paqman/paqman: PAQMAN is a command line companion tool to improve your pentesting experience. It provides you with copy-pastable commands depending on the information you collect or already have to transform them into a successfull attack.

PAQMAN is a command line companion tool to improve your pentesting experience. It provides you with copy-pastable commands depending on the information you collect or already have to transform them into a successfull attack.

go react

JavaScript 61.7%
Go 36%
HTML 1.6%
Dockerfile 0.6%
CSS 0.1%

Find a file

Leon Schmidt 741a393ded Added restart policy to docker compose		2023-06-28 12:51:19 +02:00
.vscode	Added React Router and file watcher excludes	2021-04-02 13:19:39 +02:00
assets	First changes	2021-07-20 13:19:05 +02:00
dev_environment	Adjusted dev docker-compose.yml	2021-07-15 10:22:32 +02:00
frontend	Changed initial redirect	2021-07-21 15:15:39 +02:00
server	Some maintanance changes:	2022-03-10 13:54:18 +01:00
.dockerignore	Added docker files	2021-03-18 17:17:50 +01:00
.gitignore	Added dev mongoDB environment, closes #21	2021-03-08 21:59:28 +01:00
.gitlab-ci.yml	Update ci	2023-04-06 14:16:07 +02:00
docker-compose.yml	Added restart policy to docker compose	2023-06-28 12:51:19 +02:00
Dockerfile	Some maintanance changes:	2022-03-10 13:54:18 +01:00
README.md	Update ci	2023-04-06 14:16:07 +02:00

README.md

What is PAQMAN?

PAQMAN comes without a database as it is intended to be filled by the user to be as flexible as possible.

You can test PAQMAN by yourself in our staging environment at https://paqman.leon.wtf. This instance follows PAQMANs main branch, so be advised that there may occure some errors.

Dev team

Paqman is being developed as part of a project at the Offenburg University of Applied Sciences by Nadine Weber (MI7), Nicola Jäger (UN6) and Leon Schmidt (UN6).

Development

Tech stack

Backend: Go v1.16
Frontend: React JS v17.0.1 (via create-react-app)
- CSS framework: Tailwind CSS

Manual build

Backend (inside server/)
- Install Go dependencies: $ go get -d -v ./...
- Build Go binary: $ CGO_ENABLED=1 go install -a -ldflags '-linkmode external -extldflags "-static"' .
Frontend (inside frontend/)
- Install NPM dependencies: $ npm install
- Build React frontend: $ npm run build → Static files in build/
Run backend with ./paqman-backend inside server/
Frontend: http://localhost:3002; API: http://localhost:3002/api

Docker build

Build image: $ docker build -t <your-tag> .
Start a container: $ docker run --name paqman -p "<external-port>:3002" [-v "<your-config>:/config.json:ro"] <your-tag> [<options>]
- Make sure, your "bind_address" is set to 0.0.0.0:3002 or omitted - otherwise, the service would not be reachable from outside the docker container!
- Make sure to have a mongo db container running with a hostname of mongo on port 27017 (ideally use a docker-compose file)!
Stop and delete the container: $ docker stop paqman && docker rm paqman
Frontend: http://localhost:3002; API: http://localhost:3002/api

There is a pre-built docker image at registry.git.leon.wtf/paqman/paqman:dev and a prewritten docker-compose.yml file in the repositories root directory.

Dev environment

Install dependencies (as described in Manual Build)
Start the mongodb database with $ docker-compose up [-d] within dev_environment/
- Database listens on 0.0.0.0:27017
- DB web frontend available at http://localhost:8081
Start the backend with $ go run . within server/ → listens on 0.0.0.0:3002
Start the frontend with $ npm run start within frontend/ → available at http://localhost:3000 with hot-reloading

In production, the frontend is served by the Go backend, but it doesn't support Reacts hot-reloading feature as it only serves the build/ folder. Therefore the frontend is served on it's own port in development but can use the backend to do fetch calls. Adjust the "proxy" setting in frontend/package.json to point to the backend, if needed.