UNPKG

@ice3man543/interactsh-node

Version:

Node.js client for Interactsh - A tool for detecting out-of-band interactions

github.com/projectdiscovery/interactsh-node

projectdiscovery/interactsh-node

219 lines (162 loc) 7.97 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
# Interactsh Node.js Client interactsh-cli is a NODE client of GO based tool [Interactsh](https://github.com/projectdiscovery/interactsh). ## Installation ### As a Library ```bash npm install @ice3man543/interactsh-node ``` ### As a CLI Tool ```bash npm install -g @ice3man543/interactsh-node ``` ## Usage ### Library Usage ```javascript import { register, poll, deregister } from '@ice3man543/interactsh-node'; // Register with interactsh server const data = await register('oast.fun', 5, 'your-token'); console.log('URLs:', data[0].payloads.map(p => p.url)); // Poll for interactions const config = { host: 'oast.fun', correlationId: data[0].correlationId, secretKey: data[0].secret, privateKey: data[0].priv, token: 'your-token', aesKey: '', data: [], pollInterval: 4000, }; // Start polling setInterval(() => { poll(config.correlationId, config.secretKey, config.host, config.token) .then(response => { console.log('Interactions received:', response); }); }, config.pollInterval); // Deregister when done await deregister(config.secretKey, config.correlationId, config.host, config.token); ``` ### CLI Usage ```interactsh-cli -h``` This will display help for the tool. Here are all the switches it supports. ### API Reference #### Functions - `register(host, payloadCount, token)` - Register with Interactsh server - `poll(correlationId, secretKey, host, token)` - Poll for interactions - `deregister(secretKey, correlationId, host, token)` - Deregister from server - `processData(aesKey, polledData)` - Process and decrypt interaction data - `generateUrl(correlationId, payloadCount, host)` - Generate payload URLs #### TypeScript Types All TypeScript types are exported: - `ConfigData` - `StoredData` - `Interaction` - `Data` - `Protocol` - `ID` ``` Usage: ./interactsh-cli [flags] Flags: INPUT: -s, --server string interactsh server(s) to use (default "oast.pro,oast.live,oast.site,oast.online,oast.fun,oast.me") CONFIG: --config string flag configuration file (default "$HOME/.config/interactsh-cli/config.yaml") -n, --number int number of interactsh payload to generate (default 1) -t, --token string authentication token to connect protected interactsh server --poll-interval int poll interval in seconds to pull interaction data (default 5) FILTER: --dns-only display only dns interaction in CLI output --http-only display only http interaction in CLI output --smtp-only display only smtp interactions in CLI output OUTPUT: -o string output file to write interaction data -json write output in JSONL(ines) format -v display verbose interaction ``` ## Interactsh Client Install using NPM ```sh npm install @projectdiscovery/interactsh-cli ``` Install using yarn ```sh yarn add @projectdiscovery/interactsh-cli ``` ### Default Run This will generate a unique payload that can be used for OOB testing with minimal interaction information in the output. ```console interactsh-cli ┌─────────────────────────────────────────────────────────────────────────┐ │ │ │ ___ _ _ _____ _____ ____ _ ____ _____ ____ _ _ │ │ |_ _|| \ | ||_ _|| ____|| _ \ / \ / ___||_ _|/ ___| | | | | │ │ | | | \| | | | | _| | |_) | / _ \ | | | | \___ \ | |_| | │ │ | | | |\ | | | | |___ | _ < / ___ \| |___ | | ___) || _ | │ │ |___||_| \_| |_| |_____||_| \_\/_/ \_\\____| |_| |____/ |_| |_| │ │ │ │ projectdiscovery.io │ │ │ └─────────────────────────────────────────────────────────────────────────┘ ✓ Registered successfully. [INF] Listing 1 payload for OOB Testing [INF] 1.