Merge pull request #45 from rusty-sec/remove_fuzzer

better report & removing fuzzer

Author: MindPatch

fuzzer/test/xss.lua

@@ -0,0 +1,11 @@
+
+
+function report(url) 
+    NewReport:setRisk("low")
+    NewReport:setUrl(url)
+end
+
+function main(url)
+    report(url)
+    Reports:addReport(NewReport)
+end

src/cli/logger.rs

@@ -14,7 +14,7 @@ pub fn init_log(log_path: &str) -> Result<(), std::io::Error> {
         .level_for("hyper", log::LevelFilter::Warn)
         .level_for("reqwest", log::LevelFilter::Warn)
         .level_for("isahc", log::LevelFilter::Warn);
-        // Disalbe unwanted loggers
+    // Disalbe unwanted loggers
     logger
         .chain(fern::log_file(log_path).unwrap())
         .apply()

src/core/mod.rs

@@ -1,17 +1,18 @@
 pub mod utils;
-use futures::{lock::Mutex, stream, StreamExt};
+use futures::lock::Mutex;
 use log::{debug, error, info, warn};
 use mlua::Lua;
 use thirtyfour::prelude::*;
+use url::Url;
 
 use utils::files::filename_to_string;
 use utils::html::{css_selector, html_parse, html_search};
 use utils::http as http_sender;
 use utils::is_match;
-use utils::report::report_script;
-use utils::url::{change_urlquery, set_urlvalue, urljoin};
+use utils::lua_report::report_script;
+use utils::report::{AllReports,OutReport};
+use utils::url::HttpMessage;
 
-use std::collections::HashMap;
 use std::fs::File;
 use std::fs::OpenOptions;
 use std::io::Read;
@@ -159,16 +160,6 @@ impl<'a> LuaLoader<'a> {
     }
 
     fn get_httpfunc(&self, lua: &Lua) {
-        lua.globals()
-            .set(
-                "set_urlvalue",
-                lua.create_function(|_, (url, param, payload): (String, String, String)| {
-                    Ok(set_urlvalue(&url, &param, &payload))
-                })
-                .unwrap(),
-            )
-            .unwrap();
-
         lua.globals()
             .set(
                 "sleep",
@@ -179,30 +170,6 @@ impl<'a> LuaLoader<'a> {
                 .unwrap(),
             )
             .unwrap();
-        // Set Functions
-        let set_urlvalue =
-            lua.create_function(|_, (url, param, payload): (String, String, String)| {
-                Ok(set_urlvalue(&url, &param, &payload))
-            });
-        let change_url = lua
-            .create_function(
-                |_, (url, payload, remove_content): (String, String, bool)| {
-                    Ok(change_urlquery(url, payload, remove_content))
-                },
-            )
-            .unwrap();
-        lua.globals().set("change_urlquery", change_url).unwrap();
-        lua.globals()
-            .set("set_urlvalue", set_urlvalue.unwrap())
-            .unwrap();
-
-        lua.globals()
-            .set(
-                "urljoin",
-                lua.create_function(|_, (url, path): (String, String)| Ok(urljoin(url, path)))
-                    .unwrap(),
-            )
-            .unwrap();
     }
 
     /// Start All Lua Scripts
@@ -218,7 +185,20 @@ impl<'a> LuaLoader<'a> {
         self.get_httpfunc(&lua);
         self.get_utilsfunc(&lua);
         self.get_matching_func(&lua);
-        lua.globals().set("TARGET_URL", target_url).unwrap();
+        lua.globals()
+            .set(
+                "HttpMessage",
+                HttpMessage {
+                    url: Url::parse(target_url).unwrap(),
+                },
+            )
+            .unwrap();
+        lua.globals()
+            .set("Reports",AllReports {
+                reports: Vec::new()
+            }).unwrap();
+        lua.globals()
+            .set("NewReport", OutReport::init()).unwrap();
         match driver {
             None => {}
             _ => {
@@ -242,24 +222,7 @@ impl<'a> LuaLoader<'a> {
         lua.globals().set("SCRIPT_PATH", script_dir).unwrap();
 
         lua.load(script_code).exec_async().await.unwrap();
-        let payloads_func = lua
-            .globals()
-            .get::<_, mlua::Function>("payloads_gen")
-            .unwrap();
-        let payloads = payloads_func
-            .call_async::<_, mlua::Table>(target_url)
-            .await
-            .unwrap();
-        let payloads = {
-            let mut all_payloads = Vec::new();
-            payloads
-                .pairs::<mlua::Value, mlua::Value>()
-                .into_iter()
-                .for_each(|item| {
-                    all_payloads.push(item.unwrap());
-                });
-            all_payloads
-        };
+
         // HTTP Sender
         lua.globals()
             .set(
@@ -273,36 +236,25 @@ impl<'a> LuaLoader<'a> {
             .unwrap();
 
