Summary
Glint is a web discovery dashboard designed for security assessments. Built on the Playwright asynchronous engine and containerized with Docker, Glint provides a straightforward web interface for fast reconnaissance and visual triage.
Why We Built Glint
Historically, we used tools like Aquatone and GoWitness for visual web enumeration. As our requirements evolved, we needed more flexible proxying capabilities to route our reconnaissance traffic through different environments. Specifically, we needed reliable support for both SOCKS and HTTP(S) proxies directly within the screenshotting engine.
To solve this, we built Glint. By leveraging Playwright, Glint natively supports these proxy configurations, making it easier to route traffic when pivoting through an internal network or using an external SOCKS tunnel. Additionally, we wanted to be able to view our results in real time instead of waiting for the scan to complete. We leverage a real time dashboard with live updates to display our results as they come in.
The Dashboard
Glint focuses on its graphical interface. While a CLI is available for quick sessions, the primary interface is a web dashboard built to handle large-scale discovery inside a Docker container.
Key Features:
- Live Activity: Watch your scans run in real-time with an activity feed and progress bar.
- Live Gallery: Screenshots appear in the UI automatically as they are captured, without needing a page refresh.
- Docker Deployment: Glint packages Playwright, Chromium, and all dependencies inside a container for easy setup.
- Nmap XML Import: Upload Nmap XML reports directly through the browser to populate your target list.
- Runtime Configuration: Adjust concurrency, timeouts, and proxy routing from the dashboard while scans are running.
- Technology Fingerprinting: Identifies common web servers, CMS platforms, and frameworks.
Project Organization
Glint organizes your data by keeping each engagement in a dedicated project directory, making it easy to search through your screenshots and scan results later.
Setup (Docker)
# Start the dashboard and background engine
docker-compose up -d --build
# Access the dashboard at http://localhost:8000Visual Triage
Glint helps simplify the process of reviewing screenshots. By presenting them in a real-time dashboard, it reduces the effort required to manually triage thousands of hosts.
During an assessment, you can quickly filter for “5xx Server Errors” or search for specific technologies. The live activity feed also helps identify interesting targets as soon as the scan starts.
Conclusion
Glint aims to make web discovery more straightforward. By automating screenshots and technology fingerprinting, it helps identify and categorize targets quickly so you can focus on the next steps.
Explore Glint on GitHub: bivens-security-consulting/Glint