Changelog
- eeda86c chore: update contributors [skip ci]
- d7a245b chore: update contributors [skip ci]
- d3a9153 Update logo
- 65ae78d Update image
- aa4b5ef Update docs
- d58add5 Update dependabot.yml
- 587f136 Update README.md
- 16e2b54 Update README.md
- 25dbbc3 Release v2.9.2
- 3fc6a4b Merge pull request #522 from hahwul/dev
- 00afb7f Merge pull request #520 from hahwul/change-logo
- 367bf5c Merge pull request #517 from hahwul/main
- 894b989 Merge pull request #516 from hahwul/add-dependabot.yml
- 4949a34 Merge pull request #514 from hahwul/dependabot/go_modules/golang.org/x/crypto-0.17.0
- cfe4a5d Merge pull request #512 from n00b-bot/dev
- 31b28af Merge pull request #510 from hahwul/dev
- 81a86c3 Fixed GHCR
- ee47de9 Fix duplicate Headers by @n00b-bot
- d3e9445 Bump golang.org/x/crypto from 0.14.0 to 0.17.0
dalfox
- v2.9.1
Published by hahwul 11 months ago
Changelog
- 7458557 fixed typo
- 000d2dc chore: update contributors [skip ci]
- 888a922 chore: update contributors [skip ci]
- 4eee518 chore: update contributors [skip ci]
- bc87c48 chore: update contributors [skip ci]
- d4ad424 chore: update contributors [skip ci]
- 0847a6c chore: slice loop replace
- 2058bb8 change deprected config in goreleaser
- 0db30fc Update docs
- 7d91b63 Update docs
- 3344c92 Tap v2.9.1
- 18a9b64 Merge pull request #509 from hahwul/dev
- 2fec671 Merge pull request #508 from hahwul/dev
- f7245e5 Merge pull request #507 from hahwul/dependabot/go_modules/golang.org/x/term-0.14.0
- 150f772 Merge pull request #506 from hahwul/dependabot/go_modules/github.com/labstack/echo/v4-4.11.3
- 88f18a9 Merge pull request #505 from hahwul/dependabot/go_modules/github.com/spf13/cobra-1.8.0
- a5eb519 Merge pull request #504 from hahwul/dependabot/go_modules/golang.org/x/sync-0.5.0
- fa1274e Merge pull request #502 from testwill/slice
- 87f9737 Merge pull request #501 from hahwul/dependabot/go_modules/golang.org/x/net-0.17.0
- d2638d1 Merge pull request #500 from hahwul/dependabot/go_modules/github.com/labstack/echo/v4-4.11.2
- c772674 Merge pull request #499 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.9.3
- c38bbb1 Merge pull request #498 from pr3y/patch-1
- ab56e82 Merge pull request #497 from hahwul/dependabot/go_modules/golang.org/x/term-0.13.0
- 683d51d Merge pull request #496 from hahwul/dependabot/go_modules/golang.org/x/sync-0.4.0
- fb3b054 Merge pull request #495 from hahwul/main
- fb5b372 Merge pull request #491 from hahwul/dependabot/go_modules/golang.org/x/term-0.12.0
- 220fc64 Merge pull request #489 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.16.2
- da75d96 Merge pull request #488 from hahwul/dependabot/go_modules/github.com/swaggo/echo-swagger-1.4.1
- dc05d2b Merge pull request #486 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.9.2
- 6177451 Merge pull request #485 from hahwul/dependabot/go_modules/golang.org/x/term-0.11.0
- 77cafc1 Merge pull request #483 from hahwul/dependabot/go_modules/github.com/labstack/echo/v4-4.11.1
- 0b6c9eb Merge pull request #481 from hahwul/dependabot/go_modules/golang.org/x/term-0.10.0
- 8dfd3f7 Merge pull request #478 from hahwul/dependabot/go_modules/golang.org/x/sync-0.3.0
- 0aa7d15 Merge pull request #477 from hahwul/dependabot/go_modules/golang.org/x/term-0.9.0
- fc4048c Merge pull request #476 from hahwul/dependabot/go_modules/github.com/sirupsen/logrus-1.9.3
- cac7c70 Merge pull request #474 from hahwul/dependabot/go_modules/github.com/stretchr/testify-1.8.4
- ccfce2f Merge pull request #468 from hahwul/dependabot/go_modules/golang.org/x/term-0.8.0
