Initial commit: AASRT v1.0.0 - AI Agent Security Reconnaissance Tool

queries/autogpt.yaml

@@ -0,0 +1,18 @@
+# AutoGPT Vulnerability Scan Template
+name: AutoGPT Instances
+description: Detect exposed AutoGPT AI agent dashboards
+author: AASRT
+version: 1.0
+
+queries:
+  - 'http.title:"Auto-GPT"'
+  - 'http.title:"AutoGPT"'
+  - 'http.html:"autogpt" port:8000'
+  - 'http.html:"Auto-GPT" http.html:"OpenAI"'
+  - 'http.html:"autogpt" http.html:"execute"'
+
+tags:
+  - ai-agent
+  - openai
+  - llm
+  - autonomous

queries/clawdbot.yaml

@@ -0,0 +1,17 @@
+# ClawdBot Vulnerability Scan Template
+name: ClawdBot Instances
+description: Detect exposed ClawdBot AI agent dashboards
+author: AASRT
+version: 1.0
+
+queries:
+  - 'http.title:"ClawdBot Dashboard"'
+  - 'http.html:"ClawdBot" port:3000'
+  - 'product:"ClawdBot"'
+  - 'http.html:"anthropic" http.html:"api_key"'
+  - 'http.html:"ClawdBot" http.html:"execute"'
+
+tags:
+  - ai-agent
+  - anthropic
+  - llm

queries/clawsec_advisories.yaml

@@ -0,0 +1,32 @@
+# ClawSec Advisory Targets
+# Scan templates for systems affected by ClawSec-published advisories
+name: ClawSec Advisory Targets
+description: Scan for systems affected by ClawSec-published security advisories
+author: AASRT
+version: 1.0
+
+queries:
+  # Clawdbot vulnerabilities (per ClawSec advisories)
+  - 'http.title:"ClawdBot Dashboard"'
+  - 'http.html:"clawdbot" http.html:"execute"'
+  - 'product:"ClawdBot" port:3000'
+
+  # Moltbot exposure patterns
+  - 'http.title:"Moltbot Dashboard"'
+  - 'http.title:"Moltbot" http.html:"api"'
+  - 'product:"Moltbot" port:8080'
+
+  # Generic OpenClaw patterns
+  - 'http.html:"OpenClaw" http.html:"agent"'
+  - 'http.title:"OpenClaw" port:3000'
+
+  # AI Agent API exposure (common vulnerability patterns)
+  - 'http.html:"sk-ant-" http.html:"api"'
+  - 'http.html:"anthropic" http.html:"execute"'
+
+tags:
+  - clawsec
+  - threat-intel
+  - cve
+  - ai-agents
+  - critical

queries/custom.yaml.example

@@ -0,0 +1,18 @@
+# Custom Query Template Example
+# Copy this file and modify for your own Shodan queries
+
+name: Custom Template
+description: Example custom query template
+author: Your Name
+version: 1.0
+
+# List of Shodan queries to execute
+queries:
+  - 'http.title:"Your Target"'
+  - 'http.html:"keyword" port:8080'
+  - 'product:"ProductName"'
+
+# Tags for categorization
+tags:
+  - custom
+  - example

queries/langchain.yaml

@@ -0,0 +1,18 @@
+# LangChain Agents Vulnerability Scan Template
+name: LangChain Agents
+description: Detect exposed LangChain AI agent implementations
+author: AASRT
+version: 1.0
+
+queries:
+  - 'http.html:"langchain" http.html:"agent"'
+  - 'product:"LangChain"'
+  - 'http.html:"LangChain" port:8000'
+  - 'http.html:"langchain" http.html:"tool"'
+  - 'http.title:"LangChain" OR http.title:"Langchain"'
+
+tags:
+  - ai-agent
+  - langchain
+  - llm
+  - framework