search

projectdiscovery / naabu

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
https://projectdiscovery.io
MIT License
4.7k stars 548 forks source link

`-exclude-cdn` flag implicitly adds the CDN name to the output #587

Closed Techbrunch closed 1 year ago

Techbrunch commented 1 year ago

Silent option is not taken into account when using -exclude-cdn option.

The -exclude-cdn flag implicitly adds the CDN name to the output.

The -silent flag suppresses it from stdout only but it doesn't affect the output.

Naabu version:

❯ naabu -version

                  __
  ___  ___  ___ _/ /  __ __
 / _ \/ _ \/ _ \/ _ \/ // /
/_//_/\_,_/\_,_/_.__/\_,_/ v2.1.2

        projectdiscovery.io

[INF] Current Version: 2.1.2

Current Behavior:

❯ sudo naabu -p 80,443,22 -host projectdiscovery.io -ec -silent -o output.txt
projectdiscovery.io:80
projectdiscovery.io:443
❯ cat output.txt
projectdiscovery.io:80 [cloudflare]
projectdiscovery.io:443 [cloudflare]

Expected Behavior:

The CDN name should not be in the output unless the -cdn flag is passed:

❯ sudo naabu -p 80,443,22 -host projectdiscovery.io -ec -silent -o output.txt
projectdiscovery.io:80
projectdiscovery.io:443
❯ cat output.txt
projectdiscovery.io:80
projectdiscovery.io:443
ehsandeep commented 1 year ago

@Techbrunch this is now fixed in latest release.