archer
rengine
archer | rengine | |
---|---|---|
2 | 4 | |
39 | 6,887 | |
- | - | |
2.2 | 9.5 | |
about 2 months ago | 9 days ago | |
Go | Python | |
- | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
archer
-
The Elasticsearch Rant
For the query string, you don’t have to implement your own DSL. Elasticsearch supports it out of the box. You could POST a JSON object to “/_search” but you can also do a GET with the “q” query parameter.
Documentation: https://www.elastic.co/guide/en/elasticsearch/reference/curr...
In the Golang library you can use the “Search.WithQuery” option. This means you don’t have to construct a JSON request body.
Here’s an example: https://github.com/taythebot/archer/blob/main/pkg/elasticsea...
The Elasticsearch Golang library is a real pain to use. It was meant as a low level library so they didn’t add any types. However they are currently working on a typed client! The documentation is a bit lacking but going through go.dev you can find all the methods you need. This still means you need to JSON decode the response, but it helps you build queries, which is a step up.
Typed Client: https://www.elastic.co/guide/en/elasticsearch/client/go-api/...
- Show HN: Archer – open-source distributed network and vulnerability scanner
rengine
-
Any self-host FOSS suites for running phishing testing campaigns?
I couldn't find anything named reEngine, but I found reNgine ( https://yogeshojha.github.io/rengine/ ) which I think is what you meant.
-
Are ASM tools worth it?
rEngine is one of the most famous ones I believe https://github.com/yogeshojha/rengine
-
Open source projects from Nepal
Check this: https://github.com/yogeshojha/rengine
- ReNgine
What are some alternatives?
np - A tool to parse, deduplicate, and query multiple port scans.
Sn1per - Attack Surface Management Platform
favirecon - Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.
OSINT-Framework - OSINT Framework
jaeles - The Swiss Army knife for automated Web Application Testing
recon - Enumerate a target Based off of Nmap Results
black-hat-rust - Applied offensive security with Rust - https://kerkour.com/black-hat-rust
FoxyRecon - A Firefox add-on for OSINT investigations
osmedeus - A Workflow Engine for Offensive Security
spiderfoot - SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
reconftw - reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Beginner-Bug-Bounty-Automation - Many script that can be modified according to your needs for Information Gathering and Asset discovery in Bug Bounty Hunting (Pull requests are welcome!)