         let main_func = lua.globals().get::<_, mlua::Function>("main").unwrap();
-        let script_threads = lua.globals().get::<_, usize>("THREADS").unwrap_or(5);
-        stream::iter(payloads.into_iter())
-            .map(move |payload| {
-                let main_func = main_func.clone();
-                async move {
-                    main_func
-                        .call_async::<_, mlua::Table>(payload)
-                        .await
-                        .unwrap();
-                }
-            })
-            .buffer_unordered(script_threads)
-            .collect::<Vec<_>>()
-            .await;
+        debug!("MAIN FUNC STARTED");
+        main_func.call_async::<_, mlua::Value>(target_url).await.unwrap();
+        debug!("MAIN FUNC DONE");
+
         if report_code.len() > 0 {
+            // Still under development (not ready yet)
             report_script(filename_to_string(report_code).unwrap().as_str());
         } else {
-            let out_table = lua.globals().get::<_, bool>("VALID".to_owned()).unwrap();
-            if out_table {
-                let mut test_report: HashMap<String, mlua::Value> = HashMap::new();
-                lua.globals()
-                    .get::<_, mlua::Table>("REPORT")
-                    .unwrap()
-                    .pairs::<String, mlua::Value>()
-                    .for_each(|out_report| {
-                        let current_out = out_report.clone();
-                        test_report.insert(current_out.unwrap().0, out_report.unwrap().1);
-                    });
-                let results = serde_json::to_string(&test_report).unwrap();
-                self.write_report(&results);
+            let final_report = lua.globals().get::<_, AllReports>("Reports");
+            match final_report {
+                Ok(the_report) => {
+                    if the_report.clone().reports.len() > 0 {
+                        let results = serde_json::to_string(&the_report.reports).unwrap();
+                        self.write_report(&results);
+                    }
+                }
+                Err(err) => {
+                    error!("Report Error: {}", err);
+                }
             }
         }
         self.bar.inc(1);

src/core/utils/http.rs

@@ -132,6 +132,11 @@ impl Sender {
     /// ```lua
     /// local resp = http:send("GET","http://google.com")
     /// print(resp.body:GetStrOrNil())
+    ///
+    /// -- set proxy/timeout    
+    /// http:set_proxy("http://proxysite.com:8080")
+    /// http:set_timeout(15)
+    /// http:set_redirects(2) // set custom redirects limit
     /// ```
     pub async fn send(
         &self,

src/core/utils/lua_report.rs

@@ -0,0 +1,60 @@
+use log::{debug, error};
+use mlua::Lua;
+use std::collections::HashMap;
+use std::fs::OpenOptions;
+use std::io::Write;
+
+pub fn report_script(report_code: &str) {
+    debug!("Running the Report Script");
+    let lua_vm = Lua::new();
+    lua_report_func(&lua_vm);
+    match lua_vm.load(report_code).exec() {
+        Ok(_done) => {}
+        Err(err) => {
+            println!("CODE: {}", report_code);
+            println!("ERR {:?}", err);
+            error!("Lua Report Error: {}", err);
+        }
+    }
+}
+
+fn lua_report_func(vm: &Lua) -> &Lua {
+    vm.globals()
+        .set(
+            "to_json",
+            vm.create_function(|_, data: mlua::Table| {
+                let mut test_report: HashMap<String, mlua::Value> = HashMap::new();
+                data.pairs::<String, mlua::Value>().for_each(|out_report| {
+                    let current_out = out_report.clone();
+                    test_report.insert(current_out.unwrap().0, out_report.unwrap().1);
+                });
+                let results = serde_json::to_string(&test_report).unwrap();
+                Ok(results)
+            })
+            .unwrap(),
+        )
+        .unwrap();
+
+    vm.globals()
+        .set(
+            "save_file",
+            vm.create_function(|_, (data, report_path): (String, String)| {
+                save_file(&report_path, &data);
+                Ok(())
+            })
+            .unwrap(),
+        )
+        .unwrap();
+    vm
+}
+
+fn save_file(file_path: &str, results: &str) {
+    OpenOptions::new()
+        .write(true)
+        .append(true)
+        .create(true)
+        .open(file_path)
+        .expect("Could not open file")
+        .write_all(format!("{}\n", results).as_str().as_bytes())
+        .expect("Could not write to file");
+}

src/core/utils/mod.rs

@@ -22,6 +22,7 @@ pub mod files;
 pub mod html;
 pub mod http;
 // pub mod oast;
+pub mod lua_report;
 pub mod report;
 pub mod url;