discovery, auth

Author: CodeMonkeyCybersecurity

cmd/root.go

@@ -5,10 +5,10 @@ import (
 	"fmt"
 	"os"
 
+	"github.com/CodeMonkeyCybersecurity/shells/internal/config"
+	"github.com/CodeMonkeyCybersecurity/shells/internal/logger"
 	"github.com/spf13/cobra"
 	"github.com/spf13/viper"
-	"github.com/yourusername/shells/internal/config"
-	"github.com/yourusername/shells/internal/logger"
 )
 
 var (
@@ -27,13 +27,13 @@ a unified interface for distributed scanning with result aggregation.`,
 		if err := initConfig(); err != nil {
 			return fmt.Errorf("failed to initialize config: %w", err)
 		}
-		
+
 		var err error
 		log, err = logger.New(cfg.Logger)
 		if err != nil {
 			return fmt.Errorf("failed to initialize logger: %w", err)
 		}
-		
+
 		return nil
 	},
 	PersistentPostRun: func(cmd *cobra.Command, args []string) {
@@ -58,7 +58,7 @@ func init() {
 	rootCmd.PersistentFlags().StringVar(&cfgFile, "config", "", "config file (default is $HOME/.shells.yaml)")
 	rootCmd.PersistentFlags().String("log-level", "info", "log level (debug, info, warn, error)")
 	rootCmd.PersistentFlags().String("log-format", "json", "log format (json, console)")
-	
+
 	viper.BindPFlag("log.level", rootCmd.PersistentFlags().Lookup("log-level"))
 	viper.BindPFlag("log.format", rootCmd.PersistentFlags().Lookup("log-format"))
 }
@@ -103,4 +103,4 @@ func GetLogger() *logger.Logger {
 
 func GetContext() context.Context {
 	return context.Background()
-}
+}

cmd/scan.go

@@ -3,8 +3,8 @@ package cmd
 import (
 	"fmt"
 
+	"github.com/CodeMonkeyCybersecurity/shells/pkg/types"
 	"github.com/spf13/cobra"
-	"github.com/yourusername/shells/pkg/types"
 )
 