- 68daad4 Merge pull request #467 from hahwul/dependabot/go_modules/golang.org/x/sync-0.2.0
- e7171b1 Merge pull request #465 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.16.1
- a3a2829 Merge pull request #464 from hahwul/dependabot/go_modules/golang.org/x/term-0.7.0
- b3ebf2d Merge pull request #463 from hahwul/dependabot/go_modules/github.com/spf13/cobra-1.7.0
- 4599ba5 Merge pull request #461 from hahwul/dependabot/go_modules/github.com/swaggo/echo-swagger-1.4.0
- 8d2d30c Merge branch 'main' into dependabot/go_modules/golang.org/x/sync-0.4.0
- d52778f Merge branch 'main' into dependabot/go_modules/golang.org/x/sync-0.3.0
- 4c6d4fb Merge branch 'main' into dependabot/go_modules/github.com/swaggo/swag-1.16.2
- d8762d6 Fixed warning of actions
- a691e70 Fixed config load bug (#493)
- d3c7879 Change deprecated method in Go
- ad22bb0 Bump golang.org/x/term from 0.9.0 to 0.10.0
- 1ed244e Bump golang.org/x/term from 0.8.0 to 0.9.0
- 73fda37 Bump golang.org/x/term from 0.7.0 to 0.8.0
- 9e35f94 Bump golang.org/x/term from 0.6.0 to 0.7.0
- 7742969 Bump golang.org/x/term from 0.13.0 to 0.14.0
- 8c5e764 Bump golang.org/x/term from 0.12.0 to 0.13.0
- 45b488f Bump golang.org/x/term from 0.11.0 to 0.12.0
- 45e8d4a Bump golang.org/x/term from 0.10.0 to 0.11.0
- 66f1c8c Bump golang.org/x/sync from 0.4.0 to 0.5.0
- 0296204 Bump golang.org/x/sync from 0.3.0 to 0.4.0
- bc15f90 Bump golang.org/x/sync from 0.2.0 to 0.3.0
- 59df8c2 Bump golang.org/x/sync from 0.1.0 to 0.2.0
- c6dca97 Bump golang.org/x/net from 0.12.0 to 0.17.0
- 72df3e4 Bump github.com/swaggo/swag from 1.8.12 to 1.16.1
- 1f617fe Bump github.com/swaggo/swag from 1.16.1 to 1.16.2
- ad46c15 Bump github.com/swaggo/echo-swagger from 1.4.0 to 1.4.1
- 6826a74 Bump github.com/swaggo/echo-swagger from 1.3.5 to 1.4.0
- c44d3c9 Bump github.com/stretchr/testify from 1.8.2 to 1.8.4
- e564edb Bump github.com/spf13/cobra from 1.7.0 to 1.8.0
- 32b67fb Bump github.com/spf13/cobra from 1.6.1 to 1.7.0
- 2350f7b Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.3
- da78f27 Bump github.com/labstack/echo/v4 from 4.11.2 to 4.11.3
- 4c05aa6 Bump github.com/labstack/echo/v4 from 4.11.1 to 4.11.2
- b60bb15 Bump github.com/labstack/echo/v4 from 4.10.2 to 4.11.1
- 16c4434 Bump github.com/chromedp/chromedp from 0.9.2 to 0.9.3
- 90fc730 Bump github.com/chromedp/chromedp from 0.9.1 to 0.9.2
- 1d8db47 Add go 1.21 for CI
- ea7379f Add error handling in parameterAnalysis (#503)
- d35a7b1 Add 1.18-1.20 CI flow
dalfox
- v2.9.0
Published by hahwul over 1 year ago
Summary
- Add
--output-reqeust,--output-responseflag for HTTP Raw Req/Res - Add HAR file writing support (https://github.com/hahwul/dalfox/issues/439)
- Add arm64(apple sillicon) docker image in GHCR
- Update Packages
- Fixed bugs (https://github.com/hahwul/dalfox/pull/453)
Changelog
- 61be435 fix: small typo errors
- 3c5c8da chore: update contributors [skip ci]
- c344c58 chore: update contributors [skip ci]
- 64226be chore: update contributors [skip ci]
- 8eada06 chore: update contributors [skip ci]
- 6b7b555 chore: update contributors [skip ci]
- a7de6ac chore: update contributors [skip ci]
- b3dc29b add HAR file writing support (#439)
- 51a659e Update test code
- dc5d11b Update test code
- 32d8f63 Update parameterAnlaysis.go
- 7d01041 Update parameter-mining.md
- 681b809 Update param.go
- 1b559a5 Update json.md
- 5773cf0 Update json.md
- 00a1899 Update index.md
- 6451c5b Update found-action.md
- 83ec9f7 Update format-of-poc.md
- ac5a9e1 Update doc
- b5769e1 Update descriptions
