souleyez 2.31.0__tar.gz → 2.43.2__tar.gz

souleyez-2.43.2/PKG-INFO

@@ -0,0 +1,269 @@
+Metadata-Version: 2.4
+Name: souleyez
+Version: 2.43.2
+Summary: AI-Powered Penetration Testing Platform with 40+ integrated tools
+Author-email: CyberSoul Security <contact@cybersoulsecurity.com>
+Maintainer-email: CyberSoul Security <contact@cybersoulsecurity.com>
+License: MIT
+Project-URL: Homepage, https://github.com/cyber-soul-security/SoulEyez
+Project-URL: Documentation, https://github.com/cyber-soul-security/SoulEyez#readme
+Project-URL: Repository, https://github.com/cyber-soul-security/SoulEyez.git
+Project-URL: Issues, https://github.com/cyber-soul-security/SoulEyez/issues
+Keywords: pentesting,security,hacking,penetration-testing,cybersecurity,nmap,metasploit
+Classifier: Development Status :: 4 - Beta
+Classifier: Environment :: Console
+Classifier: Environment :: Console :: Curses
+Classifier: Intended Audience :: Developers
+Classifier: Intended Audience :: Information Technology
+Classifier: Intended Audience :: System Administrators
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Operating System :: POSIX :: Linux
+Classifier: Operating System :: MacOS
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.8
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Classifier: Topic :: Security
+Classifier: Topic :: System :: Networking
+Requires-Python: >=3.8
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: anthropic>=0.40.0
+Requires-Dist: click>=8.0.0
+Requires-Dist: cryptography>=3.4.0
+Requires-Dist: defusedxml>=0.7.0
+Requires-Dist: impacket>=0.11.0
+Requires-Dist: markdown>=3.4.0
+Requires-Dist: msgpack>=1.0.0
+Requires-Dist: ollama>=0.1.0
+Requires-Dist: psycopg2-binary>=2.9.0
+Requires-Dist: psutil>=5.9.0
+Requires-Dist: python-json-logger>=2.0.0
+Requires-Dist: requests>=2.28.0
+Requires-Dist: rich>=10.0.0
+Requires-Dist: wcwidth>=0.2.0
+Provides-Extra: dev
+Requires-Dist: pytest>=7.0.0; extra == "dev"
+Dynamic: license-file
+
+# SoulEyez — AI-Powered Penetration Testing Platform
+
+[![CI](https://github.com/cyber-soul-security/souleyez/actions/workflows/python-ci.yml/badge.svg)](https://github.com/cyber-soul-security/souleyez/actions/workflows/python-ci.yml)
+[![codecov](https://codecov.io/gh/cyber-soul-security/souleyez/branch/main/graph/badge.svg)](https://codecov.io/gh/cyber-soul-security/souleyez)
+[![Python 3.9+](https://img.shields.io/badge/python-3.9+-blue.svg)](https://www.python.org/downloads/)
+[![Code style: black](https://img.shields.io/badge/code%20style-black-000000.svg)](https://github.com/psf/black)
+[![Security: bandit](https://img.shields.io/badge/security-bandit-yellow.svg)](https://github.com/PyCQA/bandit)
+
+---
+
+## What is SoulEyez?
+
+**SoulEyez is your penetration testing command center.** Instead of juggling dozens of terminal windows and text files, SoulEyez gives you one organized place to:
+
+- **Run security scans** — Execute tools like Nmap, Gobuster, SQLMap with simple commands
+- **Auto-discover next steps** — When one scan finds something interesting, SoulEyez automatically suggests (or runs) the next logical tool
+- **Stay organized** — Keep all your targets, findings, and credentials in one searchable database
+- **Generate reports** — Export professional reports when you're done
+
+---
+
+## Who is this for?
+
+- **Security professionals** conducting authorized penetration tests
+- **CTF players** who want better organization during competitions