(caqdjfsp25ca04rrcybggfms38hyyyyyb.oast.pro) [caqdjfsp25ca04rrcybggfms38hyyyyyb] Received DNS interaction (AAAA) from 172.247.34.69 at 2022-06-19_13:37 [caqdjfsp25ca04rrcybggfms38hyyyyyb] Received DNS interaction (undefined) from 172.247.34.69 at 2022-06-19_13:37 [caqdjfsp25ca04rrcybggfms38hyyyyyb] Received DNS interaction (A) from 172.247.34.69 at 2022-06-19_13:37 [caqdjfsp25ca04rrcybggfms38hyyyyyb] Received DNS interaction (A) from 172.247.34.69 at 2022-06-19_13:37 [caqdjfsp25ca04rrcybggfms38hyyyyyb] Received DNS interaction (AAAA) from 172.247.34.69 at 2022-06-19_13:37 [caqdjfsp25ca04rrcybggfms38hyyyyyb] Received DNS interaction (undefined) from 172.247.34.69 at 2022-06-19_13:37 ``` <!-- ### Verbose Mode Running the `interactsh-cli` in **verbose mode** (v) to see the whole request and response, along with an output file to analyze afterwards. ```console interactsh-cli -v -o interactsh-logs.txt _ __ __ __ (_)___ / /____ _________ ______/ /______/ /_ / / __ \/ __/ _ \/ ___/ __ '/ ___/ __/ ___/ __ \ / / / / / /_/ __/ / / /_/ / /__/ /_(__ ) / / / /_/_/ /_/\__/\___/_/ \__,_/\___/\__/____/_/ /_/ 1.0.3 projectdiscovery.io [INF] Listing 1 payload for OOB Testing [INF] c58bduhe008dovpvhvugcfemp9yyyyyyn.oast.pro [c58bduhe008dovpvhvugcfemp9yyyyyyn] Received HTTP interaction from 103.22.142.211 at 2021-09-26 18:08:07 ------------ HTTP Request ------------ GET /favicon.ico HTTP/2.0 Host: c58bduhe008dovpvhvugcfemp9yyyyyyn.oast.pro Referer: https://c58bduhe008dovpvhvugcfemp9yyyyyyn.oast.pro User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.82 Safari/537.36 ------------- HTTP Response ------------- HTTP/1.1 200 OK Connection: close Content-Type: text/html; charset=utf-8 Server: oast.pro <html><head></head><body>nyyyyyy9pmefcguvhvpvod800ehudb85c</body></html> ``` --> ### Using Self-Hosted server Using the `server` flag, [`interactsh-cli`](https://github.com/projectdiscovery/interactsh-node) can be configured to connect with a self-hosted Interactsh server, this flag accepts single or multiple server separated by comma. ```sh interactsh-cli --server hackwithautomation.com ``` We maintain a list of default Interactsh servers to use with [`interactsh-cli`](https://github.com/projectdiscovery/interactsh-node): - oast.pro - oast.live - oast.site - oast.online - oast.fun - oast.me Default servers are subject to change/rotate/down at any time, thus we recommend using a self-hosted interactsh server if you are experiencing issues with the default server. ### Using Protected Self-Hosted server Using the `token` flag, [`interactsh-cli`](https://github.com/projectdiscovery/interactsh-node) can connect to a self-hosted Interactsh server that is protected with authentication. ```sh interactsh-cli --server hackwithautomation.com --token XXX ``` ## Interactsh Web Client [Interactsh-web](https://github.com/projectdiscovery/interactsh-web) is a free and open-source web client that displays Interactsh interactions in a well-managed dashboard in your browser. It uses the browser's local storage to store and display all incoming interactions. By default, the web client is configured to use **interact.sh** as default interactsh server, and supports other self-hosted public/authencaited interactsh servers as well. A hosted instance of **interactsh-web** client is available at https://app.interactsh.com <img width="2032" alt="interactsh-web" src="https://user-images.githubusercontent.com/8293321/136621531-d72c9ece-0076-4db1-98c9-21dcba4ba09c.png">