detect

package
v1.0.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jun 8, 2023 License: MIT Imports: 3 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var (
	RootCmd = &cobra.Command{
		Use:     "detect -u <url>",
		Aliases: []string{"scan"},
		Short:   "Detect SSTI vulnerabilities",
		Long:    `Detect SSTI vulnerabilities in a given URL`,
		Example: `gossti detect -u http://example.com/?param1=SSTI&param2=value2`,
		PreRunE: func(cmd *cobra.Command, args []string) error {

			u, _ := cmd.Flags().GetString("url")
			_, err := url.ParseRequestURI(u)
			if err != nil {
				return err
			}

			return nil
		},
		RunE: func(cmd *cobra.Command, args []string) error {
			url, _ := cmd.Flags().GetString("url")

			options := ssti.Options{}

			method, _ := cmd.Flags().GetString("method")
			options.Method = method

			userAgent, _ := cmd.Flags().GetString("user-agent")
			options.UserAgent = userAgent

			cookies, _ := cmd.Flags().GetStringSlice("cookies")
			options.Cookies = cookies

			timeout, _ := cmd.Flags().GetDuration("timeout")
			options.Timeout = timeout

			form, _ := cmd.Flags().GetStringToString("form-item")
			formSlice, _ := cmd.Flags().GetStringSlice("form")
			for _, v := range formSlice {
				form[v] = ""
			}

			options.Form = form

			formType, _ := cmd.Flags().GetString("form-type")
			options.FormType = formType
			return ssti.Detect(url, options)
		},
	}
)

Functions

This section is empty.

Types

This section is empty.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.