What's Changed
🎉 New Features
- Added support for protocol redirects by @Mzack9999 in #7296
- Added impacket integration by @Mzack9999 in #7356
- Added wmi, tsch, scmr, and dcom helper modules for JS by @dwisiswant0 in #7388
- Added mirroring of -config, -report-config, and -dashboard flags for SDK callers by @ShubhamRasal in #7393
🐞 Bug Fixes
- Fixed DNS variables resolving issue by @Mzack9999 in #7379
- Fixed expressions to prefer exact placeholders over expressions by @dwisiswant0 in #7397
- Fixed an issue in JS where runtimes that outlive the interrupt grace period are not abandoned, by @Mzack9999 in #7378
- Fixed an issue in reporting/jira where status-not was not matched against the transition target status name by @knakul853 in #7361
- Fixed runner to write unsigned-templates warning (WRN) to stderr by @ChrisJr404 in #7371
- Fixed
InternalEventaccess serialization in interactsh by @dwisiswant0 in #7322 - Fixed workflow to ensure context is properly propagated to child and race steps by @dwisiswant0 in #7383
- Fixed reporting/gitlab by bumping client-go to v1.9.1 and widening IDs to int64 by @ShubhamRasal in #7398
- Fixed memogen to skip context correctly and auto-push scope to upstream by @Mzack9999 in #7419
- Fixed a slice-bounds panic in telnetmini's ParseNTLMResponse when handling truncated NTLM challenges by @tejgokani in #7425
- Fixed SMBv1 probing in JS to occur after SMB2 negotiation by @dwisiswant0 in #7430
- Fixed templates to reject unknown fields when loading JSON templates by @tejgokani in #7453
- Fixed persistence of QueryAuthStrategy parameters in ApplyAuthStrategy by @akhilesharora in #7410
- Fixed loader to warn when templates are excluded by
.nuclei-ignoretags by @dogancanbakir in #7452
Other Changes
- Splitted exact matches and pattern handling in catalog for improved performance by @mikhail5555 in #7340
- Updated README_PT-BR.md to reflect current project description and features by @gugacyber in #7405
- Fixed broken cloud scanning link by @dogancanbakir in #7413
- Bumped pdsec modules + govaluate/aurora migration by @dogancanbakir in #7414
- Dropped vulnerable docker/docker dependency by @dogancanbakir in #7447
- Used path-aware filesystem containment checks by @dwisiswant0 in #7420
- Centralized runtime session handling by @dwisiswant0 in #7449
New Contributors
- @ChrisJr404 made their first contribution in #7371
- @gugacyber made their first contribution in #7405
- @akhilesharora made their first contribution in #7410
- @tejgokani made their first contribution in #7425
Full Changelog: v3.8.0...v3.9.0