secator 0.13.0__py3-none-any.whl → 0.14.0__py3-none-any.whl

secator/cli.py

@@ -36,6 +36,7 @@ click.rich_click.USE_RICH_MARKUP = True
 ALL_TASKS = discover_tasks()
 ALL_WORKFLOWS = [t for t in TEMPLATES if t.type == 'workflow']
 ALL_SCANS = [t for t in TEMPLATES if t.type == 'scan']
+ALL_PROFILES = [t for t in TEMPLATES if t.type == 'profile']
 FINDING_TYPES_LOWER = [c.__name__.lower() for c in FINDING_TYPES]
 CONTEXT_SETTINGS = dict(help_option_names=['-h', '-help', '--help'])
 
@@ -125,6 +126,25 @@ for config in sorted(ALL_SCANS, key=lambda x: x['name']):
 	register_runner(scan, config)
 
 
+@cli.group(aliases=['p'])
+@click.pass_context
+def profile(ctx):
+	"""Show profiles"""
+	pass
+
+
+@profile.command('list')
+def profile_list():
+	table = Table()
+	table.add_column("Profile name", style="bold gold3")
+	table.add_column("Description", overflow='fold')
+	table.add_column("Options", overflow='fold')
+	for profile in ALL_PROFILES:
+		opts_str = ','.join(f'{k}={v}' for k, v in profile.opts.items())
+		table.add_row(profile.name, profile.description, opts_str)
+	console.print(table)
+
+
 #--------#
 # WORKER #
 #--------#
@@ -685,7 +705,7 @@ def report_show(report_query, output, runner_type, time_delta, type, query, work
 					all_results.extend(runner.results)
 					continue
 				report = Report(runner, title=f"Consolidated report - {current}", exporters=exporters)
-				report.build(extractors=extractors if not unified else [])
+				report.build(extractors=extractors if not unified else [], dedupe=unified)
 				file_date = get_file_date(path)
 				runner_name = data['info']['name']
 				console.print(
@@ -1423,6 +1443,16 @@ def task(name, verbose, check):
 	task = task[0]
 	task_name = task.__name__
 
+	# Check task command is set
+	check_test(
+		task.cmd,
+		'Check task command is set (cls.cmd)',
+		'Task has no cmd attribute.',
+		errors
+	)
+	if errors:
+		sys.exit(0)
+
 	# Run install
 	cmd = f'secator install tools {task_name}'
 	ret_code = Command.execute(cmd, name='install', quiet=not verbose, cwd=ROOT_FOLDER)
@@ -1437,7 +1467,7 @@ def task(name, verbose, check):
 		errors
 	)
 	check_test(
-		any(cmd for cmd in [task.install_cmd, task.install_github_handle]),
+		any(cmd for cmd in [task.install_pre, task.install_cmd, task.install_github_handle]),
 		'Check task installation command is defined',
 		'Task has no installation command. Please define one or more of the following class attributes: `install_pre`, `install_cmd`, `install_post`, `install_github_handle`.',  # noqa: E501
 		errors
@@ -1471,12 +1501,6 @@ def task(name, verbose, check):
 		'Task has no description (class docstring).',
 		errors
 	)
-	check_test(
-		task.cmd,
-		'Check task command is set (cls.cmd)',
-		'Task has no cmd attribute.',
-		errors
-	)
 	check_test(
 		task.input_type,
 		'Check task input type is set (cls.input_type)',

secator/configs/profiles/aggressive.yaml

@@ -1,7 +1,8 @@
 type: profile
 name: aggressive
-options:
-  rate_limit: 100000
-  delay: 0
-  proxy: random
-  user_agent: random
+description: "Internal networks or time-sensitive scans"
+opts:
+    rate_limit: 10000
+    delay: 0
+    timeout: 1
+    retries: 1

secator/configs/profiles/default.yaml

@@ -1,9 +1,8 @@
 type: profile
 name: default
-options:
-  rate_limit: 1000
-  delay: 1
-  proxy: null
-  user_agent: 'Mozilla ...'
-  nuclei.retries: 5
-  nuclei.timeout: 15
+description: "General scanning"
+opts:
+    rate_limit: 1000
+    delay: 0
+    timeout: 5
+    retries: 3

secator/configs/profiles/insane.yaml

@@ -0,0 +1,8 @@
+type: profile
+name: insane
+description: "Local LAN scanning or stress scanning"
+opts:
+    rate_limit: 100000
+    delay: 0
+    timeout: 1
+    retries: 0

