PyPI - moriarty-project - Versions diffs - 0.1.6__py3-none-any.whl - Mend

moriarty-project 0.1.6__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (416) hide show

moriarty/__init__.py +5 -0
moriarty/adapters/__init__.py +0 -0
moriarty/agent/__init__.py +0 -0
moriarty/assets/modules/.gitkeep +0 -0
moriarty/assets/modules/asia/douban.yaml +19 -0
moriarty/assets/modules/asia/kakao.yaml +19 -0
moriarty/assets/modules/asia/line.yaml +19 -0
moriarty/assets/modules/asia/mixi.yaml +19 -0
moriarty/assets/modules/asia/naver.yaml +19 -0
moriarty/assets/modules/asia/qq.yaml +19 -0
moriarty/assets/modules/asia/vk.yaml +19 -0
moriarty/assets/modules/asia/wechat.yaml +19 -0
moriarty/assets/modules/asia/weibo.yaml +19 -0
moriarty/assets/modules/asia/xiaohongshu.yaml +19 -0
moriarty/assets/modules/behance.yaml +47 -0
moriarty/assets/modules/business/crunchbase.yaml +27 -0
moriarty/assets/modules/business/fiverr.yaml +32 -0
moriarty/assets/modules/business/freelancer.yaml +27 -0
moriarty/assets/modules/business/glassdoor.yaml +27 -0
moriarty/assets/modules/business/guru.yaml +26 -0
moriarty/assets/modules/business/indeed.yaml +25 -0
moriarty/assets/modules/business/monster.yaml +25 -0
moriarty/assets/modules/business/peopleperhour.yaml +26 -0
moriarty/assets/modules/business/toptal.yaml +28 -0
moriarty/assets/modules/business/upwork.yaml +27 -0
moriarty/assets/modules/business/ziprecruiter.yaml +25 -0
moriarty/assets/modules/content/buymeacoffee.yaml +27 -0
moriarty/assets/modules/content/gumroad.yaml +27 -0
moriarty/assets/modules/content/ko-fi.yaml +32 -0
moriarty/assets/modules/content/onlyfans.yaml +27 -0
moriarty/assets/modules/content/patreon.yaml +33 -0
moriarty/assets/modules/content/substack.yaml +32 -0
moriarty/assets/modules/creative/500px.yaml +31 -0
moriarty/assets/modules/creative/artstation.yaml +33 -0
moriarty/assets/modules/creative/deviantart.yaml +32 -0
moriarty/assets/modules/creative/flickr.yaml +31 -0
moriarty/assets/modules/creative/pexels.yaml +26 -0
moriarty/assets/modules/creative/unsplash.yaml +26 -0
moriarty/assets/modules/creative/vimeo.yaml +31 -0
moriarty/assets/modules/crypto/binance.yaml +27 -0
moriarty/assets/modules/crypto/bitcointalk.yaml +33 -0
moriarty/assets/modules/crypto/coinbase.yaml +26 -0
moriarty/assets/modules/crypto/etherscan.yaml +32 -0
moriarty/assets/modules/crypto/foundation.yaml +28 -0
moriarty/assets/modules/crypto/kraken.yaml +27 -0
moriarty/assets/modules/crypto/mirror.yaml +27 -0
moriarty/assets/modules/crypto/niftygateway.yaml +26 -0
moriarty/assets/modules/crypto/opensea.yaml +32 -0
moriarty/assets/modules/crypto/rarible.yaml +27 -0
moriarty/assets/modules/crypto/superrare.yaml +29 -0
moriarty/assets/modules/dating/bumble.yaml +25 -0
moriarty/assets/modules/dating/grindr.yaml +27 -0
moriarty/assets/modules/dating/happn.yaml +25 -0
moriarty/assets/modules/dating/her.yaml +27 -0
moriarty/assets/modules/dating/hinge.yaml +25 -0
moriarty/assets/modules/dating/match.yaml +25 -0
moriarty/assets/modules/dating/meetme.yaml +27 -0
moriarty/assets/modules/dating/okcupid.yaml +25 -0
moriarty/assets/modules/dating/pof.yaml +25 -0
moriarty/assets/modules/dating/tinder.yaml +25 -0
moriarty/assets/modules/dating-nsfw/adultfriendfinder.yaml +28 -0
moriarty/assets/modules/dating-nsfw/ashley-madison.yaml +26 -0
moriarty/assets/modules/design/adobe-portfolio.yaml +27 -0
moriarty/assets/modules/design/carbonmade.yaml +27 -0
moriarty/assets/modules/design/cgsociety.yaml +27 -0
moriarty/assets/modules/design/coroflot.yaml +27 -0
moriarty/assets/modules/design/figma.yaml +27 -0
moriarty/assets/modules/design/sketch.yaml +26 -0
moriarty/assets/modules/dev/bitbucket.yaml +35 -0
moriarty/assets/modules/dev/codeforces.yaml +32 -0
moriarty/assets/modules/dev/codepen.yaml +34 -0
moriarty/assets/modules/dev/hackerone.yaml +32 -0
moriarty/assets/modules/dev/hackthebox.yaml +27 -0
moriarty/assets/modules/dev/huggingface.yaml +27 -0
moriarty/assets/modules/dev/kaggle.yaml +32 -0
moriarty/assets/modules/dev/leetcode.yaml +32 -0
moriarty/assets/modules/dev/replit.yaml +31 -0
moriarty/assets/modules/dribbble.yaml +53 -0
moriarty/assets/modules/ecommerce/etsy.yaml +32 -0
moriarty/assets/modules/education/duolingo.yaml +32 -0
moriarty/assets/modules/education/edx.yaml +26 -0
moriarty/assets/modules/education/khanacademy.yaml +26 -0
moriarty/assets/modules/education/lynda.yaml +27 -0
moriarty/assets/modules/education/memrise.yaml +27 -0
moriarty/assets/modules/education/pluralsight.yaml +27 -0
moriarty/assets/modules/education/skillshare.yaml +27 -0
moriarty/assets/modules/education/udacity.yaml +27 -0
moriarty/assets/modules/email/github_email.yaml +40 -0
moriarty/assets/modules/email/gravatar.yaml +23 -0
