test(scan): fix integration_test SQL arity after calibrate param

#180 added the calibrate bool to SQL but the integration-tagged test (only built under -tags=integration, outside normal CI) still called the 4-arg form. pass false (no calibration) to restore behavior.
2026-06-26 16:33:58 -07:00 · 2026-06-22 22:10:40 -07:00
104 changed files with 211 additions and 211 deletions
@@ -171,7 +171,7 @@ jobs:

            **go install**
            ```bash
-            go install github.com/vmfunc/sif/cmd/sif@v${{ env.VERSION }}
+            go install github.com/dropalldatabases/sif/cmd/sif@v${{ env.VERSION }}
            ```

            **binary download** - grab the right archive from below.
@@ -36,7 +36,7 @@ linters:
      check-blank: false
      exclude-functions:
        # log writes are best-effort
-        - github.com/vmfunc/sif/internal/logger.Write
+        - github.com/dropalldatabases/sif/internal/logger.Write
        # Close on io.Closer is idiomatic best-effort
        - (io.Closer).Close
        - (*os.File).Close
@@ -17,13 +17,13 @@ import (
 	"os"

 	"github.com/charmbracelet/log"
-	"github.com/vmfunc/sif"
-	"github.com/vmfunc/sif/internal/config"
-	"github.com/vmfunc/sif/internal/patchnotes"
-	ver "github.com/vmfunc/sif/internal/version"
+	"github.com/dropalldatabases/sif"
+	"github.com/dropalldatabases/sif/internal/config"
+	"github.com/dropalldatabases/sif/internal/patchnotes"
+	ver "github.com/dropalldatabases/sif/internal/version"

 	// Register framework detectors
-	_ "github.com/vmfunc/sif/internal/scan/frameworks/detectors"
+	_ "github.com/dropalldatabases/sif/internal/scan/frameworks/detectors"
 )

 // version is stamped at release time via -ldflags "-X main.version=...";
@@ -31,7 +31,7 @@ welcome to the sif documentation. sif is a modular pentesting toolkit designed t

 ```bash
 # install
-git clone https://github.com/vmfunc/sif.git && cd sif && make
+git clone https://github.com/dropalldatabases/sif.git && cd sif && make

 # basic scan
 ./sif -u https://example.com
@@ -11,7 +11,7 @@ setting up a development environment for sif.
 ## clone and build

 ```bash
-git clone https://github.com/vmfunc/sif.git
+git clone https://github.com/dropalldatabases/sif.git
 cd sif
 make
 ```
@@ -39,7 +39,7 @@ download `sif-windows-amd64.exe` from releases and add to your PATH.
 requires go 1.25+

 ```bash
-git clone https://github.com/vmfunc/sif.git
+git clone https://github.com/dropalldatabases/sif.git
 cd sif
 make
 ```
@@ -1,4 +1,4 @@
-module github.com/vmfunc/sif
+module github.com/dropalldatabases/sif

 go 1.25.7

@@ -14,7 +14,7 @@ require (
 	github.com/projectdiscovery/retryabledns v1.0.115
 	github.com/projectdiscovery/utils v0.11.1
 	github.com/rocketlaunchr/google-search v1.1.6
-	github.com/tidwall/gjson v1.19.0
+	github.com/tidwall/gjson v1.18.0
 	github.com/twmb/murmur3 v1.1.8
 	golang.org/x/net v0.56.0
 	golang.org/x/time v0.15.0
@@ -1048,8 +1048,8 @@ github.com/tidwall/btree v1.8.1/go.mod h1:jBbTdUWhSZClZWoDg54VnvV7/54modSOzDN7VX
 github.com/tidwall/buntdb v1.3.2 h1:qd+IpdEGs0pZci37G4jF51+fSKlkuUTMXuHhXL1AkKg=
 github.com/tidwall/buntdb v1.3.2/go.mod h1:lZZrZUWzlyDJKlLQ6DKAy53LnG7m5kHyrEHvvcDmBpU=
 github.com/tidwall/gjson v1.12.1/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
-github.com/tidwall/gjson v1.19.0 h1:xwxm7n691Uf3u5OFjzngavjGTh55KX5q/9w9xHW88JU=
-github.com/tidwall/gjson v1.19.0/go.mod h1:V37/opeE/JbLUOfH0QTXiNez2l0RUjYUhpT4szFQAfc=
+github.com/tidwall/gjson v1.18.0 h1:FIDeeyB800efLX89e5a8Y0BNH+LOngJyGrIWxG2FKQY=
+github.com/tidwall/gjson v1.18.0/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
 github.com/tidwall/grect v0.1.4 h1:dA3oIgNgWdSspFzn1kS4S/RDpZFLrIxAZOdJKjYapOg=
 github.com/tidwall/grect v0.1.4/go.mod h1:9FBsaYRaR0Tcy4UwefBX/UDcDcDy9V5jUcxHzv2jd5Q=
 github.com/tidwall/lotsa v1.0.2 h1:dNVBH5MErdaQ/xd9s769R31/n2dXavsQ0Yf4TMEHHw8=
@@ -21,11 +21,11 @@ import (
 	"fmt"
 	"strings"

+	"github.com/dropalldatabases/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/scan"