+- **Students** learning penetration testing methodology
+
+> **Important:** Only use SoulEyez on systems you have explicit authorization to test. Unauthorized scanning or exploitation is illegal.
+
+---
+
+## Features
+
+### Core Capabilities
+
+- 🎯 **Interactive Dashboard** — Real-time engagement monitoring with live updates
+- 🔗 **Smart Tool Chaining** — Automatic follow-up scans based on discoveries
+- 📊 **Findings Management** — Track and categorize vulnerabilities by severity
+- 🔑 **Credential Vault** — Encrypted storage for discovered credentials
+- 🌐 **Network Mapping** — Host discovery and service enumeration
+- 📈 **Progress Tracking** — Monitor scan completion and tool execution
+- 💾 **SQLite Storage** — Local database for all engagement data
+- 🔄 **Background Jobs** — Queue-based tool execution with status monitoring
+
+### Integrated Tools (40+)
+
+- **Reconnaissance**: nmap, masscan, theHarvester, whois, dnsrecon
+- **Web Testing**: nikto, gobuster, ffuf, sqlmap, nuclei, wpscan
+- **Enumeration**: enum4linux-ng, smbmap, crackmapexec, snmpwalk
+- **Exploitation**: Metasploit integration, searchsploit
+- **Password Attacks**: hydra, hashcat, john
+- **Post-Exploitation**: impacket suite, bloodhound
+
+### Pentest Workflow & Intelligence
+
+- 📁 **Evidence Vault** — Unified artifact collection organized by PTES phases
+- 🎯 **Attack Surface Dashboard** — Track what's exploited vs pending with priority scoring
+- 💣 **Exploit Suggestions** — Automatic CVE/Metasploit recommendations for discovered services
+- 🔗 **Correlation Engine** — Cross-phase attack tracking and gap analysis
+- 📝 **Report Generator** — Professional reports in Markdown/HTML/PDF formats
+- ✅ **Deliverable Tracking** — Manage testing requirements and acceptance criteria
+- 📸 **Screenshot Management** — Organized visual evidence by methodology phase
+
+### SIEM Integration
+
+- 🛡️ **SIEM Connectors** — Connect to Wazuh, Splunk, and other SIEM platforms
+- ✓ **Detection Validation** — Verify if your attacks triggered SIEM alerts
+- 🔍 **Vulnerability Management** — View CVEs from SIEM vulnerability data
+- ⚖️ **Gap Analysis** — Compare passive (SIEM) vs active (scan) findings
+- 🗺️ **MITRE ATT&CK Reports** — Detection coverage heatmaps by technique
+- 📡 **Real-time Alerts** — Monitor SIEM alerts during live engagements
+
+### FREE vs PRO
+
+| Feature | FREE | PRO |
+|---------|------|-----|
+| Core features (scans, findings, credentials) | ✅ | ✅ |
+| Report generation | ✅ | ✅ |
+| AI-powered suggestions & auto-chaining | ❌ | ✅ |
+| Metasploit integration & exploit suggestions | ❌ | ✅ |
+| SIEM integration & detection validation | ❌ | ✅ |
+| MITRE ATT&CK reports | ❌ | ✅ |
+
+---
+
+## Quick Start
+
+### Step 1: Install Prerequisites
+
+```bash
+sudo apt install pipx    # Install pipx
+pipx ensurepath          # Add pipx apps to your PATH
+source ~/.bashrc         # Reload shell (Kali: use ~/.zshrc)
+```
+
+### Step 2: Install SoulEyez
+
+```bash
+pipx install souleyez
+```
+
+### Step 3: Launch SoulEyez
+
+```bash
+souleyez interactive
+```
+
+### Step 4: First-Time Setup
+
+On your first run, the setup wizard guides you through:
+
+1. **Vault Password** — Create a master password that encrypts sensitive data
+2. **First Engagement** — Set up your first project and select engagement type
+3. **Tool Check** — Detect and optionally install missing security tools