moriarty/assets/modules/europe/badoo.yaml +19 -0
moriarty/assets/modules/europe/lovoo.yaml +19 -0
moriarty/assets/modules/europe/myspace.yaml +19 -0
moriarty/assets/modules/europe/netlog.yaml +19 -0
moriarty/assets/modules/europe/ok.yaml +19 -0
moriarty/assets/modules/europe/skyrock.yaml +19 -0
moriarty/assets/modules/europe/studivz.yaml +19 -0
moriarty/assets/modules/europe/tuenti.yaml +19 -0
moriarty/assets/modules/europe/viadeo.yaml +19 -0
moriarty/assets/modules/europe/xing.yaml +19 -0
moriarty/assets/modules/fitness/fitbit.yaml +27 -0
moriarty/assets/modules/fitness/garmin.yaml +27 -0
moriarty/assets/modules/fitness/myfitnesspal.yaml +27 -0
moriarty/assets/modules/fitness/strava.yaml +33 -0
moriarty/assets/modules/fitness/zwift.yaml +28 -0
moriarty/assets/modules/food/allrecipes.yaml +27 -0
moriarty/assets/modules/food/tasty.yaml +27 -0
moriarty/assets/modules/food/yelp.yaml +32 -0
moriarty/assets/modules/food/zomato.yaml +28 -0
moriarty/assets/modules/forums/4chan.yaml +26 -0
moriarty/assets/modules/forums/8kun.yaml +26 -0
moriarty/assets/modules/forums/9gag.yaml +26 -0
moriarty/assets/modules/forums/discourse.yaml +26 -0
moriarty/assets/modules/forums/disqus.yaml +31 -0
moriarty/assets/modules/forums/hackernews.yaml +32 -0
moriarty/assets/modules/forums/launchpad.yaml +27 -0
moriarty/assets/modules/forums/phpbb.yaml +25 -0
moriarty/assets/modules/forums/quora.yaml +32 -0
moriarty/assets/modules/forums/serverfault.yaml +27 -0
moriarty/assets/modules/forums/slashdot.yaml +28 -0
moriarty/assets/modules/forums/stackexchange.yaml +32 -0
moriarty/assets/modules/forums/superuser.yaml +27 -0
moriarty/assets/modules/forums/vbulletin.yaml +25 -0
moriarty/assets/modules/forums/xenforo.yaml +25 -0
moriarty/assets/modules/forums-nsfw/kiwifarms.yaml +25 -0
moriarty/assets/modules/forums-nsfw/lolcow.yaml +26 -0
moriarty/assets/modules/gaming/apextracker.yaml +27 -0
moriarty/assets/modules/gaming/battlenet.yaml +26 -0
moriarty/assets/modules/gaming/chess.yaml +30 -0
moriarty/assets/modules/gaming/discord-public.yaml +27 -0
moriarty/assets/modules/gaming/dotabuff.yaml +32 -0
moriarty/assets/modules/gaming/epicgames.yaml +25 -0
moriarty/assets/modules/gaming/faceit.yaml +33 -0
moriarty/assets/modules/gaming/fortnitetracker.yaml +32 -0
moriarty/assets/modules/gaming/gog.yaml +26 -0
moriarty/assets/modules/gaming/itch.yaml +32 -0
moriarty/assets/modules/gaming/kongregate.yaml +25 -0
moriarty/assets/modules/gaming/minecraft.yaml +31 -0
moriarty/assets/modules/gaming/opgg.yaml +32 -0
moriarty/assets/modules/gaming/origin.yaml +26 -0
moriarty/assets/modules/gaming/playstation.yaml +30 -0
moriarty/assets/modules/gaming/roblox.yaml +31 -0
moriarty/assets/modules/gaming/xbox.yaml +25 -0
moriarty/assets/modules/github.yaml +68 -0
moriarty/assets/modules/gitlab.yaml +60 -0
moriarty/assets/modules/instagram.yaml +48 -0
moriarty/assets/modules/latam/fotolog.yaml +27 -0
moriarty/assets/modules/latam/orkut.yaml +26 -0
moriarty/assets/modules/latam/taringa.yaml +27 -0
moriarty/assets/modules/learning/coursera.yaml +26 -0
moriarty/assets/modules/learning/udemy.yaml +26 -0
moriarty/assets/modules/linkedin.yaml +40 -0
moriarty/assets/modules/marketplaces/depop.yaml +28 -0
moriarty/assets/modules/marketplaces/ebay.yaml +32 -0
moriarty/assets/modules/marketplaces/grailed.yaml +27 -0
moriarty/assets/modules/marketplaces/mercari.yaml +26 -0
moriarty/assets/modules/marketplaces/poshmark.yaml +27 -0
moriarty/assets/modules/marketplaces/reverb.yaml +27 -0
moriarty/assets/modules/marketplaces/vinted.yaml +28 -0
moriarty/assets/modules/medium.yaml +44 -0
moriarty/assets/modules/music/audiomack.yaml +26 -0
moriarty/assets/modules/music/bandcamp.yaml +30 -0
moriarty/assets/modules/music/beatport.yaml +28 -0
moriarty/assets/modules/music/deezer.yaml +26 -0
moriarty/assets/modules/music/discogs.yaml +32 -0
moriarty/assets/modules/music/genius.yaml +26 -0
moriarty/assets/modules/music/lastfm.yaml +30 -0
moriarty/assets/modules/music/mixcloud.yaml +26 -0
moriarty/assets/modules/music/reverbnation.yaml +31 -0
moriarty/assets/modules/music/soundcloud.yaml +31 -0
moriarty/assets/modules/music/spotify.yaml +26 -0
moriarty/assets/modules/music/tidal.yaml +26 -0
moriarty/assets/modules/nsfw/adultwork.yaml +27 -0
moriarty/assets/modules/nsfw/bongacams.yaml +28 -0
moriarty/assets/modules/nsfw/cam4.yaml +28 -0
moriarty/assets/modules/nsfw/chaturbate.yaml +28 -0
moriarty/assets/modules/nsfw/clips4sale.yaml +27 -0
moriarty/assets/modules/nsfw/extralunchmoney.yaml +27 -0
moriarty/assets/modules/nsfw/fansly.yaml +28 -0
moriarty/assets/modules/nsfw/fetlife.yaml +28 -0
moriarty/assets/modules/nsfw/iwantclips.yaml +27 -0
moriarty/assets/modules/nsfw/justforfans.yaml +28 -0
moriarty/assets/modules/nsfw/loyalfans.yaml +28 -0