+	"github.com/dropalldatabases/sif/internal/scan/frameworks"
+	"github.com/dropalldatabases/sif/internal/scan/js"
 	"github.com/projectdiscovery/nuclei/v3/pkg/output"
-	"github.com/vmfunc/sif/internal/modules"
-	"github.com/vmfunc/sif/internal/scan"
-	"github.com/vmfunc/sif/internal/scan/frameworks"
-	"github.com/vmfunc/sif/internal/scan/js"
 )

 // Finding is the normalized shape every scanner result collapses to. one
@@ -16,13 +16,13 @@ import (
 	"strings"
 	"testing"

+	"github.com/dropalldatabases/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/scan"
+	"github.com/dropalldatabases/sif/internal/scan/frameworks"
+	"github.com/dropalldatabases/sif/internal/scan/js"
 	"github.com/projectdiscovery/nuclei/v3/pkg/model"
 	"github.com/projectdiscovery/nuclei/v3/pkg/model/types/severity"
 	"github.com/projectdiscovery/nuclei/v3/pkg/output"
-	"github.com/vmfunc/sif/internal/modules"
-	"github.com/vmfunc/sif/internal/scan"
-	"github.com/vmfunc/sif/internal/scan/frameworks"
-	"github.com/vmfunc/sif/internal/scan/js"
 )

 // scanResultType mirrors the minimal interface the scan packages implement; the
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runAnalyticsModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runAppCfgModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runArgocdModule(t *testing.T, status int, body string) *modules.Result {
@@ -23,7 +23,7 @@ import (
 	"sync"
 	"testing"

-	"github.com/vmfunc/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/httpx"
 )

 func reqURLs(reqs []*httpRequest) []string {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runBigDataModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -19,7 +19,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runBuildCredModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runCMSCfgModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runCredModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runPipelineModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -8,7 +8,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runDBFileModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runDBModule(t *testing.T, file string, status int, headers map[string]string, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runDebugModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runDeployModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runDistDBModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runDotfileModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -19,7 +19,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 // runEnvModule runs the env exposure module end to end against a server that
@@ -22,7 +22,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/httpx"
 )

 const testTimeout = 5 * time.Second
@@ -16,7 +16,7 @@ import (
 	"fmt"
 	"math"

-	"github.com/vmfunc/sif/internal/fingerprint"
+	"github.com/dropalldatabases/sif/internal/fingerprint"
 )

 // checkFaviconHash reports whether the body's shodan mmh3 hash matches any
@@ -21,8 +21,8 @@ import (
 	"strings"
 	"testing"

-	"github.com/vmfunc/sif/internal/fingerprint"
-	"github.com/vmfunc/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/fingerprint"
+	"github.com/dropalldatabases/sif/internal/httpx"
 )

 // faviconFixture hashes to a negative int32, so its signed and unsigned forms
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runHTTPDBModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -19,7 +19,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runInfraModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -18,7 +18,7 @@ import (
 	"net/http/httptest"
 	"testing"

-	"github.com/vmfunc/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/httpx"
 )

 func TestRunExtractorsJSON(t *testing.T) {
@@ -19,7 +19,7 @@ import (
 	"runtime"

 	"github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // Loader handles module discovery and loading.
