-
-
Notifications
You must be signed in to change notification settings - Fork 1.1k
/
default_scan_engines.yaml
104 lines (104 loc) · 7.06 KB
/
default_scan_engines.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
- model: scanEngine.enginetype
pk: 1
fields:
engine_name: Full Scan
yaml_configuration: "subdomain_discovery: {\r\n 'uses_tools': ['subfinder', 'ctfr',
'sublist3r', 'tlsx', 'oneforall', 'netlas'],\r\n 'enable_http_crawl': true,\r\n
\ 'threads': 30,\r\n 'timeout': 5,\r\n}\r\nhttp_crawl: {}\r\nport_scan: {\r\n
\ 'enable_http_crawl': true,\r\n 'timeout': 5,\r\n # 'exclude_ports': [],\r\n
\ # 'exclude_subdomains': [],\r\n 'ports': ['top-100'],\r\n 'rate_limit':
150,\r\n 'threads': 30,\r\n 'passive': false,\r\n # 'use_naabu_config': false,\r\n
\ # 'enable_nmap': true,\r\n # 'nmap_cmd': '',\r\n # 'nmap_script': '',\r\n
\ # 'nmap_script_args': ''\r\n}\r\nosint: {\r\n 'discover': [\r\n 'emails',\r\n
\ 'metainfo',\r\n 'employees'\r\n ],\r\n 'dorks': [\r\n 'login_pages',\r\n
\ 'admin_panels',\r\n 'dashboard_pages',\r\n 'stackoverflow',\r\n 'social_media',\r\n
\ 'project_management',\r\n 'code_sharing',\r\n 'config_files',\r\n
\ 'jenkins',\r\n 'wordpress_files',\r\n 'php_error',\r\n 'exposed_documents',\r\n
\ 'db_files',\r\n 'git_exposed'\r\n ],\r\n 'intensity': 'normal',\r\n
\ 'documents_limit': 50\r\n}\r\ndir_file_fuzz: {\r\n 'auto_calibration': true,\r\n
\ 'enable_http_crawl': true,\r\n 'rate_limit': 150,\r\n 'extensions': ['html',
'php','git','yaml','conf','cnf','config','gz','env','log','db','mysql','bak','asp','aspx','txt','conf','sql','json','yml','pdf'],\r\n
\ 'follow_redirect': false,\r\n 'max_time': 0,\r\n 'match_http_status': [200,
204],\r\n 'recursive_level': 2,\r\n 'stop_on_error': false,\r\n 'timeout':
5,\r\n 'threads': 30,\r\n 'wordlist_name': 'dicc'\r\n}\r\nfetch_url: {\r\n
\ 'uses_tools': ['gospider', 'hakrawler', 'waybackurls', 'gospider', 'katana'],\r\n
\ 'remove_duplicate_endpoints': true,\r\n 'duplicate_fields': ['content_length',
'page_title'],\r\n 'enable_http_crawl': true,\r\n 'gf_patterns': ['debug_logic',
'idor', 'interestingEXT', 'interestingparams', 'interestingsubs', 'lfi', 'rce',
'redirect', 'sqli', 'ssrf', 'ssti', 'xss'],\r\n 'ignore_file_extensions': ['png',
'jpg', 'jpeg', 'gif', 'mp4', 'mpeg', 'mp3']\r\n}\r\nvulnerability_scan: {\r\n
\ 'run_nuclei': true,\r\n 'run_dalfox': true,\r\n 'run_crlfuzz': true,\r\n
\ 'enable_http_crawl': true,\r\n 'concurrency': 50,\r\n 'intensity': 'normal',\r\n
\ 'rate_limit': 150,\r\n 'retries': 1,\r\n 'timeout': 5,\r\n 'fetch_gpt_report':
true,\r\n 'nuclei': {\r\n 'use_conf': false,\r\n 'severities': ['unknown',
'info', 'low', 'medium', 'high', 'critical']\r\n }\r\n}\r\nwaf_detection: {\r\n\r\n}\r\nscreenshot:
{\r\n 'enable_http_crawl': true,\r\n 'intensity': 'normal',\r\n 'timeout':
10,\r\n 'threads': 40\r\n}\r\n\r\n# custom_header: \"Cookie: Test\""
default_engine: true
- model: scanEngine.enginetype
pk: 2
fields:
engine_name: Subdomain Scan
yaml_configuration: "subdomain_discovery: {\r\n 'uses_tools': [\r\n 'subfinder',
\r\n 'ctfr', \r\n 'sublist3r', \r\n 'tlsx', \r\n 'oneforall', \r\n
\ 'netlas'\r\n ],\r\n 'enable_http_crawl': true,\r\n 'threads': 30,\r\n
\ 'timeout': 5,\r\n}\r\nhttp_crawl: {}"
default_engine: true
