├── README.md └── js-secret-discovery.json /README.md: -------------------------------------------------------------------------------- 1 | # Trickest 2 | Custom Trickest Workflows 3 | 4 | Simply copy the JSON and paste it into the Workflow Builder UI 5 | -------------------------------------------------------------------------------- /js-secret-discovery.json: -------------------------------------------------------------------------------- 1 | {"hiveCopy":{"nodes":[{"id":"2291aed7-f30b-4e83-8ea2-d187751f8b4c","name":"jq-1","type":"SCRIPT","bee_type":"small","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":-17365.58203125,"y":8094.09130859375},"label":"jq"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"file/custom-script-1":{"type":"FILE","workerConnected":true,"order":0,"value":"in/custom-script-1/output.txt","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"cat in/*/* | jq -r '.http.host' | tee out/output.txt\n"},"command":"bash"},{"id":"be87c986-9209-4c74-89d8-73405f2f7ae7","name":"vita-1","type":"TOOL","bee_type":"small","meta":{"coordinates":{"x":-18744.11459350586,"y":2439.607177734375},"label":"vita"},"inputs":{"exclude":{"type":"STRING","command":"--exclude","description":"Excludes sources from data collection","order":0,"visible":false},"timeout":{"type":"STRING","command":"--timeout","description":"Connection timeouts can be useful if you don't want to wait for sources like wayback archive which quite a while. Default is 10 seconds. [default: 15]","order":0,"visible":false},"subs-only":{"type":"BOOLEAN","command":"--subs-only","description":"Filter the results to only those which have the same subdomain","order":0,"visible":false},"all-sources":{"type":"BOOLEAN","command":"--all","description":"Use sources which require an Api key","order":0,"visible":false},"concurrency":{"type":"STRING","command":"--concurrency","description":"The number of domains to fetch data for concurrently [default: 200]","order":0,"visible":false},"domains-file":{"type":"FILE","command":"--file","description":"List of domains","order":0,"value":"in/eof-raw-data-1/output.txt","visible":true},"target-domain":{"type":"STRING","command":"-d","description":"Target domain","order":0,"visible":false},"verbosity-level":{"type":"STRING","command":"--verbosity","description":"Different levels of verbosity you can set for debugging, values include: debug, info and warn","order":0,"visible":false},"instant-print-stdout":{"type":"BOOLEAN","command":"--flush","description":"Prints results to stdout as they're received. Results will still be filtered, but no deduplication will be done","order":0,"visible":false}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":">","tool_category_name":"Recon","container":{"image":"quay.io/trickest/vita:0.1.16","command":["vita","\"${@:","1:$#-1}\"",">","\"${@:","$#:1}\""]}},{"id":"28d6f20c-c3bd-4d57-9012-1a7611ebc4ff","name":"getjs-1","type":"TOOL","bee_type":"medium","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":20014.720703125,"y":5228.2939453125},"label":"getjs"},"inputs":{"url":{"type":"STRING","command":"--url","description":"The url to get the javascript sources from","order":0,"visible":true},"no-color":{"type":"BOOLEAN","command":"--nocolors","description":"Don't color the output","order":0,"visible":false},"complete-urls":{"type":"BOOLEAN","command":"--complete","description":"Complete the urls. e.g. /js/index.js -> https://example.com/js/index.js","order":0,"value":true,"visible":true},"input-url-file":{"type":"FILE","command":"--input","workerConnected":true,"description":"Input file with urls","order":0,"value":"in/recursively-cat-all-3/output.txt","visible":true},"request-timeout":{"type":"STRING","command":"--timeout","description":"The request timeout. Default: 10 (secs)","order":0,"visible":false},"custom-request-header":{"type":"STRING","command":"--header","description":"Custom request header(s). -H \"Authorization: Bearer token\"","order":0,"visible":false},"skip-ssl-verification":{"type":"BOOLEAN","command":"--insecure","description":"Skip SSL certificate verification. Use when the cert is expired or invalid","order":0,"visible":false},"filter-non-existing-files":{"type":"BOOLEAN","command":"--resolve","description":"Resolve the output and filter out the non existing files (Can only be used in combination with --complete)","order":0,"visible":false}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"--output","tool_category_name":"Discovery","container":{"image":"quay.io/trickest/getjs:04c72bf","command":["getJS"]}},{"id":"2c14c93a-6a79-4a9c-a351-3d4cec62162f","name":"dsieve-1","type":"TOOL","bee_type":"medium","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":-7506.54931640625,"y":530.005126953125},"label":"dsieve"},"inputs":{"top":{"type":"STRING","command":"-top","description":"Only consider top X subdomains of a certain level and return all their subdomains","order":0,"value":"5","visible":true},"input":{"type":"STRING","command":"-i","description":"Input url or domain","order":0,"visible":false},"input-file":{"type":"FILE","command":"-if","workerConnected":true,"description":"Input file path, one url/domain per line.","order":0,"value":"in/recursively-cat-all-1/output.txt","visible":true},"filter-level":{"type":"STRING","command":"-f","description":"Filter domain level. Use python slice notation to select range.","order":0,"value":"3","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"-o","tool_category_name":"Utilities","container":{"image":"quay.io/trickest/dsieve:v1.1.1","command":["dsieve"]}},{"id":"2c14c93a-6a79-4a9c-a351-3d4cec62162f","name":"dsieve-2","type":"TOOL","bee_type":"medium","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":-7718.33447265625,"y":2654.88525390625},"label":"dsieve"},"inputs":{"top":{"type":"STRING","command":"-top","description":"Only consider top X subdomains of a certain level and return all their subdomains","order":0,"value":"5","visible":true},"input":{"type":"STRING","command":"-i","description":"Input url or domain","order":0,"visible":false},"input-file":{"type":"FILE","command":"-if","workerConnected":true,"description":"Input file path, one url/domain per line.","order":0,"value":"in/recursively-cat-all-1/output.txt","visible":true},"filter-level":{"type":"STRING","command":"-f","description":"Filter domain level. Use python slice notation to select range.","order":0,"value":"4","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"-o","tool_category_name":"Utilities","container":{"image":"quay.io/trickest/dsieve:v1.1.1","command":["dsieve"]}},{"id":"2c14c93a-6a79-4a9c-a351-3d4cec62162f","name":"dsieve-3","type":"TOOL","bee_type":"medium","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":-7601.25634765625,"y":4574.945068359375},"label":"dsieve"},"inputs":{"top":{"type":"STRING","command":"-top","description":"Only consider top X subdomains of a certain level and return all their subdomains","order":0,"value":"5","visible":true},"input":{"type":"STRING","command":"-i","description":"Input url or domain","order":0,"visible":false},"input-file":{"type":"FILE","command":"-if","workerConnected":true,"description":"Input file path, one url/domain per line.","order":0,"value":"in/recursively-cat-all-1/output.txt","visible":true},"filter-level":{"type":"STRING","command":"-f","description":"Filter domain level. Use python slice notation to select range.","order":0,"value":"5","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"-o","tool_category_name":"Utilities","container":{"image":"quay.io/trickest/dsieve:v1.1.1","command":["dsieve"]}},{"id":"81c2dc94-64d1-4415-9c2d-61bdaf9aa5a8","name":"cariddi-1","type":"TOOL","bee_type":"large","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":23623.400390625,"y":2228.6298828125},"label":"cariddi"},"inputs":{"err":{"type":"BOOLEAN","command":"-err","description":"Hunt for errors in websites.","order":1,"visible":false},"json":{"type":"BOOLEAN","command":"-json","description":"Print the output as JSON in stdout.","order":1,"value":true,"visible":true},"debug":{"type":"BOOLEAN","command":"-debug","description":"Print debug information while crawling.","order":1,"visible":false},"plain":{"type":"BOOLEAN","command":"-plain","description":"Print only the results.","order":1,"visible":false},"proxy":{"type":"STRING","command":"-proxy","description":"Set a Proxy to be used (http and socks5 supported).","order":1,"visible":false},"domains":{"type":"FILE","workerConnected":true,"description":"List of domains to scan","order":0,"value":"in/recursively-cat-all-3/output.txt","visible":true},"headers":{"type":"STRING","command":"-headers","description":"Use custom headers for each request E.g. \"Cookie: auth=yes;;Client: type=2\".","order":1,"value":"User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36","visible":true},"timeout":{"type":"STRING","command":"-t","description":"Set