jaeles

• Update dependencies.
• Small improvement to allow proxy can be applied in chrome headless
• Refactor and fix some bugs.

• Small improve to allow proxy can be applied in chrome headless
• Refactor and fix some bugs.

• Added new dns type in signatures to detect subdomain takeover via DNS (experimental).
• Added --fi option and Diff() detection to enable checksum feature for more detection case.
• Refactor and fix some bugs.

Explore new checksum feature here and example signatures here

Explore new DNS signatures here and example signatures here

• Added new routine type in signatures to do simple logic.
• Added --dr option to disable replicate.
• Refactor and fix some bugs.

Explore routine from here here.
Example routine can be found here.

• Refactor entire architecture.
• Added replicate in signatures to easily create a replicate of requests with different ports and prefix.

replicate:
  ports: '8080, 9090'
  prefixes: 'actuator, api, admin'

• Refactor jaeles config commands.
• Added --at option to enable always true detection for observed response.
• Added chunk mode for dealing with a really big file (experimental).
• Small improve on console color.
• Refactor and fix some bugs.

New config command will look like this

Config Command examples:
  # Init default signatures
  jaeles config init

  # Update latest signatures
  jaeles config update
  jaeles config update --repo http://github.com/jaeles-project/another-signatures --user admin --pass admin
  jaeles config update --repo [email protected]/jaeles-project/another-signatures -K your_private_key

  # Reload signatures from a standard signatures folder (contain passives + resources)
  jaeles config reload --signDir ~/standard-signatures/

  # Add custom signatures from folder
  jaeles config add --signDir ~/custom-signatures/

  # Clean old stuff
  jaeles config clean

• Refactor and fix some bugs.
• Improve template engine with sprig.
• Added donce: true for only run detections once.
• Added --json option for store output as JSON.
• Added verbose HTML reports.

• Refactor and fix some bugs.
• Added -A option to run API server without authentication.
• Improve conditions and conclusion with Named Capturing Groups.

For example from this response:

HTTP/1.1 200 OK
Set-Cookie: JSESSIONID=4F6904C386821F445B9C961CF1A10811; Path=/;

we can use RegexSelect("resHeaders", "JSESSIONID=(?P<sess>.*);\\sP") to get 4F6904C386821F445B9C961CF1A10811 as sess variables then can render it in next request with [[.sess]]

• Refactor and fix some bugs.
• Added new variable function to get OS Env OSEnv('ENV_NAME', 'default_value')
• Added Confidence in signatures and HTML report.
• Added -J option to parse special input.

echo '{"BaseURL":"https://example.com/sub/"}' | jaeles scan -s sign.yaml -J 

• Add new HTML report.
• Improve some detections: ContentLength('body'), ContentLength('resHeaders').
• Refactor and fix some bugs.
• Add Fuzz and Replace generators

# Replace generator
Replace()
http://example.com/FUZZ/sample --> http://example.com/PAYLOAD/sample

# Fuzz generator
Fuzz('{{.payload}}')
http://example.com/{{.FUZZ}}/sample --> http://example.com/PAYLOAD/sample

• Improve concurrency.
• Add -H options for custom headers from cli.
• Adding multiple origin compare.
• Refactor and fix some bugs.

• Add -f options for Run host OS command when vulnerability found.
• Improve fuzz signatures.
• Refactor and fix some bugs.
• Add a way for enable passive signature in normal signature. (see sample below)

id: sample-siganture-01
passive: true
info:
  name: Sample 
  risk: Info

• Improve passive detection, Burp plugins and concurrency.
• Add -S option for selector from a file.
• Added filter signature by level (-L option).
• Refactoring a lot of things.
• Fix a lot of bugs.

• Improve signature selector option. Now you can do multiple selectors like this -s 'jira' -s 'tomcat'
• Added -x option for excluding a specific signature.
• Added summary report. Default report path is out/jaeles-summary.txt
• Fix a lot of bugs.

• Added --params 'variable_name=value' options for passing variables from command line.
• Added more in default signature repo.
• Added some mics detection API Exist, StringGrepCmd, RegexGrepCmd.
• Improve Server mode.
• Refactoring a lot of things.
• Fix a lot of bugs.

New Features

• New Passive signatures, enable via --passive option.
• New Conclusions & Conditions.
• New Detection APIs HasPopUp(), ValueOf("variable_name") and more.
• Added Sending client using chrome.
• Added new template delimiter [[.variable]].

Fixes

• Refactoring a lot of things.
• Fix a lot of bugs.

Changelog

• Fix a lot of bugs.
• Improve signature in fuzz and list type.
• Adding new API for variables detail.

The documentation is available here.

Changelog

• Fix a lot of bugs.
• Add new Generator and Detecition API.
• Variables can be used in fuzz signature now.
• Fuzz signature can be used in CLI mode (jaeles scan ...) now.

The documentation is available here.

First release candidate, please visit Official Documentation: https://jaeles-project.github.io/ for usage.