mirror of
https://github.com/OJ/gobuster.git
synced 2024-05-25 16:06:03 +02:00
165 lines
5.3 KiB
Go
165 lines
5.3 KiB
Go
package cmd
|
|
|
|
import (
|
|
"errors"
|
|
"fmt"
|
|
"log"
|
|
|
|
"github.com/OJ/gobuster/v3/cli"
|
|
"github.com/OJ/gobuster/v3/gobusterdir"
|
|
"github.com/OJ/gobuster/v3/helper"
|
|
"github.com/OJ/gobuster/v3/libgobuster"
|
|
"github.com/spf13/cobra"
|
|
)
|
|
|
|
var cmdDir *cobra.Command
|
|
|
|
func runDir(cmd *cobra.Command, args []string) error {
|
|
globalopts, pluginopts, err := parseDirOptions()
|
|
if err != nil {
|
|
return fmt.Errorf("error on parsing arguments: %w", err)
|
|
}
|
|
|
|
plugin, err := gobusterdir.NewGobusterDir(mainContext, globalopts, pluginopts)
|
|
if err != nil {
|
|
return fmt.Errorf("error on creating gobusterdir: %w", err)
|
|
}
|
|
|
|
if err := cli.Gobuster(mainContext, globalopts, plugin); err != nil {
|
|
var wErr *gobusterdir.ErrWildcard
|
|
if errors.As(err, &wErr) {
|
|
return fmt.Errorf("%w. To continue please exclude the status code, the length or use the --wildcard switch", wErr)
|
|
}
|
|
return fmt.Errorf("error on running gobuster: %w", err)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func parseDirOptions() (*libgobuster.Options, *gobusterdir.OptionsDir, error) {
|
|
globalopts, err := parseGlobalOptions()
|
|
if err != nil {
|
|
return nil, nil, err
|
|
}
|
|
|
|
plugin := gobusterdir.NewOptionsDir()
|
|
|
|
httpOpts, err := parseCommonHTTPOptions(cmdDir)
|
|
if err != nil {
|
|
return nil, nil, err
|
|
}
|
|
plugin.Password = httpOpts.Password
|
|
plugin.URL = httpOpts.URL
|
|
plugin.UserAgent = httpOpts.UserAgent
|
|
plugin.Username = httpOpts.Username
|
|
plugin.Proxy = httpOpts.Proxy
|
|
plugin.Cookies = httpOpts.Cookies
|
|
plugin.Timeout = httpOpts.Timeout
|
|
plugin.FollowRedirect = httpOpts.FollowRedirect
|
|
plugin.NoTLSValidation = httpOpts.NoTLSValidation
|
|
plugin.Headers = httpOpts.Headers
|
|
plugin.Method = httpOpts.Method
|
|
|
|
plugin.Extensions, err = cmdDir.Flags().GetString("extensions")
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for extensions: %w", err)
|
|
}
|
|
|
|
if plugin.Extensions != "" {
|
|
ret, err := helper.ParseExtensions(plugin.Extensions)
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for extensions: %w", err)
|
|
}
|
|
plugin.ExtensionsParsed = ret
|
|
}
|
|
|
|
plugin.StatusCodesBlacklist, err = cmdDir.Flags().GetString("status-codes-blacklist")
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for status-codes-blacklist: %w", err)
|
|
}
|
|
|
|
// blacklist will override the normal status codes
|
|
if plugin.StatusCodesBlacklist != "" {
|
|
ret, err := helper.ParseCommaSeparatedInt(plugin.StatusCodesBlacklist)
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for status-codes-blacklist: %w", err)
|
|
}
|
|
plugin.StatusCodesBlacklistParsed = ret
|
|
} else {
|
|
// parse normal status codes
|
|
plugin.StatusCodes, err = cmdDir.Flags().GetString("status-codes")
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for status-codes: %w", err)
|
|
}
|
|
ret, err := helper.ParseCommaSeparatedInt(plugin.StatusCodes)
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for status-codes: %w", err)
|
|
}
|
|
plugin.StatusCodesParsed = ret
|
|
}
|
|
|
|
plugin.UseSlash, err = cmdDir.Flags().GetBool("add-slash")
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for add-slash: %w", err)
|
|
}
|
|
|
|
plugin.Expanded, err = cmdDir.Flags().GetBool("expanded")
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for expanded: %w", err)
|
|
}
|
|
|
|
plugin.NoStatus, err = cmdDir.Flags().GetBool("no-status")
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for no-status: %w", err)
|
|
}
|
|
|
|
plugin.HideLength, err = cmdDir.Flags().GetBool("hide-length")
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for hide-length: %w", err)
|
|
}
|
|
|
|
plugin.WildcardForced, err = cmdDir.Flags().GetBool("wildcard")
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for wildcard: %w", err)
|
|
}
|
|
|
|
plugin.DiscoverBackup, err = cmdDir.Flags().GetBool("discover-backup")
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for discover-backup: %w", err)
|
|
}
|
|
|
|
plugin.ExcludeLength, err = cmdDir.Flags().GetIntSlice("exclude-length")
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("invalid value for excludelength: %w", err)
|
|
}
|
|
|
|
return globalopts, plugin, nil
|
|
}
|
|
|
|
func init() {
|
|
cmdDir = &cobra.Command{
|
|
Use: "dir",
|
|
Short: "Uses directory/file enumeration mode",
|
|
RunE: runDir,
|
|
}
|
|
|
|
if err := addCommonHTTPOptions(cmdDir); err != nil {
|
|
log.Fatalf("%v", err)
|
|
}
|
|
cmdDir.Flags().StringP("status-codes", "s", "", "Positive status codes (will be overwritten with status-codes-blacklist if set)")
|
|
cmdDir.Flags().StringP("status-codes-blacklist", "b", "404", "Negative status codes (will override status-codes if set)")
|
|
cmdDir.Flags().StringP("extensions", "x", "", "File extension(s) to search for")
|
|
cmdDir.Flags().BoolP("expanded", "e", false, "Expanded mode, print full URLs")
|
|
cmdDir.Flags().BoolP("no-status", "n", false, "Don't print status codes")
|
|
cmdDir.Flags().Bool("hide-length", false, "Hide the length of the body in the output")
|
|
cmdDir.Flags().BoolP("add-slash", "f", false, "Append / to each request")
|
|
cmdDir.Flags().Bool("wildcard", false, "Force continued operation when wildcard found")
|
|
cmdDir.Flags().BoolP("discover-backup", "d", false, "Upon finding a file search for backup files")
|
|
cmdDir.Flags().IntSlice("exclude-length", []int{}, "exclude the following content length (completely ignores the status). Supply multiple times to exclude multiple sizes.")
|
|
|
|
cmdDir.PersistentPreRun = func(cmd *cobra.Command, args []string) {
|
|
configureGlobalOptions()
|
|
}
|
|
|
|
rootCmd.AddCommand(cmdDir)
|
|
}
|