Mirrors/muraena
1
0
Fork 0
mirror of https://github.com/muraenateam/muraena.git synced 2026-01-23 02:24:05 +00:00
Code Issues Projects Releases Wiki Activity

Update necrobrowser config/documentation

Browse source
This commit is contained in:
Ohpe 2024-03-13 09:41:19 +01:00
parent 13bd44d68e
commit 1631e41a2a
No known key found for this signature in database
2 changed files with 14 additions and 21 deletions
Download patch file Download diff file Expand all files Collapse all files

9
config/config.toml
View file

@ -215,16 +215,13 @@
#
#[necrobrowser]
# enable = true
#
# endpoint = "http://10.0.0.2:3000/instrument"
# profile = "./config/instrument.necro"
# [necrobrowser.urls]
# authSession = ["/settings/profile"]
# authSessionResponse = ["/privacypolicy"]
#
#
# # Endpoint should be the internal one used via WG
# endpoint = "http://10.0.0.2:3000/instrument"
# profile = "./config/instrument.necro"
#
# [necrobrowser.trigger]
# type = "cookie"
# values = ["ESAUTHENTICATED"]

26
docs/modules/necrobrowser.md
View file

@ -16,6 +16,15 @@ to automate the post-exploitation phase of a phishing campaign.
### Enable
Enables or disables the necrobrowser module.
### Endpoint
`endpoint` specifies the URL of the NecroBrowser API endpoint.
#### Profile
`profile` specifies the profile to be used for the NecroBrowser API endpoint.
The profile is a file containing the NecroBrowser JSON configuration.
For example, the following configuration specifies the profile `default`:
### Sensitive Locations
`urls` allows to specify the URLs that will be considered sensitive.
The URLs are specified for both requests and responses, as follows:
@ -24,16 +33,6 @@ The URLs are specified for both requests and responses, as follows:
- **`AuthSessionResponse`**: Specifies the URLs that will be considered sensitive for responses.
### Endpoint
`endpoint` specifies the URL of the NecroBrowser API endpoint.
#### Profile
`profile` specifies the profile to be used for the NecroBrowser API endpoint.
The profile is a file containing the NecroBrowser JSON configuration.
For example, the following configuration specifies the profile `default`:
```json
{
"name": "InstrumentGitHub",
@ -79,16 +78,13 @@ Below is an example configuration demonstrating the setup for user tracing and s
```toml
[necrobrowser]
enable = true
endpoint = "http://10.0.0.2:3000/instrument"
profile = "./config/instrument.necro"
[necrobrowser.urls]
authSession = ["/settings/profile"]
authSessionResponse = ["/privacypolicy"]
# Endpoint should be the internal one used via WG
endpoint = "http://10.0.0.2:3000/instrument"
profile = "./config/instrument.necro"
[necrobrowser.trigger]
type = "cookie"
values = ["ESAUTHENTICATED"]