moriarty/assets/modules/nsfw/manyvids.yaml +27 -0
moriarty/assets/modules/nsfw/myfreecams.yaml +28 -0
moriarty/assets/modules/nsfw/niteflirt.yaml +26 -0
moriarty/assets/modules/nsfw/pornhub.yaml +32 -0
moriarty/assets/modules/nsfw/redtube.yaml +27 -0
moriarty/assets/modules/nsfw/stripchat.yaml +28 -0
moriarty/assets/modules/nsfw/xhamster.yaml +27 -0
moriarty/assets/modules/nsfw/xvideos.yaml +27 -0
moriarty/assets/modules/nsfw/youporn.yaml +27 -0
moriarty/assets/modules/photography/eyeem.yaml +25 -0
moriarty/assets/modules/photography/fotki.yaml +25 -0
moriarty/assets/modules/photography/photobucket.yaml +26 -0
moriarty/assets/modules/photography/smugmug.yaml +25 -0
moriarty/assets/modules/photography/vsco.yaml +27 -0
moriarty/assets/modules/pinterest.yaml +40 -0
moriarty/assets/modules/podcasts/anchor.yaml +26 -0
moriarty/assets/modules/podcasts/castbox.yaml +26 -0
moriarty/assets/modules/podcasts/podbean.yaml +26 -0
moriarty/assets/modules/professional/about.yaml +31 -0
moriarty/assets/modules/professional/academia.yaml +27 -0
moriarty/assets/modules/professional/angellist.yaml +27 -0
moriarty/assets/modules/professional/calendly.yaml +26 -0
moriarty/assets/modules/professional/issuu.yaml +27 -0
moriarty/assets/modules/professional/mendeley.yaml +27 -0
moriarty/assets/modules/professional/notion.yaml +27 -0
moriarty/assets/modules/professional/orcid.yaml +27 -0
moriarty/assets/modules/professional/producthunt.yaml +31 -0
moriarty/assets/modules/professional/researchgate.yaml +32 -0
moriarty/assets/modules/professional/scribd.yaml +27 -0
moriarty/assets/modules/professional/slideshare.yaml +31 -0
moriarty/assets/modules/professional/trello.yaml +26 -0
moriarty/assets/modules/professional/typeform.yaml +27 -0
moriarty/assets/modules/reddit.yaml +46 -0
moriarty/assets/modules/regional/amino.yaml +27 -0
moriarty/assets/modules/regional/ask-fm.yaml +32 -0
moriarty/assets/modules/regional/babycenter.yaml +26 -0
moriarty/assets/modules/regional/cafemom.yaml +27 -0
moriarty/assets/modules/regional/care2.yaml +27 -0
moriarty/assets/modules/regional/diaspora.yaml +26 -0
moriarty/assets/modules/regional/ello.yaml +27 -0
moriarty/assets/modules/regional/gaia.yaml +27 -0
moriarty/assets/modules/regional/habbo.yaml +27 -0
moriarty/assets/modules/regional/imvu.yaml +27 -0
moriarty/assets/modules/regional/lemmy.yaml +27 -0
moriarty/assets/modules/regional/peertube.yaml +26 -0
moriarty/assets/modules/regional/pixelfed.yaml +27 -0
moriarty/assets/modules/regional/plurk.yaml +26 -0
moriarty/assets/modules/regional/recroom.yaml +27 -0
moriarty/assets/modules/regional/secondlife.yaml +26 -0
moriarty/assets/modules/regional/vine-archive.yaml +27 -0
moriarty/assets/modules/regional/vrchat.yaml +27 -0
moriarty/assets/modules/regional/weheartit.yaml +27 -0
moriarty/assets/modules/social/anilist.yaml +27 -0
moriarty/assets/modules/social/beacons.yaml +26 -0
moriarty/assets/modules/social/blogger.yaml +27 -0
moriarty/assets/modules/social/crunchyroll.yaml +27 -0
moriarty/assets/modules/social/discord.yaml +27 -0
moriarty/assets/modules/social/dreamwidth.yaml +26 -0
moriarty/assets/modules/social/facebook.yaml +34 -0
moriarty/assets/modules/social/goodreads.yaml +32 -0
moriarty/assets/modules/social/imdb.yaml +27 -0
moriarty/assets/modules/social/kitsu.yaml +27 -0
moriarty/assets/modules/social/letterboxd.yaml +32 -0
moriarty/assets/modules/social/linktree.yaml +26 -0
moriarty/assets/modules/social/livejournal.yaml +27 -0
moriarty/assets/modules/social/mastodon.yaml +30 -0
moriarty/assets/modules/social/minds.yaml +25 -0
moriarty/assets/modules/social/myanimelist.yaml +32 -0
moriarty/assets/modules/social/ravelry.yaml +27 -0
moriarty/assets/modules/social/snapchat.yaml +25 -0
moriarty/assets/modules/social/telegram.yaml +35 -0
moriarty/assets/modules/social/tiktok.yaml +35 -0
moriarty/assets/modules/social/trakt.yaml +28 -0
moriarty/assets/modules/social/wattpad.yaml +32 -0
moriarty/assets/modules/social/wordpress-com.yaml +26 -0
moriarty/assets/modules/sports/espn.yaml +26 -0
moriarty/assets/modules/sports/untappd.yaml +32 -0
moriarty/assets/modules/stackoverflow.yaml +47 -0
moriarty/assets/modules/steam.yaml +47 -0
moriarty/assets/modules/streaming/caffeine.yaml +25 -0
moriarty/assets/modules/streaming/dlive.yaml +27 -0
moriarty/assets/modules/streaming/trovo.yaml +25 -0
moriarty/assets/modules/travel/airbnb.yaml +26 -0
moriarty/assets/modules/travel/booking.yaml +26 -0
moriarty/assets/modules/travel/couchsurfing.yaml +27 -0
moriarty/assets/modules/travel/tripadvisor.yaml +32 -0
moriarty/assets/modules/tumblr.yaml +40 -0
moriarty/assets/modules/twitch.yaml +48 -0
moriarty/assets/modules/twitter.yaml +39 -0
moriarty/assets/modules/youtube.yaml +42 -0
