Keys not loading from secrets.yml

[DeathHacks]

Describe the bug What happened?

API Keys are loading from secrets.yml. Items have been added, testing with and without ''

Expected behavior What was supposed to happen? API keys would be picked up allowing for modules needing keys to run

BBOT Command Example: bbot -m httpx -t evilcorp.com bbot -t example.com -f subdomain-enum

OS, BBOT Installation Method + Version pipx install PRETTY_NAME="Kali GNU/Linux Rolling" NAME="Kali GNU/Linux" VERSION_ID="2023.2" VERSION="2023.2" VERSION_CODENAME=kali-rolling ID=kali ID_LIKE=debian HOME_URL="https://www.kali.org/" SUPPORT_URL="https://forums.kali.org/" BUG_REPORT_URL="https://bugs.kali.org/" ANSI_COLOR="1;31"

BBOT Config └─$ bbot --current-config
[INFO] Loaded defaults from /home/kali/.local/lib/python3.11/site-packages/bbot/defaults.yml [INFO] Loaded config from /home/kali/.config/bbot/bbot.yml [INFO] Loaded secrets from /home/kali/.config/bbot/secrets.yml modules: vhost: wordlist: https://raw.githubusercontent.com/danielmiessler/SecLists/master/Discovery/DNS/subdomains-top1million-5000.txt force_basehost: '' lines: 5000 ffuf: wordlist: https://raw.githubusercontent.com/danielmiessler/SecLists/master/Discovery/Web-Content/raft-small-directories.txt lines: 5000 max_depth: 0 version: 2.0.0 extensions: '' nuclei: version: 2.9.15 tags: '' templates: '' severity: '' ratelimit: 150 concurrency: 25 mode: manual etags: '' budget: 1 directory_only: true retries: 0 batch_size: 200 robots: include_sitemap: false include_allow: true include_disallow: true urlscan: urls: false bevigil: api_key: '' urls: false nmap: ports: '' top_ports: 100 timing: T4 skip_host_discovery: true virustotal: api_key: '' ipneighbor: num_bits: 4 hackertarget: {} github: api_key: '' leakix: api_key: '' bucket_digitalocean: permutations: false crobat: {} subdomain_hijack: fingerprints: https://raw.githubusercontent.com/EdOverflow/can-i-take-over-xyz/master/fingerprints.json bucket_aws: permutations: false columbus: {} bypass403: {} url_manipulation: allow_redirects: true threatminer: {} emailformat: {} fullhunt: api_key: '' azure_tenant: {} viewdns: {} ntlm: try_all: false builtwith: api_key: '' redirects: true chaos: api_key: '' binaryedge: api_key: '' max_records: 1000 git: {} certspotter: {} skymem: {} secretsdb: min_confidence: 99 signatures: https://raw.githubusercontent.com/blacklanternsecurity/secrets-patterns-db/master/db/rules-stable.yml azure_realm: {} bucket_gcp: permutations: false fingerprintx: version: 1.1.4 smuggler: {} dnscommonsrv: {} passivetotal: username: '' api_key: '' credshed: username: '' password: '' credshed_url: '' generic_ssrf: {} paramminer_headers: wordlist: '' http_extract: true skip_boring_words: true dehashed: username: '' api_key: '' bucket_azure: permutations: false httpx: threads: 50 in_scope_only: true version: 1.2.5 max_response_size: 5242880 sslcert: timeout: 5.0 skip_non_ssl: true wayback: urls: false garbage_threshold: 10 anubisdb: {} telerik: exploit_RAU_crypto: false rapiddns: {} paramminer_getparams: wordlist: '' http_extract: true skip_boring_words: true pgp: search_urls:

