Merge branch 'dev' into 3877-exclude-hosts-from-input-lists

projectdiscovery · Sep 7, 2023 · 5b2a593 · 5b2a593
2 parents 8b77126 + 643e903
commit 5b2a593
Show file tree

Hide file tree

Showing 24 changed files with 1,663 additions and 135 deletions.
diff --git a/.github/workflows/performance-test.yaml b/.github/workflows/performance-test.yaml
@@ -0,0 +1,36 @@
+name: 🔨 Performance Test
+
+on:
+  workflow_dispatch:
+  schedule:
+    # Weekly
+    - cron: '0 0 * * 0'
+
+jobs:
+  build:
+    name: Test Performance
+    strategy:
+      matrix:
+        go-version: [1.20.x]
+        os: [ubuntu-latest, macOS-latest]
+
+    runs-on: ${{ matrix.os }}
+    steps:
+      - name: Set up Go
+        uses: actions/setup-go@v4
+        with:
+          go-version: ${{ matrix.go-version }}
+
+      - name: Check out code
+        uses: actions/checkout@v3
+
+      - name: Go Mod hygine
+        run: |
+          go clean -modcache
+          go mod tidy
+        working-directory: v2/
+
+      # Max GH exection time 6H => timeout after that
+      - name: Running performance with big list
+        run: go run -race . -l ../functional-test/targets-150.txt
+        working-directory: v2/cmd/nuclei/
diff --git a/SYNTAX-REFERENCE.md b/SYNTAX-REFERENCE.md
@@ -492,6 +492,35 @@ description: Subversion ALM for the enterprise before 8.8.2 allows reflected XSS
 ```
 
 
+</div>
+
+<hr />
+
+<div class="dd">
+
+<code>impact</code>  <i>string</i>
+
+</div>
+<div class="dt">
+
+Impact of the template.
+
+You can go in-depth here on impact of the template.
+
+
+
+Examples:
+
+
+```yaml
+impact: Successful exploitation of this vulnerability could allow an attacker to execute arbitrary SQL queries, potentially leading to unauthorized access, data leakage, or data manipulation.
+```
+
+```yaml
+impact: Successful exploitation of this vulnerability could allow an attacker to execute arbitrary script code in the context of the victim's browser, potentially leading to session hijacking, defacement, or theft of sensitive information.
+```
+
+
 </div>
 
 <hr />

diff --git a/nuclei-jsonschema.json b/nuclei-jsonschema.json
@@ -78,6 +78,14 @@
             "Bower is a package manager which stores package information in the bower.json file"
           ]
         },
+        "impact": {
+          "type": "string",
+          "title": "impact of the template",
+          "description": "In-depth explanation on the impact of the issue found by the template",
+          "examples": [
+            "Successful exploitation of this vulnerability could allow an attacker to execute arbitrary SQL queries"
+          ]
+        },
         "reference": {
           "$schema": "http://json-schema.org/draft-04/schema#",
           "$ref": "#/definitions/stringslice.RawStringSlice",