Sandeep Singh

icon indicating an email [email protected]

icon company @projectdiscovery icon location India icon location Co-Founder / CTO @projectdiscovery On a mission to simplify the security process and make it more accessible.

Results 151 issues of Sandeep Singh

typo in rate limit option

Fixed in https://github.com/projectdiscovery/katana/pull/214

Status: Completed
Type: Bug

manual / automated authenticated crawling with project options (headless)

1 comment

Feature suggested by @parthmalhotra ### Please describe your feature request: New options to add for this feature: ```console HEADLESS: -ob, -open-browser open chrome browser for manual browsing and crawling PROJECT:...

Priority: Medium
Type: Enhancement

built-in paths for logout pages to avoid for crawl

1 comment

### Please describe your feature request: katana to use a built-in it list/path for logout pages to exclude for crawl (`-cos`). ### Describe the use case of this feature: Avoid...

Status: Blocked
Type: Enhancement

Integration test to cover project installation on various platfrom

### Please describe your feature request: An Integration test utilizing GitHub Actions needs to be added to ensure tool installation is working across various platforms. Things to cover as part...

Priority: Medium
Type: Enhancement

same md5 response body hash for any host

### httpx version: latest ### Current Behavior: md5 hash for any host is the same! ``` chaos -d hackerone.com | httpx -hash md5 http://a.ns.hackerone.com [d41d8cd98f00b204e9800998ecf8427e] https://www.hackerone.com [d41d8cd98f00b204e9800998ecf8427e] http://b.ns.hackerone.com [d41d8cd98f00b204e9800998ecf8427e] https://mta-sts.forwarding.hackerone.com...

Type: Bug

Nuclei Ignore template review

2 comment

### Template file: https://github.com/projectdiscovery/nuclei-templates/blob/main/.nuclei-ignore#L26-L37 - [ ] http/cves/2006/CVE-2006-1681.yaml - [x] http/cves/2007/CVE-2007-5728.yaml - [x] http/cves/2011/CVE-2011-4618.yaml - [x] http/cves/2014/CVE-2014-9608.yaml - [x] http/cves/2018/CVE-2018-5316.yaml - [x] http/cves/2018/CVE-2018-5233.yaml - [ ] http/cves/2019/CVE-2019-14696.yaml - [x] http/cves/2020/CVE-2020-11930.yaml...

false-positive
defcon31

github-takeover

### Nuclei Version: latest ### Template file: ``` takeovers/github-takeover.yaml ``` ```console [github-takeover] [http] [high] https://mta-sts.hackerone.com [github-takeover] [http] [high] https://mta-sts.forwarding.hackerone.com [github-takeover] [http] [high] https://mta-sts.managed.hackerone.com ``` ### Command to reproduce: ``` chaos...

false-positive

protocol syntax update

1 comment

### Template / PR Information As per [latest change in nuclei v2.9.1 ](https://github.com/projectdiscovery/nuclei/releases/tag/v2.9.1) to make protocol syntax more uniform. ### What's changed? requests to http ```yaml requests: - method: GET...

browser (headless) based http probing

1 comment

### Please describe your feature request: As of now, the' `-ss` option uses headless-based requests to capture screenshots and can be extended further for optional support of http probing. ```console...

Investigation

New Input option to accept request information for fuzzing

1 comment

### Please describe your feature request: Add new input mode (`-im, -input-mode`) option that would allow the user to specify input mode/format of given input file (using `-l` which is...

Type: Enhancement