diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index a39e441..cff1fb2 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -11,7 +11,7 @@ updates:
directory: "/"
schedule:
interval: "weekly"
- target-branch: "dev"
+ target-branch: "dep"
commit-message:
prefix: "chore"
include: "scope"
@@ -23,7 +23,7 @@ updates:
directory: "/"
schedule:
interval: "daily"
- target-branch: "dev"
+ target-branch: "dep"
commit-message:
prefix: "chore"
include: "scope"
@@ -35,7 +35,7 @@ updates:
directory: "/"
schedule:
interval: "weekly"
- target-branch: "dev"
+ target-branch: "dep"
commit-message:
prefix: "chore"
include: "scope"
diff --git a/.github/release.yml b/.github/release.yml
new file mode 100644
index 0000000..01b4c9d
--- /dev/null
+++ b/.github/release.yml
@@ -0,0 +1,17 @@
+changelog:
+ exclude:
+ authors:
+ - dependabot
+ categories:
+ - title: 🎉 Features
+ labels:
+ - "Type: Enhancement"
+ - title: 🐞 Bugs
+ labels:
+ - "Type: Bug"
+ - title: 🔨 Maintenance
+ labels:
+ - "Type: Maintenance"
+ - title: Other Changes
+ labels:
+ - "*"
\ No newline at end of file
diff --git a/.github/stale.yml b/.github/stale.yml
new file mode 100644
index 0000000..381a372
--- /dev/null
+++ b/.github/stale.yml
@@ -0,0 +1,26 @@
+# Number of days of inactivity before an issue becomes stale
+daysUntilStale: 14
+
+# Number of days of inactivity before a stale issue is closed
+daysUntilClose: 30
+
+# Issues with these labels will never be considered stale
+# exemptLabels:
+# - pinned
+# - security
+
+# Only issues or pull requests with all of these labels are check if stale.
+onlyLabels:
+ - "Status: Abandoned"
+ - "Type: Question"
+
+# Label to use when marking as stale
+staleLabel: stale
+
+# Comment to post when marking an issue as stale. Set to `false` to disable
+markComment: >
+ This issue has been automatically marked as stale because it has not had
+ activity in the past 2 weeks. It will be closed if no further activity occurs. Thank you
+ for your contributions.
+# Comment to post when closing a stale issue. Set to `false` to disable
+closeComment: This issue is being closed after 30 days of inactivity. Thank you.
\ No newline at end of file
diff --git a/.github/workflows/build-test.yml b/.github/workflows/build-test.yml
index 0dc2651..0a78a57 100644
--- a/.github/workflows/build-test.yml
+++ b/.github/workflows/build-test.yml
@@ -13,12 +13,12 @@ jobs:
runs-on: ${{ matrix.os }}
strategy:
matrix:
- os: [ubuntu-latest-16-cores, windows-latest-8-cores, macOS-latest]
+ os: [ubuntu-latest, windows-latest, macOS-latest]
steps:
- name: Set up Go
- uses: actions/setup-go@v3
+ uses: actions/setup-go@v4
with:
- go-version: 1.19
+ go-version: 1.20.x
- name: Check out code
uses: actions/checkout@v3
@@ -31,6 +31,10 @@ jobs:
run: go test ./...
working-directory: .
+ - name: Running example
+ run: go run .
+ working-directory: examples/
+
- name: Integration Tests Linux, macOS
if: runner.os == 'Linux' || runner.os == 'macOS'
env:
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 0cff8f6..3080047 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -11,7 +11,7 @@ on:
jobs:
analyze:
name: Analyze
- runs-on: ubuntu-latest-16-cores
+ runs-on: ubuntu-latest
permissions:
actions: read
contents: read
diff --git a/.github/workflows/dep-auto-merge.yml b/.github/workflows/dep-auto-merge.yml
new file mode 100644
index 0000000..3622902
--- /dev/null
+++ b/.github/workflows/dep-auto-merge.yml
@@ -0,0 +1,25 @@
+name: 🤖 dep-auto-merge
+
+on:
+ pull_request:
+ branches:
+ - main
+ workflow_dispatch:
+
+permissions:
+ pull-requests: write
+ issues: write
+ repository-projects: write
+
+jobs:
+ automerge:
+ runs-on: ubuntu-latest
+ steps:
+ - uses: actions/checkout@v3
+ with:
+ token: ${{ secrets.DEPENDABOT_PAT }}
+
+ - uses: ahmadnassri/action-dependabot-auto-merge@v2
+ with:
+ github-token: ${{ secrets.DEPENDABOT_PAT }}
+ target: all
\ No newline at end of file
diff --git a/.github/workflows/functional-test.yml b/.github/workflows/functional-test.yml
index 7d2e49b..85a7994 100644
--- a/.github/workflows/functional-test.yml
+++ b/.github/workflows/functional-test.yml
@@ -13,12 +13,12 @@ jobs:
runs-on: ${{ matrix.os }}
strategy:
matrix:
- os: [ubuntu-latest-16-cores, windows-latest-8-cores, macOS-latest]
+ os: [ubuntu-latest, windows-latest, macOS-latest]
steps:
- name: Set up Go
- uses: actions/setup-go@v3
+ uses: actions/setup-go@v4
with:
- go-version: 1.19
+ go-version: 1.20.x
- name: Check out code
uses: actions/checkout@v3
diff --git a/.github/workflows/lint-test.yml b/.github/workflows/lint-test.yml
index 0fdf3ea..524cae3 100644
--- a/.github/workflows/lint-test.yml
+++ b/.github/workflows/lint-test.yml
@@ -10,16 +10,16 @@ on:
jobs:
lint:
name: Lint Test
- runs-on: ubuntu-latest-16-cores
