Skip to content

NeuraLegion/run-discovery

BranchesTags

Repository files navigation

Run a Bright Discovery

This action runs a new discovery in Bright.

Build Secure Apps & APIs. Fast.

Bright is a powerful dynamic application & API security testing (DAST) platform that security teams trust and developers love.

Automatically Tests Every Aspect of Your Apps & APIs

Scans any target, whether Web Apps, APIs (REST. & SOAP, GraphQL & more), Web sockets or mobile, providing actionable reports

Seamlessly integrates with the Tools and Workflows You Already Use

Bright works with your existing CI/CD pipelines – trigger scans on every commit, pull request or build with unit testing.

Spin-Up, Configure and Control Scans with Code

One file. One command. One scan. No UI needed.

Super-Fast Scans

Interacts with applications and APIs, instead of just crawling them and guessing. Scans are fast as our AI-powered engine can understand application architecture and generate sophisticated and targeted attacks.

No False Positives

Stop chasing ghosts and wasting time. Bright doesn’t return false positives, so you can focus on releasing code.

Comprehensive Security Testing

Bright tests for all common vulnerabilities, such as SQL injection, CSRF, XSS, and XXE -- as well as uncommon vulnerabilities, such as business logic vulnerabilities.

More information is available on Bright’s:

Inputs

name

Required. Discovery name.

Example: name: GitHub discovery ${{ github.sha }}

api_token

Required. Your Bright API authorization token (key). You can generate it in the Organization section in the Bright app. Find more information here.

Example: api_token: ${{ secrets.BRIGHTSEC_TOKEN }}

project_id

Required. Provide project-id for the discovery.

Example: project_id: ${{ vars.PROJECT_ID }}

restart_discovery_id

Required when restarting an existing discovery by its ID.

Please make sure to only use the necessary parameters. Otherwise, you will get a response with the parameter usage requirements.

Example: restart_discovery_id: ai3LG8DmVn9Rn1YeqCNRGQ)

discovery_types

Required. Array of discovery types. The following types are available:

  • archive - uses an uploaded HAR-file for a discovery
  • crawler - uses a crawler to define the attack surface for a scan
  • oas - uses an uploaded OpenAPI schema for a discovery
    If no discovery type is specified, crawler is applied by default.

Example:

discovery_types: |
  [ "crawler", "archive" ]

file_id

Required if the discovery type is set to archive or oas. ID of a HAR-file or an OpenAPI schema you want to use for a discovery. You can get the ID of an uploaded HAR-file or an OpenAPI schema in the Storage section on app.brightsec.com.

Example:

FILE_ID=$(nexploit-cli archive:upload   \
--token ${{ secrets.BRIGHTSEC_TOKEN }}   \
--discard true                          \
./example.har)

crawler_urls

Required if the discovery type is set to crawler. Target URLs to be used by the discovery to define the attack surface.

Example:

crawler_urls: |
  [ "http://vulnerable-bank.com" ]

hosts_filter

Required when the the discovery type is set to archive. Allows selecting specific hosts for a discovery.

exclude_entry_points

A list of JSON strings that contain patterns for entry points you would like to ignore during the tests.

Example:

exclude_entry_points: |
  [ { "methods": [ "POST" ], "patterns": [ "users\/.+\/?$" ] } ]

To remove default exclusions pass an empty array as follows:

Example:

exclude_entry_points: |
  []

To apply patterns for all HTTP methods, you can set an empty array to methods:

exclude_entry_points: |
  [ { "methods": [], "patterns": [ "users\/.+\/?$" ] } ]

auth_object_id

ID of auth-object to be used by the discovery.

Example: auth_object_id: 7NSbwLjh7Fhd8mPy1DM7Bk

repeaters

List of repeater ids to be used by the discovery.

Example:

repeaters: |
  ['m5Y42fYm2CRCVdZh83w5af']

smart

Use automatic smart decisions such as: parameter skipping, detection phases, etc. to minimize scan time (default: true).

Example: smart: false

crawl_parent_subdomains

Crawl parent path folders and subdomains (default: false).

Example: crawl_parent_subdomains: true

concurrency

Number of maximum concurrent requests allowed to be sent to the target, can range between 1 to 50 (default: 10).

Example: concurrency: 20

interactions_depth

Number of maximum interactions with nested objects, can range between 1 to 5 (default: 3).

Example: interactions_depth: 1

Outputs

url

Url of the resulting discovery

id

ID of the created discovery.

Example usage

Start a new discovery with parameters

steps:
  - name: Start Bright Discovery
    id: start
    uses: NeuraLegion/run-scan@release
    with:
      api_token: ${{ secrets.BRIGHTSEC_TOKEN }}
      name: GitHub discovery ${{ github.sha }}
      project_id: ${{ vars.PROJECT_ID }}
      discovery_types: |
        [ "crawler", "archive" ]
      crawler_urls: |
        [ "http://vulnerable-bank.com" ]
      file_id: LiYknMYSdbSZbqgMaC9Sj
  - name: Get the output discovery url
    run: echo "The discovery was started on ${{ steps.start.outputs.url }}"

About

Action runs a new discovery in NeuraLegion

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages