secator 0.13.0__tar.gz → 0.15.0__tar.gz

{secator-0.13.0 → secator-0.15.0}/CHANGELOG.md

@@ -1,5 +1,29 @@
 # Changelog
 
+## [0.15.0](https://github.com/freelabz/secator/compare/v0.14.0...v0.15.0) (2025-05-04)
+
+
+### Features
+
+* improve cli usage and add multi input types ([#609](https://github.com/freelabz/secator/issues/609)) ([b850914](https://github.com/freelabz/secator/commit/b8509141e62dfd72e0b4f15c2b9b5466089e9818))
+
+
+### Bug Fixes
+
+* installer issue on non-standard distribs ([#613](https://github.com/freelabz/secator/issues/613)) ([194e911](https://github.com/freelabz/secator/commit/194e911b420fcbb0feec3b563a098a3f36cc09cd))
+
+## [0.14.0](https://github.com/freelabz/secator/compare/v0.13.0...v0.14.0) (2025-04-30)
+
+
+### Features
+
+* add support for profiles ([#532](https://github.com/freelabz/secator/issues/532)) ([6f499b7](https://github.com/freelabz/secator/commit/6f499b72ec18dddde717e00318be4e2b53cc0478))
+
+
+### Bug Fixes
+
+* **cli:** restore --unified option, delete port_scan workflow ([#606](https://github.com/freelabz/secator/issues/606)) ([6dc647d](https://github.com/freelabz/secator/commit/6dc647d7205d15faa1c675485af441549d798118))
+
 ## [0.13.0](https://github.com/freelabz/secator/compare/v0.12.0...v0.13.0) (2025-04-29)
 
 

{secator-0.13.0 → secator-0.15.0}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: secator
-Version: 0.13.0
+Version: 0.15.0
 Summary: The pentester's swiss knife.
 Project-URL: Homepage, https://github.com/freelabz/secator
 Project-URL: Issues, https://github.com/freelabz/secator/issues
@@ -82,7 +82,7 @@ Description-Content-Type: text/markdown
 <a href="https://pypi.org/project/secator/"><img src="https://img.shields.io/pypi/dm/secator"></a>
 <a href="https://twitter.com/freelabz"><img src="https://img.shields.io/twitter/follow/freelabz.svg?logo=twitter"></a>
 <a href="https://youtube.com/@FreeLabz"><img src="https://img.shields.io/youtube/channel/subscribers/UCu-F6SpU0h2NP18zBBP04cw?style=social&label=Subscribe%20%40FreeLabz"></a>
-<!-- <a href="https://discord.gg/freelabz"><img src="https://img.shields.io/discord/695645237418131507.svg?logo=discord"></a> -->
+<a href="https://discord.gg/nyHjC2aTrq"><img src="https://img.shields.io/discord/695645237418131507.svg?logo=discord"></a>
 </p>
 
 
@@ -91,7 +91,8 @@ Description-Content-Type: text/markdown
   <a href="#supported-commands">Supported commands</a> •
   <a href="#install-secator">Installation</a> •
   <a href="#usage">Usage</a> •
-  <a href="https://docs.freelabz.com">Documentation</a>
+  <a href="https://docs.freelabz.com">Documentation</a>  •
+  <a href="https://discord.gg/nyHjC2aTrq">Join us on Discord !</a>
 </p>
 
 `secator` is a task and workflow runner used for security assessments. It supports dozens of well-known security tools
@@ -122,6 +123,11 @@ and it is designed to improve productivity for pentesters and security researche
 
