
|
// headersToString converts network headers to string
|
|
func headersToString(headers proto.NetworkHeaders) string {
|
|
builder := &strings.Builder{}
|
|
for header, value := range headers {
|
|
builder.WriteString(header)
|
|
builder.WriteString(": ")
|
|
builder.WriteString(value.String())
|
|
builder.WriteRune('\n')
|
|
}
|
|
return builder.String()
|
|
}
|