subdomain

package

v0.11.0 Latest Latest Go to latest Published: Sep 25, 2023 License: MIT Imports: 31 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/ca-risken/osint

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
type HarvesterConfig
- func NewHarvesterConfig(resultPath, harvesterPath string, l logging.Logger) *HarvesterConfig
type SQSHandler
- func NewSQSHandler(fc finding.FindingServiceClient, ac alert.AlertServiceClient, ...) *SQSHandler
- func (s *SQSHandler) CallAnalyzeAlert(ctx context.Context, projectID uint32) error
- func (s *SQSHandler) HandleMessage(ctx context.Context, sqsMsg *types.Message) error
type TakeoverDomain
type TakeoverType

Constants ¶

This section is empty.

Variables ¶

View Source

var TakeoverDomains = []TakeoverDomain{
	{
		ServiceName: "AWS/Elastic Beanstalk",
		Domain:      regexp.MustCompile(regexp.QuoteMeta("us-east-1.elasticbeanstalk.com")),
		Type:        NVHO,
	},

	{
		ServiceName: "AWS/S3",
		Domain:      regexp.MustCompile(`s3.*\.amazonaws\.com`),
		Type:        VHO,
		Fingerprint: "NoSuchBucket",
	},
	{
		ServiceName: "Anima",
		Domain:      regexp.MustCompile(regexp.QuoteMeta("animaapp.io")),
		Type:        VHO,
		Fingerprint: "Anima - Page Not Found",
	},
	{
		ServiceName: "Bitbucket",
		Domain:      regexp.MustCompile(regexp.QuoteMeta("bitbucket.io")),
		Type:        VHO,
		Fingerprint: "Repository not found",
	},
	{
		ServiceName: "Gemfury",
		Domain:      regexp.MustCompile(regexp.QuoteMeta("furyns.com")),
		Type:        VHO,
		Fingerprint: "404: This page could not be found.",
	},
	{
		ServiceName: "Ghost",
		Domain:      regexp.MustCompile(regexp.QuoteMeta("ghost.io")),
		Type:        VHO,
		Fingerprint: "Domain error",
	},
	{
		ServiceName: "HatenaBlog",
		Domain:      regexp.MustCompile(regexp.QuoteMeta("hatenablog.com")),
		Type:        VHO,
		Fingerprint: "404 Blog is not found",
	},
	{
		ServiceName: "Help Juice",
		Domain:      regexp.MustCompile(regexp.QuoteMeta("helpjuice.com")),
		Type:        VHO,
		Fingerprint: "We could not find what you're looking for.",
	},
	{
		ServiceName: "Help Scout",
		Domain:      regexp.MustCompile(regexp.QuoteMeta("helpscoutdocs.com")),
		Type:        VHO,
		Fingerprint: "No settings were found for this company:",
	},
}

Domains that have takeover vulnerable status, source: https://github.com/EdOverflow/can-i-take-over-xyz/blob/44e2da47ecb95fc38a0976812fc173e553996189/fingerprints.json Cannot test domains below:

agilecrm.com
airee.ru
youtrack.cloud

Functions ¶

This section is empty.

Types ¶

type HarvesterConfig ¶

type HarvesterConfig struct {
	ResultPath    string
	HarvesterPath string
	// contains filtered or unexported fields
}

func NewHarvesterConfig ¶

func NewHarvesterConfig(resultPath, harvesterPath string, l logging.Logger) *HarvesterConfig

type SQSHandler ¶

type SQSHandler struct {
	// contains filtered or unexported fields
}

func NewSQSHandler ¶

func NewSQSHandler(
	fc finding.FindingServiceClient,
	ac alert.AlertServiceClient,
	oc osint.OsintServiceClient,
	harvesterConfig *HarvesterConfig,
	inspectConcurrency int64,
	l logging.Logger,
) *SQSHandler

func (*SQSHandler) CallAnalyzeAlert ¶

func (s *SQSHandler) CallAnalyzeAlert(ctx context.Context, projectID uint32) error

func (*SQSHandler) HandleMessage ¶

func (s *SQSHandler) HandleMessage(ctx context.Context, sqsMsg *types.Message) error

type TakeoverDomain ¶ added in v0.6.0

type TakeoverDomain struct {
	ServiceName string
	Domain      *regexp.Regexp
	Type        TakeoverType
	Fingerprint string // how to check whether the subdomain has already been takeovered.
}

type TakeoverType ¶ added in v0.6.0

type TakeoverType int

const (
	VHO TakeoverType = iota
	NVHO
)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL