A Target Tracking , NoteTaking , CheckLists and Data Management GUI App for Bug Hunter's and Pentesters.

Overview

Sandman

Screenshots FeaturesInstallationUsageFeaturesNotes

Sandman

A Target Tracking , NoteTaking , CheckLists and Data Management GUI App for Bug Hunter's and Pentesters. It is designed to Track Progress , Store and Retrieve tools data , CheckLists per domain and much more (future releases). It is designed while keeping in mind the ease and requirements while working on a program.It also has an integrated web server which can be used to get and post data to its respective pages.

This Cross Platform Native App is Powered By

  • Fyne
  • MongoDB
  • gorilla/mux

To Know More About the Functionalities , Usage and Structure Do refer the project wiki.

This App Also has an awesome cmd client app Matthew to store and retrieve data to UI App. It can be seamlessly integrated with your bash scripts / tools . It is similar to Linux Command tee

asserfinder abc.com | matthew web -s abc.com -t assetfinder --post

This will continuously post tool output to its appropriate destination in checklist in chunks .We can also get data from UI App (Ex : all-urls ,all-subs etc). To know more visit Matthew

Screenshots

Active Subdomains

Active Subdomains

Active Subdomains

For More Refer to screenshots/

Features

  • CheckList For Each Domain With Progress Tracking.
  • Integrated HTTP Server to Store and Retrieve Data.
  • Consists of Multiple Pages (In Scope, All Subs , Active Urls etc).
  • Cred Page For Storing Credentials.
  • Store and Retrieve Tool Output of Each CheckList Item for each domain and project.
  • Personal Notes / Findings for each Project.
  • Pagination For Storing Large Content.

Refer Upcoming for Planned and Upcoming Content.

Installation Instructions

Download Binaries From Releases

Build From Source

  • Install Go
  • Make Sure $GOPATH/bin is added to PATH env Variable
go install github.com/tarunKoyalwar/[email protected]

You Can Either Install MongoDB Locally or Use MongoDB Atlas Free Instance

Windows and Mac Users. If you face any problems while building visit fyne .

Usage

Open App Using Terminal To View App Logs

sandman

When Installed From Releases . Open App Using Application Menu.

When MongoDB is Installed Locally . Verify that Instace is running.

Upcoming

This is First Release Lot of Planned Content Has Not been Implemented Yet. The Most Important of them Include Following.

  • Editable MarkDown Support
  • Automation
    • Script Engine
      • Checkpoints
      • Multiprocessing
      • Scheduling
      • Regex , Pre and Post Processing
      • Resource Control
    • Notify Support
  • Browser Extensions
  • Android App ( UI redesing Left )
  • IOS App
  • Docker + Fyne Terminal

UI Development

This Project Only Intends to Use Fyne For UI. Since Fyne Is Not A Full Framework Yet . Multimedia Support , Drag and Drop and Other Advanced UI Features Cannot be Implemented Yet.

New UI Features Wil Follow within a Month or Two of Fyne Release.

As For the Theme and Styling Fyne is Currently Focusing on Core Components. To Style any components we have to create Custom Widgets Which Takes Lot of Time .So I don't Intend to Change Any Styling unless it is essential .

If Anyone is Familiar With Fyne and want to contribute DM me on twitter or Create a issue.

Acknowledgement

Logo Obtained From Letter S Logo Vectors by Vecteezy

Thanks Fyne Team For Awesome Framework.

You might also like...
Command line tool for time tracking in a human-readable file format.

klog klog is a plain-text file format and a command line tool for time tracking. 📕 Documentation – Learn how to use klog 📥 Download – Get the latest

Hakuna Go: an unofficial CLI for the time-tracking tool Hakuna

Hakuna Go Hakuna Go is an unofficial CLI for the time-tracking tool Hakuna. Inst

CLI and web app to convert HTML markup to go-app.dev's syntax.
CLI and web app to convert HTML markup to go-app.dev's syntax.

HTML to go-app Converter CLI and web app to convert HTML markup to go-app.dev's syntax. Installation CLI Static binaries are also available on GitHub

Test-app-url-shortner - A sample url shortener app to test Keploy integration capabilities
Test-app-url-shortner - A sample url shortener app to test Keploy integration capabilities

test-app-url-shortner A sample url shortener app to test Keploy integration capa

Go-cent-app - CENT.APP GO Package

CENT.APP - GO Package Official documentation - https://cent.app/en/merchant/api

TXQR (Animated QR data transfer) demo reader app for iOS
TXQR (Animated QR data transfer) demo reader app for iOS

TXQR Reader for iOS txqr-reader is a demo app in Swift that reads animated QR code and shows file. Currently it expects file to be an JPEG image. Just

A personal knowledge management and sharing system for VSCode
A personal knowledge management and sharing system for VSCode

Foam 👀 This is an early stage project under rapid development. For updates join the Foam community Discord! 💬 Foam is a personal knowledge managemen

tfacon is a CLI tool for connecting Test Management Platforms and Test Failure Analysis Classifier.

Test Failure Classifier Connector Description tfacon is a CLI tool for connecting Test Management Platforms and Test Failure Analysis Classifier. Test

Go library and CLI utility for /etc/hosts management.
Go library and CLI utility for /etc/hosts management.

Etc Hosts Management Utility & Go Library /etc/hosts Management It is easy to open your /etc/hosts file in text editor and add or remove entries. Howe

Releases(v1.0.0)
Owner
Tarun Koyalwar
Tarun Koyalwar
mass-binding-target is a command line tool for generating binding target list by search plot files from disk.

mass-binding-target mass-binding-target is a command line tool for generating binding target list by search plot files from disk. Build Go 1.13 or new

null 0 Nov 5, 2021
Golang anti-vm framework for Red Team and Pentesters

Chacal is an anti-vm framework written in Golang in order to support Red Team and Pentesters in your assalts, in Windows environment!

p3tr0v 105 Sep 21, 2022
GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet and exfiltrate data using Google Drive.

GC2 GC2 (Google Command and Control) is a Command and Control application that allows an attacker to execute commands on the target machine using Goog

Lorenzo Grazian 171 Sep 14, 2022
Terminal stock ticker with live updates and position tracking

Ticker Terminal stock watcher and stock position tracker Features Live stock price quotes Track value of your stock positions Support for multiple cos

Ani Channarasappa 4.4k Sep 26, 2022
Expense_tracker - A simple application that will help in tracking income and expense

Expense Tracker Is meant to be a simple application that will help in tracking i

Prabandham Srinidhi 0 Jan 6, 2022
Simple, seamless, lightweight time tracking for Git

Git Time Metric Seamless time tracking for all your Git projects $ gtm report -last-month $ gtm report -last-month -format summary $ gtm report -last-

Git Time Metric 908 Sep 27, 2022
A small CLI tool to check connection from a local machine to a remote target in various protocols.

CHK chk is a small CLI tool to check connection from a local machine to a remote target in various protocols.

null 25 Mar 30, 2022
Simple time tracking CLI

⏰ timetrace timetrace is a simple CLI for tracking your working time. Installation Homebrew brew tap dominikbraun/timetrace brew install timetrace Do

Dominik Braun 525 Sep 27, 2022
Fetches the output for an AWS SSM command for every target

AWSCommander Fetches the output for an AWS SSM command for every target. Optionally outputs as HTML. Examples Get command from Tokio Japan as text AWS

Michael Bradley 0 Nov 24, 2021