davidmckennirey / arves Goto Github PK

If the phase provided via the --phase flag is not http_scan then it should also collect the target files that it otherwise would in a typical scan.

Update the --exclude flag to include hostnames

This folder will record all of the commands (tools) used as well as the stderr and stdout for each

This script would install all the default dependencies for a *nix based system.

Add a conditional keyword that will only run a command of the target meets the condition

Color makes tool fun :D

Add a flag to specify how many concurrent worker threads can be used at once

Remove the dependency on aquatone and parse nmap XML output with python's XML parser.

Instead of the current output approach, switch to the python logging module. Also, add in a new log file that records everything that is typically sent at a verbose level or higher.

Add in a --phase flag that allows the user to specify which phases of the config to execute. This may require a code refactor and a rethink.

Asyncio doesn't play nicely with Ctrl-C, so I have to add some sort of checking to the program to handle that input

this is just a quality of life thing, but it would be nice to include a timer for how long a command/phase took to complete.

This might not be possible, but try to update each commands log file while it is running. This way you can get an idea of where the tool is in its execution.

Add a warning if the user tries to run the program without root privs

The user should be allowed to specify custom output names via the arves.json file

This may require the addition of another field in the arves.json file, and will require some changes to the way that the commands are currently run.

This can be a --timer flag that will set a maximum amount of time each phase can take

I want to be able to use arves anywhere, just like autorecon. I will have to figure out how to bundle it so that it can be installed via pip.

Since the binary name is the same for both, they are overwriting each other. This will happen whenever the same tool is run multiple times, which I should account for. I will add a check to see if the log file already exists, and if it does then the tool will append a .1, or .2, etc to the end.

Update the README to include suggestions on how to setup for the default config, update the arves.json file, and general usage.

This would operate the same as with --include, except instead of adding hosts/IPs to the list of total scans this would limit the hosts to scan to the IP addresses/hostnames within this file. This would be useful for external net pens where the client only wants you to test a subset of their external infra, instead of all of it.

This will require an input list of hostnames, IP addresses, and CIDR to be passed in via the --include flag, but will skip the dns_enum and dns_validation phases.

Add a warning if the specified output directory already exists

This needs to be resolved so that it can still display what commands are run without having to actually modify or run anything