Proto commits in google/tsunami-security-scanner

These 30 commits are when the Protocol Buffers files have changed:

Commit:b5b50b9
Author:Nghi Tran
Committer:Copybara-Service

internal update PiperOrigin-RevId: 740037364 Change-Id: If20167ba371673015b4704fe894bc9e03a06afd5

The documentation is generated from this commit.

Commit:9a3af37
Author:Pierre Precourt
Committer:Copybara-Service

Tsunami now reports whether the host is alive or down during scanning. Note that the heuristic is simply based on the number of vulnerabilities and identified services. Because the `-Pn` (consider all host alive) is passed down to nmap, this is the best option. PiperOrigin-RevId: 734509566 Change-Id: Ic56a89f6e6766a5adfc640b0a8950446d3502478

Commit:6f0a8dc
Author:Leonardo Tamiano
Committer:Copybara-Service

Copybara import of the project: -- ce33b3113af6f5c29ba262d14411d1c7e8839e91 by LeonardoE95 <leonardo.tamiano@mindedsecurity.com>: Add JSP payload for Reflective RCE -- 4b6b849cb51a1f57113ae4d413fa133ddc37d571 by LeonardoE95 <leonardotamiano95@gmail.com>: Fix: Add newline COPYBARA_INTEGRATE_REVIEW=https://github.com/google/tsunami-security-scanner/pull/127 from mindedsecurity:master 4b6b849cb51a1f57113ae4d413fa133ddc37d571 PiperOrigin-RevId: 705246572 Change-Id: I1661382d3a82855365bc8d253598dd2757a078e0

Commit:2f2bd0b
Author:Copybara-Service

Merge pull request #110 from doyensec:additional_rce_payloads PiperOrigin-RevId: 662944088 Change-Id: I3910182770bc14410b54513b254bb02699c4e92b

Commit:67f5d79
Author:Tsunami Team
Committer:Copybara-Service

Support compact RunRequest so requests sent to heavy plugin services still fit in the default gRPC message limit. PiperOrigin-RevId: 656270995 Change-Id: I3216fe01796ff866caa464aad1d49d1c0dd35256

Commit:b4b2089
Author:Tsunami Team
Committer:Copybara-Service

Support OS fingerprinting PiperOrigin-RevId: 655093248 Change-Id: I89e1a894dac6eeaeb868fa14462310ed0fc63ee7

Commit:1865129
Author:Dawid Golunski

Additional RCE payloads

Commit:7cf51a4
Author:Pierre Precourt
Committer:Copybara-Service

Add a field to the network service proto of Tsunami to keep track of supported HTTP methods. PiperOrigin-RevId: 591823049 Change-Id: I81dc68aa44023248538ecde5fa5f73fb96b9ff89

Commit:55aa697
Author:Pierre Precourt
Committer:Copybara-Service

Add a field to the network service proto containing supported SSL version. This information is used in the heuristic that defines if a web service uses SSL or not. PiperOrigin-RevId: 591821277 Change-Id: I1a9b6ac2a67fee1edbe82489b1132d731dcde150

Commit:8b23485
Author:Annie Mao
Committer:Copybara-Service

Add db client interface and extend AdditionalDetail proto to support credential list. PiperOrigin-RevId: 545790155 Change-Id: Id0e0d8e826c49308d7b984ad788e2f9671af2dd9

Commit:18e3ba0
Author:John Y. Kim
Committer:Copybara-Service

Add PluginService gRPC client handler PiperOrigin-RevId: 456336066 Change-Id: I05beba55de2ddaba817fb53c4401f7bbf029ceba

Commit:db9f1b8
Author:John Y. Kim
Committer:Copybara-Service

Add plugin RPC service protocol proto. PiperOrigin-RevId: 455474098 Change-Id: I8937b9ecec51f9749239d7193252eea2c8449e11

Commit:6d628ca
Author:John Y. Kim
Committer:Copybara-Service

Add plugin representation protos used for the RPC service and data between language servers. PiperOrigin-RevId: 454913844 Change-Id: I498f98cf5bd6ff5a6dafa8a088f5d465be99707b

Commit:240b972
Author:Annie Mao
Committer:Copybara-Service

Add cpe list from nmap scan to Tsunami scan report. PiperOrigin-RevId: 449334055 Change-Id: I5343982449cb1403a63eacc3c76bcce094f2d8bb

Commit:72cc74e
Author:Tsunami Team
Committer:Copybara-Service

Support url target in tsunami core engine. Port Scanning will be skipped for these targets PiperOrigin-RevId: 447646861 Change-Id: I47e04a2f5883a6a55ae39255ab3b15bf3e32a076