- 9515691 Update banner
- a33988a Update README.md
- 5244169 Update README
- 6c24c65 Tap 2.9.0
- 094a710 Remove race
- ff31dab Merge pull request #7 from 0xflotus/patch-3
- 28f4446 Merge pull request #6 from 0xflotus/patch-3
- 8f74dd1 Merge pull request #5 from 0xflotus/patch-2
- a43ae1c Merge pull request #459 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.11
- 0069bc3 Merge pull request #457 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.9.1
- 591e690 Merge pull request #455 from hahwul/dependabot/go_modules/github.com/briandowns/spinner-1.23.0
- b5083df Merge pull request #454 from hahwul/dependabot/go_modules/golang.org/x/term-0.6.0
- 04d833a Merge pull request #453 from rudSarkar/main
- 779f121 Merge pull request #451 from hahwul/dependabot/go_modules/golang.org/x/sync-0.1.0
- 316e1e7 Merge pull request #450 from hahwul/dependabot/go_modules/github.com/stretchr/testify-1.8.2
- a953704 Merge pull request #449 from hahwul/dependabot/go_modules/github.com/briandowns/spinner-1.22.0
- ea9d581 Merge pull request #448 from hahwul/dependabot/go_modules/golang.org/x/net-0.7.0
- 4a8cba2 Merge pull request #447 from hahwul/dependabot/go_modules/golang.org/x/term-0.5.0
- d22d80a Merge pull request #445 from hahwul/dependabot/go_modules/github.com/labstack/echo/v4-4.10.2
- ae52c66 Merge pull request #443 from hahwul/dependabot/go_modules/github.com/PuerkitoBio/goquery-1.8.1
- 09468c4 Merge pull request #440 from aidansteele/main
- 08854c2 Merge pull request #438 from hahwul/dependabot/go_modules/github.com/briandowns/spinner-1.21.0
- 53410a7 Merge pull request #437 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.10
- 0f003e7 Merge pull request #436 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.8.7
- bc3a875 Merge pull request #433 from InfoSec-Le/main
- f78a653 Merge pull request #432 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.9
- 863c1ce Merge pull request #427 from dkegel-fastly/dkegel-issue426-payloadbox-typo
- d7cfae5 Merge pull request #425 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.8
- eb8f109 Merge pull request #419 from hahwul/dependabot/go_modules/github.com/spf13/cobra-1.6.1
- de0b838 Merge pull request #418 from hahwul/dependabot/go_modules/github.com/stretchr/testify-1.8.1
- c176094 Merge pull request #415 from hahwul/dependabot/go_modules/github.com/labstack/echo/v4-4.9.1
- ceea290 Merge pull request #414 from hahwul/dependabot/go_modules/github.com/spf13/cobra-1.6.0
- 0dbbd22 Merge pull request #413 from hahwul/dependabot/go_modules/github.com/swaggo/echo-swagger-1.3.5
- 4154ab4 Merge pull request #411 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.8.6
- 0e7fca0 Merge pull request #4 from 0xflotus/patch-2
- 32187f9 Merge pull request #3 from 0xflotus/patch-1
- 8065723 Merge pull request #2 from 0xflotus/patch-1
- f8f1394 Merge pull request #1 from 0xflotus/patch-1
- 6dc0541 Merge branch 'main' into dependabot/go_modules/golang.org/x/term-0.5.0
- 0a1184d Merge branch 'main' into dependabot/go_modules/github.com/stretchr/testify-1.8.1
- 1484c85 Improve test code
- 7195f11 Improve test code
- 15ff616 Improve interface
- 587e094 Error handled for index out of range
- 0b6a4ed Bump golang.org/x/term from 0.5.0 to 0.6.0
- f0c1af3 Bump golang.org/x/term from 0.0.0-20210927222741-03fcf44c2211 to 0.5.0
- 0146b90 Bump golang.org/x/sync from 0.0.0-20220722155255-886fb9371eb4 to 0.1.0
- 8f2513d Bump golang.org/x/net from 0.0.0-20220722155237-a158d28d115b to 0.7.0
- 0dc2990 Bump github.com/swaggo/swag from 1.8.9 to 1.8.10
