feat: add Nuclei scanner auto-installation and store scan config/results metadata

CodeMonkeyCybersecurity · CodeMonkeyCybersecurity · commit 2dbac62b8967 · 2025-10-12T16:50:01.000+08:00
diff --git a/cmd/self.go b/cmd/self.go
@@ -3,6 +3,9 @@ package cmd
 
 import (
 	"fmt"
+	"os"
+	"os/exec"
+	"path/filepath"
 	"time"
 
 	"github.com/CodeMonkeyCybersecurity/shells/internal/config"
@@ -141,6 +144,28 @@ func runUpdate(cmd *cobra.Command, args []string) error {
 		fmt.Println(" Database migrations completed successfully!")
 	}
 
+	// Install/update Nuclei scanner
+	logger.Infow("Checking Nuclei installation",
+		"component", "self_update",
+	)
+	fmt.Println()
+	fmt.Println(" Checking Nuclei scanner...")
+
+	if err := ensureNucleiInstalled(logger); err != nil {
+		logger.Warnw("Nuclei installation/update failed",
+			"component", "self_update",
+			"error", err,
+		)
+		fmt.Printf("⚠️  Warning: Nuclei installation failed: %v\n", err)
+		fmt.Printf("   Nuclei scanning will be disabled until installed\n")
+		fmt.Printf("   You can install manually with: %s/scripts/install-nuclei.sh\n", updateSourceDir)
+	} else {
+		logger.Infow("Nuclei scanner ready",
+			"component", "self_update",
+		)
+		fmt.Println(" Nuclei scanner ready!")
+	}
+
 	fmt.Println()
 	log.Info(" Shells updated successfully!", "component", "self")
 	fmt.Printf("   Duration: %s\n", duration.Round(time.Second))
@@ -149,3 +174,87 @@ func runUpdate(cmd *cobra.Command, args []string) error {
 
 	return nil
 }
+
+// ensureNucleiInstalled checks if Nuclei is installed and installs/updates it if needed
+func ensureNucleiInstalled(logger *logger.Logger) error {
+	// Check if nuclei is already in PATH
+	nucleiPath, err := exec.LookPath("nuclei")
+	if err == nil {
+		// Nuclei found, check version and update templates
+		logger.Infow("Nuclei already installed",
+			"path", nucleiPath,
+			"component", "nuclei_setup",
+		)
+
+		// Update templates
+		cmd := exec.Command("nuclei", "-update-templates", "-silent")
+		if err := cmd.Run(); err != nil {
+			logger.Warnw("Failed to update Nuclei templates",
+				"error", err,
+				"component", "nuclei_setup",
+			)
+			// Don't fail if template update fails
+		} else {
+			logger.Infow("Nuclei templates updated",
+				"component", "nuclei_setup",
+			)
+		}
+
+		return nil
+	}
+
+	// Nuclei not found, need to install
+	logger.Infow("Nuclei not found, installing from GitHub",
+		"component", "nuclei_setup",
+	)
+	fmt.Println("   Installing Nuclei scanner...")
+
+	// Install using go install
+	installCmd := exec.Command("go", "install", "-v", "github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest")
+	installCmd.Stdout = nil // Suppress output
+	installCmd.Stderr = nil
+
+	if err := installCmd.Run(); err != nil {
+		return fmt.Errorf("failed to install nuclei: %w", err)
+	}
+
+	// Verify installation
+	nucleiPath, err = exec.LookPath("nuclei")
+	if err != nil {
+		// Try in Go bin directory
+		goPath := os.Getenv("GOPATH")
+		if goPath == "" {
+			homeDir, _ := os.UserHomeDir()
+			goPath = filepath.Join(homeDir, "go")
+		}
+		nucleiPath = filepath.Join(goPath, "bin", "nuclei")
+
+		if _, err := os.Stat(nucleiPath); err != nil {
+			return fmt.Errorf("nuclei installed but not found in PATH. Please add %s/bin to your PATH", goPath)
+		}
+	}
+
+	logger.Infow("Nuclei installed successfully",
+		"path", nucleiPath,
+		"component", "nuclei_setup",
+	)
+
+	// Update templates
+	fmt.Println("   Updating Nuclei templates...")
+	templatesCmd := exec.Command(nucleiPath, "-update-templates", "-silent")
+	if err := templatesCmd.Run(); err != nil {
+		logger.Warnw("Failed to update Nuclei templates",
+			"error", err,
+			"component", "nuclei_setup",
+		)
+		// Don't fail - templates will update on first run
+	} else {
+		logger.Infow("Nuclei templates updated",
+			"component", "nuclei_setup",
+		)
+	}
+
+	fmt.Println("   Nuclei scanner installed successfully!")
+
+	return nil
+}
diff --git a/internal/orchestrator/bounty_engine.go b/internal/orchestrator/bounty_engine.go
@@ -4,6 +4,7 @@ package orchestrator
 import (
 	"context"
 	"fmt"
+	"os/exec"
 	"sort"
 	"strings"
 	"sync"
@@ -219,20 +220,34 @@ func NewBugBountyEngine(
 		logger.Infow("Nmap scanner initialized", "component", "orchestrator")
 	}
 
