gobuster/libgobuster/http.go

package libgobuster

import (
	"context"
	"crypto/tls"
	"errors"
	"fmt"
	"io"
	"net/http"
	"net/url"
	"strings"
)

// HTTPHeader holds a single key value pair of a HTTP header
type HTTPHeader struct {
	Name  string
	Value string
}

// HTTPClient represents a http object
type HTTPClient struct {
	client           *http.Client
	userAgent        string
	defaultUserAgent string
	username         string
	password         string
	headers          []HTTPHeader
	cookies          string
	method           string
	host             string
}

// RequestOptions is used to pass options to a single individual request
type RequestOptions struct {
	Host       string
	Body       io.Reader
	ReturnBody bool
}

// NewHTTPClient returns a new HTTPClient
func NewHTTPClient(opt *HTTPOptions) (*HTTPClient, error) {
	var proxyURLFunc func(*http.Request) (*url.URL, error)
	var client HTTPClient
	proxyURLFunc = http.ProxyFromEnvironment

	if opt == nil {
		return nil, fmt.Errorf("options is nil")
	}

	if opt.Proxy != "" {
		proxyURL, err := url.Parse(opt.Proxy)
		if err != nil {
			return nil, fmt.Errorf("proxy URL is invalid (%w)", err)
		}
		proxyURLFunc = http.ProxyURL(proxyURL)
	}

	var redirectFunc func(req *http.Request, via []*http.Request) error
	if !opt.FollowRedirect {
		redirectFunc = func(req *http.Request, via []*http.Request) error {
			return http.ErrUseLastResponse
		}
	} else {
		redirectFunc = nil
	}

	client.client = &http.Client{
		Timeout:       opt.Timeout,
		CheckRedirect: redirectFunc,
		Transport: &http.Transport{
			Proxy:               proxyURLFunc,
			MaxIdleConns:        100,
			MaxIdleConnsPerHost: 100,
			TLSClientConfig: &tls.Config{
				InsecureSkipVerify: opt.NoTLSValidation,
			},
		}}
	client.username = opt.Username
	client.password = opt.Password
	client.userAgent = opt.UserAgent
	client.defaultUserAgent = DefaultUserAgent()
	client.headers = opt.Headers
	client.cookies = opt.Cookies
	client.method = opt.Method
	if client.method == "" {
		client.method = http.MethodGet
	}
	// Host header needs to be set separately
	for _, h := range opt.Headers {
		if h.Name == "Host" {
			client.host = h.Value
			break
		}
	}
	return &client, nil
}

// Request makes an http request and returns the status, the content length, the headers, the body and an error
// if you want the body returned set the corresponding property inside RequestOptions
func (client *HTTPClient) Request(ctx context.Context, fullURL string, opts RequestOptions) (int, int64, http.Header, []byte, error) {
	resp, err := client.makeRequest(ctx, fullURL, opts.Host, opts.Body)
	if err != nil {
		// ignore context canceled errors
		if errors.Is(ctx.Err(), context.Canceled) {
			return 0, 0, nil, nil, nil
		}
		return 0, 0, nil, nil, err
	}
	defer resp.Body.Close()

	var body []byte
	var length int64
	if opts.ReturnBody {
		body, err = io.ReadAll(resp.Body)
		if err != nil {
			return 0, 0, nil, nil, fmt.Errorf("could not read body %w", err)
		}
		length = int64(len(body))
	} else {
		// DO NOT REMOVE!
		// absolutely needed so golang will reuse connections!
		length, err = io.Copy(io.Discard, resp.Body)
		if err != nil {
			return 0, 0, nil, nil, err
		}
	}

	return resp.StatusCode, length, resp.Header, body, nil
}

func (client *HTTPClient) makeRequest(ctx context.Context, fullURL, host string, data io.Reader) (*http.Response, error) {
	req, err := http.NewRequest(client.method, fullURL, data)
	if err != nil {
		return nil, err
	}

