🎉 v1.0.0

.github/workflows/release-binary.yml

@@ -0,0 +1,24 @@
+name: 🎉 Release Binary
+
+on:
+  push:
+    tags:
+      - '*'
+  workflow_dispatch:
+
+jobs:
+  release:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Set up Go
+        uses: projectdiscovery/actions/setup/go@v1
+
+      - uses: projectdiscovery/actions/goreleaser@v1
+        with:
+          release: true
+        env:
+          GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}"

.github/workflows/release-test.yml

@@ -0,0 +1,23 @@
+name: 🔨 Release Test
+
+on:
+  pull_request:
+    paths:
+      - '**.go'
+      - '**.mod'
+  workflow_dispatch:
+
+jobs:
+  release-test:
+    runs-on: ubuntu-latest-16-cores
+    steps:
+      - name: "Check out code"
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Set up Go
+        uses: projectdiscovery/actions/setup/go@v1
+
+      - name: Release snapshot
+        uses: projectdiscovery/actions/goreleaser@v1

.gitignore

@@ -0,0 +1,7 @@
+.idea
+dist
+text
+*.exe
+*.pprof
+*.csv
+*.txt

.goreleaser.yml

@@ -0,0 +1,42 @@
+before:
+  hooks:
+    - go mod tidy
+
+builds:
+  - main: cmd/riverPass/riverPass.go
+    binary: riverPass
+    env:
+      - CGO_ENABLED=0
+
+    goos: [windows,linux,darwin]
+    goarch: [amd64,386,arm,arm64]
+    ignore:
+      - goos: darwin
+        goarch: 386
+      - goos: windows
+        goarch: arm
+      - goos: windows
+        goarch: arm64
+    ldflags:
+      - "-s"
+      - "-w"
+    flags:
+      - -trimpath
+
+#- main: cmd/tmc/main.go
+#  binary: tmc
+#  id: annotate
+#
+#  env:
+#  - CGO_ENABLED=0
+#
+#  goos: [linux]
+#  goarch: [amd64]
+
+archives:
+  - format: zip
+    name_template: '{{ .ProjectName }}_{{ .Version }}_{{ if eq .Os "darwin" }}macOS{{ else }}{{ .Os }}{{ end }}_{{ .Arch }}'
+
+checksum:
+  name_template: "{{ .ProjectName }}-linux-checksums.txt"
+

Dockerfile

@@ -0,0 +1,14 @@
+# Build
+FROM golang:1.23.0-alpine AS builder
+RUN apk add build-base
+WORKDIR /app
+COPY . /app
+RUN go mod download
+RUN go build cmd/riverPass/riverPass.go
+
+FROM alpine:3.18.3
+RUN apk add bind-tools ca-certificates
+COPY --from=builder /app/riverPass /usr/local/bin/riverPass
+RUN riverPass
+
+ENTRYPOINT ["riverPass"]