moriarty/assets/templates/cves/CVE-2017-5638.yaml +27 -0
moriarty/assets/templates/cves/CVE-2018-7600.yaml +30 -0
moriarty/assets/templates/cves/CVE-2019-11510.yaml +27 -0
moriarty/assets/templates/cves/CVE-2019-19781.yaml +28 -0
moriarty/assets/templates/cves/CVE-2020-14882.yaml +28 -0
moriarty/assets/templates/cves/CVE-2020-14883.yaml +29 -0
moriarty/assets/templates/cves/CVE-2020-3452.yaml +28 -0
moriarty/assets/templates/cves/CVE-2020-5902.yaml +28 -0
moriarty/assets/templates/cves/CVE-2021-21972.yaml +31 -0
moriarty/assets/templates/cves/CVE-2021-21985.yaml +28 -0
moriarty/assets/templates/cves/CVE-2021-26084.yaml +30 -0
moriarty/assets/templates/cves/CVE-2021-41773.yaml +25 -0
moriarty/assets/templates/cves/CVE-2021-42013.yaml +28 -0
moriarty/assets/templates/cves/CVE-2021-44228.yaml +27 -0
moriarty/assets/templates/cves/CVE-2022-0185.yaml +21 -0
moriarty/assets/templates/cves/CVE-2022-1388.yaml +36 -0
moriarty/assets/templates/cves/CVE-2022-22954.yaml +28 -0
moriarty/assets/templates/cves/CVE-2022-22965.yaml +31 -0
moriarty/assets/templates/cves/CVE-2022-26134.yaml +27 -0
moriarty/assets/templates/cves/CVE-2023-22515.yaml +27 -0
moriarty/assets/templates/cves/CVE-2023-22527.yaml +29 -0
moriarty/assets/templates/cves/CVE-2023-23752.yaml +33 -0
moriarty/assets/templates/cves/CVE-2023-27350.yaml +27 -0
moriarty/assets/templates/cves/CVE-2023-2868.yaml +27 -0
moriarty/assets/templates/cves/CVE-2023-34362.yaml +27 -0
moriarty/assets/templates/cves/CVE-2023-3519.yaml +28 -0
moriarty/assets/templates/cves/CVE-2023-4966.yaml +27 -0
moriarty/assets/templates/default-logins/admin-weak.yaml +40 -0
moriarty/assets/templates/default-logins/wordpress-default.yaml +38 -0
moriarty/assets/templates/exposures/aws-credentials.yaml +35 -0
moriarty/assets/templates/exposures/backup-files.yaml +36 -0
moriarty/assets/templates/exposures/database-files.yaml +34 -0
moriarty/assets/templates/exposures/docker-exposed.yaml +31 -0
moriarty/assets/templates/exposures/env-exposed.yaml +41 -0
moriarty/assets/templates/exposures/git-exposed.yaml +41 -0
moriarty/assets/templates/exposures/phpinfo.yaml +36 -0
moriarty/assets/templates/exposures/svn-exposed.yaml +28 -0
moriarty/assets/templates/fuzzing/api-endpoints.yaml +39 -0
moriarty/assets/templates/fuzzing/common-files.yaml +37 -0
moriarty/assets/templates/fuzzing/open-redirect-fuzz.yaml +35 -0
moriarty/assets/templates/fuzzing/xss-search-fuzz.yaml +29 -0
moriarty/assets/templates/git-config.yaml +18 -0
moriarty/assets/templates/misconfigurations/cors-misconfiguration.yaml +30 -0
moriarty/assets/templates/misconfigurations/debug-enabled.yaml +29 -0
moriarty/assets/templates/misconfigurations/directory-listing.yaml +33 -0
moriarty/assets/templates/misconfigurations/jwt-none-algo.yaml +30 -0
moriarty/assets/templates/misconfigurations/ssl-tls-weak.yaml +23 -0
moriarty/assets/templates/vulnerabilities/lfi-basic.yaml +31 -0
moriarty/assets/templates/vulnerabilities/open-redirect.yaml +31 -0
moriarty/assets/templates/vulnerabilities/rce-basic.yaml +34 -0
moriarty/assets/templates/vulnerabilities/sqli-error.yaml +39 -0
moriarty/assets/templates/vulnerabilities/ssrf-basic.yaml +31 -0
moriarty/assets/templates/vulnerabilities/xss-reflected.yaml +38 -0
moriarty/assets/templates/vulnerabilities/xxe-basic.yaml +30 -0
moriarty/assets/wordlists/subdomains-1000.txt +1063 -0
moriarty/cli/__init__.py +3 -0
moriarty/cli/app.py +120 -0
moriarty/cli/async_utils.py +19 -0
moriarty/cli/dns.py +83 -0
moriarty/cli/domain_cmd.py +572 -0
moriarty/cli/email.py +383 -0
moriarty/cli/email_investigate.py +224 -0
moriarty/cli/intelligence.py +329 -0
moriarty/cli/output.py +62 -0
moriarty/cli/rdap.py +94 -0
moriarty/cli/state.py +38 -0
moriarty/cli/tls.py +91 -0
moriarty/cli/user.py +227 -0
moriarty/core/cache_backend.py +223 -0
moriarty/core/config_manager.py +303 -0
moriarty/correlator/__init__.py +0 -0
moriarty/data/__init__.py +81 -0
moriarty/data/ioc/__init__.py +142 -0
moriarty/data/ioc/matcher.py +254 -0
moriarty/data/ioc/types.py +267 -0
moriarty/data/local_intelligence.py +507 -0
moriarty/data/signature_loaders/__init__.py +103 -0
moriarty/data/signature_loaders/base.py +54 -0
moriarty/data/signature_loaders/ioc_feed.py +356 -0
moriarty/data/signature_loaders/wappalyzer.py +112 -0
moriarty/dsl/__init__.py +0 -0
moriarty/dsl/loader.py +99 -0
moriarty/dsl/schema.py +47 -0
moriarty/export/__init__.py +0 -0
moriarty/intelligence/__init__.py +27 -0
moriarty/intelligence/__main__.py +150 -0
moriarty/intelligence/config.py +395 -0
moriarty/intelligence/ioc.py +267 -0
moriarty/intelligence/signatures.py +550 -0
moriarty/intelligence/storage.py +501 -0
moriarty/interop/__init__.py +0 -0
moriarty/logging/__init__.py +0 -0
moriarty/logging/config.py +47 -0