timeout for the requests. (default 10)","order":1,"visible":false},"insecure":{"type":"BOOLEAN","command":"-insecure","description":"Ignore invalid HTTPS certificates","order":1,"visible":true},"hunt-info":{"type":"BOOLEAN","command":"-info","description":"Hunt for useful informations in websites.","order":1,"value":true,"visible":true},"intensive":{"type":"BOOLEAN","command":"-intensive","description":"Crawl searching for resources matching 2nd level domain.","order":1,"visible":false},"user-agent":{"type":"STRING","command":"-ua","description":"Use a custom User Agent.","order":1,"visible":false},"headersfile":{"type":"FILE","command":"-headersfile","description":"Read from an external file custom headers (same format of headers flag).","order":1,"visible":false},"hunt-secrets":{"type":"BOOLEAN","command":"-s","description":"Hunt for secrets.","order":1,"value":true,"visible":true},"random-agent":{"type":"BOOLEAN","command":"-rua","description":"Use a random browser user agent on every request.","order":1,"visible":false},"external-file":{"type":"FILE","command":"-ef","description":"Use an external file (txt, one per line) to use custom parameters for endpoints hunting.","order":1,"visible":false},"juicy-endpoint":{"type":"BOOLEAN","command":"-e","description":"Hunt for juicy endpoints.","order":1,"value":true,"visible":true},"juicy-extensions":{"type":"STRING","command":"-ext","description":"Hunt for juicy file extensions. Integer from 1(juicy) to 7(not juicy).","order":1,"visible":false},"concurrency-level":{"type":"STRING","command":"-c","description":"Concurrency level. (default 20)","order":1,"value":"50","visible":true},"ignore-url-element":{"type":"STRING","command":"-i","description":"Ignore the URL containing at least one of the elements of this array.","order":1,"visible":false},"delay-between-crawl":{"type":"STRING","command":"-d","description":"Delay between a page crawled and another.","order":1,"visible":false},"custom-regex-secrets":{"type":"FILE","command":"-sf","description":"Use an external file (txt, one per line) to use custom regexes for secrets hunting.","order":1,"visible":false},"ignore-url-element-file":{"type":"FILE","command":"-it","description":"Ignore the URL containing at least one of the lines of this file.","order":1,"visible":false}},"outputs":{"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":">","tool_category_name":"Discovery","container":{"image":"quay.io/trickest/cariddi:v1.3.1","command":["cat","\"${@:","1:1}\"","|","cariddi","\"${@:","2:$#-2}\"","-ot","output","&&","mv","output-cariddi/output.*.txt","\"${@:","$#:1}\""]}},{"id":"81c2dc94-64d1-4415-9c2d-61bdaf9aa5a8","name":"cariddi-2","type":"TOOL","bee_type":"large","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":23623.400390625,"y":4287.31005859375},"label":"cariddi"},"inputs":{"err":{"type":"BOOLEAN","command":"-err","description":"Hunt for errors in websites.","order":1,"visible":false},"json":{"type":"BOOLEAN","command":"-json","description":"Print the output as JSON in stdout.","order":1,"value":true,"visible":true},"debug":{"type":"BOOLEAN","command":"-debug","description":"Print debug information while crawling.","order":1,"visible":false},"plain":{"type":"BOOLEAN","command":"-plain","description":"Print only the results.","order":1,"visible":false},"proxy":{"type":"STRING","command":"-proxy","description":"Set a Proxy to be used (http and socks5 supported).","order":1,"visible":false},"domains":{"type":"FILE","workerConnected":true,"description":"List of domains to scan","order":0,"value":"in/getjs-1/output.txt","visible":true},"headers":{"type":"STRING","command":"-headers","description":"Use custom headers for each request E.g. \"Cookie: auth=yes;;Client: type=2\".","order":1,"value":"User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36","visible":true},"timeout":{"type":"STRING","command":"-t","description":"Set timeout for the requests. (default 10)","order":1,"visible":false},"insecure":{"type":"BOOLEAN","command":"-insecure","description":"Ignore invalid HTTPS certificates","order":1,"visible":true},"hunt-info":{"type":"BOOLEAN","command":"-info","description":"Hunt for useful informations in websites.","order":1,"value":true,"visible":true},"intensive":{"type":"BOOLEAN","command":"-intensive","description":"Crawl searching for resources matching 2nd level domain.","order":1,"visible":false},"user-agent":{"type":"STRING","command":"-ua","description":"Use a custom User Agent.","order":1,"visible":false},"headersfile":{"type":"FILE","command":"-headersfile","description":"Read from an external file custom headers (same format of headers flag).","order":1,"visible":false},"hunt-secrets":{"type":"BOOLEAN","command":"-s","description":"Hunt for secrets.","order":1,"value":true,"visible":true},"random-agent":{"type":"BOOLEAN","command":"-rua","description":"Use a random browser user agent on every request.","order":1,"visible":false},"external-file":{"type":"FILE","command":"-ef","description":"Use an external file (txt, one per line) to use custom parameters for endpoints hunting.","order":1,"visible":false},"juicy-endpoint":{"type":"BOOLEAN","command":"-e","description":"Hunt for juicy endpoints.","order":1,"value":true,"visible":true},"juicy-extensions":{"type":"STRING","command":"-ext","description":"Hunt for juicy file extensions. Integer from 1(juicy) to 7(not juicy).","order":1,"visible":false},"concurrency-level":{"type":"STRING","command":"-c","description":"Concurrency level. (default 20)","order":1,"value":"50","visible":true},"ignore-url-element":{"type":"STRING","command":"-i","description":"Ignore the URL containing at least one of the elements of this array.","order":1,"visible":false},"delay-between-crawl":{"type":"STRING","command":"-d","description":"Delay between a page crawled and another.","order":1,"visible":false},"custom-regex-secrets":{"type":"FILE","command":"-sf","description":"Use an external file (txt, one per line) to use custom regexes for secrets hunting.","order":1,"visible":false},"ignore-url-element-file":{"type":"FILE","command":"-it","description":"Ignore the URL containing at least one of the lines of this file.","order":1,"visible":false}},"outputs":{"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":">","tool_category_name":"Discovery","container":{"image":"quay.io/trickest/cariddi:v1.3.1","command":["cat","\"${@:","1:1}\"","|","cariddi","\"${@:","2:$#-2}\"","-ot","output","&&","mv","output-cariddi/output.*.txt","\"${@:","$#:1}\""]}},{"id":"be9935e6-a952-40c9-aaed-82dbdfa339f0","name":"puredns-1","type":"TOOL","bee_type":"large","workerConnected":"file-splitter-1","meta":{"coordinates":{"x":-18744.115234375,"y":5173.94189453125},"label":"puredns"},"inputs":{"mode":{"type":"STRING","description":"Available modes: bruteforce, resolve","order":0,"value":"bruteforce","visible":true},"quiet":{"type":"BOOLEAN","command":"--quiet","description":"quiet mode","order":3,"visible":false},"domain":{"type":"STRING","workerConnected":true,"description":"Domain name (available in 'bruteforce' mode only)","order":2,"value":"in/file-splitter-1:item","visible":true},"domains":{"type":"FILE","command":"--domains","description":"text file containing domains to bruteforce","order":3,"visible":false},"threads":{"type":"STRING","command":"--threads","description":"number of threads to use while filtering wildcards (default 100)","order":3,"value":"200","visible":true},"wordlist":{"type":"FILE","description":"Wordlist used for bruteforcing in 'bruteforce' mode or list of domains in 'resolve' mode","order":1,"value":"in/http-input-3/subdomains.txt","visible":true},"resolvers":{"type":"FILE","command":"--resolvers","description":"text file containing public resolvers","order":3,"value":"in/http-input-1/resolvers.txt","visible":true},"rate-limit":{"type":"STRING","command":"--rate-limit","description":"limit total queries per second for public resolvers (0 = unlimited) (default unlimited)","order":3,"visible":false},"trusted-only":{"type":"BOOLEAN","command":"--trusted-only","description":"use only trusted resolvers (implies --skip-validation)","order":3,"visible":false},"skip-sanitize":{"type":"BOOLEAN","command":"--skip-sanitize","description":"do not sanitize the list of domains to test","order":3,"visible":false},"wildcard-batch":{"type":"STRING","command":"--wildcard-batch","description":"number of subdomains to test for wildcards in a single batch (0 = unlimited) (default unlimited)","order":3,"visible":false},"wildcard-tests":{"type":"STRING","command":"--wildcard-tests","description":"number of tests to perform to detect DNS load balancing (default 3)","order":3,"visible":false},"skip-validation":{"type":"BOOLEAN","command":"--skip-validation","description":"do not validate results with trusted resolvers","order":3,"visible":false},"resolvers-trusted":{"type":"FILE","command":"--resolvers-trusted","description":"text