# NeuroSploit — example credentials file for authenticated testing. # Pass with: neurosploit run --creds creds.yaml # or: neurosploit greybox --url --creds creds.yaml # or: neurosploit host --creds creds.yaml # or in the interactive session: /creds creds.yaml # # Use only the blocks you need. Small YAML subset: flat key: value + one-level # nested blocks (2-space indent), # comments, values optionally quoted. # ── Web auth: single identity (pick one) ───────────────────────────────────── jwt: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VyIjoiYWRtaW4ifQ.signature # header: "X-Api-Key: 0123456789abcdef" # cookie: "session=deadbeef; role=admin" # ── OR an automated login flow (harness performs it, captures the session) ─── login: url: http://localhost:8080/login method: POST username_field: username password_field: password username: admin password: password success: Logout # text that appears on a successful login # ── Multiple identities → access-control testing (IDOR/BOLA/BFLA/privesc) ───── # Define 2+ named roles; the agent authenticates as each and tests cross-role # access (authorized-vs-unauthorized proof). Give each role ONE credential type: # jwt | header (raw) | cookie | apikey | login + username + password # admin: # jwt: eyJ...adminBearer... # user: # apikey: abc123 # → X-Api-Key: abc123 # victim: # cookie: "session=victimsess" # tester: # login: https://app.example/api/login # username: tester # password: Passw0rd! # ── Infra/host (neurosploit host --creds creds.yaml) ──────────────────── ssh: host: 10.0.0.5 port: 22 user: ubuntu password: s3cret # or: key: /home/op/id_ed25519 windows: # also used for Active Directory host: 10.0.0.10 domain: CORP user: jdoe password: Winter2026! # or pass-the-hash: hash: aad3b435b51404eeaad3b435b51404ee:NThashhere # ── Cloud (exports env for aws/gcloud/az; read-only-first, non-destructive) ── # aws: # access_key_id: AKIA... # secret_access_key: ... # # session_token: ... # region: us-east-1 # # profile: my-sso-profile # gcp: # service_account_json: /path/to/sa.json # path (recommended); inline JSON also ok # project: my-project-id # azure: # service principal (best for automation) # tenant_id: ... # client_id: ... # client_secret: ... # subscription_id: ...