+4. **AI Setup** — Configure Ollama for AI features (optional)
+5. **Tutorial** — Option to run the interactive tutorial (recommended)
+
+### Step 5: You're Ready!
+
+Once setup completes, you'll see the main menu.
+
+---
+
+## System Requirements
+
+| Component | Minimum | Recommended |
+|-----------|---------|-------------|
+| **OS** | Ubuntu 22.04+ | Kali Linux |
+| **Python** | 3.9+ | 3.11+ |
+| **RAM** | 4GB | 8GB+ |
+| **Disk** | 10GB | 50GB+ |
+
+### Supported Operating Systems
+
+| OS | Status | Notes |
+|----|--------|-------|
+| **Kali Linux** | ✅ Recommended | All pentesting tools pre-installed |
+| **Ubuntu 22.04+** | ✅ Supported | Tools installed via `souleyez setup` |
+| **Parrot OS** | ✅ Supported | Security-focused distro |
+| **Debian 12+** | ✅ Supported | Stable base system |
+| **macOS/Windows** | ❌ Not Supported | Use Linux in a VM |
+
+---
+
+## Common Commands
+
+| Command | What it does |
+|---------|--------------|
+| `souleyez interactive` | Launch the main interface |
+| `souleyez dashboard` | Real-time monitoring view |
+| `souleyez doctor` | Check if everything is set up correctly |
+| `souleyez setup` | Install/update pentesting tools |
+| `souleyez --help` | Show all available commands |
+
+---
+
+## Security & Encryption
+
+SoulEyez encrypts all stored credentials using **Fernet (AES-128-CBC + HMAC-SHA256)** with PBKDF2 key derivation (600k iterations).
+
+- Master password is never stored (cannot be recovered if lost)
+- Credentials encrypted at rest with industry-standard cryptography
+- Sensitive data is masked in the UI until explicitly revealed
+
+See [SECURITY.md](SECURITY.md) for complete security guidelines.
+
+---
+
+## Documentation
+
+- **[Getting Started](souleyez/docs/user-guide/getting-started.md)** — Your first engagement in 10 minutes
+- **[Installation Guide](souleyez/docs/user-guide/installation.md)** — Detailed setup instructions
+- **[Workflows](souleyez/docs/user-guide/workflows.md)** — Complete pentesting workflows
+- **[Auto-Chaining](souleyez/docs/user-guide/auto-chaining.md)** — Automatic follow-up scans
+- **[Configuration](souleyez/docs/user-guide/configuration.md)** — All configuration options
+- **[Troubleshooting](souleyez/docs/user-guide/troubleshooting.md)** — Common issues and fixes
+
+---
+
+## Troubleshooting
+
+| Problem | Solution |
+|---------|----------|
+| "command not found: souleyez" | Run `pipx ensurepath` then restart terminal |
+| "Tool not found" errors | Run `souleyez setup` to install missing tools |
+| Forgot vault password | Data is encrypted — start fresh with `rm -rf ~/.souleyez` |
+| Something seems broken | Run `souleyez doctor` to diagnose |
+
+---
+
+## Glossary
+
+New to pentesting? Here are some common terms:
+
+| Term | Meaning |
+|------|---------|
+| **Engagement** | A project or assessment — contains all data for one test |
+| **Target/Host** | A computer, server, or device you're testing |
+| **Finding** | A security issue or vulnerability you discovered |
+| **Credential** | Username/password combo found during testing |
+
+---
+
+## Support & Feedback
+
+- **Issues**: https://github.com/cyber-soul-security/souleyez/issues
+- **Security Issues**: cysoul.secit@gmail.com (see [SECURITY.md](SECURITY.md))
+- **General**: cysoul.secit@gmail.com
+
+---
+
+## License
+
+See [LICENSE](LICENSE) for details.
+
+---
+
+**Version**: 2.43.1 | **Maintainer**: [CyberSoul Security](https://www.cybersoulsecurity.com)

