TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines for eight different programming languages.
License: Apache License 2.0
POST http://perfection.htb/weighted-grade-calc HTTP/1.1
host: perfection.htb
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/115.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Referer: http://perfection.htb/weighted-grade
Content-Type: application/x-www-form-urlencoded
Content-Length: 169
Origin: http://perfection.htb
category1=a&grade1=100&weight1=20&category2=b&grade2=100&weight2=20&category3=c&grade3=100&weight3=20&category4=d&grade4=100&weight4=20&category5=e&grade5=100&weight5=20
$ tinja raw -R weighted-grad-calc.raw
Analyzing URL(1/1): https://http://perfection.htb/weighted-grade-calcLooks like header comparison is case sensitive.
POST http://perfection.htb/weighted-grade-calc HTTP/1.1
Host: perfection.htb
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/115.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Referer: http://perfection.htb/weighted-grade
Content-Type: application/x-www-form-urlencoded
Content-Length: 169
Origin: http://perfection.htb
category1=a&grade1=100&weight1=20&category2=b&grade2=100&weight2=20&category3=c&grade3=100&weight3=20&category4=d&grade4=100&weight4=20&category5=e&grade5=100&weight5=20
$ tinja raw -R weighted-grad-calc.raw
Analyzing URL(1/1): https://perfection.htbhttp://perfection.htb/weighted-grade-calcAdding the scheme to the "Host" header.
POST /weighted-grade-calc HTTP/1.1
Host: http://perfection.htb
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/115.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Referer: http://perfection.htb/weighted-grade
Content-Type: application/x-www-form-urlencoded
Content-Length: 169
Origin: http://perfection.htb
category1=a&grade1=100&weight1=20&category2=b&grade2=100&weight2=20&category3=c&grade3=100&weight3=20&category4=d&grade4=100&weight4=20&category5=e&grade5=100&weight5=20
$ tinja raw -R weighted-grad-calc.raw
Analyzing URL(1/1): https://http://perfection.htb/weighted-grade-calcThe original request is exact output from ZAP. It would be nice to able to use it as-is.
go install -v github.com/Hackmanit/TInjA@latest
go: github.com/Hackmanit/TInjA@latest (in github.com/Hackmanit/[email protected]): go.mod:5: unknown directive: toolchain
get this error while installing Tinja
Hi guys!
I noticed that you introduced noAdditionalHeaders option to skip headers checks. But it is not used anywhere. Could you please check it?
regards
When I was testing the url list I pulled from wayback with gau, it gave an error like this.
[ERR] buildRequest: parse "https://xxx.xxx.com/blog/t?a=upwards+of+30%+abandonment": invalid URL escape "%+a"
panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x88 pc=0x8c5d54]
goroutine 1 [running]:
github.com/Hackmanit/TInjA/pkg.doRequest(0x0)
/root/go/pkg/mod/github.com/!hackmanit/[email protected]/pkg/request.go:161 +0xd4
github.com/Hackmanit/TInjA/pkg.scanURL({0xc0002db9b6, 0x77}, {{{0x0, 0x0}, {0x0, 0x0}, {0x0, 0x0}, 0x0}, {0x0, ...}}, ...)
/root/go/pkg/mod/github.com/!hackmanit/[email protected]/pkg/scan.go:286 +0x346
github.com/Hackmanit/TInjA/pkg.Scan({0xf, 0x1, 0x1e, 0x1e, 0x0, 0x0, {0x0, 0x0}, {0x0, 0x0}, ...}, ...)
/root/go/pkg/mod/github.com/!hackmanit/[email protected]/pkg/scan.go:141 +0x8b0
github.com/Hackmanit/TInjA/cmd.glob..func4(0xc0001aac00?, {0xb23fca?, 0x4?, 0xb23fce?})
/root/go/pkg/mod/github.com/!hackmanit/[email protected]/cmd/url.go:14 +0x5d
github.com/spf13/cobra.(*Command).execute(0x128cc20, {0xc00006a9c0, 0x2, 0x2})
/root/go/pkg/mod/github.com/spf13/[email protected]/command.go:987 +0xaa3
github.com/spf13/cobra.(*Command).ExecuteC(0x128c940)
/root/go/pkg/mod/github.com/spf13/[email protected]/command.go:1115 +0x3ff
github.com/spf13/cobra.(*Command).Execute(...)
/root/go/pkg/mod/github.com/spf13/[email protected]/command.go:1039
github.com/Hackmanit/TInjA/cmd.Execute()
/root/go/pkg/mod/github.com/!hackmanit/[email protected]/cmd/root.go:66 +0x1a
main.main()
/root/go/pkg/mod/github.com/!hackmanit/[email protected]/tinja.go:8 +0xf
I asked Google AI this and it gave the following answer.
Error Message Description:
The "panic: runtime error: invalid memory address or nil pointer dereference" error means that the program is trying to access memory without permission. This is usually caused by a pointer issue.
"[signal SIGSEGV: segmentation violation code=0x1 addr=0x88 pc=0x8c5d54]" is a system-level signal indicating a memory violation.
Troubleshooting Steps:
Identify the Problematic Line: The stack trace points to line 161 of the doRequest function in the pkg/request.go file. Examine this line carefully.
Analyze Pointer Usage: Look for pointers that are not properly initialized or checked for nil values. Common causes include:
Use before a valid memory address is assigned to a pointer.
Dereferencing a pointer that has become nil.
Reaching beyond the boundaries of a slice or array.
Debugging Tools:
Use a debugger to step through the code and examine variables at run time.
Add print statements to your code to monitor variable values and execution flow.
Specific Code-Based Guidance:
Check line 161 of pkg/request.go: This line in the doRequest function is where the invalid memory access occurs.
Check pkg/scan.go lines 286 and 141: These lines in the scanURL and Scan functions may also be the source of the problem.
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google ❤️ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.