Merge branch 'master' into master

pussycat0x · May 23, 2022 · 09de9e1 · 09de9e1
2 parents 428176e + 8bb8e04
commit 09de9e1
Show file tree

Hide file tree

Showing 3,245 changed files with 51,413 additions and 11,781 deletions.
diff --git a/.github/scripts/README.tmpl b/.github/scripts/README.tmpl
@@ -58,6 +58,8 @@ We have also added a set of templates to help you understand how things work.
 Nuclei-templates is powered by major contributions from the community.
 [Template contributions ](https://github.com/projectdiscovery/nuclei-templates/issues/new?assignees=&labels=&template=submit-template.md&title=%5Bnuclei-template%5D+), [Feature Requests](https://github.com/projectdiscovery/nuclei-templates/issues/new?assignees=&labels=&template=feature_request.md&title=%5BFeature%5D+) and [Bug Reports](https://github.com/projectdiscovery/nuclei-templates/issues/new?assignees=&labels=&template=bug_report.md&title=%5BBug%5D+) are more than welcome.
 
+![Alt](https://repobeats.axiom.co/api/embed/55ee65543bb9a0f9c797626c4e66d472a517d17c.svg "Repobeats analytics image")
+
 💬 Discussion
 -----
 

diff --git a/.github/workflows/cve-annotate.yml b/.github/workflows/cve-annotate.yml
@@ -10,23 +10,25 @@ jobs:
   docs:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@master
-        with:
-          persist-credentials: false
-          fetch-depth: 0
-          token: ${{ secrets.GITHUB_TOKEN }}
+      - uses: actions/checkout@v2
 
-      - uses: actions/setup-go@v2
-        with:
-          go-version: 1.17
+      - name: Get Github tag
+        id: meta
+        run: |
+          echo "::set-output name=tag::$(curl --silent "https://api.github.com/repos/projectdiscovery/nuclei/releases/latest" | jq -r .tag_name)"
+
+      - name: Setup CVE annotate
+        if: steps.meta.outputs.tag != ''
+        env:
+          VERSION: ${{ steps.meta.outputs.tag }}
+        run: |
+          wget -q https://github.com/projectdiscovery/nuclei/releases/download/${VERSION}/cve-annotate.zip
+          sudo unzip cve-annotate.zip -d /usr/local/bin
+        working-directory: /tmp
 
       - name: Generate CVE Annotations
         id: cve-annotate
         run: |
-          if ! which cve-annotate > /dev/null; then
-            echo -e "Command cve-annotate not found! Installing\c"
-            go install github.com/projectdiscovery/nuclei/v2/cmd/cve-annotate@dev
-          fi
           cve-annotate -i ./cves/ -d .
           echo "::set-output name=changes::$(git status -s | wc -l)"
 
@@ -35,6 +37,7 @@ jobs:
         run: |
           git config --local user.email "[email protected]"
           git config --local user.name "GitHub Action"
+          git pull
           git add cves
           git commit -m "Auto Generated CVE annotations [$(date)] :robot:" -a
 
@@ -43,4 +46,4 @@ jobs:
         uses: ad-m/github-push-action@master
         with:
           github_token: ${{ secrets.GITHUB_TOKEN }}
-          branch: ${{ github.ref }}
+          branch: ${{ github.ref }}
diff --git a/.github/workflows/new-templates.yml b/.github/workflows/new-templates.yml
@@ -0,0 +1,37 @@
+name: 🥳 New Template List
+
+on:
+  push:
+    branches:
+      - master
+  workflow_dispatch:
+
+jobs:
+  templates:
+    runs-on: ubuntu-latest
+    if: github.repository == 'projectdiscovery/nuclei-templates'
+    steps:
+      - uses: actions/checkout@master
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          persist-credentials: false
+          fetch-depth: 0
+
+      - name: Generate new template list
+        id: new-additions
+        run: |
+          git pull
+          git diff  --name-only --diff-filter=A $(git tag | tail -n 1) @ . | grep .yaml | tee .new-additions
+
+      - name: Commit files
+        run: |
+          git config --local user.email "[email protected]"
+          git config --local user.name "GitHub Action"
+          git add .new-additions -f
+          git commit --allow-empty -m "Auto Generated New Template Addition List [$(date)] :robot:" -a
+
+      - name: Push changes
+        uses: ad-m/github-push-action@master
+        with:
+          github_token: ${{ secrets.GITHUB_TOKEN }}
+          branch: ${{ github.ref }}
diff --git a/.github/workflows/template-db-indexer.yml b/.github/workflows/template-db-indexer.yml
@@ -0,0 +1,29 @@
+name: 📑 Template-DB Indexer
+
+on:
+  push:
+    branches:
+      - master
+  workflow_dispatch:
+
+jobs:
+  index:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/setup-go@v2
+        with:
+          go-version: 1.17
+
+      - name: Intalling Indexer
+        run: |
+          git config --global url."https://${{ secrets.ACCESS_TOKEN }}@github".insteadOf https://github
+          git clone https://github.com/projectdiscovery/nucleish-api.git
+          cd nucleish-api/cmd/generate-index/
+          go install
+
+      - name: Generate Index
+        env:
+          AWS_ACCESS_KEY: ${{ secrets.AWS_ACCESS_KEY }}
+          AWS_SECRET_KEY: ${{ secrets.AWS_SECRET_KEY }}
+        run: |
+          generate-index -mode templates
diff --git a/.github/workflows/template-validate.yml b/.github/workflows/template-validate.yml
@@ -6,24 +6,24 @@ jobs:
   build:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@master
-      - uses: actions/setup-go@v2
-        with: 
-          go-version: 1.17
+      - uses: actions/checkout@v2
 