 var scanCmd = &cobra.Command{
@@ -15,7 +15,7 @@ var scanCmd = &cobra.Command{
 
 func init() {
 	rootCmd.AddCommand(scanCmd)
-	
+
 	scanCmd.AddCommand(portScanCmd)
 	scanCmd.AddCommand(sslScanCmd)
 	scanCmd.AddCommand(webScanCmd)
@@ -38,14 +38,14 @@ var portScanCmd = &cobra.Command{
 		target := args[0]
 		profile, _ := cmd.Flags().GetString("profile")
 		ports, _ := cmd.Flags().GetString("ports")
-		
+
 		log.Info("Starting port scan", "target", target, "profile", profile)
-		
+
 		options := map[string]string{
 			"profile": profile,
 			"ports":   ports,
 		}
-		
+
 		return executeScan(target, types.ScanTypePort, options)
 	},
 }
@@ -57,13 +57,13 @@ var sslScanCmd = &cobra.Command{
 	RunE: func(cmd *cobra.Command, args []string) error {
 		target := args[0]
 		port, _ := cmd.Flags().GetString("port")
-		
+
 		log.Info("Starting SSL scan", "target", target)
-		
+
 		options := map[string]string{
 			"port": port,
 		}
-		
+
 		return executeScan(target, types.ScanTypeSSL, options)
 	},
 }
@@ -75,13 +75,13 @@ var webScanCmd = &cobra.Command{
 	RunE: func(cmd *cobra.Command, args []string) error {
 		target := args[0]
 		depth, _ := cmd.Flags().GetInt("depth")
-		
+
 		log.Info("Starting web scan", "target", target)
-		
+
 		options := map[string]string{
 			"depth": fmt.Sprintf("%d", depth),
 		}
-		
+
 		return executeScan(target, types.ScanTypeWeb, options)
 	},
 }
@@ -92,9 +92,9 @@ var vulnScanCmd = &cobra.Command{
 	Args:  cobra.ExactArgs(1),
 	RunE: func(cmd *cobra.Command, args []string) error {
 		target := args[0]
-		
+
 		log.Info("Starting vulnerability scan", "target", target)
-		
+
 		return executeScan(target, types.ScanTypeVuln, nil)
 	},
 }
@@ -105,9 +105,9 @@ var dnsScanCmd = &cobra.Command{
 	Args:  cobra.ExactArgs(1),
 	RunE: func(cmd *cobra.Command, args []string) error {
 		domain := args[0]
-		
+
 		log.Info("Starting DNS scan", "domain", domain)
-		
+
 		return executeScan(domain, types.ScanTypeDNS, nil)
 	},
 }
@@ -119,13 +119,13 @@ var dirScanCmd = &cobra.Command{
 	RunE: func(cmd *cobra.Command, args []string) error {
 		target := args[0]
 		wordlist, _ := cmd.Flags().GetString("wordlist")
-		
+
 		log.Info("Starting directory scan", "target", target)
-		
+
 		options := map[string]string{
 			"wordlist": wordlist,
 		}
-		
+
 		return executeScan(target, types.ScanTypeDirectory, options)
 	},
 }
@@ -139,15 +139,15 @@ var oauth2ScanCmd = &cobra.Command{
 		clientID, _ := cmd.Flags().GetString("client-id")
 		clientSecret, _ := cmd.Flags().GetString("client-secret")
 		redirectURI, _ := cmd.Flags().GetString("redirect-uri")
-		
+
 		log.Info("Starting OAuth2 scan", "target", target)
-		
+
 		options := map[string]string{
 			"client_id":     clientID,
 			"client_secret": clientSecret,
 			"redirect_uri":  redirectURI,
 		}
-		
+
 		return executeScan(target, types.ScanType("oauth2"), options)
 	},
 }
@@ -161,15 +161,15 @@ var nucleiScanCmd = &cobra.Command{
 		severity, _ := cmd.Flags().GetString("severity")
 		tags, _ := cmd.Flags().GetString("tags")
 		templates, _ := cmd.Flags().GetString("templates")
-		
+
 		log.Info("Starting nuclei scan", "target", target)
-		
+
 		options := map[string]string{
 			"severity":  severity,
 			"tags":      tags,
 			"templates": templates,
 		}
-		
+
 		return executeScan(target, types.ScanType("vulnerability"), options)
 	},
 }
@@ -183,15 +183,15 @@ var httpxScanCmd = &cobra.Command{
 		followRedirects, _ := cmd.Flags().GetBool("follow-redirects")
 		probeAllIPs, _ := cmd.Flags().GetBool("probe-all-ips")
 		ports, _ := cmd.Flags().GetString("ports")
-		
+
 		log.Info("Starting httpx scan", "target", target)
-		
+
 		options := map[string]string{
 			"follow_redirects": fmt.Sprintf("%t", followRedirects),
-			"probe_all_ips":   fmt.Sprintf("%t", probeAllIPs),
-			"ports":           ports,
+			"probe_all_ips":    fmt.Sprintf("%t", probeAllIPs),
+			"ports":            ports,
 		}
-		
+
 		return executeScan(target, types.ScanType("http_probe"), options)
 	},
 }
@@ -202,9 +202,9 @@ var jsScanCmd = &cobra.Command{
 	Args:  cobra.ExactArgs(1),
 	RunE: func(cmd *cobra.Command, args []string) error {
 		target := args[0]
-		
+
 		log.Info("Starting JavaScript analysis", "target", target)
-		
+
 		return executeScan(target, types.ScanType("javascript"), nil)
 	},
 }
@@ -216,13 +216,13 @@ var graphqlScanCmd = &cobra.Command{
 	RunE: func(cmd *cobra.Command, args []string) error {
 		target := args[0]
 		authHeader, _ := cmd.Flags().GetString("auth-header")
-		
+
 		log.Info("Starting GraphQL scan", "target", target)
-		
+
 		options := map[string]string{
 			"auth_header": authHeader,
 		}
-		
+
 		return executeScan(target, types.ScanType("api"), options)
 	},
 }
@@ -233,9 +233,9 @@ var fullScanCmd = &cobra.Command{
 	Args:  cobra.ExactArgs(1),
 	RunE: func(cmd *cobra.Command, args []string) error {
 		target := args[0]
-		
+
 		log.Info("Starting full scan", "target", target)
-		
+
 		scanTypes := []types.ScanType{
 			types.ScanTypePort,
 			types.ScanTypeSSL,
@@ -248,43 +248,43 @@ var fullScanCmd = &cobra.Command{
 			types.ScanType("javascript"),
 			types.ScanType("api"),
 		}
-		
+
 		for _, scanType := range scanTypes {
 			if err := executeScan(target, scanType, nil); err != nil {
 				log.Error("Scan failed", "type", scanType, "error", err)
 			}
 		}
-		
+
 		return nil
 	},
 }
 
 func init() {
 	portScanCmd.Flags().String("profile", "default", "Scan profile (default, fast, thorough)")
 	portScanCmd.Flags().String("ports", "", "Port range to scan (e.g., 1-1000)")
-	
+
 	sslScanCmd.Flags().String("port", "443", "Port to scan for SSL/TLS")
-	
+
 	webScanCmd.Flags().Int("depth", 2, "Spider depth for web scanning")
-	
+
 	dirScanCmd.Flags().String("wordlist", "common.txt", "Wordlist for directory discovery")
-	
+
 	oauth2ScanCmd.Flags().String("client-id", "", "OAuth2 client ID")
 	oauth2ScanCmd.Flags().String("client-secret", "", "OAuth2 client secret")
 	oauth2ScanCmd.Flags().String("redirect-uri", "", "OAuth2 redirect URI")
-	
+
 	nucleiScanCmd.Flags().String("severity", "critical,high,medium,low", "Severity levels to scan for")
 	nucleiScanCmd.Flags().String("tags", "", "Tags to filter templates")
 	nucleiScanCmd.Flags().String("templates", "", "Specific templates to use")
-	
+
 	httpxScanCmd.Flags().Bool("follow-redirects", true, "Follow HTTP redirects")
 	httpxScanCmd.Flags().Bool("probe-all-ips", false, "Probe all resolved IPs")
 	httpxScanCmd.Flags().String("ports", "", "Ports to probe")
-	
+
 	graphqlScanCmd.Flags().String("auth-header", "", "Authorization header for GraphQL requests")
 }
 
