GrayhatWarfare

Cyware Orchestrate

GrayhatWarfare

App Vendor: GrayhatWarfare

App Category: IT Services

Connector Version: 1.0.0

API Version: 2.0.0

About App

The GrayhatWarfare app helps identify open Amazon Web Services (AWS) buckets and lists their contents. Designed for AWS penetration testing, it assists security teams in detecting misconfigured storage and potential data exposure.

The GrayhatWarfare app is configured with Cyware Orchestrate to perform the following actions:

Action Name	Description
List Buckets	This action lists all the buckets.
Search Bucket Files	This action searches and retrieves bucket files.
Search Shortened URLs	This action searches and retrieves URLs.
Search Subdomains	This action searches and retrieves subdomains.
Search Subdomain URLs	This action searches and retrieves URLs of a subdomain.
Generic Action	This is a generic action used to make requests to any GrayhatWarfare endpoint.

Configuration Parameters

The following configuration parameters are required for the GrayhatWarfare app to communicate with the GrayhatWarfare enterprise application. The parameters can be configured by creating instances in the app.

Parameter	Description	Field Type	Required/Optional	Comments
Buckets URL	Enter the base URL up to the version to access buckets API endpoints. Example: https://buckets.grayhatwarfare.com/api/v2	Text	Optional	Default value: https://buckets.grayhatwarfare.com/api/v2
Shorteners URL	Enter the base URL up to the version to access shorteners API endpoints. Example: https://shorteners.grayhatwarfare.com/api/v1	Text	Optional	Default value: https://shorteners.grayhatwarfare.com/api/v1
API Token	Enter the API token. Example: 343e8856e884e9edc590ab4a3c651382	Password	Required
Verify	Choose your preference to verify SSL or TLS while making requests. It is recommended to set this option to yes. Passing no may result in incorrectly establishing the connection.	Boolean	Optional	By default, verification is enabled.
Timeout	Enter the timeout value in seconds. This is the number of seconds that requests will wait to establish a connection with GrayhatWarfare.	Integer	Optional	Allowed range: 15-120 Default value: 15

Action: List Buckets

This action lists all the buckets.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Keywords	Enter the query to search for. Example: example-bucket.s3-ap-southeast-1	Text	Optional
Limit	Enter the number of buckets to include in the response.	Integer	Optional	Allowed range: 1-1000 Default value: 100
Extra Params	Enter the extra parameters to list buckets.	Key Value	Optional	Allowed keys: type, start, order, direction

Parameter

Description

Field Type

Required/Optional

Comments

Keywords

Enter the query to search for.

Example:

example-bucket.s3-ap-southeast-1

Text

Optional

Limit

Enter the number of buckets to include in the response.

Integer

Optional

Allowed range:

1-1000

Default value:

100

Extra Params

Enter the extra parameters to list buckets.

Key Value

Optional

Allowed keys:

type, start, order, direction

Example Request

[
  {
    "limit": 100
  }
]

Action: Search Bucket Files

This action searches and retrieves bucket files.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Keywords	Enter the query to search for. Example: .document.	Text	Optional
Bucket	Enter the ID or URL of the bucket the file belongs to. Example: example-bucket.s3.amazonaws.com	Text	Optional	You can retrieve the bucket ID or URL using the action List Buckets.
Regex	Choose true to send the query provided in the keywords as a regular expression (regex) search.	Boolean	Optional
Limit	Enter the number of files to include in the response.	Integer	Optional	Allowed range: 1-1000 Default value: 100
Extra Params	Enter the extra parameters to search bucket files.	Key Value	Optional	Allowed keys: order, direction, full-path, extensions, stopextensions, excluded-buckets, noautocorrect, last-modified-from, last-modified-to, size-from, size-to, paging-mode, start, scroll-id

Example Request

[
  {
    "limit": 100
  }
]

Action: Search Shortened URLs

This action searches and retrieves URLs.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Start	Enter the index of the first URL to retrieve.	Integer	Optional	Default value: 0
Limit	Enter the number of URLs to search.	Integer	Optional	Allowed range: 1-1000 Default value: 100
Keywords	Enter the query to search for. Example: savarakatranemia	Text	Optional
Regex	Choose true to send the query provided in the keywords as a regular expression (regex) search.	Boolean	Optional
Extra Params	Enter the extra parameters to search for shortened URLs.	Key Value	Optional	Allowed keys: ext, noautocorrect, order, direction

Example Request

[
  {
    "limit": 100
  }
]

Action: Search Subdomains

This action searches and retrieves subdomains.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Start	Enter the index of the first subdomain to retrieve.	Integer	Optional	Default value: 0
Limit	Enter the number of subdomains to search.	Integer	Optional	Allowed range: 1-1000 Default value: 100
Keywords	Enter the query to search for. Example: savarakatranemia	Text	Optional
Order	Enter the order to sort the response. Example: count	Boolean	Optional	Allowed value: count
Direction	Enter the direction to sort the response. Example: asc	Text	Optional	Allowed values: asc, desc

Action: Search Subdomain URLs

This action searches and retrieves URLs of a subdomain.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Subdomain	Enter the subdomain to search for URLs. Example: 6763184a11d1cba310a538e7	Text	Required	You can retrieve the subdomain using the action Search Subdomain.
Start	Enter the index of the first subdomain URL to retrieve.	Integer	Optional	Default value: 0
Limit	Enter the number of URLs to retrieve.	Integer	Optional	Allowed range: 1-1000 Default value: 100
Keywords	Enter the query to search for. Example: savarakatranemia	Text	Optional
Extra Params	Enter the extra parameters to search subdomain URLs.	Key Value	Optional	Allowed keys: ext, order, direction

Example Request

[
  {
    "subdomain": "6763184a11d1cba310a538e7",
    "extra_params": {}
  }
]

Action: Generic Action

This is a generic action used to make requests to any GrayhatWarfare endpoint.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Method	Enter the HTTP method to make the request.	Text	Required	Allowed values: GET, PUT, POST, DELETE
URL	Enter the URL of the endpoint to make the request to. Example: https://grayhatwarfare.com/api/account	Text	Required
Query Params	Enter the query parameters to pass to the API.	Key Value	Optional
Payload	Enter the payload to pass to the API.	Any	Optional
Extra Fields	Enter the extra fields to pass to the API.	Key Value	Optional	Allowed keys: payload_json, download, files, filename, retry_wait, retry_count, custom_output, response_type

Example Request

[
  {
    "url": "https://grayhatwarfare.com/api/account",
    "method": "GET"
  }
]

Was this helpful?

Would you like to provide feedback? Just click here to suggest edits.

Cyware Orchestrate

GrayhatWarfare

About App

Configuration Parameters

Action: List Buckets

Action: Search Bucket Files

Action: Search Shortened URLs

Action: Search Subdomains

Action: Search Subdomain URLs

Action: Generic Action

Search results