search

PhonePe / mantis

Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
https://phonepe.github.io/mantis/introduction/introduction.html
Apache License 2.0
810 stars 93 forks source link

Enhance Mantis "list" command #37

Open 0xbharath opened 2 months ago

0xbharath commented 2 months ago

Discussed in https://github.com/PhonePe/mantis/discussions/29

Originally posted by **0xbharath** June 19, 2024 @Prateek-Thakare @Ncoder2 Can we have a "list" as a top level command for mantis along with onboard and scan? I feel that this can come in handy when one wants to list orgs that are onboarded to the Mantis and other details. I have onboarded 20+ orgs on Mantis and it is not comfortable to do a DB query or go to dashboard everytime to get this list. Example: ``` $ mantis list orgs org1 org2 org2 ```

This is a good issue to pick up for new contributors. mantis list is already implemented. We need to enhance the mantis list command with more features

  1. To list the TLDs under an org. something like
mantis list -o org tlds
mantis list -o navigalactic tlds
navigalactic.com
navigalactic.in
navigalatic.org
Prateek-Thakare commented 1 month ago

This command can be enhanced to list the subdomains found after a certain date based on timestamps. mantis list -o navigalactic --subs --after 2024-25-07 This should list the subdomains found after 2024-25-07. Similarly before and between constructs can be added to list subdomains.