file containing trusted resolvers","order":3,"value":"in/http-input-2/resolvers-trusted.txt","visible":true},"rate-limit-trusted":{"type":"STRING","command":"--rate-limit-trusted","description":"limit total queries per second for trusted resolvers (0 = unlimited) (default 500)","order":3,"visible":false},"skip-wildcard-filter":{"type":"BOOLEAN","command":"--skip-wildcard-filter","description":"do not perform wildcard detection and filtering","order":3,"visible":false}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"-w","tool_category_name":"Recon","container":{"image":"quay.io/trickest/puredns:v2.1.1","command":["puredns"]}},{"id":"be9935e6-a952-40c9-aaed-82dbdfa339f0","name":"puredns-2","type":"TOOL","bee_type":"large","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":3458.18505859375,"y":-8.173248291015625},"label":"puredns"},"inputs":{"mode":{"type":"STRING","description":"Available modes: bruteforce, resolve","order":0,"value":"bruteforce","visible":true},"quiet":{"type":"BOOLEAN","command":"--quiet","description":"quiet mode","order":3,"visible":false},"domain":{"type":"STRING","description":"Domain name (available in 'bruteforce' mode only)","order":2,"visible":false},"domains":{"type":"FILE","command":"--domains","workerConnected":true,"description":"text file containing domains to bruteforce","order":3,"value":"in/dsieve-1/output.txt","visible":true},"threads":{"type":"STRING","command":"--threads","description":"number of threads to use while filtering wildcards (default 100)","order":3,"value":"200","visible":true},"wordlist":{"type":"FILE","description":"Wordlist used for bruteforcing in 'bruteforce' mode or list of domains in 'resolve' mode","order":1,"value":"in/sort-uniq-3/output.txt","visible":true},"resolvers":{"type":"FILE","command":"--resolvers","description":"text file containing public resolvers","order":3,"value":"in/http-input-5/resolvers.txt","visible":true},"rate-limit":{"type":"STRING","command":"--rate-limit","description":"limit total queries per second for public resolvers (0 = unlimited) (default unlimited)","order":3,"visible":false},"trusted-only":{"type":"BOOLEAN","command":"--trusted-only","description":"use only trusted resolvers (implies --skip-validation)","order":3,"visible":false},"skip-sanitize":{"type":"BOOLEAN","command":"--skip-sanitize","description":"do not sanitize the list of domains to test","order":3,"visible":false},"wildcard-batch":{"type":"STRING","command":"--wildcard-batch","description":"number of subdomains to test for wildcards in a single batch (0 = unlimited) (default unlimited)","order":3,"visible":false},"wildcard-tests":{"type":"STRING","command":"--wildcard-tests","description":"number of tests to perform to detect DNS load balancing (default 3)","order":3,"visible":false},"skip-validation":{"type":"BOOLEAN","command":"--skip-validation","description":"do not validate results with trusted resolvers","order":3,"visible":false},"resolvers-trusted":{"type":"FILE","command":"--resolvers-trusted","description":"text file containing trusted resolvers","order":3,"value":"in/http-input-6/resolvers-trusted.txt","visible":true},"rate-limit-trusted":{"type":"STRING","command":"--rate-limit-trusted","description":"limit total queries per second for trusted resolvers (0 = unlimited) (default 500)","order":3,"visible":false},"skip-wildcard-filter":{"type":"BOOLEAN","command":"--skip-wildcard-filter","description":"do not perform wildcard detection and filtering","order":3,"visible":false}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"-w","tool_category_name":"Recon","container":{"image":"quay.io/trickest/puredns:v2.1.1","command":["puredns"]}},{"id":"be9935e6-a952-40c9-aaed-82dbdfa339f0","name":"puredns-3","type":"TOOL","bee_type":"large","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":3458.18505859375,"y":2857.774658203125},"label":"puredns"},"inputs":{"mode":{"type":"STRING","description":"Available modes: bruteforce, resolve","order":0,"value":"bruteforce","visible":true},"quiet":{"type":"BOOLEAN","command":"--quiet","description":"quiet mode","order":3,"visible":false},"domain":{"type":"STRING","description":"Domain name (available in 'bruteforce' mode only)","order":2,"visible":false},"domains":{"type":"FILE","command":"--domains","workerConnected":true,"description":"text file containing domains to bruteforce","order":3,"value":"in/dsieve-2/output.txt","visible":true},"threads":{"type":"STRING","command":"--threads","description":"number of threads to use while filtering wildcards (default 100)","order":3,"value":"200","visible":true},"wordlist":{"type":"FILE","description":"Wordlist used for bruteforcing in 'bruteforce' mode or list of domains in 'resolve' mode","order":1,"value":"in/sort-uniq-4/output.txt","visible":true},"resolvers":{"type":"FILE","command":"--resolvers","description":"text file containing public resolvers","order":3,"value":"in/http-input-5/resolvers.txt","visible":true},"rate-limit":{"type":"STRING","command":"--rate-limit","description":"limit total queries per second for public resolvers (0 = unlimited) (default unlimited)","order":3,"visible":false},"trusted-only":{"type":"BOOLEAN","command":"--trusted-only","description":"use only trusted resolvers (implies --skip-validation)","order":3,"visible":false},"skip-sanitize":{"type":"BOOLEAN","command":"--skip-sanitize","description":"do not sanitize the list of domains to test","order":3,"visible":false},"wildcard-batch":{"type":"STRING","command":"--wildcard-batch","description":"number of subdomains to test for wildcards in a single batch (0 = unlimited) (default unlimited)","order":3,"visible":false},"wildcard-tests":{"type":"STRING","command":"--wildcard-tests","description":"number of tests to perform to detect DNS load balancing (default 3)","order":3,"visible":false},"skip-validation":{"type":"BOOLEAN","command":"--skip-validation","description":"do not validate results with trusted resolvers","order":3,"visible":false},"resolvers-trusted":{"type":"FILE","command":"--resolvers-trusted","description":"text file containing trusted resolvers","order":3,"value":"in/http-input-6/resolvers-trusted.txt","visible":true},"rate-limit-trusted":{"type":"STRING","command":"--rate-limit-trusted","description":"limit total queries per second for trusted resolvers (0 = unlimited) (default 500)","order":3,"visible":false},"skip-wildcard-filter":{"type":"BOOLEAN","command":"--skip-wildcard-filter","description":"do not perform wildcard detection and filtering","order":3,"visible":false}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"-w","tool_category_name":"Recon","container":{"image":"quay.io/trickest/puredns:v2.1.1","command":["puredns"]}},{"id":"be9935e6-a952-40c9-aaed-82dbdfa339f0","name":"puredns-4","type":"TOOL","bee_type":"large","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":3458.18505859375,"y":5609.365234375},"label":"puredns"},"inputs":{"mode":{"type":"STRING","description":"Available modes: bruteforce, resolve","order":0,"value":"bruteforce","visible":true},"quiet":{"type":"BOOLEAN","command":"--quiet","description":"quiet mode","order":3,"visible":false},"domain":{"type":"STRING","description":"Domain name (available in 'bruteforce' mode only)","order":2,"visible":false},"domains":{"type":"FILE","command":"--domains","workerConnected":true,"description":"text file containing domains to bruteforce","order":3,"value":"in/dsieve-3/output.txt","visible":true},"threads":{"type":"STRING","command":"--threads","description":"number of threads to use while filtering wildcards (default 100)","order":3,"value":"200","visible":true},"wordlist":{"type":"FILE","description":"Wordlist used for bruteforcing in 'bruteforce' mode or list of domains in 'resolve' mode","order":1,"value":"in/sort-uniq-5/output.txt","visible":true},"resolvers":{"type":"FILE","command":"--resolvers","description":"text file containing public resolvers","order":3,"value":"in/http-input-5/resolvers.txt","visible":true},"rate-limit":{"type":"STRING","command":"--rate-limit","description":"limit total queries per second for public resolvers (0 = unlimited) (default unlimited)","order":3,"visible":false},"trusted-only":{"type":"BOOLEAN","command":"--trusted-only","description":"use only trusted resolvers (implies --skip-validation)","order":3,"visible":false},"skip-sanitize":{"type":"BOOLEAN","command":"--skip-sanitize","description":"do not sanitize the list of domains to test","order":3,"visible":false},"wildcard-batch":{"type":"STRING","command":"--wildcard-batch","description":"number of subdomains to test for wildcards in a single batch (0 = unlimited) (default unlimited)","order":3,"visible":false},"wildcard-tests":{"type":"STRING","command":"--wildcard-tests","description":"number of tests to perform to detect DNS load balancing (default 