Skip to main content

Cyware Orchestrate

GrayhatWarfare

App Vendor: GrayhatWarfare

App Category: IT Services

Connector Version: 1.0.0

API Version: 2.0.0

About App

The GrayhatWarfare app helps identify open Amazon Web Services (AWS) buckets and lists their contents. Designed for AWS penetration testing, it assists security teams in detecting misconfigured storage and potential data exposure.

The GrayhatWarfare app is configured with Cyware Orchestrate to perform the following actions:

Action Name

Description

List Buckets

This action lists all the buckets.

Search Bucket Files

This action searches and retrieves bucket files.

Search Shortened URLs

This action searches and retrieves URLs.

Search Subdomains

This action searches and retrieves subdomains.

Search Subdomain URLs

This action searches and retrieves URLs of a subdomain.

Generic Action

This is a generic action used to make requests to any GrayhatWarfare endpoint.

Configuration Parameters

The following configuration parameters are required for the GrayhatWarfare app to communicate with the GrayhatWarfare enterprise application. The parameters can be configured by creating instances in the app.

Parameter

Description

Field Type

Required/Optional

Comments

Buckets URL

Enter the base URL up to the version to access buckets API endpoints.

Example:

https://buckets.grayhatwarfare.com/api/v2

Text

Optional

Default value:

https://buckets.grayhatwarfare.com/api/v2

Shorteners URL

Enter the base URL up to the version to access shorteners API endpoints.

Example:

https://shorteners.grayhatwarfare.com/api/v1

Text

Optional

Default value:

https://shorteners.grayhatwarfare.com/api/v1

API Token

Enter the API token.

Example:

343e8856e884e9edc590ab4a3c651382

Password

Required

Verify

Choose your preference to verify SSL or TLS while making requests. It is recommended to set this option to yes. Passing no may result in incorrectly establishing the connection.

Boolean

Optional

By default, verification is enabled.

Timeout

Enter the timeout value in seconds. This is the number of seconds that requests will wait to establish a connection with GrayhatWarfare.

Integer

Optional

Allowed range:

15-120

Default value:

15

Action: List Buckets

This action lists all the buckets.

Action Input Parameters

Parameter

Description

Field Type

Required/Optional

Comments

Keywords

Enter the query to search for.

Example:

example-bucket.s3-ap-southeast-1

Text

Optional

Limit

Enter the number of buckets to include in the response.

Integer

Optional

Allowed range:

1-1000

Default value:

100

Extra Params

Enter the extra parameters to list buckets.

Key Value

Optional

Allowed keys:

type, start, order, direction

Example Request

[
  {
    "limit": 100
  }
]
Action: Search Bucket Files

This action searches and retrieves bucket files.

Action Input Parameters

Parameter

Description

Field Type

Required/Optional

Comments

Keywords

Enter the query to search for.

Example:

.*document.*

Text

Optional

Bucket

Enter the ID or URL of the bucket the file belongs to.

Example:

example-bucket.s3.amazonaws.com

Text

Optional

You can retrieve the bucket ID or URL using the action List Buckets.

Regex

Choose true to send the query provided in the keywords as a regular expression (regex) search.

Boolean

Optional

Limit

Enter the number of files to include in the response.

Integer

Optional

Allowed range:

1-1000

Default value:

100

Extra Params

Enter the extra parameters to search bucket files.

Key Value

Optional

Allowed keys:

order, direction, full-path, extensions, stopextensions, excluded-buckets, noautocorrect, last-modified-from, last-modified-to, size-from, size-to, paging-mode, start, scroll-id

Example Request

[
  {
    "limit": 100
  }
]
Action: Search Shortened URLs

This action searches and retrieves URLs.

Action Input Parameters

Parameter

Description

Field Type

Required/Optional

Comments

Start

Enter the index of the first URL to retrieve.

Integer

Optional

Default value:

0

Limit

Enter the number of URLs to search.

Integer

Optional

Allowed range:

1-1000

Default value:

100

Keywords

Enter the query to search for.

Example:

savarakatranemia

Text

Optional

Regex

Choose true to send the query provided in the keywords as a regular expression (regex) search.

Boolean

Optional

Extra Params

Enter the extra parameters to search for shortened URLs.

Key Value

Optional

Allowed keys:

ext, noautocorrect, order, direction

Example Request

[
  {
    "limit": 100
  }
]
Action: Search Subdomains

This action searches and retrieves subdomains.

Action Input Parameters

Parameter

Description

Field Type

Required/Optional

Comments

Start

Enter the index of the first subdomain to retrieve.

Integer

Optional

Default value:

0

Limit

Enter the number of subdomains to search.

Integer

Optional

Allowed range:

1-1000

Default value:

100

Keywords

Enter the query to search for.

Example:

savarakatranemia

Text

Optional

Order

Enter the order to sort the response.

Example:

count

Boolean

Optional

Allowed value:

count

Direction

Enter the direction to sort the response.

Example:

asc

Text

Optional

Allowed values:

asc, desc

Action: Search Subdomain URLs

This action searches and retrieves URLs of a subdomain.

Action Input Parameters

Parameter

Description

Field Type

Required/Optional

Comments

Subdomain

Enter the subdomain to search for URLs.

Example:

6763184a11d1cba310a538e7

Text

Required

You can retrieve the subdomain using the action Search Subdomain.

Start

Enter the index of the first subdomain URL to retrieve.

Integer

Optional

Default value:

0

Limit

Enter the number of URLs to retrieve.

Integer

Optional

Allowed range:

1-1000

Default value:

100

Keywords

Enter the query to search for.

Example:

savarakatranemia

Text

Optional

Extra Params

Enter the extra parameters to search subdomain URLs.

Key Value

Optional

Allowed keys:

ext, order, direction

Example Request

[
  {
    "subdomain": "6763184a11d1cba310a538e7",
    "extra_params": {}
  }
]
Action: Generic Action

This is a generic action used to make requests to any GrayhatWarfare endpoint.

Action Input Parameters

Parameter

Description

Field Type

Required/Optional

Comments

Method

Enter the HTTP method to make the request.

Text

Required

Allowed values:

GET, PUT, POST, DELETE

URL

Enter the URL of the endpoint to make the request to.

Example:

https://grayhatwarfare.com/api/account

Text

Required

Query Params

Enter the query parameters to pass to the API.

Key Value

Optional

Payload

Enter the payload to pass to the API.

Any

Optional

Extra Fields

Enter the extra fields to pass to the API.

Key Value

Optional

Allowed keys:

payload_json, download, files, filename, retry_wait, retry_count, custom_output, response_type

Example Request

[
  {
    "url": "https://grayhatwarfare.com/api/account",
    "method": "GET"
  }
]