Commit:a8ebc94
Author:Annie Mao
Committer:Copybara-Service

Add headers field to web fingerprint crawl result. PiperOrigin-RevId: 446043036 Change-Id: I817f85cbb3d0210c49c603add455f34e1e38def1

Commit:1cc8892
Author:Albert Cui
Committer:Copybara-Service

Reduce complexity of the framework interface by removing the use_callback_server option and always preferring a callback server payload if the callback server is configured. Also simplify by removing NoCallbackServerException and associated config. PiperOrigin-RevId: 436567936 Change-Id: I0d92a9d565f96e556775029f42530bf60e29af1e

Commit:68fca4b
Author:Albert Cui
Committer:Copybara-Service

Add general SSRF payload definition PiperOrigin-RevId: 431722245 Change-Id: I74fac814056683bd4d190a3c630e55535e6daf0f

Commit:97fdf95
Author:Albert Cui
Committer:Copybara-Service

Move payload definitions into a yaml file to allow detectors in other languages to use the same payload definitions. PiperOrigin-RevId: 429170169 Change-Id: I0d4ab632bbbc700aa3575607e5d608fe14f8df44

Commit:02d74f4
Author:Albert Cui
Committer:Copybara-Service

Add payload generator configuration protos PiperOrigin-RevId: 421714771 Change-Id: I87dd26b213fa5fc0c120cfe1ff2e3ec1aaca85ec

Commit:35c10ac
Author:Tsunami Team
Committer:Copybara-Service

Add all crawling results into `WebServiceContext`. PiperOrigin-RevId: 416219635 Change-Id: I96f33bcaaad6f453ae20222bc2924f706a7ee39b

Commit:ab7fbab
Author:Tsunami Team
Committer:Copybara-Service

Deprecate `network_service` with `network_endpoint` in `CrawlConfig`. PiperOrigin-RevId: 416210800 Change-Id: I63cbf60e9f859aa7f9724febe314bcb1b00f9b34

Commit:7e3c986
Author:Tsunami Team
Committer:Copybara-Service

Add a new CrawlConfig option for enforcing crawling scope checks. PiperOrigin-RevId: 369662429 Change-Id: Icd29d76376ac4ecd91bc5aa377551412f2e94020

Commit:3207d9a
Author:Copybara-Service

Merge pull request #57 from schischi:protobuf-go PiperOrigin-RevId: 345501429 Change-Id: I0d8e54ddf108d1e1d1d228bd2a6cdc89dee7403e

Commit:50039c8
Author:Tsunami Team
Committer:Copybara-Service

Add information about the scanned network service to the crawl config protos. PiperOrigin-RevId: 343038216 Change-Id: I729cf5f73966cad54b1ff97a9be40d793055ec01

Commit:827c711
Author:Tsunami Team
Committer:Copybara-Service

Change the Tsunami NetworkEndpoint enums to support scanning by ip addresses and hostanames at the same time. PiperOrigin-RevId: 340660950 Change-Id: I4081e8236e9a1abccb0ef11a78439e1feef05d43

Commit:a8c97a0
Author:Guoli Ma
Committer:Copybara-Service

Store reconnaissance result in final scan report. Store software and version for web fingerprinting. PiperOrigin-RevId: 329746678 Change-Id: I37037b6eb14f607d8abf30e96f5e239d345512ba

Commit:f12a910
Author:Adrien Schildknecht
Committer:Adrien Schildknecht

Add the go_package option to the protobuf files This option will soon be required to generate the Go code for the protobuf files. Having valid protobuf files for Go would allow us to write report processors in this language. See https://developers.google.com/protocol-buffers/docs/reference/go-generated#package > Source .proto files should contain a go_package option specifying the full Go import path for the file. If there is no go_package option, the compiler will try to guess at one. A future release of the compiler will make the go_package option a requirement. The Go package name of generated code will be the last path component of the go_package option. Test plan: Before: $ protoc vulnerability.proto --go_out=/tmp/ 2020/07/22 14:55:26 WARNING: Missing 'go_package' option in "vulnerability.proto", please specify it with the full Go package path as a future release of protoc-gen-go will require this be specified. See https://developers.google.com/protocol-buffers/docs/reference/go-generated#package for more information. After: $ protoc vulnerability.proto --go_out=/tmp/ $ echo $? 0

Commit:c157f24
Author:Guoli Ma
Committer:Copybara-Service

switch HTTP request body proto from string to bytes. PiperOrigin-RevId: 321226266 Change-Id: Id630b669095168b8c9fff6af700605f10d08a41b

Commit:eaa9954
Author:Tsunami Team
Committer:magl0

Internal change PiperOrigin-RevId: 314943243 Change-Id: Idff6d006911dae68dbc771957e379e45c975f5d4