Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
Home Page: https://scan4all.51pwn.com
License: BSD 3-Clause "New" or "Revised" License
[ERR] Could not run nmap command: exit status 255
[FTL] Could not run enumeration: Could not run nmap command: exit status 255
Got the Nmap issue with --unique command, I have newest nmap installed. This causes script to stop.
Then abort and when rescanning
./scan4all -list ~/recon/httpx.txt -o scan4-test.txt
2022/08/03 08:02:37 wait for init config files ...
2022/08/03 08:02:37 Init2 k-v db cannot open multiple processes at the same time, or please delete the .DbCache directory and try again: Cannot acquire directory lock on ".DbCache". Another process is using this Badger database.: resource temporarily unavailable
2022/08/03 08:02:37 init config files is over .
panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x14a pc=0xa28214]
goroutine 1 [running]:
github.com/dgraph-io/badger.(*DB).View(0x2418da0?, 0xc00091fe48)
/home/runner/work/scan4all/scan4all/vendor/github.com/dgraph-io/badger/txn.go:676 +0x34
github.com/hktalent/scan4all/lib/util.(*KvDbOp).Get(0x21262c9?, {0x205fbaa?, 0x351dbc0?})
/home/runner/work/scan4all/scan4all/lib/util/kvDb.go:75 +0x71
github.com/hktalent/scan4all/brute.init.2.func1()
/home/runner/work/scan4all/scan4all/brute/fuzzAI.go:51 +0x16f
github.com/hktalent/scan4all/lib/util.DoInit(0x4?)
/home/runner/work/scan4all/scan4all/lib/util/config.go:417 +0xb6
main.main()
/home/runner/work/scan4all/scan4all/main.go:23 +0x5d
>scan4all.exe -l test-7-21-all.txt -o rus_scan4all.txt
2022/07/25 20:27:51 Init k-v db 不能多个进程同时开启 Value log truncate required to run DB. This might result in data loss
panic: runtime error: invalid memory address or nil pointer dereference
[signal 0xc0000005 code=0x0 addr=0x14a pc=0x7ff774432974]
goroutine 1 [running]:
github.com/dgraph-io/badger.(*DB).View(0x7ff7760e5d40?, 0xc000027a28)
D:/a/scan4all/scan4all/vendor/github.com/dgraph-io/badger/txn.go:676 +0x34
github.com/hktalent/scan4all/lib/util.(*KvDbOp).Get(0x7ff775deb1eb?, {0x7ff775d153b7?, 0x7ff7770f90a0?})
D:/a/scan4all/scan4all/lib/util/kvDb.go:74 +0x71
github.com/hktalent/scan4all/brute.init.2()
D:/a/scan4all/scan4all/brute/fuzzAI.go:51 +0x171
>scan4all.exe -l test-7-21-all.txt -v -o rus_scan4all.txt
2022/07/25 20:27:30 Init k-v db 不能多个进程同时开启 Value log truncate required to run DB. This might result in data loss
panic: runtime error: invalid memory address or nil pointer dereference
[signal 0xc0000005 code=0x0 addr=0x14a pc=0x7ff774432974]
goroutine 1 [running]:
github.com/dgraph-io/badger.(*DB).View(0x7ff7760e5d40?, 0xc005a2fa28)
D:/a/scan4all/scan4all/vendor/github.com/dgraph-io/badger/txn.go:676 +0x34
github.com/hktalent/scan4all/lib/util.(*KvDbOp).Get(0x7ff775deb1eb?, {0x7ff775d153b7?, 0x7ff7770f90a0?})
D:/a/scan4all/scan4all/lib/util/kvDb.go:74 +0x71
github.com/hktalent/scan4all/brute.init.2()
D:/a/scan4all/scan4all/brute/fuzzAI.go:51 +0x171
[root@ded87601 bin]# /root/go/bin/scan4all -host 144.92.1.1/24
2022/08/07 10:06:11 wait for init config files ...
2022/08/07 10:06:12 init config files is over .
2022/08/07 10:06:12 DbName config/scan4all_db
2022/08/07 10:06:12 wait for all threads to end
Starting Nmap 7.92 ( https://nmap.org ) at 2022-08-07 10:06 AEST
Read data files from: /usr/bin/../share/nmap
Nmap done: 0 IP addresses (0 hosts up) scanned in 0.07 seconds
Raw packets sent: 0 (0B) | Rcvd: 0 (0B)
WARNING: No targets were specified, so 0 hosts scanned.
[INF] Running SYN scan with CAP_NET_RAW privileges
[INF] Port scan starting....
why nmap won't catch hosts?