souleyez-2.43.2/README.md

@@ -0,0 +1,218 @@
+# SoulEyez — AI-Powered Penetration Testing Platform
+
+[![CI](https://github.com/cyber-soul-security/souleyez/actions/workflows/python-ci.yml/badge.svg)](https://github.com/cyber-soul-security/souleyez/actions/workflows/python-ci.yml)
+[![codecov](https://codecov.io/gh/cyber-soul-security/souleyez/branch/main/graph/badge.svg)](https://codecov.io/gh/cyber-soul-security/souleyez)
+[![Python 3.9+](https://img.shields.io/badge/python-3.9+-blue.svg)](https://www.python.org/downloads/)
+[![Code style: black](https://img.shields.io/badge/code%20style-black-000000.svg)](https://github.com/psf/black)
+[![Security: bandit](https://img.shields.io/badge/security-bandit-yellow.svg)](https://github.com/PyCQA/bandit)
+
+---
+
+## What is SoulEyez?
+
+**SoulEyez is your penetration testing command center.** Instead of juggling dozens of terminal windows and text files, SoulEyez gives you one organized place to:
+
+- **Run security scans** — Execute tools like Nmap, Gobuster, SQLMap with simple commands
+- **Auto-discover next steps** — When one scan finds something interesting, SoulEyez automatically suggests (or runs) the next logical tool
+- **Stay organized** — Keep all your targets, findings, and credentials in one searchable database
+- **Generate reports** — Export professional reports when you're done
+
+---
+
+## Who is this for?
+
+- **Security professionals** conducting authorized penetration tests
+- **CTF players** who want better organization during competitions
+- **Students** learning penetration testing methodology
+
+> **Important:** Only use SoulEyez on systems you have explicit authorization to test. Unauthorized scanning or exploitation is illegal.
+
+---
+
+## Features
+
+### Core Capabilities
+
+- 🎯 **Interactive Dashboard** — Real-time engagement monitoring with live updates
+- 🔗 **Smart Tool Chaining** — Automatic follow-up scans based on discoveries
+- 📊 **Findings Management** — Track and categorize vulnerabilities by severity
+- 🔑 **Credential Vault** — Encrypted storage for discovered credentials
+- 🌐 **Network Mapping** — Host discovery and service enumeration
+- 📈 **Progress Tracking** — Monitor scan completion and tool execution
+- 💾 **SQLite Storage** — Local database for all engagement data
+- 🔄 **Background Jobs** — Queue-based tool execution with status monitoring
+
+### Integrated Tools (40+)
+
+- **Reconnaissance**: nmap, masscan, theHarvester, whois, dnsrecon
+- **Web Testing**: nikto, gobuster, ffuf, sqlmap, nuclei, wpscan
+- **Enumeration**: enum4linux-ng, smbmap, crackmapexec, snmpwalk
+- **Exploitation**: Metasploit integration, searchsploit
+- **Password Attacks**: hydra, hashcat, john
+- **Post-Exploitation**: impacket suite, bloodhound
+
+### Pentest Workflow & Intelligence
+
+- 📁 **Evidence Vault** — Unified artifact collection organized by PTES phases
+- 🎯 **Attack Surface Dashboard** — Track what's exploited vs pending with priority scoring
+- 💣 **Exploit Suggestions** — Automatic CVE/Metasploit recommendations for discovered services
+- 🔗 **Correlation Engine** — Cross-phase attack tracking and gap analysis
+- 📝 **Report Generator** — Professional reports in Markdown/HTML/PDF formats
+- ✅ **Deliverable Tracking** — Manage testing requirements and acceptance criteria
+- 📸 **Screenshot Management** — Organized visual evidence by methodology phase
+
+### SIEM Integration
+
+- 🛡️ **SIEM Connectors** — Connect to Wazuh, Splunk, and other SIEM platforms
+- ✓ **Detection Validation** — Verify if your attacks triggered SIEM alerts
+- 🔍 **Vulnerability Management** — View CVEs from SIEM vulnerability data
+- ⚖️ **Gap Analysis** — Compare passive (SIEM) vs active (scan) findings
+- 🗺️ **MITRE ATT&CK Reports** — Detection coverage heatmaps by technique
+- 📡 **Real-time Alerts** — Monitor SIEM alerts during live engagements
+
+### FREE vs PRO
+
+| Feature | FREE | PRO |
+|---------|------|-----|
+| Core features (scans, findings, credentials) | ✅ | ✅ |
+| Report generation | ✅ | ✅ |
+| AI-powered suggestions & auto-chaining | ❌ | ✅ |
+| Metasploit integration & exploit suggestions | ❌ | ✅ |
+| SIEM integration & detection validation | ❌ | ✅ |