+ runs-on: ubuntu-latest
steps:
- name: Set up Go
- uses: actions/setup-go@v3
+ uses: actions/setup-go@v4
with:
- go-version: 1.19
+ go-version: 1.20.x
- name: Checkout code
uses: actions/checkout@v3
- name: Run golangci-lint
- uses: golangci/golangci-lint-action@v3.4.0
+ uses: golangci/golangci-lint-action@v3.6.0
with:
version: latest
args: --timeout 5m
diff --git a/.github/workflows/release-binary.yml b/.github/workflows/release-binary.yml
index 2dc5a16..189c47d 100644
--- a/.github/workflows/release-binary.yml
+++ b/.github/workflows/release-binary.yml
@@ -16,9 +16,9 @@ jobs:
fetch-depth: 0
- name: "Set up Go"
- uses: actions/setup-go@v3
+ uses: actions/setup-go@v4
with:
- go-version: 1.19
+ go-version: 1.20.x
- name: "Create release on GitHub"
uses: goreleaser/goreleaser-action@v4
diff --git a/.github/workflows/release-test.yml b/.github/workflows/release-test.yml
new file mode 100644
index 0000000..a09d6de
--- /dev/null
+++ b/.github/workflows/release-test.yml
@@ -0,0 +1,29 @@
+name: 🔨 Release Test
+
+on:
+ pull_request:
+ paths:
+ - '**.go'
+ - '**.mod'
+ workflow_dispatch:
+
+jobs:
+ release-test:
+ runs-on: ubuntu-latest-16-cores
+ steps:
+ - name: "Check out code"
+ uses: actions/checkout@v3
+ with:
+ fetch-depth: 0
+
+ - name: Set up Go
+ uses: actions/setup-go@v4
+ with:
+ go-version: 1.20.x
+
+ - name: release test
+ uses: goreleaser/goreleaser-action@v4
+ with:
+ args: "release --clean --snapshot"
+ version: latest
+ workdir: .
diff --git a/.gitignore b/.gitignore
index 028e9b1..064196c 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,5 +1,6 @@
.idea/
.vscode/
+dist
cmd/httpx/httpx
integration_tests/httpx
integration_tests/integration-test
@@ -7,3 +8,5 @@ cmd/functional-test/httpx_dev
cmd/functional-test/functional-test
cmd/functional-test/httpx
cmd/functional-test/*.cfg
+
+.devcontainer
\ No newline at end of file
diff --git a/.goreleaser.yml b/.goreleaser.yml
index 78f2618..852f6cb 100644
--- a/.goreleaser.yml
+++ b/.goreleaser.yml
@@ -28,8 +28,7 @@ builds:
archives:
- format: zip
- replacements:
- darwin: macOS
+ name_template: '{{ .ProjectName }}_{{ .Version }}_{{ if eq .Os "darwin" }}macOS{{ else }}{{ .Os }}{{ end }}_{{ .Arch }}'
checksum:
algorithm: sha256
diff --git a/Dockerfile b/Dockerfile
index 101d761..196ba43 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,5 +1,5 @@
# Base
-FROM golang:1.20.2-alpine AS builder
+FROM golang:1.20.6-alpine AS builder
RUN apk add --no-cache git build-base gcc musl-dev
WORKDIR /app
@@ -7,9 +7,9 @@ COPY . /app
RUN go mod download
RUN go build ./cmd/httpx
-FROM alpine:3.17.2
+FROM alpine:3.18.2
RUN apk -U upgrade --no-cache \
- && apk add --no-cache bind-tools ca-certificates
+ && apk add --no-cache bind-tools ca-certificates chromium
COPY --from=builder /app/httpx /usr/local/bin/
ENTRYPOINT ["httpx"]
\ No newline at end of file
diff --git a/README.md b/README.md
index 0c47187..0c0732d 100644
--- a/README.md
+++ b/README.md
@@ -62,12 +62,17 @@
# Installation Instructions
-`httpx` requires **go1.19** to install successfully. Run the following command to get the repo:
+`httpx` requires **go1.20** to install successfully. Run the following command to get the repo:
```sh
go install -v github.com/projectdiscovery/httpx/cmd/httpx@latest
```
+| :exclamation: **Disclaimer** |
+|---------------------------------|
+| **This project is in active development**. Expect breaking changes with releases. Review the changelog before updating. |
+| This project was primarily built to be used as a standalone CLI tool. **Running it as a service may pose security risks.** It's recommended to use with caution and additional security measures. |
+
# Usage
```sh
@@ -109,15 +114,19 @@ PROBES:
-cdn display cdn in use
-probe display probe status
+HEADLESS:
+ -ss, -screenshot enable saving screenshot of the page using headless browser
+ -system-chrome enable using local installed chrome for screenshot
+
MATCHERS:
-mc, -match-code string match response with specified status code (-mc 200,302)
-ml, -match-length string match response with specified content length (-ml 100,102)
-mlc, -match-line-count string match response body with specified line count (-mlc 423,532)
-mwc, -match-word-count string match response body with specified word count (-mwc 43,55)
-mfc, -match-favicon string[] match response with specified favicon hash (-mfc 1494302000)
- -ms, -match-string string match response with specified string (case insensitive) (-ms admin)
+ -ms, -match-string string match response with specified string (-ms admin)
-mr, -match-regex string match response with specified regex (-mr admin)
- -mcdn, -match-cdn string[] match host with specified cdn provider (oracle, google, azure, cloudflare, cloudfront, fastly, incapsula, leaseweb, akamai, sucuri)
