feat: pass metadata & general improvements

nohehf · nohehf · commit db35accef445 · 2023-04-24T17:04:32.000+02:00
diff --git a/.gitignore b/.gitignore
@@ -11,4 +11,7 @@ testers
 /goctopus
 
 dist/
-.env
+.env
+
+# root go files (often used for testing / prototyping)
+/*.go
diff --git a/pkg/address/address.go b/pkg/address/address.go
@@ -1,14 +1,18 @@
 package address
 
+import "strings"
+
 type Addr struct {
-	Address string
-	Source  string
+	Address  string
+	Source   string
+	Metadata map[string]string
 }
 
 func New(address string) *Addr {
 	return &Addr{
-		Address: address,
-		Source:  address,
+		Address:  address,
+		Source:   address,
+		Metadata: map[string]string{},
 	}
 }
 
@@ -19,3 +23,19 @@ func NewSourced(address, source string) *Addr {
 		Source:  source,
 	}
 }
+
+func (a *Addr) AddMetadata(key, value string) {
+	a.Metadata[key] = value
+}
+
+func (a *Addr) Copy() *Addr {
+	metadataCopy := make(map[string]string)
+	for k, v := range a.Metadata {
+		metadataCopy[k] = v
+	}
+	return &Addr{
+		Address:  strings.Clone(a.Address),
+		Source:   strings.Clone(a.Source),
+		Metadata: metadataCopy,
+	}
+}
diff --git a/pkg/config/config.go b/pkg/config/config.go
@@ -76,7 +76,7 @@ func LoadFromArgs() {
 		log.SetLevel(log.ErrorLevel)
 	}
 
-	if err := ValidateConfig(&config); err != nil {
+	if err := validateConfig(&config, true); err != nil {
 		log.Error(err)
 		flag.PrintDefaults()
 		os.Exit(1)
@@ -85,7 +85,10 @@ func LoadFromArgs() {
 	c = &config
 }
 
-func ValidateConfig(conf *Config) error {
+// Validates the config.
+// `cli` is used to determine if the config is loaded from the CLI or from a file.
+// If cli is false, then the addresses check is skipped.
+func validateConfig(conf *Config, isCli bool) error {
 	if conf.MaxWorkers < 1 {
 		return errors.New("[Invalid config] Max workers must be greater than 0")
 	}
@@ -98,15 +101,15 @@ func ValidateConfig(conf *Config) error {
 		return errors.New("[Invalid config] Introspection has to be enabled to use field suggestion fingerprinting")
 	}
 
-	if conf.InputFile == "" && len(conf.Addresses) == 0 {
+	if isCli && c.InputFile == "" && len(c.Addresses) == 0 {
 		return errors.New("[Invalid config] Please specify an input file or a list of addresses")
 	}
 
 	return nil
 }
 
 func Load(config *Config) {
-	if err := ValidateConfig(config); err != nil {
+	if err := validateConfig(config, false); err != nil {
 		log.Error(err)
 		flag.PrintDefaults()
 		os.Exit(1)
diff --git a/pkg/domain/enumeration.go b/pkg/domain/enumeration.go
@@ -11,7 +11,9 @@ import (
 
 func makeCallback(domain *address.Addr, subDomains chan *address.Addr) func(s *resolve.HostEntry) {
 	return func(s *resolve.HostEntry) {
-		subDomains <- address.NewSourced(s.Host, domain.Source)
+		addr := domain.Copy()
+		addr.Address = s.Host
+		subDomains <- addr
 	}
 }
 
diff --git a/pkg/domain/fingerprint.go b/pkg/domain/fingerprint.go
@@ -48,6 +48,7 @@ func FingerprintSubDomain(domain *address.Addr) (*output.FingerprintOutput, erro
 		}
 		output.Domain = domain.Address
 		output.Source = domain.Source
+		output.Metadata = domain.Metadata
 		return output, nil
 	}
 	return nil, errors.New("no graphql endpoint found")
diff --git a/pkg/goctopus/fingerprint.go b/pkg/goctopus/fingerprint.go
@@ -17,7 +17,7 @@ func worker(addresses chan *address.Addr, output chan *output.FingerprintOutput,
 	log.Debugf("Worker %d instantiated", workerId)
 	for address := range addresses {
 		log.Debugf("Worker %d started on: %v", workerId, address)
-		res, err := FingerprintAddress(address)
+		res, err := fingerprintAddress(address)
 		if err == nil {
 			log.Debugf("Worker %d found endpoint: %v", workerId, res)
 			output <- res
@@ -26,7 +26,10 @@ func worker(addresses chan *address.Addr, output chan *output.FingerprintOutput,
 	log.Debugf("Worker %d finished", workerId)
 }
 
-func FingerprintAddress(address *address.Addr) (*output.FingerprintOutput, error) {
+/**
+ * Fingerprint an address, without subdomain enumeration
+ */
+func fingerprintAddress(address *address.Addr) (*output.FingerprintOutput, error) {
 	// If the domain is a url, we don't need to crawl it
 	if utils.IsUrl(address.Address) {
 		return endpoint.FingerprintEndpoint(address)
@@ -65,6 +68,6 @@ func FingerprintAddresses(addresses chan *address.Addr, output chan *output.Fing
 	close(enumeratedAddresses)
 	log.Debugf("Waiting for workers to finish...")
 	workersWg.Wait()
-	close(output)
 	log.Debugf("All workers finished")
+	close(output)
 }
diff --git a/pkg/goctopus/single_address.go b/pkg/goctopus/single_address.go
@@ -0,0 +1,20 @@
+package goctopus
+
+import (
+	"github.com/Escape-Technologies/goctopus/pkg/address"
+	out "github.com/Escape-Technologies/goctopus/pkg/output"
+)
+
+// Fingerprints a single address and outputs a slice of FingerprintOutput.
+func FingerprintAddress(addr *address.Addr) []*out.FingerprintOutput {
+	outputSlice := make([]*out.FingerprintOutput, 0)
+	output := make(chan *out.FingerprintOutput, 1)
+	addresses := make(chan *address.Addr, 1)
+	addresses <- addr
+	close(addresses)
+	go FingerprintAddresses(addresses, output)
+	for fingerprintOutput := range output {
+		outputSlice = append(outputSlice, fingerprintOutput)
+	}
+	return outputSlice
+}
diff --git a/pkg/output/output.go b/pkg/output/output.go
@@ -12,7 +12,6 @@ type FingerprintResult string
 const (
 	ResultOpenGraphql         FingerprintResult = "OPEN_GRAPHQL"
 	ResultAuthentifiedGraphql FingerprintResult = "AUTHENTIFIED_GRAPHQL"
-	// ResultMaybeGraphql FingerprintResult = "MAYBE_GRAPHQL"
 )
 
 type FingerprintOutput struct {
@@ -21,7 +20,8 @@ type FingerprintOutput struct {
 	Url             string            `json:"url"`
 	Introspection   bool              `json:"introspection"`
 	FieldSuggestion bool              `json:"field_suggestion"`
-	Source          string            `json:"source"` // the original address used to fingerprint the endpoint
+	Source          string            `json:"source"`   // the original address used to fingerprint the endpoint
+	Metadata        map[string]string `json:"metadata"` // optional metadata
 }
 
 func (o *FingerprintOutput) MarshalJSON() ([]byte, error) {
@@ -56,5 +56,9 @@ func marshalOutput(o *FingerprintOutput, c *config.Config) ([]byte, error) {
 		outputMap["domain"] = utils.DomainFromUrl(o.Url)
 	}
 
+	if o.Metadata == nil || len(o.Metadata) == 0 {
+		delete(outputMap, "metadata")
+	}
+
 	return json.Marshal(outputMap)
 }

