Git Product home page Git Product logo

Comments (4)

chrismaddalena avatar chrismaddalena commented on July 18, 2024 2

We're tracking this and will see what we can implement 😄

from ghostwriter.

ArgentEnergy avatar ArgentEnergy commented on July 18, 2024

@BrunoTeixeira1996 @chrismaddalena

I believe what Bruno is asking is what we do at my work. I wrote a custom web page that allows me to filter report findings based on tester, date, keywords (e.g. JWT, XML, GraphQL, etc...), and then click the finding title to go to the report.

You'll probably have to re-adjust our code as we use the affected entities field as the finding evidence field to write up all our finding details and we use some other fields as shown in the screenshot to categorize findings into buckets (e.g. Authentication, Encryption, etc...).

https://github.com/StratumSecurity/Ghostwriter/blob/5219255bd7397440b16ff3c0435a5dedc271e6a2/config/urls.py - has the entry for the URL mapping: report/findings/
https://github.com/StratumSecurity/Ghostwriter/blob/5219255bd7397440b16ff3c0435a5dedc271e6a2/ghostwriter/stratum/filters.py - code to handle different types of filtering
https://github.com/StratumSecurity/Ghostwriter/blob/5219255bd7397440b16ff3c0435a5dedc271e6a2/ghostwriter/stratum/templates/report_findings_list.html - webpage HTML code
https://github.com/StratumSecurity/Ghostwriter/blob/5219255bd7397440b16ff3c0435a5dedc271e6a2/ghostwriter/stratum/urls.py - URL mapping
https://github.com/StratumSecurity/Ghostwriter/blob/5219255bd7397440b16ff3c0435a5dedc271e6a2/ghostwriter/stratum/views.py - API code for the page
https://github.com/StratumSecurity/Ghostwriter/blob/5219255bd7397440b16ff3c0435a5dedc271e6a2/ghostwriter/templates/base_generic.html - has the Search Report Findings menu item entry there
Screenshot 2024-03-04 at 8 21 51 AM
Screenshot 2024-03-04 at 8 22 02 AM

from ghostwriter.

BrunoTeixeira1996 avatar BrunoTeixeira1996 commented on July 18, 2024

@ArgentEnergy that is exactly what I was looking for however I can't use your fork at work but I think this would be a realy cool feature.
I was thinking on doing something similar just by using a cli something like a grep but I had to have admin rigths for that

from ghostwriter.

github-actions avatar github-actions commented on July 18, 2024

This issue has been labeled as stale because it has been open for 30 days with no activity.

from ghostwriter.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.