Added websocket and SSL protocol support + engine refactor

[Ice3man543]

Cross site websocket hijacking

id: cswsh

info:
  name: cswsh
  description: cswsh
  author: pdteam
  severity: low

websocket:
  - address: '{{Scheme}}://{{Hostname}}{{Path}}'
    headers: 
      Origin: 'http://evil.com'
    matchers:
      - type: word
        words:
          - true
        part: success

Websocket communication template

id: websocket-test-1

info:
  name: websocket-test-1
  description: websocket-test-1
  author: pdteam
  severity: low

websocket:
  - address: '{{Scheme}}://{{Hostname}}{{Path}}'
    inputs:
      - data: '{"secret":"{{value}}"}'
    payloads:
      value:
        - "test"
        - "actual"
    matchers:
      - type: word
        words: 
          - "success"
        part: response

Expired SSL Cert

id: expired-ssl

info:
  name: expired-ssl
  description: expired-ssl
  author: pdteam
  severity: low

ssl:
  - address: "{{Hostname}}"
    matchers:
      - type: dsl
        dsl: 
          - "unixtime() > not_after"
        part: response

[ehsandeep]

• We can expose all the raw SSL data to nuclei engine (preferably JSON similar to zgrab2) that will allow users to model any desired template, for example - Network enhancement Certificate SSL check #797
• Debug support to SSL Protocol
• Global variables for SSL protocol {{Hostname}}, {{Host}}, {{Port}}
• Websocket - Updating {{Address}} to {{Hostname}} to keep it uniform across other protocol

[ehsandeep]

response is not the default part of the SSL protocol

Test SSL template

id: test-ssl

info:
  name: test-ssl
  description: test-ssl
  author: pdteam
  severity: info

ssl:
  - address: "{{Hostname}}"

    extractors:
      - type: json
        json:
          - ".dns_names[]"

echo https://example.com | ./nuclei -t test.yaml