+| MITRE ATT&CK reports | ❌ | ✅ |
+
+---
+
+## Quick Start
+
+### Step 1: Install Prerequisites
+
+```bash
+sudo apt install pipx    # Install pipx
+pipx ensurepath          # Add pipx apps to your PATH
+source ~/.bashrc         # Reload shell (Kali: use ~/.zshrc)
+```
+
+### Step 2: Install SoulEyez
+
+```bash
+pipx install souleyez
+```
+
+### Step 3: Launch SoulEyez
+
+```bash
+souleyez interactive
+```
+
+### Step 4: First-Time Setup
+
+On your first run, the setup wizard guides you through:
+
+1. **Vault Password** — Create a master password that encrypts sensitive data
+2. **First Engagement** — Set up your first project and select engagement type
+3. **Tool Check** — Detect and optionally install missing security tools
+4. **AI Setup** — Configure Ollama for AI features (optional)
+5. **Tutorial** — Option to run the interactive tutorial (recommended)
+
+### Step 5: You're Ready!
+
+Once setup completes, you'll see the main menu.
+
+---
+
+## System Requirements
+
+| Component | Minimum | Recommended |
+|-----------|---------|-------------|
+| **OS** | Ubuntu 22.04+ | Kali Linux |
+| **Python** | 3.9+ | 3.11+ |
+| **RAM** | 4GB | 8GB+ |
+| **Disk** | 10GB | 50GB+ |
+
+### Supported Operating Systems
+
+| OS | Status | Notes |
+|----|--------|-------|
+| **Kali Linux** | ✅ Recommended | All pentesting tools pre-installed |
+| **Ubuntu 22.04+** | ✅ Supported | Tools installed via `souleyez setup` |
+| **Parrot OS** | ✅ Supported | Security-focused distro |
+| **Debian 12+** | ✅ Supported | Stable base system |
+| **macOS/Windows** | ❌ Not Supported | Use Linux in a VM |
+
+---
+
+## Common Commands
+
+| Command | What it does |
+|---------|--------------|
+| `souleyez interactive` | Launch the main interface |
+| `souleyez dashboard` | Real-time monitoring view |
+| `souleyez doctor` | Check if everything is set up correctly |
+| `souleyez setup` | Install/update pentesting tools |
+| `souleyez --help` | Show all available commands |
+
+---
+
+## Security & Encryption
+
+SoulEyez encrypts all stored credentials using **Fernet (AES-128-CBC + HMAC-SHA256)** with PBKDF2 key derivation (600k iterations).
+
+- Master password is never stored (cannot be recovered if lost)
+- Credentials encrypted at rest with industry-standard cryptography
+- Sensitive data is masked in the UI until explicitly revealed
+
+See [SECURITY.md](SECURITY.md) for complete security guidelines.
+
+---
+
+## Documentation
+
+- **[Getting Started](souleyez/docs/user-guide/getting-started.md)** — Your first engagement in 10 minutes
+- **[Installation Guide](souleyez/docs/user-guide/installation.md)** — Detailed setup instructions
+- **[Workflows](souleyez/docs/user-guide/workflows.md)** — Complete pentesting workflows
+- **[Auto-Chaining](souleyez/docs/user-guide/auto-chaining.md)** — Automatic follow-up scans
+- **[Configuration](souleyez/docs/user-guide/configuration.md)** — All configuration options
+- **[Troubleshooting](souleyez/docs/user-guide/troubleshooting.md)** — Common issues and fixes
+
+---
+
+## Troubleshooting
+
+| Problem | Solution |
+|---------|----------|
+| "command not found: souleyez" | Run `pipx ensurepath` then restart terminal |
+| "Tool not found" errors | Run `souleyez setup` to install missing tools |
+| Forgot vault password | Data is encrypted — start fresh with `rm -rf ~/.souleyez` |
+| Something seems broken | Run `souleyez doctor` to diagnose |
+
+---
+
+## Glossary
+
+New to pentesting? Here are some common terms:
+
+| Term | Meaning |
+|------|---------|
+| **Engagement** | A project or assessment — contains all data for one test |
+| **Target/Host** | A computer, server, or device you're testing |
+| **Finding** | A security issue or vulnerability you discovered |
+| **Credential** | Username/password combo found during testing |
+
+---
+
+## Support & Feedback
+
+- **Issues**: https://github.com/cyber-soul-security/souleyez/issues
+- **Security Issues**: cysoul.secit@gmail.com (see [SECURITY.md](SECURITY.md))
+- **General**: cysoul.secit@gmail.com
+
+---
+
+## License
+
+See [LICENSE](LICENSE) for details.
+
+---
+
+**Version**: 2.43.1 | **Maintainer**: [CyberSoul Security](https://www.cybersoulsecurity.com)

