implement ignorestatus flag

Author: m10x

pkg/config.go

@@ -26,6 +26,7 @@ type (
 		HMDiff         int
 		CacheHeader    string
 		DisableColor   bool
+		IgnoreStatus   []int
 
 		Recursivity int
 		RecInclude  string

pkg/flags.go

@@ -5,6 +5,7 @@ import (
 	"fmt"
 	"os"
 	"runtime"
+	"strconv"
 	"strings"
 	"text/tabwriter"
 
@@ -45,6 +46,8 @@ func ParseFlags(vers string) {
 	// General Options
 	techniqueNames := "deception,cookies,css,forwarding,smuggling,dos,headers,parameters,fatget,cloaking,splitting"
 
+	var ignoreStatus string
+
 	appendInt(&generalOptions, &Config.Verbosity,
 		"verbosity", "v", 1, "Set verbosity. 0 = quiet, 1 = normal, 2 = verbose")
 	appendFloat(&generalOptions, &Config.ReqRate,
@@ -63,6 +66,8 @@ func ParseFlags(vers string) {
 		"proxyurl", "purl", "http://127.0.0.1:8080", "Url for the proxy. Default value is http://127.0.0.1:8080")
 	appendBoolean(&generalOptions, &Config.Force,
 		"force", "f", false, "Perform the tests no matter if there is a cache or even the cachebuster works or not")
+	appendString(&generalOptions, &ignoreStatus,
+		"ignorestatus", "is", "", "Specify a custom cache header")
 	appendInt(&generalOptions, &Config.CLDiff,
 		"contentlengthdifference", "cldiff", 0, "Threshold for reporting possible Finding, when 'poisoned' response differs more from the original length. Default is 0 (don't check)")
 	appendInt(&generalOptions, &Config.HMDiff,
@@ -165,6 +170,16 @@ func ParseFlags(vers string) {
 		useragent = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36"
 	}
 
+	// IgnoreStatus string to int slice
+	statusSlice := strings.Split(ignoreStatus, ",")
+	for _, status := range statusSlice {
+		statusInt, err := strconv.Atoi(strings.TrimSpace(status))
+		if err != nil {
+			PrintFatal("Error converting to int: " + err.Error())
+		}
+		Config.IgnoreStatus = append(Config.IgnoreStatus, statusInt)
+	}
+
 	// Read RecExcludeURL(s)
 	if recExcludeStr != "" {
 		Config.RecExclude = ReadLocalFile(recExcludeStr, "RecExclude")

pkg/requests.go

@@ -7,6 +7,7 @@ import (
 	"io"
 	"net/http"
 	"net/http/httputil"
+	"strconv"
 	"strings"
 	"sync"
 
@@ -77,6 +78,15 @@ func checkPoisoningIndicators(repResult *reportResult, request reportRequest, su
 			request.Reason = fmt.Sprintf("%s header contains poison value %s", headerWithPoison, poison)
 			testForResponseSplitting = true
 		} else if statusCode1 >= 0 && statusCode1 != Config.Website.StatusCode && statusCode1 == statusCode2 {
+			// check if status code should be ignored
+			if len(Config.IgnoreStatus) > 0 {
+				for _, status := range Config.IgnoreStatus {
+					if statusCode1 == status || Config.Website.StatusCode == status {
+						PrintVerbose("Skipped Status Code "+strconv.Itoa(status), NoColor, 2)
+						return testForResponseSplitting
+					}
+				}
+			}
 			if !recursive {
 				var tmpWebsite WebsiteStruct
 				var err error