 func executeScan(target string, scanType types.ScanType, options map[string]string) error {
 	log.Error("Scan execution not yet implemented")
 	return fmt.Errorf("scan execution not yet implemented")
-}
+}

cmd/workflow.go

@@ -4,8 +4,8 @@ import (
 	"fmt"
 	"strings"
 
+	"github.com/CodeMonkeyCybersecurity/shells/internal/workflow"
 	"github.com/spf13/cobra"
-	"github.com/yourusername/shells/internal/workflow"
 )
 
 var workflowCmd = &cobra.Command{
@@ -91,7 +91,7 @@ var workflowListCmd = &cobra.Command{
 					fmt.Printf("     Parallel: true\n")
 				}
 			}
-			fmt.Printf("\n" + strings.Repeat("=", 50) + "\n\n")
+			fmt.Printf("\n%s\n\n", strings.Repeat("=", 50))
 		}
 
 		return nil

go.mod

@@ -1,11 +1,10 @@
-module github.com/yourusername/shells
+module github.com/CodeMonkeyCybersecurity/shells
 
-go 1.21
+go 1.24
 
 require (
 	github.com/chromedp/cdproto v0.0.0-20231011050154-1d073bb38998
 	github.com/chromedp/chromedp v0.9.3
-	github.com/google/gofuzz v1.2.0
 	github.com/google/uuid v1.5.0
 	github.com/jmoiron/sqlx v1.3.5
 	github.com/lib/pq v1.10.9

go.sum

@@ -126,8 +126,6 @@ github.com/google/go-querystring v1.0.0/go.mod h1:odCYkC5MyYFN7vkCjXpyrEuKhc/BUO
 github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8=
 github.com/google/go-querystring v1.1.0/go.mod h1:Kcdr2DB4koayq7X8pmAG4sNG59So17icRSOU623lUBU=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
-github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/pprof v0.0.0-20230821062121-407c9e7a662f h1:pDhu5sgp8yJlEF/g6osliIIpF9K4F5jvkULXa4daRDQ=
 github.com/google/pprof v0.0.0-20230821062121-407c9e7a662f/go.mod h1:czg5+yv1E0ZGTi6S6vVK1mke0fV+FaUhNGcd6VRS9Ik=
 github.com/google/uuid v1.5.0 h1:1p67kYwdtXjb0gL0BPiP1Av9wiZPo5A8z2cWkTZ+eyU=

internal/core/interfaces.go

@@ -4,7 +4,7 @@ import (
 	"context"
 	"io"
 
-	"github.com/yourusername/shells/pkg/types"
+	"github.com/CodeMonkeyCybersecurity/shells/pkg/types"
 )
 
 type Scanner interface {
@@ -30,11 +30,11 @@ type ResultStore interface {
 	UpdateScan(ctx context.Context, scan *types.ScanRequest) error
 	GetScan(ctx context.Context, scanID string) (*types.ScanRequest, error)
 	ListScans(ctx context.Context, filter ScanFilter) ([]*types.ScanRequest, error)
-	
+
 	SaveFindings(ctx context.Context, findings []types.Finding) error
 	GetFindings(ctx context.Context, scanID string) ([]types.Finding, error)
 	GetFindingsBySeverity(ctx context.Context, severity types.Severity) ([]types.Finding, error)
-	
+
 	GetSummary(ctx context.Context, scanID string) (*types.Summary, error)
 	Close() error
 }
@@ -92,4 +92,4 @@ type Telemetry interface {
 	RecordFinding(severity types.Severity)
 	RecordWorkerMetrics(status *types.WorkerStatus)
 	Close() error
-}
+}

internal/database/store.go

@@ -10,9 +10,9 @@ import (
 	_ "github.com/lib/pq"
 	_ "github.com/mattn/go-sqlite3"
 
-	"github.com/yourusername/shells/internal/config"
-	"github.com/yourusername/shells/internal/core"
-	"github.com/yourusername/shells/pkg/types"
+	"github.com/CodeMonkeyCybersecurity/shells/internal/config"
+	"github.com/CodeMonkeyCybersecurity/shells/internal/core"
+	"github.com/CodeMonkeyCybersecurity/shells/pkg/types"
 )
 
 type sqlStore struct {