 | Name                                                          | Description                                                                    | Category        |
 |---------------------------------------------------------------|--------------------------------------------------------------------------------|-----------------|
+| [arjun](https://github.com/s0md3v/Arjun)                      | HTTP Parameter Discovery Suite.                                                |                 |
+| [gitleaks](https://github.com/gitleaks/gitleaks)              | Tool for detecting secrets like passwords, API keys, tokens, etc.              |                 |
+| [testssl](https://github.com/testssl/testssl.sh)              | SSL/TLS security scanner, including ciphers, protocols and cryptographic flaws.|                 |
+| [wafw00f](https://github.com/EnableSecurity/wafw00f)          | Web Application Firewall Fingerprinting tool.                                  |                 |
+| [wpprobe](https://github.com/Chocapikk/wpprobe)               | Fast wordpress plugin enumeration tool.                                        |                 |
 | [httpx](https://github.com/projectdiscovery/httpx)            | Fast HTTP prober.                                                              | `http`          |
 | [cariddi](https://github.com/edoardottt/cariddi)              | Fast crawler and endpoint secrets / api keys / tokens matcher.                 | `http/crawler`  |
 | [gau](https://github.com/lc/gau)                              | Offline URL crawler (Alien Vault, The Wayback Machine, Common Crawl, URLScan). | `http/crawler`  |
@@ -139,6 +145,7 @@ and it is designed to improve productivity for pentesters and security researche
 | [naabu](https://github.com/projectdiscovery/naabu)            | Fast port discovery tool.                                                      | `recon/port`    |
 | [maigret](https://github.com/soxoj/maigret)                   | Hunt for user accounts across many websites.                                   | `recon/user`    |
 | [gf](https://github.com/tomnomnom/gf)                         | A wrapper around grep to avoid typing common patterns.                         | `tagger`        |
+| [trivy](https://github.com/aquasecurity/trivy)                | Comprehensive and versatile security scanner.                                  | `vuln`          |
 | [grype](https://github.com/anchore/grype)                     | A vulnerability scanner for container images and filesystems.                  | `vuln/code`     |
 | [dalfox](https://github.com/hahwul/dalfox)                    | Powerful XSS scanning tool and parameter analyzer.                             | `vuln/http`     |
 | [msfconsole](https://docs.rapid7.com/metasploit/msf-overview) | CLI to access and work with the Metasploit Framework.                          | `vuln/http`     |

{secator-0.13.0 → secator-0.15.0}/README.md

@@ -12,7 +12,7 @@
 <a href="https://pypi.org/project/secator/"><img src="https://img.shields.io/pypi/dm/secator"></a>
 <a href="https://twitter.com/freelabz"><img src="https://img.shields.io/twitter/follow/freelabz.svg?logo=twitter"></a>
 <a href="https://youtube.com/@FreeLabz"><img src="https://img.shields.io/youtube/channel/subscribers/UCu-F6SpU0h2NP18zBBP04cw?style=social&label=Subscribe%20%40FreeLabz"></a>
-<!-- <a href="https://discord.gg/freelabz"><img src="https://img.shields.io/discord/695645237418131507.svg?logo=discord"></a> -->
+<a href="https://discord.gg/nyHjC2aTrq"><img src="https://img.shields.io/discord/695645237418131507.svg?logo=discord"></a>
 </p>
 
 
@@ -21,7 +21,8 @@
   <a href="#supported-commands">Supported commands</a> •
   <a href="#install-secator">Installation</a> •
   <a href="#usage">Usage</a> •
-  <a href="https://docs.freelabz.com">Documentation</a>
+  <a href="https://docs.freelabz.com">Documentation</a>  •
+  <a href="https://discord.gg/nyHjC2aTrq">Join us on Discord !</a>
 </p>
 
 `secator` is a task and workflow runner used for security assessments. It supports dozens of well-known security tools
@@ -52,6 +53,11 @@ and it is designed to improve productivity for pentesters and security researche
 
 | Name                                                          | Description                                                                    | Category        |
 |---------------------------------------------------------------|--------------------------------------------------------------------------------|-----------------|
+| [arjun](https://github.com/s0md3v/Arjun)                      | HTTP Parameter Discovery Suite.                                                |                 |
+| [gitleaks](https://github.com/gitleaks/gitleaks)              | Tool for detecting secrets like passwords, API keys, tokens, etc.              |                 |
+| [testssl](https://github.com/testssl/testssl.sh)              | SSL/TLS security scanner, including ciphers, protocols and cryptographic flaws.|                 |
+| [wafw00f](https://github.com/EnableSecurity/wafw00f)          | Web Application Firewall Fingerprinting tool.                                  |                 |
+| [wpprobe](https://github.com/Chocapikk/wpprobe)               | Fast wordpress plugin enumeration tool.                                        |                 |
 | [httpx](https://github.com/projectdiscovery/httpx)            | Fast HTTP prober.                                                              | `http`          |
 | [cariddi](https://github.com/edoardottt/cariddi)              | Fast crawler and endpoint secrets / api keys / tokens matcher.                 | `http/crawler`  |
 | [gau](https://github.com/lc/gau)                              | Offline URL crawler (Alien Vault, The Wayback Machine, Common Crawl, URLScan). | `http/crawler`  |
@@ -69,6 +75,7 @@ and it is designed to improve productivity for pentesters and security researche
 | [naabu](https://github.com/projectdiscovery/naabu)            | Fast port discovery tool.                                                      | `recon/port`    |
 | [maigret](https://github.com/soxoj/maigret)                   | Hunt for user accounts across many websites.                                   | `recon/user`    |
 | [gf](https://github.com/tomnomnom/gf)                         | A wrapper around grep to avoid typing common patterns.                         | `tagger`        |
+| [trivy](https://github.com/aquasecurity/trivy)                | Comprehensive and versatile security scanner.                                  | `vuln`          |
 | [grype](https://github.com/anchore/grype)                     | A vulnerability scanner for container images and filesystems.                  | `vuln/code`     |
 | [dalfox](https://github.com/hahwul/dalfox)                    | Powerful XSS scanning tool and parameter analyzer.                             | `vuln/http`     |
 | [msfconsole](https://docs.rapid7.com/metasploit/msf-overview) | CLI to access and work with the Metasploit Framework.                          | `vuln/http`     |

