admin/HaE
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
d590d4a70e99be33e8579dcd0bd202ed26dcbe45
HaE/src/main/java/burp/action/ExtractContent.java

147 lines
6.8 KiB
Java
Raw Normal View History

Version: 2.0 Update
2021-06-10 22:59:27 +08:00
package burp.action;
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
import burp.BurpExtender;
Version: 2.0.7 Update
2021-09-07 22:09:42 +08:00
import java.nio.charset.StandardCharsets;
Version: 2.0 Update
2021-06-10 22:59:27 +08:00
import java.util.*;
Version: 2.1.4 Update
2022-02-21 09:31:03 +08:00
import burp.Config;
Version: 2.0 Update
2021-06-10 22:59:27 +08:00
import dk.brics.automaton.Automaton;
import dk.brics.automaton.AutomatonMatcher;
import dk.brics.automaton.RegExp;
import dk.brics.automaton.RunAutomaton;
import jregex.Matcher;
import jregex.Pattern;
Version: 2.2.2 Update
2022-05-04 23:17:24 +08:00
/**
Version: 2.0 Update
2021-06-10 22:59:27 +08:00
* @author EvilChen
*/
public class ExtractContent {
Version: 2.4 Update
2022-06-23 15:34:22 +08:00
public Map<String, Map<String, Object>> matchRegex(byte[] content, String headers, byte[] body, String scopeString, String host) {
Version: 2.0 Update
2021-06-10 22:59:27 +08:00
Map<String, Map<String, Object>> map = new HashMap<>(); // 最终返回的结果
Version: 2.1.4 Update
2022-02-21 09:31:03 +08:00
Config.ruleConfig.keySet().forEach(i -> {
for (Object[] objects : Config.ruleConfig.get(i)) {
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
// 多线程执行,一定程度上减少阻塞现象
Thread t = new Thread(() -> {
String matchContent = "";
// 遍历获取规则
List<String> result = new ArrayList<>();
Map<String, Object> tmpMap = new HashMap<>();
Version: 2.0 Update
2021-06-10 22:59:27 +08:00
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
String name = objects[1].toString();
boolean loaded = (Boolean) objects[0];
String regex = objects[2].toString();
String color = objects[3].toString();
String scope = objects[4].toString();
String engine = objects[5].toString();
boolean sensitive = (Boolean) objects[6];
// 判断规则是否开启与作用域
if (loaded && (scope.contains(scopeString) || scope.contains("any"))) {
switch (scope) {
case "any":
case "request":
case "response":
matchContent = new String(content, StandardCharsets.UTF_8).intern();
break;
case "any header":
case "request header":
case "response header":
matchContent = headers;
break;
case "any body":
case "request body":
case "response body":
matchContent = new String(body, StandardCharsets.UTF_8).intern();
break;
default:
break;
}
Version: 2.0 Update
2021-06-10 22:59:27 +08:00
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
if ("nfa".equals(engine)) {
Pattern pattern;
// 判断规则是否大小写敏感
if (sensitive) {
pattern = new Pattern(regex);
} else {
pattern = new Pattern(regex, Pattern.IGNORE_CASE);
}
Matcher matcher = pattern.matcher(matchContent);
while (matcher.find()) {
// 添加匹配数据至list
// 强制用户使用()包裹正则
result.add(matcher.group(1));
}
Version: 2.3 Update
2022-05-27 13:29:32 +08:00
} else {
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
RegExp regexp = new RegExp(regex);
Automaton auto = regexp.toAutomaton();
RunAutomaton runAuto = new RunAutomaton(auto, true);
AutomatonMatcher autoMatcher = runAuto.newMatcher(matchContent);
while (autoMatcher.find()) {
// 添加匹配数据至list
// 强制用户使用()包裹正则
result.add(autoMatcher.group());
}
Version: 2.3 Update
2022-05-27 13:29:32 +08:00
}
Version: 2.4 Update
2022-06-23 15:34:22 +08:00
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
// 去除重复内容
HashSet tmpList = new HashSet(result);
result.clear();
result.addAll(tmpList);
Version: 2.0 Update
2021-06-10 22:59:27 +08:00
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
if (!result.isEmpty()) {
tmpMap.put("color", color);
String dataStr = String.join("\n", result);
tmpMap.put("data", dataStr);
Version: 2.0 Update
2021-06-10 22:59:27 +08:00
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
// 添加到全局变量中便于Databoard检索
if (!host.isEmpty()) {
String anyHost = host.replace(host.split("\\.")[0], "*");
List<String> dataList = Arrays.asList(dataStr.split("\n"));
if (Config.globalDataMap.containsKey(host)) {
Map<String, List<String>> gRuleMap = Config.globalDataMap.get(host);
// 判断匹配规则是否存在逻辑同Host判断
if (gRuleMap.containsKey(name)) {
List<String> gDataList = gRuleMap.get(name);
List<String> mergeDataList = new ArrayList<>(gDataList);
// 合并两个List
mergeDataList.addAll(dataList);
// 去重操作
tmpList = new HashSet(mergeDataList);
mergeDataList.clear();
mergeDataList.addAll(tmpList);
// 替换操作
gRuleMap.replace(name, gDataList, mergeDataList);
} else {
gRuleMap.put(name, dataList);
}
} else if (!Config.globalDataMap.containsKey(anyHost)) {
// 添加通配符Host
Config.globalDataMap.put(anyHost, new HashMap<>());
} else {
Map<String, List<String>> ruleMap = new HashMap<>();
ruleMap.put(name, dataList);
// 添加单一Host
Config.globalDataMap.put(host, ruleMap);
}
}
Version: 2.0 Update
2021-06-10 22:59:27 +08:00
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
map.put(name, tmpMap);
}
Version: 2.4 Update
2022-06-23 15:34:22 +08:00
}
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
});
t.start();
try {
t.join();
} catch (InterruptedException e) {
e.printStackTrace();
Update
2022-12-18 15:09:28 +08:00
}
Version: 2.4 Update
2022-06-23 15:34:22 +08:00
Version: 2.4.6 Update
2023-02-22 17:25:55 +08:00
}
});
Version: 2.0 Update
2021-06-10 22:59:27 +08:00
return map;
}
}
Reference in New Issue Copy Permalink