search

projectdiscovery / nuclei

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
https://docs.projectdiscovery.io/tools/nuclei
MIT License
20.78k stars 2.52k forks source link

global variables `{{RDN}}`, `{{FQDN}}` input support with `-iserver` option #5711

Open zy9ard3 opened 1 month ago

zy9ard3 commented 1 month ago

Describe your feature request

I would like to propose a feature to enhance efficiency in vulnerability detection and make the Nuclei-Interactsh integration more flexible

Please implement a way to use global variables such as {{RDN}} and {{FQDN}} in the self-hosted Interactsh integration with the -iserver option. This would significantly improve vulnerability detection efficiency using a self-hosted long run interactsh server

nuclei -u https://xyz.com -iserver "{{FQDN}}.selfhosted.oast.pro"

Describe the use case of the feature

Sometimes a pingback can be received after hours, days or even weeks and these scenarios are undetectable using current Nuclei-Interactsh integration. Even if we use -iserver with self hosted interatcsh-server, it's very difficult to determine the source of the pingback or identify which host has the issue as currently there is no support for a feature like -iserver "{{FQDN}}.selfhosted.oast.pro" which would allow receiving pingbacks with hostname prefix and issues are easily detectable with respect to the source of pingbacks using a long run self hosted interactsh server

Describe alternatives you've considered

manually running nuclei with -iserver option for each host or a complex bash script with for loop and this is not a feasible way for lists of hosts

Additional context

No response

GeorginaReeder commented 1 month ago

Thanks so much for your feature request @zy9ard3 , we'll take a look into this!