Omnitarium/scoptix — reverse-engineered prompt

Build me a local only web app for passive recon and attack surface exploration. I want to enter a domain and run scans that pull data from VirusTotal and the Wayback Machine, then show me discovered subdomains, URLs, IP history, and archived web assets in a clean dashboard with scan history.

It should also flag possible exposures like credentials, tokens, API keys, cloud secrets, config files, backup archives, auth related endpoints, and other interesting assets. Let me define my own detection rules and file type categories in settings so URLs can be grouped by things like pdf, js, zip, and similar. Include an optional deeper scan mode that downloads JavaScript files and checks their contents too.

I also want to compare scans over time so I can quickly see what is new, including new subdomains, URLs, IPs, archived assets, and findings. Please wire it up to run locally with Docker for the database and cache, use an env file for config and VirusTotal keys, and keep in mind this is for a trusted internal environment only. Look up current docs online if you need to.