{secator-0.13.0 → secator-0.15.0}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = 'hatchling.build'
 
 [project]
 name = 'secator'
-version = "0.13.0"
+version = "0.15.0"
 authors = [{ name = 'FreeLabz', email = 'sales@freelabz.com' }]
 readme = 'README.md'
 description = "The pentester's swiss knife."

{secator-0.13.0 → secator-0.15.0}/secator/cli.py

@@ -36,6 +36,7 @@ click.rich_click.USE_RICH_MARKUP = True
 ALL_TASKS = discover_tasks()
 ALL_WORKFLOWS = [t for t in TEMPLATES if t.type == 'workflow']
 ALL_SCANS = [t for t in TEMPLATES if t.type == 'scan']
+ALL_PROFILES = [t for t in TEMPLATES if t.type == 'profile']
 FINDING_TYPES_LOWER = [c.__name__.lower() for c in FINDING_TYPES]
 CONTEXT_SETTINGS = dict(help_option_names=['-h', '-help', '--help'])
 
@@ -125,6 +126,25 @@ for config in sorted(ALL_SCANS, key=lambda x: x['name']):
 	register_runner(scan, config)
 
 
+@cli.group(aliases=['p'])
+@click.pass_context
+def profile(ctx):
+	"""Show profiles"""
+	pass
+
+
+@profile.command('list')
+def profile_list():
+	table = Table()
+	table.add_column("Profile name", style="bold gold3")
+	table.add_column("Description", overflow='fold')
+	table.add_column("Options", overflow='fold')
+	for profile in ALL_PROFILES:
+		opts_str = ','.join(f'{k}={v}' for k, v in profile.opts.items())
+		table.add_row(profile.name, profile.description, opts_str)
+	console.print(table)
+
+
 #--------#
 # WORKER #
 #--------#
@@ -685,7 +705,7 @@ def report_show(report_query, output, runner_type, time_delta, type, query, work
 					all_results.extend(runner.results)
 					continue
 				report = Report(runner, title=f"Consolidated report - {current}", exporters=exporters)
-				report.build(extractors=extractors if not unified else [])
+				report.build(extractors=extractors if not unified else [], dedupe=unified)
 				file_date = get_file_date(path)
 				runner_name = data['info']['name']
 				console.print(
@@ -763,7 +783,7 @@ def report_list(workspace, runner_type, time_delta):
 @report.command('export')
 @click.argument('json_path', type=str)
 @click.option('--output-folder', '-of', type=str)
-@click.option('-output', '-o', type=str)
+@click.option('-output', '-o', type=str, required=True)
 def report_export(json_path, output_folder, output):
 	with open(json_path, 'r') as f:
 		data = loads_dataclass(f.read())
@@ -1423,6 +1443,16 @@ def task(name, verbose, check):
 	task = task[0]
 	task_name = task.__name__
 
