# The Panthera(P.)uncia of Cybersecurity
### Official CLI utility for Subdomain Center & Exploit Observer
[](https://pepy.tech/project/puncia)
<img src="https://img.shields.io/badge/contributions-welcome-brightgreen.svg?style=flat">
<img alt="GitHub stars" src="https://img.shields.io/github/stars/ARPSyndicate/puncia">
<br>
<img src="https://raw.githubusercontent.com/ARPSyndicate/puncia/master/puncia.png" width=25%>
<br>
Puncia utilizes two of our intelligent APIs to gather the results - <br>
- [Subdomain Center - The World's Largest Subdomain & Shadow IT Intelligence Database](https://subdomain.center)<br>
- [Exploit Observer - The World's Largest Exploit & Vulnerability Intelligence Database](https://exploit.observer)
**Please note that although these results can sometimes be pretty inaccurate & unreliable, they can greatly differ from time to time due to their self-improvement capabilities.**
**Aggressive rate-limits can be avoided with an API key: https://www.arpsyndicate.io/pricing.html**
## Installation
1. From PyPi - `pip3 install puncia`
2. From Source - `pip3 install .`<br>
## Usage
1. Store an API key (storekey) - `puncia storekey <api-key>`
2. Query Domains (subdomain) - `puncia subdomain <domain> <output-file>`
3. Query Exploit & Vulnerability Identifiers (exploit)
- Russian VIDs with no associated CVEs (^RU_NON_CVE) - `puncia exploit ^RU_NON_CVE <output-file>`
- Chinese VIDs with no associated CVEs (^CN_NON_CVE) - `puncia exploit ^CN_NON_CVE <output-file>`
- Vulnerability & Exploit Identifers Watchlist (^WATCHLIST_IDES) - `puncia exploit ^WATCHLIST_IDES <output-file>`
- Vulnerable Technologies Watchlist (^WATCHLIST_TECH) - `puncia exploit ^WATCHLIST_TECH <output-file>`
- [Supported Vulnerability Identifiers](https://github.com/ARPSyndicate/docs?tab=readme-ov-file#supported-vulnerability-identifiers) - `puncia exploit <eoidentifier> <output-file>`
4. Enrich CVE/GHSA Identifiers (enrich) - `puncia enrich <cve-id/ghsa-id> <output-file>`
5. Multiple Queries (bulk/sbom)
- Bulk Input JSON File Format - `puncia bulk <json-file> <output-directory>`
```
{
"subdomain": [
"domainA.com",
"domainB.com"
],
"exploit": [
"eoidentifierA",
"eoidentifierB"
],
"enrich": [
"eoidentifierA",
"eoidentifierB"
]
}
```
- [SBOM Input JSON File Format](https://github.com/CycloneDX/bom-examples/blob/master/SBOM/protonmail-webclient-v4-0912dff/bom.json) - `puncia sbom <json-file> <output-directory>`
6. External Import
```
import puncia
# Without API Key
print(puncia.query_api("exploit","CVE-2021-3450"))
print(puncia.query_api("subdomain","arpsyndicate.io"))
# With API Key
puncia.store_key("ARPS-xxxxxxxxxx")
print(puncia.query_api("subdomain","arpsyndicate.io", apikey=puncia.read_key()))
print(puncia.query_api("exploit","CVE-2021-3450", apikey=puncia.read_key()))
```
<br>
## Noteworthy Mentions
- [Around 1000 exploitable cybersecurity vulnerabilities that MITRE & NIST ‘might’ have missed but China or Russia didn’t.](https://blog.arpsyndicate.io/over-a-1000-vulnerabilities-that-mitre-nist-might-have-missed-but-china-or-russia-did-not-871b2364a526)
- [Utilizing GitHub Actions for gathering Subdomain & Exploit Intelligence](https://blog.arpsyndicate.io/utilizing-github-actions-for-gathering-subdomain-exploit-intelligence-bbc79c19bb85)
- [Introducing Exploit Observer — More than Shodan Exploits, Less than Vulners](https://blog.arpsyndicate.io/introducing-exploit-observer-more-than-shodan-exploits-less-than-vulners-23eaea466e4a)
- [PUNCIA — The Panthera(P.)uncia of Cybersecurity](https://blog.arpsyndicate.io/puncia-the-panthera-p-uncia-of-cybersecurity-ft-puncia-subdomain-center-exploit-observer-9a9d8cca9576)