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2024 wjlin0
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -0,0 +1,118 @@
+<h4 align="center">riverPass 是一个用Go编写的瑞数WAF绕过工具。它利用了WebSocket协议，将请求发送的自身浏览器中，从而绕过了瑞数WAF的检测。</h4>
+
+<p align="center">
+<img src="https://img.shields.io/github/go-mod/go-version/wjlin0/riverPass?filename=go.mod" alt="">
+<a href="https://github.com/wjlin0/riverPass/releases/"><img src="https://img.shields.io/github/release/wjlin0/riverPass" alt=""></a> 
+<a href="https://github.com/wjlin0/riverPass" ><img alt="GitHub Repo stars" src="https://img.shields.io/github/stars/wjlin0/riverPass"></a>
+<a href="https://github.com/wjlin0/riverPass/releases"><img src="https://img.shields.io/github/downloads/wjlin0/riverPass/total" alt=""></a> 
+<a href="https://github.com/wjlin0/riverPass"><img src="https://img.shields.io/github/last-commit/wjlin0/PathScan" alt=""></a> 
+<a href="https://blog.wjlin0.com/"><img src="https://img.shields.io/badge/wjlin0-blog-green" alt=""></a>
+</p>
+
+# 特征
+
+- 无需安装任意其他工具，只需导入`mitmproxy`证书即可使用
+- 可自定义设置下游代理
+- 支持联动Burp进行重放
+
+
+# 安装riverPass
+## 自行编译
+riverPass自行编译，则需要**go1.23**才能安装成功。执行一下命令
+
+```sh
+go install -v github.com/wjlin0/riverPass/cmd/riverPass@latest
+```
+## 二进制
+下载准备运行的[二进制文件](https://github.com/wjlin0/riverPass/releases/latest)
+
+- [macOS-arm64](https://github.com/wjlin0/riverPass/releases/download/v1.0.0/riverPass_1.0.0_macOS_arm64.zip)
+
+- [macOS-amd64](https://github.com/wjlin0/riverPass/releases/download/v1.0.0/riverPass_1.0.0_macOS_amd64.zip)
+
+- [linux-amd64](https://github.com/wjlin0/riverPass/releases/download/v1.0.0/riverPass_1.0.0_linux_amd64.zip)
+
+- [windows-amd64](https://github.com/wjlin0/riverPass/releases/download/v1.0.0/riverPass_1.0.0_windows_amd64.zip)
+
+- [windows-386](https://github.com/wjlin0/riverPass/releases/download/v1.0.0/riverPass_1.0.0_windows_386.zip)
+
+
+# 用法
+
+```shell
+riverPass -h
+```
+```yaml
+riverPass 1.0.0 数瑞WAF绕过工具
+
+Usage:
+  ./riverPass [flags]
+
+Flags:
+输入:
+  -pp, -proxy-port int          代理监听端口 (default 8001)
+  -wp, -websocket-port int      websocket监听端口 (default 10001)
+  -wt, -websocket-token string  websocket通信密钥 (default "123456")
+
+代理:
+  -p, -proxy string[]  下游代理
+
+版本:
+  -v, -version                 输出版本
+  -update                      更新版本
+  -duc, -disable-update-check  跳过自动检查更新
+
+
+EXAMPLES:
+
+运行 riverPass 并监听 8081端口:
+  $ riverPass -pp 8081
+运行 riverPass 设置下游代理:
+  $ riverPass -proxy http://127.0.0.1:7890
+
+
+
+```
+
+**注意**：在此之前你必须导入`mitmproxy`的证书(若没有 可随意运行一次 `riverPass`,它位于你主机的 `$HOME/.mitmproxy` 目录下）
+
+![img.png](./img/README/img.png)
+
+首先 运行 `riverPass`
+```shell
+$ riverPass -pp 8081
+```
+![img2.png](./img/README/img2.png)
+
+使用浏览器设置`Burp`代理
+
+![image-20241017202645518](./img/README/image-20241017202645518.png)
+
+同时在`Burp` 设置目标
+
+![image-20241017202734525](./img/README/image-20241017202734525.png)
+
+完成后，访问目标一次`https://www.189.cn/sc/`
+
+![image-20241017202921338](./img/README/image-20241017202921338.png)
+
+其中你会在请求记录中，得到以下结果，则表明此时已经完成代理
+
+![image-20241017203033463](./img/README/image-20241017203033463.png)
+
+对某一个包进行重复攻击,加入以下请求头
+
+```text
+Req-Flag: 1
+```
+
+
+
+![image-20241017204535406](./img/README/image-20241017204535406.png)
+
+其中，你可以在`Burp` 日志中，发现你刚刚重复的请求包
+
+![image-20241017204644634](./img/README/image-20241017204644634.png)
+
+# 借鉴
+- https://github.com/R0A1NG/Botgate_bypass

cmd/riverPass/riverPass.go

@@ -0,0 +1,31 @@
+package main
+
+import (
+	"fmt"
+	"github.com/projectdiscovery/gologger"
+	"github.com/wjlin0/riverPass/pkg/runner"
+	"os"
+	"os/signal"
+)
+
+func main() {
+	run, err := runner.NewRunner(runner.ParserOptions())
+	if err != nil || run == nil {
+		if err != nil {
+			gologger.Print().Msg(fmt.Sprintf("unable to create Runner:%s", err.Error()))
+			os.Exit(-1)
+		}
+		return
+	}
+	c := make(chan os.Signal, 1)
+	signal.Notify(c, os.Interrupt)
+	go func() {
+		for range c {
+			gologger.Info().Msg("ctrl+c press: exiting")
+			os.Exit(-1)
+		}
+	}()
+	if err := run.RunEnumeration(); err != nil {
+		gologger.Fatal().Msgf("unable to run enumeration: %s", err.Error())
+	}
+}

go.mod

@@ -0,0 +1,88 @@
+module github.com/wjlin0/riverPass
+
+go 1.23
+
+require (
+	github.com/google/uuid v1.6.0
+	github.com/gorilla/websocket v1.5.3
+	github.com/lqqyt2423/go-mitmproxy v1.8.5
+	github.com/projectdiscovery/goflags v0.1.64
+	github.com/projectdiscovery/gologger v1.1.27
+	github.com/projectdiscovery/utils v0.2.14
+	github.com/wjlin0/utils v0.0.36
+)
+
+require (
+	aead.dev/minisign v0.2.0 // indirect
+	github.com/Masterminds/semver/v3 v3.2.1 // indirect
+	github.com/VividCortex/ewma v1.2.0 // indirect
+	github.com/alecthomas/chroma/v2 v2.14.0 // indirect
+	github.com/andybalholm/brotli v1.0.6 // indirect
+	github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 // indirect
+	github.com/aymanbagabas/go-osc52/v2 v2.0.1 // indirect
+	github.com/aymerick/douceur v0.2.0 // indirect
+	github.com/charmbracelet/glamour v0.8.0 // indirect
+	github.com/charmbracelet/lipgloss v0.13.0 // indirect
+	github.com/charmbracelet/x/ansi v0.3.2 // indirect
+	github.com/cheggaaa/pb/v3 v3.1.4 // indirect
+	github.com/cnf/structhash v0.0.0-20201127153200-e1b16c1ebc08 // indirect
+	github.com/denisbrodbeck/machineid v1.0.1 // indirect
+	github.com/dlclark/regexp2 v1.11.4 // indirect
+	github.com/dsnet/compress v0.0.2-0.20210315054119-f66993602bf5 // indirect
+	github.com/fatih/color v1.15.0 // indirect
+	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
+	github.com/golang/protobuf v1.5.3 // indirect
+	github.com/golang/snappy v0.0.4 // indirect
+	github.com/google/go-github/v30 v30.1.0 // indirect
+	github.com/google/go-querystring v1.1.0 // indirect
+	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
+	github.com/gorilla/css v1.0.1 // indirect
+	github.com/json-iterator/go v1.1.12 // indirect
+	github.com/klauspost/compress v1.17.8 // indirect
+	github.com/klauspost/pgzip v1.2.5 // indirect
+	github.com/kr/pretty v0.3.1 // indirect
+	github.com/logrusorgru/aurora v2.0.3+incompatible // indirect
+	github.com/lucasb-eyer/go-colorful v1.2.0 // indirect
+	github.com/mattn/go-colorable v0.1.13 // indirect
+	github.com/mattn/go-isatty v0.0.20 // indirect
+	github.com/mattn/go-runewidth v0.0.16 // indirect
+	github.com/mholt/archiver/v3 v3.5.1 // indirect
+	github.com/microcosm-cc/bluemonday v1.0.27 // indirect
+	github.com/miekg/dns v1.1.56 // indirect
+	github.com/minio/selfupdate v0.6.1-0.20230907112617-f11e74f84ca7 // indirect
+	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
+	github.com/modern-go/reflect2 v1.0.2 // indirect
+	github.com/muesli/reflow v0.3.0 // indirect
+	github.com/muesli/termenv v0.15.3-0.20240618155329-98d742f6907a // indirect
+	github.com/nwaples/rardecode v1.1.3 // indirect
+	github.com/pierrec/lz4/v4 v4.1.2 // indirect
+	github.com/pkg/errors v0.9.1 // indirect
+	github.com/projectdiscovery/blackrock v0.0.1 // indirect
+	github.com/remeh/sizedwaitgroup v1.0.0 // indirect
+	github.com/rivo/uniseg v0.4.7 // indirect
+	github.com/saintfish/chardet v0.0.0-20230101081208-5e3ef4b5456d // indirect
+	github.com/satori/go.uuid v1.2.0 // indirect
+	github.com/sirupsen/logrus v1.9.3 // indirect
+	github.com/tidwall/gjson v1.14.4 // indirect
+	github.com/tidwall/match v1.1.1 // indirect
+	github.com/tidwall/pretty v1.2.1 // indirect
+	github.com/ulikunitz/xz v0.5.11 // indirect
+	github.com/xi2/xz v0.0.0-20171230120015-48954b6210f8 // indirect
+	github.com/yuin/goldmark v1.7.4 // indirect
+	github.com/yuin/goldmark-emoji v1.0.3 // indirect
+	go.uber.org/atomic v1.11.0 // indirect
+	golang.org/x/crypto v0.27.0 // indirect
+	golang.org/x/exp v0.0.0-20230315142452-642cacee5cc0 // indirect
+	golang.org/x/mod v0.17.0 // indirect
+	golang.org/x/net v0.29.0 // indirect
+	golang.org/x/oauth2 v0.11.0 // indirect
+	golang.org/x/sync v0.8.0 // indirect
+	golang.org/x/sys v0.25.0 // indirect
+	golang.org/x/term v0.24.0 // indirect
+	golang.org/x/text v0.18.0 // indirect
+	golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect
+	google.golang.org/appengine v1.6.7 // indirect
+	google.golang.org/protobuf v1.33.0 // indirect
+	gopkg.in/djherbis/times.v1 v1.3.0 // indirect
+	gopkg.in/yaml.v3 v3.0.1 // indirect
+)