Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Issue 549 jarm algorithm #567

Merged
merged 8 commits into from
Apr 8, 2022
Merged

Issue 549 jarm algorithm #567

merged 8 commits into from
Apr 8, 2022

Conversation

LuitelSamikshya
Copy link
Contributor

@LuitelSamikshya LuitelSamikshya commented Apr 5, 2022
edited by ehsandeep
Loading 

chaos -d hackerone.com -silent | httpx -jarm

    __    __  __       _  __
   / /_  / /_/ /_____ | |/ /
  / __ \/ __/ __/ __ \|   /
 / / / / /_/ /_/ /_/ /   |
/_/ /_/\__/\__/ .___/_/|_|
             /_/              v1.2.1-dev

		projectdiscovery.io

Use with caution. You are responsible for your actions.
Developers assume no liability and are not responsible for any misuse or damage.
https://www.hackerone.com [29d3dd00029d29d00042d43d00041d5de67cc9954cc85372523050f20b5007]
https://mta-sts.hackerone.com [29d29d00029d29d00042d43d00041d2aa5ce6a70de7ba95aef77a77b00a0af]
https://mta-sts.managed.hackerone.com [29d29d00029d29d00042d43d00041d2aa5ce6a70de7ba95aef77a77b00a0af]
https://docs.hackerone.com [29d29d00029d29d00042d43d00041d2aa5ce6a70de7ba95aef77a77b00a0af]
https://support.hackerone.com [29d3dd00029d29d00029d3dd29d29d5a74e95248e58a6162e37847a24849f7]
https://api.hackerone.com [29d3dd00029d29d00042d43d00041d5de67cc9954cc85372523050f20b5007]
http://gslink.hackerone.com []
https://mta-sts.forwarding.hackerone.com [29d29d00029d29d00042d43d00041d2aa5ce6a70de7ba95aef77a77b00a0af]
https://resources.hackerone.com [2ad2ad0002ad2ad0002ad2ad2ad2ad043bfbd87c13813505a1b60adf4f6ff5]

@LuitelSamikshya LuitelSamikshya self-assigned this Apr 5, 2022
@LuitelSamikshya LuitelSamikshya linked an issue Apr 5, 2022 that may be closed by this pull request
Support jarm algorithm for tls #549
Closed
@LuitelSamikshya LuitelSamikshya added Type: Enhancement Most issues will probably ask for additions or changes. Status: Review Needed The issue has a PR attached to it which needs to be reviewed labels Apr 5, 2022
ehsandeep
ehsandeep previously requested changes Apr 6, 2022
View reviewed changes
Copy link
Member

@ehsandeep ehsandeep left a comment
edited by LuitelSamikshya
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • removing debug output in result
  • removing default value for the cases jarm hash can not be calculated.

Current:

echo www.hackerone.com | ./httpx -p 80 -hash jarm -silent

{www.hackerone.com 80 0 <nil>} http://www.hackerone.com:80
http://www.hackerone.com [00000000000000000000000000000000000000000000000000000000000000]

Expected:

echo www.hackerone.com | ./httpx -p 80 -hash jarm -silent

http://www.hackerone.com []

Mzack9999
Mzack9999 previously requested changes Apr 6, 2022
View reviewed changes
Mzack9999
Mzack9999 reviewed Apr 6, 2022
View reviewed changes
@Mzack9999 Mzack9999 dismissed stale reviews from ehsandeep and themself April 7, 2022 05:22

done

Mzack9999
Mzack9999 requested changes Apr 7, 2022
View reviewed changes
@Mzack9999
Copy link
Member

Mzack9999 commented Apr 7, 2022
edited by ehsandeep
Loading

  • moving jarm hash into an independent jarm cli boolean flag, disabled as default. (cc @ehsandeep)
echo hackeorne.com | httpx -silent -jarm

https://hackerone.com [29d3dd00029d29d00042d43d00041d5de67cc9954cc85372523050f20b5007]

   -jarm                  display jarm fingerprint hash

{
  "timestamp": "2022-04-07T12:35:33.194176+05:30",
  "scheme": "https",
  "port": "443",
  "path": "/",
  "a": [
    "172.67.159.1",
    "104.21.58.102",
    "2606:4700:3035::6815:3a66",
    "2606:4700:3031::ac43:9f01"
  ],
  "url": "https://hackeorne.com:443",
  "input": "hackeorne.com",
  "location": "https://www.hackerone.com",
  "webserver": "cloudflare",
  "method": "GET",
  "host": "172.67.159.1",
  "status-code": 302,
  "response-time": "3.028714209s",
  "failed": false,
  "jarm": "29d3dd00029d29d00042d43d00041d5de67cc9954cc85372523050f20b5007",
  "hashes": {
    "body-md5": "d41d8cd98f00b204e9800998ecf8427e",
    "body-mmh3": "-1840324437",
    "body-sha256": "e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855",
    "body-simhash": "18446744073709551615",
    "header-md5": "55d68887955eda369947966806b494c6",
    "header-mmh3": "-1163442431",
    "header-sha256": "7a0465991db978e180ca588ba8af65075e990b493a6d3337fd87b0946f4d2cde",
    "header-simhash": "14425853263883255598"
  },
  "lines": 1,
  "words": 1
}

@ehsandeep ehsandeep requested a review from Mzack9999 April 8, 2022 12:39
@sonarqubecloud
Copy link

sonarqubecloud bot commented Apr 8, 2022

SonarCloud Quality Gate failed.    Quality Gate failed

Bug A 0 Bugs
Vulnerability B 2 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 1 Code Smell

0.0% 0.0% Coverage
0.0% 0.0% Duplication

@ehsandeep ehsandeep merged commit ccf0c9d into dev Apr 8, 2022
@ehsandeep ehsandeep deleted the issue-549-jarm-algorithm branch April 8, 2022 13:20
@ehsandeep ehsandeep removed the Status: Review Needed The issue has a PR attached to it which needs to be reviewed label Apr 8, 2022
@ehsandeep ehsandeep added the Status: Completed Nothing further to be done with this issue. Awaiting to be closed. label Apr 8, 2022
@ehsandeep ehsandeep mentioned this pull request Jun 16, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ehsandeep ehsandeep ehsandeep approved these changes

@Mzack9999 Mzack9999 Mzack9999 approved these changes

Assignees

@LuitelSamikshya LuitelSamikshya

Labels
Status: Completed Nothing further to be done with this issue. Awaiting to be closed. Type: Enhancement Most issues will probably ask for additions or changes.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Support jarm algorithm for tls
3 participants
@LuitelSamikshya @Mzack9999 @ehsandeep