secator/configs/profiles/paranoid.yaml

@@ -0,0 +1,8 @@
+type: profile
+name: paranoid
+description: "Maximum stealth"
+opts:
+    rate_limit: 5
+    delay: 5
+    timeout: 15
+    retries: 5

secator/configs/profiles/polite.yaml

@@ -0,0 +1,8 @@
+type: profile
+name: polite
+description: "Avoid overloading network"
+opts:
+    rate_limit: 100
+    delay: 0
+    timeout: 10
+    retries: 5

secator/configs/profiles/sneaky.yaml

@@ -0,0 +1,8 @@
+type: profile
+name: sneaky
+description: "IDS/IPS evasion, sensitive networks"
+opts:
+    rate_limit: 10
+    delay: 2
+    timeout: 15
+    retries: 5

secator/configs/profiles/tor.yaml

@@ -0,0 +1,5 @@
+type: profile
+name: tor
+description: "Anonymous scan using Tor network"
+opts:
+  proxy: tor

secator/decorators.py

@@ -13,6 +13,7 @@ from secator.utils import (deduplicate, expand_input, get_command_category)
 
 RUNNER_OPTS = {
 	'output': {'type': str, 'default': None, 'help': 'Output options (-o table,json,csv,gdrive)', 'short': 'o'},
+	'profiles': {'type': str, 'default': 'default', 'help': 'Profiles', 'short': 'pf'},
 	'workspace': {'type': str, 'default': 'default', 'help': 'Workspace', 'short': 'ws'},
 	'print_json': {'is_flag': True, 'short': 'json', 'default': False, 'help': 'Print items as JSON lines'},
 	'print_raw': {'is_flag': True, 'short': 'raw', 'default': False, 'help': 'Print items in raw format'},

secator/report.py

@@ -55,7 +55,7 @@ class Report:
 					f'{str(e)}[/]\n[dim]{traceback_as_string(e)}[/]',
 				)
 
-	def build(self, extractors=[], dedupe=False):
+	def build(self, extractors=[], dedupe=CONFIG.runners.remove_duplicates):
 		# Trim options
 		from secator.decorators import DEFAULT_CLI_OPTIONS
 		opts = merge_opts(self.runner.config.options, self.runner.run_opts)
@@ -97,7 +97,7 @@ class Report:
 			if items:
 				if sort_by and all(sort_by):
 					items = sorted(items, key=operator.attrgetter(*sort_by))
-				if dedupe and CONFIG.runners.remove_duplicates:
+				if dedupe:
 					items = remove_duplicates(items)
 					# items = [item for item in items if not item._duplicate and item not in dedupe_from]
 				for extractor in extractors:

secator/runners/_base.py

@@ -138,6 +138,10 @@ class Runner:
 		self.debug('Run opts', obj={k: v for k, v in self.run_opts.items() if v is not None}, sub='init')
 		self.debug('Print opts', obj={k: v for k, v in self.print_opts.items() if v is not None}, sub='init')
 
+		# Load profiles
+		profiles_str = run_opts.get('profiles', [])
+		self.load_profiles(profiles_str)
+
 		# Determine exporters
 		exporters_str = self.run_opts.get('output') or self.default_exporters
 		self.exporters = self.resolve_exporters(exporters_str)
@@ -953,6 +957,32 @@ class Runner:
 		]
 		return [cls for cls in classes if cls]
 
+	def load_profiles(self, profiles):
+		"""Load profiles and update run options.
+
+		Args:
+			profiles (list[str]): List of profile names to resolve.
+
+		Returns:
+			list: List of profiles.
+		"""
+		from secator.cli import ALL_PROFILES
+		if isinstance(profiles, str):
+			profiles = profiles.split(',')
+		templates = []
+		for pname in profiles:
+			matches = [p for p in ALL_PROFILES if p.name == pname]
+			if not matches:
+				self._print(Warning(message=f'Profile "{pname}" was not found'), rich=True)
+			else:
+				templates.append(matches[0])
+		opts = {}
+		for profile in templates:
+			self._print(Info(message=f'Loaded profile {profile.name} ({profile.description})'), rich=True)
+			opts.update(profile.opts)
+		opts = {k: v for k, v in opts.items() if k not in self.run_opts}
+		self.run_opts.update(opts)
+
 	@classmethod
 	def get_func_path(cls, func):
 		"""Get the full symbolic path of a function or method, including staticmethods, using function and method

secator/runners/scan.py

@@ -33,6 +33,7 @@ class Scan(Runner):
 		sigs = []
 		for name, workflow_opts in self.config.workflows.items():
 			run_opts = self.run_opts.copy()
+			run_opts.pop('profiles', None)
 			run_opts['no_poll'] = True
 			run_opts['caller'] = 'Scan'
 			opts = merge_opts(scan_opts, workflow_opts, run_opts)

secator/runners/task.py

@@ -32,6 +32,7 @@ class Task(Runner):
 		# Run opts
 		opts = self.run_opts.copy()
 		opts.pop('output', None)
+		opts.pop('profiles', None)
 		opts.pop('no_poll', False)
 
