fkasler

Check out this dump utility. I'm sure you can tweak the logic for your needs. Buttercup 'a' format is a little messy, but 'b' format is just nested JSON: https://github.com/fkasler/butterbrute/blob/main/dump_vault.mjs

I'll look back at the playbook, but should be done by Flik: https://github.com/fkasler/flik/blob/main/templates/pm_config.json

@therealelyayo your issue seems to be something entirely different. If you set up with Flik, it will run 'npm install' for you and you will not have that problem. If...

@ifoam, can you give me some more context on how you are running Flik? The playbook for PM setup has a step in it for copying over a config.json.

@DarkReitor config.json will have settings like the authentication cookie to access the admin portal. It is intentionally left out of the project. If you set up with Flik, as per...

Flik is just meant to work well with Gandi's API to set the right DNS records and get a wildcard LetsEncrypt cert. You can just set the DNS records manually...

Can you share your config? Make sure you only use domains as targets. Not subdomains or URLs

Also, can you share what your link looks like?

Your search string should just be a GET parameter, and not a URL. In this case "id", however, I would normally go for something that is less likely to randomly...

That is the "issue" in this case, yes. But it is still keeping your domain safe from crawlers checking out the domain. So the attack is working just fine?