Original file line number	Diff line number	Diff line change
`@@ -76,7 +76,7 @@ func LoadFromArgs() {`
`76`	`76`	`log.SetLevel(log.ErrorLevel)`
`77`	`77`	`}`
`78`	`78`
`79`		`- if err := ValidateConfig(&config); err != nil {`
	`79`	`+ if err := validateConfig(&config, true); err != nil {`
`80`	`80`	`log.Error(err)`
`81`	`81`	`flag.PrintDefaults()`
`82`	`82`	`os.Exit(1)`
`@@ -85,7 +85,10 @@ func LoadFromArgs() {`
`85`	`85`	`c = &config`
`86`	`86`	`}`
`87`	`87`
`88`		`-func ValidateConfig(conf *Config) error {`
	`88`	`+// Validates the config.`
	`89`	+// `cli` is used to determine if the config is loaded from the CLI or from a file.
	`90`	`+// If cli is false, then the addresses check is skipped.`
	`91`	`+func validateConfig(conf *Config, isCli bool) error {`
`89`	`92`	`if conf.MaxWorkers < 1 {`
`90`	`93`	`return errors.New("[Invalid config] Max workers must be greater than 0")`
`91`	`94`	`}`
`@@ -98,15 +101,15 @@ func ValidateConfig(conf *Config) error {`
`98`	`101`	`return errors.New("[Invalid config] Introspection has to be enabled to use field suggestion fingerprinting")`
`99`	`102`	`}`
`100`	`103`
`101`		`- if conf.InputFile == "" && len(conf.Addresses) == 0 {`
	`104`	`+ if isCli && c.InputFile == "" && len(c.Addresses) == 0 {`
`102`	`105`	`return errors.New("[Invalid config] Please specify an input file or a list of addresses")`
`103`	`106`	`}`
`104`	`107`
`105`	`108`	`return nil`
`106`	`109`	`}`
`107`	`110`
`108`	`111`	`func Load(config *Config) {`
`109`		`- if err := ValidateConfig(config); err != nil {`
	`112`	`+ if err := validateConfig(config, false); err != nil {`
`110`	`113`	`log.Error(err)`
`111`	`114`	`flag.PrintDefaults()`
`112`	`115`	`os.Exit(1)`
Original file line number	Diff line number	Diff line change
`@@ -11,7 +11,9 @@ import (`
`11`	`11`
`12`	`12`	`func makeCallback(domain address.Addr, subDomains chan address.Addr) func(s *resolve.HostEntry) {`
`13`	`13`	`return func(s *resolve.HostEntry) {`
`14`		`- subDomains <- address.NewSourced(s.Host, domain.Source)`
	`14`	`+ addr := domain.Copy()`
	`15`	`+ addr.Address = s.Host`
	`16`	`+ subDomains <- addr`
`15`	`17`	`}`
`16`	`18`	`}`
`17`	`19`
Original file line number	Diff line number	Diff line change
`@@ -48,6 +48,7 @@ func FingerprintSubDomain(domain address.Addr) (output.FingerprintOutput, erro`
`48`	`48`	`}`
`49`	`49`	`output.Domain = domain.Address`
`50`	`50`	`output.Source = domain.Source`
	`51`	`+ output.Metadata = domain.Metadata`
`51`	`52`	`return output, nil`
`52`	`53`	`}`
`53`	`54`	`return nil, errors.New("no graphql endpoint found")`
Original file line number	Diff line number	Diff line change
`@@ -12,7 +12,6 @@ type FingerprintResult string`
`12`	`12`	`const (`
`13`	`13`	`ResultOpenGraphql FingerprintResult = "OPEN_GRAPHQL"`
`14`	`14`	`ResultAuthentifiedGraphql FingerprintResult = "AUTHENTIFIED_GRAPHQL"`
`15`		`- // ResultMaybeGraphql FingerprintResult = "MAYBE_GRAPHQL"`
`16`	`15`	`)`
`17`	`16`
`18`	`17`	`type FingerprintOutput struct {`
`@@ -21,7 +20,8 @@ type FingerprintOutput struct {`
`21`	`20`	Url string `json:"url"`
`22`	`21`	Introspection bool `json:"introspection"`
`23`	`22`	FieldSuggestion bool `json:"field_suggestion"`
`24`		- Source string `json:"source"` // the original address used to fingerprint the endpoint
	`23`	+ Source string `json:"source"` // the original address used to fingerprint the endpoint
	`24`	+ Metadata map[string]string `json:"metadata"` // optional metadata
`25`	`25`	`}`
`26`	`26`
`27`	`27`	`func (o *FingerprintOutput) MarshalJSON() ([]byte, error) {`
`@@ -56,5 +56,9 @@ func marshalOutput(o FingerprintOutput, c config.Config) ([]byte, error) {`
`56`	`56`	`outputMap["domain"] = utils.DomainFromUrl(o.Url)`
`57`	`57`	`}`
`58`	`58`
	`59`	`+ if o.Metadata == nil \|\| len(o.Metadata) == 0 {`
	`60`	`+ delete(outputMap, "metadata")`
	`61`	`+ }`
	`62`	`+`
`59`	`63`	`return json.Marshal(outputMap)`
`60`	`64`	`}`