wiring in

Author: CodeMonkeyCybersecurity

.shells.yaml

@@ -1,95 +1,9 @@
-logger:
-  level: "info"
-  format: "json"
-  output_paths: ["stdout"]
-
 database:
-  driver: "sqlite3"
-  dsn: "/opt/shells/shells.db"
-  max_connections: 10
-  max_idle_conns: 5
-  conn_max_lifetime: "1h"
-
-redis:
-  addr: "localhost:6379"
-  db: 0
-  max_retries: 3
-  dial_timeout: "5s"
-  read_timeout: "3s"
-  write_timeout: "3s"
-
-worker:
-  count: 3
-  queue_poll_interval: "5s"
-  max_retries: 3
-  retry_delay: "10s"
-
-telemetry:
-  enabled: true
-  service_name: "shells"
-  exporter_type: "otlp"
-  endpoint: "localhost:4317"
-  sample_rate: 1.0
-
-security:
-  rate_limit:
-    requests_per_second: 10
-    burst_size: 20
-  enable_auth: false
-
-tools:
-  nmap:
-    binary_path: "nmap"
-    timeout: "30m"
-    profiles:
-      default: "-sS -sV -O"
-      fast: "-T4 -F"
-      thorough: "-sS -sV -sC -O -A"
-  
-  ssl:
-    timeout: "10s"
-    follow_redirects: true
-    check_revocation: true
-  
-  nuclei:
-    binary_path: "nuclei"
-    templates_path: ""
-    timeout: "30m"
-    rate_limit: 150
-    bulk_size: 25
-    concurrency: 25
-    retries: 2
-  
-  httpx:
-    binary_path: "httpx"
-    timeout: "10s"
-    threads: 50
-    rate_limit: 150
-    retries: 2
-    follow_redirects: true
-    probe_all_ips: false
-  
-  scim:
-    discovery_timeout: "5m"
-    max_bulk_operations: 10
-    test_authentication: true
-    test_filters: true
-    test_bulk_ops: true
-    test_provisions: true
-    timeout: "30s"
-    max_retries: 3
-    user_agent: "shells-scim-scanner/1.0"
-    follow_redirects: true
-    verify_ssl: true
-  
-  smuggling:
-    techniques: ["cl.te", "te.cl", "te.te", "http2"]
-    differential_delay: "5s"
-    max_payload_size: 1048576
-    timeout: "30s"
-    max_retries: 3
-    user_agent: "shells-smuggling-scanner/1.0"
-    follow_redirects: false
-    verify_ssl: true
-    enable_timing_analysis: true
-    enable_differential_analysis: true
+  type: sqlite
+  dsn: "shells_demo.db"
+logger:
+  level: info
+  format: console
+discovery:
+  timeout: 30s
+  max_depth: 3

cmd/atomic.go

@@ -316,18 +316,18 @@ Examples:
 
 		for _, finding := range findings {
 			targetObj := atomic.Target{URL: finding.Target, Type: "web"}
-			
+
 			// Get techniques for this vulnerability type
 			mapper := atomic.NewVulnToAttackMapper()
 			techniques := mapper.GetTechniques(finding.Type)
-			
+
 			for _, technique := range techniques {
 				demo, err := client.DemonstrateImpact(technique, targetObj)
 				if err != nil {
 					fmt.Printf("Warning: Could not demonstrate %s for %s: %v\n", technique, finding.Type, err)
 					continue
 				}
-				
+
 				demonstration := atomic.Demonstration{
 					Technique:   technique,
 					Name:        demo.TestName,

cmd/auth.go

@@ -82,7 +82,7 @@ Examples:
 
 		// Discover federation providers
 		domain := extractDomain(target)
-		
+
 		// Create HTTP client with timeout
 		httpClient := &http.Client{
 			Timeout: 30 * time.Second,
@@ -586,12 +586,12 @@ func saveAuthResultsToDatabase(target string, report *common.AuthReport, scanTyp
 
