mirrors/fscan
1
0
Fork 0
mirror of https://github.com/shadow1ng/fscan.git synced 2025-09-14 14:06:44 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
d981f0100f
fscan/plugins/services/cassandra.go
ZacharyZcR 2e449c74ef 重构服务插件架构,移除冗余功能 
- 统一所有服务插件的实现模式,移除i18n国际化依赖
- 删除硬编码的备份凭据列表,统一使用GenerateCredentials()
- 移除过度工程化的Context取消检查
- 清理exploitation功能,专注于弱密码检测和服务识别
- 简化代码结构,移除冗余注释和说明文档
- 优化19个服务插件:activemq, cassandra, elasticsearch, ftp, kafka, ldap, memcached, mongodb, mssql, mysql, neo4j, oracle, postgresql, rabbitmq, rsync, smtp, snmp, telnet, vnc
- 代码总量减少约40%,提升维护效率

此次重构确保插件架构的一致性和简洁性
2025-08-26 17:44:43 +08:00

154 lines
3.3 KiB
Go
Raw Blame History

package services
import (
"context"
"fmt"
"strconv"
"strings"
"time"
"github.com/gocql/gocql"
"github.com/shadow1ng/fscan/common"
)
type CassandraPlugin struct {
name string
ports []int
}
func NewCassandraPlugin() *CassandraPlugin {
return &CassandraPlugin{
name: "cassandra",
ports: []int{9042, 9160, 7000, 7001},
}
}
func (p *CassandraPlugin) GetName() string {
return p.name
}
func (p *CassandraPlugin) GetPorts() []int {
return p.ports
}
func (p *CassandraPlugin) Scan(ctx context.Context, info *common.HostInfo) *ScanResult {
target := fmt.Sprintf("%s:%s", info.Host, info.Ports)
if common.DisableBrute {
return p.identifyService(ctx, info)
}
credentials := GenerateCredentials("cassandra")
if len(credentials) == 0 {
return &ScanResult{
Success: false,
Service: "cassandra",
Error: fmt.Errorf("没有可用的测试凭据"),
}
}
for _, cred := range credentials {
if p.testCredential(ctx, info, cred) {
common.LogSuccess(fmt.Sprintf("Cassandra %s %s:%s", target, cred.Username, cred.Password))
return &ScanResult{
Success: true,
Service: "cassandra",
Username: cred.Username,
Password: cred.Password,
}
}
}
return &ScanResult{
Success: false,
Service: "cassandra",
Error: fmt.Errorf("未发现弱密码"),
}
}
func (p *CassandraPlugin) testCredential(ctx context.Context, info *common.HostInfo, cred Credential) bool {
port, err := strconv.Atoi(info.Ports)
if err != nil {
return false
}
cluster := gocql.NewCluster(info.Host)
cluster.Port = port
timeout := time.Duration(common.Timeout) * time.Second
cluster.Timeout = timeout
cluster.ConnectTimeout = timeout
if cred.Username != "" || cred.Password != "" {
cluster.Authenticator = gocql.PasswordAuthenticator{
Username: cred.Username,
Password: cred.Password,
}
}
session, err := cluster.CreateSession()
if err != nil {
return false
}
defer session.Close()
var dummy interface{}
err = session.Query("SELECT now() FROM system.local").WithContext(ctx).Scan(&dummy)
return err == nil
}
func (p *CassandraPlugin) identifyService(ctx context.Context, info *common.HostInfo) *ScanResult {
target := fmt.Sprintf("%s:%s", info.Host, info.Ports)
port, err := strconv.Atoi(info.Ports)
if err != nil {
return &ScanResult{
Success: false,
Service: "cassandra",
Error: fmt.Errorf("无效的端口号: %s", info.Ports),
}
}
cluster := gocql.NewCluster(info.Host)
cluster.Port = port
timeout := time.Duration(common.Timeout) * time.Second
cluster.Timeout = timeout
cluster.ConnectTimeout = timeout
session, err := cluster.CreateSession()
if err != nil {
if strings.Contains(strings.ToLower(err.Error()), "authentication") {
banner := "Cassandra (需要认证)"
common.LogSuccess(fmt.Sprintf("Cassandra %s %s", target, banner))
return &ScanResult{
Success: true,
Service: "cassandra",
Banner: banner,
}
}
return &ScanResult{
Success: false,
Service: "cassandra",
Error: err,
}
}
defer session.Close()
banner := "Cassandra"
common.LogSuccess(fmt.Sprintf("Cassandra %s %s", target, banner))
return &ScanResult{
Success: true,
Service: "cassandra",
Banner: banner,
}
}
func init() {
RegisterPlugin("cassandra", func() Plugin {
return NewCassandraPlugin()
})
}
Reference in New Issue View Git Blame Copy Permalink