icarus-cmd 0.3.1

package/src/web/server.js

@@ -0,0 +1,141 @@
+// Serveur web local d'Icarus : sert l'UI, expose une API REST et streame la
+// sortie des scans en direct (NDJSON sur la réponse POST). Aucune dépendance
+// externe : http natif uniquement.
+
+import { createServer } from 'node:http';
+import { readFileSync, existsSync, createReadStream } from 'node:fs';
+import { join, dirname, extname, basename } from 'node:path';
+import { fileURLToPath } from 'node:url';
+
+import { TOOLS, PROFILES, getTool, toolStatus } from '../core/registry.js';
+import { runTool } from '../core/runner.js';
+import { effectiveTarget } from '../core/target.js';
+import { allFindings, findingsForTarget, allScans, clearAll, targets, DATA_DIR } from '../core/store.js';
+import { generateReport } from '../report/html.js';
+
+const HERE = dirname(fileURLToPath(import.meta.url));
+const PUBLIC = join(HERE, 'public');
+const MIME = { '.html': 'text/html', '.css': 'text/css', '.js': 'text/javascript', '.json': 'application/json', '.svg': 'image/svg+xml' };
+
+function send(res, code, body, type = 'application/json') {
+  res.writeHead(code, { 'Content-Type': type, 'Cache-Control': 'no-store' });
+  res.end(typeof body === 'string' || Buffer.isBuffer(body) ? body : JSON.stringify(body));
+}
+
+function readBody(req) {
+  return new Promise((resolve) => {
+    let data = '';
+    req.on('data', (c) => { data += c; });
+    req.on('end', () => { try { resolve(JSON.parse(data || '{}')); } catch { resolve({}); } });
+  });
+}
+
+// Schéma "public" des outils (avec options) pour que l'UI génère ses contrôles.
+function toolsState() {
+  return toolStatus({ fresh: true }).map(({ tool, bin, available }) => ({
+    id: tool.id,
+    name: tool.name,
+    category: tool.category,
+    description: tool.description,
+    needs: tool.needs,
+    available,
+    bin: bin || null,
+    install: tool.install,
+    options: tool.options || [],
+  }));
+}
+
+async function handleScan(req, res) {
+  const body = await readBody(req);
+  const target = String(body.target || '').trim();
+  const ids = Array.isArray(body.tools) ? body.tools : [];
+  const timeout = Number(body.timeout) || 0;
+  const toolOpts = body.toolOpts || {};
+
+  if (!target || !ids.length) { send(res, 400, { error: 'target et tools requis' }); return; }
+
+  res.writeHead(200, { 'Content-Type': 'application/x-ndjson', 'Cache-Control': 'no-store', 'X-Accel-Buffering': 'no' });
+  const emit = (ev) => res.write(JSON.stringify(ev) + '\n');
+
+  const avail = new Set(toolStatus().filter((s) => s.available).map((s) => s.tool.id));
+  const run = ids.filter((id) => getTool(id) && avail.has(id));
+  const skipped = ids.filter((id) => getTool(id) && !avail.has(id));
+  if (skipped.length) emit({ type: 'info', message: `Ignorés (non installés) : ${skipped.join(', ')}` });
+
+  let totalFindings = 0;
+  for (const id of run) {
+    const tool = getTool(id);
+    const et = effectiveTarget(tool, target);
+    emit({ type: 'tool-start', tool: id, name: tool.name, target: et });
+
+    const opts = { ...(toolOpts[id] || {}), timeout };
+    const result = await runTool(tool, et, {
+      opts,
+      onLog: (l) => emit({ type: 'log', tool: id, line: l }),
+      onData: (s) => emit({ type: 'out', tool: id, chunk: s }),
+    });
+
+    totalFindings += result.findings.length;
+    emit({ type: 'tool-done', tool: id, code: result.code, error: result.error || null, findings: result.findings });
+  }
+
+  emit({ type: 'done', totalFindings, tools: run.length });
+  res.end();
+}
+
+async function handleApi(req, res, url) {
+  const path = url.pathname;
+
+  if (path === '/api/state' && req.method === 'GET') {
+    return send(res, 200, {
+      tools: toolsState(),
+      profiles: PROFILES,
+      targets: targets(),
+      findingsCount: allFindings().length,
+      scansCount: allScans().length,
+    });
+  }
+  if (path === '/api/findings' && req.method === 'GET') {
+    const t = url.searchParams.get('target');
+    return send(res, 200, t ? findingsForTarget(t) : allFindings());
+  }
+  if (path === '/api/scans' && req.method === 'GET') return send(res, 200, allScans());
+  if (path === '/api/scan' && req.method === 'POST') return handleScan(req, res);
+  if (path === '/api/clear' && req.method === 'POST') { clearAll(); return send(res, 200, { ok: true }); }
+  if (path === '/api/report' && req.method === 'POST') {
+    const { htmlPath, jsonPath } = generateReport(allFindings(), { scans: allScans() });
+    return send(res, 200, { htmlUrl: `/report/${basename(htmlPath)}`, jsonUrl: `/report/${basename(jsonPath)}`, htmlPath });
+  }
+  return send(res, 404, { error: 'not found' });
+}
+
+function serveStatic(res, file) {
+  if (!existsSync(file)) { send(res, 404, 'Not found', 'text/plain'); return; }
+  const type = MIME[extname(file)] || 'application/octet-stream';
+  res.writeHead(200, { 'Content-Type': type, 'Cache-Control': 'no-store' });
+  createReadStream(file).pipe(res);
+}
+
+export function startWeb({ port = 7373 } = {}) {
+  const server = createServer(async (req, res) => {
+    const url = new URL(req.url, `http://${req.headers.host}`);
+    try {
+      if (url.pathname.startsWith('/api/')) return await handleApi(req, res, url);
+
+      if (url.pathname.startsWith('/report/')) {
+        const f = join(DATA_DIR, 'reports', basename(url.pathname));
+        return serveStatic(res, f);
+      }
+
+      // Fichiers statiques de l'UI.
+      const rel = url.pathname === '/' ? 'index.html' : url.pathname.replace(/^\//, '');
+      return serveStatic(res, join(PUBLIC, basename(rel)));
+    } catch (err) {
+      send(res, 500, { error: err.message });
+    }
+  });
+
+  return new Promise((resolve) => {
+    server.listen(port, () => resolve({ server, url: `http://localhost:${port}` }));
+  });
+}

package/tools/resolvers.txt

@@ -0,0 +1,7 @@
+10.64.0.1
+10.1.4.254
+1.1.1.1
+1.0.0.1
+8.8.8.8
+8.8.4.4
+9.9.9.9

package/wordlists/common.txt

@@ -0,0 +1,140 @@
+admin
+administrator
+login
+logout
+register
+signup
+signin
+dashboard
+panel
+cpanel
+wp-admin
+wp-login.php
+wp-content
+wp-includes
+wp-json
+api
+api/v1
+api/v2
+graphql
+rest
+backup
+backups
+old
+new
+test
+testing
+dev
+staging
+prod
+config
+configuration
+settings
+setup
+install
+installer
+phpinfo.php
+info.php
+server-status
+server-info
+.git
+.git/config
+.env
+.env.local
+.htaccess
+.htpasswd
+.svn
+.ds_store
+robots.txt
+sitemap.xml
+crossdomain.xml
+security.txt
+.well-known
+uploads
+upload
+files
+file
+images
+img
+assets
+static
+public
+private
+tmp
+temp
+cache
+logs
+log
+db
+database
+sql
+dump
+data
+storage
+media
+includes
+inc
+lib
+libs
+vendor
+node_modules
+src
+js
+css
+fonts
+download
+downloads
+docs
+doc
+documentation
+help
+support
+contact
+about
+user
+users
+account
+accounts
+profile
+profiles
+member
+members
+auth
+oauth
+token
+session
+sessions
+cart
+checkout
+order
+orders
+payment
+payments
+invoice
+invoices
+report
+reports
+export
+import
+search
+query
+status
+health
+healthz
+ping
+metrics
+debug
+console
+shell
+cmd
+phpmyadmin
+adminer
+pma
+mysql
+manager
+management
+portal
+internal
+intranet
+secret
+hidden