Attack surface detector that identifies endpoints by static analysis
MIT License
Bot releases are hidden (Show)
~/.config/noir
).NOIR_HOME
environment variable.--diff-path
: Specify the path to compare with the base path (-b). The scan results of the base path and the specified path will be compared.--build-info
: Display build information, including versions of Crystal, LLVM, and other relevant components.--generate-completion
: Generate completion scripts for shells like zsh and bash.Full Changelog: https://github.com/noir-cr/noir/compare/v0.15.1...v0.16.0
Published by hahwul 5 months ago
Full Changelog: https://github.com/noir-cr/noir/compare/v0.15.0...v0.15.1
Published by hahwul 6 months ago
Full Changelog: https://github.com/noir-cr/noir/compare/v0.14.0...v0.15.0
Published by hahwul 7 months ago
Automatically tags identified information during source code analysis to provide valuable insights for security engineers and Dynamic Application Security Testing (DAST) tools.
-T (--use-all-taggers)
--use-taggers
--list-taggers
hunt
oauth
Tags can be applied either to an Endpoint or to a Parameter within an Endpoint, and each tag includes both the name and description of the information.
We now support the HAR format. The HAR format works closely with the -u
argument, identifying and processing as an Endpoint any URLs provided by the user that exist within the HAR data.
This integration with the
-u
argument is essential, as the HAR file may contain numerous addresses beyond the domain of interest to the analyst.
Full Changelog: https://github.com/noir-cr/noir/compare/v0.13.0...v0.14.0
Published by hahwul 8 months ago
We've added a Lightweight LexerParser for analyzing the syntax of source code to enable better analysis. It's currently implemented in Java and Golang, and although it's still in its infancy, we believe it will improve over time.
Now we support installation via snapcraft :D
Thank you so much for contributing to noir ❤️
@k-sau @sm1ee @Dyrandy
Full Changelog: https://github.com/noir-cr/noir/compare/v0.12.2...v0.13.0
Published by hahwul 9 months ago
Full Changelog: https://github.com/noir-cr/noir/compare/v0.12.1...v0.12.2
Published by hahwul 9 months ago
only-url
only-param
only-header
only-cookie
jsonl
noir -b my_app -f only-param
Full Changelog: https://github.com/noir-cr/noir/compare/v0.12.0...v0.12.1
only-*
formats added?Sometimes, we may want to extract specific values from source code. To facilitate this, we have introduced the only-* format. For example, when analyzing source code for fuzzing, there may be a need to obtain a list of parameters. In such cases, you can easily extract them using the only-param format without the need for additional parsing.
Published by hahwul 10 months ago
--include-path
Flag: This flag also reveals the original source code file of detected endpoints when used.--scope
Flag: Deprecated (It was a flag that actually meant nothing.)Full Changelog: https://github.com/noir-cr/noir/compare/v0.11.0...v0.12.0
Published by hahwul 11 months ago
--concurrency
flagFull Changelog: https://github.com/noir-cr/noir/compare/v0.10.0...v0.11.0
Published by hahwul 12 months ago
--use-matchers
and --use-filters
flags for Deliver (#137)Full Changelog: https://github.com/hahwul/noir/compare/v0.9.1...v0.10.0
The --use-matchers
flag allows you to specify a condition that must be met for a URL to be delivered.
For example, you could use this flag to deliver only those URLs that include the string "/v1/myapi/".
The --use-filters
flag allows you to specify a condition that must not be met for a URL to be delivered
For example, you could use this flag to exclude all URLs that contain the string "/admin".
noir -b . -u https://www.hahwul.com \
--send-proxy http://localhost:8090 \
--use-matchers "/update" \
--use-matchers "/socket"
Published by hahwul about 1 year ago
Full Changelog: https://github.com/hahwul/noir/compare/v0.9.0...v0.9.1
Published by hahwul about 1 year ago
--send-es
)Full Changelog: https://github.com/hahwul/noir/compare/v0.8.0...v0.9.0
noir -b ./fastapi_app
--send-es
(ES Deliver)# noir -b <BASE-PATH> --send-es http://<ES-ENDPOINT>/<INDEX>/<TYPE>
noir -b ./app/ --send-es http://localhost:9200/noir/url
ES search result
-f yaml
noir -b ./kemal -f yaml
Published by hahwul about 1 year ago
--with-headers
flag for Deliverse.g noir -b . -f oas2
e.g noir -b . -f oas3
output_builder
from noir model.
-o
flag to save a file, only the results of output_builder are saved.Full Changelog: https://github.com/hahwul/noir/compare/v0.7.3...v0.8.0
The --with-headers
flag supports multiple flags and allowing you to add arbitrary headers in commands like --send-proxy
. Any headers added through this flag can override existing header information obtained during source code analysis, using them as new headers.
Single
noir -b ./source --send-proxy http://localhost:8090 --with-headers "X-API-Key: ABCD"
Multiple
noir -b ./source --send-proxy http://localhost:8090 \
--with-headers "X-API-Key: ABCD" \
--with-headers "Authentication: ABCD"
Published by hahwul about 1 year ago
Full Changelog: https://github.com/hahwul/noir/compare/v0.7.2...v0.7.3
Published by hahwul about 1 year ago
Thank you for @fanzige
Published by hahwul about 1 year ago
Published by hahwul about 1 year ago
I extend my infinite gratitude to the brilliant developer @ksg97031 . And I am truly thankful to @infosec-au for the great ideas provided!
Published by hahwul about 1 year ago
Go Gin
RAML
Published by hahwul about 1 year ago
v0.5.3
/ v0.5.4
v0.5.3
v0.5.4
v0.5.3
Published by hahwul about 1 year ago