@@ -19,7 +19,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runLoginModule(t *testing.T, file string, status int, headers map[string]string, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runMgmtModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -21,7 +21,7 @@ import (
 	"path/filepath"
 	"testing"

-	"github.com/vmfunc/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/httpx"
 )

 func TestCheckMatchersCondition(t *testing.T) {
@@ -19,7 +19,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runMetricsModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -93,7 +93,7 @@ type Matcher struct {
 	Status    []int    `yaml:"status,omitempty"`
 	Size      []int    `yaml:"size,omitempty"`
 	Hash      []int64  `yaml:"hash,omitempty"` // favicon: shodan mmh3 hashes (signed or unsigned)
-	Condition string   `yaml:"condition"`      // and, or
+	Condition string   `yaml:"condition"` // and, or
 	Negative  bool     `yaml:"negative"`
 }

@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 // runOpsModule runs a shipped module end to end against a server that returns
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runOrchModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runRailsModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runRegistryModule(t *testing.T, file string, status int, headers map[string]string, body string) *modules.Result {
@@ -19,7 +19,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runRuntimeModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runSecretModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -8,7 +8,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runVCSModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runVectorDBModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -7,7 +7,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 func runWebSrvModule(t *testing.T, file string, status int, body string) *modules.Result {
@@ -16,7 +16,7 @@ import (
 	"context"
 	"net/http"

-	"github.com/vmfunc/sif/internal/finding"
+	"github.com/dropalldatabases/sif/internal/finding"
 )

 // discordProvider posts to a discord webhook. discord's incoming-webhook body
@@ -20,8 +20,8 @@ import (
 	"net/http"
 	"strings"

-	"github.com/vmfunc/sif/internal/finding"
-	"github.com/vmfunc/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/finding"
+	"github.com/dropalldatabases/sif/internal/httpx"
 )

 // contentTypeJSON is the body type every provider POSTs; all four speak json.
@@ -22,9 +22,9 @@ import (
 	"net/http"
 	"time"

-	"github.com/vmfunc/sif/internal/finding"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/finding"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // Options carries the runtime knobs Send needs. Timeout bounds each provider's
@@ -22,7 +22,7 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/finding"
+	"github.com/dropalldatabases/sif/internal/finding"
 )

 // sampleFindings returns a small mixed-severity batch for payload assertions.
@@ -16,7 +16,7 @@ import (
 	"context"
 	"net/http"

-	"github.com/vmfunc/sif/internal/finding"
+	"github.com/dropalldatabases/sif/internal/finding"
 )

 // slackProvider posts to a slack incoming webhook. the webhook url already pins
@@ -16,7 +16,7 @@ import (
 	"context"
 	"net/http"

-	"github.com/vmfunc/sif/internal/finding"
+	"github.com/dropalldatabases/sif/internal/finding"
 )

 // telegramAPIBase is the bot api root. it's a var so tests can repoint it at an
@@ -16,7 +16,7 @@ import (
 	"context"
 	"net/http"

-	"github.com/vmfunc/sif/internal/finding"
+	"github.com/dropalldatabases/sif/internal/finding"
 )

 // webhookProvider posts a structured json payload to an arbitrary endpoint. unlike
@@ -13,8 +13,8 @@
 package format

 import (
+	"github.com/dropalldatabases/sif/internal/styles"
 	nucleiout "github.com/projectdiscovery/nuclei/v3/pkg/output"
-	"github.com/vmfunc/sif/internal/styles"
 )

 func FormatLine(event *nucleiout.ResultEvent) string {
@@ -17,8 +17,8 @@ import (
 	"fmt"
 	"strings"

-	"github.com/vmfunc/sif/internal/modules"
-	"github.com/vmfunc/sif/internal/scan/frameworks"
+	"github.com/dropalldatabases/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/scan/frameworks"
 )

 type FrameworksModule struct{}
@@ -16,8 +16,8 @@ import (
 	"context"
 	"fmt"

-	"github.com/vmfunc/sif/internal/modules"
-	"github.com/vmfunc/sif/internal/scan"
+	"github.com/dropalldatabases/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/scan"
 )

 type NucleiModule struct{}
@@ -12,7 +12,7 @@

 package builtin

-import "github.com/vmfunc/sif/internal/modules"
+import "github.com/dropalldatabases/sif/internal/modules"

 // Register registers all Go-based built-in scans as modules.