 		# Set output types

secator/template.py

@@ -64,7 +64,7 @@ class TemplateLoader(DotMap):
 		_path = config.pop('_path', None)
 		if _path:
 			console.print(f'[italic green]{_path}[/]\n')
-		yaml_str = yaml.dump(config, indent=4)
+		yaml_str = yaml.dump(config, indent=4, sort_keys=False)
 		from rich.syntax import Syntax
 		yaml_highlight = Syntax(yaml_str, 'yaml', line_numbers=True)
 		console.print(yaml_highlight)

{secator-0.13.0.dist-info → secator-0.14.0.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: secator
-Version: 0.13.0
+Version: 0.14.0
 Summary: The pentester's swiss knife.
 Project-URL: Homepage, https://github.com/freelabz/secator
 Project-URL: Issues, https://github.com/freelabz/secator/issues

{secator-0.13.0.dist-info → secator-0.14.0.dist-info}/RECORD

@@ -3,22 +3,26 @@ secator/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 secator/celery.py,sha256=Xg8e0zpQu4_-jlsZeC65NZtkopHGsGIyQ3SiW5fyH4E,9771
 secator/celery_signals.py,sha256=hG62Gr34xKJYZTgZFn_wZcsAlMgKuTazQhx55FC5cDA,4259
 secator/celery_utils.py,sha256=_wcUC42VPUotPhh9YYqbuq0dkARI8_RoCklDlhQL9Jg,8903
-secator/cli.py,sha256=AuAsrI2asH359Jnkzo9iek_3H2kdN_L0fzr1i9LpMdw,50827
+secator/cli.py,sha256=76DSAyg0wZ4AraKwiEr7beoPNvQZjPgtz4IMEEP8UPs,51465
 secator/config.py,sha256=t3RJhfVKIoEcfDWBsYlFzz29BM3dsvJtGFzwTYL0Cfc,19727
-secator/decorators.py,sha256=sI1bbWm5g2SOb3EfHlvG37aY0SRK7EUzIiHLK0deACw,14583
+secator/decorators.py,sha256=tTDXNNkEQrOF4jx1UgiOD_pxMnk0LX0R41ALALOx3jk,14668
 secator/definitions.py,sha256=qE_ZjzGcfrdASL7wjrc_0zoszUovL00KP--kGjDr93w,2986
 secator/installer.py,sha256=UBlQdcTvYXjmCiTui_fk9DOOxJ4Vs8i70m0ZCVFV78Q,19633
-secator/report.py,sha256=55xKvYY0MKNPaEgTrx66mj-Siohx3drLbTX2LpEx6zs,3627
+secator/report.py,sha256=eWD8KgkXXZY_2cpu3xJY-ZuIkU60_UB62C79S69nDJM,3617
 secator/rich.py,sha256=0P6TECNePsfivc5h1JsJoAqKmpFnME5m8k29ZJjvbwM,3277
-secator/template.py,sha256=tDXpC02h6F9-_5YXlQK_nDkGde9LM6yRf7dEyJzHFps,4550
+secator/template.py,sha256=o2igSFcNRWqptg8Rg00m8tvMmVAvbpnnvooWynk1LVI,4567
 secator/thread.py,sha256=rgRgEtcMgs2wyfLWVlCTUCLWeg6jsMo5iKpyyrON5rY,655
 secator/utils.py,sha256=kaBqWgBmUZohlvn6nFY805tG26viIu_LdJysNfZWMY4,22055
 secator/utils_test.py,sha256=jiCvgL4JMhIC1-ZGe6j9umNRZreSDp6nlkMgEJhf5ho,7996
 secator/configs/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 secator/configs/profiles/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-secator/configs/profiles/aggressive.yaml,sha256=JilVySABlSCYEFMjH7V0Oc3dAVlkfHOh1odTGhtm7BQ,108
-secator/configs/profiles/default.yaml,sha256=kDuOF1Qkpv4oz1GZ-OwDxbi5pptAqShsCqdzkBOxXfw,149
-secator/configs/profiles/stealth.yaml,sha256=Ud3EMZ2yRj0AT6w-AfV7fWUBYib9VAFp46GPpof9YaU,107
+secator/configs/profiles/aggressive.yaml,sha256=CXsCD76zrS93Iy47H-SUeEm3Ofl58H12dOr6rhm5sUg,159
+secator/configs/profiles/default.yaml,sha256=QCGvqNyRdFjFjGKXLuz9xc9bvKhgG87HfR3flfaaoFs,130
+secator/configs/profiles/insane.yaml,sha256=t3Z0fSy-tJkasMoPPViqxicTo0So5gnF3kfCBWIsR6Q,152
+secator/configs/profiles/paranoid.yaml,sha256=P3jONEyS9qIU5OPhBpEmlzc1AMJVC6ncIBR3GwJIr8Q,128
+secator/configs/profiles/polite.yaml,sha256=yZ2rtUMpSf-xMD7ZBFd6QS7XfYPEOSZ0Sn65lVF9M54,138
+secator/configs/profiles/sneaky.yaml,sha256=TOouDi-JQ3ZGZW9t7xbax-UvB-r2IsTr9sONwSRGo88,147
+secator/configs/profiles/tor.yaml,sha256=bHkn10KrJ5ct57od0Y8kaH-0IWB8aZWfmKQ68FZzct4,91
 secator/configs/scans/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 secator/configs/scans/domain.yaml,sha256=Dkm5dU2NdUTInkWD5cmVczvhUH0soaKPtoESeg8BVsQ,265
