在进行web打点时,信息收集中对目标进行指纹识别是必不可少的一个环节,使用EHole识别出来的重点资产还要用其他漏洞利用工具去检测,非常的不方便,在原本的基础上加了个漏洞检测功能。提打点的效率。(不影响原版功能的使用)
对资产进行指纹识别-->重点资产进行漏洞检测-->如:http://www.xxx.com存在通达OA--> 对通达OA漏洞进行扫描->对ftp服务进行暴力破解
默认不开启,在poc.ini中将poc=no改为poc=yes开启
ftp爆破默认不开启,在poc.ini中将brute=no改为brute=yes开启
注意:从FOFA识别需要配置FOFA 密钥以及邮箱,在config.ini内配置好密钥以及邮箱即可使用。
搜索无结果 解决方案:如:将domain="baidu.com"改为domain='"baidu.com"'
ehole finger -s domain="baidu.com" // 支持所有fofa语法
注意:从hunter识别需要配置hunter 密钥,在config.ini内配置好密钥即可使用。
搜索无结果 与fofa解决方案相同
ehole finger -b ip="180.140.20.182" // 支持所有hunter语法
ehole finger -l 1.txt // 从文件中加载url扫描
ehole finger -u http://www.baidu.com // 单个url检测
![image](https://private-user-images.githubusercontent.com/56328995/250366651-e4064f38-6458-4778-a2f5-b7db2de54b1d.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.okm0t_EJ1k2KNnplHm4ozLI4k6o3zYYUApBTahs5GAc)
1、修复mac版报错segmentation fault
2、增加从hunter提取资产,进行指纹识别
![image](https://private-user-images.githubusercontent.com/56328995/251018087-f2c733d8-6bf6-4d56-b31b-61015421fd7c.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Gk4fmNFYTt1mXhWsqZYN0byX9CHc-o5zEtV8lm6feKM)
![image](https://private-user-images.githubusercontent.com/56328995/251017738-dfb7b200-4938-41b1-88c3-9756c6970ebc.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MTkxNzg2MzEsIm5iZiI6MTcxOTE3ODMzMSwicGF0aCI6Ii81NjMyODk5NS8yNTEwMTc3MzgtZGZiN2IyMDAtNDkzOC00MWIxLTg4YzMtOTc1NmM2OTcwZWJjLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNDA2MjMlMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjQwNjIzVDIxMzIxMVomWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTljODUxZTEyNzg1NTY4NjdjNjU5ODYwYzdhNTBkNzY5NjI5MTM3YWZhYjkwZTViMTA5NzZiZTY3NjMwNjU3YzImWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.PcfoRpONtvFEWn9ZxASkMSmT_MH_oytFAqEraHY-H1Q)
1、增加常用poc数量
2、对ftp服务进行检测,将poc.ini中的brute设置为yes可进行密码爆破
![image](https://private-user-images.githubusercontent.com/56328995/251691661-d28ca59b-3eab-4ef8-a19a-d8726ed274f2.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Jq5WLupuH5zBk87pa_Vk-k9RcOX74bUhaNXnRW4rdH0)
![image](https://private-user-images.githubusercontent.com/56328995/251692247-2fe41884-dd51-48ce-8651-b20e3a4a8139.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.LPvpMiGDqVt8P21M2hmoIDTLqK62emy-RTQVAaGZVdc)
1、更新指纹数量,1w+
2、修复fofa -f或者-s 后没有具体资产显示
3、增加宏景eHR人力资源信息管理系统sql注入检测
![image](https://private-user-images.githubusercontent.com/56328995/253150036-98c7590d-0dce-4b10-a329-5db313c5e484.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.Rx9Poq5cDqqjyWuopQdFSm9wBDhvFT528RKytaZ1tUI)
![image](https://private-user-images.githubusercontent.com/56328995/253208339-78af3d01-7c23-4058-9071-402e07dbea6a.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.q5b4YBSMWMhCVFwelHWTd6GWLooZCdz3IvlaabiBvnM)
1、更新最近出的day(用友、金蝶云、大华)
2、优化指纹识别
添加路径指纹识别(有些网站需要添加特定路径才能显示页面)感谢G0mini师傅给的建议
在poc.ini中设置参数route=yes开启 路径字典 在dict目录下的path.txt中
![image](https://private-user-images.githubusercontent.com/56328995/285266194-31db58ff-0bb2-4e68-b6ab-a9c824db13b5.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.JgVfumb-WVNw8iuhbQ3gA6ZmECklQwoJRBAypMqzEog)
![image](https://private-user-images.githubusercontent.com/56328995/285266548-9dfd2db0-de44-4769-b4c1-11355055310c.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.E-667u3fXLc2EfX_rqxnFSJr9rPFyuhRYIi05SPybqE)
![image](https://private-user-images.githubusercontent.com/56328995/285266705-35abd894-a6f6-44c8-bae6-f983ab0daae7.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.8w5-fD1lOZHvZ8RxdvfB_Yqvwv4bXJE9ia76ALqP-ZM)
添加指纹至2w+
![image](https://private-user-images.githubusercontent.com/56328995/287116847-98ca03f0-c8e5-4da9-b916-bf5f3afbacf9.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.uhoFXL9oaRVNeaSuOSIrVn0O0STubW6cWmki-FhvOEw)
修复:对一些使用 JavaScript 跳转到新 URL 的站点存在问题
感谢mewhz师傅给出的修复方案:补全JS匹配正则,并修复JS匹配URL路径丢失的问题
修复:有些网站能正常访问 使用此工具无法访问的问题
POC-bomber:https://github.com/tr0uble-mAker/POC-bomber
peiqi文库:https://peiqi.wgpsec.org
EHole:https://github.com/EdgeSecurityTeam/EHole
EHole-modify:https://github.com/A10nggg/EHole-modify/