How to create custom tasks using pure Python code without external commands.
The PythonRunner class allows you to create custom Secator tasks using pure Python code, without needing to integrate external command-line tools. This is useful when you want to:
Process data using Python libraries
Implement custom logic that doesn't require external commands
Create lightweight tasks that perform transformations or analysis
Build tasks that interact with APIs or databases
Overview
To create a custom Python task, you need to:
Create a Python file in ~/.secator/templates/ (for user tasks) or secator/tasks/ (for development)
Inherit from the PythonRunner class
Decorate your class with the @task() decorator
Define input_types and output_types
Implement the yielder() method to yield results
Basic structure
Here's the minimal structure of a Python task:
Important notes:
The class name must match the filename (without .py)
The @task() decorator is required
You must inherit from PythonRunner
The yielder() method is where your task logic goes
Use yield to return results as output types
Available input types
You can specify which input types your task accepts using input_types. Available input types include:
HOST - Hostnames or domains
URL - URLs
IP - IP addresses
CIDR_RANGE - CIDR ranges
EMAIL - Email addresses
PATH - File paths
STRING - Generic strings
None - Accept any input type
Example:
Available output types
Your task can yield various output types. Common ones include:
Info - Informational messages
Url - URLs
Ip - IP addresses
Port - Network ports
Subdomain - Subdomains
Vulnerability - Security vulnerabilities
Tag - Tags/metadata
Domain - Domains
Record - DNS records
Certificate - SSL certificates
UserAccount - User accounts
Warning - Warning messages
Error - Error messages
Example:
Example: Simple URL processor
This example processes URLs and extracts information:
Usage:
Example: Vulnerability scanner
This example demonstrates yielding vulnerabilities:
Example: Task with custom options
You can define custom options that users can pass to your task:
Usage:
Example: Task without inputs
Some tasks don't require inputs. Use default_inputs to make inputs optional:
Usage:
Accessing runner properties
In your yielder() method, you have access to several useful properties:
self.inputs - List of input values
self.run_opts - Dictionary of run options (including custom opts)
self.name - Task name
self.config - Task configuration
self.context - Runner context
Example:
Advanced: Multiple output types
You can yield different output types based on your logic:
Task discovery
Secator automatically discovers tasks from:
User tasks: ~/.secator/templates/*.py
Development tasks: secator/tasks/*.py (when developing Secator itself)
The task class name must match the filename (case-sensitive). For example:
from secator.decorators import task
from secator.definitions import HOST
from secator.output_types import Tag, Url
from secator.runners import PythonRunner
@task()
class mytask(PythonRunner):
"""Description of what this task does."""
input_types = [HOST]
output_types = [Tag, Url]
def yielder(self):
for target in self.inputs:
yield Url(url=f"http://{target}")
yield Tag(name="scanned", match=target)
from secator.output_types import Url, Vulnerability, Tag, Info
@task()
class mytask(PythonRunner):
output_types = [Url, Vulnerability, Tag, Info]
# ...
~/.secator/templates/urlprocessor.py
from urllib.parse import urlparse
from secator.decorators import task
from secator.definitions import URL
from secator.output_types import Tag, Url
from secator.runners import PythonRunner
@task()
class urlprocessor(PythonRunner):
"""Extract components from URLs."""
input_types = [URL]
output_types = [Tag, Url]
tags = ['url', 'parsing']
def yielder(self):
for url in self.inputs:
parsed = urlparse(url)
# Yield the original URL
yield Url(url=url)
# Yield tags with extracted information
yield Tag(
name='url_scheme',
value=parsed.scheme,
match=url,
category='info'
)
yield Tag(
name='url_domain',
value=parsed.netloc,
match=url,
category='info'
)
yield Tag(
name='url_path',
value=parsed.path,
match=url,
category='info'
)
secator x urlprocessor https://example.com/path?query=1
~/.secator/templates/customscanner.py
import requests
from secator.decorators import task
from secator.definitions import URL
from secator.output_types import Vulnerability, Info, Warning
from secator.runners import PythonRunner
@task()
class customscanner(PythonRunner):
"""Custom vulnerability scanner."""