 	// Create scan request
 	scanRequest := &types.ScanRequest{
-		ID:        uuid.New().String(),
-		Target:    target,
-		Type:      scanType,
-		Status:    types.ScanStatusCompleted,
-		CreatedAt: report.StartTime,
-		StartedAt: &report.StartTime,
+		ID:          uuid.New().String(),
+		Target:      target,
+		Type:        scanType,
+		Status:      types.ScanStatusCompleted,
+		CreatedAt:   report.StartTime,
+		StartedAt:   &report.StartTime,
 		CompletedAt: &report.EndTime,
 	}
 

cmd/discover.go

@@ -11,9 +11,9 @@ import (
 )
 
 var (
-	discoverOutput   string
-	discoverVerbose  bool
-	discoverMaxDepth int
+	discoverOutput    string
+	discoverVerbose   bool
+	discoverMaxDepth  int
 	discoverMaxAssets int
 )
 
@@ -55,41 +55,41 @@ func init() {
 // runDiscoveryOnly runs discovery without testing
 func runDiscoveryOnly(target string) error {
 	fmt.Printf("🔍 Starting asset discovery for: %s\n", target)
-	
+
 	// Create discovery configuration
 	config := discovery.DefaultDiscoveryConfig()
 	config.MaxDepth = discoverMaxDepth
 	config.MaxAssets = discoverMaxAssets
-	
+
 	// Create discovery engine
 	engine := discovery.NewEngine(config, &DiscoveryLogger{log: log})
-	
+
 	// Start discovery
 	session, err := engine.StartDiscovery(target)
 	if err != nil {
 		return fmt.Errorf("failed to start discovery: %w", err)
 	}
-	
+
 	if discoverVerbose {
 		fmt.Printf("📋 Discovery session: %s\n", session.ID)
 		fmt.Printf("🎯 Target type: %s\n", session.Target.Type)
 		fmt.Printf("🎲 Confidence: %.0f%%\n", session.Target.Confidence*100)
 	}
-	
+
 	// Monitor discovery progress
 	fmt.Println("⏳ Discovery in progress...")
-	
+
 	for {
 		session, err := engine.GetSession(session.ID)
 		if err != nil {
 			return fmt.Errorf("failed to get session: %w", err)
 		}
-		
+
 		if discoverVerbose {
-			fmt.Printf("\r🔄 Progress: %.0f%% | Assets: %d | High-Value: %d", 
+			fmt.Printf("\r🔄 Progress: %.0f%% | Assets: %d | High-Value: %d",
 				session.Progress, session.TotalDiscovered, session.HighValueAssets)
 		}
-		
+
 		if session.Status == discovery.StatusCompleted {
 			if discoverVerbose {
 				fmt.Println("\n✅ Discovery completed!")
@@ -102,16 +102,16 @@ func runDiscoveryOnly(target string) error {
 			}
 			return fmt.Errorf("discovery failed")
 		}
-		
+
 		time.Sleep(1 * time.Second)
 	}
-	
+
 	// Get final results
 	session, err = engine.GetSession(session.ID)
 	if err != nil {
 		return fmt.Errorf("failed to get final session: %w", err)
 	}
-	
+
 	// Output results based on format
 	switch discoverOutput {
 	case "json":
@@ -125,7 +125,7 @@ func runDiscoveryOnly(target string) error {
 func outputDiscoveryText(session *discovery.DiscoverySession) error {
 	fmt.Printf("\n📊 Discovery Results for: %s\n", session.Target.Value)
 	fmt.Printf("%s\n\n", strings.Repeat("=", len(session.Target.Value)+25))
-	
+
 	fmt.Printf("🎯 Target Information:\n")
 	fmt.Printf("   Type: %s\n", session.Target.Type)
 	fmt.Printf("   Confidence: %.0f%%\n", session.Target.Confidence*100)
@@ -135,23 +135,23 @@ func outputDiscoveryText(session *discovery.DiscoverySession) error {
 			fmt.Printf("     %s: %s\n", key, value)
 		}
 	}
-	
+
 	fmt.Printf("\n📈 Summary:\n")
 	fmt.Printf("   Total Assets: %d\n", session.TotalDiscovered)