- 0602158 Bump github.com/swaggo/swag from 1.8.8 to 1.8.9
- bc8128d Bump github.com/swaggo/swag from 1.8.6 to 1.8.8
- c64a9ff Bump github.com/swaggo/swag from 1.8.10 to 1.8.11
- 3530d42 Bump github.com/swaggo/echo-swagger from 1.3.4 to 1.3.5
- 62ef0f8 Bump github.com/stretchr/testify from 1.8.1 to 1.8.2
- e27eac7 Bump github.com/stretchr/testify from 1.8.0 to 1.8.1
- 966d923 Bump github.com/spf13/cobra from 1.6.0 to 1.6.1
- 722cbbb Bump github.com/spf13/cobra from 1.5.0 to 1.6.0
- 014bb5f Bump github.com/labstack/echo/v4 from 4.9.1 to 4.10.2
- 583c043 Bump github.com/labstack/echo/v4 from 4.9.0 to 4.9.1
- 4a2191e Bump github.com/chromedp/chromedp from 0.8.7 to 0.9.1
- b1995bb Bump github.com/chromedp/chromedp from 0.8.6 to 0.8.7
- f4157ea Bump github.com/chromedp/chromedp from 0.8.5 to 0.8.6
- 180ba57 Bump github.com/briandowns/spinner from 1.22.0 to 1.23.0
- 9f09c01 Bump github.com/briandowns/spinner from 1.21.0 to 1.22.0
- 218d2c1 Bump github.com/briandowns/spinner from 1.19.0 to 1.21.0
- f9045f1 Bump github.com/PuerkitoBio/goquery from 1.8.0 to 1.8.1
- 782255c Add documents for HAR
- efcef0f Add check script
- a74f4ec Add arm64(apple sillicon) docker image in GHCR
- e74c5da Add HarWriter in Interface
- d4b2055 --remote-payloads: fix typo 'paylaodbox' [issue 426]
- e8f9d49 (#423) Add --output-request and --output-response flags
- fc61602 (#422) Add MessageStr in All logs
dalfox
- v2.8.2
Published by hahwul about 2 years ago
Summary
- Fixed #409 bug (thx to @tekcap)
Changelog
- 0fb621a Tap v2.8.2
- 979d53f Merge pull request #408 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.6
- 068c94b Bump github.com/swaggo/swag from 1.8.5 to 1.8.6
- 6472b9a (#409) Fixed param analysis bug
dalfox
- v2.8.1
Published by hahwul about 2 years ago
Changelog
- ef8bec6 Update docker-publish.yml
- 9586ed5 Tap v2.8.1
- edf621b Fixed bug
- 3519162 Fixed bug
dalfox
- v2.8.0
Published by hahwul about 2 years ago
Summary
- HAR format support in FILE mode / Improve FILE/PIPE Banner
- Fixed JSON bug in file/pipe mode, Improve JSON Printing
- Improve PA logic and inJS Scan
- Add
--reportand--report-formatflags (doc)
Changelog
- f77d7ef v2.8.0-dev tap
- 3b90dc1 chore: update contributors [skip ci]
- 86ec0b7 Update README
- e6a6933 Update Documents
- 43e3a27 Update
- 0e29014 Tap v2.8.0
- 497ab76 Merge pull request #407 from hahwul/dependabot/go_modules/github.com/labstack/echo/v4-4.9.0
- 445975e Merge pull request #404 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.8.5
- c4b77d0 Merge pull request #403 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.5
- 456c46a Merge pull request #398 from hahwul/dependabot/go_modules/github.com/swaggo/echo-swagger-1.3.4
- 7141cad Merge pull request #397 from hahwul/dependabot/go_modules/github.com/briandowns/spinner-1.19.0
- 7f6af6b Merge pull request #395 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.8.3
- 9522b08 Merge pull request #394 from hahwul/dependabot/go_modules/github.com/sirupsen/logrus-1.9.0
- 35c3eb2 Merge pull request #393 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.4
- ae3161c Merge pull request #390 from hahwul/dependabot/go_modules/github.com/stretchr/testify-1.8.0
- 5919d0f Merge pull request #389 from hahwul/dependabot/go_modules/github.com/stretchr/testify-1.7.5
- d7a4b96 Merge pull request #387 from hahwul/dependabot/go_modules/github.com/spf13/cobra-1.5.0
- 94ae42d Merge pull request #384 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.3
