secator 0.1.0__py2.py3-none-any.whl

secator/decorators.py

@@ -0,0 +1,346 @@
+import sys
+from collections import OrderedDict
+
+import rich_click as click
+from rich_click.rich_click import _get_rich_console
+from rich_click.rich_group import RichGroup
+
+from secator.definitions import (MONGODB_ADDON_ENABLED, OPT_NOT_SUPPORTED,
+								 WORKER_ADDON_ENABLED)
+from secator.runners import Scan, Task, Workflow
+from secator.utils import (deduplicate, expand_input, get_command_category,
+						   get_command_cls)
+
+RUNNER_OPTS = {
+	'output': {'type': str, 'default': '', 'help': 'Output options (-o table,json,csv,gdrive)', 'short': 'o'},
+	'workspace': {'type': str, 'default': 'default', 'help': 'Workspace', 'short': 'ws'},
+	'json': {'is_flag': True, 'default': False, 'help': 'Enable JSON mode'},
+	'orig': {'is_flag': True, 'default': False, 'help': 'Enable original output (no schema conversion)'},
+	'raw': {'is_flag': True, 'default': False, 'help': 'Enable text output for piping to other tools'},
+	'show': {'is_flag': True, 'default': False, 'help': 'Show command that will be run (tasks only)'},
+	'format': {'default': '', 'short': 'fmt', 'help': 'Output formatting string'},
+	# 'filter': {'default': '', 'short': 'f', 'help': 'Results filter', 'short': 'of'}, # TODO add this
+	'quiet': {'is_flag': True, 'default': False, 'help': 'Enable quiet mode'},
+}
+
+RUNNER_GLOBAL_OPTS = {
+	'sync': {'is_flag': True, 'help': 'Run tasks synchronously (automatic if no worker is alive)'},
+	'worker': {'is_flag': True, 'help': 'Run tasks in worker (automatic if worker is alive)'},
+	'proxy': {'type': str, 'help': 'HTTP proxy'},
+	'driver': {'type': str, 'help': 'Export real-time results. E.g: "mongodb"'}
+	# 'debug': {'type': int, 'default': 0, 'help': 'Debug mode'},
+}
+
+DEFAULT_CLI_OPTIONS = list(RUNNER_OPTS.keys()) + list(RUNNER_GLOBAL_OPTS.keys())
+
+
+class OrderedGroup(RichGroup):
+	def __init__(self, name=None, commands=None, **attrs):
+		super(OrderedGroup, self).__init__(name, commands, **attrs)
+		self.commands = commands or OrderedDict()
+
+	def command(self, *args, **kwargs):
+		"""Behaves the same as `click.Group.command()` but supports aliases.
+		"""
+		def decorator(f):
+			aliases = kwargs.pop("aliases", None)
+			if aliases:
+				max_width = _get_rich_console().width
+				aliases_str = ', '.join(f'[bold cyan]{alias}[/]' for alias in aliases)
+				padding = max_width // 4
+
+				name = kwargs.pop("name", None)
+				if not name:
+					raise click.UsageError("`name` command argument is required when using aliases.")
+
+				f.__doc__ = f.__doc__ or 'N/A'
+				f.__doc__ = f'{f.__doc__:<{padding}}[dim](aliases)[/] {aliases_str}'
+				base_command = super(OrderedGroup, self).command(
+					name, *args, **kwargs
+				)(f)
+				for alias in aliases:
+					cmd = super(OrderedGroup, self).command(alias, *args, hidden=True, **kwargs)(f)
+					cmd.help = f"Alias for '{name}'.\n\n{cmd.help}"
+					cmd.params = base_command.params
+
+			else:
+				cmd = super(OrderedGroup, self).command(*args, **kwargs)(f)
+
+			return cmd
+		return decorator
+
+	def group(self, *args, **kwargs):
+		"""Behaves the same as `click.Group.group()` but supports aliases.
