GrayhatWarfare
App Vendor: GrayhatWarfare
App Category: IT Services
Connector Version: 1.0.0
API Version: 2.0.0
About App
The GrayhatWarfare app helps identify open Amazon Web Services (AWS) buckets and lists their contents. Designed for AWS penetration testing, it assists security teams in detecting misconfigured storage and potential data exposure.
The GrayhatWarfare app is configured with Cyware Orchestrate to perform the following actions:
Action Name | Description |
---|---|
List Buckets | This action lists all the buckets. |
Search Bucket Files | This action searches and retrieves bucket files. |
Search Shortened URLs | This action searches and retrieves URLs. |
Search Subdomains | This action searches and retrieves subdomains. |
Search Subdomain URLs | This action searches and retrieves URLs of a subdomain. |
Generic Action | This is a generic action used to make requests to any GrayhatWarfare endpoint. |
Configuration Parameters
The following configuration parameters are required for the GrayhatWarfare app to communicate with the GrayhatWarfare enterprise application. The parameters can be configured by creating instances in the app.
Parameter | Description | Field Type | Required/Optional | Comments |
---|---|---|---|---|
Buckets URL | Enter the base URL up to the version to access buckets API endpoints. Example: https://buckets.grayhatwarfare.com/api/v2 | Text | Optional | Default value: https://buckets.grayhatwarfare.com/api/v2 |
Shorteners URL | Enter the base URL up to the version to access shorteners API endpoints. Example: https://shorteners.grayhatwarfare.com/api/v1 | Text | Optional | Default value: https://shorteners.grayhatwarfare.com/api/v1 |
API Token | Enter the API token. Example: 343e8856e884e9edc590ab4a3c651382 | Password | Required | |
Verify | Choose your preference to verify SSL or TLS while making requests. It is recommended to set this option to yes. Passing no may result in incorrectly establishing the connection. | Boolean | Optional | By default, verification is enabled. |
Timeout | Enter the timeout value in seconds. This is the number of seconds that requests will wait to establish a connection with GrayhatWarfare. | Integer | Optional | Allowed range: 15-120 Default value: 15 |
Action: List Buckets
This action lists all the buckets.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
---|---|---|---|---|
Keywords | Enter the query to search for. Example: example-bucket.s3-ap-southeast-1 | Text | Optional | |
Limit | Enter the number of buckets to include in the response. | Integer | Optional | Allowed range: 1-1000 Default value: 100 |
Extra Params | Enter the extra parameters to list buckets. | Key Value | Optional | Allowed keys: type, start, order, direction |
Example Request
[ { "limit": 100 } ]
Action: Search Bucket Files
This action searches and retrieves bucket files.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
---|---|---|---|---|
Keywords | Enter the query to search for. Example: .*document.* | Text | Optional | |
Bucket | Enter the ID or URL of the bucket the file belongs to. Example: example-bucket.s3.amazonaws.com | Text | Optional | You can retrieve the bucket ID or URL using the action List Buckets. |
Regex | Choose true to send the query provided in the keywords as a regular expression (regex) search. | Boolean | Optional | |
Limit | Enter the number of files to include in the response. | Integer | Optional | Allowed range: 1-1000 Default value: 100 |
Extra Params | Enter the extra parameters to search bucket files. | Key Value | Optional | Allowed keys: order, direction, full-path, extensions, stopextensions, excluded-buckets, noautocorrect, last-modified-from, last-modified-to, size-from, size-to, paging-mode, start, scroll-id |
Example Request
[ { "limit": 100 } ]
Action: Search Shortened URLs
This action searches and retrieves URLs.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
---|---|---|---|---|
Start | Enter the index of the first URL to retrieve. | Integer | Optional | Default value: 0 |
Limit | Enter the number of URLs to search. | Integer | Optional | Allowed range: 1-1000 Default value: 100 |
Keywords | Enter the query to search for. Example: savarakatranemia | Text | Optional | |
Regex | Choose true to send the query provided in the keywords as a regular expression (regex) search. | Boolean | Optional | |
Extra Params | Enter the extra parameters to search for shortened URLs. | Key Value | Optional | Allowed keys: ext, noautocorrect, order, direction |
Example Request
[ { "limit": 100 } ]
Action: Search Subdomains
This action searches and retrieves subdomains.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
---|---|---|---|---|
Start | Enter the index of the first subdomain to retrieve. | Integer | Optional | Default value: 0 |
Limit | Enter the number of subdomains to search. | Integer | Optional | Allowed range: 1-1000 Default value: 100 |
Keywords | Enter the query to search for. Example: savarakatranemia | Text | Optional | |
Order | Enter the order to sort the response. Example: count | Boolean | Optional | Allowed value: count |
Direction | Enter the direction to sort the response. Example: asc | Text | Optional | Allowed values: asc, desc |
Action: Search Subdomain URLs
This action searches and retrieves URLs of a subdomain.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
---|---|---|---|---|
Subdomain | Enter the subdomain to search for URLs. Example: 6763184a11d1cba310a538e7 | Text | Required | You can retrieve the subdomain using the action Search Subdomain. |
Start | Enter the index of the first subdomain URL to retrieve. | Integer | Optional | Default value: 0 |
Limit | Enter the number of URLs to retrieve. | Integer | Optional | Allowed range: 1-1000 Default value: 100 |
Keywords | Enter the query to search for. Example: savarakatranemia | Text | Optional | |
Extra Params | Enter the extra parameters to search subdomain URLs. | Key Value | Optional | Allowed keys: ext, order, direction |
Example Request
[ { "subdomain": "6763184a11d1cba310a538e7", "extra_params": {} } ]
Action: Generic Action
This is a generic action used to make requests to any GrayhatWarfare endpoint.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
---|---|---|---|---|
Method | Enter the HTTP method to make the request. | Text | Required | Allowed values: GET, PUT, POST, DELETE |
URL | Enter the URL of the endpoint to make the request to. Example: https://grayhatwarfare.com/api/account | Text | Required | |
Query Params | Enter the query parameters to pass to the API. | Key Value | Optional | |
Payload | Enter the payload to pass to the API. | Any | Optional | |
Extra Fields | Enter the extra fields to pass to the API. | Key Value | Optional | Allowed keys: payload_json, download, files, filename, retry_wait, retry_count, custom_output, response_type |
Example Request
[ { "url": "https://grayhatwarfare.com/api/account", "method": "GET" } ]