-	// Initialize Nuclei scanner (if enabled)
+	// Initialize Nuclei scanner (if enabled and binary exists)
 	var nucleiScanner core.Scanner
 	if config.EnableNucleiScan {
-		nucleiConfig := nuclei.NucleiConfig{
-			BinaryPath:    "nuclei",
-			TemplatesPath: "", // Use default
-			Timeout:       config.ScanTimeout,
-			RateLimit:     int(config.RateLimitPerSecond),
-			BulkSize:      25,
-			Concurrency:   25,
-			Retries:       2,
+		// Check if nuclei binary is available
+		nucleiBinaryPath := "nuclei"
+		if _, err := exec.LookPath(nucleiBinaryPath); err != nil {
+			logger.Warnw("Nuclei scanner disabled - binary not found in PATH",
+				"error", err,
+				"binary", nucleiBinaryPath,
+				"install_instructions", "Run: go install -v github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest",
+				"component", "orchestrator",
+			)
+		} else {
+			nucleiConfig := nuclei.NucleiConfig{
+				BinaryPath:    nucleiBinaryPath,
+				TemplatesPath: "", // Use default
+				Timeout:       config.ScanTimeout,
+				RateLimit:     int(config.RateLimitPerSecond),
+				BulkSize:      25,
+				Concurrency:   25,
+				Retries:       2,
+			}
+			nucleiScanner = nuclei.NewScanner(nucleiConfig, samlLogger)
+			logger.Infow("Nuclei scanner initialized",
+				"binary_path", nucleiBinaryPath,
+				"component", "orchestrator",
+			)
 		}
-		nucleiScanner = nuclei.NewScanner(nucleiConfig, samlLogger)
-		logger.Infow("Nuclei scanner initialized", "component", "orchestrator")
 	}
 
 	// Initialize GraphQL scanner (if enabled)
@@ -2309,7 +2324,67 @@ func extractHost(urlStr string) string {
 
