sijido / h Goto Github PK
View Code? Open in Web Editor NEWH是一款强大的资产收集管理平台
H是一款强大的资产收集管理平台
首先感谢大佬开源的这个扫描平台。我在系统设置中发现了自定义POC功能,请问是POC否有特定的格式或调用方法。
开启扫描之后,就进度就一直不动,没有相应的结果。
师傅,我使用该项目,2C4G,CPU占用率一直100%,请问有啥最低配置要求吗?
怎么更新不影响任务和目前的数据呢?
比如 添加子域名字典
比如 弱口令字典
扫描poc ym文件
Hi,
I noticed that this project has a dependency on nmap in requirements.txt. It was brought to my attention that people mistakenly install this in belief it's the well-known port scanning tool, which it's not. I've since removed the single release of my nmap library from PyPI, and so wanted to inform you that installation is likely to break until you remove this dependency (which I assume was incorrectly added to begin with).
Sorry for any inconvenience caused by this.
nuclei rad+xray漏洞推送均已勾选,但是每日扫描,每日推送内容未勾选。漏扫结果只推送nuclei的,xray没有推送
在子域名扫描时,子域名列表里有许多域名记录,等扫描完了,只有零星几条域名记录
您好 看了一下代码,没找到有subfinder的provider-config.yaml是否支持自定义key呢这样子可以获取到更多的子域名。
root@206608cffb1a:/# cd /app && nohup python3 run.py &
[1] 1082
root@206608cffb1a:/# nohup: ignoring input and appending output to 'nohup.out'
[1]+ Exit 2 cd /app && nohup python3 run.py
root@206608cffb1a:/app# python3 client_run.py
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
nohup: appending output to 'nohup.out'
root@206608cffb1a:/app# nohup: appending output to 'nohup.out'
多个域名同时扫描时,同类插件只有一个工作,其他插件空闲。请问大佬怎么解决
请问大佬
xray扫描通过查看日志可知发现漏洞,但是web页面漏洞数仍为0,是什么原因导致的。
在增加一个目标并且扫描完成后,会卡在漏洞扫描上面,应该是xray没有停止。
在界面处,扫描完成之后删除目标信息,数据清空但是漏洞处显示并没有做到清空,导致在漏洞列表那边会存在多余的pages数量。
E: Unable to locate package openjdk-8-jre
E: Unable to locate package openjdk-8-jdk
E: Unable to locate package vim
E: Unable to locate package python3
E: Unable to locate package python3-pip
E: Unable to locate package nmap
E: Unable to locate package erlang-nox
E: Unable to locate package mariadb-server
E: Unable to locate package language-pack-zh-hans
E: Unable to locate package fontconfig
E: Package 'chromium-browser' has no installation candidate
和灯塔有啥区别?
@SiJiDo
H/blob/main/app/scan/lib/Scansubdomain.py 177行
sql = "DELETE FROM Subdomain where subdomain_ip='nothing' AND subdomain_info='nothing" 少了一个单引号
搜索不能用,搜出来还是全部查询
@SiJiDo
naabu_nmap_cmd = 'nmap -sT -Pn -T4 -oX {}'.format(nmap_file)
nmap这种方式识别出来的端口服务非常不准确,建议修改为
naabu_nmap_cmd = 'nmap -sV --version-all -n -Pn -T4 -oX {}'.format(nmap_file)
网站打开较慢,页面加载慢的厉害,看了一下Google Fonts的问题。
把/H/app/base/static/assets/css/style.css里面的链接换成国内的镜像,访问速度会快很多。
一直在扫描子域名 而且一些3级域名不存在也扫出来,一天了一直卡在扫描子域名
运行报错:
Traceback (most recent call last):
File "run.py", line 33, in
app = create_app( app_config )
File "/home/H/H/app/init.py", line 41, in create_app
register_blueprints(app)
File "/home/H/H/app/init.py", line 25, in register_blueprints
app.register_blueprint(module.blueprint)
File "/usr/local/lib/python3.8/dist-packages/flask/scaffold.py", line 56, in wrapper_func
return f(self, *args, **kwargs)
File "/usr/local/lib/python3.8/dist-packages/flask/app.py", line 1028, in register_blueprint
blueprint.register(self, options)
File "/usr/local/lib/python3.8/dist-packages/flask/blueprints.py", line 305, in register
raise ValueError(
ValueError: The name 'home_blueprint' is already registered for this blueprint. Use 'name=' to provide a unique name.
这个命令有错误
cd /app && nohup python3 run.py &
在app目录下没有run.py
python3: can't open file 'run.py': [Errno 2] No such file or directory
请问在扫描周期中【月设置】我设置为2,这个是每2个月进行一次扫描还是每年的2月进行扫描,下面的日设置、周设置同样存在疑问
另外,消息推送会考虑加上钉钉吗
国外服务器 163的源太慢了 删了(https://github.com/SiJiDo/H/blob/main/docker_config/sources.list) 还是在调用 这
pip源也是用国内的逗逼源。。。 国内小水管那么差啊
修改好了 Dockerfile 删掉 ADD ./docker_config/sources.list /etc/apt/ clien目录下也要删掉
每次重启rabbitmq容器数据丢失
Err:1 http://mirrors.163.com/ubuntu bionic InRelease
Temporary failure resolving 'mirrors.163.com'
W: Failed to fetch http://mirrors.163.com/ubuntu/dists/bionic/InRelease Temporary failure resolving 'mirrors.163.com'
W: Failed to fetch http://mirrors.163.com/ubuntu/dists/bionic-security/InRelease Temporary failure resolving 'mirrors.163.com'
fscan配文件中公网IP是不是大佬忘记删了
1
请问地址段的格式是什么样的,输入 A-B这种格式的地址,会被解析成域名
按照步骤没有跑起来,celery监控状态什么都没显示,能否出个安装教程
你好,那个我启动好服务端和客户端,然后登录web修改默认密码,然后docker-compose restart 全部重启容器,登录又是默认密码,所以只要不重启服务端,扫描和修改的登陆密码数据一直在,往后在使用过程当中导致服务端重启或者关机开机,那就是所有数据都没有了,那在扫描当中,产生的bug或者报错不得已重启服务端怎么办,数据都没了。
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.