+		"""
+		def decorator(f):
+			aliases = kwargs.pop('aliases', [])
+			aliased_group = []
+			if aliases:
+				max_width = _get_rich_console().width
+				aliases_str = ', '.join(f'[bold cyan]{alias}[/]' for alias in aliases)
+				padding = max_width // 4
+				f.__doc__ = f.__doc__ or 'N/A'
+				f.__doc__ = f'{f.__doc__:<{padding}}[dim](aliases)[/] {aliases_str}'
+				for alias in aliases:
+					grp = super(OrderedGroup, self).group(
+						alias, *args, hidden=True, **kwargs)(f)
+					aliased_group.append(grp)
+
+			# create the main group
+			grp = super(OrderedGroup, self).group(*args, **kwargs)(f)
+			grp.aliases = aliases
+
+			# for all of the aliased groups, share the main group commands
+			for aliased in aliased_group:
+				aliased.commands = grp.commands
+
+			return grp
+		return decorator
+
+	def list_commands(self, ctx):
+		return self.commands
+
+
+def get_command_options(*tasks):
+	"""Get unified list of command options from a list of secator tasks classes.
+
+	Args:
+		tasks (list): List of secator command classes.
+
+	Returns:
+		list: List of deduplicated options.
+	"""
+	opt_cache = []
+	all_opts = OrderedDict({})
+
+	for cls in tasks:
+		opts = OrderedDict(RUNNER_GLOBAL_OPTS, **RUNNER_OPTS, **cls.meta_opts, **cls.opts)
+		for opt, opt_conf in opts.items():
+
+			# Get opt key map if any
+			opt_key_map = getattr(cls, 'opt_key_map', {})
+
+			# Opt is not supported by this task
+			if opt not in opt_key_map\
+				and opt not in cls.opts\
+				and opt not in RUNNER_OPTS\
+				and opt not in RUNNER_GLOBAL_OPTS:
+				continue
+
+			if opt_key_map.get(opt) == OPT_NOT_SUPPORTED:
+				continue
+
+			# Get opt prefix
+			prefix = None
+			if opt in cls.opts:
+				prefix = cls.__name__
+			elif opt in cls.meta_opts:
+				# TODO: Add options categories
+				# category = get_command_category(cls)
+				# prefix = category
+				prefix = 'Meta'
+			elif opt in RUNNER_OPTS:
+				prefix = 'Output'
+			elif opt in RUNNER_GLOBAL_OPTS:
+				prefix = 'Execution'
+
+			# Check if opt already processed before
+			opt = opt.replace('_', '-')
+			if opt in opt_cache:
+				continue
+
+			# Build help
+			conf = opt_conf.copy()
+			conf['show_default'] = True
+			conf['prefix'] = prefix
+			all_opts[opt] = conf
+			opt_cache.append(opt)
+
+	return all_opts
+
+
+def decorate_command_options(opts):
+	"""Add click.option decorator to decorate click command.
+
+	Args:
+		opts (dict): Dict of command options.
+
+	Returns:
+		function: Decorator.
+	"""
+	def decorator(f):
+		reversed_opts = OrderedDict(list(opts.items())[::-1])
+		for opt_name, opt_conf in reversed_opts.items():
+			conf = opt_conf.copy()
+			short = conf.pop('short', None)
+			conf.pop('internal', False)
+			conf.pop('prefix', None)
+			long = f'--{opt_name}'
+			short = f'-{short}' if short else f'-{opt_name}'
+			f = click.option(long, short, **conf)(f)
+		return f
+	return decorator
+
+
+def task():
+	def decorator(cls):
+		cls.__task__ = True
+		return cls
+	return decorator
+
+
+def register_runner(cli_endpoint, config):
+	fmt_opts = {
+		'print_cmd': True,
+	}
+	short_help = ''
+	input_type = 'targets'
+	input_required = True
+	runner_cls = None
+	tasks = []
+	no_args_is_help = True
+
+	if cli_endpoint.name == 'scan':
+		# TODO: this should be refactored to scan.get_tasks_from_conf() or scan.tasks