+ -mcdn, -match-cdn string[] match host with specified cdn provider (incapsula, oracle, google, azure, cloudflare, cloudfront, fastly, akamai, sucuri, leaseweb)
-mrt, -match-response-time string match response with specified response time in seconds (-mrt '< 1')
-mdc, -match-condition string match response with dsl expression condition
@@ -127,13 +136,14 @@ EXTRACTOR:
FILTERS:
-fc, -filter-code string filter response with specified status code (-fc 403,401)
+ -fep, -filter-error-page filter response with ML based error page detection
-fl, -filter-length string filter response with specified content length (-fl 23,33)
-flc, -filter-line-count string filter response body with specified line count (-flc 423,532)
-fwc, -filter-word-count string filter response body with specified word count (-fwc 423,532)
-ffc, -filter-favicon string[] filter response with specified favicon hash (-mfc 1494302000)
-fs, -filter-string string filter response with specified string (-fs admin)
-fe, -filter-regex string filter response with specified regex (-fe admin)
- -fcdn, -filter-cdn string[] filter host with specified cdn provider (oracle, google, azure, cloudflare, cloudfront, fastly, incapsula, leaseweb, akamai, sucuri)
+ -fcdn, -filter-cdn string[] filter host with specified cdn provider (google, leaseweb, stackpath, cloudfront, fastly)
-frt, -filter-response-time string filter response with specified response time in seconds (-frt '> 1')
-fdc, -filter-condition string filter response with dsl expression condition
@@ -154,8 +164,13 @@ MISCELLANEOUS:
-vhost probe and display server supporting VHOST
-ldv, -list-dsl-variables list json output field keys name that support dsl matcher/filter
+UPDATE:
+ -up, -update update httpx to latest version
+ -duc, -disable-update-check disable automatic httpx update check
+
OUTPUT:
-o, -output string file to write output results
+ -oa, -output-all filename to write output results in all formats
-sr, -store-response store http response to output directory
-srd, -store-response-dir string store http response to custom directory
-csv store output in csv format
@@ -184,8 +199,11 @@ CONFIGURATIONS:
-body string post body to include in http request
-s, -stream stream mode - start elaborating input targets without sorting
-sd, -skip-dedupe disable dedupe input items (only used with stream mode)
- -ldp, -leave-default-ports leave default http/https ports in host header (eg. http://host:80 - https//host:443
+ -ldp, -leave-default-ports leave default http/https ports in host header (eg. http://host:80 - https://host:443
-ztls use ztls library with autofallback to standard one for tls13
+ -no-decode avoid decoding body
+ -tlsi, -tls-impersonate enable random tls client (ja3) impersonation (experimental)
+ -no-stdin Disable Stdin processing
DEBUG:
-health-check, -hc run diagnostic check up
@@ -332,6 +350,28 @@ https://support.hackerone.com [301,302,301,200] [HackerOne] [Cloudflare,Ruby on
https://resources.hackerone.com [301,301,404] [Sorry, no Folders found.]
```
+### Error Page Classifier and Filtering
+
+The Error Page Classifier and Filtering feature aims to add intelligence to the tool by enabling it to classify and filter out common error pages returned by web applications. It is an enhancement to the existing httpx capabilities and is geared towards reducing the noise in the results and helping users focus on what matters most.
+
+```console
+httpx -l urls.txt -path /v1/api -fep
+
+ __ __ __ _ __
+ / /_ / /_/ /_____ | |/ /
+ / __ \/ __/ __/ __ \| /
+ / / / / /_/ /_/ /_/ / |
+/_/ /_/\__/\__/ .___/_/|_|
+ /_/
+
+ projectdiscovery.io
+
+[INF] Current httpx version v1.3.3 (latest)
+https://scanme.sh/v1/api
+```
+
+Filtered error pages are stored to predefined file `filtered_error_page.json` in jsonline format when `-filter-error-page` option is used.
+
### Favicon Hash
@@ -471,55 +511,76 @@ https://docs.hackerone.com
https://support.hackerone.com
```
-### Using `httpx` as a library
-`httpx` can be used as a library by creating an instance of the `Option` struct and populating it with the same options that would be specified via CLI. Once validated, the struct should be passed to a runner instance (to be closed at the end of the program) and the `RunEnumeration` method should be called. Here follows a minimal example of how to do it:
+### Screenshot
+
+Latest addition to the project, the addition of the `-screenshot` option in httpx, a powerful new feature that allows users to take screenshots of target URLs, pages, or endpoints along with the rendered DOM. This functionality enables the **visual content discovery process**, providing a comprehensive view of the target's visual appearance.
