Romp documentation

Romp is eight cooperating security modules — the Pack — plus a watchdog. Each module is a small Node service. They run on your machine. Nothing is sent to a cloud unless you point them at one.

Pick your starting point

First time Install Curl-pipe-bash, deb, or tarball. systemd or no systemd. Linux today; macOS + Windows shipped per cross-platform-plan. Already running CLI cheatsheet Every romp command — recon, dast, pentest, forensics, AI, alerts. ~50 commands across 8 verb groups. Conceptual The Pack What each otter does. Red recons. Blue crawls. Black breaks. Green watches. Grey audits. White triages. Orange and Yellow clean up. Building on top API reference 103 HTTP endpoints across 8 services. Every otter is a plain Node app — POST JSON, get JSON. Tweaking Configuration romp.json structure, environment overrides, demo-mode redaction, private-target allowlist, license key.

What Romp does

Romp scans your servers and apps for the same things attackers do: open ports, weak ciphers, missing security headers, exposed admin endpoints, leaked secrets in JS bundles, vulnerable dependencies, subdomain takeovers, JWT misconfigurations. It also watches your own host for new SUID binaries, world-writable files, suspicious cron jobs, and SSH config drift.

The CLI mirrors the dashboards. Anything you can click, you can script. Anything you can script, you can pipe into your own tooling.

The 30-second start

curl -fsSL https://jandgstudios.fun/install.sh | sh
sudo systemctl enable --now romp.target
romp status
romp recon ssl example.com

That's it. The rest of the docs go deep on each piece. Start with Install if you haven't yet.

Bug? Wrong link? Email gerald@domainless.fun or open an issue on the source bundled in the tarball.