+	# Check task command is set
+	check_test(
+		task.cmd,
+		'Check task command is set (cls.cmd)',
+		'Task has no cmd attribute.',
+		errors
+	)
+	if errors:
+		sys.exit(0)
+
 	# Run install
 	cmd = f'secator install tools {task_name}'
 	ret_code = Command.execute(cmd, name='install', quiet=not verbose, cwd=ROOT_FOLDER)
@@ -1437,7 +1467,7 @@ def task(name, verbose, check):
 		errors
 	)
 	check_test(
-		any(cmd for cmd in [task.install_cmd, task.install_github_handle]),
+		any(cmd for cmd in [task.install_pre, task.install_cmd, task.install_github_handle]),
 		'Check task installation command is defined',
 		'Task has no installation command. Please define one or more of the following class attributes: `install_pre`, `install_cmd`, `install_post`, `install_github_handle`.',  # noqa: E501
 		errors
@@ -1472,13 +1502,7 @@ def task(name, verbose, check):
 		errors
 	)
 	check_test(
-		task.cmd,
-		'Check task command is set (cls.cmd)',
-		'Task has no cmd attribute.',
-		errors
-	)
-	check_test(
-		task.input_type,
+		task.input_types,
 		'Check task input type is set (cls.input_type)',
 		'Task has no input_type attribute.',
 		warnings,

secator-0.15.0/secator/configs/profiles/aggressive.yaml

@@ -0,0 +1,8 @@
+type: profile
+name: aggressive
+description: "Internal networks or time-sensitive scans"
+opts:
+    rate_limit: 10000
+    delay: 0
+    timeout: 1
+    retries: 1

secator-0.15.0/secator/configs/profiles/default.yaml

@@ -0,0 +1,8 @@
+type: profile
+name: default
+description: "General scanning"
+opts:
+    rate_limit: 1000
+    delay: 0
+    timeout: 5
+    retries: 3

secator-0.15.0/secator/configs/profiles/insane.yaml

@@ -0,0 +1,8 @@
+type: profile
+name: insane
+description: "Local LAN scanning or stress scanning"
+opts:
+    rate_limit: 100000
+    delay: 0
+    timeout: 1
+    retries: 0

secator-0.15.0/secator/configs/profiles/paranoid.yaml

@@ -0,0 +1,8 @@
+type: profile
+name: paranoid
+description: "Maximum stealth"
+opts:
+    rate_limit: 5
+    delay: 5
+    timeout: 15
+    retries: 5

secator-0.15.0/secator/configs/profiles/polite.yaml

@@ -0,0 +1,8 @@
+type: profile
+name: polite
+description: "Avoid overloading network"
+opts:
+    rate_limit: 100
+    delay: 0
+    timeout: 10
+    retries: 5

secator-0.15.0/secator/configs/profiles/sneaky.yaml

@@ -0,0 +1,8 @@
+type: profile
+name: sneaky
+description: "IDS/IPS evasion, sensitive networks"
+opts:
+    rate_limit: 10
+    delay: 2
+    timeout: 15
+    retries: 5

secator-0.15.0/secator/configs/profiles/tor.yaml

@@ -0,0 +1,5 @@
+type: profile
+name: tor
+description: "Anonymous scan using Tor network"
+opts:
+  proxy: tor

{secator-0.13.0 → secator-0.15.0}/secator/decorators.py

@@ -13,6 +13,7 @@ from secator.utils import (deduplicate, expand_input, get_command_category)
 
 RUNNER_OPTS = {
 	'output': {'type': str, 'default': None, 'help': 'Output options (-o table,json,csv,gdrive)', 'short': 'o'},
+	'profiles': {'type': str, 'default': 'default', 'help': 'Profiles', 'short': 'pf'},
 	'workspace': {'type': str, 'default': 'default', 'help': 'Workspace', 'short': 'ws'},
 	'print_json': {'is_flag': True, 'short': 'json', 'default': False, 'help': 'Print items as JSON lines'},
 	'print_raw': {'is_flag': True, 'short': 'raw', 'default': False, 'help': 'Print items in raw format'},
@@ -270,7 +271,6 @@ def generate_cli_subcommand(cli_endpoint, func, **opts):
 def register_runner(cli_endpoint, config):
 	name = config.name
 	input_required = True
-	input_type = 'targets'
 	command_opts = {
 		'no_args_is_help': True,
 		'context_settings': {
@@ -281,37 +281,44 @@ def register_runner(cli_endpoint, config):
 
 	if cli_endpoint.name == 'scan':
 		runner_cls = Scan
+		input_required = False  # allow targets from stdin
 		short_help = config.description or ''
 		short_help += f' [dim]alias: {config.alias}' if config.alias else ''
 		command_opts.update({
 			'name': name,
-			'short_help': short_help
+			'short_help': short_help,
+			'no_args_is_help': False
 		})
+		input_types = config.input_types
 