{souleyez-2.31.0 → souleyez-2.43.2}/pyproject.toml

@@ -4,9 +4,9 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "souleyez"
-version = "2.31.0"
+version = "2.43.2"
 description = "AI-Powered Penetration Testing Platform with 40+ integrated tools"
-readme = "BETA_README.md"
+readme = "README.md"
 license = {text = "MIT"}
 authors = [{name = "CyberSoul Security", email = "contact@cybersoulsecurity.com"}]
 maintainers = [{name = "CyberSoul Security", email = "contact@cybersoulsecurity.com"}]

souleyez-2.43.2/souleyez/__init__.py

@@ -0,0 +1,2 @@
+__version__ = '2.43.2'
+

{souleyez-2.31.0 → souleyez-2.43.2}/souleyez/commands/license.py

@@ -93,7 +93,7 @@ def status():
         click.echo(click.style("  No active license", fg='yellow'))
         click.echo()
         click.echo("  You are using the FREE tier.")
-        click.echo("  Upgrade to Pro: https://souleyez.com/pricing")
+        click.echo("  Upgrade to Pro: https://www.cybersoulsecurity.com/souleyez")
         click.echo()
         click.echo("  Activate with: souleyez license activate <key>")
         click.echo()

{souleyez-2.31.0 → souleyez-2.43.2}/souleyez/core/msf_auto_mapper.py

@@ -49,8 +49,9 @@ class MSFAutoMapper:
                         risk_levels=['safe', 'noisy', 'moderate', 'dangerous']
                     )
 
-                    # Filter to top 10 recommendations
-                    service_map[service_id] = recommendations[:10]
+                    # Only store services with actual recommendations
+                    if recommendations:
+                        service_map[service_id] = recommendations[:10]
 
             return service_map
         except Exception as e:

{souleyez-2.31.0 → souleyez-2.43.2}/souleyez/core/tool_chaining.py

@@ -3972,7 +3972,7 @@ class ToolChaining:
                     # This reduces noise and focuses on high-value targets
                     from souleyez.intelligence.sensitive_tables import is_sensitive_table, is_system_table
 