- [Subdomain Enumeration Tool Face-off - 2023 Edition](https://blog.blacklanternsecurity.com/p/subdomain-enumeration-tool-face-off-4e5)
## More from [A.R.P. Syndicate](https://www.arpsyndicate.io)
- [Open Source Intelligence](https://asm.arpsyndicate.io/intelligence.html)
- [Attack Surface Management](https://asm.arpsyndicate.io)
- [Vulnerability Advisories AI](https://advisories.arpsyndicate.io)
Raw data
{
"_id": null,
"home_page": "https://github.com/ARPSyndicate/puncia",
"name": "puncia",
"maintainer": null,
"docs_url": null,
"requires_python": null,
"maintainer_email": null,
"keywords": "subdomains subdomain exploits exploit sbom cyclonedx arpsyndicate panthera uncia puncia snow leopard",
"author": "A.R.P. Syndicate",
"author_email": "ayush@arpsyndicate.io",
"download_url": "https://files.pythonhosted.org/packages/54/cb/63b2b6a055e91349bab2bec75dbf1255f6f8e9a845560939099dbd91c658/puncia-0.25.tar.gz",
"platform": null,
"description": "# The Panthera(P.)uncia of Cybersecurity\n\n### Official CLI utility for Subdomain Center & Exploit Observer\n\n[](https://pepy.tech/project/puncia)\n<img src=\"https://img.shields.io/badge/contributions-welcome-brightgreen.svg?style=flat\">\n<img alt=\"GitHub stars\" src=\"https://img.shields.io/github/stars/ARPSyndicate/puncia\">\n<br>\n<img src=\"https://raw.githubusercontent.com/ARPSyndicate/puncia/master/puncia.png\" width=25%>\n<br>\nPuncia utilizes two of our intelligent APIs to gather the results - <br>\n\n- [Subdomain Center - The World's Largest Subdomain & Shadow IT Intelligence Database](https://subdomain.center)<br>\n- [Exploit Observer - The World's Largest Exploit & Vulnerability Intelligence Database](https://exploit.observer)\n\n**Please note that although these results can sometimes be pretty inaccurate & unreliable, they can greatly differ from time to time due to their self-improvement capabilities.**\n\n**Aggressive rate-limits can be avoided with an API key: https://www.arpsyndicate.io/pricing.html**\n\n## Installation\n\n1. From PyPi - `pip3 install puncia`\n2. From Source - `pip3 install .`<br>\n\n## Usage\n\n1. Store an API key (storekey) - `puncia storekey <api-key>`\n2. Query Domains (subdomain) - `puncia subdomain <domain> <output-file>`\n3. Query Exploit & Vulnerability Identifiers (exploit)\n - Russian VIDs with no associated CVEs (^RU_NON_CVE) - `puncia exploit ^RU_NON_CVE <output-file>`\n - Chinese VIDs with no associated CVEs (^CN_NON_CVE) - `puncia exploit ^CN_NON_CVE <output-file>`\n - Vulnerability & Exploit Identifers Watchlist (^WATCHLIST_IDES) - `puncia exploit ^WATCHLIST_IDES <output-file>`\n - Vulnerable Technologies Watchlist (^WATCHLIST_TECH) - `puncia exploit ^WATCHLIST_TECH <output-file>`\n - [Supported Vulnerability Identifiers](https://github.com/ARPSyndicate/docs?tab=readme-ov-file#supported-vulnerability-identifiers) - `puncia exploit <eoidentifier> <output-file>`\n4. Enrich CVE/GHSA Identifiers (enrich) - `puncia enrich <cve-id/ghsa-id> <output-file>`\n5. Multiple Queries (bulk/sbom)\n\n - Bulk Input JSON File Format - `puncia bulk <json-file> <output-directory>`\n ```\n {\n \"subdomain\": [\n \"domainA.com\",\n \"domainB.com\"\n ],\n \"exploit\": [\n \"eoidentifierA\",\n \"eoidentifierB\"\n ],\n \"enrich\": [\n \"eoidentifierA\",\n \"eoidentifierB\"\n ]\n }\n ```\n - [SBOM Input JSON File Format](https://github.com/CycloneDX/bom-examples/blob/master/SBOM/protonmail-webclient-v4-0912dff/bom.json) - `puncia sbom <json-file> <output-directory>`\n\n6. External Import\n ```\n import puncia\n\n # Without API Key\n print(puncia.query_api(\"exploit\",\"CVE-2021-3450\"))\n print(puncia.query_api(\"subdomain\",\"arpsyndicate.io\"))\n\n # With API Key\n puncia.store_key(\"ARPS-xxxxxxxxxx\")\n