 	elif cli_endpoint.name == 'workflow':
 		runner_cls = Workflow
+		input_required = False  # allow targets from stdin
 		short_help = config.description or ''
 		short_help = f'{short_help:<55} [dim](alias)[/][bold cyan] {config.alias}' if config.alias else ''
 		command_opts.update({
 			'name': name,
-			'short_help': short_help
+			'short_help': short_help,
+			'no_args_is_help': False
 		})
+		input_types = config.input_types
 
 	elif cli_endpoint.name == 'task':
 		runner_cls = Task
 		input_required = False  # allow targets from stdin
 		task_cls = Task.get_task_class(config.name)
 		task_category = get_command_category(task_cls)
-		input_type = task_cls.input_type or 'targets'
-		short_help = f'[magenta]{task_category:<15}[/]{task_cls.__doc__}'
+		short_help = f'[magenta]{task_category:<25}[/] {task_cls.__doc__}'
 		command_opts.update({
 			'name': name,
 			'short_help': short_help,
 			'no_args_is_help': False
 		})
+		input_types = task_cls.input_types
 
 	else:
 		raise ValueError(f"Unrecognized runner endpoint name {cli_endpoint.name}")
+	input_types_str = '|'.join(input_types) if input_types else 'targets'
 	options = get_command_options(config)
 
 	# TODO: maybe allow this in the future
@@ -323,7 +330,7 @@ def register_runner(cli_endpoint, config):
 	# 		for i in range(0, len(ctx.args), 2)
 	# 	}
 
-	@click.argument(input_type, required=input_required)
+	@click.argument(input_types_str, required=input_required)
 	@decorate_command_options(options)
 	@click.pass_context
 	def func(ctx, **opts):
@@ -352,7 +359,7 @@ def register_runner(cli_endpoint, config):
 		# opts.update(unknown_opts)
 
 		# Expand input
-		inputs = opts.pop(input_type)
+		inputs = opts.pop(input_types_str)
 		inputs = expand_input(inputs, ctx)
 
 		# Build hooks from driver name
@@ -419,10 +426,10 @@ def register_runner(cli_endpoint, config):
 		runner.run()
 
 	generate_cli_subcommand(cli_endpoint, func, **command_opts)
-	generate_rich_click_opt_groups(cli_endpoint, name, input_type, options)
+	generate_rich_click_opt_groups(cli_endpoint, name, input_types, options)
 
 
-def generate_rich_click_opt_groups(cli_endpoint, name, input_type, options):
+def generate_rich_click_opt_groups(cli_endpoint, name, input_types, options):
 	sortorder = {
 		'Execution': 0,
 		'Output': 1,
@@ -433,7 +440,7 @@ def generate_rich_click_opt_groups(cli_endpoint, name, input_type, options):
 	opt_group = [
 		{
 			'name': 'Targets',
-			'options': [input_type],
+			'options': input_types,
 		},
 	]
 	for prefix in prefixes:

{secator-0.13.0 → secator-0.15.0}/secator/definitions.py

@@ -40,6 +40,9 @@ AUTO_CALIBRATION = 'auto_calibration'
 CONTENT_TYPE = 'content_type'
 CONTENT_LENGTH = 'content_length'
 CIDR_RANGE = 'cidr_range'
+DOCKER_IMAGE = 'docker_image'
+FILENAME = 'filename'
+GIT_REPOSITORY = 'git_repository'
 CPES = 'cpes'
 CVES = 'cves'
 DELAY = 'delay'
@@ -62,6 +65,7 @@ MATCH_CODES = 'match_codes'
 MATCH_REGEX = 'match_regex'
 MATCH_SIZE = 'match_size'
 MATCH_WORDS = 'match_words'
+ORG_NAME = 'org_name'
 OUTPUT_PATH = 'output_path'
 PATH = 'path'
 PERCENT = 'percent'
@@ -100,6 +104,7 @@ REFERENCE = 'reference'
 REFERENCES = 'references'
 SEVERITY = 'severity'
 TAGS = 'tags'
+TECHNOLOGY = 'technology'
 WEBSERVER = 'webserver'
 WORDLIST = 'wordlist'
 WORDS = 'words'