+
+Rendered DOM body is also included in json line output when `-screenshot` option is used with `-json` option.
-```go
-package main
+#### 🚩 Usage
-import (
- "log"
+To use the screenshot feature, simply add the `-screenshot` flag to your httpx command:
- "github.com/projectdiscovery/goflags"
- "github.com/projectdiscovery/gologger"
- "github.com/projectdiscovery/gologger/levels"
- "github.com/projectdiscovery/httpx/runner"
-)
+```console
+httpx -screenshot -u https://example.com
+```
+
+🎯 Domain, Subdomain, and Path Support
+The `-screenshot` option is versatile and can be used to capture screenshots for domains, subdomains, and even specific paths when used in conjunction with the `-path` option:
+
+```console
+httpx -screenshot -u example.com
+httpx -screenshot -u https://example.com/login
+httpx -screenshot -path fuzz_path.txt -u https://example.com
+```
+
+Using with other tools:
+
+```console
+subfinder -d example.com | httpx -screenshot
+```
-func main() {
- gologger.DefaultLogger.SetMaxLevel(levels.LevelVerbose) // increase the verbosity (optional)
+#### 🌐 System Chrome
- options := runner.Options{
- Methods: "GET",
- InputTargetHost: goflags.StringSlice{"scanme.sh", "projectdiscovery.io"},
- //InputFile: "./targetDomains.txt", // path to file containing the target domains list
- }
+By default, httpx will use the go-rod library to install and manage Chrome for taking screenshots. However, if you prefer to use your locally installed system Chrome, add the `-system-chrome` flag:
- if err := options.ValidateOptions(); err != nil {
- log.Fatal(err)
- }
+```console
+httpx -screenshot -system-chrome -u https://example.com
+```
+
+#### 📁 Output Directory
- httpxRunner, err := runner.New(&options)
- if err != nil {
- log.Fatal(err)
- }
- defer httpxRunner.Close()
+Screenshots are stored in the output/screenshot directory by default. To specify a custom output directory, use the `-srd` option:
- httpxRunner.RunEnumeration()
-}
+```console
+httpx -screenshot -srd /path/to/custom/directory -u https://example.com
```
+#### ⏳ Performance Considerations
+
+Please note that since screenshots are captured using a headless browser, httpx runs will be slower when using the `-screenshot` option.
+
+### Using `httpx` as a library
+`httpx` can be used as a library by creating an instance of the `Option` struct and populating it with the same options that would be specified via CLI. Once validated, the struct should be passed to a runner instance (to be closed at the end of the program) and the `RunEnumeration` method should be called. A minimal example of how to do it is in the [examples](examples/) folder
# Notes
-- As default, `httpx` checks for **HTTPS** probe and fall-back to **HTTP** only if **HTTPS** is not reachable.
-- The `-no-fallback` flag can be used to display both **HTTP** and **HTTPS** results
+- As default, `httpx` probe with **HTTPS** scheme and fall-back to **HTTP** only if **HTTPS** is not reachable.
+- The `-no-fallback` flag can be used to probe and display both **HTTP** and **HTTPS** result.
- Custom scheme for ports can be defined, for example `-ports http:443,http:80,https:8443`
-- The following flags should be used for specific use cases instead of running them as default with other probes:
- * `-favicon`,`-vhost`, `-http2`, `-pipeline`, `-ports`, `-csp-probe`, `-tls-probe`, `-path`
-- When using the `-json` flag, all the default probe results are included in the JSON output.
- Custom resolver supports multiple protocol (**doh|tcp|udp**) in form of `protocol:resolver:port` (e.g. `udp:127.0.0.1:53`)
-- Invalid custom resolvers/files are ignored.