- 6a5ea7f Merge pull request #383 from hahwul/dependabot/go_modules/github.com/swaggo/echo-swagger-1.3.3
- 351672a Merge pull request #382 from hahwul/dependabot/go_modules/github.com/stretchr/testify-1.7.2
- 4dee653 Merge pull request #376 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.8.2
- 4b22de7 Merge pull request #373 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.2
- 8250778 Merge branch 'main' into dependabot/go_modules/github.com/swaggo/echo-swagger-1.3.4
- cbe12d8 Improve github workflow file
- 0efb4eb Improve PA
- 0393e8d Create docker-publish.yml
- 5f54995 Bump github.com/swaggo/swag from 1.8.4 to 1.8.5
- 22dc207 Bump github.com/swaggo/swag from 1.8.3 to 1.8.4
- 6963489 Bump github.com/swaggo/swag from 1.8.2 to 1.8.3
- 20c262b Bump github.com/swaggo/swag from 1.8.1 to 1.8.2
- 3d97038 Bump github.com/swaggo/echo-swagger from 1.3.3 to 1.3.4
- 30e27d0 Bump github.com/swaggo/echo-swagger from 1.3.2 to 1.3.3
- 7c27015 Bump github.com/stretchr/testify from 1.7.5 to 1.8.0
- 491e9f7 Bump github.com/stretchr/testify from 1.7.2 to 1.7.5
- e2b625c Bump github.com/stretchr/testify from 1.7.1 to 1.7.2
- e90634c Bump github.com/spf13/cobra from 1.4.0 to 1.5.0
- 6b5b5b6 Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
- 5370179 Bump github.com/labstack/echo/v4 from 4.7.2 to 4.9.0
- 258c4d5 Bump github.com/chromedp/chromedp from 0.8.3 to 0.8.5
- dad8f8d Bump github.com/chromedp/chromedp from 0.8.2 to 0.8.3
- 237781b Bump github.com/chromedp/chromedp from 0.8.1 to 0.8.2
- 6223a3b Bump github.com/briandowns/spinner from 1.18.1 to 1.19.0
- 1dfc1da Add detail param analysis result
- a2c0c81 (#380) HAR format support in FILE mode / Improve FILE/PIPE Banner
- 3f999f4 (#379) Add report flag
- 506cd6b (#375) Fixed JSON bug in file/pipe mode, Improve JSON Printing
- f4c9c7b (#364) Improve PA logic and inJS Scan
dalfox
- v2.7.5
Published by hahwul over 2 years ago
Summary
- Improve XSS Patterns (#362 #368)
- Set Maximum for Headless Browser
- Improve codes and update packages
Changelog
- 9c652ca tap 2.7.5
- accad5e Merge pull request #372 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.8.1
- 43cdbd5 Merge pull request #371 from hahwul/dependabot/go_modules/github.com/swaggo/echo-swagger-1.3.2
- cd911e9 Merge pull request #366 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.1
- b84e850 Improve codes
- 451526b Bump github.com/swaggo/swag from 1.8.0 to 1.8.1
- 54b9537 Bump github.com/swaggo/echo-swagger from 1.3.0 to 1.3.2
- 9e93263 Bump github.com/chromedp/chromedp from 0.8.0 to 0.8.1
- 8bc67a3 (#368) Add ontransitionend handler xss
- e2f9c65 (#362) Improve XSS Patterns
- eb0d6fe (#352) Set Maximum for Headless Browser
dalfox
- v2.7.4
Published by hahwul over 2 years ago
Changelog
- 83ad014 tap v2.7.4
- 14995be Update README.md
- 88a3d72 (#363) Add defense code
dalfox
- v2.7.3
Published by hahwul over 2 years ago
Summary
- Add error handling in Gzip response body
- Improve Code quality
- Fixed Path-base XSS bug
- Fixed bad XSS pattern
Changelog
- 7a4bcf3 y
- 497fd15 tap v2.7.3
- efafe9b fixed typo
- a7944b2 Update README.md
- f6cd2e9 Fixed bug
- f681a48 Code quality improvement
- 71e40b8 (#365) Fixed issue
- 1c2ebec (#363) Add error handling
dalfox
- v2.7.2
Published by hahwul over 2 years ago
Summary
- Fixed #341 #354
Changelog
- 2e4ad1b tap v2.7.2
- bcddcef chore: update contributors [skip ci]
- 24cf7b5 add debug code
- d93d14b Merge pull request #361 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.8.0
- 8edf46b Merge pull request #360 from hahwul/dependabot/go_modules/github.com/labstack/echo/v4-4.7.2