3)","order":3,"visible":false},"skip-validation":{"type":"BOOLEAN","command":"--skip-validation","description":"do not validate results with trusted resolvers","order":3,"visible":false},"resolvers-trusted":{"type":"FILE","command":"--resolvers-trusted","description":"text file containing trusted resolvers","order":3,"value":"in/http-input-6/resolvers-trusted.txt","visible":true},"rate-limit-trusted":{"type":"STRING","command":"--rate-limit-trusted","description":"limit total queries per second for trusted resolvers (0 = unlimited) (default 500)","order":3,"visible":false},"skip-wildcard-filter":{"type":"BOOLEAN","command":"--skip-wildcard-filter","description":"do not perform wildcard detection and filtering","order":3,"visible":false}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"-w","tool_category_name":"Recon","container":{"image":"quay.io/trickest/puredns:v2.1.1","command":["puredns"]}},{"id":"6c938174-439b-451e-9d05-2b053bd02529","name":"findomain-1","type":"TOOL","bee_type":"small","meta":{"coordinates":{"x":-18744.11474609375,"y":1293.7303466796875},"label":"findomain"},"inputs":{"pscan":{"type":"BOOLEAN","command":"--pscan","description":"Enable port scanner.","order":1,"visible":false},"quiet":{"type":"BOOLEAN","command":"--quiet","description":"Remove informative messages but show fatal errors or subdomains not found message.","order":1,"visible":false},"aempty":{"type":"BOOLEAN","command":"--aempty","description":"Send alert to webhooks still when no new subdomains have been found.","order":1,"visible":false},"filter":{"type":"STRING","command":"--filter","description":"Filter subdomains containing specifics strings.","order":1,"visible":false},"jobname":{"type":"STRING","command":"--jobname","description":"Use an database identifier for jobs. It is useful when you want to relate different targets into a same job name. To extract the data by job name identifier, use the query-jobname option.","order":1,"visible":false},"resolved":{"type":"BOOLEAN","command":"--resolved","description":"Show/write only resolved subdomains.","order":1,"visible":false},"wordlist":{"type":"FILE","command":"--wordlist","description":"Wordlist file to use in the bruteforce process. Using it option automatically enables bruteforce mode.","order":1,"visible":false},"ipv6-only":{"type":"BOOLEAN","command":"--ipv6-only","description":"Perform a IPv6 lookup only","order":1,"visible":false},"last-port":{"type":"STRING","command":"--lport","description":"Last port to scan. Default 1000.","order":1,"visible":false},"randomize":{"type":"BOOLEAN","command":"--randomize","description":"Enable randomization when reading targets from files.","order":1,"visible":false},"resolvers":{"type":"FILE","command":"--resolvers","description":"Path to a file containing a list of DNS IP address. If no specified then Google, Cloudflare and Quad9 DNS servers are used.","order":1,"visible":false},"enable-dot":{"type":"BOOLEAN","command":"--enable-dot","description":"Enable DNS over TLS for resolving subdomains IPs.","order":1,"visible":false},"no-monitor":{"type":"BOOLEAN","command":"--no-monitor","description":"Disable monitoring mode while saving data to database.","order":1,"visible":false},"no-resolve":{"type":"BOOLEAN","command":"--no-resolve","description":"Disable pre-screenshotting jobs (http check and ip discover) when used as resolver to take screenshots.","order":1,"visible":false},"rate-limit":{"type":"STRING","command":"--rate-limit","description":"Set the rate limit in seconds for each target during enumeration.","order":1,"visible":false},"subdomains":{"type":"FILE","command":"--file","description":"Use a list of subdomains writen in a file as input.","order":1,"value":"in/eof-raw-data-1/output.txt","visible":true},"as-resolver":{"type":"BOOLEAN","command":"--as-resolver","description":"Use Findomain as resolver for a list of domains in a file.","order":1,"visible":false},"config-file":{"type":"FILE","command":"--config","description":"Use a configuration file. The default configuration file is findomain and the format can be toml, json, hjson, ini or yml.","order":1,"visible":false},"http-status":{"type":"BOOLEAN","command":"--http-status","description":"Check the HTTP status of subdomains.","order":1,"visible":false},"target-host":{"type":"STRING","command":"--target","description":"Target host.","order":1,"visible":false},"user-agents":{"type":"FILE","command":"--ua","description":"Path to file containing user agents strings.","order":1,"visible":false},"http-timeout":{"type":"STRING","command":"--http-timeout","description":"Value in seconds for the HTTP Status check of subdomains. Default 5","order":1,"visible":false},"initial-port":{"type":"STRING","command":"--iport","description":"Initial port to scan. Default 0.","order":1,"visible":false},"no-wildcards":{"type":"BOOLEAN","command":"--no-wildcards","description":"Disable wilcard detection when resolving subdomains.","order":1,"visible":false},"verbose-mode":{"type":"BOOLEAN","command":"--verbose","description":"Enable verbose mode (useful to debug problems).","order":1,"visible":false},"postgres-host":{"type":"STRING","command":"--postgres-host","description":"Postgresql host.","order":1,"visible":false},"postgres-port":{"type":"STRING","command":"--postgres-port","description":"Postgresql port.","order":1,"visible":false},"postgres-user":{"type":"STRING","command":"--postgres-user","description":"Postgresql username.","order":1,"visible":false},"query-jobname":{"type":"STRING","command":"--query-jobname","description":"Extract all the subdomains from the database where the job name is the specified using the jobname option.","order":1,"visible":false},"chrome-sandbox":{"type":"BOOLEAN","command":"--sandbox","description":"Enable Chrome/Chromium sandbox. It is disabled by default because a big number of users run the tool using the root user by default. Make sure you are not running the program as root user before using this option.","order":1,"visible":false},"monitoring-mde":{"type":"BOOLEAN","command":"--monitoring-flag","description":"Activate Findomain monitoring mode","order":1,"visible":false},"query-database":{"type":"BOOLEAN","command":"--query-database","description":"Query the findomain database to search subdomains that have already been discovered.","order":1,"visible":false},"exclude-sources":{"type":"STRING","command":"--exclude-sources","description":"Exclude sources from searching subdomains in. [possible values: certspotter, crtsh, virustotal, sublist3r, facebook, spyse, bufferover, threatcrowd, virustotalapikey, anubis, urlscan, securitytrails, threatminer,archiveorg, c99, ctsearch]","order":1,"visible":false},"show-resolved-ip":{"type":"BOOLEAN","command":"--ip","description":"Show/write the ip address of resolved subdomains.","order":1,"visible":false},"import-subdomains":{"type":"FILE","command":"--import-subdomains","description":"Import subdomains from one or multiple files. Subdomains need to be one per line in the file to import.","order":1,"visible":false},"postgres-database":{"type":"STRING","command":"--postgres-database","description":"Postgresql database.","order":1,"visible":false},"postgres-password":{"type":"STRING","command":"--postgres-password","description":"Postgresql password.","order":1,"visible":false},"external-subdomains":{"type":"BOOLEAN","command":"--external-subdomains","description":"Get external subdomains with amass and subfinder","order":1,"visible":false},"exclude-subdomain-strings":{"type":"STRING","command":"--exclude","description":"Exclude subdomains containing specifics strings.","order":1,"visible":false}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"--unique-output","tool_category_name":"Recon","container":{"image":"quay.io/trickest/findomain:5.1.1","command":["findomain"]}},{"id":"cdd8b77e-c156-4dc6-9643-8cb038e9c144","name":"sort-uniq-1","type":"SCRIPT","bee_type":"large","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":8289.986328125,"y":2911.384765625},"label":"results"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"file/puredns-2":{"type":"FILE","workerConnected":true,"order":0,"value":"in/puredns-2/output.txt","visible":true},"file/puredns-3":{"type":"FILE","workerConnected":true,"order":0,"value":"in/puredns-3/output.txt","visible":true},"file/puredns-4":{"type":"FILE","workerConnected":true,"order":0,"value":"in/puredns-4/output.txt","visible":true},"file/recursively-cat-all-1":{"type":"FILE","workerConnected":true,"order":0,"value":"in/recursively-cat-all-1/output.txt","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"find in -type f -exec cat {} + | sort -n | uniq | tee out/output.txt"}},{"id":"cdd8b77e-c156-4dc6-9643-8cb038e9c144","name":"sort-uniq-2","type":"SCRIPT","bee_type":"small","meta":{"coordinates":{"x":-18744.11459350586,"y":167.853515625},"label":"sort-uniq"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"folder/assetfinder-2":{"type":"FOLDER","order":0,"value":"in/assetfinder-2/","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"find