Skip to content

The Panthera(P.)uncia of Cybersecurity - Official CLI utility for Subdomain Center & Exploit Observer.

License

Notifications You must be signed in to change notification settings

ARPSyndicate/puncia

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

39 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

The Panthera(P.)uncia of Cybersecurity

Official CLI utility for Subdomain Center & Exploit Observer

Downloads GitHub stars

Puncia utilizes two of our intelligent APIs to gather the results -

Please note that although these results can sometimes be pretty inaccurate & unreliable, they can greatly differ from time to time due to their self-improvement capabilities.

Aggressive rate-limits can be avoided with an API key: https://www.arpsyndicate.io/pricing.html

Installation

  1. From PyPi - pip3 install puncia
  2. From Source - pip3 install .

Usage

  1. Store an API key (storekey) - puncia storekey <api-key>

  2. Query Domains (subdomain) - puncia subdomain <domain> <output-file>

  3. Query Exploit & Vulnerability Identifiers (exploit)

    • Russian VIDs with no associated CVEs (^RU_NON_CVE) - puncia exploit ^RU_NON_CVE <output-file>
    • Chinese VIDs with no associated CVEs (^CN_NON_CVE) - puncia exploit ^CN_NON_CVE <output-file>
    • Vulnerability & Exploit Identifers Watchlist (^WATCHLIST_IDES) - puncia exploit ^WATCHLIST_IDES <output-file>
    • Vulnerable Technologies Watchlist (^WATCHLIST_TECH) - puncia exploit ^WATCHLIST_TECH <output-file>
    • Supported Vulnerability Identifiers - puncia exploit <eoidentifier> <output-file>
  4. Enrich CVE/GHSA Identifiers (enrich) - puncia enrich <cve-id/ghsa-id> <output-file>

  5. Multiple Queries (bulk/sbom)

    • Bulk Input JSON File Format - puncia bulk <json-file> <output-directory>
      {
          "subdomain": [
              "domainA.com",
              "domainB.com"
          ],
          "exploit": [
              "eoidentifierA",
              "eoidentifierB"
          ],
          "enrich": [
              "eoidentifierA",
              "eoidentifierB"
          ]
      }
      
    • SBOM Input JSON File Format - puncia sbom <json-file> <output-directory>
  6. External Import

        import puncia
    
        # Without API Key
        print(puncia.query_api("exploit","CVE-2021-3450"))
        print(puncia.query_api("subdomain","arpsyndicate.io"))
    
        # With API Key
        puncia.store_key("ARPS-xxxxxxxxxx")
        print(puncia.query_api("subdomain","arpsyndicate.io", apikey=puncia.read_key()))
        print(puncia.query_api("exploit","CVE-2021-3450", apikey=puncia.read_key()))
    
    

Noteworthy Mentions