- 974f1a0 Merge pull request #359 from hahwul/dependabot/go_modules/github.com/stretchr/testify-1.7.1
- c08f10a Merge pull request #357 from hahwul/dependabot/go_modules/github.com/spf13/cobra-1.4.0
- 7e0da36 Merge pull request #356 from hahwul/dependabot/go_modules/github.com/labstack/echo/v4-4.7.0
- 2065c50 Merge pull request #355 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.8.0
- 60b7a1a Merge pull request #353 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.7.8
- e4f6b39 Bump github.com/swaggo/swag from 1.7.9 to 1.8.0
- 1c57150 Bump github.com/stretchr/testify from 1.7.0 to 1.7.1
- 1efae43 Bump github.com/spf13/cobra from 1.3.0 to 1.4.0
- 11b02e7 Bump github.com/labstack/echo/v4 from 4.7.0 to 4.7.2
- 0fbe357 Bump github.com/labstack/echo/v4 from 4.6.3 to 4.7.0
- f772f30 Bump github.com/chromedp/chromedp from 0.7.8 to 0.8.0
- 84cf9c3 Bump github.com/chromedp/chromedp from 0.7.7 to 0.7.8
- 50050b1 (#354) remove vrs=false in hit linesum check logic
- 6f3b6e5 (#314) Improve server mode (legacy => lib)
dalfox
- v2.7.1
Published by hahwul over 2 years ago
Summary
- Fixed --only-custom-payload bug
- Added --ignore-param flag
If you use
--ignore-paramflags, you can ignore unwanted parameters when scanning. It can be used anywhere, including the URL mode, Pipe mode, File mode, etc because it is global flag.
Changelog
- 82a1753 Tap v2.7.1
- aa2035a Merge pull request #351 from hahwul/dependabot/go_modules/github.com/briandowns/spinner-1.18.1
- 05c2afa Merge pull request #350 from hahwul/dependabot/go_modules/github.com/swaggo/echo-swagger-1.3.0
- 2c465ff Merge pull request #349 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.7.9
- 09e9af2 Merge pull request #348 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.7.7
- 62d1f2e Merge pull request #340 from hahwul/dependabot/go_modules/github.com/swaggo/echo-swagger-1.2.0
- 3ff32dd Merge pull request #339 from hahwul/dependabot/go_modules/github.com/labstack/echo/v4-4.6.3
- 5a190df Bump github.com/swaggo/swag from 1.7.8 to 1.7.9
- 2e3efaa Bump github.com/swaggo/echo-swagger from 1.2.0 to 1.3.0
- 999a1e4 Bump github.com/swaggo/echo-swagger from 1.1.4 to 1.2.0
- 6c05b98 Bump github.com/labstack/echo/v4 from 4.6.1 to 4.6.3
- fe08583 Bump github.com/chromedp/chromedp from 0.7.6 to 0.7.7
- dbee447 Bump github.com/briandowns/spinner from 1.18.0 to 1.18.1
- 872067f (#344) Fixed --only-custom-payload bug
- e9d75b5 (#342) Add --ignore-param flag and change func 'CheckInspectionParam'
dalfox
- v2.7.0
Published by hahwul almost 3 years ago
Summary
- Add BAV Module
- ESI Injection
- Support to windows/arm64
- Upgrade go dependency (1.16 to 1.17)
- Add Severity in PoC Object
- Improve SXSS Mode
- Improve Code Quality
- Improve libraty interface
- Fixed bugs
- Update dalfox web page and documentation
Changelog
- 33125a5 update pre-release script
- f1a2c8c update go.mod and go.sum
- 4b96576 tap v2.7.0-dev
- 4c2166f tap v2.7.0
- dab368e chore: update contributors [skip ci]
- 310495b chore: update contributors [skip ci]
- cfa53ae build: upgrade
godirective ingo.modto 1.17 - e5656f8 [ImgBot] Optimize images
- 97c9a57 Update test code
- 5987355 Update readme
- 58b190f Update index.md
- 5627c9b Update index.html
- 0023c1b Update index.html
- e306fc4 Update index.html
- e752ea3 Update index.html
- ba3411c Update index.html
- 0bcd4af Update index.html
- d788a69 Update index.html
- 8586e09 Update index.html
- 7f6d74b Update image
- 52093d7 Update go.yml
- d95d6cf Update go.yml
- 0a9f80e Update documents
- c587a51 Update codecov.yml
