--- - name: IVRE NETWORK SCAN hosts: scaleway become: true gather_facts: true vars: #TODO target in list target_network: 163.172.0.0/20 processes_nmap: 5 category: scale_82 source: tower # 163.172.0.0/20 # 163.172.16.0/20 # 163.172.31.0/20 # 163.172.48.0/20 # 163.172.63.254/20 username: jingohalert password: !vault | $ANSIBLE_VAULT;1.2;AES256;prod 66346630333538386564396632636161316239326530653037666465616165393135666532643264 3037363865363531636635306535663736353734333733340a363639636638396662616538343335 65366439343135636634393832636436353764303066653530346232323164376265313039373630 3863613961373430340a303866363962353262623030373061616134303366336237346631383539 3130 tasks: - name: Run SCAN community.docker.docker_container_exec: container: ivreclient argv: - ivre - runscans - --processes - "{{ processes_nmap }}" - --network - "{{ target_network }}" - --output=XMLFork ignore_errors: true - name: Pause for 10 minutes to build app cache ansible.builtin.pause: minutes: 10 - name: Run SCAN2DB community.docker.docker_container_exec: container: ivreclient argv: - ivre - scan2db - "-c" - "{{ category }}" - "-s" - "{{ source }}" - "-r" - "scans/NET-{{ target_network.split('/')[0] }}-{{ target_network.split('/')[-1] }}/up" register: scan2db ignore_errors: true # - debug: # msg: "{{ scan2db }}" - name: Run DB2VIEW community.docker.docker_container_exec: container: ivreclient argv: - ivre - db2view - nmap when: scan2db.failed is false - name: NTFY when scan finished uri: url: "https://alert.jingoh.fr/scaleway" method: POST user: "{{ username }}" password: "{{ password }}" headers: Title: "SCAN NETWORK {{ target_network }}" ta: "globe_with_meridians" body: "scan finished !" status_code: 200 delegate_to: localhost when: scan2db.failed is false