+		from secator.cli import ALL_CONFIGS
+		tasks = [
+			get_command_cls(task)
+			for workflow in ALL_CONFIGS.workflow
+			for task in Task.get_tasks_from_conf(workflow.tasks)
+			if workflow.name in list(config.workflows.keys())
+		]
+		input_type = 'targets'
+		name = config.name
+		short_help = config.description or ''
+		if config.alias:
+			short_help += f' [dim]alias: {config.alias}'
+		fmt_opts['print_start'] = True
+		fmt_opts['print_run_summary'] = True
+		fmt_opts['print_progress'] = False
+		runner_cls = Scan
+
+	elif cli_endpoint.name == 'workflow':
+		# TODO: this should be refactored to workflow.get_tasks_from_conf() or workflow.tasks
+		tasks = [
+			get_command_cls(task) for task in Task.get_tasks_from_conf(config.tasks)
+		]
+		input_type = 'targets'
+		name = config.name
+		short_help = config.description or ''
+		if config.alias:
+			short_help = f'{short_help:<55} [dim](alias)[/][bold cyan] {config.alias}'
+		fmt_opts['print_start'] = True
+		fmt_opts['print_run_summary'] = True
+		fmt_opts['print_progress'] = False
+		runner_cls = Workflow
+
+	elif cli_endpoint.name == 'task':
+		tasks = [
+			get_command_cls(config.name)
+		]
+		task_cls = Task.get_task_class(config.name)
+		task_category = get_command_category(task_cls)
+		input_type = task_cls.input_type or 'targets'
+		name = config.name
+		short_help = f'[magenta]{task_category:<15}[/]{task_cls.__doc__}'
+		fmt_opts['print_item_count'] = True
+		runner_cls = Task
+		no_args_is_help = False
+		input_required = False
+
+	options = get_command_options(*tasks)
+
+	# TODO: maybe allow this in the future
+	# def get_unknown_opts(ctx):
+	# 	return {
+	# 		(ctx.args[i][2:]
+	# 		if str(ctx.args[i]).startswith("--") \
+	# 		else ctx.args[i][1:]): ctx.args[i+1]
+	# 		for i in range(0, len(ctx.args), 2)
+	# 	}
+
+	@click.argument(input_type, required=input_required)
+	@decorate_command_options(options)
+	@click.pass_context
+	def func(ctx, **opts):
+		opts.update(fmt_opts)
+		sync = opts['sync']
+		worker = opts['worker']
+		# debug = opts['debug']
+		ws = opts.pop('workspace')
+		driver = opts.pop('driver', '')
+		show = opts['show']
+		context = {'workspace_name': ws}
+		# TODO: maybe allow this in the future
+		# unknown_opts = get_unknown_opts(ctx)
+		# opts.update(unknown_opts)
+		targets = opts.pop(input_type)
+		targets = expand_input(targets)
+		if sync or show or not WORKER_ADDON_ENABLED:
+			sync = True
+		elif worker:
+			sync = False
+		else:  # automatically run in worker if it's alive
+			from secator.celery import is_celery_worker_alive
+			sync = not is_celery_worker_alive()
+		opts['sync'] = sync
+		opts.update({
+			'print_item': not sync,
+			'print_line': sync,
+			'print_remote_status': not sync,
+			'print_start': not sync
+		})
+
+		# Build hooks from driver name
+		hooks = {}
+		if driver == 'mongodb':
+			if not MONGODB_ADDON_ENABLED:
+				_get_rich_console().print('[bold red]Missing MongoDB dependencies: please run `secator install addons mongodb`[/].')
+				sys.exit(1)
+			from secator.hooks.mongodb import MONGODB_HOOKS
+			hooks = MONGODB_HOOKS
+
+		# Build exporters
+		runner = runner_cls(config, targets, run_opts=opts, hooks=hooks, context=context)
+		runner.run()
+
+	settings = {'ignore_unknown_options': False, 'allow_extra_args': False}