- d8dc28a Update banner
- 7097628 Update README.md
- d9eb76f Update README.md
- e640424 Update README.md
- c3eefa9 Update README.md
- 9e22d4f Update README.md
- 4b244bc Update README.md
- 7d1c5b1 Update README.md
- 29f3bcb Update README.md
- f580d4a Update README.md
- f8974a9 Update README.md
- e68e3cd Update README.md
- 7ab75c7 Update README.md
- 8d8219d Update README.md
- 0d67e95 Update README.md
- 4aee15b Merge pull request #336 from hahwul/imgbot
- b74c2d9 Merge pull request #335 from ksg97031/main
- acd0b4d Merge pull request #334 from hahwul/dependabot/go_modules/github.com/briandowns/spinner-1.18.0
- 372e7e7 Merge pull request #328 from hahwul/dependabot/go_modules/github.com/briandowns/spinner-1.17.0
- 996d146 Merge pull request #327 from Juneezee/go1.17
- b3c4ce5 Fixed typo
- 46d07f5 Create check-before-release.sh
- 829b790 Create README.md
- 381e79c Bump github.com/briandowns/spinner from 1.17.0 to 1.18.0
- 861db16 Bump github.com/briandowns/spinner from 1.16.0 to 1.17.0
- a54de11 Added TriggerMethod in lib
- 6c4da2d (#333) Modify to use fixed worker and minimum delay values in sxxs mode
- 0d41b0a (#330) Add ESI Injection in BAV
- 5089cbe (#329) Support windows/arm64
dalfox
- v2.6.3
Published by hahwul almost 3 years ago
Summary
- Add severity in PoC Object
- Change builtin and custom grep message in grepping
- Fixed bug (poc-type in poc object)
Changelog
- fbae865 Update verify_test.go
- f9d2271 Update json.md
- d0f46a1 Update json.md
- 0210156 Update docs (#323)
- 4c7137e Merge pull request #324 from hahwul/dependabot/go_modules/github.com/spf13/cobra-1.3.0
- 4819423 Merge branch 'main' of https://github.com/hahwul/dalfox into main
- e59ccb2 Bump github.com/spf13/cobra from 1.2.1 to 1.3.0
- ca8c7e0 (#326) Add poctype in PoC Object
- 8d8665f (#325) Change builtin and custom grep message in grepping
- 4f725b7 (#323) Add severity in PoC Object
dalfox
- v2.6.2
Published by hahwul almost 3 years ago
Summary
- Fixed zero-line bug (response body If there's a reflection in the first row, there's a false negative)
Changelog
- 396642f tap v2.6.2
- 374b3a8 chore: update contributors [skip ci]
- 7e5b209 Update README.md
- 5023086 Update README.md
- 3c6b570 Merge pull request #322 from hahwul/dev
- 25ebc96 Fixed zero-line bug
dalfox
- v2.6.1
Published by hahwul almost 3 years ago
Changelog
- 741f6c0 update package
- 15bf693 tap v2.6.1
- 17be4d8 chore: update contributors [skip ci]
- 4ac6e1f Merge pull request #321 from hahwul/dev
- 5c1e792 Merge pull request #319 from hahwul/main
- fd65dc3 Merge pull request #317 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.7.6
- 90b5090 Merge pull request #316 from hahwul/dependabot/go_modules/github.com/chromedp/chromedp-0.7.6
- 2d832bb Merge branch 'main' of https://github.com/hahwul/dalfox into main
- 2fb311a Bump github.com/swaggo/swag from 1.7.4 to 1.7.6
- 237def7 Bump github.com/chromedp/chromedp from 0.7.4 to 0.7.6
- 9b9f256 (#320) Update lib interface
- 0eabf85 (#318) Add PoCType in lib
- fdb9d74 (#315) Add gzip handling in SendReq function
- 9ab9e6f (#315) Add gzip handling in ParamterAnalysis
dalfox
- v2.6.0
Published by hahwul almost 3 years ago
Changelog
- Improve scanning performance
- Improve result and poc object, printing methods
- Object (when use in the code, when use in the server mode and json result)
- Added InjectType
- Added PoCType
- Added Method
- Added Param
- Added Payload
- Added Evidence
- Added CWE
- Printing
- All PoC outputs now have a common output logic based on the above objects.
