docs(13): create phase plan — 4 plans for package registries + container/IaC sources
This commit is contained in:
salvacybersec
@@ -270,7 +270,12 @@ Plans:
|
||||
3. `keyhunter recon --sources=dockerhub` extracts and scans image layers and build args from public Docker Hub images
|
||||
4. `keyhunter recon --sources=k8s` discovers publicly exposed Kubernetes dashboards and scans publicly readable Secret/ConfigMap objects
|
||||
5. `keyhunter recon --sources=terraform,helm,ansible` scans Terraform registry modules, Helm chart repositories, and Ansible Galaxy roles
|
||||
**Plans**: TBD
|
||||
**Plans**: 4 plans
|
||||
Plans:
|
||||
- [ ] 13-01-PLAN.md — NpmSource + PyPISource + CratesIOSource + RubyGemsSource (RECON-PKG-01, RECON-PKG-02)
|
||||
- [ ] 13-02-PLAN.md — MavenSource + NuGetSource + GoProxySource + PackagistSource (RECON-PKG-02, RECON-PKG-03)
|
||||
- [ ] 13-03-PLAN.md — DockerHubSource + KubernetesSource + TerraformSource + HelmSource (RECON-INFRA-01..04)
|
||||
- [ ] 13-04-PLAN.md — RegisterAll wiring + integration test (all Phase 13 reqs)
|
||||
|
||||
### Phase 14: OSINT CI/CD Logs, Web Archives & Frontend Leaks
|
||||
**Goal**: Users can scan public CI/CD build logs, historical web snapshots from the Wayback Machine and CommonCrawl, and frontend JavaScript artifacts (source maps, webpack bundles, exposed .env files) for leaked API keys
|
||||
|
||||
Reference in New Issue
Block a user