after giving domain name about nucleifuzzer HOT 13 CLOSED

I have used the below command in the NucleiFuzzer Script to run Nuclei tool on the collected URLs from Paramspider.

sort "output/$domain.yaml" | uniq | tee "output/$domain.yaml" | httpx -silent -mc 200,301,302,403 | nuclei -t "$home_dir/fuzzing-templates" -fuzz -rl 05

So, Sometimes the collected URLs were captured or passed to nuclei due to some issue with the Nuclei Tool. This is a known issue as it is happening even if I modify the script as shown below.

nuclei -l "output/$domain.yaml" -t "$home_dir/fuzzing-templates" -fuzz -rl 05

Just waiting for the update of Nuclei tool from @projectdiscovery team in order to fix this issue in capturing or passing the URLs to Nuclei tool.

However, if you run the current existing script for 3 to 4 times, it will work.

from nucleifuzzer.

Please update your nuclei tool to the latest version and don't give the subdomain as a target.

Try with the main domain as shown in the below pic: Try it a couple of times to check.

from nucleifuzzer.

check here

from nucleifuzzer.

Try to run the command a couple of times and outside of the root

from nucleifuzzer.

Hi, @0xKayala

Thank you for the great tool.

I have the same problem

And All the required Tools works well in my terminal

Also I have all required directories in $HOME

from nucleifuzzer.

Output: Try to execute the script 3 to 4 times.

from nucleifuzzer.

bhai ek hi screenshot lo na yeh dusra screen shot asa alg lerha ho kuch tho gadbad hai

from nucleifuzzer.

@r0x5r Bro, Ek screenshot me pura nahi dhikra.

Isliye jithna dhikra hai, uthna capture kiya hai

For your satisfaction here is the single screenshot below

from nucleifuzzer.

Hi, @0xKayala
I have fixed the issue just by changing the file extension in the tee command in NucleiFuzzer.sh file
from tee "output/$domain.yaml"
to tee "output/$domain.txt"

The tool works very well now.

Hope This Helps!

from nucleifuzzer.

Previously I have used TXT file only but still I faced the same issue. That is why I changed it to yaml as it saves too fast for yaml format.

from nucleifuzzer.

I didn't face any problems since I have edited it. However, The tool is a little bit slow to initialize the scan.

from nucleifuzzer.

sort "output/$domain.yaml" - I think you forgot to change the extension here

from nucleifuzzer.

Hi, @0xKayala I have fixed the issue just by changing the file extension in the tee command in NucleiFuzzer.sh file from tee "output/$domain.yaml" to tee "output/$domain.txt"

The tool works very well now.

Hope This Helps!

The issue with the script lies in how the output files are handled and passed to the nuclei command. Specifically, the output file generated by ParamSpider (output/$domain.yaml) is being overwritten by the tee command before it can be passed to httpx and then to nuclei. This is why nuclei is not receiving the URLs for scanning.

To fix this, I have modified the script to use a temporary file to store the sorted and unique URLs before passing them to httpx and nuclei. Here's the updated portion of the script:

# Step 5: Run the Nuclei Fuzzing templates on the collected URLs
echo "Running Nuclei on collected URLs"
if [ -n "$domain" ]; then
    # Use a temporary file to store the sorted and unique URLs
    temp_file=$(mktemp)
    sort "output/$domain.yaml" | uniq > "$temp_file"
    httpx -silent -mc 200,301,302,403 -l "$temp_file" | nuclei -t "$home_dir/fuzzing-templates" -fuzz -rl 05
    rm "$temp_file"  # Remove the temporary file
elif [ -n "$filename" ]; then
    sort "$output_file" | uniq > "$temp_file"
    httpx -silent -mc 200,301,302,403 -l "$temp_file" | nuclei -t "$home_dir/fuzzing-templates" -fuzz -rl 05
    rm "$temp_file"  # Remove the temporary file
fi

This modification creates a temporary file ($temp_file) to store the sorted and unique URLs, which are then passed to httpx for scanning. After the scanning is complete, the temporary file is removed. This should ensure that the collected URLs are properly passed to nuclei for scanning.

from nucleifuzzer.