vul

Autumn-27 · Dec 8, 2024 · a5003ec · a5003ec
1 parent ba05480
commit a5003ec
Show file tree

Hide file tree

Showing 2 changed files with 32 additions and 3 deletions.
diff --git a/modules/urlsecurity/pagemonitoring/pagemonitoring.go b/modules/urlsecurity/pagemonitoring/pagemonitoring.go
@@ -121,7 +121,33 @@ func (p *Plugin) Execute(input interface{}) (interface{}, error) {
 	if !ok {
 		return nil, errors.New("input is not types.UrlResult")
 	}
+
+	parameter := p.GetParameter()
+	tp := "js"
+	if parameter != "" {
+		args, err := utils.Tools.ParseArgs(parameter, "type")
+		if err != nil {
+		} else {
+			for key, value := range args {
+				if value != "" {
+					switch key {
+					case "type":
+						tp = value
+					default:
+						continue
+					}
+				}
+
+			}
+		}
+	}
+
 	flag := utils.Tools.IsSuffixURL(data.Output, ".js")
+	if tp == "js" {
+		if !flag {
+			return nil, nil
+		}
+	}
 	if flag {
 		if strings.Contains(data.Body, "<!DOCTYPE html>") {
 			data.Body = ""

diff --git a/modules/vulnerabilityscan/nuclei/nuclei.go b/modules/vulnerabilityscan/nuclei/nuclei.go
@@ -162,7 +162,7 @@ func (p *Plugin) Execute(input interface{}) (interface{}, error) {
 	concurrency.TemplatePayloadConcurrency = 15
 	concurrency.ProbeConcurrency = 5
 	if parameter != "" {
-		args, err := utils.Tools.ParseArgs(parameter, "t", "s", "es", "tags", "etags", "rl", "rld", "bs", "c", "hbs", "headc", "jsc", "pc", "prc", "as")
+		args, err := utils.Tools.ParseArgs(parameter, "t", "s", "es", "tags", "etags", "rl", "rld", "bs", "c", "hbs", "headc", "jsc", "pc", "prc", "as", "InteractshURL")
 		if err != nil {
 		} else {
 			for key, value := range args {
@@ -210,6 +210,10 @@ func (p *Plugin) Execute(input interface{}) (interface{}, error) {
 						concurrency.ProbeConcurrency = prcValue
 					case "as":
 						tmplateFilters.Tags = append(tmplateFilters.Tags, tmpTags...)
+					//case "InteractshURL":
+					//	options = append(options, nuclei.WithInteractshOptions(nuclei.InteractshOpts(interactsh.Options{
+					//		ServerURL: value,
+					//	})))
 					default:
 						continue
 					}
@@ -218,7 +222,6 @@ func (p *Plugin) Execute(input interface{}) (interface{}, error) {
 		}
 	}
 	// 全局速率限制
-
 	options = append(options, nuclei.WithGlobalRateLimitCtx(context.Background(), maxTokens, duration))
 
 	// 速率限制
@@ -231,7 +234,6 @@ func (p *Plugin) Execute(input interface{}) (interface{}, error) {
 
 	// TmplateFilters 模板过滤
 	options = append(options, nuclei.WithTemplateFilters(tmplateFilters))
-
 	ctx := contextmanager.GlobalContextManagers.GetContext(p.GetTaskId())
 	callBackFunc := func(event *output.ResultEvent) {
 		vulName := event.Info.Name
@@ -261,6 +263,7 @@ func (p *Plugin) Execute(input interface{}) (interface{}, error) {
 	config.DefaultConfig.TemplatesDirectory = filepath.Join(global.PocDir)
 	ne := handler.NewNucleiEngine()
 	handler.NucleiEngineWg.Add(1)
+
 	ne.GlobalResultCallback(callBackFunc)
 	err := ne.ExecuteNucleiWithOptsCtx(ctx, targets, options...)
 	if err != nil {