+	cli_endpoint.command(
+		name=config.name,
+		context_settings=settings,
+		no_args_is_help=no_args_is_help,
+		short_help=short_help)(func)
+
+	generate_rich_click_opt_groups(cli_endpoint, name, input_type, options)
+
+
+def generate_rich_click_opt_groups(cli_endpoint, name, input_type, options):
+	sortorder = {
+		'Execution': 0,
+		'Output': 1,
+		'Meta': 2,
+	}
+	prefixes = deduplicate([opt['prefix'] for opt in options.values()])
+	prefixes = sorted(prefixes, key=lambda x: sortorder.get(x, 3))
+	opt_group = [
+		{
+			'name': 'Targets',
+			'options': [input_type],
+		},
+	]
+	for prefix in prefixes:
+		prefix_opts = [
+			opt for opt, conf in options.items()
+			if conf['prefix'] == prefix
+		]
+		opt_names = [f'--{opt_name}' for opt_name in prefix_opts]
+		if prefix == 'Execution':
+			opt_names.append('--help')
+		opt_group.append({
+			'name': prefix + ' options',
+			'options': opt_names
+		})
+	aliases = [cli_endpoint.name, *cli_endpoint.aliases]
+	for alias in aliases:
+		endpoint_name = f'secator {alias} {name}'
+		click.rich_click.OPTION_GROUPS[endpoint_name] = opt_group

secator/definitions.py

@@ -0,0 +1,183 @@
+#!/usr/bin/python
+
+import os
+
+from dotenv import find_dotenv, load_dotenv
+from pkg_resources import get_distribution
+
+load_dotenv(find_dotenv(usecwd=True), override=False)
+
+# Globals
+VERSION = get_distribution('secator').version
+ASCII = f"""
+                         __            
+   ________  _________ _/ /_____  _____
+  / ___/ _ \/ ___/ __ `/ __/ __ \/ ___/
+ (__  /  __/ /__/ /_/ / /_/ /_/ / /    
+/____/\___/\___/\__,_/\__/\____/_/     v{VERSION}
+
+                    freelabz.com
+"""  # noqa: W605,W291
+
+# Secator folders
+ROOT_FOLDER = os.path.dirname(os.path.dirname(os.path.realpath(__file__)))
+LIB_FOLDER = ROOT_FOLDER + '/secator'
+CONFIGS_FOLDER = LIB_FOLDER + '/configs'
+EXTRA_CONFIGS_FOLDER = os.environ.get('SECATOR_EXTRA_CONFIGS_FOLDER')
+DATA_FOLDER = os.environ.get('SECATOR_DATA_FOLDER', f'{os.path.expanduser("~")}/.secator')
+REPORTS_FOLDER = os.environ.get('SECATOR_REPORTS_FOLDER', f'{DATA_FOLDER}/reports')
+WORDLISTS_FOLDER = os.environ.get('SECATOR_WORDLISTS_FOLDER', f'{DATA_FOLDER}/wordlists')
+SCRIPTS_FOLDER = f'{ROOT_FOLDER}/scripts'
+CVES_FOLDER = f'{DATA_FOLDER}/cves'
+PAYLOADS_FOLDER = f'{DATA_FOLDER}/payloads'
+REVSHELLS_FOLDER = f'{DATA_FOLDER}/revshells'
+TESTS_FOLDER = f'{ROOT_FOLDER}/tests'
+os.makedirs(DATA_FOLDER, exist_ok=True)
+os.makedirs(REPORTS_FOLDER, exist_ok=True)
+os.makedirs(WORDLISTS_FOLDER, exist_ok=True)
+os.makedirs(SCRIPTS_FOLDER, exist_ok=True)
+os.makedirs(CVES_FOLDER, exist_ok=True)
+os.makedirs(PAYLOADS_FOLDER, exist_ok=True)
+os.makedirs(REVSHELLS_FOLDER, exist_ok=True)
+
+# Celery local fs folders
+CELERY_DATA_FOLDER = f'{DATA_FOLDER}/celery/data'
+CELERY_RESULTS_FOLDER = f'{DATA_FOLDER}/celery/results'
+os.makedirs(CELERY_DATA_FOLDER, exist_ok=True)
+os.makedirs(CELERY_RESULTS_FOLDER, exist_ok=True)
+
+# Environment variables
+DEBUG = int(os.environ.get('DEBUG', '0'))
+DEBUG_COMPONENT = os.environ.get('DEBUG_COMPONENT', '').split(',')
+RECORD = bool(int(os.environ.get('RECORD', 0)))
+CELERY_BROKER_URL = os.environ.get('CELERY_BROKER_URL', 'filesystem://')
+CELERY_RESULT_BACKEND = os.environ.get('CELERY_RESULT_BACKEND', f'file://{CELERY_RESULTS_FOLDER}')