{secator-0.13.0 → secator-0.15.0}/secator/installer.py

@@ -47,6 +47,7 @@ class InstallerStatus(Enum):
 @dataclass
 class Distribution:
 	name: str
+	system: str
 	pm_name: str
 	pm_installer: str
 	pm_finalizer: str
@@ -186,6 +187,8 @@ class SourceInstaller:
 			install_cmd = config
 		else:
 			distribution = get_distro_config()
+			if not distribution.pm_installer:
+				return InstallerStatus.UNKNOWN_DISTRIBUTION
 			for distros, command in config.items():
 				if distribution.name in distros.split("|") or distros == '*':
 					install_cmd = command
@@ -543,7 +546,7 @@ def get_distro_config():
 	distrib = system
 
 	if system == "Linux":
-		distrib = distro.id() or distro.like()
+		distrib = distro.like() or distro.id()
 
 		if distrib in ["ubuntu", "debian", "linuxmint", "popos", "kali"]:
 			installer = "apt install -y --no-install-recommends"
@@ -573,12 +576,16 @@ def get_distro_config():
 		else:
 			installer = "scoop"  # Alternative package manager for Windows
 
-	manager = installer.split(' ')[0]
+	if not installer:
+		console.print(Error(message=f'Could not find installer for your distribution (system: {system}, distrib: {distrib})'))  # noqa: E501
+
+	manager = installer.split(' ')[0] if installer else ''
 	config = Distribution(
 		pm_installer=installer,
 		pm_finalizer=finalizer,
 		pm_name=manager,
-		name=distrib
+		name=distrib,
+		system=system
 	)
 	return config
 

{secator-0.13.0 → secator-0.15.0}/secator/output_types/stat.py

@@ -25,6 +25,9 @@ class Stat(OutputType):
 	_table_fields = ['name', 'pid', 'cpu', 'memory']
 	_sort_by = ('name', 'pid')
 
+	def __str__(self) -> str:
+		return f'{self.name} [pid={self.pid}] [cpu={self.cpu:.2f}%] [memory={self.memory:.2f}%]'
+
 	def __repr__(self) -> str:
 		s = rf'[dim yellow3]📊 {self.name} \[pid={self.pid}] \[cpu={self.cpu:.2f}%] \[memory={self.memory:.2f}%]'
 		if self.net_conns:

{secator-0.13.0 → secator-0.15.0}/secator/report.py

@@ -55,7 +55,7 @@ class Report:
 					f'{str(e)}[/]\n[dim]{traceback_as_string(e)}[/]',
 				)
 
-	def build(self, extractors=[], dedupe=False):
+	def build(self, extractors=[], dedupe=CONFIG.runners.remove_duplicates):
 		# Trim options
 		from secator.decorators import DEFAULT_CLI_OPTIONS
 		opts = merge_opts(self.runner.config.options, self.runner.run_opts)
@@ -97,7 +97,7 @@ class Report:
 			if items:
 				if sort_by and all(sort_by):
 					items = sorted(items, key=operator.attrgetter(*sort_by))
-				if dedupe and CONFIG.runners.remove_duplicates:
+				if dedupe:
 					items = remove_duplicates(items)
 					# items = [item for item in items if not item._duplicate and item not in dedupe_from]
 				for extractor in extractors:

{secator-0.13.0 → secator-0.15.0}/secator/runners/_base.py

@@ -53,7 +53,7 @@ class Runner:
 	"""
 
 	# Input field (mostly for tests and CLI)
-	input_type = None
+	input_types = []
 
 	# Output types
 	output_types = []
@@ -138,6 +138,10 @@ class Runner:
 		self.debug('Run opts', obj={k: v for k, v in self.run_opts.items() if v is not None}, sub='init')
 		self.debug('Print opts', obj={k: v for k, v in self.print_opts.items() if v is not None}, sub='init')
 
+		# Load profiles
+		profiles_str = run_opts.get('profiles', [])
+		self.load_profiles(profiles_str)
+
 		# Determine exporters
 		exporters_str = self.run_opts.get('output') or self.default_exporters
 		self.exporters = self.resolve_exporters(exporters_str)
@@ -827,7 +831,7 @@ class Runner:
 			if isinstance(data, (OutputType, dict)):
 				if getattr(data, 'toDict', None):
 					data = data.toDict()
-				data = json.dumps(data)
+				data = json.dumps(data, default=str)
 			print(data, file=out)
 
 	def _get_findings_count(self):
@@ -953,6 +957,32 @@ class Runner:
 		]
 		return [cls for cls in classes if cls]
 