-      - name: Cache Go
-        id: cache-go
-        uses: actions/cache@v2
-        with:
-          path: /home/runner/go
-          key: ${{ runner.os }}-go
+      - name: Get Github tag
+        id: meta
+        run: |
+          echo "::set-output name=tag::$(curl --silent "https://api.github.com/repos/projectdiscovery/nuclei/releases/latest" | jq -r .tag_name)"
 
-      - name: Installing Nuclei
-        if: steps.cache-go.outputs.cache-hit != 'true'
+      - name: Setup Nuclei
+        if: steps.meta.outputs.tag != ''
+        env:
+          VERSION: ${{ steps.meta.outputs.tag }}
         run: |
-          go install github.com/projectdiscovery/nuclei/v2/cmd/nuclei@latest
+          wget -q https://github.com/projectdiscovery/nuclei/releases/download/${VERSION}/nuclei_${VERSION:1}_linux_amd64.zip
+          sudo unzip nuclei*.zip -d /usr/local/bin
+        working-directory: /tmp
 
       - name: Template Validation
         run: |
+          cp -r ${{ github.workspace }} $HOME
           nuclei -validate -t .
           nuclei -validate -w ./workflows
diff --git a/.github/workflows/templates-stats.yml b/.github/workflows/templates-stats.yml
@@ -1,6 +1,9 @@
 name: 🗒 Templates Stats
 
 on:
+  push:
+    tags:
+      - '*'
   workflow_dispatch:
 
 jobs:
@@ -49,4 +52,4 @@ jobs:
         uses: ad-m/github-push-action@master
         with:
           github_token: ${{ secrets.GITHUB_TOKEN }}
-          branch: ${{ github.ref }}
+          branch: master
diff --git a/.new-additions b/.new-additions
@@ -0,0 +1,14 @@
+cves/2013/CVE-2013-6281.yaml
+cves/2018/CVE-2018-18608.yaml
+cves/2019/CVE-2019-18371.yaml
+cves/2021/CVE-2021-45428.yaml
+cves/2022/CVE-2022-0346.yaml
+cves/2022/CVE-2022-21500.yaml
+exposed-panels/jupyter-notebook.yaml
+exposed-panels/looker-panel.yaml
+exposures/files/xampp-environment-variables.yaml
+miscellaneous/robots-txt-endpoint.yaml
+ssl/self-signed-ssl.yaml
+token-spray/api-debounce.yaml
+token-spray/api-tatum.yaml
+vulnerabilities/dedecms/dedecms-config-xss.yaml
diff --git a/.nuclei-ignore b/.nuclei-ignore
@@ -7,10 +7,12 @@
 # tags is a list of tags to ignore execution for
 # unless asked for by the user.
 