+- The following flags should be used for specific use cases instead of running them as default with other probes:
+ - `-ports`
+ - `-path`
+ - `-vhost`
+ - `-screenshot`
+ - `-csp-probe`
+ - `-tls-probe`
+ - `-favicon`
+ - `-http2`
+ - `-pipeline`
+ - `-tls-impersonate`
+
# Acknowledgement
diff --git a/cmd/functional-test/testcases.txt b/cmd/functional-test/testcases.txt
index 7a525c9..e7553c7 100644
--- a/cmd/functional-test/testcases.txt
+++ b/cmd/functional-test/testcases.txt
@@ -16,5 +16,7 @@ scanme.sh {{binary}} -silent -body 'a=b'
scanme.sh {{binary}} -silent -exclude-cdn
scanme.sh {{binary}} -silent -ports https:443
scanme.sh {{binary}} -silent -ztls
+scanme.sh {{binary}} -silent -jarm
https://scanme.sh?a=1*1 {{binary}} -silent
-https://scanme.sh:443 {{binary}} -asn
\ No newline at end of file
+https://scanme.sh:443 {{binary}} -asn
+scanme.sh {{binary}} -silent -tls-impersonate
\ No newline at end of file
diff --git a/cmd/integration-test/http.go b/cmd/integration-test/http.go
index 654d50c..62bc34e 100644
--- a/cmd/integration-test/http.go
+++ b/cmd/integration-test/http.go
@@ -5,10 +5,12 @@ import (
"io"
"net/http"
"net/http/httptest"
+ "os"
"strings"
"github.com/julienschmidt/httprouter"
"github.com/projectdiscovery/httpx/internal/testutils"
+ fileutil "github.com/projectdiscovery/utils/file"
)
var httpTestcases = map[string]testutils.TestCase{
@@ -30,6 +32,7 @@ var httpTestcases = map[string]testutils.TestCase{
"Multiple Custom Header": &customHeader{inputData: []string{"-debug-req", "-H", "'user-agent: test'", "-H", "'foo: bar'"}, expectedOutput: []string{"User-Agent: test", "Foo: bar"}},
"Output Match Condition": &outputMatchCondition{inputData: []string{"-silent", "-mdc", "\"status_code == 200\""}},
"Output Filter Condition": &outputFilterCondition{inputData: []string{"-silent", "-fdc", "\"status_code == 400\""}},
+ "Output All": &outputAll{},
}
type standardHttpGet struct {
@@ -377,3 +380,42 @@ func (h *outputFilterCondition) Execute() error {
}
return nil
}
+
+type outputAll struct {
+}
+
+func (h *outputAll) Execute() error {
+ var ts *httptest.Server
+ router := httprouter.New()
+ router.GET("/", httprouter.Handle(func(w http.ResponseWriter, r *http.Request, p httprouter.Params) {
+ w.Header().Add("Content-Type", "application/json")
+ w.WriteHeader(200)
+ fmt.Fprint(w, `{"status": "ok"}`)
+ }))
+ ts = httptest.NewServer(router)
+ defer ts.Close()
+
+ fileName := "test_output_all"
+ _, hErr := testutils.RunHttpxAndGetResults(ts.URL, false, []string{"-o", fileName, "-oa"}...)
+ if hErr != nil {
+ return hErr
+ }
+
+ expectedFiles := []string{fileName, fileName + ".json", fileName + ".csv"}
+ var actualFiles []string
+
+ for _, file := range expectedFiles {
+ if fileutil.FileExists(file) {
+ actualFiles = append(actualFiles, file)
+ }
+ }
+ if len(actualFiles) != 3 {
+ return errIncorrectResultsCount(actualFiles)
+ }
+
+ for _, file := range actualFiles {
+ _ = os.Remove(file)
+ }
+
+ return nil
+}
diff --git a/common/errorpageclassifier/clf.gob b/common/errorpageclassifier/clf.gob
new file mode 100644
index 0000000..f697862
Binary files /dev/null and b/common/errorpageclassifier/clf.gob differ
diff --git a/common/errorpageclassifier/dataset.txt b/common/errorpageclassifier/dataset.txt
new file mode 100644
index 0000000..1f9ee4e
--- /dev/null
+++ b/common/errorpageclassifier/dataset.txt
@@ -0,0 +1,201 @@
+The Forum page seems to have a glitch. Our technicians are on it.||error
+There was a problem with the Product Details page. Try reloading.||error
+Error 500: The E-books page is experiencing a problem.||error
+Unfortunately, the Video Tutorials page is down for maintenance.||error
+Our Archive page is currently unavailable. We apologize for the inconvenience.||error
+We're having trouble loading the Membership Details page.||error
+An error occurred while trying to access the Profile Settings page.||error
+Error 404: The Team page could not be found.||error
+Our Project Highlights page seems to be having some technical issues.||error
+We're sorry, but we can't seem to find the Donations page.||error
+You've landed on our Forum page. Engage in interesting discussions.||nonerror
+Welcome to the Product Details page. Learn more about our products here.||nonerror
+You are now on our E-books page. Enjoy a wealth of knowledge.||nonerror
+This is the Video Tutorials page. Learn with our easy-to-follow videos.||nonerror
+Welcome to our Archive. Dive into our rich history.||nonerror
+You're now on the Membership Details page. See the benefits of joining us.||nonerror
+This is your Profile Settings page. Update your personal details as needed.||nonerror
+You're on the Team page. Meet the people behind our organization.||nonerror
+Welcome to our Project Highlights page. See what we've been up to.||nonerror
+You've landed on the Donations page. Every contribution helps us do more.||nonerror
+500 - Server Error This is highly unusual! Our tech team have been notified and are working on it.||error
+Sorry this page is currently under maintenance.||error
+Access Denied - You don't have permission to access this page.||error
+This page seems to be missing 404 Error!||error
+Sorry something went wrong. Please try again later.||error
+We're sorry this page could not be found 404.||error
+The page you requested could not be found on our site.||error
+500 - Internal server error. There is a problem with the resource you are looking for and it cannot be displayed.||error
+Error 401 Unauthorized: Access is denied due to invalid credentials.||error
+Bad request 400. Your browser sent a request that this server could not understand.||error
+This is a 404 error page||error
+Sorry this page does not exist||error
+Error 500: Internal Server Error||error
+Oops! That page can’t be found.Try searching from the field above or go to the home page.||error
+An error has occurred while processing your request. It happens to the best of us! Don't worry! There are no bugs without a fix! Let's try again! What were you looking for? If you are an adventurer search this site! If difficulties persist please contact the website administrator and report the error below. 404 Page not found||error
+Whoops our bad... The page you requested was not found and we have a fine guess why. If you typed the URL directly please make sure the spelling is correct. If you clicked on a link to get here the link is outdated. What can you do? Have no fear help is near! There are many ways you can get back on track with Magento Store. Go back to the previous page. Use the search bar at the top of the page to search for your products. Follow these links to get you back on track! Store Home My Account||error
+404 - Page not found Unfortunately the requested page could not be found.||error
+PAGE NOT FOUND The page you're looking for doesn't seem to exist anymore… Return to the homepage||error
+Who moved my... lemon? Oh no - looks like we can't find the page you are looking for. But you know the saying; when life gives you lemons... okay we can't find a clever way to end that sentence but we do have 2 suggestions to help you find what you were looking for: Go to the front page Or Search for a specific topic If something you need really is missing we would love it if you would let us know ❤️️||error
+404—page not found||error
+Apologies but there's a 503 Service Unavailable error. The server cannot handle the request.||error
+Sorry you don't have access rights to this page. Error 403: Forbidden.||error
+404 - Oops! The page you are looking for has been misplaced.||error
+Sorry the server encountered an unexpected condition that prevented it from fulfilling the request. Error 500: Internal Server Error.||error
+Whoa! The page you're looking for seems to have vanished. Error 404.||error
+Sorry this page has moved or doesn't exist anymore. Error 404.||error
+Sorry but your request timed out. Please try again. Error 504: Gateway Timeout.||error
+We're sorry but an unknown error occurred while processing your request.||error
+Error 502: Bad Gateway. The server encountered a temporary error and could not complete your request.||error
+The requested resource could not be found on this server. Please verify your request and try again. Error 404.||error
+This Help Center page is temporarily unavailable.||error
+Privacy Policy page not found. Please try again later.||error
+There seems to be an error on our Services page. We're working to fix it.||error
+An error occurred while loading the Search Results page.||error
+Category page not found. It might have been removed or relocated.||error
+There was a problem loading the Cart page. Please try again.||error
+Our Terms of Service page is currently down for maintenance.||error
+We're sorry, but the Sitemap is not available at the moment.||error
+We're having trouble loading the Reviews page.||error
+An error occurred while trying to access the Partners page.||error
+Settings page is currently unavailable. We apologize for the inconvenience.||error
+Error 404: Resources page not found.||error
+Our Press Releases page seems to be having some technical issues.||error
+We're sorry, but we can't seem to find the Case Studies page.||error
+There was a problem loading the Community page. Please refresh the page.||error
+Error 503: The Subscriptions page is temporarily unavailable.||error
+There's a problem with our Customer Support page. We're on it.||error
+We're having trouble finding the Notifications page. It may have been moved.||error
+There was a problem with the Feedback page. Try again later.||error
+Our Transactions page is currently experiencing some issues. We appreciate your patience.||error
+Your request has been successfully submitted.||nonerror
+You have successfully logged out.||nonerror
+Congratulations on successfully completing the course!||nonerror
+The payment has been processed successfully.||nonerror
+Thank you for your feedback!||nonerror
+Your download will start shortly.||nonerror
+Profile updated successfully.||nonerror
+Thanks for contacting us! We'll get back to you as soon as possible.||nonerror
+Sign-up successful. Welcome to our community!||nonerror
+Your booking has been confirmed. Check your email for details.||nonerror
+Welcome! Your registration was successful.||nonerror
+Congratulations! You've successfully updated your profile.||nonerror
+Great! Your order was placed successfully. We'll send you an email confirmation soon.||nonerror
+Welcome back! Your login was successful.||nonerror
+Success! You've added the item to your cart.||nonerror
+Your request was sent successfully. We'll get back to you as soon as possible.||nonerror
+Great job! Your settings have been saved.||nonerror
+Your message has been submitted successfully. We appreciate your feedback.||nonerror
+Thank you for subscribing to our newsletter!||nonerror
+Great news! Your transaction was successful.||nonerror
+Welcome to our homepage. Feel free to browse around||nonerror
+Thanks for signing up! You're now a registered user.||nonerror
+Your order has been placed successfully! You'll receive a confirmation email shortly||nonerror
+Congratulations your account has been successfully created||nonerror
+Thank you for your inquiry. We will respond to your message within 24 hours||nonerror
+You've successfully added the item to your cart!||nonerror
+Success! Your password has been updated||nonerror
+Welcome back! You have successfully logged in||nonerror
+Great job! Your profile has been updated||nonerror
+Your message was sent successfully. We'll get back to you shortly||nonerror
