BBOT 3.0 - blazed_elijah

[TheTechromancer]

Summary

BBOT 3.0 "blazed_elijah" contains changes needed to store BBOT data in a persistent database. The idea is to release it alongside BBOT server, a tiny CLI-only database. This will be paired with a series of blog posts showing how BBOT server can be used on the command line to script out bug bounty hunting, threat intel, and ASM (i.e. running scheduled scans, exporting to CSV, diffing results over time, etc.).

Together, BBOT 3.0 and BBOT server will give us a solid foundation to build a bunch of other useful tooling, like asset inventory. Sometime in the future, it may also be useful to frontend.

Breaking changes

1. .data and .data_json event fields

The main breaking change in BBOT 3.0 is that the name of the .data field is different based on whether it's a str or dict.

• .data: string
• .data_json: dictionary

The siem_friendly option has been removed, since BBOT data is now SIEM-friendly by default.

2. Generic names for findings + vulnerabilities

A name field has been added to findings and vulns, which holds a generic description common to all vulns of the same type. This makes it easier to collapse and categorize them.

Features

• New Module: MongoDB Output #1992
• New Module: Elastic Output #2010
• New Module: RabbitMQ Output #2013
• New Module: Kafka Output #2011
• New Module: ZeroMQ Output #2015
• New Module: NATS Output #2017

Potential changes

• Can "internal" and "omitted" events be merged? #1592

[codecov]

Codecov Report

Attention: Patch coverage is 90.41981% with 89 lines in your changes missing coverage. Please review.

Project coverage is 93%. Comparing base (2d7a465) to head (7c6aa05).

Files with missing lines	Patch %	Lines
bbot/modules/base.py	37%	14 Missing ⚠️
bbot/constants.py	71%	11 Missing ⚠️
bbot/scanner/scanner.py	85%	11 Missing ⚠️
bbot/modules/output/nats.py	80%	7 Missing ⚠️
bbot/models/pydantic.py	93%	6 Missing ⚠️
bbot/core/event/base.py	85%	5 Missing ⚠️
bbot/modules/output/mongo.py	91%	5 Missing ⚠️
bbot/core/config/logger.py	20%	4 Missing ⚠️
bbot/modules/output/zeromq.py	88%	4 Missing ⚠️
bbot/modules/internal/excavate.py	40%	3 Missing ⚠️
... and 7 more

Additional details and impacted files

@@          Coverage Diff           @@
##             dev   #2007    +/-   ##
======================================
- Coverage     93%     93%    -0%     
======================================
  Files        397     411    +14     
  Lines      32897   33357   +460     
======================================
+ Hits       30429   30847   +418     
- Misses      2468    2510    +42     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.