+CELERY_BROKER_POOL_LIMIT = int(os.environ.get('CELERY_BROKER_POOL_LIMIT', 10))
+CELERY_BROKER_CONNECTION_TIMEOUT = float(os.environ.get('CELERY_BROKER_CONNECTION_TIMEOUT', 4.0))
+CELERY_BROKER_VISIBILITY_TIMEOUT = int(os.environ.get('CELERY_BROKER_VISIBILITY_TIMEOUT', 3600))
+CELERY_OVERRIDE_DEFAULT_LOGGING = bool(int(os.environ.get('CELERY_OVERRIDE_DEFAULT_LOGGING', 1)))
+GOOGLE_DRIVE_PARENT_FOLDER_ID = os.environ.get('GOOGLE_DRIVE_PARENT_FOLDER_ID')
+GOOGLE_CREDENTIALS_PATH = os.environ.get('GOOGLE_CREDENTIALS_PATH')
+
+# Defaults HTTP and Proxy settings
+DEFAULT_SOCKS5_PROXY = os.environ.get('SOCKS5_PROXY', "socks5://127.0.0.1:9050")
+DEFAULT_HTTP_PROXY = os.environ.get('HTTP_PROXY', "https://127.0.0.1:9080")
+DEFAULT_STORE_HTTP_RESPONSES = bool(int(os.environ.get('DEFAULT_STORE_HTTP_RESPONSES', 1)))
+DEFAULT_PROXYCHAINS_COMMAND = "proxychains"
+DEFAULT_FREEPROXY_TIMEOUT = 1  # seconds
+
+# Default worker settings
+DEFAULT_INPUT_CHUNK_SIZE = int(os.environ.get('DEFAULT_INPUT_CHUNK_SIZE', 1000))
+DEFAULT_STDIN_TIMEOUT = 1000  # seconds
+
+# Default tasks settings
+DEFAULT_HTTPX_FLAGS = os.environ.get('DEFAULT_HTTPX_FLAGS', '-td')
+DEFAULT_KATANA_FLAGS = os.environ.get('DEFAULT_KATANA_FLAGS', '-jc -js-crawl -known-files all -or -ob')
+DEFAULT_NUCLEI_FLAGS = os.environ.get('DEFAULT_NUCLEI_FLAGS', '-stats -sj -si 20 -hm -or')
+DEFAULT_FEROXBUSTER_FLAGS = os.environ.get('DEFAULT_FEROXBUSTER_FLAGS', '--auto-bail --no-state')
+DEFAULT_PROGRESS_UPDATE_FREQUENCY = int(os.environ.get('DEFAULT_PROGRESS_UPDATE_FREQUENCY', 60))
+DEFAULT_SKIP_CVE_SEARCH = bool(int(os.environ.get('DEFAULT_SKIP_CVE_SEARCH', 0)))
+
+# Default wordlists
+DEFAULT_HTTP_WORDLIST = os.environ.get('DEFAULT_HTTP_WORDLIST', f'{WORDLISTS_FOLDER}/Fuzzing/fuzz-Bo0oM.txt')
+DEFAULT_DNS_WORDLIST = os.environ.get('DEFAULT_DNS_WORDLIST', f'{WORDLISTS_FOLDER}/Discovery/DNS/combined_subdomains.txt')  # noqa:E501
+
+# Constants
+OPT_NOT_SUPPORTED = -1
+OPT_PIPE_INPUT = -1
+
+# Vocab
+ALIVE = 'alive'
+AUTO_CALIBRATION = 'auto_calibration'
+CONTENT_TYPE = 'content_type'
+CONTENT_LENGTH = 'content_length'
+CIDR_RANGE = 'cidr_range'
+CPES = 'cpes'
+CVES = 'cves'
+DELAY = 'delay'
+DOMAIN = 'domain'
+DEPTH = 'depth'
+EXTRA_DATA = 'extra_data'
+EMAIL = 'email'
+FILTER_CODES = 'filter_codes'
+FILTER_WORDS = 'filter_words'
+FOLLOW_REDIRECT = 'follow_redirect'
+FILTER_REGEX = 'filter_regex'
+FILTER_SIZE = 'filter_size'
+HEADER = 'header'
+HOST = 'host'
+IP = 'ip'
+LINES = 'lines'
+METHOD = 'method'
+MATCH_CODES = 'match_codes'
+MATCH_REGEX = 'match_regex'
+MATCH_SIZE = 'match_size'
+MATCH_WORDS = 'match_words'
+OUTPUT_PATH = 'output_path'
+PATH = 'path'
+PERCENT = 'percent'
+PORTS = 'ports'
+PORT = 'port'
+PROXY = 'proxy'
+RATE_LIMIT = 'rate_limit'
+RETRIES = 'retries'
+TAGS = 'tags'
+THREADS = 'threads'
+TIME = 'time'
+TIMEOUT = 'timeout'
+TOP_PORTS = 'top_ports'
+TYPE = 'type'
+URL = 'url'
+USER_AGENT = 'user_agent'
+USERNAME = 'username'
+STORED_RESPONSE_PATH = 'stored_response_path'
+SCRIPT = 'script'
+SERVICE_NAME = 'service_name'
+SOURCES = 'sources'
+STATE = 'state'
+STATUS_CODE = 'status_code'
+TECH = 'tech'
+TITLE = 'title'
+SITE_NAME = 'site_name'
+SERVICE_NAME = 'service_name'
+CONFIDENCE = 'confidence'
+CVSS_SCORE = 'cvss_score'
+DESCRIPTION = 'description'
+ID = 'id'