 secator/configs/scans/host.yaml,sha256=tobz6yGeYlVnGwLVI9RLJT6MDLnGmQVVj8EOwAdksfw,189
@@ -29,7 +33,6 @@ secator/configs/workflows/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJW
 secator/configs/workflows/cidr_recon.yaml,sha256=ytmirZxtJ8lKnzdo83mwTHOhy1OpnltuN3HFkk6XwzI,557
 secator/configs/workflows/code_scan.yaml,sha256=3H8H55NVskiDbBwNueVF8FUYkquEQn2C6evnid9zhB4,207
 secator/configs/workflows/host_recon.yaml,sha256=6RcH4RwCmTgesWVu8NrVIgW2ifNC4kSKgiRkNwZECdg,1173
-secator/configs/workflows/port_scan.yaml,sha256=J6-MPpPPfwFAIKf21gXMLu1wkprvZNAfDA_U90eXKJk,951
 secator/configs/workflows/subdomain_recon.yaml,sha256=GFhAyatzWRVx3a2kphNWNoTB13wY3GZTSZ2tusFgo8E,722
 secator/configs/workflows/url_bypass.yaml,sha256=_uBzDhevJ2DOD9UkE25n7ZrmnjjfdU3lV3mnUudgdU0,180
 secator/configs/workflows/url_crawl.yaml,sha256=h74dvDBNLuY1EHc9FMby3ydr34VH1qFJHQKUaIIYpcw,573
@@ -71,12 +74,12 @@ secator/output_types/user_account.py,sha256=EvF3Ebg9eXS_-iDguU1dSHZ9wAsJimEJznDv
 secator/output_types/vulnerability.py,sha256=nF7OT9zGez8sZvLrkhjBOORjVi8hCqfCYUFq3eZ_ywo,2870
 secator/output_types/warning.py,sha256=47GtmG083GqGPb_R5JDFmARJ9Mqrme58UxwJhgdGPuI,853
 secator/runners/__init__.py,sha256=EBbOk37vkBy9p8Hhrbi-2VtM_rTwQ3b-0ggTyiD22cE,290
-secator/runners/_base.py,sha256=XAG84cFw85g5D4fKjKTWW1OeOWJHX48px_vi9MN7QO0,31727
+secator/runners/_base.py,sha256=XeH48AJvBKn3Z5qxbBmnL81jASWvIihBxPojw9Tyk-U,32629
 secator/runners/_helpers.py,sha256=FoawlexiNl1-QMBfwBx0p4Hi7rGZxHe_RAMahqZuJ0Y,2883
 secator/runners/celery.py,sha256=bqvDTTdoHiGRCt0FRvlgFHQ_nsjKMP5P0PzGbwfCj_0,425
 secator/runners/command.py,sha256=aAM_VZB9ZDtSYhg52PUlBJIkiqUcNb895Xuef6lIkF8,26900
-secator/runners/scan.py,sha256=n8RL9vXPmNqukdB2a5wcPhSmxsZB4KFaqtZt0wfa8dU,1622
-secator/runners/task.py,sha256=LIgcBqORVPG5Kfx6g6RnEni1kgWchMfa3Oo2JEZri1Y,2037
+secator/runners/scan.py,sha256=jDPT9lnb2bGShvTClQ9u9SVRcHzZnXU1v308H7Fc-RE,1656
+secator/runners/task.py,sha256=3wudRz8TdvkonnllaeLYLFztNlyXrMQ3E31t5lCRPkk,2066
 secator/runners/workflow.py,sha256=sO3B9GcndQLgGPnDz-A6XKnBmYO_ABAU_UXpW-q1K1A,3890
 secator/scans/__init__.py,sha256=s4Ojsk5CWwyWqHu_A4zaXUL5Hm5L5nCmCHZn7wdD3Io,623
 secator/serializers/__init__.py,sha256=OP5cmFl77ovgSCW_IDcZ21St2mUt5UK4QHfrsK2KvH8,248
@@ -118,8 +121,8 @@ secator/tasks/wafw00f.py,sha256=XeYl6ppS_YA-SmhBNdNcFmgUWYmiCnzU7TTLfxUTcRo,2747
 secator/tasks/wpprobe.py,sha256=Dx-HcGYjWyyeIsHwkstlcxPKJ5GR6jP9TMTHeV6SXPo,4025
 secator/tasks/wpscan.py,sha256=QrEO6ZrkmC3TDtD91Aeqip8qrcsrK7filHKpRdcteJU,5755
 secator/workflows/__init__.py,sha256=R_TTyjg9f2Ph2_LYiF0lL07IjTrfRE_zqJzy-N7_WCk,675
-secator-0.13.0.dist-info/METADATA,sha256=CrLCqEzK08_n09RStVZ0rp1bHNo4j3QVBrdxe9eV6NE,14724
-secator-0.13.0.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-secator-0.13.0.dist-info/entry_points.txt,sha256=lPgsqqUXWgiuGSfKy-se5gHdQlAXIwS_A46NYq7Acic,44
-secator-0.13.0.dist-info/licenses/LICENSE,sha256=19W5Jsy4WTctNkqmZIqLRV1gTDOp01S3LDj9iSgWaJ0,2867
-secator-0.13.0.dist-info/RECORD,,
+secator-0.14.0.dist-info/METADATA,sha256=_jYPgntzztbYS1ucHWOSSIq9d6J1MfEAikWHGr3DGpg,14724
+secator-0.14.0.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+secator-0.14.0.dist-info/entry_points.txt,sha256=lPgsqqUXWgiuGSfKy-se5gHdQlAXIwS_A46NYq7Acic,44
+secator-0.14.0.dist-info/licenses/LICENSE,sha256=19W5Jsy4WTctNkqmZIqLRV1gTDOp01S3LDj9iSgWaJ0,2867
+secator-0.14.0.dist-info/RECORD,,