in -type f -exec cat {} + | sort -n | uniq | tee out/output.txt"},"command":"bash"},{"id":"cdd8b77e-c156-4dc6-9643-8cb038e9c144","name":"sort-uniq-3","type":"SCRIPT","bee_type":"medium","meta":{"coordinates":{"x":1021.2300109863281,"y":408.9052734375},"label":"sort-uniq"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"file/http-input-9":{"type":"FILE","order":0,"value":"in/http-input-9/level2.txt","visible":true},"file/http-input-12":{"type":"FILE","order":0,"value":"in/http-input-12/level2.txt","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"find in -type f -exec cat {} + | sort -n | uniq | tee out/output.txt"}},{"id":"cdd8b77e-c156-4dc6-9643-8cb038e9c144","name":"sort-uniq-4","type":"SCRIPT","bee_type":"medium","meta":{"coordinates":{"x":1116.7417297363281,"y":3241.78173828125},"label":"sort-uniq"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"file/http-input-7":{"type":"FILE","order":0,"value":"in/http-input-7/level3.txt","visible":true},"file/http-input-10":{"type":"FILE","order":0,"value":"in/http-input-10/level3.txt","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"find in -type f -exec cat {} + | sort -n | uniq | tee out/output.txt"}},{"id":"cdd8b77e-c156-4dc6-9643-8cb038e9c144","name":"sort-uniq-5","type":"SCRIPT","bee_type":"medium","meta":{"coordinates":{"x":1048.9936828613281,"y":6032.942626953125},"label":"sort-uniq"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"file/http-input-8":{"type":"FILE","order":0,"value":"in/http-input-8/levels4plus.txt","visible":true},"file/http-input-11":{"type":"FILE","order":0,"value":"in/http-input-11/levels4plus.txt","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"find in -type f -exec cat {} + | sort -n | uniq | tee out/output.txt"}},{"id":"c8637986-e6e8-47b1-9fa4-fc1f96a22199","name":"subfinder-1","type":"TOOL","bee_type":"small","meta":{"coordinates":{"x":-18744.11474609375,"y":3565.484130859375},"label":"subfinder"},"inputs":{"threads":{"type":"STRING","command":"-t","description":"number of concurrent goroutines for resolving (-active only) (default 10)","order":0,"value":"100","visible":true},"domain-list":{"type":"FILE","command":"-list","description":"file containing list of domains for subdomain discovery","order":0,"value":"in/eof-raw-data-1/output.txt","visible":true},"Use-all-enumeration-sources":{"type":"BOOLEAN","command":"-all","description":"Use all sources (slow) for enumeration","order":0,"value":true,"visible":true},"proxy":{"type":"STRING","command":"-proxy","description":"http proxy to use with subfinder","order":0,"visible":false},"config":{"type":"FILE","command":"-config","description":"flag config file","order":0,"visible":false},"domain":{"type":"STRING","command":"-domain","description":"domains to find subdomains for (comma-separated)","order":0,"visible":true},"sources":{"type":"STRING","command":"-sources","description":"sources to use for discovery (example: crtsh,github)","order":0,"visible":false},"timeout":{"type":"STRING","command":"-timeout","description":"Seconds to wait before timing out (default 30)","order":0,"visible":false},"verbose":{"type":"BOOLEAN","command":"-v","description":"show verbose output","order":0,"visible":false},"No-color":{"type":"BOOLEAN","command":"-no-color","description":"disable color in output","order":0,"visible":false},"max-time":{"type":"STRING","command":"-max-time","description":"Minutes to wait for enumeration results (default 10)","order":0,"visible":false},"resolvers":{"type":"STRING","command":"-r","description":"Comma-separated list of resolvers to use","order":0,"visible":false},"include-ip":{"type":"BOOLEAN","command":"-ip","description":"include host IP in output (-active only)","order":0,"visible":false},"rate-limit":{"type":"STRING","command":"-rate-limit","description":"maximum number of http requests to send per second","order":0,"visible":false},"rate-limits":{"type":"STRING","command":"-rate-limits","description":"maximum number of http requests to send per second four providers in key=value format. Default [\"github=30/m\", \"fullhunt=60/m\", \"robtex=18446744073709551615/ms\", \"securitytrails=1/s\", \"shodan=1/s\", \"virustotal=4/m\", \"hackertarget=2/s\", \"waybackarchive=15/m\", \"whoisxmlapi=50/s\"]","order":0,"visible":false},"exclude-sources":{"type":"STRING","command":"-exclude-sources","description":"sources to exclude from enumeration (example: archiveis,zoomeye)","order":0,"visible":false},"provider-config":{"type":"FILE","command":"-provider-config","description":"provider config file","order":0,"visible":false},"list-of-resolvers":{"type":"FILE","command":"-rlist","description":"file containing list of resolvers to use","order":0,"visible":false},"recursive-subdomains":{"type":"BOOLEAN","command":"-recursive","description":"use only recursive sources","order":0,"visible":false},"Only-subdomains-output":{"type":"BOOLEAN","command":"-silent","description":"Show only subdomains in output","order":0,"visible":false},"remove-dead-subdomains":{"type":"BOOLEAN","command":"-active","description":"display active subdomains only (remove wildcard)","order":0,"visible":false}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"-output","tool_category_name":"Recon","container":{"image":"quay.io/trickest/subfinder:v2.6.3","command":["subfinder"]}},{"id":"8d0c18c9-fc96-4e41-a06b-eb214bea4a95","name":"assetfinder-2","type":"TOOL","bee_type":"small","workerConnected":"file-splitter-1","meta":{"coordinates":{"x":-21939.43701171875,"y":167.853515625},"label":"assetfinder"},"inputs":{"domain":{"type":"STRING","workerConnected":true,"description":"Specify domain name","order":1,"value":"in/file-splitter-1:item","visible":true},"subs-only":{"type":"BOOLEAN","command":"--subs-only","description":"Only include subdomains of search domain","order":0,"visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":">","tool_category_name":"Recon","container":{"image":"quay.io/trickest/assetfinder:4e95d87","command":["assetfinder","\"${@:","1:$#-1}\"","|","tee","\"${@:","$#:1}\""]}},{"id":"ffe8b208-e615-46e6-b580-a16df3eba097","name":"custom-script-1","type":"SCRIPT","bee_type":"small","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":-19996.03515625,"y":8006.7548828125},"label":"get-json"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"file/shodan-download-1":{"type":"FILE","workerConnected":true,"order":0,"value":"in/shodan-download-1/output.txt","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"cp in/shodan-download-1/output.txt gun.gz\ngunzip gun.gz\ncat gun > out/output.txt"}},{"id":"347e7a77-6c43-4431-b520-ff61ee2c5a30","name":"file-splitter-1","type":"SPLITTER","bee_type":"small","meta":{"coordinates":{"x":-24552.109375,"y":1866.6688232421875},"label":"file-splitter"},"inputs":{"multiple":{"type":"FILE","order":0,"multi":true,"visible":false},"multiple/eof-raw-data-1":{"type":"FILE","order":0,"visible":false}},"outputs":{"output":{"type":"STRING","order":0,"visible":false}}},{"id":"347e7a77-6c43-4431-b520-ff61ee2c5a30","name":"file-splitter-2","type":"SPLITTER","bee_type":"small","meta":{"coordinates":{"x":-24292.25,"y":5923.00390625},"label":"file-splitter"},"inputs":{"multiple":{"type":"FILE","order":0,"multi":true,"visible":false},"multiple/add-line-to-shodan-query-1":{"type":"FILE","order":0,"visible":false}},"outputs":{"output":{"type":"STRING","order":0,"visible":false}}},{"id":"c4eb3c68-d6a1-42f3-997e-11d539b6f005","name":"shodan-download-1","type":"TOOL","bee_type":"small","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":-22135.744140625,"y":8006.7548828125},"label":"shodan-download"},"inputs":{"query":{"type":"STRING","workerConnected":true,"description":"Query for Shodan API.","order":2,"value":"in/file-splitter-2:item","visible":true},"api_key":{"type":"STRING","description":"API key for Shodan API.","order":1,"value":"your_shodan_key","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":">","tool_category_name":"Discovery","container":{"image":"quay.io/trickest/shodan-download:v1.0.0","command":["shodan","init","\"${@:","1:1}\"","&&","shodan","download","scan.json.gz","\"${@:","2:$#-2}\"","&&","mv","*.gz","\"${@:","$#:1}\""]}},{"id":"4e268ca9-b76a-4907-afef-e5095e0be4a4","name":"github-subdomains-1","type":"TOOL","bee_type":"small","meta":{"coordinates":{"x":-18372.60546875,"y":-1639.31494140625},"label":"github-subdomains"},"inputs":{"raw":{"type":"BOOLEAN","command":"-raw","description":"raw output","order":0,"visible":false},"quick":{"type":"BOOLEAN","command":"-q","description":"quick mode, avoid extra searches with languages and noise added","order":0,"visible":false},"domain":{"type":"STRING","command":"-d","description":"domain you are looking for (required)","order":0,"value":"target","visible":true},"tokens":{"type":"STRING","command":"-t","description":"list of tokens separated by comma","order":0,"value":"your_github_key","visible":true},"tokens-file":{"type":"FILE","command":"-t","description":"a file containing 1 token per line","order":0,"visible":false},"extended-mode":{"type":"BOOLEAN","command":"-e","description":"extended mode, also look for example.com","order":0,"value":true,"visible":true},"exit-when-tokens-get-limited":{"type":"BOOLEAN","command":"-k","description":"exit the program when all tokens have been disabled","order":0,"visible":false}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"output_command":"-o","tool_category_name":"Recon","container":{"image":"quay.io/trickest/github-subdomains:a779fc2","command":["github-subdomains"]}},{"id":"f00bd5d5-8b14-49aa-80ac-d70dbff5dcaf","name":"recursively-cat-all-1","type":"SCRIPT","bee_type":"small","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":-15474.21435546875,"y":2439.604736328125},"label":"sort-uniq"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"file/jq-1":{"type":"FILE","workerConnected":true,"order":0,"value":"in/jq-1/output.txt","visible":true},"file/vita-1":{"type":"FILE","order":0,"value":"in/vita-1/output.txt","visible":true},"file/findomain-1":{"type":"FILE","order":0,"value":"in/findomain-1/output.txt","visible":true},"file/sort-uniq-2":{"type":"FILE","order":0,"value":"in/sort-uniq-2/output.txt","visible":true},"file/subfinder-1":{"type":"FILE","order":0,"value":"in/subfinder-1/output.txt","visible":true},"folder/puredns-1":{"type":"FOLDER","order":0,"value":"in/puredns-1/","visible":true},"file/github-subdomains-1":{"type":"FILE","order":0,"value":"in/github-subdomains-1/output.txt","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"find in -type f -exec cat {} + | sort -n | uniq | tee out/output.txt"},"command":"bash"},{"id":"c51f91a7-1d3e-46b8-80ab-c963e6e4eb7b","name":"add-line-to-shodan-query-1","type":"SCRIPT","bee_type":"small","meta":{"coordinates":{"x":-25774.84375,"y":4606.375},"label":"add-line-to-shodan-query"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"file/eof-raw-data-1":{"type":"FILE","order":0,"value":"in/eof-raw-data-1/output.txt","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"find in -type f -exec cat {} + | awk '{ if ($0 != \"\") print \"ssl.cert.subject.cn:\\\"*.\"$0\"\\\"\"}' | tee out/output.txt"},"command":"bash"},{"id":"f00bd5d5-8b14-49aa-80ac-d70dbff5dcaf","name":"recursively-cat-all-3","type":"SCRIPT","bee_type":"medium","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":15046.7490234375,"y":3127.360595703125},"label":"recursively-cat-all"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"file/custom-script-2":{"type":"FILE","workerConnected":true,"order":0,"value":"in/custom-script-2/output.txt","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"find in -type f -exec cat {} + | awk -F\" \" '{print $1}' | tee out/output.txt"}},{"id":"e499376f-7a39-4617-9425-59911266c328","name":"linkfinder-1","type":"TOOL","bee_type":"small","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":23592.185546875,"y":6445.0595703125},"label":"linkfinder"},"inputs":{"cookies":{"type":"STRING","command":"-c","description":"Add cookies to the request","order":0,"visible":false},"input-url":{"type":"STRING","command":"-i","description":"Input a URL to analyze","order":0,"visible":false},"input-file":{"type":"FILE","command":"-i","workerConnected":true,"description":"Input a file to analyze","order":0,"value":"in/recursively-cat-all-3/output.txt","visible":true},"filter-regex":{"type":"STRING","command":"-r","description":"RegEx for filtering purposes against found endpoints (e.g. ^/api/)","order":0,"visible":false},"analyze-entire-domain":{"type":"BOOLEAN","command":"-d","description":"Toggle to use when analyzing an entire domain. Enumerates over all found JS files.","order":0,"visible":false},"use-burp-save-selected-file":{"type":"BOOLEAN","command":"-b","description":"Toggle to use when inputting a Burp 'Save selected' file containing multiple JS files","order":0,"visible":false}},"outputs":{"folder":{"type":"FOLDER","order":0,"visible":false},"file":{"type":"FILE","order":0,"visible":false}},"output_command":">","tool_category_name":"Discovery","container":{"image":"quay.io/trickest/linkfinder:095bb62","command":["python","/app/linkfinder.py","\"${@:","1:$#-1}\"","-o","cli",">","\"${@:","$#:1}\""]}},{"id":"2c1000e5-e865-4173-8a9a-854703e1b2de","name":"zip-to-out-2","type":"SCRIPT","bee_type":"medium","meta":{"coordinates":{"x":30078.8671875,"y":2798.27099609375},"label":"zip-to-out"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"folder/sort-uniq-1":{"type":"FOLDER","order":0,"value":"in/sort-uniq-1/","visible":true},"folder/recursively-cat-all-2":{"type":"FOLDER","order":0,"value":"in/recursively-cat-all-2/","visible":true},"folder/linkfinder-1":{"type":"FOLDER","order":0,"value":"in/linkfinder-1/","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"zip -r output.zip in && mv output.zip out"}},{"id":"f00bd5d5-8b14-49aa-80ac-d70dbff5dcaf","name":"recursively-cat-all-2","type":"SCRIPT","bee_type":"medium","meta":{"coordinates":{"x":26893.466796875,"y":3257.970458984375},"label":"merge-classify"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"folder/cariddi-1":{"type":"FOLDER","order":0,"value":"in/cariddi-1/","visible":true},"folder/cariddi-2":{"type":"FOLDER","order":0,"value":"in/cariddi-2/","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"input_dir=\"in\"\noutput_dir=\"out\"\nfind \"$input_dir\" -type f -exec cat {} + > out/all.txt\nregexes=(\"AWS Access Key\" \"AWS Secret Key\" \"AWS MWS Key\" \"Amazon SNS topic\" \"Facebook Secret Key\" \"Facebook Client ID\" \"Cloudinary Basic Auth\" \"Firebase Database\" \"Twitter Secret Key\" \"Twitter Client ID\" \"Github Personal Access Token\" \"Github OAuth Access Token\" \"Github App Token\" \"Github Refresh Token\" \"LinkedIn Client ID\" \"LinkedIn Secret Key\" \"Slack\" \"Asymmetric Private Key\" \"Google API key\" \"Google (GCP) Service Account\" \"Heroku API key\" \"MailChimp API key\" \"Mailgun API key\" \"PayPal Braintree access token\" \"Picatic API key\" \"SendGrid API Key\" \"Slack Webhook\" \"Stripe API key\" \"Square access token\" \"Square OAuth secret\" \"Twilio API key\" \"Dynatrace token\" \"Shopify shared secret\" \"Shopify access token\" \"Shopify custom app access token\" \"Shopify private app access token\" \"PyPI upload token\" \"Bugsnag API Key\" \"AWS cognito pool\" \"S3 Bucket\" \"Discord Webhook\" \"Google Calendar URI\" \"Google OAuth Access Key\" \"Mapbox Token Disclosure\" \"Microsoft Teams Webhook\" \"Email address\" \"HTML comment\" \"Internal IP address\" \"IPv4 address\" \"BTC address\")\n\nmkdir -p \"$output_dir\"\n\nfor regex_name in \"${regexes[@]}\"; do\n output_file=\"${output_dir}/${regex_name// /_}.txt\"\n echo \"Searching for $regex_name\"\n grep_output=$(find \"$input_dir\" -type f -exec cat {} + | egrep -i \"$regex_name\")\n \n if [[ -n \"$grep_output\" ]]; then\n echo \"$grep_output\" > \"$output_file\"\n fi\ndone"}},{"id":"34845db5-69f3-47c3-89c0-548b45912cbb","name":"eof-raw-data-1","type":"SCRIPT","bee_type":"small","meta":{"coordinates":{"x":-29603.30078125,"y":2343.389892578125},"label":"eof-raw-data"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"cat << \"EOF\" | tee out/output.txt\nexample.com\nsub.example.com"},"command":"bash"},{"id":"ffe8b208-e615-46e6-b580-a16df3eba097","name":"custom-script-2","type":"SCRIPT","bee_type":"small","workerConnected":"file-splitter-2","meta":{"coordinates":{"x":11800.2998046875,"y":3025.110107421875},"label":"custom-script"},"inputs":{"file":{"type":"FILE","order":0,"multi":true,"visible":false},"folder":{"type":"FOLDER","order":0,"multi":true,"visible":false},"file/sort-uniq-1":{"type":"FILE","workerConnected":true,"order":0,"value":"in/sort-uniq-1/output.txt","visible":true}},"outputs":{"file":{"type":"FILE","order":0,"visible":false},"folder":{"type":"FOLDER","order":0,"visible":false}},"script":{"args":[],"image":"quay.io/trickest/base:ubuntu-20.04","source":"# Edit this\n# You are currently inside the /hive directory\n# Input node files/folders are accessible through /hive/in/NODE_ID\n# e.g. cat in/amass-1/output.txt\n# To output a file/folder, write it to the /hive/out directory\n# e.g. echo \"Hello, world!\" | tee out/output.txt\n\n#!/bin/bash\n\n# Check if \"in/sort-uniq-1/output.txt\" exists\nif [ -f \"in/sort-uniq-1/output.txt\" ]; then\n # Read each line, add \"http://\" and filter by the specified domains\n while IFS= read -r line; do\n if [[ $line == *.com || $line == *.io || $line == *.net || $line == *.cloud || $line =~ ^[0-9]+\\.[0-9]+\\.[0-9]+\\.[0-9]+$ || $line == *.co ]]; then\n echo \"http://$line\"\n echo \"https://$line\"\n fi\n done < \"in/sort-uniq-1/output.txt\" > out/output.txt\n\n echo \"Processing complete. Output saved to in/sort-uniq-1/output.txt\"\nelse\n echo \"Error: File 'in/sort-uniq-1/output.txt' not found.