	// add the context so we can easily cancel out
	req = req.WithContext(ctx)

	if client.cookies != "" {
		req.Header.Set("Cookie", client.cookies)
	}

	// Use host for VHOST mode on a per request basis, otherwise the one provided from headers
	if host != "" {
		req.Host = host
	} else if client.host != "" {
		req.Host = client.host
	}

	if client.userAgent != "" {
		req.Header.Set("User-Agent", client.userAgent)
	} else {
		req.Header.Set("User-Agent", client.defaultUserAgent)
	}

	// add custom headers
	for _, h := range client.headers {
		req.Header.Set(h.Name, h.Value)
	}

	if client.username != "" {
		req.SetBasicAuth(client.username, client.password)
	}

	resp, err := client.client.Do(req)
	if err != nil {
		var ue *url.Error
		if errors.As(err, &ue) {
			if strings.HasPrefix(ue.Err.Error(), "x509") {
				return nil, fmt.Errorf("invalid certificate: %w", ue.Err)
			}
		}
		return nil, err
	}

	return resp, nil
}
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`package libgobuster`
massive refactoring 2018-05-18 22:20:56 +02:00
			`import (`
			`"context"`
			`"crypto/tls"`
apply 3.1 changed 2020-05-08 10:59:45 +02:00			`"errors"`
massive refactoring 2018-05-18 22:20:56 +02:00			`"fmt"`
reuse connections! 2018-06-27 22:23:18 +02:00			`"io"`
massive refactoring 2018-05-18 22:20:56 +02:00			`"net/http"`
			`"net/url"`
			`"strings"`
			`)`

missing comment 2019-05-21 21:04:22 +02:00			`// HTTPHeader holds a single key value pair of a HTTP header`
add custom http headers, see #133, #46, #76 2019-05-21 20:31:40 +02:00			`type HTTPHeader struct {`
			`Name string`
			`Value string`
			`}`

implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`// HTTPClient represents a http object`
			`type HTTPClient struct {`
linting 2019-05-17 17:23:20 +02:00			`client *http.Client`
			`userAgent string`
			`defaultUserAgent string`
			`username string`
			`password string`
add custom http headers, see #133, #46, #76 2019-05-21 20:31:40 +02:00			`headers []HTTPHeader`
apply 3.1 changed 2020-05-08 10:59:45 +02:00			`cookies string`
			`method string`
fix #271, fix #272, linting 2021-01-04 23:48:36 +01:00			`host string`
massive refactoring 2018-05-18 22:20:56 +02:00			`}`

apply 3.1 changed 2020-05-08 10:59:45 +02:00			`// RequestOptions is used to pass options to a single individual request`
			`type RequestOptions struct {`
			`Host string`
			`Body io.Reader`
			`ReturnBody bool`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`}`

massive refactoring 2018-05-18 22:20:56 +02:00			`// NewHTTPClient returns a new HTTPClient`
some context changes 2021-02-25 00:35:51 +01:00			`func NewHTTPClient(opt HTTPOptions) (HTTPClient, error) {`
massive refactoring 2018-05-18 22:20:56 +02:00			`var proxyURLFunc func(http.Request) (url.URL, error)`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`var client HTTPClient`
massive refactoring 2018-05-18 22:20:56 +02:00			`proxyURLFunc = http.ProxyFromEnvironment`

start with http based tests 2018-07-09 19:36:51 +02:00			`if opt == nil {`
			`return nil, fmt.Errorf("options is nil")`
			`}`

massive refactoring 2018-05-18 22:20:56 +02:00			`if opt.Proxy != "" {`
			`proxyURL, err := url.Parse(opt.Proxy)`
			`if err != nil {`
apply 3.1 changed 2020-05-08 10:59:45 +02:00			`return nil, fmt.Errorf("proxy URL is invalid (%w)", err)`
massive refactoring 2018-05-18 22:20:56 +02:00			`}`
			`proxyURLFunc = http.ProxyURL(proxyURL)`
			`}`

			`var redirectFunc func(req http.Request, via []http.Request) error`
			`if !opt.FollowRedirect {`
			`redirectFunc = func(req http.Request, via []http.Request) error {`
			`return http.ErrUseLastResponse`
			`}`
			`} else {`
			`redirectFunc = nil`
			`}`

			`client.client = &http.Client{`
			`Timeout: opt.Timeout,`
			`CheckRedirect: redirectFunc,`
			`Transport: &http.Transport{`
overwrite default values, see #127 2019-04-17 21:17:29 +02:00			`Proxy: proxyURLFunc,`
			`MaxIdleConns: 100,`
			`MaxIdleConnsPerHost: 100,`
massive refactoring 2018-05-18 22:20:56 +02:00			`TLSClientConfig: &tls.Config{`
spelling and parameter rename 2020-06-20 14:58:27 +02:00			`InsecureSkipVerify: opt.NoTLSValidation,`
massive refactoring 2018-05-18 22:20:56 +02:00			`},`
			`}}`
			`client.username = opt.Username`
			`client.password = opt.Password`
fix user agent 2018-05-18 22:31:49 +02:00			`client.userAgent = opt.UserAgent`
linting 2019-05-17 17:23:20 +02:00			`client.defaultUserAgent = DefaultUserAgent()`
add custom http headers, see #133, #46, #76 2019-05-21 20:31:40 +02:00			`client.headers = opt.Headers`
apply 3.1 changed 2020-05-08 10:59:45 +02:00			`client.cookies = opt.Cookies`
			`client.method = opt.Method`
			`if client.method == "" {`
			`client.method = http.MethodGet`
			`}`
fix #271, fix #272, linting 2021-01-04 23:48:36 +01:00			`// Host header needs to be set separately`
			`for _, h := range opt.Headers {`
			`if h.Name == "Host" {`
			`client.host = h.Value`
			`break`
			`}`
			`}`
massive refactoring 2018-05-18 22:20:56 +02:00			`return &client, nil`
			`}`

Implement a custom result object per plugin to get better output options 2020-08-01 12:57:58 +02:00			`// Request makes an http request and returns the status, the content length, the headers, the body and an error`
			`// if you want the body returned set the corresponding property inside RequestOptions`
Dev Updates (#305) * retry on timeout * Google Cloud Bucket enumeration * colors in output * goreleaser * fix nil reference errors 2022-10-08 18:41:25 +02:00			`func (client *HTTPClient) Request(ctx context.Context, fullURL string, opts RequestOptions) (int, int64, http.Header, []byte, error) {`
some context changes 2021-02-25 00:35:51 +01:00			`resp, err := client.makeRequest(ctx, fullURL, opts.Host, opts.Body)`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`if err != nil {`
concurrency updates 2019-04-11 21:54:54 +02:00			`// ignore context canceled errors`
some context changes 2021-02-25 00:35:51 +01:00			`if errors.Is(ctx.Err(), context.Canceled) {`
Dev Updates (#305) * retry on timeout * Google Cloud Bucket enumeration * colors in output * goreleaser * fix nil reference errors 2022-10-08 18:41:25 +02:00			`return 0, 0, nil, nil, nil`
concurrency updates 2019-04-11 21:54:54 +02:00			`}`
Dev Updates (#305) * retry on timeout * Google Cloud Bucket enumeration * colors in output * goreleaser * fix nil reference errors 2022-10-08 18:41:25 +02:00			`return 0, 0, nil, nil, err`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`}`
			`defer resp.Body.Close()`