 // storeResults saves scan results to the database
 func (e *BugBountyEngine) storeResults(ctx context.Context, scanID string, result *BugBountyResult) error {
-	// Save scan metadata
+	// Prepare scan configuration for storage
+	configJSON := map[string]interface{}{
+		"discovery_timeout":          e.config.DiscoveryTimeout.String(),
+		"scan_timeout":               e.config.ScanTimeout.String(),
+		"total_timeout":              e.config.TotalTimeout.String(),
+		"max_assets":                 e.config.MaxAssets,
+		"max_depth":                  e.config.MaxDepth,
+		"enable_port_scan":           e.config.EnablePortScan,
+		"enable_web_crawl":           e.config.EnableWebCrawl,
+		"enable_dns":                 e.config.EnableDNS,
+		"enable_subdomain_enum":      e.config.EnableSubdomainEnum,
+		"enable_cert_transparency":   e.config.EnableCertTransparency,
+		"enable_whois_analysis":      e.config.EnableWHOISAnalysis,
+		"enable_related_domain_disc": e.config.EnableRelatedDomainDisc,
+		"enable_auth_testing":        e.config.EnableAuthTesting,
+		"enable_api_testing":         e.config.EnableAPITesting,
+		"enable_scim_testing":        e.config.EnableSCIMTesting,
+		"enable_graphql_testing":     e.config.EnableGraphQLTesting,
+		"enable_nuclei_scan":         e.config.EnableNucleiScan,
+		"enable_service_fingerprint": e.config.EnableServiceFingerprint,
+	}
+
+	// Prepare results summary for storage
+	resultJSON := map[string]interface{}{
+		"scan_id":         result.ScanID,
+		"target":          result.Target,
+		"start_time":      result.StartTime,
+		"end_time":        result.EndTime,
+		"duration":        result.Duration.String(),
+		"status":          result.Status,
+		"discovered_at":   result.DiscoveredAt,
+		"tested_assets":   result.TestedAssets,
+		"total_findings":  result.TotalFindings,
+		"phase_results":   result.PhaseResults,
+		"findings_by_severity": map[string]int{
+			"critical": 0,
+			"high":     0,
+			"medium":   0,
+			"low":      0,
+			"info":     0,
+		},
+	}
+
+	// Count findings by severity
+	severityCounts := resultJSON["findings_by_severity"].(map[string]int)
+	for _, finding := range result.Findings {
+		switch strings.ToUpper(string(finding.Severity)) {
+		case "CRITICAL":
+			severityCounts["critical"]++
+		case "HIGH":
+			severityCounts["high"]++
+		case "MEDIUM":
+			severityCounts["medium"]++
+		case "LOW":
+			severityCounts["low"]++
+		default:
+			severityCounts["info"]++
+		}
+	}
+
+	// Save scan metadata with config and results
 	startedAt := result.StartTime
 	completedAt := result.EndTime
 	scan := &types.ScanRequest{
@@ -2320,6 +2395,8 @@ func (e *BugBountyEngine) storeResults(ctx context.Context, scanID string, resul
 		CreatedAt:   result.StartTime,
 		StartedAt:   &startedAt, // Set started time for duration calculation
 		CompletedAt: &completedAt,
+		Config:      configJSON, // Store scan configuration
+		Result:      resultJSON, // Store scan results summary
 	}
 
 	if err := e.store.SaveScan(ctx, scan); err != nil {
diff --git a/pkg/types/types.go b/pkg/types/types.go
@@ -58,18 +58,21 @@ type Finding struct {
 }
 
 type ScanRequest struct {
-	ID           string            `json:"id" db:"id"`
-	Target       string            `json:"target" db:"target"`
-	Type         ScanType          `json:"type" db:"type"`
-	Profile      string            `json:"profile,omitempty" db:"profile"`
-	Options      map[string]string `json:"options,omitempty"`
-	ScheduledAt  *time.Time        `json:"scheduled_at,omitempty" db:"scheduled_at"`
-	CreatedAt    time.Time         `json:"created_at" db:"created_at"`
-	StartedAt    *time.Time        `json:"started_at,omitempty" db:"started_at"`
-	CompletedAt  *time.Time        `json:"completed_at,omitempty" db:"completed_at"`
-	Status       ScanStatus        `json:"status" db:"status"`
-	ErrorMessage string            `json:"error_message,omitempty" db:"error_message"`
-	WorkerID     string            `json:"worker_id,omitempty" db:"worker_id"`
+	ID           string                 `json:"id" db:"id"`
+	Target       string                 `json:"target" db:"target"`
+	Type         ScanType               `json:"type" db:"type"`
+	Profile      string                 `json:"profile,omitempty" db:"profile"`
+	Options      map[string]string      `json:"options,omitempty"`
+	ScheduledAt  *time.Time             `json:"scheduled_at,omitempty" db:"scheduled_at"`
+	CreatedAt    time.Time              `json:"created_at" db:"created_at"`
+	StartedAt    *time.Time             `json:"started_at,omitempty" db:"started_at"`
+	CompletedAt  *time.Time             `json:"completed_at,omitempty" db:"completed_at"`
+	Status       ScanStatus             `json:"status" db:"status"`
+	ErrorMessage string                 `json:"error_message,omitempty" db:"error_message"`
+	WorkerID     string                 `json:"worker_id,omitempty" db:"worker_id"`
+	Config       map[string]interface{} `json:"config,omitempty" db:"config"`       // Scan configuration (timeouts, enabled scanners)
+	Result       map[string]interface{} `json:"result,omitempty" db:"result"`       // Scan results summary (assets, phases, findings count)
+	Checkpoint   map[string]interface{} `json:"checkpoint,omitempty" db:"checkpoint"` // Checkpoint data for resumable scans
 }
 
