docs add Codebase Overview (#1129)

securestep9 · web-flow · commit bf43de5f71a2 · 2025-09-07T18:29:02.000Z
diff --git a/docs/CodebaseOverview.md b/docs/CodebaseOverview.md
@@ -0,0 +1,78 @@
+## OWASP Nettacker Codebase Overview
+OWASP Nettacker is an open‑source, Python‑based framework for automated penetration testing and information gathering. It supports modular tasks such as port scanning, service detection, subdomain enumeration, vulnerability scans, and credential brute forcing, all driven by a unified CLI, REST API, and Web UI.
+
+
+## Project layout
+
+```
+.
+├── docs
+├── nettacker
+│   ├── api
+│   ├── core
+│   │   ├── lib
+│   │   └── utils
+│   ├── database
+│   ├── lib
+│   │   ├── compare_report
+│   │   ├── graph
+│   │   │   ├── d3_tree_v1
+│   │   │   └── d3_tree_v2
+│   │   ├── html_log
+│   │   ├── icmp
+│   │   └── payloads
+│   │       ├── User-Agents
+│   │       ├── passwords
+│   │       └── wordlists
+│   ├── locale
+│   ├── modules
+│   │   ├── brute
+│   │   ├── scan
+│   │   └── vuln
+│   └── web
+│       └── static
+│           ├── css
+│           ├── fonts
+│           ├── img
+│           │   └── flags
+│           │       ├── 1x1
+│           │       └── 4x3
+│           ├── js
+│           └── report
+└── tests
+    ├── api
+    ├── core
+    │   ├── lib
+    │   └── utils
+    ├── database
+    └── lib
+        └── payloads
+
+```
+
+- **Entry point** – `nettacker/main.py` creates a `Nettacker` application instance and runs it when invoked via the provided script or CLI
+- **Core engine (`nettacker/core`)**
+  - `app.py` orchestrates scans: parsing arguments, expanding targets (including IP ranges and subdomains), launching multiprocess/multithread modules, and generating reports
+  - `module.py` loads YAML-defined modules, applies service discovery results, expands payload loops, and dispatches protocol-specific engines in threaded fashion
+  - `arg_parser.py`, `ip.py`, `messages.py`, and `utils` provide CLI parsing, IP range handling, internationalized messages, and common helpers
+  - Protocol engines reside in `core/lib` (e.g., HTTP, FTP, SSH, SMTP, socket) and are invoked by modules
+- **Modules (`nettacker/modules`)** – Scanning logic is defined declaratively in YAML under three categories (`brute`, `scan`, `vuln`). Each module contains an `info` block and a list of `payloads` that specify library, request parameters, fuzzing rules, and response conditions. Example: `dir_scan` performs directory discovery over HTTP using wordlists and response conditions
+- **Database layer (`nettacker/database`)** – Uses SQLAlchemy to interface with SQLite, MySQL, or PostgreSQL for persisting events and reports
+- **API & Web UI (`nettacker/api`, `nettacker/web`)** – Flask-based REST API plus static assets enabling web‑based scan management
+- **Supporting libraries (`nettacker/lib`)** – Reporting helpers, ICMP tools, graph generation, and payload wordlists
+- **Configuration** – `config.py` defines default paths, database settings, and runtime options
+- **Tests** – The `tests` directory includes unit tests and validation checks; for example, `test_yaml_regexes.py` ensures regex definitions in YAML modules compile correctly
+- **Build & dependencies** – `pyproject.toml` defines the project as a Poetry package and lists dependencies such as `aiohttp`, `multiprocess`, `paramiko`, and `sqlalchemy`
+
+## Important concepts
+- **Modular architecture:** Modules are YAML files; the engine interprets them and runs protocol-specific steps.
+- **Target expansion:** Before scanning, the engine normalizes URLs, enumerates IP ranges, resolves subdomains, and runs preliminary checks like ICMP and port scans
+- **Service discovery:** Results from `port_scan` feed into subsequent modules, allowing conditional execution based on discovered services. Service discovery can be turned off during scans using `-d` or `--skip-service-discovery` run-time option.
+- **Concurrency:** Scans are distributed across processes and threads for performance, with configurable limits per host and module using the `-t` and `-M` runtime options. The requests can be rate-limited using the `-w` option.
+
+## Where to go next
+- **Documentation:** Review `docs/Installation.md` and `docs/Usage.md` for setup and basic usage; `docs/Modules.md` explains module types and parameters; `docs/Developers.md` covers contribution guidelines and how to add languages or modules
+- **Explore modules:** Study YAML files under `nettacker/modules/*` to see how scans, brute-force checks, and vulnerability tests are structured.
+- **Understand protocol engines:** Read files in `nettacker/core/lib/` to learn how HTTP, socket, and other protocol interactions are implemented.
+- **Run locally:** Use the CLI (`nettacker`) or Docker instructions in [Installation](Installation.md) and [Usage](Usage.md)
+- **Contribute:** Follow the guidelines in `docs/Developers.md` and run `make pre-commit` and `make test` before submitting changes.
diff --git a/docs/Developers.md b/docs/Developers.md
@@ -19,6 +19,7 @@ ________
 
 These are the guidelines you need to keep in mind while contributing:
 
+* Start by familiarising yourself with the Nettacker Codebase: [Codebase Overview](CodebaseOverview.md)
 * Use the automated checks: run `make pre-commit` and `make test`
 * Thoroughly test your code locally.
 * Be sure to add/update related documentation.
@@ -44,8 +45,8 @@ OWASP Nettacker is using multi-language libraries (default English) to create a
 
 In some cases language library does not exist, you can create a new file and add it to the framework.
 
-* 1- Goto `lib/messages`
-* 2- Name your message library e.g. `fa.yaml`
+* 1- Goto `nettacker/locale`
+* 2- Name your message library in accordance with the ISO two-letter code e.g. `fa.yaml`
 * 3- Copy the default language lib (`en.yaml`) and start your translation.
 * 4- **Please notice that you should not change the key-value like `scan_started`, `options` and etc. you just need to modify the Values.**
 
@@ -59,7 +60,7 @@ To contribute to the existing libraries, You may go to `lib/messages` select the
 
 # Contribute to Modules
 
-Modules exist in path `/modules/module_category`. Currently, we have three categories (scan, brute, vuln). if you need to add more just create a directory with a name! To start a new module you should understand what kind of protocol you want to use. The list of protocols and module functionalities are in `core/module_protocols`. To understand how they work read the below example.
+Modules exist in path `nettacker/modules/module_category`. Currently, we have three categories (scan, brute, vuln). if you need to add more just create a directory with a name! To start a new module you should understand what kind of protocol you want to use. The list of protocols and module functionalities are in `core/module_protocols`. To understand how they work read the below example.
 
 ```yaml
 info: # this section is to store information about module