input_types = [URL]
output_types = [Vulnerability, Info, Warning]
tags = ['vuln', 'web']
def yielder(self):
yield Info(message="Starting custom scan")
for url in self.inputs:
try:
response = requests.get(url, timeout=5)
# Check for security headers
if 'X-Frame-Options' not in response.headers:
yield Vulnerability(
name="Missing X-Frame-Options header",
severity="medium",
confidence="high",
matched_at=url,
provider="customscanner"
)
# Check for exposed server information
if 'Server' in response.headers:
server = response.headers['Server']
yield Warning(
message=f"Server header exposed: {server}",
matched_at=url
)
except requests.RequestException as e:
yield Warning(
message=f"Failed to scan {url}: {str(e)}",
matched_at=url
)
yield Info(message="Scan complete")
~/.secator/templates/tagger.py
from secator.decorators import task
from secator.definitions import HOST
from secator.output_types import Tag
from secator.runners import PythonRunner
@task()
class tagger(PythonRunner):
"""Tag hosts with custom metadata."""
input_types = [HOST]
output_types = [Tag]
tags = ['tagging']
opts = {
'tag_name': {
'type': str,
'default': 'custom_tag',
'help': 'Name of the tag to apply'
},
'tag_value': {
'type': str,
'default': 'scanned',
'help': 'Value for the tag'
},
'category': {
'type': str,
'default': 'info',
'help': 'Tag category'
}
}
def yielder(self):
tag_name = self.run_opts.get('tag_name', 'custom_tag')
tag_value = self.run_opts.get('tag_value', 'scanned')
category = self.run_opts.get('category', 'info')
for host in self.inputs:
yield Tag(
name=tag_name,
value=tag_value,
match=host,
category=category
)
secator x tagger example.com --tag-name "environment" --tag-value "production"
~/.secator/templates/netdetect.py
import ifaddr
import ipaddress
from secator.decorators import task
from secator.output_types import Tag, Ip
from secator.runners import PythonRunner
@task()
class netdetect(PythonRunner):
"""Detect local network CIDR ranges."""
output_types = [Tag, Ip]
tags = ['network', 'recon']
default_inputs = '' # No inputs required
input_flag = None
def yielder(self):
adapters = ifaddr.get_adapters()
for adapter in adapters:
if adapter.name == 'lo' or adapter.name.lower().startswith('loopback'):
continue
yield Tag(
name='net_interface',
match='localhost',
value=adapter.nice_name,
category='info',
)
for ip in adapter.ips:
if ip.is_IPv4:
try:
network = ipaddress.IPv4Network(
f"{ip.ip}/{ip.network_prefix}",
strict=False
)
yield Ip(
ip=ip.ip,
host='localhost',
alive=True,
)
yield Tag(
name='net_cidr',
match='localhost',
value=str(network),
category='info',
)
except ValueError:
continue
secator x netdetect
def yielder(self):
yield Info(message=f"Task name: {self.name}")
yield Info(message=f"Processing {len(self.inputs)} inputs")
# Access custom options
timeout = self.run_opts.get('timeout', 10)
for input in self.inputs:
# Process each input
pass
~/.secator/templates/multiplexer.py
from secator.decorators import task
from secator.definitions import HOST
from secator.output_types import Url, Vulnerability, Tag, Info
from secator.runners import PythonRunner
@task()
class multiplexer(PythonRunner):
"""Process hosts and yield different output types."""
input_types = [HOST]
output_types = [Url, Vulnerability, Tag, Info]
def yielder(self):
yield Info(message="Starting multiplex scan")
for host in self.inputs:
# Always yield a URL
yield Url(url=f"https://{host}")
# Conditionally yield vulnerabilities
if "test" in host.lower():
yield Vulnerability(
name="Test environment detected",
severity="low",
confidence="high",
matched_at=host,
provider="multiplexer"
)
# Yield tags
yield Tag(
name="scanned_host",
value=host,
match=host,
category="info"
)
yield Info(message="Scan complete")
# Run the task
secator x mytask example.com
# Get help
secator x mytask --help
# Run with JSON output
secator x mytask example.com --json
# Run with custom options
secator x mytask example.com --option1 value1
from secator.tasks import mytask
# Run the task
results = mytask('example.com').run()
# Access results
for result in results:
print(f"{result._type}: {result}")
import some_library
@task()
class mytask(PythonRunner):
def yielder(self):
for input in self.inputs:
result = some_library.process(input)
yield Tag(name="result", value=result, match=input)
import requests
@task()
class apitask(PythonRunner):
def yielder(self):
for input in self.inputs:
response = requests.get(f"https://api.example.com/{input}")
data = response.json()
yield Tag(name="api_data", value=str(data), match=input)
@task()
class transform(PythonRunner):
def yielder(self):
for input in self.inputs:
# Transform the input
transformed = input.upper().replace("-", "_")
yield Tag(name="transformed", value=transformed, match=input)