-tags: 
+tags:
   - "fuzz"
   - "dos"
-  - "misc"
 
 # files is a list of files to ignore template execution
 # unless asked for by the user.
+
+# files:
+#  - cves/2020/CVE-2020-35489.yaml
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
@@ -60,7 +60,7 @@ git add .
 git commit -m "Added/Fixed/Updated XXX Template"
 ```
 
-**NOTE**: 
+**NOTE**:
 
 - A Pull Request should have only one unique template to make it simple for review.
 - Multiple templates for same technology can be grouped into single Pull Request. 

diff --git a/PULL_REQUEST_TEMPLATE.md b/PULL_REQUEST_TEMPLATE.md
@@ -24,5 +24,5 @@ I've validated this template locally?
 
 - [Nuclei Template Creation Guideline](https://nuclei.projectdiscovery.io/templating-guide/)
 - [Nuclei Template Matcher Guideline](https://github.com/projectdiscovery/nuclei-templates/wiki/Unique-Template-Matchers)
-- [Nuclei Template Contribution Guideline](https://github.com/projectdiscovery/nuclei-templates/blob/master/.github/CONTRIBUTING.md)
+- [Nuclei Template Contribution Guideline](https://github.com/projectdiscovery/nuclei-templates/blob/master/CONTRIBUTING.md)
 - [PD-Community Discord server](https://discord.gg/projectdiscovery)
diff --git a/README.md b/README.md
@@ -42,18 +42,18 @@ An overview of the nuclei template project, including statistics on unique tags,
 
 |    TAG    | COUNT |    AUTHOR     | COUNT |    DIRECTORY     | COUNT | SEVERITY | COUNT |  TYPE   | COUNT |
 |-----------|-------|---------------|-------|------------------|-------|----------|-------|---------|-------|
-| cve       |   907 | dhiyaneshdk   |   338 | cves             |   913 | info     |   903 | http    |  2477 |
-| lfi       |   377 | daffainfo     |   333 | vulnerabilities  |   347 | high     |   691 | file    |    57 |
-| panel     |   318 | pikpikcu      |   286 | exposed-panels   |   318 | medium   |   516 | network |    47 |
-| xss       |   283 | pdteam        |   216 | technologies     |   220 | critical |   322 | dns     |    12 |
-| wordpress |   270 | geeknik       |   172 | exposures        |   196 | low      |   166 |         |       |
-| exposure  |   250 | dwisiswant0   |   156 | misconfiguration |   163 |          |       |         |       |
-| rce       |   230 | pussycat0x    |    90 | token-spray      |   127 |          |       |         |       |
-| tech      |   223 | gy741         |    88 | takeovers        |    65 |          |       |         |       |
-| cve2021   |   188 | 0x_akoko      |    76 | default-logins   |    63 |          |       |         |       |
-| wp-plugin |   186 | princechaddha |    72 | file             |    57 |          |       |         |       |
-
-**190 directories, 2663 files**.
+| cve       |  1168 | daffainfo     |   564 | cves             |  1172 | info     |  1198 | http    |  3209 |
+| panel     |   517 | dhiyaneshdk   |   423 | exposed-panels   |   525 | high     |   885 | file    |    68 |
+| lfi       |   464 | pikpikcu      |   315 | vulnerabilities  |   453 | medium   |   667 | network |    50 |
+| xss       |   371 | pdteam        |   262 | technologies     |   256 | critical |   415 | dns     |    17 |
+| wordpress |   368 | geeknik       |   179 | exposures        |   204 | low      |   182 |         |       |
+| rce       |   296 | dwisiswant0   |   168 | misconfiguration |   200 | unknown  |     6 |         |       |
+| exposure  |   294 | princechaddha |   137 | workflows        |   187 |          |       |         |       |
+| cve2021   |   289 | 0x_akoko      |   134 | token-spray      |   155 |          |       |         |       |
+| tech      |   272 | gy741         |   119 | default-logins   |    96 |          |       |         |       |
+| wp-plugin |   268 | pussycat0x    |   116 | file             |    68 |          |       |         |       |
+
+**262 directories, 3566 files**.
 
 </td>
 </tr>
@@ -71,6 +71,8 @@ We have also added a set of templates to help you understand how things work.
 Nuclei-templates is powered by major contributions from the community.
 [Template contributions ](https://github.com/projectdiscovery/nuclei-templates/issues/new?assignees=&labels=&template=submit-template.md&title=%5Bnuclei-template%5D+), [Feature Requests](https://github.com/projectdiscovery/nuclei-templates/issues/new?assignees=&labels=&template=feature_request.md&title=%5BFeature%5D+) and [Bug Reports](https://github.com/projectdiscovery/nuclei-templates/issues/new?assignees=&labels=&template=bug_report.md&title=%5BBug%5D+) are more than welcome.
 
+![Alt](https://repobeats.axiom.co/api/embed/55ee65543bb9a0f9c797626c4e66d472a517d17c.svg "Repobeats analytics image")
+
 💬 Discussion
 -----
 

diff --git a/TEMPLATES-STATS.json b/TEMPLATES-STATS.json