在进行web打点时,信息收集中对目标进行指纹识别是必不可少的一个环节,使用EHole识别出来的重点资产还要用其他漏洞利用工具去检测,非常的不方便,在原本的基础上加了个漏洞检测功能。提打点的效率。(不影响原版功能的使用)
对资产进行指纹识别-->重点资产进行漏洞检测-->如:http://www.xxx.com存在通达OA--> 对通达OA漏洞进行扫描->对ftp服务进行暴力破解
默认不开启,在poc.ini中将poc=no改为poc=yes开启
ftp爆破默认不开启,在poc.ini中将brute=no改为brute=yes开启
注意:从FOFA识别需要配置FOFA 密钥以及邮箱,在config.ini内配置好密钥以及邮箱即可使用。
搜索无结果 解决方案:如:将domain="baidu.com"改为domain='"baidu.com"'
ehole finger -s domain="baidu.com" // 支持所有fofa语法
注意:从hunter识别需要配置hunter 密钥,在config.ini内配置好密钥即可使用。
搜索无结果 与fofa解决方案相同
ehole finger -b ip="180.140.20.182" // 支持所有hunter语法
ehole finger -l 1.txt // 从文件中加载url扫描
ehole finger -u http://www.baidu.com // 单个url检测
![image](https://private-user-images.githubusercontent.com/56328995/250366651-e4064f38-6458-4778-a2f5-b7db2de54b1d.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.WiuYc1N7nFzlltT0UVPNHG6KDeFifljVGym1JBn2pSY)
1、修复mac版报错segmentation fault
2、增加从hunter提取资产,进行指纹识别
![image](https://private-user-images.githubusercontent.com/56328995/251018087-f2c733d8-6bf6-4d56-b31b-61015421fd7c.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.YEYOYwBm2WAU3rLzoNWavMYDDZ-yGI7gpSfbrt9FAtI)
![image](https://private-user-images.githubusercontent.com/56328995/251017738-dfb7b200-4938-41b1-88c3-9756c6970ebc.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.AUIP5eNlcc4S5PDw_9HcLd-tbZuERSCQKSMonH7q0-k)
1、增加常用poc数量
2、对ftp服务进行检测,将poc.ini中的brute设置为yes可进行密码爆破
![image](https://private-user-images.githubusercontent.com/56328995/251691661-d28ca59b-3eab-4ef8-a19a-d8726ed274f2.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.qH5GwqeqZS-15VpHPpa6s7EfP0kyRdjFbN1JR4uhowQ)
![image](https://private-user-images.githubusercontent.com/56328995/251692247-2fe41884-dd51-48ce-8651-b20e3a4a8139.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MTc2OTAyNjMsIm5iZiI6MTcxNzY4OTk2MywicGF0aCI6Ii81NjMyODk5NS8yNTE2OTIyNDctMmZlNDE4ODQtZGQ1MS00OGNlLTg2NTEtYjIwZTNhNGE4MTM5LnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNDA2MDYlMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjQwNjA2VDE2MDYwM1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTViMmQ3MDdkN2QxYjUwZWM5NDY1ZGY1YjAxNjA0ZDU3YzdkODJiY2E1MmM2ODJmMWRkYjY3ZmExNTFjNTE0ZDEmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.Ree3pVi1SdTW5j94JM0M-eK0ZOKSvJK3RIl9-qFVN8c)
1、更新指纹数量,1w+
2、修复fofa -f或者-s 后没有具体资产显示
3、增加宏景eHR人力资源信息管理系统sql注入检测
![image](https://private-user-images.githubusercontent.com/56328995/253150036-98c7590d-0dce-4b10-a329-5db313c5e484.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.dgaB024bfCqzoRWzLh2aKj0C4ORTXj8IYtfjqsXE2EM)
![image](https://private-user-images.githubusercontent.com/56328995/253208339-78af3d01-7c23-4058-9071-402e07dbea6a.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.2iUlNydYc5oU1j6MxIi4sPKtJhtQF4BgoGeWXcCzC_s)
1、更新最近出的day(用友、金蝶云、大华)
2、优化指纹识别
添加路径指纹识别(有些网站需要添加特定路径才能显示页面)感谢G0mini师傅给的建议
在poc.ini中设置参数route=yes开启 路径字典 在dict目录下的path.txt中
![image](https://private-user-images.githubusercontent.com/56328995/285266194-31db58ff-0bb2-4e68-b6ab-a9c824db13b5.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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._CLRkxVhY-h3Wgw5JXnzuPiGiRZI1iRUo24Z9f2k6Ok)
![image](https://private-user-images.githubusercontent.com/56328995/285266548-9dfd2db0-de44-4769-b4c1-11355055310c.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.XAs0pMbfLxvE5RgQubjfh2FJHAk_y8YAHGwPdNY236c)
![image](https://private-user-images.githubusercontent.com/56328995/285266705-35abd894-a6f6-44c8-bae6-f983ab0daae7.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MTc2OTAyNjMsIm5iZiI6MTcxNzY4OTk2MywicGF0aCI6Ii81NjMyODk5NS8yODUyNjY3MDUtMzVhYmQ4OTQtYTZmNi00NGM4LWJhZTYtZjk4M2FiMGRhYWU3LnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNDA2MDYlMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjQwNjA2VDE2MDYwM1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTQ1ZWJiZWEwOGJjZDk1OWU3MzU1YmVmMzQwODk5ODczMzAwYWIxNjUxZDg2YjMwNjgyYTdhYjhhYWNlNTEyZTgmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.NuXJIgGHz9SaEXq5TAog-cSdxkjLZFV6SbsPIB3vkSc)
添加指纹至2w+
![image](https://private-user-images.githubusercontent.com/56328995/287116847-98ca03f0-c8e5-4da9-b916-bf5f3afbacf9.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MTc2OTAyNjMsIm5iZiI6MTcxNzY4OTk2MywicGF0aCI6Ii81NjMyODk5NS8yODcxMTY4NDctOThjYTAzZjAtYzhlNS00ZGE5LWI5MTYtYmY1ZjNhZmJhY2Y5LnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNDA2MDYlMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjQwNjA2VDE2MDYwM1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTQ0Mjk2ZWFlMjc4M2RiMzk4NWFiNmZkNzRhZmY3ZTczZDJkNmZiM2UyMmI1NTZjMTEyM2U5Yzc0OGMzOWI0OTUmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.NKMsMHGAE0wEbFtkfLW-WCSiCk70J4pxDGFunCFhseo)
POC-bomber:https://github.com/tr0uble-mAker/POC-bomber
peiqi文库:https://peiqi.wgpsec.org
EHole:https://github.com/EdgeSecurityTeam/EHole
EHole-modify:https://github.com/A10nggg/EHole-modify/