- Object (when use in the code, when use in the server mode and json result)
- New flag (--poc-type)
- curl
- httpie
- http-request
- And Fixed bug :D
Commits
c4e9832 tap 2.6.0-dev
9e374ec Update result log
bce1b54 Update result log
58b2004 Update massive mode log
fcf12fa Update log
8f67cd2 Tap v2.6.0
de48315 Modify the issue where the code view sometimes outputs a space.
413f293 Merge pull request #313 from hahwul/dev
dd27479 Log printing and scanning speed improvement.
2be94b2 Fixed no-body bug(segmentation violation, only dev version)
45f9d3c Add test code
a273961 (#312) Create MakePoC to create a common processing logic for PoC
bc9b00f (#312) Add http-request type of pocType
1dc1437 (#312) Add --poc-type
6517025 (#311) Code diet
addc0ce (#310) Add json object
0f98e9e (#310) Add PoCType
31a28c4 (#310) Add PoC Sturct in all testing method
647c9a3 (#310) Add Param, Payload, Evidence in PoC Struct
d418cf2 (#309) Add -d in PoC (when POST poc)
52b9a31 (#261) Add CWE ID
2633697 (#260) Add JSON Document
dalfox
- v2.5.5
Published by hahwul almost 3 years ago
Changelog
cd04c3d update gitignore
005f04c chore: update contributors [skip ci]
b5bc048 chore: update contributors [skip ci]
38e7731 chore: update contributors [skip ci]
78de4fc added support for 2 different http methods in sxss mode
58affd7 Update update.md
d4239fd Update update.md
b1baaa7 Update installation.md
726de92 Tap v2.5.5
777fe02 Remote greetings
c8e5270 Merge pull request #308 from hahwul/dev
ae45a7d Merge pull request #307 from hahwul/dev
ff34fc7 Merge pull request #305 from hahwul/dev
1a47bbc Merge pull request #302 from prashanthar2000/dev
e4064df Merge pull request #299 from hahwul/dependabot/go_modules/github.com/PuerkitoBio/goquery-1.8.0
7a462be Merge pull request #298 from hahwul/dependabot/go_modules/github.com/swaggo/swag-1.7.4
b618862 Merge pull request #296 from hahwul/dependabot/go_modules/github.com/swaggo/echo-swagger-1.1.4
fff47e4 Merge pull request #295 from hahwul/main
81d3867 Change naming of request-method in options model
9b6d698 Bump github.com/swaggo/swag from 1.7.3 to 1.7.4
7324df3 Bump github.com/swaggo/swag from 1.7.3 to 1.7.4
26908d7 Bump github.com/swaggo/echo-swagger from 1.1.3 to 1.1.4
9d056e8 Bump github.com/swaggo/echo-swagger from 1.1.3 to 1.1.4
51dd875 Bump github.com/PuerkitoBio/goquery from 1.7.1 to 1.8.0
9aa662d Bump github.com/PuerkitoBio/goquery from 1.7.1 to 1.8.0
d65d4b1 Add request-method to lib options
d734ae3 (#303) Fixed bug in lib
76a9536 (#297) Add payload pattern and Improved payload processing
dalfox
- v2.5.4
Published by hahwul about 3 years ago
Summary
Improved header parsing and added automatic method identification (Fixed #293)
Changelog
7bd0447 tap v2.5.4
3b88566 Update installation.md
58ccf09 Update installation.md
1352f82 Update installation command
06de244 Update README.md
6a4c9be Update README.md
923aba9 Merge pull request #294 from hahwul/dev
67d8afb (#293) Improved header parsing and added automatic method identification
9c999a9 (#293) Improved header parser
dalfox
- v2.5.3
Published by hahwul about 3 years ago
Fixed segmentation violation issue (https://github.com/hahwul/dalfox/issues/289)
Changelog
bae6851 tap 2.5.3-dev
52c37dc Tap 2.3.5 (#289)
ab29238 Merge pull request #290 from hahwul/dev
6cad9d5 (#289) Add protection code for segmentaion violation
dalfox
- v2.5.2
Published by hahwul about 3 years ago
Summary
- Fixed WAF false positive
- Support homebrew using M1 Macbook (upgrade go1.16)
Changelog
12a2d16 Tap v2.5.2
e88ca44 Merge pull request #288 from hahwul/dev
43494f9 (#285) Remove ignore pattern
Package Rankings
Top 3.79% on Proxy.golang.org