+	def load_profiles(self, profiles):
+		"""Load profiles and update run options.
+
+		Args:
+			profiles (list[str]): List of profile names to resolve.
+
+		Returns:
+			list: List of profiles.
+		"""
+		from secator.cli import ALL_PROFILES
+		if isinstance(profiles, str):
+			profiles = profiles.split(',')
+		templates = []
+		for pname in profiles:
+			matches = [p for p in ALL_PROFILES if p.name == pname]
+			if not matches:
+				self._print(Warning(message=f'Profile "{pname}" was not found'), rich=True)
+			else:
+				templates.append(matches[0])
+		opts = {}
+		for profile in templates:
+			self._print(Info(message=f'Loaded profile {profile.name} ({profile.description})'), rich=True)
+			opts.update(profile.opts)
+		opts = {k: v for k, v in opts.items() if k not in self.run_opts}
+		self.run_opts.update(opts)
+
 	@classmethod
 	def get_func_path(cls, func):
 		"""Get the full symbolic path of a function or method, including staticmethods, using function and method

{secator-0.13.0 → secator-0.15.0}/secator/runners/command.py

@@ -30,6 +30,8 @@ class Command(Runner):
 	# Base cmd
 	cmd = None
 
+	# Tags
+	tags = []
 	# Meta options
 	meta_opts = {}
 

{secator-0.13.0 → secator-0.15.0}/secator/runners/scan.py

@@ -33,6 +33,7 @@ class Scan(Runner):
 		sigs = []
 		for name, workflow_opts in self.config.workflows.items():
 			run_opts = self.run_opts.copy()
+			run_opts.pop('profiles', None)
 			run_opts['no_poll'] = True
 			run_opts['caller'] = 'Scan'
 			opts = merge_opts(scan_opts, workflow_opts, run_opts)

{secator-0.13.0 → secator-0.15.0}/secator/runners/task.py

@@ -32,6 +32,7 @@ class Task(Runner):
 		# Run opts
 		opts = self.run_opts.copy()
 		opts.pop('output', None)
+		opts.pop('profiles', None)
 		opts.pop('no_poll', False)
 
 		# Set output types

{secator-0.13.0 → secator-0.15.0}/secator/tasks/_categories.py

@@ -73,19 +73,19 @@ OPTS_VULN = [
 
 class Http(Command):
 	meta_opts = {k: OPTS[k] for k in OPTS_HTTP_CRAWLERS}
-	input_type = URL
+	input_types = [URL]
 	output_types = [Url]
 
 
 class HttpCrawler(Command):
 	meta_opts = {k: OPTS[k] for k in OPTS_HTTP_CRAWLERS}
-	input_type = URL
+	input_types = [URL]
 	output_types = [Url]
 
 
 class HttpFuzzer(Command):
 	meta_opts = {k: OPTS[k] for k in OPTS_HTTP_FUZZERS}
-	input_type = URL
+	input_types = [URL]
 	output_types = [Url]
 
 
@@ -99,22 +99,22 @@ class Recon(Command):
 
 
 class ReconDns(Recon):
-	input_type = HOST
+	input_types = [HOST]
 	output_types = [Subdomain]
 
 
 class ReconUser(Recon):
-	input_type = USERNAME
+	input_types = [USERNAME]
 	output_types = [UserAccount]
 
 
 class ReconIp(Recon):
-	input_type = CIDR_RANGE
+	input_types = [CIDR_RANGE]
 	output_types = [Ip]
 
 
 class ReconPort(Recon):
-	input_type = IP
+	input_types = [IP]
 	output_types = [Port]
 
 
@@ -434,15 +434,15 @@ class Vuln(Command):
 
 
 class VulnHttp(Vuln):
-	input_type = HOST
+	input_types = [HOST]
 
 
 class VulnCode(Vuln):
-	input_type = PATH
+	input_types = [PATH]
 
 
 class VulnMulti(Vuln):
-	input_type = HOST
+	input_types = [HOST]
 	output_types = [Vulnerability]
 
 
@@ -451,7 +451,7 @@ class VulnMulti(Vuln):
 #--------------#
 
 class Tagger(Command):
-	input_type = URL
+	input_types = [URL]
 	output_types = [Tag]
 
 #----------------#