There are new available articles, click to refresh the page.

Argus - A Framework for Staged Static Taint Analysis of GitHub Workflows and Actions

By: Zion3R — February 4^th 2024 at 11:30

This repo contains the code for our USENIX Security '23 paper "ARGUS: A Framework for Staged Static Taint Analysis of GitHub Workflows and Actions". Argus is a comprehensive security analysis tool specifically designed for GitHub Actions. Built with an aim to enhance the security of CI/CD workflows, Argus utilizes taint-tracking techniques and an impact classifier to detect potential vulnerabilities in GitHub Action workflows.

Visit our website - secureci.org for more information.

Features

Taint-Tracking: Argus uses sophisticated algorithms to track the flow of potentially untrusted data from specific sources to security-critical sinks within GitHub Actions workflows. This enables the identification of vulnerabilities that could lead to code injection attacks.
Impact Classifier: Argus classifies identified vulnerabilities into High, Medium, and Low severity classes, providing a clearer understanding of the potential impact of each identified vulnerability. This is crucial in prioritizing mitigation efforts.

Usage

This Python script provides a command line interface for interacting with GitHub repositories and GitHub actions.

python argus.py --mode [mode] --url [url] [--output-folder path_to_output] [--config path_to_config] [--verbose] [--branch branch_name] [--commit commit_hash] [--tag tag_name] [--action-path path_to_action] [--workflow-path path_to_workflow]

Parameters:

--mode: The mode of operation. Choose either 'repo' or 'action'. This parameter is required.
--url: The GitHub URL. Use USERNAME:TOKEN@URL for private repos. This parameter is required.
--output-folder: The output folder. The default value is '/tmp'. This parameter is optional.
--config: The config file. This parameter is optional.
--verbose: Verbose mode. If this option is provided, the logging level is set to DEBUG. Otherwise, it is set to INFO. This parameter is optional.
--branch: The branch name. You must provide exactly one of: --branch, --commit, --tag. This parameter is optional.
--commit: The commit hash. You must provide exactly one of: --branch, --commit, --tag. This parameter is optional.
--tag: The tag. You must provide exactly one of: --branch, --commit, --tag. This parameter is optional.
--action-path: The (relative) path to the action. You cannot provide --action-path in repo mode. This parameter is optional.
--workflow-path: The (relative) path to the workflow. You cannot provide --workflow-path in action mode. This parameter is optional.

Example:

To use this script to interact with a GitHub repo, you might run a command like the following:

python argus.py --mode repo --url https://github.com/username/repo.git --branch master

This would run the script in repo mode on the master branch of the specified repository.

How to use

Argus can be run inside a docker container. To do so, follow the steps:

Install docker and docker-compose
- apt-get -y install docker.io docker-compose
Clone the release branch of this repo
- git clone <>
Build the docker container
- docker-compose build
Now you can run argus. Example run:
- docker-compose run argus --mode {mode} --url {url to target repo}
Results will be available inside the results folder

Viewing SARIF Results

You can view SARIF results either through an online viewer or with a Visual Studio Code (VSCode) extension.

Online Viewer: The SARIF Web Viewer is an online tool that allows you to visualize SARIF files. You can upload your SARIF file (argus_report.sarif) directly to the website to view the results.
VSCode Extension: If you prefer to use VSCode, you can install the SARIF Viewer extension. After installing the extension, you can open your SARIF file (argus_report.sarif) in VSCode. The results will appear in the SARIF Explorer pane, which provides a detailed and navigable view of the results.

Remember to handle the SARIF file with care, especially if it contains sensitive information from your codebase.

Troubleshooting

If there is an issue with needing the Github authorization for running, you can provide username:TOKEN in the GITHUB_CREDS environment variable. This will be used for all the requests made to Github. Note, we do not store this information anywhere, neither create any thing in the Github account - we only use this for cloning the repositories.

Contributions

Argus is an open-source project, and we welcome contributions from the community. Whether it's reporting a bug, suggesting a feature, or writing code, your contributions are always appreciated!

Cite Argus

If you use Argus in your research, please cite our paper:

  @inproceedings{muralee2023Argus,
    title={ARGUS: A Framework for Staged Static Taint Analysis of GitHub Workflows and Actions},
    author={S. Muralee, I. Koishybayev, A. Nahapetyan, G. Tystahl, B. Reaves, A. Bianchi, W. Enck, 
      A. Kapravelos, A. Machiry},
    booktitle={32st USENIX Security Symposium (USENIX Security 23)},
    year={2023},
  }

Download Argus

KitPloit - PenTest Tools!