-                    MAX_TABLES_FOR_COLUMN_ENUM = 15  # Focused on sensitive tables only
+                    MAX_TABLES_FOR_COLUMN_ENUM = 10  # Focused on sensitive tables only
                     tables_queued = 0
                     skipped_tables = 0
 
@@ -5770,6 +5770,17 @@ class ToolChaining:
 
                             status = existing_job.get('status')
 
+                            # === SQLMAP RULE-BASED DEDUP (check ALL completed jobs, not just recent) ===
+                            # For sqlmap: if same rule was already applied to this URL, skip it entirely
+                            # This prevents infinite loops where each sqlmap job re-triggers the same rules
+                            if cmd['tool'] == 'sqlmap' and status in ['done', 'queued', 'running']:
+                                cmd_rule_id = cmd.get('rule_id')
+                                existing_rule_id = existing_job.get('rule_id')
+                                if cmd_rule_id and existing_rule_id and cmd_rule_id == existing_rule_id:
+                                    similar_exists = True
+                                    print(f"  ⏭️  Skipping sqlmap for {cmd_target}: rule #{cmd_rule_id} already applied (job #{existing_job['id']} {status})")
+                                    break
+
                             # Check if job is active (queued/running)
                             is_active = status in ['queued', 'running']
 
@@ -5784,11 +5795,28 @@ class ToolChaining:
                                         current_time = datetime.now(finished_time.tzinfo) if finished_time.tzinfo else datetime.now()
                                         time_delta = (current_time - finished_time).total_seconds()
 
-                                        # Only block if same args AND finished < 5 min ago
+                                        # Only block if finished < 5 min ago AND (same args OR same rule_id for sqlmap)
                                         if time_delta < DUPLICATE_WINDOW_SECONDS:
                                             existing_args = existing_job.get('args', [])
                                             cmd_args = cmd.get('args', [])
-                                            if existing_args == cmd_args:
+
+                                            # For sqlmap: also check rule_id (same rule = duplicate even with different parent)
+                                            if cmd['tool'] == 'sqlmap':
+                                                cmd_rule_id = cmd.get('rule_id')
+                                                existing_rule_id = existing_job.get('rule_id')
+                                                if cmd_rule_id and existing_rule_id and cmd_rule_id == existing_rule_id:
+                                                    is_recent_duplicate = True
+                                                    minutes_ago = int(time_delta // 60)
+                                                    seconds_ago = int(time_delta % 60)
+                                                    time_str = f"{minutes_ago}m {seconds_ago}s ago" if minutes_ago > 0 else f"{seconds_ago}s ago"
+                                                    print(f"  ⏭️  Skipping sqlmap for {cmd_target}: rule #{cmd_rule_id} completed {time_str} (duplicate)")
+                                                elif existing_args == cmd_args:
+                                                    is_recent_duplicate = True
+                                                    minutes_ago = int(time_delta // 60)
+                                                    seconds_ago = int(time_delta % 60)
+                                                    time_str = f"{minutes_ago}m {seconds_ago}s ago" if minutes_ago > 0 else f"{seconds_ago}s ago"
+                                                    print(f"  ⏭️  Skipping sqlmap for {cmd_target}: job #{existing_job['id']} completed {time_str} (duplicate)")
+                                            elif existing_args == cmd_args:
                                                 is_recent_duplicate = True
                                                 minutes_ago = int(time_delta // 60)
                                                 seconds_ago = int(time_delta % 60)
@@ -5810,16 +5838,34 @@ class ToolChaining:
                                             print(f"  ⏭️  Skipping {cmd['tool']} for {cmd_target}: similar job #{existing_job['id']} already exists ({existing_job['status']})")
                                             break
 
