-
Notifications
You must be signed in to change notification settings - Fork 0
/
config.dist.yaml
133 lines (123 loc) · 3.76 KB
/
config.dist.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
scope:
- name: hackerone
domains: [hackerone.com]
# subs_recon: true # by default
# cidr:
# - 127.0.0.1/32
# sub_refilters:
# - \.(stage|dev|test)\.hackerone\.com$
# - \.test\.internal\.hackerone\.com$
alerts:
use: telegram
vkteams: #icq https://icq.com/botapi/?lang=en
host: ...
token: ...
chat_id: ...
msg_max_size: 1000 #small for file test
telegram: #https://core.telegram.org/bots/tutorial
token: ...
chat_id: ...
msg_max_size: 1000 #file caption max 1024!
# APP CONFIG
juicer_filters:
cname: []
tls_dns: []
title404: []
location: []
db:
conn_str: 'mongodb://localhost:27017'
database: 'autobbdb'
subfinder:
cmd: [
'subfinder',
# '-config', './subfinder_config.yaml'
]
nuclei:
exclude_templates: []
cmd: [
'nuclei', '-no-color', '-jsonl',
#'-t', "./nuclei-my-templates",
'-t', './nuclei-templates',
'-bulk-size', '50',
'-concurrency', '4',
]
# nettwork templates on ports without http(s)
network_cmd: [
'nuclei', '-no-color', '-jsonl',
#'-t', "./nuclei-my-templates",
'-t', './nuclei-templates',
'-tags', 'network', # only network templates
'-bulk-size', '50',
'-concurrency', '4',
]
passive_cmd: [
'nuclei', '-no-httpx', '-no-color', '-jsonl', '-passive',
'-c', '3',
'-bs', '1',
'-t', './nuclei-templates',
#'-t', './nuclei-my-templates',
]
# make suid! #> sudo chown root /home/bb/go/bin/naabu; sudo chmod u+s /home/bb/go/bin/naabu
naabu:
cmd: [
'naabu', '-exclude-cdn', '-no-color', '-json', '-silent',
'-exclude-ports', '80,443', #checked with httpx ? remove on ports first
]
# top100
ports_onnew: >-
7,9,13,21-23,25-26,37,53,79-81,88,106,110-111,113,119,135,139,143-144,179,199,389,427,443-445,465,513-515,543-544,548,554,587,631,646,873,990,
993,995,1025-1029,1110,1433,1720,1723,1755,1900,2000-2001,2049,2121,2717,3000,3128,3306,3389,3986,4899,5000,5009,5051,5060,5101,5190,5357,5432,
5631,5666,5800,5900,6000-6001,6646,7070,8000,8008-8009,8080-8081,8443,8888,9100,9999-10000,32768,49152-49157
# top100
ports: >-
7,9,13,21-23,25-26,37,53,79-81,88,106,110-111,113,119,135,139,143-144,179,199,389,427,443-445,465,513-515,543-544,548,554,587,631,646,873,990,
993,995,1025-1029,1110,1433,1720,1723,1755,1900,2000-2001,2049,2121,2717,3000,3128,3306,3389,3986,4899,5000,5009,5051,5060,5101,5190,5357,5432,
5631,5666,5800,5900,6000-6001,6646,7070,8000,8008-8009,8080-8081,8443,8888,9100,9999-10000,32768,49152-49157
httpx:
cmd: [
'httpx', '-json', '-tech-detect', '-tls-grab', '-follow-host-redirects', '-silent',
'-deny', '10.0.0.0/8,100.64.0.0/10,172.16.0.0/12,192.168.0.0/16,127.0.0.0/8', #private networks
]
threads: 100
threads_onnew: 100
wordlist: 'wordlists/subdomains-top1million-110000.txt'
httprobes_history: 5
sub_domains_weird_threshold: 7000
ports_weird_threshold: 30
nuclei_one_time_max: 1000
shuffledns:
cmd: [
'shuffledns', '--silent', '-sw', '-duc', '-r', './resolvers',
'-t', '5000', #10000 default
]
dnsx:
cmd: ['dnsx', '--json', '--silent', '-threads', '5']
cmd_ptr: ['dnsx', '--json', '-ptr', '--silent', '-threads', '5']
dnsgen:
wordlen: 2
fast: false
max: 1000000
domain_filter:
max_sub: 4 # www.eeee.ddd.fff.domain.tld (4)
max_len: 50 # minus dot parent length
fullscan:
host_alive_in_days: 7
chunk_max: 8000
nuclei_cmd: [
'nuclei', '-no-color', '-jsonl',
#'-t', "./nuclei-my-templates",
'-t', './nuclei-templates',
'-bulk-size', '50',
'-concurrency', '4',
#'-severity', 'low,medium,high,critical',
]
puredns:
cmd: [
'puredns', 'resolve', '-q',
'-r', './resolvers',
'--rate-limit', '5000',
'--rate-limit-trusted', '500',
'--wildcard-batch', '2000000'
]
timeout: 120
chunk_vol_max: 4000000