vmfunc 5050900f29 feat(dirlist): response filters, wildcard calibration and custom wordlists ...

the old scanner surfaced every response that wasn't 404/403, so modern SPA
catch-all 200s flooded the output and made -dirlist near-useless. add ffuf-style
matching:

- -mc/-fc/-fr and -fs/-fw filter by status, regex, body size and word count;
  bodies are read through a capped io.LimitReader so size/word counts are
  deterministic and memory stays flat. filters win over matches.
- -ac auto-calibrates the soft-404 baseline from a few deterministic
  non-existent paths and drops responses matching that wildcard shape.
- -w overrides the size switch with a local file or remote list (fetched through
  the shared client so proxy/rate-limit apply); -e appends extensions per word.

size and words are added to DirectoryResult for the json output.

2026-06-10 14:47:17 -07:00

..

config

feat(dirlist): response filters, wildcard calibration and custom wordlists

2026-06-10 14:47:17 -07:00

httpx

feat: shared http client with proxy, custom headers and rate limiting

2026-06-09 17:28:14 -07:00

logger

refactor: dedupe url scheme stripping

2026-06-09 13:51:04 -07:00

modules

test(modules): cover matchers, extractors, loader and executor

2026-06-10 14:47:17 -07:00

nuclei

chore: bump copyright headers to 2026

2026-06-08 18:30:48 -07:00

output

fix(output): dedupe non-tty progress milestones

2026-06-09 16:03:52 -07:00

patchnotes

feat: stamp and surface the build version

2026-06-09 14:18:28 -07:00

scan

feat(dirlist): response filters, wildcard calibration and custom wordlists

2026-06-10 14:47:17 -07:00

styles

chore: bump copyright headers to 2026

2026-06-08 18:30:48 -07:00

version

feat: stamp and surface the build version

2026-06-09 14:18:28 -07:00