+Welcome to our website. Explore and enjoy our services.||nonerror
+Thank you for visiting our About Us page. Learn more about our journey and team.||nonerror
+You are now browsing our Products page. Check out our latest offerings.||nonerror
+This is our Contact Us page. Feel free to reach out with any queries or feedback.||nonerror
+You have reached the end of the page. Scroll up to continue browsing.||nonerror
+Welcome to the News section. Stay updated with our latest announcements.||nonerror
+Now viewing: Image Gallery. Enjoy a visual tour of our activities.||nonerror
+You're on our FAQ page. Get answers to common questions.||nonerror
+Welcome to the Blog section. Engage with our thoughts and insights.||nonerror
+This is the Discussion Forum. Join in, ask questions, or help others.||nonerror
+You're on the Login page. Enter your credentials to access your account.||nonerror
+Welcome to the Sign-Up page. Join our community today.||nonerror
+This is your User Dashboard. Manage your account and settings here.||nonerror
+You've reached the Checkout page. Review your order and proceed to payment.||nonerror
+Welcome to the Download section . Access our digital resources here.||nonerror
+This is the Careers page. Explore job opportunities with us.||nonerror
+You're viewing the Events Calendar. Keep track of upcoming activities.||nonerror
+This is the User Profile page. Update your information as needed.||nonerror
+Welcome to our Testimonials page. Read reviews and stories from our users.||nonerror
+You are now on the Home page. Start exploring from here.||nonerror
+Welcome to home page||nonerror
+You're now on our Help Center page. Find answers to common questions here.||nonerror
+Welcome to our Privacy Policy page. Learn how we protect your personal information.||nonerror
+You've landed on the Services page. Explore what we have to offer.||nonerror
+This is the Search Results page. Did you find what you were looking for?||nonerror
+Now browsing the Category page. View all items in this category.||nonerror
+You're now on the Cart page. Review your selections before proceeding to checkout.||nonerror
+Welcome to our Terms of Service page. Understand our conditions for providing services.||nonerror
+You are currently on our Sitemap. Navigate our website with ease.||nonerror
+You are on the Reviews page. Check out what others have to say about us.||nonerror
+Now viewing the Partners page. Meet the organizations we collaborate with.||nonerror
+You're on the Settings page. Customize your user experience.||nonerror
+This is our Resources page. Access useful documents and guides.||nonerror
+You've landed on the Press Releases page. Stay updated with our latest news.||nonerror
+Welcome to our Case Studies page. Discover our past projects and achievements.||nonerror
+You're now on the Community page. Connect and interact with other members.||nonerror
+You are currently on the Subscriptions page. Manage your preferences here.||nonerror
+Now viewing the Customer Support page. We're here to help.||nonerror
+This is the Notifications page. Keep track of your updates and alerts.||nonerror
+You've landed on the Feedback page. Share your thoughts with us.||nonerror
+Welcome to the Transactions page. Monitor your past and current transactions.||nonerror
+500 - Server Error This is highly unusual! Our tech team have been notified and are working on it.||error
+Sorry this page is currently under maintenance.||error
+Access Denied - You don't have permission to access this page.||error
+This page seems to be missing 404 Error!||error
+Sorry something went wrong. Please try again later.||error
+We're sorry this page could not be found 404.||error
+The page you requested could not be found on our site.||error
+500 - Internal server error. There is a problem with the resource you are looking for and it cannot be displayed.||error
+Error 401 Unauthorized: Access is denied due to invalid credentials.||error
+Bad request 400. Your browser sent a request that this server could not understand.||error
+Your request has been successfully submitted.||nonerror
+You have successfully logged out.||nonerror
+Congratulations on successfully completing the course!||nonerror
+The payment has been processed successfully.||nonerror
+Thank you for your feedback!||nonerror
+Your download will start shortly.||nonerror
+Profile updated successfully.||nonerror
+Thanks for contacting us! We'll get back to you as soon as possible.||nonerror
+Sign-up successful. Welcome to our community!||nonerror
+Your booking has been confirmed. Check your email for details.||nonerror
+This is a 404 error page||error
+Sorry this page does not exist||error
+Error 500: Internal Server Error||error
+Oops! That page can’t be found.Try searching from the field above or go to the home page.||error
+An error has occurred while processing your request. It happens to the best of us! Don't worry! There are no bugs without a fix! Let's try again! What were you looking for? If you are an adventurer search this site! If difficulties persist please contact the website administrator and report the error below. 404 Page not found||error
+Whoops our bad... The page you requested was not found and we have a fine guess why. If you typed the URL directly please make sure the spelling is correct. If you clicked on a link to get here the link is outdated. What can you do? Have no fear help is near! There are many ways you can get back on track with Magento Store. Go back to the previous page. Use the search bar at the top of the page to search for your products. Follow these links to get you back on track! Store Home | My Account||error
+404 - Page not found Unfortunately the requested page could not be found.||error
+PAGE NOT FOUND The page you're looking for doesn't seem to exist anymore… Return to the homepage||error