+MATCHED_AT = 'matched_at'
+NAME = 'name'
+PROVIDER = 'provider'
+REFERENCE = 'reference'
+REFERENCES = 'references'
+SEVERITY = 'severity'
+TAGS = 'tags'
+WEBSERVER = 'webserver'
+WORDLIST = 'wordlist'
+WORDS = 'words'
+
+# Check worker addon
+try:
+    import eventlet  # noqa: F401
+    WORKER_ADDON_ENABLED = 1
+except ModuleNotFoundError:
+    WORKER_ADDON_ENABLED = 0
+
+# Check mongodb addon
+try:
+    import pymongo  # noqa: F401
+    MONGODB_ADDON_ENABLED = 1
+except ModuleNotFoundError:
+    MONGODB_ADDON_ENABLED = 0
+
+# Check dev addon
+try:
+    import flake8  # noqa: F401
+    DEV_ADDON_ENABLED = 1
+except ModuleNotFoundError:
+    DEV_ADDON_ENABLED = 0
+
+# Check dev package
+if not os.path.exists(TESTS_FOLDER):
+    DEV_PACKAGE = 0
+else:
+    DEV_PACKAGE = 1

secator/exporters/__init__.py

@@ -0,0 +1,12 @@
+__all__ = [
+    'CsvExporter',
+    'GdriveExporter',
+    'JsonExporter',
+    'TableExporter',
+    'TxtExporter'
+]
+from secator.exporters.csv import CsvExporter
+from secator.exporters.gdrive import GdriveExporter
+from secator.exporters.json import JsonExporter
+from secator.exporters.table import TableExporter
+from secator.exporters.txt import TxtExporter

secator/exporters/_base.py

@@ -0,0 +1,3 @@
+class Exporter:
+    def __init__(self, report):
+        self.report = report

secator/exporters/csv.py

@@ -0,0 +1,29 @@
+import csv as _csv
+
+from secator.exporters._base import Exporter
+from secator.rich import console
+
+
+class CsvExporter(Exporter):
+    def send(self):
+        results = self.report.data['results']
+        csv_paths = []
+
+        for output_type, items in results.items():
+            items = [i.toDict() for i in items]
+            if not items:
+                continue
+            keys = list(items[0].keys())
+            csv_path = f'{self.report.output_folder}/report_{output_type}.csv'
+            csv_paths.append(csv_path)
+            with open(csv_path, 'w', newline='') as output_file:
+                dict_writer = _csv.DictWriter(output_file, keys)
+                dict_writer.writeheader()
+                dict_writer.writerows(items)
+
+        if len(csv_paths) == 1:
+            csv_paths_str = csv_paths[0]
+        else:
+            csv_paths_str = '\n   • ' + '\n   • '.join(csv_paths)
+
+        console.print(f':file_cabinet: Saved CSV reports to {csv_paths_str}')

secator/exporters/gdrive.py

@@ -0,0 +1,118 @@
+import os
+import csv
+import yaml
+
+from secator.definitions import GOOGLE_CREDENTIALS_PATH, GOOGLE_DRIVE_PARENT_FOLDER_ID
+from secator.exporters._base import Exporter
+from secator.rich import console
+from secator.utils import pluralize
+
+
+class GdriveExporter(Exporter):
+	def send(self):
+		import gspread
+		ws = self.report.workspace_name
+		info = self.report.data['info']
+		title = self.report.data['info']['title']
+		sheet_title = f'{self.report.data["info"]["title"]}_{self.report.timestamp}'
+		results = self.report.data['results']
+		if not GOOGLE_CREDENTIALS_PATH:
+			console.print(':file_cabinet: Missing GOOGLE_CREDENTIALS_PATH to save to Google Sheets', style='red')
+			return
+		if not GOOGLE_DRIVE_PARENT_FOLDER_ID:
+			console.print(':file_cabinet: Missing GOOGLE_DRIVE_PARENT_FOLDER_ID to save to Google Sheets.', style='red')
+			return