-                                    # For sqlmap, gobuster: check if args match (allow different ports/phases)
-                                    elif cmd['tool'] in ['sqlmap', 'gobuster']:
+                                    # For sqlmap: check by rule_id to prevent same rule firing twice on same URL
+                                    elif cmd['tool'] == 'sqlmap':
+                                        cmd_rule_id = cmd.get('rule_id')
+                                        existing_rule_id = existing_job.get('rule_id')
+                                        existing_args = existing_job.get('args', [])
+                                        cmd_args = cmd.get('args', [])
+
+                                        # If both have rule_id and they match, it's a duplicate
+                                        # (same rule already applied to this injection point)
+                                        if cmd_rule_id and existing_rule_id and cmd_rule_id == existing_rule_id:
+                                            similar_exists = True
+                                            print(f"  ⏭️  Skipping sqlmap for {cmd_target}: rule #{cmd_rule_id} already applied (job #{existing_job['id']} {existing_job['status']})")
+                                            break
+                                        # Also check if exact same args (covers manual/no-rule jobs)
+                                        elif existing_args == cmd_args:
+                                            similar_exists = True
+                                            print(f"  ⏭️  Skipping sqlmap for {cmd_target}: similar job #{existing_job['id']} already exists ({existing_job['status']})")
+                                            break
+                                        # If different rule_id and different args, allow it (different SQLMap phase)
+
+                                    # For gobuster: check if args match
+                                    elif cmd['tool'] == 'gobuster':
                                         existing_args = existing_job.get('args', [])
                                         cmd_args = cmd.get('args', [])
-                                        # Compare args - if they're the same, it's a duplicate
                                         if existing_args == cmd_args:
                                             similar_exists = True
                                             print(f"  ⏭️  Skipping {cmd['tool']} for {cmd_target}: similar job #{existing_job['id']} already exists ({existing_job['status']})")
                                             break
-                                        # If args are different, allow it (different SQLMap phase)
 
                                     # For quick lookup tools (whois, dnsrecon), skip 5-min duplicate check
                                     # They're fast and each theHarvester run should trigger them

{souleyez-2.31.0 → souleyez-2.43.2}/souleyez/docs/README.md

@@ -1,7 +1,7 @@
 # SoulEyez Documentation
 
-**Version:** 2.31.0
-**Last Updated:** January 9, 2026
+**Version:** 2.43.2
+**Last Updated:** January 11, 2026
 **Organization:** CyberSoul Security
 
 Welcome to the SoulEyez documentation! This documentation covers architecture, development, user guides, and operational information for the SoulEyez penetration testing platform.
@@ -240,8 +240,8 @@ Legal and compliance documentation.
 
 - **Issues**: https://github.com/cybersoul-security/souleyez/issues
 - **Discussions**: https://github.com/cybersoul-security/souleyez/discussions
-- **Security**: security@cybersoul.io
-- **General**: support@cybersoul.io
+- **Security**: cysoul.secit@gmail.com
+- **General**: cysoul.secit@gmail.com
 
 ---
 

{souleyez-2.31.0 → souleyez-2.43.2}/souleyez/docs/architecture/decisions/001-local-llm-over-cloud.md

@@ -167,7 +167,7 @@ SoulEyez's tagline: *"See through the soul's eyes — perceive what others canno
 **Messaging Opportunity**:
 > "SoulEyez AI never sends your data to the cloud. Your engagement stays between you and your client — always."
 
-This positions CyberSoul as **security-first, privacy-respecting** — aligned with Soul Hackers brand values.
+This positions CyberSoul as **security-first, privacy-respecting** — aligned with SoulEyez brand values.
 
 ---
 
@@ -283,7 +283,7 @@ Sanitized: "[USER]:[PASS] on [IP] port 3306 MySQL"
    - ✅ Predictable performance
 
 4. **Brand**
-   - ✅ Reinforces "Soul Hackers" identity (ethical, privacy-respecting)
+   - ✅ Reinforces "SoulEyez" identity (ethical, privacy-respecting)
    - ✅ Differentiation in crowded market
    - ✅ Thought leadership opportunity (blog: "Why We Built Privacy-First AI")