 	fmt.Printf("   High-Value Assets: %d\n", session.HighValueAssets)
 	fmt.Printf("   Relationships: %d\n", len(session.Relationships))
 	fmt.Printf("   Duration: %v\n", time.Since(session.StartedAt).Round(time.Second))
-	
+
 	// Group assets by type
 	assetsByType := make(map[discovery.AssetType][]*discovery.Asset)
 	for _, asset := range session.Assets {
 		assetsByType[asset.Type] = append(assetsByType[asset.Type], asset)
 	}
-	
+
 	// Display assets by type
 	if len(session.Assets) > 0 {
 		fmt.Printf("\n🔍 Discovered Assets:\n")
-		
+
 		// Order of asset types to display
 		typeOrder := []discovery.AssetType{
 			discovery.AssetTypeDomain,
@@ -164,27 +164,27 @@ func outputDiscoveryText(session *discovery.DiscoverySession) error {
 			discovery.AssetTypePayment,
 			discovery.AssetTypeAPI,
 		}
-		
+
 		for _, assetType := range typeOrder {
 			assets := assetsByType[assetType]
 			if len(assets) == 0 {
 				continue
 			}
-			
+
 			fmt.Printf("\n   %s (%d):\n", assetType, len(assets))
 			for _, asset := range assets {
 				priority := ""
 				if discovery.IsHighValueAsset(asset) {
 					priority = " 🔥"
 				}
-				
+
 				confidence := ""
 				if asset.Confidence < 0.8 {
 					confidence = fmt.Sprintf(" (%.0f%%)", asset.Confidence*100)
 				}
-				
+
 				fmt.Printf("     • %s%s%s\n", asset.Value, confidence, priority)
-				
+
 				if discoverVerbose {
 					if asset.Title != "" {
 						fmt.Printf("       Title: %s\n", asset.Title)
@@ -201,7 +201,7 @@ func outputDiscoveryText(session *discovery.DiscoverySession) error {
 				}
 			}
 		}
-		
+
 		// Display remaining asset types
 		for assetType, assets := range assetsByType {
 			found := false
@@ -223,7 +223,7 @@ func outputDiscoveryText(session *discovery.DiscoverySession) error {
 			}
 		}
 	}
-	
+
 	// Display high-value assets summary
 	if session.HighValueAssets > 0 {
 		fmt.Printf("\n🎯 High-Value Assets:\n")
@@ -236,27 +236,27 @@ func outputDiscoveryText(session *discovery.DiscoverySession) error {
 			}
 		}
 	}
-	
+
 	// Display relationships if verbose
 	if discoverVerbose && len(session.Relationships) > 0 {
 		fmt.Printf("\n🔗 Asset Relationships:\n")
 		for _, rel := range session.Relationships {
 			sourceAsset := session.Assets[rel.Source]
 			targetAsset := session.Assets[rel.Target]
 			if sourceAsset != nil && targetAsset != nil {
-				fmt.Printf("   %s → %s (%s)\n", 
+				fmt.Printf("   %s → %s (%s)\n",
 					sourceAsset.Value, targetAsset.Value, rel.Type)
 			}
 		}
 	}
-	
+
 	fmt.Printf("\n💡 Next Steps:\n")
 	fmt.Printf("   • Run security tests: shells %s\n", session.Target.Value)
 	fmt.Printf("   • View specific assets: shells discover %s --verbose\n", session.Target.Value)
 	if session.HighValueAssets > 0 {
 		fmt.Printf("   • Focus on high-value assets for manual testing\n")
 	}
-	
+
 	return nil
 }
 
@@ -282,12 +282,12 @@ func outputDiscoveryJSON(session *discovery.DiscoverySession) error {
 		"started_at":    session.StartedAt,
 		"completed_at":  session.CompletedAt,
 	}
-	
+
 	jsonData, err := json.MarshalIndent(result, "", "  ")
 	if err != nil {
 		return fmt.Errorf("failed to marshal JSON: %w", err)
 	}
-	
+
 	fmt.Println(string(jsonData))
 	return nil
-}
+}