print(puncia.query_api(\"subdomain\",\"arpsyndicate.io\", apikey=puncia.read_key()))\n print(puncia.query_api(\"exploit\",\"CVE-2021-3450\", apikey=puncia.read_key()))\n \n ```\n\n<br>\n\n## Noteworthy Mentions\n\n- [Around 1000 exploitable cybersecurity vulnerabilities that MITRE & NIST \u2018might\u2019 have missed but China or Russia didn\u2019t.](https://blog.arpsyndicate.io/over-a-1000-vulnerabilities-that-mitre-nist-might-have-missed-but-china-or-russia-did-not-871b2364a526)\n- [Utilizing GitHub Actions for gathering Subdomain & Exploit Intelligence](https://blog.arpsyndicate.io/utilizing-github-actions-for-gathering-subdomain-exploit-intelligence-bbc79c19bb85)\n- [Introducing Exploit Observer \u2014 More than Shodan Exploits, Less than Vulners](https://blog.arpsyndicate.io/introducing-exploit-observer-more-than-shodan-exploits-less-than-vulners-23eaea466e4a)\n- [PUNCIA \u2014 The Panthera(P.)uncia of Cybersecurity](https://blog.arpsyndicate.io/puncia-the-panthera-p-uncia-of-cybersecurity-ft-puncia-subdomain-center-exploit-observer-9a9d8cca9576)\n- [Subdomain Enumeration Tool Face-off - 2023 Edition](https://blog.blacklanternsecurity.com/p/subdomain-enumeration-tool-face-off-4e5)\n\n## More from [A.R.P. Syndicate](https://www.arpsyndicate.io)\n\n- [Open Source Intelligence](https://asm.arpsyndicate.io/intelligence.html)\n- [Attack Surface Management](https://asm.arpsyndicate.io)\n- [Vulnerability Advisories AI](https://advisories.arpsyndicate.io)\n",
"bugtrack_url": null,
"license": "MIT",
"summary": "The Panthera(P.)uncia of Cybersecurity - Official CLI utility for Subdomain Center & Exploit Observer",
"version": "0.25",
"project_urls": {
"A.R.P. Syndicate": "https://www.arpsyndicate.io",
"Exploit Observer": "https://exploit.observer",
"Homepage": "https://github.com/ARPSyndicate/puncia",
"Subdomain Center": "https://subdomain.center"
},
"split_keywords": [
"subdomains",
"subdomain",
"exploits",
"exploit",
"sbom",
"cyclonedx",
"arpsyndicate",
"panthera",
"uncia",
"puncia",
"snow",
"leopard"
],
"urls": [
{
"comment_text": "",
"digests": {
"blake2b_256": "402d0b1e187e262a1aa5d83f24ef5cceb9a1506c9ed877dc09c2043dc7e43245",
"md5": "defbdb4cb73297b20f9f5d7b61fd9484",
"sha256": "8086e51267041537fd49298259c341d50d74fe6811d98b26ae59ff1f973252f1"
},
"downloads": -1,
"filename": "puncia-0.25-py3-none-any.whl",
"has_sig": false,
"md5_digest": "defbdb4cb73297b20f9f5d7b61fd9484",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 7313,
"upload_time": "2024-11-24T10:47:00",
"upload_time_iso_8601": "2024-11-24T10:47:00.361073Z",
"url": "https://files.pythonhosted.org/packages/40/2d/0b1e187e262a1aa5d83f24ef5cceb9a1506c9ed877dc09c2043dc7e43245/puncia-0.25-py3-none-any.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": "",
"digests": {
"blake2b_256": "54cb63b2b6a055e91349bab2bec75dbf1255f6f8e9a845560939099dbd91c658",
"md5": "b231008e04848397261a35ae7b988ca4",
"sha256": "3dace472a652e810876c7e8ca15ccf3e3b2dc556d5d81f846cfa466fef480647"
},
"downloads": -1,
"filename": "puncia-0.25.tar.gz",
"has_sig": false,
"md5_digest": "b231008e04848397261a35ae7b988ca4",
"packagetype": "sdist",
"python_version": "source",
"requires_python": null,
"size": 6180,
"upload_time": "2024-11-24T10:47:01",
"upload_time_iso_8601": "2024-11-24T10:47:01.809214Z",
"url": "https://files.pythonhosted.org/packages/54/cb/63b2b6a055e91349bab2bec75dbf1255f6f8e9a845560939099dbd91c658/puncia-0.25.tar.gz",
"yanked": false,
"yanked_reason": null
}
],
"upload_time": "2024-11-24 10:47:01",
"github": true,
"gitlab": false,
"bitbucket": false,
"codeberg": false,
"github_user": "ARPSyndicate",
"github_project": "puncia",
"travis_ci": false,
"coveralls": false,
"github_actions": false,
"lcname": "puncia"
}
JSON