 type ScanResult struct {
diff --git a/scripts/install-nuclei.sh b/scripts/install-nuclei.sh
@@ -0,0 +1,95 @@
+#!/bin/bash
+# install-nuclei.sh - Install and configure Nuclei for shells
+# This script is run automatically during shells setup
+
+set -e
+
+echo "===== Installing Nuclei for shells ====="
+
+# Check if Go is installed
+if ! command -v go &> /dev/null; then
+    echo "ERROR: Go is not installed. Please install Go first."
+    exit 1
+fi
+
+# Get Go bin directory
+GOBIN=$(go env GOPATH)/bin
+mkdir -p "$GOBIN"
+
+echo "Installing Nuclei from GitHub..."
+go install -v github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest
+
+# Verify installation
+if [ ! -f "$GOBIN/nuclei" ]; then
+    echo "ERROR: Nuclei installation failed"
+    exit 1
+fi
+
+echo "Nuclei installed successfully at: $GOBIN/nuclei"
+
+# Add to PATH if not already there
+if [[ ":$PATH:" != *":$GOBIN:"* ]]; then
+    echo "Adding $GOBIN to PATH..."
+
+    # Add to current session
+    export PATH=$PATH:$GOBIN
+
+    # Add to shell profile
+    if [ -f "$HOME/.bashrc" ]; then
+        if ! grep -q "$GOBIN" "$HOME/.bashrc"; then
+            echo "export PATH=\$PATH:$GOBIN" >> "$HOME/.bashrc"
+            echo "Added to ~/.bashrc"
+        fi
+    fi
+
+    if [ -f "$HOME/.zshrc" ]; then
+        if ! grep -q "$GOBIN" "$HOME/.zshrc"; then
+            echo "export PATH=\$PATH:$GOBIN" >> "$HOME/.zshrc"
+            echo "Added to ~/.zshrc"
+        fi
+    fi
+fi
+
+# Update Nuclei templates
+echo "Updating Nuclei templates..."
+"$GOBIN/nuclei" -update-templates -silent
+
+# Create nuclei config directory
+NUCLEI_CONFIG_DIR="$HOME/.config/nuclei"
+mkdir -p "$NUCLEI_CONFIG_DIR"
+
+# Create minimal config file
+cat > "$NUCLEI_CONFIG_DIR/config.yaml" <<EOF
+# Nuclei configuration for shells
+rate-limit: 150
+bulk-size: 25
+concurrency: 25
+retries: 2
+timeout: 900
+silent: true
+stats: true
+EOF
+
+echo "Nuclei config created at: $NUCLEI_CONFIG_DIR/config.yaml"
+
+# Verify installation
+echo "Verifying Nuclei installation..."
+NUCLEI_VERSION=$("$GOBIN/nuclei" -version 2>&1 | head -1)
+echo "Nuclei version: $NUCLEI_VERSION"
+
+# Test basic functionality
+echo "Testing Nuclei..."
+if "$GOBIN/nuclei" -u https://scanme.sh -tags dns -silent > /dev/null 2>&1; then
+    echo "✓ Nuclei test successful"
+else
+    echo "⚠ Nuclei test failed, but installation complete"
+fi
+
+echo ""
+echo "===== Nuclei Installation Complete ====="
+echo "Binary location: $GOBIN/nuclei"
+echo "Templates location: $HOME/nuclei-templates/"
+echo "Config location: $NUCLEI_CONFIG_DIR/config.yaml"
+echo ""
+echo "To use immediately, run: export PATH=\$PATH:$GOBIN"
+echo "Or restart your shell to load from profile"