 // Allows complex Go scans to participate in the module system
@@ -17,8 +17,8 @@ import (
 	"fmt"
 	"strings"

-	"github.com/vmfunc/sif/internal/modules"
-	"github.com/vmfunc/sif/internal/scan"
+	"github.com/dropalldatabases/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/scan"
 )

 type SecurityTrailsModule struct{}
@@ -17,8 +17,8 @@ import (
 	"fmt"
 	"strings"

-	"github.com/vmfunc/sif/internal/modules"
-	"github.com/vmfunc/sif/internal/scan"
+	"github.com/dropalldatabases/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/scan"
 )

 type ShodanModule struct{}
@@ -15,8 +15,8 @@ package builtin
 import (
 	"context"

-	"github.com/vmfunc/sif/internal/modules"
-	"github.com/vmfunc/sif/internal/scan"
+	"github.com/dropalldatabases/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/scan"
 )

 type WhoisModule struct{}
@@ -21,9 +21,9 @@ import (
 	"time"

 	"github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/styles"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/styles"
 )

 // s3EndpointFmt is a var so integration tests can repoint it at a fixture; the
@@ -19,9 +19,9 @@ import (
 	"strings"
 	"time"

-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 type CMSResult struct {
@@ -22,9 +22,9 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // CORSResult collects every cors misconfiguration found on the target.
@@ -21,9 +21,9 @@ import (

 	"github.com/gocolly/colly/v2"

-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // CrawlResult holds the deduped set of urls discovered by the spider.
@@ -26,14 +26,14 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
-	"github.com/vmfunc/sif/internal/pool"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/pool"
 )

 // directoryURL is a var so integration tests can repoint it at a fixture.
-var directoryURL = "https://raw.githubusercontent.com/vmfunc/sif-runtime/main/dirlist/"
+var directoryURL = "https://raw.githubusercontent.com/dropalldatabases/sif-runtime/main/dirlist/"

 const (
 	smallFile  = "directory-list-2.3-small.txt"
@@ -21,15 +21,15 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/dnsx"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
-	"github.com/vmfunc/sif/internal/pool"
+	"github.com/dropalldatabases/sif/internal/dnsx"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/pool"
 )

 // dnsURL is a var so integration tests can repoint it at a fixture.
-var dnsURL = "https://raw.githubusercontent.com/vmfunc/sif-runtime/main/dnslist/"
+var dnsURL = "https://raw.githubusercontent.com/dropalldatabases/sif-runtime/main/dnslist/"

 // dnsTransport is a var so integration tests can route the per-host probes at a
 // local server instead of resolving real DNS. nil keeps http.DefaultTransport.
@@ -25,15 +25,15 @@ import (
 	"time"

 	"github.com/charmbracelet/log"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/pool"
 	googlesearch "github.com/rocketlaunchr/google-search"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
-	"github.com/vmfunc/sif/internal/pool"
 )

 const (
-	dorkURL  = "https://raw.githubusercontent.com/vmfunc/sif-runtime/main/dork/"
+	dorkURL  = "https://raw.githubusercontent.com/dropalldatabases/sif-runtime/main/dork/"
 	dorkFile = "dork.txt"
 )

@@ -21,10 +21,10 @@ import (
 	"strings"
 	"time"

-	"github.com/vmfunc/sif/internal/fingerprint"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/fingerprint"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // FaviconResult is the computed shodan-style favicon hash plus the pivot query
@@ -17,7 +17,7 @@ import (
 	"strings"
 	"testing"

-	"github.com/vmfunc/sif/internal/modules"
+	"github.com/dropalldatabases/sif/internal/modules"
 )

 // favicon demo modules must reference a hash from faviconHashes that names the
@@ -30,7 +30,7 @@ import (
 	"strings"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/output"
 	"gopkg.in/yaml.v3"
 )

@@ -22,9 +22,9 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // detectionThreshold is the minimum confidence for a detection to be reported.
