Spectre is a modular tool designed for web application reconnaissance and vulnerability analysis. It integrates browser-based interaction and link extraction capabilities to provide comprehensive coverage of web application security testing.
- SpectreCore: The foundational module for handling browser sessions and authentication using Playwright.
- Dynamic Crawling: Discover and extract links within web applications, both authenticated and unauthenticated.
- Interactive Session Management: Maintain and interact with browser sessions over extended periods.
- LLM-Powered Link Extraction: Utilise AI models to enhance link discovery and validation.
- Configurable Task Management: Customise tasks via an interactive command-line interface.
-
Clone the repository:
git clone https://github.com/LiterallyBlah/Spectre.git
-
Navigate to the project directory:
cd spectre -
Install the required dependencies:
pip install -r requirements.txt
-
Install Playwright browser drivers:
playwright install
-
Install Ollama and the required AI models (e.g., llama3.1, qwen2.5):
# Install Ollama (follow instructions from https://ollama.ai/) # Pull the required models ollama pull llama3.1 ollama pull qwen2.5
You can run Spectre through the main entry point:
python main.pyThis will launch the Spectre Command Centre, where you can interact with the tool using various commands:
help: Show the help menu with available commandsoptions: Show available optionsstart: Start a new interactive sessionexit: Exit the programme
In an interactive session, you can use the following commands:
navigate: Navigate to a new URLextract: Extract links from the current pageexit: Exit the interactive session
- Browser Interaction: Implemented functionality to start browser
- Navigation: Implemented functionality to navigate to specified URLs
- Link Extraction: Implemented functionality to extract links from the current page
- Core Folder Structure: Set up basic folder structure and files for the
coremodule.
- Browser Session Management: Implement setup for managing browser sessions using Playwright.
- Authentication Handling: Set up initial authentication and session maintenance with cookies/tokens.
- Interactive Command Interface: Implement a user-friendly command-line interface for tool interaction.
- LLM Integration: Integrate AI models (via Ollama) for enhanced link extraction and validation.
- Session Continuity: Implement functionality to maintain sessions over extended periods.
- Advanced Fuzzing Modules: Add optional fuzzing modules for headers, cookies, and custom parameters.
- External Tool Integration: Begin integrating tools like Nikto and SQLmap.
- Response Analysis: Implement more advanced response pattern analysis.
- Reporting System: Set up output for results in JSON and HTML format.
- Test Suite: Implement unit tests for all core functionalities.
- Documentation: Provide detailed user and developer documentation for configuration and usage.
core/: The core functionality of Spectre, managing browser sessions and authentication.crawl/: Modules for dynamic crawling and link extraction.llm/: AI agents for link extraction and validation.output/: Output directory for generated reports and logs.
This project is under active development, with additional modules and functionality planned, including enhanced crawling, response pattern analysis, and deeper integrations with security tools.
Contributions are welcome! Feel free to submit pull requests or open issues for any bugs or feature requests. Please ensure that your code adheres to the existing coding standards and is thoroughly tested before submission.
This project is licensed under the MIT Licence. See the LICENCE file for more details.