- model: scanEngine.enginetype
pk: 3
fields:
engine_name: OSINT
yaml_configuration: "osint: {\r\n 'discover': [\r\n 'emails',\r\n 'metainfo',\r\n
\ 'employees'\r\n ],\r\n 'dorks': [\r\n 'login_pages',\r\n 'admin_panels',\r\n
\ 'dashboard_pages',\r\n 'stackoverflow',\r\n 'social_media',\r\n 'project_management',\r\n
\ 'code_sharing',\r\n 'config_files',\r\n 'jenkins',\r\n 'wordpress_files',\r\n
\ 'php_error',\r\n 'exposed_documents',\r\n 'db_files',\r\n 'git_exposed'\r\n
\ ],\r\n 'custom_dorks': [\r\n {'lookup_site': '_target_', 'lookup_extensions':
'php'}\r\n ],\r\n 'intensity': 'normal',\r\n 'documents_limit': 50\r\n}"
default_engine: true
- model: scanEngine.enginetype
pk: 4
fields:
engine_name: Vulnerability Scan
yaml_configuration: "subdomain_discovery: {\r\n 'uses_tools': ['subfinder', 'ctfr',
'sublist3r', 'tlsx', 'oneforall', 'netlas'],\r\n 'enable_http_crawl': true,\r\n
\ 'threads': 30,\r\n 'timeout': 5,\r\n}\r\nhttp_crawl: {}\r\nosint: {\r\n 'discover':
[\r\n 'emails',\r\n 'metainfo',\r\n 'employees'\r\n ],\r\n
\ 'dorks': [\r\n 'login_pages',\r\n 'admin_panels',\r\n 'dashboard_pages',\r\n
\ 'stackoverflow',\r\n 'social_media',\r\n 'project_management',\r\n
\ 'code_sharing',\r\n 'config_files',\r\n 'jenkins',\r\n 'wordpress_files',\r\n
\ 'php_error',\r\n 'exposed_documents',\r\n 'db_files',\r\n 'git_exposed'\r\n
\ ],\r\n 'intensity': 'normal',\r\n 'documents_limit': 50\r\n}\r\nvulnerability_scan:
{\r\n 'run_nuclei': true,\r\n 'run_dalfox': true,\r\n 'run_crlfuzz': true,\r\n
\ 'enable_http_crawl': true,\r\n 'concurrency': 50,\r\n 'intensity': 'normal',\r\n
\ 'rate_limit': 150,\r\n 'retries': 1,\r\n 'timeout': 5,\r\n 'fetch_gpt_report':
true,\r\n 'nuclei': {\r\n 'use_conf': false,\r\n 'severities': ['unknown',
'info', 'low', 'medium', 'high', 'critical']\r\n }\r\n}"
default_engine: true
- model: scanEngine.enginetype
pk: 5
fields:
engine_name: Port Scan
yaml_configuration: "http_crawl: {}\r\nport_scan: {\r\n 'enable_http_crawl':
true,\r\n 'timeout': 5,\r\n # 'exclude_ports': [],\r\n # 'exclude_subdomains':
[],\r\n 'ports': ['top-100'],\r\n 'rate_limit': 150,\r\n 'threads': 30,\r\n
\ 'passive': false,\r\n # 'use_naabu_config': false,\r\n # 'enable_nmap':
true,\r\n # 'nmap_cmd': '',\r\n # 'nmap_script': '',\r\n # 'nmap_script_args':
''\r\n}"
default_engine: true
- model: scanEngine.enginetype
pk: 6
fields:
engine_name: reNgine Recommended
yaml_configuration: "subdomain_discovery: {\r\n 'uses_tools': ['subfinder', 'ctfr',
'sublist3r', 'tlsx', 'oneforall', 'netlas'],\r\n 'enable_http_crawl': true,\r\n
\ 'threads': 30,\r\n 'timeout': 5,\r\n}\r\nhttp_crawl: {}\r\nosint: {\r\n 'discover':
[\r\n 'emails',\r\n 'metainfo'\r\n ],\r\n 'dorks': [\r\n 'login_pages',\r\n
\ 'admin_panels',\r\n 'dashboard_pages',\r\n 'config_files',\r\n 'exposed_documents',\r\n
\ ],\r\n 'intensity': 'normal',\r\n 'documents_limit': 50\r\n}\r\nvulnerability_scan:
{\r\n 'run_nuclei': true,\r\n 'run_dalfox': true,\r\n 'run_crlfuzz': true,\r\n
\ 'enable_http_crawl': false,\r\n 'concurrency': 50,\r\n 'intensity': 'normal',\r\n
\ 'rate_limit': 150,\r\n 'retries': 1,\r\n 'timeout': 5,\r\n 'fetch_gpt_report':
true,\r\n 'nuclei': {\r\n 'use_conf': false,\r\n 'severities': ['low',
'medium', 'high', 'critical']\r\n }\r\n}"
default_engine: true