The @owasp Amass Project is happy to announce the next release, version 4.0! This major version brings some exciting new features 👇
The Open Asset Model, which is the data model being used to represent assets exposed on the Internet! The taxonomy currently includes asset types previously enumerated by Amass, but the model will soon be expanded to include new types and relationships.
The Asset DB is our new database interaction layer, written in Go, for storing open-asset-model data in sqlite3 and @postgresql. The assets are queried similar to how nodes are accessed in a #graphdatabase system and have relationships to each other.
A new config file that will be easier to setup and written in #yaml. Credentials for data sources will be acquired from separate locations and no longer be included in the file. In summary, you will have a cleaner and simpler experience configuring Amass.
Moving forward, the project will be expanding the Open Asset Model and developing a new collection engine that’s capable of discovering all asset types in the model!
#attacksurface #infosec #osint #recon #bugbounty #vulnerabilitymanagement #threatintel #redteam