• https://keyserver.ubuntu.com/pks/lookup?fingerprint=on&op=vindex&search=
• http://the.earth.li:11371/pks/lookup?fingerprint=on&op=vindex&search= wappalyzer: {} host_header: {} paramminer_cookies: wordlist: '' http_extract: true skip_boring_words: true ipstack: api_key: '' gowitness: version: 2.4.2 threads: 4 timeout: 10 resolution_x: 1440 resolution_y: 900 output_path: '' iis_shortnames: detect_only: true max_node_count: 30 securitytrails: api_key: '' otx: {} massdns: wordlist: https://raw.githubusercontent.com/danielmiessler/SecLists/master/Discovery/DNS/subdomains-top1million-5000.txt max_resolvers: 1000 max_mutations: 500 zoomeye: api_key: '' max_pages: 20 include_related: false filedownload: extensions:
• bak
• bash
• bashrc
• conf
• cfg
• crt
• csv
• db
• sqlite
• doc
• docx
• exe
• ica
• indd
• ini
• jar
• key
• pub
• log
• markdown
• md
• msi
• odg
• odp
• ods
• odt
• pdf
• pem
• png
• pps
• ppsx
• ppt
• pptx
• ps1
• raw
• rdp
• sh
• sql
• swp
• sxw
• tar
• tar.gz
• zip
• txt
• vbs
• wpd
• xls
• xlsx
• xml
• yml
• yaml max_filesize: 10MB subdomaincenter: {} sitedossier: {} oauth: try_all: false shodan_dns: api_key: '' hunterio: api_key: '' dnszonetransfer: timeout: 10 badsecrets: {} dnsdumpster: {} ffuf_shortnames: wordlist: '' wordlist_extensions: '' lines: 1000000 max_depth: 1 version: 2.0.0 extensions: '' ignore_redirects: true find_common_prefixes: false find_delimeters: true sublist3r: {} wafw00f: generic_detect: true crt: {} censys: api_id: '' api_secret: '' max_pages: 5 social: {} hunt: {} bucket_firebase: permutations: false c99: api_key: '' digitorus: {} riddler: {} nsec: {} masscan: ports: 80,443 rate: 600 wait: 10 ping_first: false use_cache: false ip2location: api_key: '' lang: '' myssl: {} asn: {} affiliates: {} output_modules: csv: output_file: '' json: output_file: '' console: false neo4j: uri: bolt://localhost:7687 username: neo4j password: bbotislife asset_inventory: output_file: '' use_previous: false summary_netmask: 16 slack: webhook_url: '' event_types:
• VULNERABILITY
• FINDING min_severity: LOW http: url: '' method: POST bearer: '' username: '' password: '' timeout: 10 discord: webhook_url: '' event_types:
• VULNERABILITY
• FINDING min_severity: LOW human: output_file: '' console: true subdomains: output_file: '' include_unresolved: false websocket: url: '' token: '' teams: webhook_url: '' event_types:
• VULNERABILITY
• FINDING min_severity: LOW web_report: output_file: '' css_theme_file: https://cdnjs.cloudflare.com/ajax/libs/github-markdown-css/5.1.0/github-markdown.min.css python: {} internal_modules: speculate: max_hosts: 65536 ports: 80,443 excavate: {} aggregate: {} home: /home/kali/.bbot scope_report_distance: 0 dns_resolution: true max_threads: 25 dns_queries_per_second: 1000 web_requests_per_second: 100 status_frequency: 15 http_proxy: null user_agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 web_spider_distance: 0 web_spider_depth: 1 web_spider_links_per_page: 25 scope_search_distance: 0 scope_dns_search_distance: 2 dns_resolve_distance: 5 speculate: true excavate: true aggregate: true http_timeout: 10 httpx_timeout: 5 http_headers: {} http_retries: 1 httpx_retries: 1 http_debug: false http_max_redirects: 5 dns_timeout: 5 dns_retries: 1 dns_wildcard_ignore: [] dns_wildcard_tests: 10 dns_abort_threshold: 50 dns_filter_ptrs: true dns_debug: false ssl_verify: false keep_scans: 20 url_extension_blacklist:
  • png
  • jpg
  • bmp
  • ico
  • jpeg
  • gif
  • svg
  • css
  • woff
  • woff2
  • ttf
  • mp3
  • m4a
  • wav
  • flac
  • mp4
  • mkv
  • avi
  • wmv
  • mov
  • flv
  • webm url_extension_httpx_only:
  • js omit_event_types:
  • HTTP_RESPONSE
  • URL_UNVERIFIED
  • DNS_NAME_UNRESOLVED agent_url: '' agent_token: '' interactsh_server: null interactsh_token: null interactsh_disable: false dns_omit_queries:
  • SRV:mail.protection.outlook.com
  • CNAME:mail.protection.outlook.com
  • TXT:mail.protection.outlook.com