@@ -18,9 +18,9 @@ import (
 	"testing"
 	"time"

-	"github.com/vmfunc/sif/internal/scan/frameworks"
+	"github.com/dropalldatabases/sif/internal/scan/frameworks"
 	// Import detectors to register them via init()
-	_ "github.com/vmfunc/sif/internal/scan/frameworks/detectors"
+	_ "github.com/dropalldatabases/sif/internal/scan/frameworks/detectors"
 )

 func TestExtractVersion_Laravel(t *testing.T) {
@@ -23,7 +23,7 @@ import (
 	"math"
 	"net/http"

-	fw "github.com/vmfunc/sif/internal/scan/frameworks"
+	fw "github.com/dropalldatabases/sif/internal/scan/frameworks"
 )

 func init() {
@@ -22,7 +22,7 @@ package detectors
 import (
 	"net/http"

-	fw "github.com/vmfunc/sif/internal/scan/frameworks"
+	fw "github.com/dropalldatabases/sif/internal/scan/frameworks"
 )

 func init() {
@@ -22,7 +22,7 @@ package detectors
 import (
 	"net/http"

-	fw "github.com/vmfunc/sif/internal/scan/frameworks"
+	fw "github.com/dropalldatabases/sif/internal/scan/frameworks"
 )

 func init() {
@@ -22,7 +22,7 @@ package detectors
 import (
 	"net/http"

-	fw "github.com/vmfunc/sif/internal/scan/frameworks"
+	fw "github.com/dropalldatabases/sif/internal/scan/frameworks"
 )

 func init() {
@@ -22,14 +22,14 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
-	"github.com/vmfunc/sif/internal/pool"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/pool"
 )

 // gitURL is a var so integration tests can repoint it at a fixture.
-var gitURL = "https://raw.githubusercontent.com/vmfunc/sif-runtime/main/git/"
+var gitURL = "https://raw.githubusercontent.com/dropalldatabases/sif-runtime/main/git/"

 const gitFile = "git.txt"

@@ -17,9 +17,9 @@ import (
 	"net/http"
 	"time"

-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 type HeaderResult struct {
@@ -30,8 +30,8 @@ import (
 	"regexp"
 	"strings"

+	"github.com/dropalldatabases/sif/internal/httpx"
 	urlutil "github.com/projectdiscovery/utils/url"
-	"github.com/vmfunc/sif/internal/httpx"
 )

 // nextPagesRegex matches JavaScript file references in Next.js build manifest.
@@ -22,10 +22,10 @@ import (

 	"github.com/antchfx/htmlquery"
 	charmlog "github.com/charmbracelet/log"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/scan/js/frameworks"
 	urlutil "github.com/projectdiscovery/utils/url"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/output"
-	"github.com/vmfunc/sif/internal/scan/js/frameworks"
 )

 type JavascriptScanResult struct {
@@ -30,7 +30,7 @@ import (
 	"time"

 	"github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/httpx"
 )

 // jwtRegex matches JWT tokens in JavaScript content.
@@ -27,9 +27,9 @@ import (
 	"strings"
 	"time"

-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // JWTResult collects every token discovered on the target plus the offline
@@ -24,9 +24,9 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // LFIResult represents the results of LFI reconnaissance
@@ -19,11 +19,11 @@ import (
 	"time"

 	"github.com/charmbracelet/log"
+	"github.com/dropalldatabases/sif/internal/nuclei/format"
+	"github.com/dropalldatabases/sif/internal/nuclei/templates"
+	sifoutput "github.com/dropalldatabases/sif/internal/output"
 	nuclei "github.com/projectdiscovery/nuclei/v3/lib"
 	"github.com/projectdiscovery/nuclei/v3/pkg/output"
-	"github.com/vmfunc/sif/internal/nuclei/format"
-	"github.com/vmfunc/sif/internal/nuclei/templates"
-	sifoutput "github.com/vmfunc/sif/internal/output"
 )

 func Nuclei(url string, timeout time.Duration, threads int, logdir string) ([]output.ResultEvent, error) {
@@ -24,9 +24,9 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 	"gopkg.in/yaml.v3"
 )

@@ -23,9 +23,9 @@ import (
 	"strings"
 	"time"

-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // source base urls are vars so tests can repoint them at local fixtures. they
@@ -23,14 +23,14 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
-	"github.com/vmfunc/sif/internal/pool"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/pool"
 )

 // commonPorts is a var so integration tests can repoint it at a fixture.
-var commonPorts = "https://raw.githubusercontent.com/vmfunc/sif-runtime/main/ports/top-ports.txt"
+var commonPorts = "https://raw.githubusercontent.com/dropalldatabases/sif-runtime/main/ports/top-ports.txt"

 func Ports(ctx context.Context, scope string, url string, timeout time.Duration, threads int, logdir string) ([]string, error) {
 	log := output.Module("PORTS")
@@ -21,9 +21,9 @@ import (
 	"strings"
 	"time"

-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // ProbeResult is the httpx-style liveness snapshot for one target: did it answer,
@@ -24,9 +24,9 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // RedirectResult collects every open-redirect found on the target.
@@ -26,10 +26,10 @@ import (
 	"time"

 	"github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
-	"github.com/vmfunc/sif/internal/pool"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/pool"
 )

 // stripScheme drops the scheme:// prefix from url, or returns it unchanged when
@@ -19,9 +19,9 @@ import (
 	"strings"
 	"time"

-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 type SecurityHeaderResult struct {
@@ -23,9 +23,9 @@ import (
 	"strings"
 	"time"

-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // securityTrailsBaseURL is a var so integration tests can repoint it at a fixture.
@@ -24,9 +24,9 @@ import (
 	"strings"
 	"time"

-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // shodanBaseURL is a var so integration tests can repoint it at a fixture.
@@ -23,9 +23,9 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // SQLResult represents the results of SQL reconnaissance
@@ -23,10 +23,10 @@ import (
 	"time"

 	"github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/pool"
-	"github.com/vmfunc/sif/internal/styles"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/pool"
+	"github.com/dropalldatabases/sif/internal/styles"
 )

 // SubdomainTakeoverResult represents the outcome of a subdomain takeover vulnerability check.
@@ -14,9 +14,9 @@ package scan

 import (
 	"github.com/charmbracelet/log"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 	"github.com/likexian/whois"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
 )

 func Whois(url string, logdir string) {
@@ -23,9 +23,9 @@ import (
 	"time"

 	charmlog "github.com/charmbracelet/log"
-	"github.com/vmfunc/sif/internal/httpx"
-	"github.com/vmfunc/sif/internal/logger"
-	"github.com/vmfunc/sif/internal/output"
+	"github.com/dropalldatabases/sif/internal/httpx"
+	"github.com/dropalldatabases/sif/internal/logger"
+	"github.com/dropalldatabases/sif/internal/output"
 )

 // XSSResult collects every likely reflected-xss point on the target.
@@ -24,7 +24,7 @@ import (
 	"path/filepath"
 	"strings"

-	"github.com/vmfunc/sif/internal/finding"
+	"github.com/dropalldatabases/sif/internal/finding"
 )

 // snapshotFileMode is applied to written snapshot files: owner read/write only.
@@ -19,7 +19,7 @@ import (
 	"sort"
 	"testing"

-	"github.com/vmfunc/sif/internal/finding"
+	"github.com/dropalldatabases/sif/internal/finding"
 )

 // sampleFindings is a small, stable set of findings reused across the round-trip
--- a/Show More
+++ b/Show More