Skip to content

Fix Issue with nuclei parser issue for dns related findings #3153

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
Weltraumschaf merged 3 commits into from
Jul 31, 2025
Merged

Fix Issue with nuclei parser issue for dns related findings #3153

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
aa098a6
Fix Issue with nuclei parser not working properly with findings which…
J12934 Jul 22, 2025
a36d4c0
Regenerate bun snapshots with new bun version
J12934 Jul 31, 2025
89326c4
Make the hostname parsing more stable for urls
J12934 Jul 31, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion scanners/kube-hunter/parser/__snapshots__/parser.test.js.snap
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
// Jest Snapshot v1, https://goo.gl/fbAQLP
// Bun Snapshot v1, https://bun.sh/docs/test/snapshots

exports[`parses result from kind-1.18-in-cluster-scan correctly 1`] = `
[
Expand Down
280 changes: 140 additions & 140 deletions scanners/nikto/parser/__snapshots__/parser.test.js.snap
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,143 @@
// Jest Snapshot v1, https://goo.gl/fbAQLP
// Bun Snapshot v1, https://bun.sh/docs/test/snapshots

exports[`parses www.securecodebox.io result file into findings 1`] = `
[
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 287,
"port": 443,
"references": [
{
"type": "URL",
"value": "https://www.netlify.com/",
},
],
},
"category": "Potential Vulnerability",
"description": null,
"location": "https://www.securecodebox.io/",
"name": "Netlify was identified by the x-nf-request-id header.",
"osi_layer": "NETWORK",
"severity": "HIGH",
},
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 999100,
"port": 443,
"references": null,
},
"category": "Uncommon Header",
"description": null,
"location": "https://www.securecodebox.io/",
"name": "Uncommon header 'cache-status' found, with contents: \\"Netlify Edge\\"; hit.",
"osi_layer": "NETWORK",
"severity": "INFORMATIONAL",
},
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 999103,
"port": 443,
"references": [
{
"type": "URL",
"value": "https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/",
},
],
},
"category": "X-Content-Type-Options Header",
"description": null,
"location": "https://www.securecodebox.io/",
"name": "The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type.",
"osi_layer": "NETWORK",
"severity": "INFORMATIONAL",
},
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 999984,
"port": 443,
"references": [
{
"type": "URL",
"value": "CVE-2003-1418",
},
],
},
"category": "Nikto Finding",
"description": null,
"location": "https://www.securecodebox.io/",
"name": "Server may leak inodes via ETags, header found with file /, inode: 47d154f7c9e7e369b48dafb5778d36d4, size: ssl, mtime: df.",
"osi_layer": "NETWORK",
"severity": "INFORMATIONAL",
},
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 999966,
"port": 443,
"references": [
{
"type": "URL",
"value": "http://breachattack.com/",
},
],
},
"category": "Nikto Finding",
"description": null,
"location": "https://www.securecodebox.io/",
"name": "The Content-Encoding header is set to \\"deflate\\" which may mean that the server is vulnerable to the BREACH attack.",
"osi_layer": "NETWORK",
"severity": "INFORMATIONAL",
},
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 1218,
"port": 443,
"references": null,
},
"category": "Potential Vulnerability",
"description": null,
"location": "https://www.securecodebox.io/sitemap.xml",
"name": "This gives a nice listing of the site content.",
"osi_layer": "NETWORK",
"severity": "HIGH",
},
]
`;

exports[`parses OWASP Juice Shop result file into findings 1`] = `
[
Expand Down Expand Up @@ -4651,142 +4790,3 @@ exports[`parses OWASP Juice Shop result file into findings 1`] = `
},
]
`;

exports[`parses www.securecodebox.io result file into findings 1`] = `
[
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 287,
"port": 443,
"references": [
{
"type": "URL",
"value": "https://www.netlify.com/",
},
],
},
"category": "Potential Vulnerability",
"description": null,
"location": "https://www.securecodebox.io/",
"name": "Netlify was identified by the x-nf-request-id header.",
"osi_layer": "NETWORK",
"severity": "HIGH",
},
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 999100,
"port": 443,
"references": null,
},
"category": "Uncommon Header",
"description": null,
"location": "https://www.securecodebox.io/",
"name": "Uncommon header 'cache-status' found, with contents: \\"Netlify Edge\\"; hit.",
"osi_layer": "NETWORK",
"severity": "INFORMATIONAL",
},
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 999103,
"port": 443,
"references": [
{
"type": "URL",
"value": "https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/",
},
],
},
"category": "X-Content-Type-Options Header",
"description": null,
"location": "https://www.securecodebox.io/",
"name": "The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type.",
"osi_layer": "NETWORK",
"severity": "INFORMATIONAL",
},
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 999984,
"port": 443,
"references": [
{
"type": "URL",
"value": "CVE-2003-1418",
},
],
},
"category": "Nikto Finding",
"description": null,
"location": "https://www.securecodebox.io/",
"name": "Server may leak inodes via ETags, header found with file /, inode: 47d154f7c9e7e369b48dafb5778d36d4, size: ssl, mtime: df.",
"osi_layer": "NETWORK",
"severity": "INFORMATIONAL",
},
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 999966,
"port": 443,
"references": [
{
"type": "URL",
"value": "http://breachattack.com/",
},
],
},
"category": "Nikto Finding",
"description": null,
"location": "https://www.securecodebox.io/",
"name": "The Content-Encoding header is set to \\"deflate\\" which may mean that the server is vulnerable to the BREACH attack.",
"osi_layer": "NETWORK",
"severity": "INFORMATIONAL",
},
{
"attributes": {
"banner": "",
"hostname": "www.securecodebox.io",
"ip_addresses": [
"3.70.101.28",
],
"method": "GET",
"niktoId": 1218,
"port": 443,
"references": null,
},
"category": "Potential Vulnerability",
"description": null,
"location": "https://www.securecodebox.io/sitemap.xml",
"name": "This gives a nice listing of the site content.",
"osi_layer": "NETWORK",
"severity": "HIGH",
},
]
`;
Loading
Loading