moriarty/models/__init__.py +16 -0
moriarty/models/assertion.py +24 -0
moriarty/models/entity.py +22 -0
moriarty/models/evidence.py +37 -0
moriarty/models/relation.py +24 -0
moriarty/models/types.py +28 -0
moriarty/modules/__init__.py +0 -0
moriarty/modules/avatar_hash.py +184 -0
moriarty/modules/directory_fuzzer.py +322 -0
moriarty/modules/dns_scan.py +40 -0
moriarty/modules/domain_scanner.py +620 -0
moriarty/modules/email_check.py +98 -0
moriarty/modules/email_investigate.py +267 -0
moriarty/modules/email_security.py +274 -0
moriarty/modules/googlemaps_lookup.py +106 -0
moriarty/modules/headless_executor.py +201 -0
moriarty/modules/orchestrator.py +60 -0
moriarty/modules/passive_recon.py +444 -0
moriarty/modules/phone_extractor.py +151 -0
moriarty/modules/pipeline_orchestrator.py +726 -0
moriarty/modules/port_scanner.py +129 -0
moriarty/modules/rdap.py +61 -0
moriarty/modules/rdap_extended.py +188 -0
moriarty/modules/stealth_mode.py +610 -0
moriarty/modules/subdomain_discovery.py +595 -0
moriarty/modules/technology_profiler.py +361 -0
moriarty/modules/template_executor.py +239 -0
moriarty/modules/template_scanner.py +1048 -0
moriarty/modules/tls_scan.py +46 -0
moriarty/modules/tls_validator.py +188 -0
moriarty/modules/vuln_scanner.py +483 -0
moriarty/modules/waf_detector.py +585 -0
moriarty/modules/wayback_discovery.py +234 -0
moriarty/modules/web_crawler.py +163 -0
moriarty/net/__init__.py +0 -0
moriarty/net/dns_cache.py +175 -0
moriarty/net/dns_client.py +188 -0
moriarty/net/rdap_client.py +52 -0
moriarty/net/smtp_client.py +114 -0
moriarty/net/tls_client.py +111 -0
moriarty/parsers/__init__.py +0 -0
moriarty/parsers/html_parser.py +136 -0
moriarty/tests/__init__.py +0 -0
moriarty/tests/test_email_service.py +17 -0
moriarty/tests/test_models.py +46 -0
moriarty/tests/test_orchestrator.py +30 -0
moriarty/tests/test_tls_client.py +18 -0
moriarty_project-0.1.6.dist-info/METADATA +388 -0
moriarty_project-0.1.6.dist-info/RECORD +418 -0
moriarty_project-0.1.6.dist-info/WHEEL +4 -0
moriarty_project-0.1.6.dist-info/entry_points.txt +2 -0

moriarty/cli/domain_cmd.py ADDED Viewed

@@ -0,0 +1,572 @@
+"""Comandos de scanning de domínios/IPs."""
+import json
+from typing import Optional
+import typer
+from moriarty.modules.port_scanner import PROFILES
+from moriarty.modules.passive_recon import PassiveRecon
+from rich.console import Console
+app = typer.Typer(name="domain", help="🌐 Domain/IP reconnaissance and scanning.")
+console = Console()
+@app.command("scan")
+def scan_full(
+    target: str = typer.Argument(..., help="Domain ou IP alvo"),
+    modules: str = typer.Option(
+        "all",
+        "--modules",
+        "-m",
+        help="Módulos: all,dns,subdiscover,wayback,ports,ssl,crawl,fuzzer,template-scan,vuln-scan,waf-detect",
+    ),
+    stealth: int = typer.Option(0, "--stealth", "-s", help="Stealth level (0-4)"),
+    threads: int = typer.Option(10, "--threads", "-t", help="Threads concorrentes"),
+    timeout: int = typer.Option(30, "--timeout", help="Timeout em segundos"),
+    output: str = typer.Option(None, "--output", "-o", help="Arquivo de saída"),
+):
+    """
+    🔍 Scan completo de domínio/IP com 14 módulos.
+    Exemplos:
+        moriarty domain scan example.com
+        moriarty domain scan 8.8.8.8 --stealth 3
+        moriarty domain scan target.com --modules dns,ports,ssl
+    """
+    from moriarty.modules.domain_scanner import DomainScanner
+    import asyncio
+    import logging
+    # Suprime logs verbosos globalmente
+    logging.getLogger("httpx").setLevel(logging.ERROR)
+    logging.getLogger("httpcore").setLevel(logging.ERROR)
+    logging.getLogger("moriarty").setLevel(logging.ERROR)
+    scanner = DomainScanner(
+        target=target,
+        modules=modules.split(",") if modules != "all" else None,
+        stealth_level=stealth,
+        threads=threads,
+        timeout=timeout,
+    )
+    asyncio.run(scanner.run())
+    if output:
+        scanner.export(output)
+        console.print(f"[green]✅[/green] Results saved to: [cyan]{output}[/cyan]\n")
+@app.command("subdiscover")
+def subdomain_discovery(
+    domain: str = typer.Argument(..., help="Domínio alvo"),
+    sources: str = typer.Option("all", "--sources", "-s", help="Fontes: all,crtsh,virustotal,..."),
+    validate: bool = typer.Option(True, "--validate/--no-validate", help="Validar subdomínios encontrados"),
+    recursive: bool = typer.Option(False, "--recursive", "-r", help="Busca recursiva"),
+    wordlist: str = typer.Option(None, "--wordlist", "-w", help="Wordlist personalizada"),
+    output: str = typer.Option(None, "--output", "-o", help="Arquivo de saída"),
+):
+    """
+    🔍 Descoberta de subdomínios usando 20+ fontes.