secator/configs/profiles/stealth.yaml

@@ -1,7 +0,0 @@
-type: profile
-name: stealth
-options:
-  rate_limit: 100
-  delay: 1
-  proxy: proxychains
-  user_agent: random

secator/configs/workflows/port_scan.yaml

@@ -1,39 +0,0 @@
-type: workflow
-name: port_scan
-alias: pscan
-description: Port scan
-tags: [recon, network, http, vuln]
-input_types:
-  - host
-  - cidr_range
-tasks:
-  naabu:
-    description: Find open ports
-    skip_host_discovery: True
-    ports: "-"  # scan all ports
-  nmap:
-    description: Search for vulnerabilities on open ports
-    skip_host_discovery: True
-    version_detection: True
-    targets_: port.host
-    ports_: port.port
-  _group:
-    searchsploit:
-      description: Search for related exploits
-      targets_:
-      - type: port
-        field: '{host}~{service_name}'
-        condition: item._source.startswith('nmap') and len(item.service_name.split('/')) > 1
-    httpx:
-      description: Probe HTTP services on open ports
-      targets_:
-        - type: port
-          field: '{host}:{port}'
-          condition: item._source.startswith('nmap')
-results:
-  - type: port
-
-  - type: url
-    condition: item.status_code != 0
-
-  - type: vulnerability