package
0.0.0-20231221140312-fff03b51bf79
Repository: https://github.com/ghosttroops/scan4all.git
Documentation: pkg.go.dev
# Functions
异步执行命令.
No description provided by the author
头信息同一检查,并调用合适到go poc进一步爆破、检测
1、需要认证 2、shiro.
检查 蜜罐 Server信息,check Honeypor server info.
No description provided by the author
检查 response 对象
1、包括头的检查 2、包括body的检查.
头部检查,传入不同形态的头,函数根据需要处理.
检查 cookie Shiro CVE_2016_4437 cookie 其他POC cookie同一检查入口.
关闭数据库连接.
关闭所有资源.
No description provided by the author
关闭cache.
No description provided by the author
兼容hacker one 域名表示方式,以下格式支持 *.xxx.com *.xxx.xx1.*.
通用,insert.
No description provided by the author
No description provided by the author
body中开发商信息提取.
No description provided by the author
最佳的方法是将命令写到临时文件,并通过bash进行执行.
延时清理.
No description provided by the author
所有初始化的总入口.
1、检测 $HOME/MyWork/log4j-scan 存在就执行 python3 版本log4j检测 2、相同目标只执行一次,基于内存缓存 3、只支持:https://github.com/hktalent/log4j-scan 版本.
立刻执行.
No description provided by the author
No description provided by the author
异步执行方法,只适合无返回值、或使用管道返回值的方法 程序main整体等待.
判断文件是否存在.
生成随机id.
No description provided by the author
获取interface.
获取缓存对象.
No description provided by the author
No description provided by the author
通用 求T类型count,支持条件 对T表,mod类型表,args 的where求count.
4.CPU使用率.
X-Forwarded-Host: 127.0.0.1
X-Forwarded-For: 127.0.0.1
X-Originating-IP: 127.0.0.1
X-Remote-IP: 127.0.0.1
X-Remote-Addr: 127.0.0.1
X-Client-IP: 127.0.0.1
X-Host: 127.0.0.1
*/ 获取 自定义头信息等raw模式.
3.磁盘信息.
No description provided by the author
2.主机信息.
No description provided by the author
No description provided by the author
返回限流的reader.
1.主机IP.
5.内存信息.
获取一个内存对象
如果c不是nil,就不再创建新的.
6.获取网卡信息.
7.计算上下行带宽.
No description provided by the author
No description provided by the author
通用 查询返回T类型、表一条数据.
// 调用方法名作为插件名.
No description provided by the author
No description provided by the author
获取 Sha1.
通用 查询模型T1类型 mode,并关联T1类型对子类型T3 preLd 设置 nPageSize 和便宜Offset 以及其他查询条件conds.
通用 查询模型T1类型 mode,并关联T1类型对子类型T3 preLd 设置 nPageSize 和便宜Offset 以及其他查询条件conds.
通用 获取T类型mod表名.
临时结果文件,例如 nmap.
No description provided by the author
优先使用配置文件中的配置,否则从环境变量中读取.
其他类型.
读区配置中的字典文件.
读区配置中的字典文件.
获取配置为bool.
获取配置为int.
No description provided by the author
添加蜜罐检测,并自动跳过目标,默认false跳过蜜罐检测 考虑内存缓存结果.
需要考虑缓存
1、缓解网络不好的情况 2、缓存有效期为当天 3、缓存命中需和请求的数据完全匹配.
http密码爆破.
初始化到开头.
初始化配置文件信息,这个必须先执行.
初始化client cache.
go - 交叉编译go-sqlite3 https://www.modb.pro/db/329524 ./tools/Check_CVE_2020_26134 -config="/Users/51pwn/MyWork/mybugbounty/allDomains.txt" 获取Gorm db连接、操作对象.
初始化模型.
判断 i 是否存在slice中.
反射调用.
No description provided by the author
判断对象是否为struct.
加载配置文件.
No description provided by the author
若干参数依赖注入到对象 obj中
util.MergeParms2Obj(&ms, args...) 使用 inject 注入 struct 需要注意的时,每个inject的类型不一样,如果一样的,必须使用类型别名,否则盲注会出问题.
No description provided by the author
构建一个检查器.
No description provided by the author
No description provided by the author
从配置json中读取naabu、httpx、nuclei等的细化配置.
No description provided by the author
No description provided by the author
单表查询.
No description provided by the author
No description provided by the author
下一步计划:加载osvdb 并驱动执行.
注册统一的回调.
注册延时清理
n0 0表示60秒后执行.
注册body处理.
注册解决初始化控制顺序问题.
No description provided by the author
注册body处理.
No description provided by the author
No description provided by the author
convert bufio.Scanner to io.Reader.
k is id.
一定得有全局得线程等待.
纯粹发送数据到目标机器.
专门发送改造后的引擎函数执行结果.
专门发送改造后的引擎函数执行结果.
1、优化代码,统一结果输出,便于维护.
es 需要基于buffer,避免太频繁 发送数据到ES
data1数据 id 数据计算出来的id szType 类型,决定 es不通的索引分类.
全局设置header.
设置map格式的header.
No description provided by the author
判断 i 是否存在slice中.
No description provided by the author
数组去重.
字符串包含关系,且大小写不敏感.
判断 str 是否存在slice中.
提取供应链信息 相同上下文、成功时只提取一次 提取header信息:server、X*,不同上下文提取.
No description provided by the author
No description provided by the author
No description provided by the author
绝对404检测 相同 url 本实例中只检测一次.
No description provided by the author
No description provided by the author
No description provided by the author
通用,update 指定id更新T类型mod数据.
更新失败再插入新数据,确保只有一条数据.
重时间计数器.
No description provided by the author
# Constants
Distributed API Server,服务器.
No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author
Scan4all ESaveType = "scan4all".
# Variables
No description provided by the author
No description provided by the author
匹配响应中 www-Authenticate 是否有认证要求都信息.
No description provided by the author
No description provided by the author
No description provided by the author
Ceye api.
Ceye domain.
No description provided by the author
全局关闭所有线程.
自定义http 头.
No description provided by the author
多次使用,一次性编译效率更高.
No description provided by the author
No description provided by the author
工厂方法
便于同一、规范引擎调用的方法、参数约束.
No description provided by the author
2,4,8,16,32,采用2的N次方的数字.
全局引擎.
No description provided by the author
代理.
InterruptTimeout timeout for interrupt signal when exiting a Cmd.
单实例运行.
KillTimeout timeout for kill signal when exiting a Cmd.
No description provided by the author
No description provided by the author
out filename.
go POC 检测管道,避免循环引用.
全局控制.
No description provided by the author
全局关闭所有线程.
提取供应链信息.
No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author
全局线程控制.
No description provided by the author
# Structs
No description provided by the author
检查器的设计:解耦、规范、统一,各类专注实现自己
1、允许未响应header、body、js、css等构建不同的检查器 2、每个检查器都有缓存 3、避免重复检查 4、具有自动释放缓存的机制,程序退出时自动消费(内存缓存).
No description provided by the author
No description provided by the author
No description provided by the author
CPU.
https://colobu.com/2017/10/11/badger-a-performant-k-v-store/ https://juejin.cn/post/6844903814571491335.
fuzz请求返回的结果 尽可能使用指针,节约内存开销.
分区.
管道通讯使用.
fuzz 响应对象封装.
简单结果.
# Interfaces
No description provided by the author
# Type aliases
No description provided by the author
No description provided by the author
分区集合.