\"\nfi\n"},"command":"bash"}],"connections":[{"source":{"id":"output/string-input-1/output"},"destination":{"id":"input/subfinder-1/threads"}},{"source":{"id":"output/boolean-input-5/output"},"destination":{"id":"input/subfinder-1/Use-all-enumeration-sources"}},{"source":{"id":"output/eof-raw-data-1/file"},"destination":{"id":"input/subfinder-1/domain-list"}},{"source":{"id":"output/eof-raw-data-1/file"},"destination":{"id":"input/vita-1/domains-file"}},{"source":{"id":"output/eof-raw-data-1/file"},"destination":{"id":"input/findomain-1/subdomains"}},{"source":{"id":"output/eof-raw-data-1/file"},"destination":{"id":"input/file-splitter-1/multiple/eof-raw-data-1"}},{"source":{"id":"output/assetfinder-2/folder"},"destination":{"id":"input/sort-uniq-2/folder/assetfinder-2"}},{"source":{"id":"output/file-splitter-1/output"},"destination":{"id":"input/assetfinder-2/domain"}},{"source":{"id":"output/sort-uniq-2/file"},"destination":{"id":"input/recursively-cat-all-1/file/sort-uniq-2"}},{"source":{"id":"output/findomain-1/file"},"destination":{"id":"input/recursively-cat-all-1/file/findomain-1"}},{"source":{"id":"output/vita-1/file"},"destination":{"id":"input/recursively-cat-all-1/file/vita-1"}},{"source":{"id":"output/subfinder-1/file"},"destination":{"id":"input/recursively-cat-all-1/file/subfinder-1"}},{"source":{"id":"output/string-input-2/output"},"destination":{"id":"input/puredns-1/mode"}},{"source":{"id":"output/file-splitter-1/output"},"destination":{"id":"input/puredns-1/domain"}},{"source":{"id":"output/http-input-1/output"},"destination":{"id":"input/puredns-1/resolvers"}},{"source":{"id":"output/http-input-2/output"},"destination":{"id":"input/puredns-1/resolvers-trusted"}},{"source":{"id":"output/http-input-3/output"},"destination":{"id":"input/puredns-1/wordlist"}},{"source":{"id":"output/puredns-1/folder"},"destination":{"id":"input/recursively-cat-all-1/folder/puredns-1"}},{"source":{"id":"output/string-input-3/output"},"destination":{"id":"input/shodan-download-1/api_key"}},{"source":{"id":"output/shodan-download-1/file"},"destination":{"id":"input/custom-script-1/file/shodan-download-1"}},{"source":{"id":"output/eof-raw-data-1/file"},"destination":{"id":"input/add-line-to-shodan-query-1/file/eof-raw-data-1"}},{"source":{"id":"output/add-line-to-shodan-query-1/file"},"destination":{"id":"input/file-splitter-2/multiple/add-line-to-shodan-query-1"}},{"source":{"id":"output/file-splitter-2/output"},"destination":{"id":"input/shodan-download-1/query"}},{"source":{"id":"output/string-input-8/output"},"destination":{"id":"input/dsieve-1/filter-level"}},{"source":{"id":"output/string-input-10/output"},"destination":{"id":"input/dsieve-2/filter-level"}},{"source":{"id":"output/string-input-11/output"},"destination":{"id":"input/dsieve-3/filter-level"}},{"source":{"id":"output/string-input-9/output"},"destination":{"id":"input/dsieve-2/top"}},{"source":{"id":"output/string-input-9/output"},"destination":{"id":"input/dsieve-1/top"}},{"source":{"id":"output/string-input-9/output"},"destination":{"id":"input/dsieve-3/top"}},{"source":{"id":"output/string-input-4/output"},"destination":{"id":"input/puredns-2/mode"}},{"source":{"id":"output/dsieve-1/file"},"destination":{"id":"input/puredns-2/domains"}},{"source":{"id":"output/http-input-5/output"},"destination":{"id":"input/puredns-2/resolvers"}},{"source":{"id":"output/http-input-5/output"},"destination":{"id":"input/puredns-3/resolvers"}},{"source":{"id":"output/http-input-5/output"},"destination":{"id":"input/puredns-4/resolvers"}},{"source":{"id":"output/http-input-6/output"},"destination":{"id":"input/puredns-3/resolvers-trusted"}},{"source":{"id":"output/http-input-6/output"},"destination":{"id":"input/puredns-4/resolvers-trusted"}},{"source":{"id":"output/http-input-6/output"},"destination":{"id":"input/puredns-2/resolvers-trusted"}},{"source":{"id":"output/dsieve-2/file"},"destination":{"id":"input/puredns-3/domains"}},{"source":{"id":"output/dsieve-3/file"},"destination":{"id":"input/puredns-4/domains"}},{"source":{"id":"output/string-input-4/output"},"destination":{"id":"input/puredns-3/mode"}},{"source":{"id":"output/string-input-4/output"},"destination":{"id":"input/puredns-4/mode"}},{"source":{"id":"output/puredns-2/file"},"destination":{"id":"input/sort-uniq-1/file/puredns-2"}},{"source":{"id":"output/puredns-3/file"},"destination":{"id":"input/sort-uniq-1/file/puredns-3"}},{"source":{"id":"output/puredns-4/file"},"destination":{"id":"input/sort-uniq-1/file/puredns-4"}},{"source":{"id":"output/http-input-9/output"},"destination":{"id":"input/sort-uniq-3/file/http-input-9"}},{"source":{"id":"output/sort-uniq-3/file"},"destination":{"id":"input/puredns-2/wordlist"}},{"source":{"id":"output/http-input-10/output"},"destination":{"id":"input/sort-uniq-4/file/http-input-10"}},{"source":{"id":"output/sort-uniq-4/file"},"destination":{"id":"input/puredns-3/wordlist"}},{"source":{"id":"output/sort-uniq-5/file"},"destination":{"id":"input/puredns-4/wordlist"}},{"source":{"id":"output/http-input-11/output"},"destination":{"id":"input/sort-uniq-5/file/http-input-11"}},{"source":{"id":"output/http-input-7/output"},"destination":{"id":"input/sort-uniq-4/file/http-input-7"}},{"source":{"id":"output/http-input-12/output"},"destination":{"id":"input/sort-uniq-3/file/http-input-12"}},{"source":{"id":"output/http-input-8/output"},"destination":{"id":"input/sort-uniq-5/file/http-input-8"}},{"source":{"id":"output/recursively-cat-all-1/file"},"destination":{"id":"input/dsieve-1/input-file"}},{"source":{"id":"output/recursively-cat-all-1/file"},"destination":{"id":"input/dsieve-2/input-file"}},{"source":{"id":"output/recursively-cat-all-1/file"},"destination":{"id":"input/dsieve-3/input-file"}},{"source":{"id":"output/recursively-cat-all-1/file"},"destination":{"id":"input/sort-uniq-1/file/recursively-cat-all-1"}},{"source":{"id":"output/string-input-5/output"},"destination":{"id":"input/puredns-1/threads"}},{"source":{"id":"output/string-input-6/output"},"destination":{"id":"input/puredns-4/threads"}},{"source":{"id":"output/string-input-6/output"},"destination":{"id":"input/puredns-3/threads"}},{"source":{"id":"output/string-input-6/output"},"destination":{"id":"input/puredns-2/threads"}},{"source":{"id":"output/custom-script-1/file"},"destination":{"id":"input/jq-1/file/custom-script-1"}},{"source":{"id":"output/jq-1/file"},"destination":{"id":"input/recursively-cat-all-1/file/jq-1"}},{"source":{"id":"output/string-input-16/output"},"destination":{"id":"input/github-subdomains-1/tokens"}},{"source":{"id":"output/string-input-17/output"},"destination":{"id":"input/github-subdomains-1/domain"}},{"source":{"id":"output/github-subdomains-1/file"},"destination":{"id":"input/recursively-cat-all-1/file/github-subdomains-1"}},{"source":{"id":"output/boolean-input-2/output"},"destination":{"id":"input/github-subdomains-1/extended-mode"}},{"source":{"id":"output/string-input-7/output"},"destination":{"id":"input/cariddi-2/headers"}},{"source":{"id":"output/string-input-7/output"},"destination":{"id":"input/cariddi-1/headers"}},{"source":{"id":"output/string-input-12/output"},"destination":{"id":"input/cariddi-2/concurrency-level"}},{"source":{"id":"output/string-input-12/output"},"destination":{"id":"input/cariddi-1/concurrency-level"}},{"source":{"id":"output/getjs-1/file"},"destination":{"id":"input/cariddi-2/domains"}},{"source":{"id":"output/boolean-input-1/output"},"destination":{"id":"input/cariddi-2/hunt-info"}},{"source":{"id":"output/boolean-input-1/output"},"destination":{"id":"input/cariddi-2/hunt-secrets"}},{"source":{"id":"output/boolean-input-1/output"},"destination":{"id":"input/cariddi-2/juicy-endpoint"}},{"source":{"id":"output/boolean-input-1/output"},"destination":{"id":"input/cariddi-1/hunt-info"}},{"source":{"id":"output/boolean-input-1/output"},"destination":{"id":"input/cariddi-1/hunt-secrets"}},{"source":{"id":"output/boolean-input-1/output"},"destination":{"id":"input/cariddi-1/juicy-endpoint"}},{"source":{"id":"output/cariddi-1/folder"},"destination":{"id":"input/recursively-cat-all-2/folder/cariddi-1"}},{"source":{"id":"output/cariddi-2/folder"},"destination":{"id":"input/recursively-cat-all-2/folder/cariddi-2"}},{"source":{"id":"output/boolean-input-3/output"},"destination":{"id":"input/getjs-1/complete-urls"}},{"source":{"id":"output/boolean-input-1/output"},"destination":{"id":"input/cariddi-1/json"}},{"source":{"id":"output/boolean-input-1/output"},"destination":{"id":"input/cariddi-2/json"}},{"source":{"id":"output/recursively-cat-all-2/folder"},"destination":{"id":"input/zip-to-out-2/folder/recursively-cat-all-2"}},{"source":{"id":"output/custom-script-2/file"},"destination":{"id":"input/recursively-cat-all-3/file/custom-script-2"}},{