|
23 | 23 |
|
24 | 24 | Launch manual and automated attacks with pre-defined and always up-to-date templates of your favourite tools. |
25 | 25 |
|
26 | | -Designed to transparently run locally, remotely or integrated in pipelines, `hckctl` is free and open-source, no vendor lock-in, extensible and built using native providers api. |
| 26 | +Designed to transparently run locally, remotely or integrated in pipelines. `hckctl` is free and open-source, no vendor lock-in, extensible and built using native providers api. |
27 | 27 |
|
28 | 28 | Create your vulnerable target (box with a specific CVE or whole infrastructures) or connect to your CTF platform ([HTB](https://www.hackthebox.com), [TryHackMe](https://tryhackme.com), [Vulnlab](https://www.vulnlab.com), etc.) without wasting anymore time on boring installations, environment setup and network configurations. |
29 | 29 |
|
30 | 30 | Leverage the cloud platform or request a dedicated managed cluster to: |
31 | | -* orchestrate complex scenarios |
32 | | -* monitor and observe your security posture |
| 31 | +* orchestrate complex attack scenarios |
| 32 | +* constantly probe and monitor your security posture |
33 | 33 | * analyze, aggregate and export results via api |
34 | | -* trigger actions based on events |
| 34 | +* trigger instant actions based on observed events and patterns |
35 | 35 |
|
36 | 36 | ## Quick start |
37 | 37 |
|
@@ -93,19 +93,20 @@ hckctl lab ctf-linux |
93 | 93 | Run a [`task`](https://github.com/hckops/megalopolis/tree/main/task) using pre-defined commands |
94 | 94 | ```bash |
95 | 95 | # default commands |
96 | | -hckctl task rustscan --command help |
97 | | -hckctl task rustscan --command version |
| 96 | +hckctl task gobuster --command help |
| 97 | +hckctl task fuzzer/ffuf --command version |
98 | 98 |
|
99 | 99 | # use the "default" preset arguments |
100 | | -hckctl task rustscan --input address=127.0.0.1 |
| 100 | +hckctl task rustscan |
101 | 101 | # equivalent of |
102 | | -hckctl task rustscan --command default --input address=127.0.0.1 |
| 102 | +hckctl task rustscan --input address=127.0.0.1 |
| 103 | +hckctl task scanner/rustscan --command default --input address=127.0.0.1 |
103 | 104 |
|
104 | 105 | # use the "full" preset arguments |
105 | 106 | hckctl task nmap --command full --input address=127.0.0.1 --input port=80 |
106 | 107 |
|
107 | 108 | # invoke it with custom arguments |
108 | | -hckctl task rustscan --inline -- -a 127.0.0.1 |
| 109 | +hckctl task nuclei --inline -- -u https://example.com |
109 | 110 |
|
110 | 111 | # monitor the logs |
111 | 112 | tail -F ${HOME}/.local/state/hck/task/log/task-rustscan-* |
@@ -231,23 +232,24 @@ tail -F ${HOME}/.local/state/hck/log/hckctl-*.log |
231 | 232 |
|
232 | 233 | > TODO example of how to point to a specific pr/revision in a forked repo |
233 | 234 |
|
234 | | -## Disclaimer |
235 | | - |
236 | | -> TODO |
237 | | - |
238 | 235 | <!-- |
239 | 236 |
|
| 237 | +* rename `template` to catalog? or alias? |
| 238 | +* cmd aliases e.g. start/up/create |
| 239 | +* replace task/htb example with thm |
| 240 | + |
240 | 241 | TODO |
241 | 242 | * priority |
242 | 243 | - add task providers: kube and cloud |
243 | 244 | - add box kube --network-vpn |
244 | 245 | - debug `htb-postman` |
245 | | - - play htb: linux/win |
246 | 246 | - add flow example |
247 | 247 | - verify kube/cloud distroless support |
248 | 248 | - verify kube/cloud no-shell support |
| 249 | + - play htb: linux/win |
249 | 250 | - RELEASE |
250 | 251 | * general |
| 252 | + - add disclaimer to readme? |
251 | 253 | - public discord server (review channels visibility) |
252 | 254 | - brew release |
253 | 255 | - review context/http/client timeouts e.g. vpn or target not available |
|
0 commit comments