search

amocsub / easm

EASM aims to be a GitOps Workflow environment that relies on Github Actions and Kubernetes to run CyberSecurity tools.
https://amocsub.gitbook.io/blog/posts/easm-for-dummies
GNU General Public License v3.0
0 stars 0 forks source link

Scan HackerOne #7

Open amocsub opened 5 months ago

amocsub commented 5 months ago

EASM

Create a comment with any of the following templates for the tools and Github Actions would take it and trigger the corresponding application and return the results from the tool in a new comment. In the case of a failure it would post the error.

To start and to have it as a reference, you can open the issue with just this information.

subfinder

Being "domain" a comma-separated list of all the domains to scan.

{
    "tool": "subfinder",
    "domain": "",
    "config": "config/subfinder/general/config.yaml",
    "flags": "",
    "active": "false"
}

dnsX

Being "list" a comma-separated list of all the sub-domains/host to resolve.

{
    "tool": "dnsx",
    "list": "",
    "resolver": "config/resolvers.txt",
    "flags": ""
}

naabu

Being "host" a comma-separated list of all the hosts to scan ports for, same as ports.

{
    "tool": "naabu",
    "host": "",
    "ports": "",
    "rate": "1000",
    "passive": "false",
    "flags": "",
}

httpx

Being "list" a comma-separated list of all the host to process.

{
    "tool": "httpx",
    "list": "",
    "flags": "",
}

nuclei

Being "target" a comma-separated list of all the target URLs/hosts to scan.

{
    "tool": "nuclei"
    "target": "",
    "templates": "config/nuclei/nuclei-templates",
    "workflows": "",
    "config": "config/nuclei/general/config.yaml",
    "user-agent": "Mozilla/5.0 (compatible; amocsub)",
    "markdown-export": "",
    "flags": ""
}
amocsub commented 5 months ago

{ "tool": "subfinder", "domain": "hackerone.com", "config": "config/subfinder/general/config.yaml", "flags": "", "active": "false" }

github-actions[bot] commented 5 months ago
subfinder output ``` info.hackerone.com,[digitorus,anubis,crtsh] mta-sts.forwarding.hackerone.com,[digitorus,leakix,anubis,alienvault,rapiddns,crtsh] a.ns.hackerone.com,[hackertarget,anubis,alienvault,dnsdumpster,rapiddns] events.hackerone.com,[anubis,alienvault,crtsh] zendesk2.hackerone.com,[rapiddns] zendesk4.hackerone.com,[rapiddns] links.hackerone.com,[digitorus,anubis,crtsh] design.hackerone.com,[digitorus,leakix,anubis,alienvault,crtsh] go.hackerone.com,[anubis,crtsh] 3d.hackerone.com,[alienvault] resources.hackerone.com,[alienvault,rapiddns] zendesk3.hackerone.com,[rapiddns] www.hackerone.com,[dnsdumpster,rapiddns,crtsh,digitorus,hackertarget,sitedossier,alienvault,leakix,waybackarchive,commoncrawl] api.hackerone.com,[leakix,hackertarget,anubis,alienvault,dnsdumpster,rapiddns,crtsh,digitorus] mta-sts.hackerone.com,[leakix,anubis,alienvault,rapiddns,crtsh,digitorus] b.ns.hackerone.com,[alienvault,dnsdumpster,rapiddns,hackertarget,anubis] forwarding.hackerone.com,[rapiddns] hackerone.com,[crtsh] docs.hackerone.com,[anubis,alienvault,rapiddns,crtsh,digitorus,leakix,hackertarget] mta-sts.managed.hackerone.com,[rapiddns,crtsh,digitorus,leakix,anubis,alienvault] support.hackerone.com,[digitorus,leakix,anubis,alienvault,rapiddns,crtsh] gslink.hackerone.com,[alienvault,rapiddns,crtsh,digitorus,leakix,anubis] zendesk1.hackerone.com,[rapiddns] ```