+		client = gspread.service_account(GOOGLE_CREDENTIALS_PATH)
+
+		# Create workspace folder if it doesn't exist
+		folder_id = self.get_folder_by_name(ws, parent_id=GOOGLE_DRIVE_PARENT_FOLDER_ID)
+		if ws and not folder_id:
+			folder_id = self.create_folder(
+				folder_name=ws,
+				parent_id=GOOGLE_DRIVE_PARENT_FOLDER_ID)
+
+		# Create worksheet
+		sheet = client.create(title, folder_id=folder_id)
+
+		# Add options worksheet for input data
+		info = self.report.data['info']
+		info['targets'] = '\n'.join(info['targets'])
+		info['opts'] = yaml.dump(info['opts'])
+		keys = [k.replace('_', ' ').upper() for k in list(info.keys())]
+		ws = sheet.add_worksheet('OPTIONS', rows=2, cols=len(keys))
+		sheet.values_update(
+			ws.title,
+			params={'valueInputOption': 'USER_ENTERED'},
+			body={'values': [keys, list(info.values())]}
+		)
+
+		# Add one worksheet per output type
+		for output_type, items in results.items():
+			items = [i.toDict() for i in items]
+			if not items:
+				continue
+			keys = [
+				k.replace('_', ' ').upper()
+				for k in list(items[0].keys())
+			]
+			csv_path = f'{self.report.output_folder}/report_{output_type}.csv'
+			if not os.path.exists(csv_path):
+				console.print(
+					f'Unable to find CSV at {csv_path}. For Google sheets reports, please enable CSV reports as well.')
+				return
+			sheet_title = pluralize(output_type).upper()
+			ws = sheet.add_worksheet(sheet_title, rows=len(items), cols=len(keys))
+			with open(csv_path, 'r') as f:
+				data = csv.reader(f)
+				data = list(data)
+				data[0] = [
+					k.replace('_', ' ').upper()
+					for k in data[0]
+				]
+				sheet.values_update(
+					ws.title,
+					params={'valueInputOption': 'USER_ENTERED'},
+					body={'values': data}
+				)
+
+		# Delete 'default' worksheet
+		ws = sheet.get_worksheet(0)
+		sheet.del_worksheet(ws)
+
+		console.print(f':file_cabinet: Saved Google Sheets reports to [u magenta]{sheet.url}[/]')
+
+	def create_folder(self, folder_name, parent_id=None):
+		from googleapiclient.discovery import build
+		from google.oauth2 import service_account
+		creds = service_account.Credentials.from_service_account_file(GOOGLE_CREDENTIALS_PATH)
+		service = build('drive', 'v3', credentials=creds)
+		body = {
+			'name': folder_name,
+			'mimeType': "application/vnd.google-apps.folder"
+		}
+		if parent_id:
+			body['parents'] = [parent_id]
+		folder = service.files().create(body=body, fields='id').execute()
+		return folder['id']
+
+	def list_folders(self, parent_id):
+		from googleapiclient.discovery import build
+		from google.oauth2 import service_account
+		creds = service_account.Credentials.from_service_account_file(GOOGLE_CREDENTIALS_PATH)
+		service = build('drive', 'v3', credentials=creds)
+		driveid = service.files().get(fileId='root').execute()['id']
+		response = service.files().list(
+			q=f"'{parent_id}' in parents and mimeType='application/vnd.google-apps.folder'",
+			driveId=driveid,
+			corpora='drive',
+			includeItemsFromAllDrives=True,
+			supportsAllDrives=True
+		).execute()
+		return response
+
+	def get_folder_by_name(self, name, parent_id=None):
+		response = self.list_folders(parent_id=parent_id)
+		existing = [i for i in response['files'] if i['name'] == name]
+		if existing:
+			return existing[0]['id']
+		return None