Logs [INFO] Loaded defaults from /home/kali/.local/lib/python3.11/site-packages/bbot/defaults.yml [INFO] Loaded config from /home/kali/.config/bbot/bbot.yml [INFO] Loaded secrets from /home/kali/.config/bbot/secrets.yml [DBUG] Using selector: EpollSelector [VERB] Command: /home/kali/.local/bin/bbot -t example.com -f subdomain-enum --dry-run --debug [VERB] Enabling urlscan because it has flag "subdomain-enum" [VERB] Enabling bevigil because it has flag "subdomain-enum" [VERB] Enabling virustotal because it has flag "subdomain-enum" [VERB] Enabling ipneighbor because it has flag "subdomain-enum" [VERB] Enabling hackertarget because it has flag "subdomain-enum" [VERB] Enabling github because it has flag "subdomain-enum" [VERB] Enabling leakix because it has flag "subdomain-enum" [VERB] Enabling subdomain_hijack because it has flag "subdomain-enum" [VERB] Enabling columbus because it has flag "subdomain-enum" [VERB] Enabling threatminer because it has flag "subdomain-enum" [VERB] Enabling fullhunt because it has flag "subdomain-enum" [VERB] Enabling azure_tenant because it has flag "subdomain-enum" [VERB] Enabling builtwith because it has flag "subdomain-enum" [VERB] Enabling chaos because it has flag "subdomain-enum" [VERB] Enabling binaryedge because it has flag "subdomain-enum" [VERB] Enabling certspotter because it has flag "subdomain-enum" [VERB] Enabling azure_realm because it has flag "subdomain-enum" [VERB] Enabling dnscommonsrv because it has flag "subdomain-enum" [VERB] Enabling passivetotal because it has flag "subdomain-enum" [VERB] Enabling httpx because it has flag "subdomain-enum" [VERB] Enabling sslcert because it has flag "subdomain-enum" [VERB] Enabling wayback because it has flag "subdomain-enum" [VERB] Enabling anubisdb because it has flag "subdomain-enum" [VERB] Enabling rapiddns because it has flag "subdomain-enum" [VERB] Enabling securitytrails because it has flag "subdomain-enum" [VERB] Enabling otx because it has flag "subdomain-enum" [VERB] Enabling massdns because it has flag "subdomain-enum" [VERB] Enabling zoomeye because it has flag "subdomain-enum" [VERB] Enabling subdomaincenter because it has flag "subdomain-enum" [VERB] Enabling sitedossier because it has flag "subdomain-enum" [VERB] Enabling oauth because it has flag "subdomain-enum" [VERB] Enabling shodan_dns because it has flag "subdomain-enum" [VERB] Enabling hunterio because it has flag "subdomain-enum" [VERB] Enabling dnszonetransfer because it has flag "subdomain-enum" [VERB] Enabling dnsdumpster because it has flag "subdomain-enum" [VERB] Enabling crt because it has flag "subdomain-enum" [VERB] Enabling censys because it has flag "subdomain-enum" [VERB] Enabling c99 because it has flag "subdomain-enum" [VERB] Enabling digitorus because it has flag "subdomain-enum" [VERB] Enabling riddler because it has flag "subdomain-enum" [VERB] Enabling nsec because it has flag "subdomain-enum" [VERB] Enabling myssl because it has flag "subdomain-enum" [VERB] Enabling asn because it has flag "subdomain-enum" [VERB] Enabling subdomains because it has flag "subdomain-enum" [VERB] Creating events from 1 targets [DBUG] Autodetected event type "DNS_NAME" based on data: "example.com"

