Пример #1
0
 def scan_webapps(webapps_identify, thread_poc, thread_pool, gevent_pool, target):
     webapps_identify = [x.lower() for x in webapps_identify]
     if r"weblogic" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.oracle_weblogic(target, gevent_pool)))
     if r"shiro" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_shiro(target, gevent_pool)))
     if r"activemq" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_activemq(target, gevent_pool)))
     if r"flink" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_flink(target, gevent_pool)))
     if r"fastjson" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.fastjson(target, gevent_pool)))
     if r"spring" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.spring(target, gevent_pool)))
     if r"solr" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_solr(target, gevent_pool)))
     if r"tomcat" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_tomcat(target, gevent_pool)))
     if r"elasticsearch" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.elasticsearch(target, gevent_pool)))
     if r"jenkins" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.jenkins(target, gevent_pool)))
     if r"nexus" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.nexus(target, gevent_pool)))
     if r"jboss" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.redhat_jboss(target, gevent_pool)))
     if r"unomi" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_unomi(target, gevent_pool)))
     if r"thinkphp" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.thinkphp(target, gevent_pool)))
     if r"drupal" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.drupal(target, gevent_pool)))
     if r"struts2" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_strtus2(target, gevent_pool)))
Пример #2
0
 def scan_webapps(webapps_identify, thread_poc, thread_pool, gevent_pool, target):
     # 自动处理大小写的webapps类型: https://github.com/zhzyker/vulmap/commit/5e1ee00b0598b5dd5b9898a01fabcc4b84dc4e8c
     webapps_identify = [x.lower() for x in webapps_identify]
     if r"weblogic" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.oracle_weblogic(target, gevent_pool)))
     if r"shiro" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_shiro(target, gevent_pool)))
     if r"activemq" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_activemq(target, gevent_pool)))
     if r"flink" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_flink(target, gevent_pool)))
     if r"fastjson" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.fastjson(target, gevent_pool)))
     if r"spring" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.spring(target, gevent_pool)))
     if r"solr" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_solr(target, gevent_pool)))
     if r"tomcat" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_tomcat(target, gevent_pool)))
     if r"elasticsearch" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.elasticsearch(target, gevent_pool)))
     if r"jenkins" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.jenkins(target, gevent_pool)))
     if r"nexus" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.nexus(target, gevent_pool)))
     if r"jboss" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.redhat_jboss(target, gevent_pool)))
     if r"unomi" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_unomi(target, gevent_pool)))
     if r"thinkphp" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.thinkphp(target, gevent_pool)))
     if r"drupal" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.drupal(target, gevent_pool)))
     if r"struts2" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_strtus2(target, gevent_pool)))
     if r"druid" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_druid(target, gevent_pool)))
     if r"laravel" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.laravel(target, gevent_pool)))
     if r"vmware" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.vmware(target, gevent_pool)))
     if r"saltstack" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.saltstack(target, gevent_pool)))
     if r"nodejs" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.nodejs(target, gevent_pool)))
     if r"exchange" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.exchange(target, gevent_pool)))
     if r"bigip" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.big_ip(target, gevent_pool)))
     if r"ofbiz" in webapps_identify or r"all" in webapps_identify:
         thread_poc.append(thread_pool.submit(scan.apache_ofbiz(target, gevent_pool)))