+    Fontes suportadas:
+    - crt.sh (Certificate Transparency)
+    - VirusTotal
+    - SecurityTrails
+    - Shodan
+    - DNSDumpster
+    - AlienVault OTX
+    - ThreatCrowd
+    - Wayback Machine
+    - CommonCrawl
+    - Google Dorking
+    - Bing
+    - Yahoo
+    - Ask
+    - DNS Bruteforce
+    - Zone Transfer
+    - Reverse DNS
+    - DNSSEC
+    - NSEC Walking
+    - Subdomain Permutations
+    - GitHub Code Search
+    """
+    from moriarty.modules.subdomain_discovery import SubdomainDiscovery
+    import asyncio
+    console.print(f"[bold cyan]🔍 Descobrindo subdomínios de:[/bold cyan] {domain}\n")
+    discovery = SubdomainDiscovery(
+        domain=domain,
+        sources=sources.split(",") if sources != "all" else None,
+        validate=validate,
+        recursive=recursive,
+        wordlist=wordlist,
+    )
+    results = asyncio.run(discovery.discover())
+    console.print(f"\n[green]✅ {len(results)} subdomínios encontrados[/green]")
+    for subdomain in sorted(results):
+        console.print(f"  • {subdomain}")
+    if output:
+        discovery.export(results, output)
+@app.command("wayback")
+def wayback_urls(
+    domain: str = typer.Argument(..., help="Domínio alvo"),
+    validate: bool = typer.Option(True, "--validate/--no-validate", help="Validar URLs ativas"),
+    filter_ext: str = typer.Option(None, "--filter", "-f", help="Filtrar extensões (ex: php,asp,jsp)"),
+    status_filter: str = typer.Option(None, "--status", help="Filtrar status codes (ex: 200,404,301)"),
+    years: int = typer.Option(5, "--years", "-y", help="Anos para buscar"),
+    output: str = typer.Option(None, "--output", "-o", help="Arquivo de saída"),
+):
+    """
+    🕰️ Descobre URLs históricas via Wayback Machine.
+    Exemplos:
+        moriarty domain wayback example.com
+        moriarty domain wayback target.com --filter php,asp --years 10
+    """
+    from moriarty.modules.wayback_discovery import WaybackDiscovery
+    import asyncio
+    console.print(f"[bold cyan]🕰️ Buscando URLs históricas de:[/bold cyan] {domain}\n")
+    wayback = WaybackDiscovery(
+        domain=domain,
+        validate=validate,
+        filter_extensions=filter_ext.split(",") if filter_ext else None,
+        filter_status_codes=[int(code.strip()) for code in status_filter.split(",") if code.strip()]
+        if status_filter
+        else None,
+        years_back=years,
+    )
+    urls = asyncio.run(wayback.discover())
+    console.print(f"\n[green]✅ {len(urls)} URLs encontradas[/green]")
+    if output:
+        wayback.export(urls, output)
+@app.command("template-scan")
+def template_scan(
+    target: str = typer.Argument(..., help="Alvo (domain ou IP)"),
+    templates: str = typer.Option(None, "--templates", "-t", help="Path para templates ou tag"),
+    severity: str = typer.Option("all", "--severity", "-s", help="Severidade: all,critical,high,medium,low"),
+    threads: int = typer.Option(20, "--threads", help="Threads concorrentes"),
+    output: str = typer.Option(None, "--output", "-o", help="Arquivo de saída"),
+):
+    """
+    📝 Scan baseado em templates (estilo Nuclei).
+    Exemplos:
+        moriarty domain template-scan example.com
+        moriarty domain template-scan target.com --templates cves/
+        moriarty domain template-scan target.com --severity critical,high
+    """
+    import asyncio
+    from moriarty.modules.template_scanner import TemplateScanner
+    console.print(f"[bold cyan]📝 Template scan em:[/bold cyan] {target}\n")
+    scanner = TemplateScanner(
+        target=target,
+        templates_path=templates,
+        severity_filter=severity.split(",") if severity != "all" else None,
+        threads=threads,
+    )
+    results = asyncio.run(scanner.scan())
+    console.print(f"\n[bold]Resultados:[/bold]")
+    for severity_level in ["critical", "high", "medium", "low", "info"]:
+        findings = [r for r in results if r.severity == severity_level]
+        if findings:
+            color = {"critical": "red", "high": "yellow", "medium": "blue", "low": "green", "info": "dim"}[severity_level]
+            console.print(f"[{color}]• {severity_level.upper()}: {len(findings)} findings[/{color}]")
+    if output:
+        scanner.export(results, output)
+@app.command("pipeline")
+def run_pipeline(
+    pipeline_file: str = typer.Argument(..., help="Arquivo YAML do pipeline"),
+    target: str = typer.Option(None, "--target", "-t", help="Alvo (sobrescreve YAML)"),
+    vars_file: str = typer.Option(None, "--vars", "-v", help="Arquivo de variáveis"),
+    dry_run: bool = typer.Option(False, "--dry-run", help="Simular sem executar"),
+):
+    """
+    🔄 Executa pipeline de scan via YAML declarativo.
+    Exemplo de pipeline.yaml:
+        name: "Full Recon"
+        target: "example.com"
+        stages:
+          - name: "DNS Discovery"
+            module: "dns"
+          - name: "Subdomain Enum"
+            module: "subdiscover"
+          - name: "Port Scan"
+            module: "ports"
+    """
+    from moriarty.modules.pipeline_orchestrator import PipelineOrchestrator
+    import asyncio
+    console.print(f"[bold cyan]🔄 Executando pipeline:[/bold cyan] {pipeline_file}\n")
+    orchestrator = PipelineOrchestrator(
+        pipeline_file=pipeline_file,
+        target_override=target,
+        vars_file=vars_file,
+        dry_run=dry_run,
+    )
+    asyncio.run(orchestrator.run())
+@app.command("stealth")
+def stealth_command(
+    action: str = typer.Argument(..., help="Ação: scan, config, proxy, test"),
+    target: str = typer.Option(None, "--target", "-t", help="Alvo para scan/test"),
+    level: int = typer.Option(2, "--level", "-l", help="Nível stealth (0-4)"),
+):
+    """
+    🥷 Stealth Mode - Sistema completo de evasão.