"source":{"id":"output/recursively-cat-all-3/file"},"destination":{"id":"input/getjs-1/input-url-file"}},{"source":{"id":"output/recursively-cat-all-3/file"},"destination":{"id":"input/cariddi-1/domains"}},{"source":{"id":"output/sort-uniq-1/file"},"destination":{"id":"input/custom-script-2/file/sort-uniq-1"}},{"source":{"id":"output/sort-uniq-1/folder"},"destination":{"id":"input/zip-to-out-2/folder/sort-uniq-1"}},{"source":{"id":"output/recursively-cat-all-3/file"},"destination":{"id":"input/linkfinder-1/input-file"}},{"source":{"id":"output/linkfinder-1/folder"},"destination":{"id":"input/zip-to-out-2/folder/linkfinder-1"}}],"primitiveNodes":[{"name":"http-input-1","label":"https://raw.githubusercontent.com/trickest/resolvers/main/resolvers.txt","value":"https://raw.githubusercontent.com/trickest/resolvers/main/resolvers.txt","type_name":"URL","type":"FILE","coordinates":{"x":-21939.436798095703,"y":5173.9415283203125}},{"name":"http-input-2","label":"https://raw.githubusercontent.com/trickest/resolvers/main/resolvers-trusted.txt","value":"https://raw.githubusercontent.com/trickest/resolvers/main/resolvers-trusted.txt","type_name":"URL","type":"FILE","coordinates":{"x":-21939.436798095703,"y":5832.1783447265625}},{"name":"http-input-3","label":"https://raw.githubusercontent.com/trickest/wordlists/main/inventory/subdomains.txt","value":"https://raw.githubusercontent.com/trickest/wordlists/main/inventory/subdomains.txt","type_name":"URL","type":"FILE","coordinates":{"x":-21939.436798095703,"y":6490.4151611328125}},{"name":"http-input-5","label":"https://raw.githubusercontent.com/proabiral/Fresh-Resolvers/master/resolvers.txt","value":"https://raw.githubusercontent.com/proabiral/Fresh-Resolvers/master/resolvers.txt","type_name":"URL","type":"FILE","coordinates":{"x":-4653.949676513672,"y":2658.59619140625}},{"name":"http-input-6","label":"https://raw.githubusercontent.com/trickest/resolvers/main/resolvers-trusted.txt","value":"https://raw.githubusercontent.com/trickest/resolvers/main/resolvers-trusted.txt","type_name":"URL","type":"FILE","coordinates":{"x":-4576.164520263672,"y":3406.8916015625}},{"name":"http-input-7","label":"https://raw.githubusercontent.com/trickest/wordlists/main/cloud/levels/level3.txt","value":"https://raw.githubusercontent.com/trickest/wordlists/main/cloud/levels/level3.txt","type_name":"URL","type":"FILE","coordinates":{"x":-858.6606140136719,"y":3591.1748046875}},{"name":"http-input-8","label":"https://raw.githubusercontent.com/trickest/wordlists/main/cloud/levels/levels4plus.txt","value":"https://raw.githubusercontent.com/trickest/wordlists/main/cloud/levels/levels4plus.txt","type_name":"URL","type":"FILE","coordinates":{"x":-833.5805358886719,"y":6201.955810546875}},{"name":"http-input-9","label":"https://raw.githubusercontent.com/trickest/wordlists/main/inventory/levels/level2.txt","value":"https://raw.githubusercontent.com/trickest/wordlists/main/inventory/levels/level2.txt","type_name":"URL","type":"FILE","coordinates":{"x":-806.4106140136719,"y":-7.308380126953125}},{"name":"http-input-10","label":"https://raw.githubusercontent.com/trickest/wordlists/main/inventory/levels/level3.txt","value":"https://raw.githubusercontent.com/trickest/wordlists/main/inventory/levels/level3.txt","type_name":"URL","type":"FILE","coordinates":{"x":-795.4399108886719,"y":2695.60498046875}},{"name":"http-input-11","label":"https://raw.githubusercontent.com/trickest/wordlists/main/inventory/levels/levels4plus.txt","value":"https://raw.githubusercontent.com/trickest/wordlists/main/inventory/levels/levels4plus.txt","type_name":"URL","type":"FILE","coordinates":{"x":-841.3090515136719,"y":5367.679443359375}},{"name":"http-input-12","label":"https://raw.githubusercontent.com/trickest/wordlists/main/cloud/levels/level2.txt","value":"https://raw.githubusercontent.com/trickest/wordlists/main/cloud/levels/level2.txt","type_name":"URL","type":"FILE","coordinates":{"x":-813.4770202636719,"y":625.53857421875}},{"name":"string-input-1","label":"100","value":"100","type_name":"STRING","type":"STRING","coordinates":{"x":-21939.436798095703,"y":3033.2391357421875}},{"name":"string-input-2","label":"bruteforce","value":"bruteforce","type_name":"STRING","type":"STRING","coordinates":{"x":-21939.436798095703,"y":4495.7047119140625}},{"name":"string-input-4","label":"bruteforce","value":"bruteforce","type_name":"STRING","type":"STRING","coordinates":{"x":-4681.39111328125,"y":1933.02392578125}},{"name":"string-input-5","label":"200","value":"200","type_name":"STRING","type":"STRING","coordinates":{"x":-20445.129364013672,"y":6755.993408203125}},{"name":"string-input-6","label":"200","value":"200","type_name":"STRING","type":"STRING","coordinates":{"x":-3954.490692138672,"y":-836.0367736816406}},{"name":"string-input-7","label":"User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36","value":"User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36","type_name":"STRING","type":"STRING","coordinates":{"x":20014.720703125,"y":2371.187744140625}},{"name":"string-input-8","label":"3","value":"3","type_name":"STRING","type":"STRING","coordinates":{"x":-8807.826629638672,"y":570.543212890625}},{"name":"string-input-9","label":"5","value":"5","type_name":"STRING","type":"STRING","coordinates":{"x":-12590.542449951172,"y":3150.13916015625}},{"name":"boolean-input-1","label":"true","value":true,"type_name":"BOOLEAN","type":"BOOLEAN","coordinates":{"x":20014.720703125,"y":4297.30859375}},{"name":"boolean-input-2","label":"true","value":true,"type_name":"BOOLEAN","type":"BOOLEAN","coordinates":{"x":-20331.41943359375,"y":-1017.629150390625}},{"name":"boolean-input-3","label":"true","value":true,"type_name":"BOOLEAN","type":"BOOLEAN","coordinates":{"x":16947.671875,"y":5238.2939453125}},{"name":"boolean-input-5","label":"true","value":true,"type_name":"BOOLEAN","type":"BOOLEAN","coordinates":{"x":-21939.436798095703,"y":3691.4759521484375}},{"name":"string-input-10","label":"4","value":"4","type_name":"STRING","type":"STRING","coordinates":{"x":-8887.853973388672,"y":2640.99072265625}},{"name":"string-input-11","label":"5","value":"5","type_name":"STRING","type":"STRING","coordinates":{"x":-8943.070770263672,"y":4459.085205078125}},{"name":"string-input-12","label":"50","value":"50","type_name":"STRING","type":"STRING","coordinates":{"x":20014.720703125,"y":3410.526123046875}},{"name":"string-input-16","label":"your_github_key","value":"your_github_key","type_name":"STRING","type":"STRING","coordinates":{"x":-25721.111328125,"y":-2188.8828125}},{"name":"string-input-3","label":"your_shodan_key","value":"your_shodan_key","type_name":"STRING","type":"STRING","coordinates":{"x":-25756.044921875,"y":8542.2353515625}},{"name":"string-input-17","label":"target","value":"target","type_name":"STRING","type":"STRING","coordinates":{"x":-25617.900390625,"y":-1572.4300537109375}}],"annotations":[{"content":"## Extracts host from Shodan JSON output","width":300,"height":300,"name":"annotation-1","coordinates":{"x":-18929.927734375,"y":6431.99365234375}},{"content":"## Results\n\nList of new subdomains","width":260.9181640625,"height":300,"name":"annotation-2","coordinates":{"x":7171.59814453125,"y":1258.213623046875}},{"content":"The levels wordlists are available at [trickest/wordlists](https://github.com/trickest/wordlists).\n\n---","width":404.181298828125,"height":799.614192199707,"name":"annotation-3","coordinates":{"x":-1907.4067077636719,"y":-1175.851318359375}},{"content":"Each `dsieve` node will get the X subdomains with the highest number of sub-subdomains.\n\n- sub.sub.**sub**.trickest.com\n- sub.**sub**.sub.trickest.com\n- **sub**.sub.sub.trickest.com","width":300,"height":726.8670486450196,"name":"annotation-4","coordinates":{"x":-9445.72314453125,"y":-1718.405029296875}},{"content":"## Merge & Zip Secrets & Findings\n\nThese two nodes will classify all of the findings by type and create separate files. Additionally, all of the outputs will be compressed into one file so you can easily download and investigate them.\n\nExample findings are:\n* AWS Access Key\n* AWS Secret Key\n* Facebook Secret Key\n* Twitter Secret Key\n* etc...\n","width":538.769921875,"height":448.1957908630371,"name":"annotation-5","coordinates":{"x":25684.88671875,"y":-194.69952392578125}},{"content":"## Removes malformed URLs & adds protocol \n\n","width":317.15625,"height":308.55834960937494,"name":"annotation-6","coordinates":{"x":10318.4267578125,"y":1251.788818359375}},{"content":"## Specify target & github key","width":341.15859375,"height":234.146337890625,"name":"annotation-7","coordinates":{"x":-27373.830078125,"y":-3015.84326171875}},{"content":"## Specify target root URLs","width":300,"height":300,"name":"annotation-8","coordinates":{"x":-30943.65625,"y":724.244873046875}}]}} 2 | --------------------------------------------------------------------------------