Alexa skill example for Faraday API
In this blog, we are going to review a shortl example of an Amazon Echo (Alexa) skill to connect with our Faraday API
The idea is to implement the following actions:
1) Get a list of all the workspaces available in your Faraday with an information summary
2) Get a list of all the available users
3) Get the last vulnerabilities and actions added in a given workspace
4) Bonus track: Get the latest news of netsec and hackernews :)
For this we are going to use the following tools/libs/etc:
Flask
Flask-Ask
requests
configparser
feedparser
Amazon Echo (Alexa) — https://developer.amazon.com
ngrok — https://ngrok.com
Faraday API — https://github.com/infobyte/faraday/wiki/API-ServerLet’s start with a small video demo using Alexa with the Faraday Skill activated:
Steps for running your own skill:
1) First of all, you have to clone the GitHub of the Faraday Skill code:
https://github.com/infobyte/alexafaraday
The reposity have the following files:
etc/config.txt #Faraday API Server configuration
__init__.py #Skill Webserver API
faradayapi.py #Faraday API connector
hackernewsapi.py #Hackernews API
netsecapi.py #netsec APIIn order to start our skill, we need to run the webserver
$ python2 __init__.py #this going to start a webserver in loopback http://localhost:5000
Then we have to run ngrok to create a public address for our localserver
$ ngrok http 5000
You have to remember that every time that you run ngrok your URL will be changing and this new URL has to be configured in an Amazon endpoint
Working in the Amazon Developer Console:
Navigate over to https://developer.amazon.com/alexa and sign in/sign up using your credentials of choice.
Then you have to select from the menu, Alexa, “Alexa Skill Kit”
We’ll select “Create Skill” on the upper right, then select the Skill Name “Faraday” and “Custom” model
Select then “Start from scratch” template
We’ll fill it in with our initial skills data, as pictured below. Note: pay special attention to the invocation name. This is what will start your application. If you want it to be “Alexa, start Faraday” put it here.
Now we are going to build what’s called an intent schema. The intent schema tells Alexa what “intents” are possible. It’s formatted as a JSON, drop this into the “JSON Editor” box you will find the intents in the file “intents.txt” from the Github
Configure the endpoint remember to get it from the ngrok tool
Remember to “Save Model” and “Build the model” when you finish it, check it out if you have any error
If everything is ok you can start with the testing or directly asking your Alexa:
You can try with, help to get the list of all available commands:
start faraday
list users
list workspaces
status <workspacename>
netsec
hackernews
infosec
abortI hope you liked this and can extend it for better uses! Keep in mind this is a testing skill and we do not recommend for productions of the Faraday servers.
Best
Credit where credits due!
Flask — http://flask.pocoo.org/docs/0.12/
Flask-Ask — https://github.com/johnwheeler/flask-ask
Great Python for integration Echo + Vmware vShare: https://www.thehumblelab.com/integrating-echo-vmware/