+    Níveis:
+        0 - Disabled: Sem stealth
+        1 - Low: Randomização básica
+        2 - Medium: Proxies + timing
+        3 - High: Fragmentação + adaptativo
+        4 - Paranoid: Todas técnicas + decoys
+    Exemplos:
+        moriarty domain stealth scan example.com --level 3
+        moriarty domain stealth config
+        moriarty domain stealth test --target example.com
+    """
+    from moriarty.modules.stealth_mode import StealthMode
+    import asyncio
+    stealth = StealthMode(level=level)
+    if action == "config":
+        stealth.show_config()
+    elif action == "scan":
+        if not target:
+            console.print("[red]❌ --target é obrigatório para scan[/red]")
+            raise typer.Exit(1)
+        asyncio.run(stealth.scan(target))
+    elif action == "proxy":
+        stealth.manage_proxies()
+    elif action == "test":
+        if not target:
+            console.print("[red]❌ --target é obrigatório para test[/red]")
+            raise typer.Exit(1)
+        asyncio.run(stealth.test_capabilities(target))
+    else:
+        console.print(f"[red]❌ Ação inválida: {action}[/red]")
+@app.command("ports")
+def port_scan(
+    target: str = typer.Argument(..., help="IP ou domínio"),
+    ports: str = typer.Option("common", "--ports", "-p", help="Portas: common, all, 1-1000, 80,443"),
+    scan_type: str = typer.Option("syn", "--type", "-t", help="Tipo: syn, tcp, udp"),
+    stealth: int = typer.Option(0, "--stealth", "-s", help="Stealth level (0-4)"),
+    output: str = typer.Option(None, "--output", "-o", help="Arquivo de saída"),
+):
+    """
+    🔌 Scan avançado de portas.
+    Exemplos:
+        moriarty domain ports 8.8.8.8
+        moriarty domain ports target.com --ports 1-10000
+        moriarty domain ports target.com --type syn --stealth 3
+    """
+    from moriarty.modules.port_scanner import PortScanner
+    import asyncio
+    console.print(f"[bold cyan]🔌 Port scan em:[/bold cyan] {target}\n")
+    scanner = PortScanner(
+        target=target,
+        ports=ports,
+        scan_type=scan_type,
+        stealth_level=stealth,
+    )
+    results = asyncio.run(scanner.scan())
+    console.print(f"\n[green]✅ {len(results)} portas abertas encontradas[/green]")
+    if output:
+        scanner.export(results, output)
+@app.command("waf-detect")
+def waf_detection(
+    target: str = typer.Argument(..., help="URL alvo"),
+    bypass: bool = typer.Option(False, "--bypass", "-b", help="Tentar bypass automático"),
+):
+    """
+    🛡️ Detecta WAF/IPS e tenta bypass automático.
+    Detecta:
+    - Cloudflare
+    - AWS WAF
+    - Akamai
+    - Imperva
+    - F5 BIG-IP
+    - ModSecurity
+    - Sucuri
+    - Barracuda
+    - Fortinet
+    """
+    from moriarty.modules.waf_detector import WAFDetector
+    import asyncio
+    console.print(f"[bold cyan]🛡️ Detectando WAF em:[/bold cyan] {target}\n")
+    detector = WAFDetector(target=target)
+    waf_info = asyncio.run(detector.detect())
+    if waf_info:
+        console.print(f"[yellow]⚠️ WAF detectado:[/yellow] {waf_info['name']}")
+        console.print(f"[dim]Confidence: {waf_info['confidence']}%[/dim]")
+        if bypass:
+            console.print("\n[cyan]🔓 Tentando bypass...[/cyan]")
+            bypass_methods = asyncio.run(detector.attempt_bypass())
+            for method in bypass_methods:
+                if method['success']:
+                    console.print(f"[green]✅ Bypass bem-sucedido:[/green] {method['technique']}")
+    else:
+        console.print("[green]✅ Nenhum WAF detectado[/green]")
+__all__ = ["app"]
+@app.command("recon")
+def passive_recon(
+    domain: str = typer.Argument(..., help="Domínio alvo"),
+    output: Optional[str] = typer.Option(None, "--output", "-o", help="Arquivo JSON de saída"),
+    status_only: bool = typer.Option(False, "--status-only", help="Mostrar apenas resumo"),
+):
+    """
+    🌐 Coleta passiva de inteligência sobre domínios.
+    Exemplos:
+        moriarty domain recon example.com
+        moriarty domain recon target.com --output resultado.json
+    """
+    import asyncio
+    import json
+    import logging
+    from datetime import datetime
+    from rich.console import Console
+    from rich.table import Table
+    from rich.panel import Panel
+    from rich import box
+    # Configuração de logs
+    logging.getLogger("httpx").setLevel(logging.ERROR)
+    logging.getLogger("httpcore").setLevel(logging.ERROR)
+    logging.getLogger("moriarty").setLevel(logging.ERROR)
+    console = Console()
+    # Cabeçalho
+    console.print(f"\n[bold cyan]🌐 Moriarty Passive Recon[/bold cyan]")
+    console.print(f"[dim]Alvo:[/dim] {domain}")
+    console.print(f"[dim]Data:[/dim] {datetime.now().strftime('%Y-%m-%d %H:%M:%S')}\n")
+    async def _run():
+        with console.status(f"[bold green]Coletando informações sobre [cyan]{domain}[/cyan]..."):
+            recon = PassiveRecon(domain)
+            try:
+                return await recon.collect()
+            finally:
+                await recon.close()
+    try:
+        result = asyncio.run(_run())
+        payload = result.to_dict()
+        if status_only:
+            sub_count = sum(len(v) for v in payload["subdomains"].values())
+            console.print(f"[bold]🔍 Resumo do Reconhecimento[/bold]")
+            console.print(f"  • [cyan]Subdomínios:[/cyan] {sub_count} encontrados")
+            console.print(f"  • [cyan]Fontes:[/cyan] {', '.join(payload['subdomains'].keys()) or 'nenhuma'}")
+            console.print(f"  • [cyan]Credenciais vazadas:[/cyan] {len(payload['leaks'])}")
+            return
+        # Seção de Subdomínios
+        if payload.get("subdomains"):
+            table = Table(title="[bold]🌐 Subdomínios Encontrados[/bold]", box=box.ROUNDED)
+            table.add_column("Subdomínio", style="cyan")
+            table.add_column("Fonte", style="green")
+            for source, subdomains in payload["subdomains"].items():
+                for sub in subdomains:
+                    table.add_row(sub, source)
+            console.print(Panel.fit(table, border_style="blue"))
+        # Seção de Tecnologias
+        if payload.get("technologies", {}).get("detections"):
