mirrors/fscan
1
0
Fork 0
mirror of https://github.com/shadow1ng/fscan.git synced 2025-09-14 14:06:44 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

删除elasticsearchScan,用yml poc代替

Browse Source
This commit is contained in:
shadow1ng 2021-05-06 11:44:38 +08:00
parent 400f4373c9
commit 9aba1c88a3
3 changed files with 15 additions and 62 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
Plugins/base.go
View File

@ -1,16 +1,15 @@
package Plugins package Plugins
var PluginList = map[string]interface{}{ var PluginList = map[string]interface{}{
"21": FtpScan, "21": FtpScan,
"22": SshScan, "22": SshScan,
"135": Findnet, "135": Findnet,
"139": NetBIOS, "139": NetBIOS,
"445": SmbScan, "445": SmbScan,
"1433": MssqlScan, "1433": MssqlScan,
"3306": MysqlScan, "3306": MysqlScan,
"5432": PostgresScan, "5432": PostgresScan,
"6379": RedisScan, "6379": RedisScan,
//"9200": elasticsearchScan,
"11211": MemcachedScan, "11211": MemcachedScan,
"27017": MongodbScan, "27017": MongodbScan,
"1000001": MS17010, "1000001": MS17010,

45
Plugins/elasticsearch.go
View File

@ -1,45 +0,0 @@
package Plugins
import (
"fmt"
"github.com/shadow1ng/fscan/WebScan/lib"
"github.com/shadow1ng/fscan/common"
"io/ioutil"
"net/http"
"strings"
)
func elasticsearchScan(info *common.HostInfo) error {
_, err := geturl2(info)
return err
}
func geturl2(info *common.HostInfo) (flag bool, err error) {
flag = false
url := fmt.Sprintf("%s:%v/_cat", info.Url, info.Ports)
res, err := http.NewRequest("GET", url, nil)
if err == nil {
res.Header.Add("User-agent", "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1468.0 Safari/537.36")
res.Header.Add("Accept", "*/*")
res.Header.Add("Accept-Language", "zh-CN,zh;q=0.9")
res.Header.Add("Accept-Encoding", "gzip, deflate")
res.Header.Add("Connection", "close")
if common.Pocinfo.Cookie != "" {
res.Header.Set("Cookie", common.Pocinfo.Cookie)
}
resp, err := lib.Client.Do(res)
if err == nil {
defer resp.Body.Close()
body, _ := ioutil.ReadAll(resp.Body)
if strings.Contains(string(body), "/_cat/master") {
result := fmt.Sprintf("[+] Elastic:%s unauthorized", url)
common.LogSuccess(result)
flag = true
}
} else {
errlog := fmt.Sprintf("[-] Elastic:%s %v", url, err)
common.LogError(errlog)
}
}
return flag, err
}

13
common/config.go
View File

@ -25,13 +25,12 @@ var PORTList = map[string]int{
"ms17010": 1000001, "ms17010": 1000001,
"cve20200796": 1000002, "cve20200796": 1000002,
"web": 1000003, "web": 1000003,
//"elastic": 9200, "findnet": 135,
"findnet": 135, "netbios": 139,
"netbios": 139, "all": 0,
"all": 0, "portscan": 0,
"portscan": 0, "icmp": 0,
"icmp": 0, "main": 0,
"main": 0,
} }
var Outputfile = getpath() + "result.txt" var Outputfile = getpath() + "result.txt"