boliveiras/argus-asm-v1 — reverse-engineered prompt

Build me a Linux based attack surface monitoring tool called Argus for Debian, Ubuntu, or Kali. I want to give it company IPs and domains, then have it passively check what is exposed on the internet without installing anything on my servers or doing anything aggressive.

It should find open ports, subdomains, leaked company credentials, email security posture like SPF, DMARC, and DKIM, and lookalike domains. Every finding should get a severity from critical to info, plus automatic detection status like new, recurring, fixed, or returned, and a separate analyst state like new, in progress, mitigated, or false positive. It should remember previous findings so fixed items do not come back as brand new later.

I also want a secure web portal with login on port 8443, daily scheduled runs, manual runs, reports and logs, and a simple command line way to review findings. Please include threat enrichment like IP reputation, known vulnerabilities, CVSS, and whether something is actively exploited, plus a visual correlation graph that shows how domains, subdomains, IPs, and findings connect. Look up current docs online if you need to.