The Panthera(P.)uncia of Cybersecurity

Official CLI utility for Osprey Vision, Subdomain Center & Exploit Observer

Puncia utilizes three of our intelligent APIs to gather the results -

• Subdomain Center - The World's Largest Subdomain & Shadow IT Intelligence Database
  
• Exploit Observer - The World's Largest Exploit & Vulnerability Intelligence Database
  
• Osprey Vision - The World's Most Bleeding Edge Cyber Intelligence LLM

Please note that although these results can sometimes be pretty inaccurate & unreliable, they can greatly differ from time to time due to their self-improvement capabilities.

Aggressive rate-limits can be avoided with an API key: https://www.arpsyndicate.io/pricing.html

Installation

1. From PyPi - pip3 install puncia
2. From Source - pip3 install .
   

Usage

1. Store an API key (storekey) - puncia storekey <api-key>

2. Interact with the LLM (chat) - puncia chat "<prompt>" <output-file>

3. Query Domains (subdomain) - puncia subdomain <domain> <output-file>

4. Query Replica Domains (replica) - puncia replica <domain> <output-file>

5. Query Exploit & Vulnerability Identifiers (exploit)

   • Russian VIDs with no associated CVEs (^RU_NON_CVE) - puncia exploit ^RU_NON_CVE <output-file>
   • Chinese VIDs with no associated CVEs (^CN_NON_CVE) - puncia exploit ^CN_NON_CVE <output-file>
   • Vulnerability & Exploit Identifers Watchlist (^WATCHLIST_IDES) - puncia exploit ^WATCHLIST_IDES <output-file>
   • Vulnerable Technologies Watchlist (^WATCHLIST_TECH) - puncia exploit ^WATCHLIST_TECH <output-file>
   • Supported Vulnerability Identifiers - puncia exploit <eoidentifier> <output-file>

6. Enrich CVE/GHSA Identifiers (enrich) - puncia enrich <cve-id/ghsa-id> <output-file>

7. Multiple Queries (bulk/sbom)

   • Bulk Input JSON File Format - puncia bulk <json-file> <output-directory>

     {
         "subdomain": [
             "domainA.com",
             "domainB.com"
         ],
         "replica": [
             "domainA.com",
             "domainB.com"
         ],
         "exploit": [
             "eoidentifierA",
             "eoidentifierB"
         ],
         "enrich": [
             "eoidentifierA",
             "eoidentifierB"
         ]
     }
     

   • SBOM Input JSON File Format - puncia sbom <json-file> <output-directory>

8. External Import

       import puncia
   
       # Without API Key
       print(puncia.query_api("exploit","CVE-2021-3450"))
       print(puncia.query_api("subdomain","arpsyndicate.io"))
       print(puncia.query_api("chat","write a xss fuzzer in python"))
   
       # With API Key
       puncia.store_key("ARPS-xxxxxxxxxx")
       print(puncia.query_api("subdomain","arpsyndicate.io", apikey=puncia.read_key()))
       print(puncia.query_api("exploit","CVE-2021-3450", apikey=puncia.read_key()))
       print(puncia.query_api("chat","write a xss fuzzer in python", apikey=puncia.read_key()))
   
   

Noteworthy Mentions

• Around 1000 exploitable cybersecurity vulnerabilities that MITRE & NIST ‘might’ have missed but China or Russia didn’t.
• Utilizing GitHub Actions for gathering Subdomain & Exploit Intelligence
• Introducing Exploit Observer — More than Shodan Exploits, Less than Vulners
• PUNCIA — The Panthera(P.)uncia of Cybersecurity
• Subdomain Enumeration Tool Face-off - 2023 Edition

More from A.R.P. Syndicate

• VEDAS Advisories
• Open Source Intelligence
• Attack Surface Management