+            tech_table = Table(title="[bold]🛠️ Tecnologias Detectadas[/bold]", box=box.ROUNDED)
+            tech_table.add_column("Tecnologia", style="cyan")
+            tech_table.add_column("Confiança", style="green")
+            tech_table.add_column("Categoria", style="magenta")
+            for tech in payload["technologies"]["detections"]:
+                tech_table.add_row(
+                    tech["name"],
+                    f"{tech['confidence']}%",
+                    ", ".join(tech.get("categories", []))
+                )
+            console.print(Panel.fit(tech_table, border_style="blue"))
+        # Seção de Segurança
+        security_table = Table(title="[bold]🔒 Análise de Segurança[/bold]", box=box.ROUNDED)
+        security_table.add_column("Item", style="cyan")
+        security_table.add_column("Status", style="green")
+        # Verifica HSTS
+        headers = payload.get("technologies", {}).get("headers", {})
+        hsts = "Sim" if "strict-transport-security" in str(headers).lower() else "Não"
+        security_table.add_row("HSTS Habilitado", hsts)
+        # Verifica XSS Protection
+        xss_protection = "Sim" if "x-xss-protection" in str(headers).lower() else "Não"
+        security_table.add_row("Proteção XSS", xss_protection)
+        # Verifica Content Security Policy
+        csp = "Sim" if "content-security-policy" in str(headers).lower() else "Não"
+        security_table.add_row("Content Security Policy", csp)
+        console.print(Panel.fit(security_table, border_style="blue"))
+        # Seção de Reputação
+        if payload.get("reputation"):
+            rep_table = Table(title="[bold]📊 Reputação do Domínio[/bold]", box=box.ROUNDED)
+            rep_table.add_column("Fonte", style="cyan")
+            rep_table.add_column("Status", style="green")
+            for source, data in payload["reputation"].items():
+                if isinstance(data, dict) and data.get("pulses") is not None:
+                    rep_table.add_row(source, f"{len(data['pulses'])} ameaças conhecidas")
+                elif source == "alienvault" and data.get("pulses") is not None:
+                    rep_table.add_row("AlienVault OTX", f"{len(data['pulses'])} ameaças conhecidas")
+            console.print(Panel.fit(rep_table, border_style="blue"))
+        # Seção de Informações WHOIS
+        if payload.get("whois"):
+            whois_info = "\n".join(line for line in payload["whois"].split("\n")
+                                 if not line.startswith("%") and line.strip())
+            console.print(Panel.fit(
+                f"[bold]📝 Informações de Registro (WHOIS)[/bold]\n\n[dim]{whois_info}",
+                border_style="blue"
+            ))
+        if output:
+            with open(output, "w", encoding="utf-8") as handle:
+                json.dump(payload, handle, indent=2, ensure_ascii=False)
+            console.print(f"\n[green]✓[/green] Resultados salvos em: [cyan]{output}[/cyan]")
+    except Exception as e:
+        console.print(f"[red]✗ Erro durante o reconhecimento:[/red] {str(e)}")
+        if output:
+            with open(output, "w", encoding="utf-8") as handle:
+                json.dump({"error": str(e)}, handle, indent=2)
+            console.print(f"[yellow]⚠  Log de erro salvo em: {output}[/yellow]")
+@app.command("ports")
+def port_scan(
+    domain: str = typer.Argument(..., help="Alvo para o port scan"),
+    profile: str = typer.Option("quick", "--profile", "-p", help=f"Perfil ({', '.join(PROFILES.keys())})"),
+    concurrency: int = typer.Option(200, "--concurrency", help="Conexões simultâneas"),
+    timeout: float = typer.Option(1.5, "--timeout", help="Timeout por porta"),
+    output: Optional[str] = typer.Option(None, "--output", "-o", help="Arquivo de saída JSON"),
+):
+    """Executa port scan assíncrono com banners."""
+    import asyncio
+    import json
+    async def _run():
+        scanner = PortScanner(
+            target=domain,
+            profile=profile,
+            concurrency=concurrency,
+            timeout=timeout,
+        )
+        return await scanner.scan()
+    results = asyncio.run(_run())
+    if not results:
+        console.print("[yellow]Nenhuma porta aberta detectada[/yellow]")
+    else:
+        table_data = [
+            {"port": r.port, "status": r.status, "banner": r.banner or "-"}
+            for r in results
+        ]
+        console.print_json(data=table_data)
+    if output:
+        json_payload = [r.__dict__ for r in results]
+        with open(output, "w", encoding="utf-8") as handle:
+            json.dump(json_payload, handle, indent=2, ensure_ascii=False)
+        console.print(f"[green]✓ Resultado salvo em[/green] {output}")
+@app.command("crawl")
+def crawl(
+    domain: str = typer.Argument(..., help="Alvo base (ex: https://example.com)"),
+    max_pages: int = typer.Option(100, "--max-pages", help="Máximo de páginas"),
+    max_depth: int = typer.Option(2, "--max-depth", help="Profundidade máxima"),
+    concurrency: int = typer.Option(10, "--concurrency", help="Workers paralelos"),
+    follow_subdomains: bool = typer.Option(False, "--follow-subdomains", help="Seguir subdomínios"),
+    output: Optional[str] = typer.Option(None, "--output", "-o", help="Arquivo JSON de saída"),
+):
+    """Crawler leve para mapear formulários e rotas."""
+    import asyncio
+    import json
+    async def _run():
+        crawler = WebCrawler(
+            base_url=domain,
+            max_pages=max_pages,
+            max_depth=max_depth,
+            concurrency=concurrency,
+            follow_subdomains=follow_subdomains,
+        )
+        try:
+            return await crawler.crawl()
+        finally:
+            await crawler.close()
+    pages = asyncio.run(_run())
+    summary = {
+        "total_pages": len(pages),
+        "forms": sum(len(page.forms) for page in pages.values()),
+    }
+    console.print_json(data=summary)
+    if output:
+        payload = {url: page.__dict__ for url, page in pages.items()}
+        with open(output, "w", encoding="utf-8") as handle:
+            json.dump(payload, handle, indent=2, ensure_ascii=False)
+        console.print(f"[green]✓ Resultado salvo em[/green] {output}")