PhantomCrawler - Boost Website Hits By Generating Requests From Multiple Proxy IPs

By: Zion3R — January 4^th 2024 at 11:30

PhantomCrawler allows users to simulate website interactions through different proxy IP addresses. It leverages Python, requests, and BeautifulSoup to offer a simple and effective way to test website behaviour under varied proxy configurations.

Features:

Utilizes a list of proxy IP addresses from a specified file.
Supports both HTTP and HTTPS proxies.
Allows users to input the target website URL, proxy file path, and a static port.
Makes HTTP requests to the specified website using each proxy.
Parses HTML content to extract and visit links on the webpage.

Usage:

POC Testing: Simulate website interactions to assess functionality under different proxy setups.
Web Traffic Increase: Boost website hits by generating requests from multiple proxy IPs.
Proxy Rotation Testing: Evaluate the effectiveness of rotating proxy IPs.
Web Scraping Testing: Assess web scraping tasks under different proxy configurations.
DDoS Awareness: Caution: The tool has the potential for misuse as a DDoS tool. Ensure responsible and ethical use.

Get New Proxies with port and add in proxies.txt in this format 50.168.163.176:80

You can add it from here: https://free-proxy-list.net/ these free proxies are not validated some might not work so first validate these proxies before adding.

How to Use:

Clone the repository:

git clone https://github.com/spyboy-productions/PhantomCrawler.git

Install dependencies:

pip3 install -r requirements.txt

Run the script:

python3 PhantomCrawler.py

Disclaimer: PhantomCrawler is intended for educational and testing purposes only. Users are cautioned against any misuse, including potential DDoS activities. Always ensure compliance with the terms of service of websites being tested and adhere to ethical standards.

Snapshots:

If you find this GitHub repo useful, please consider giving it a star!

Download PhantomCrawler

KitPloit - PenTest Tools!

PathFinder - Tool That Provides Information About A Website

By: Zion3R — October 26^th 2023 at 11:30

Web Path Finder is a Python program that provides information about a website. It retrieves various details such as page title, last updated date, DNS information, subdomains, firewall names, technologies used, certificate information, and more.

Retrieve important information about a website
Gain insights into the technologies used by a website
Identify subdomains and DNS information
Check firewall names and certificate details
Perform bypass operations for captcha and JavaScript content

Clone the repository:

git clone https://github.com/HalilDeniz/PathFinder.git

Install the required packages:
```
pip install -r requirements.txt
```

This will install all the required modules and their respective versions.

Run the program using the following command:

â”Œâ”€â”€(rootðŸ’€denizhalil)-[~/MyProjects/]
â””â”€# python3 web-info-explorer.py --help                                             
usage: wpathFinder.py [-h] url

Web Information Program

positional arguments:
  url         Enter the site URL

options:
  -h, --help  show this help message and exit

Replace <url> with the URL of the website you want to explore.

Here is an example output of running the program:

â”Œâ”€â”€(rootðŸ’€denizhalil)-[~/MyProjects/]
â””â”€# python3 pathFinder.py https://www.facebook.com/
    Site Information:
    Title:  Facebook - Login or Register
    Last Updated Date:  None
    First Creation Date:  1997-03-29 05:00:00
    Dns Information:  []
    Sub Branches:  ['157']
Firewall Names:  []
    Technologies Used:  javascript, php, css, html, react
    Certificate Information:
    Certificate Issuer: US
    Certificate Start Date: 2023-02-07 00:00:00
    Certificate Expiration Date: 2023-05-08 23:59:59
    Certificate Validity Period (Days): 90
    Bypassed JavaScript content:

</ div>

Contributions are welcome! To contribute to PathFinder, follow these steps:

Fork the repository.
Create a new branch for your feature or bug fix.
Make your changes and commit them.
Push your changes to your forked repository.
Open a pull request in the main repository.

Thank you my friend Varol

This project is licensed under the MIT License - see the LICENSE file for details.

For any inquiries or further information, you can reach me through the following channels:

LinkedIn: Halil Ibrahim Deniz
TryHackMe: Halilovic
Instagram: deniz.halil333
YouTube: Halil Deniz
Email: halildeniz313@gmail.com

Download PathFinder

FreshRSS