A true master always has the heart of an apprentice!
1. Brief introduction of the project
One-key automated, all-round leak scanning comprehensive scanning tool for the intranet
Second, the implementation function
- Support information gathering
- Supports Liveness Detection (ICMP)
- Supports system information and vulnerability scanning
- Support NetBIOS detection and domain control identification
- Supports obtaining the target NIC information
- Supports high-risk vulnerability scanning (MS17010, etc.)
- Support web probe function
- Port scanning is supported
- Support blasting function
- Webtitle probes are supported
- Support web fingerprint recognition (common CMS, OA framework, etc.)
- Support web vulnerability scanning (WebLogic, ST2, etc., support for XRAY POC)
- Exploits are supported
- Redis is supported to write public keys or write scheduled tasks
- Supports ssh command execution
- MS17017 utilization is supported
- File saving
- Support various service blasting (SSH, SMB, RDP, etc.)
- Support database password blasting (MYSQL, MSSQL, REDIS, PSQL, ORACLE, etc.)
Third, technical selection
- mysql
- mssql
- Repeat
- psql
- oracle
- ssh
- go
Fourth, the interface display
5. Source code address
Private message reply: O&M