apply 3.1 changed 2020-05-08 10:59:45 +02:00			`var body []byte`
			`var length int64`
			`if opts.ReturnBody {`
some context changes 2021-02-25 00:35:51 +01:00			`body, err = io.ReadAll(resp.Body)`
apply 3.1 changed 2020-05-08 10:59:45 +02:00			`if err != nil {`
Dev Updates (#305) * retry on timeout * Google Cloud Bucket enumeration * colors in output * goreleaser * fix nil reference errors 2022-10-08 18:41:25 +02:00			`return 0, 0, nil, nil, fmt.Errorf("could not read body %w", err)`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`}`
apply 3.1 changed 2020-05-08 10:59:45 +02:00			`length = int64(len(body))`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`} else {`
			`// DO NOT REMOVE!`
			`// absolutely needed so golang will reuse connections!`
some context changes 2021-02-25 00:35:51 +01:00			`length, err = io.Copy(io.Discard, resp.Body)`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`if err != nil {`
Dev Updates (#305) * retry on timeout * Google Cloud Bucket enumeration * colors in output * goreleaser * fix nil reference errors 2022-10-08 18:41:25 +02:00			`return 0, 0, nil, nil, err`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`}`
			`}`

Dev Updates (#305) * retry on timeout * Google Cloud Bucket enumeration * colors in output * goreleaser * fix nil reference errors 2022-10-08 18:41:25 +02:00			`return resp.StatusCode, length, resp.Header, body, nil`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`}`
massive refactoring 2018-05-18 22:20:56 +02:00
some context changes 2021-02-25 00:35:51 +01:00			`func (client HTTPClient) makeRequest(ctx context.Context, fullURL, host string, data io.Reader) (http.Response, error) {`
apply 3.1 changed 2020-05-08 10:59:45 +02:00			`req, err := http.NewRequest(client.method, fullURL, data)`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`if err != nil {`
apply 3.1 changed 2020-05-08 10:59:45 +02:00			`return nil, err`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`}`
massive refactoring 2018-05-18 22:20:56 +02:00
			`// add the context so we can easily cancel out`
some context changes 2021-02-25 00:35:51 +01:00			`req = req.WithContext(ctx)`
massive refactoring 2018-05-18 22:20:56 +02:00
apply 3.1 changed 2020-05-08 10:59:45 +02:00			`if client.cookies != "" {`
			`req.Header.Set("Cookie", client.cookies)`
massive refactoring 2018-05-18 22:20:56 +02:00			`}`

fix #271, fix #272, linting 2021-01-04 23:48:36 +01:00			`// Use host for VHOST mode on a per request basis, otherwise the one provided from headers`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`if host != "" {`
			`req.Host = host`
fix #271, fix #272, linting 2021-01-04 23:48:36 +01:00			`} else if client.host != "" {`
			`req.Host = client.host`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`}`

massive refactoring 2018-05-18 22:20:56 +02:00			`if client.userAgent != "" {`
more optimization and benchmark 2019-04-16 23:44:58 +02:00			`req.Header.Set("User-Agent", client.userAgent)`
			`} else {`
linting 2019-05-17 17:23:20 +02:00			`req.Header.Set("User-Agent", client.defaultUserAgent)`
massive refactoring 2018-05-18 22:20:56 +02:00			`}`

add custom http headers, see #133, #46, #76 2019-05-21 20:31:40 +02:00			`// add custom headers`
			`for _, h := range client.headers {`
			`req.Header.Set(h.Name, h.Value)`
			`}`

massive refactoring 2018-05-18 22:20:56 +02:00			`if client.username != "" {`
			`req.SetBasicAuth(client.username, client.password)`
			`}`

			`resp, err := client.client.Do(req)`
			`if err != nil {`
more linting 2021-01-05 00:01:48 +01:00			`var ue *url.Error`
			`if errors.As(err, &ue) {`
massive refactoring 2018-05-18 22:20:56 +02:00			`if strings.HasPrefix(ue.Err.Error(), "x509") {`
apply 3.1 changed 2020-05-08 10:59:45 +02:00			`return nil, fmt.Errorf("invalid certificate: %w", ue.Err)`
massive refactoring 2018-05-18 22:20:56 +02:00			`}`
check error 2018-06-28 08:24:18 +02:00			`}`
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`return nil, err`
massive refactoring 2018-05-18 22:20:56 +02:00			`}`
reduce code reuse 2019-04-13 12:48:26 +02:00
implement VHOST bruteforcing 2018-12-11 21:41:42 +01:00			`return resp, nil`
massive refactoring 2018-05-18 22:20:56 +02:00			`}`