DBUG] internal.speculate: Finished setting up module speculate
[WARN] Setup soft-failed for builtwith: No API key set
[WARN] Setup soft-failed for fullhunt: No API key set
[WARN] Setup soft-failed for virustotal: No API key set
[DBUG] Setup succeeded for sslcert (success)
[WARN] Setup soft-failed for passivetotal: No API key set
[WARN] Setup soft-failed for c99: No API key set
[WARN] Setup soft-failed for github: No API key set
[DBUG] Setup succeeded for wayback (success)
[DBUG] Setup succeeded for rapiddns (success)
[WARN] Setup soft-failed for censys: No API key set
[WARN] Setup soft-failed for zoomeye: No API key set
[DBUG] Setup succeeded for hackertarget (success)
[DBUG] Setup succeeded for riddler (success)
[DBUG] Setup succeeded for certspotter (success)
[WARN] Setup soft-failed for hunterio: No API key set
[DBUG] Setup succeeded for aggregate (success)
[DBUG] Setup succeeded for httpx (success)
[WARN] Setup soft-failed for securitytrails: No API key set
[WARN] Setup soft-failed for chaos: No API key set
[DBUG] Setup succeeded for ipneighbor (success)
[DBUG] Setup succeeded for excavate (success)
[DBUG] Setup succeeded for anubisdb (success)
[WARN] Setup soft-failed for shodan_dns: No API key set
[DBUG] Setup succeeded for columbus (success)
[DBUG] Setup succeeded for leakix (success)
[DBUG] Setup succeeded for csv (success)
[DBUG] Setup succeeded for asn (success)
[DBUG] Setup succeeded for sitedossier (success)
[DBUG] Setup succeeded for crt (success)
[DBUG] Setup succeeded for massdns (success)
[DBUG] Setup succeeded for human (success)
[DBUG] Setup succeeded for azure_realm (success)
[DBUG] Setup succeeded for subdomain_hijack (success)
[DBUG] Setup succeeded for digitorus (success)
[DBUG] Setup succeeded for myssl (success)

[DBUG] Setup succeeded for json (success)
[DBUG] Setup succeeded for azure_tenant (success)
[DBUG] Setup succeeded for subdomaincenter (success)
[DBUG] Setup succeeded for dnscommonsrv (success)
[DBUG] Setup succeeded for nsec (success)
[DBUG] Setup succeeded for subdomains (success)
[WARN] Setup soft-failed for bevigil: No API key set
[DBUG] Setup succeeded for threatminer (success)
[DBUG] Setup succeeded for dnsdumpster (success)
[DBUG] Setup succeeded for oauth (success)
[DBUG] Setup succeeded for speculate (success)
[WARN] Setup soft-failed for binaryedge: No API key set
[DBUG] Setup succeeded for urlscan (success)
[DBUG] Setup succeeded for dnszonetransfer (success)
[DBUG] Setup succeeded for otx (success)
[WARN] Setup failed for 14 modules
[SUCC] Setup succeeded for 36 modules.

**Screenshots**
If applicable, add screenshots to help explain your problem.
![secrets api](https://github.com/blacklanternsecurity/bbot/assets/119837325/e7d6f51b-c65f-459e-9b52-405545aeb65d)

[TheTechromancer]

Thanks for the report. This is a common issue. Usually it's due to one of two causes:

1. Entries in secrets.yml being commented-out (they are commented by default)
2. Improper yaml syntax. The format must be:

modules:
  module_name:
    key: value

Can you verify on both these fronts and let me know if it's still giving you trouble?

[DeathHacks]

I knew it would be stupidity on my end. fml.

Thanks for the swift response. I really appreciate it.