+Who moved my... lemon? Oh no - looks like we can't find the page you are looking for. But you know the saying; when life gives you lemons... okay we can't find a clever way to end that sentence but we do have 2 suggestions to help you find what you were looking for: Go to the front page Or Search for a specific topic If something you need really is missing we would love it if you would let us know ❤️️||error
+404—page not found||error
+Apologies but there's a 503 Service Unavailable error. The server cannot handle the request.||error
+Sorry you don't have access rights to this page. Error 403: Forbidden.||error
+404 - Oops! The page you are looking for has been misplaced.||error
+Sorry the server encountered an unexpected condition that prevented it from fulfilling the request. Error 500: Internal Server Error.||error
+Whoa! The page you're looking for seems to have vanished. Error 404.||error
+Sorry this page has moved or doesn't exist anymore. Error 404.||error
+Sorry but your request timed out. Please try again. Error 504: Gateway Timeout.||error
+We're sorry but an unknown error occurred while processing your request.||error
+Error 502: Bad Gateway. The server encountered a temporary error and could not complete your request.||error
+The requested resource could not be found on this server. Please verify your request and try again. Error 404.||error
+Welcome! Your registration was successful.||nonerror
+Congratulations! You've successfully updated your profile.||nonerror
+Great! Your order was placed successfully. We'll send you an email confirmation soon.||nonerror
+Welcome back! Your login was successful.||nonerror
+Success! You've added the item to your cart.||nonerror
+Your request was sent successfully. We'll get back to you as soon as possible.||nonerror
+Great job! Your settings have been saved.||nonerror
+Your message has been submitted successfully. We appreciate your feedback.||nonerror
+Thank you for subscribing to our newsletter!||nonerror
+Great news! Your transaction was successful.||nonerror
+Welcome to our homepage. Feel free to browse around||nonerror
+Thanks for signing up! You're now a registered user.||nonerror
+Your order has been placed successfully! You'll receive a confirmation email shortly||nonerror
+Congratulations your account has been successfully created||nonerror
+Thank you for your inquiry. We will respond to your message within 24 hours||nonerror
+You've successfully added the item to your cart!||nonerror
+Success! Your password has been updated||nonerror
+Welcome back! You have successfully logged in||nonerror
+Great job! Your profile has been updated||nonerror
+Your message was sent successfully. We'll get back to you shortly||nonerror
\ No newline at end of file
diff --git a/common/errorpageclassifier/errorpageclassifier.go b/common/errorpageclassifier/errorpageclassifier.go
new file mode 100644
index 0000000..d916d7c
--- /dev/null
+++ b/common/errorpageclassifier/errorpageclassifier.go
@@ -0,0 +1,39 @@
+package errorpageclassifier
+
+import (
+ _ "embed"
+
+ "github.com/jaytaylor/html2text"
+ "github.com/projectdiscovery/utils/ml/naive_bayes"
+)
+
+//go:embed clf.gob
+var classifierData []byte
+
+type ErrorPageClassifier struct {
+ classifier *naive_bayes.NaiveBayesClassifier
+}
+
+func New() *ErrorPageClassifier {
+ classifier, err := naive_bayes.NewClassifierFromFileData(classifierData)
+ if err != nil {
+ panic(err)
+ }
+ return &ErrorPageClassifier{classifier: classifier}
+}
+
+func (n *ErrorPageClassifier) Classify(html string) string {
+ text := htmlToText(html)
+ if text == "" {
+ return "other"
+ }
+ return n.classifier.Classify(text)
+}
+
+func htmlToText(html string) string {
+ text, err := html2text.FromString(html, html2text.Options{TextOnly: true})
+ if err != nil {
+ panic(err)
+ }
+ return text
+}
diff --git a/common/errorpageclassifier/errorpageclassifier_test.go b/common/errorpageclassifier/errorpageclassifier_test.go
new file mode 100644
index 0000000..35923b2
--- /dev/null
+++ b/common/errorpageclassifier/errorpageclassifier_test.go
@@ -0,0 +1,53 @@
+package errorpageclassifier
+
+import (
+ "testing"
+
+ "github.com/stretchr/testify/assert"
+)
+
+func TestErrorPageClassifier(t *testing.T) {
+ t.Run("test creation of new ErrorPageClassifier", func(t *testing.T) {
+ epc := New()
+ assert.NotNil(t, epc)
+ })
+
+ t.Run("test classification non error page text", func(t *testing.T) {
+ epc := New()
+ assert.Equal(t, "nonerror", epc.Classify(`
+
+
+
+ Terms of Service
+
+
+ Welcome to our Terms of Service page.
+ Understand our conditions for providing services.
+
+
+ `))
+ })
+
+ t.Run("test classification on error page text", func(t *testing.T) {
+ epc := New()
+ assert.Equal(t, "error", epc.Classify(`
+
+
+ Error 403: Forbidden
+
+
+
+
+
Error 403: Forbidden
+
Sorry you don't have access rights to this page.
+
+
+
+ |
+ Response Info
+ |
+
+ Screenshot
+ |
+
+
+
+ {{ $ExtractTitle := .Options.ExtractTitle }}
+ {{ $OutputStatusCode := .Options.StatusCode }}
+ {{ $OutputContentLength := .Options.ContentLength }}
+ {{ $Favicon := .Options.Favicon }}
+ {{ $OutputResponseTime := .Options.OutputResponseTime }}
+ {{ $OutputLinesCount := .Options.OutputLinesCount }}
+ {{ $OutputWordsCount := .Options.OutputWordsCount }}
+ {{ $OutputServerHeader := .Options.OutputServerHeader }}
+ {{ $TechDetect := .Options.TechDetect }}
+ {{range .Output}}
+ {{if ne .ScreenshotPath ""}}
+
+ |
+
+ |
+
+
+ 
+
+ |
+
+ {{end}}
+ {{end}}
+
+
+
+
+
\ No newline at end of file
diff --git a/static/static.go b/static/static.go
new file mode 100644
index 0000000..82bf659
--- /dev/null
+++ b/static/static.go
@@ -0,0 +1,8 @@
+package static
+
+import (
+ _ "embed"
+)
+
+//go:embed html-summary.html
+var HtmlTemplate string