mirror of
https://github.com/OJ/gobuster.git
synced 2024-05-04 22:46:07 +02:00
204 lines
4.6 KiB
Go
204 lines
4.6 KiB
Go
package libgobuster
|
|
|
|
import (
|
|
"bufio"
|
|
"context"
|
|
"fmt"
|
|
"log"
|
|
"os"
|
|
"strings"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/fatih/color"
|
|
)
|
|
|
|
// PATTERN is the pattern for wordlist replacements in pattern file
|
|
const PATTERN = "{GOBUSTER}"
|
|
|
|
// SetupFunc is the "setup" function prototype for implementations
|
|
type SetupFunc func(*Gobuster) error
|
|
|
|
// ProcessFunc is the "process" function prototype for implementations
|
|
type ProcessFunc func(*Gobuster, string) ([]Result, error)
|
|
|
|
// ResultToStringFunc is the "to string" function prototype for implementations
|
|
type ResultToStringFunc func(*Gobuster, *Result) (*string, error)
|
|
|
|
// Gobuster is the main object when creating a new run
|
|
type Gobuster struct {
|
|
Opts *Options
|
|
plugin GobusterPlugin
|
|
LogInfo *log.Logger
|
|
LogError *log.Logger
|
|
Progress *Progress
|
|
}
|
|
|
|
// NewGobuster returns a new Gobuster object
|
|
func NewGobuster(opts *Options, plugin GobusterPlugin) (*Gobuster, error) {
|
|
var g Gobuster
|
|
g.Opts = opts
|
|
g.plugin = plugin
|
|
g.LogInfo = log.New(os.Stdout, "", log.LstdFlags)
|
|
g.LogError = log.New(os.Stderr, color.New(color.FgRed).Sprint("[ERROR] "), log.LstdFlags)
|
|
g.Progress = NewProgress()
|
|
|
|
return &g, nil
|
|
}
|
|
|
|
func (g *Gobuster) worker(ctx context.Context, wordChan <-chan string, wg *sync.WaitGroup) {
|
|
defer wg.Done()
|
|
for {
|
|
select {
|
|
case <-ctx.Done():
|
|
return
|
|
case word, ok := <-wordChan:
|
|
// worker finished
|
|
if !ok {
|
|
return
|
|
}
|
|
g.Progress.incrementRequests()
|
|
|
|
wordCleaned := strings.TrimSpace(word)
|
|
// Skip "comment" (starts with #), as well as empty lines
|
|
if strings.HasPrefix(wordCleaned, "#") || len(wordCleaned) == 0 {
|
|
break
|
|
}
|
|
|
|
// Mode-specific processing
|
|
err := g.plugin.ProcessWord(ctx, wordCleaned, g.Progress)
|
|
if err != nil {
|
|
// do not exit and continue
|
|
g.Progress.ErrorChan <- err
|
|
continue
|
|
}
|
|
|
|
select {
|
|
case <-ctx.Done():
|
|
case <-time.After(g.Opts.Delay):
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
func (g *Gobuster) getWordlist() (*bufio.Scanner, error) {
|
|
if g.Opts.Wordlist == "-" {
|
|
// Read directly from stdin
|
|
return bufio.NewScanner(os.Stdin), nil
|
|
}
|
|
// Pull content from the wordlist
|
|
wordlist, err := os.Open(g.Opts.Wordlist)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to open wordlist: %w", err)
|
|
}
|
|
|
|
lines, err := lineCounter(wordlist)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to get number of lines: %w", err)
|
|
}
|
|
|
|
// calcutate expected requests
|
|
g.Progress.IncrementTotalRequests(lines)
|
|
|
|
// call the function once with a dummy entry to receive the number
|
|
// of custom words per wordlist word
|
|
customWordsLen := len(g.plugin.AdditionalWords("dummy"))
|
|
if customWordsLen > 0 {
|
|
origExpected := g.Progress.RequestsExpected()
|
|
inc := origExpected * customWordsLen
|
|
g.Progress.IncrementTotalRequests(inc)
|
|
}
|
|
|
|
// rewind wordlist
|
|
_, err = wordlist.Seek(0, 0)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to rewind wordlist: %w", err)
|
|
}
|
|
return bufio.NewScanner(wordlist), nil
|
|
}
|
|
|
|
// Run the busting of the website with the given
|
|
// set of settings from the command line.
|
|
func (g *Gobuster) Run(ctx context.Context) error {
|
|
defer close(g.Progress.ResultChan)
|
|
defer close(g.Progress.ErrorChan)
|
|
|
|
if err := g.plugin.PreRun(ctx); err != nil {
|
|
return err
|
|
}
|
|
|
|
var workerGroup sync.WaitGroup
|
|
workerGroup.Add(g.Opts.Threads)
|
|
|
|
wordChan := make(chan string, g.Opts.Threads)
|
|
|
|
// Create goroutines for each of the number of threads
|
|
// specified.
|
|
for i := 0; i < g.Opts.Threads; i++ {
|
|
go g.worker(ctx, wordChan, &workerGroup)
|
|
}
|
|
|
|
scanner, err := g.getWordlist()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
Scan:
|
|
for scanner.Scan() {
|
|
select {
|
|
case <-ctx.Done():
|
|
break Scan
|
|
default:
|
|
word := scanner.Text()
|
|
perms := g.processPatterns(word)
|
|
// add the original word
|
|
wordChan <- word
|
|
// now create perms
|
|
for _, w := range perms {
|
|
select {
|
|
// need to check here too otherwise wordChan will block
|
|
case <-ctx.Done():
|
|
break Scan
|
|
case wordChan <- w:
|
|
}
|
|
}
|
|
|
|
for _, w := range g.plugin.AdditionalWords(word) {
|
|
select {
|
|
// need to check here too otherwise wordChan will block
|
|
case <-ctx.Done():
|
|
break Scan
|
|
case wordChan <- w:
|
|
}
|
|
}
|
|
}
|
|
}
|
|
close(wordChan)
|
|
workerGroup.Wait()
|
|
|
|
if err := scanner.Err(); err != nil {
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// GetConfigString returns the current config as a printable string
|
|
func (g *Gobuster) GetConfigString() (string, error) {
|
|
return g.plugin.GetConfigString()
|
|
}
|
|
|
|
func (g *Gobuster) processPatterns(word string) []string {
|
|
if g.Opts.PatternFile == "" {
|
|
return nil
|
|
}
|
|
|
|
//nolint:prealloc
|
|
var pat []string
|
|
for _, x := range g.Opts.Patterns {
|
|
repl := strings.ReplaceAll(x, PATTERN, word)
|
|
pat = append(pat, repl)
|
|
}
|
|
return pat
|
|
}
|