Command :
CacheName=dby ./scan4all -host test.com -csv -o 1.csv -v
Nmap done: 3 IP addresses (3 hosts up) scanned in 0.04 seconds
[INF] Port scan over,web scan starting9.17 ....
[DBG] Setting single path to "favicon.ico" and ignoring multiple paths settings
panic: interface conversion: interface is nil, not error
goroutine 3058 [running]:
github.com/hktalent/scan4all/lib/util.TestIs404({0xc0002d9aa1, 0x16})
/home/runner/work/scan4all/scan4all/lib/util/config.go:382 +0xf8
github.com/hktalent/scan4all/projectdiscovery/nuclei_Yaml.RunNuclei(0x49cee60, 0xc000ee16e0, 0x10b45c6?, 0xc0004e5da0)
/home/runner/work/scan4all/scan4all/projectdiscovery/nuclei_Yaml/nuclei_yaml.go:33 +0x6e5
created by github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).Httpxrun.func2
/home/runner/work/scan4all/scan4all/pkg/naabu/v2/pkg/runner/runner.go:86 +0xaa
scan4all -list test.txt
badger 2022/07/20 23:35:45 INFO: All 0 tables opened in 0s
badger 2022/07/20 23:35:45 INFO: Replaying file id: 0 at offset: 0
badger 2022/07/20 23:35:45 INFO: Replay took: 14.894µs
badger 2022/07/20 23:35:45 DEBUG: Value log discard stats empty
2022/07/20 23:35:45 DbName config/scan4all_db
2022/07/20 23:35:45 wait for init config files ...
2022/07/20 23:35:46 init config files is over .
[INF] Running SYN scan with CAP_NET_RAW privileges
[INF] Port scan starting....
badger 2022/07/20 23:35:46 INFO: Got compaction priority: {level:0 score:1.73 dropPrefixes:[]}
panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x28 pc=0x755b9d]
goroutine 1 [running]:
net/url.(*URL).Hostname(...)
/opt/hostedtoolcache/go/1.18.4/x64/src/net/url/url.go:1133
github.com/hktalent/scan4all/lib.HoneyportDetection({0xc0003028f0, 0xe})
/home/runner/work/scan4all/scan4all/lib/HoneypotDetection.go:27 +0xbd
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).mergeToFile(0xc00670e230)
/home/runner/work/scan4all/scan4all/pkg/naabu/v2/pkg/runner/targets.go:77 +0x565
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).Load(0xc00670e230)
/home/runner/work/scan4all/scan4all/pkg/naabu/v2/pkg/runner/targets.go:30 +0x45
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).RunEnumeration(0xc00670e230)
/home/runner/work/scan4all/scan4all/pkg/naabu/v2/pkg/runner/runner.go:207 +0x245
main.main()
/home/runner/work/scan4all/scan4all/main.go:68 +0x3b0
操作系统版本:centos7.6
nmap版本:7.92
问题描述:
在执行./scan4all -host 192.168.1.158后,程序运行至截图出卡住,超过20分钟
192.168.1.158为存活的测试主机
2.6.2版本的,使用了-np参数,每次还是同步pocs
可以加个生成报告html的吗,txt看的有一点麻烦
Hello @hktalent,
I use axiom's fleets, multiple instances sync command with Interlace. Can you development for scan4all?
我在扫描时,只想扫描top 1000端口,并且支持ping检测。我修改json几次后没有效果。
我通过procExp观察到NMAP执行非预期指令。
nmap.exe -F --top-ports=65535 -n --unique --resolve-all -Pn -sU -sS --min-hostgroup 64 --max-retries 0 --host-timeout 10m --script-timeout 3m --version-intensity 9 --min-rate 5000 -T4 -iL C:\Users\user\AppData\Local\Temp\stdin-input-1242664832 -oX C:\Users\user\AppData\Local\Temp\stdin-out-3822858477
pocs_go/ms/DCom.go
Index() can return -1; maybe you wanted to do recvStr_v2[:packet_v2_end+1] 
An off-by-one error occurs as a result of incorrectly handled edge-cases. It is recommended that the program be thoroughly tested for one-off bugs.
Hi
I constantly get this error when trying to compile on Windows:
cc1.exe: sorry, unimplemented: 64-bit mode not compiled in (exit status 2)
I have tried to install MinGW, but it did not help :(
Please advice
是放的IP太多了吗?还是Windows版本的通病?从2.4.x的版本好像就有这个问题
nmap: unrecognized option '--unique'
作者大大,上午一直搞到现在,也没能运行起来... 安装运行太难了 能不能加个联系方式请教一下
代码逻辑 假设传入的是74cms-sqli
SelectPoc这里读poc 逻辑是这样的
strings.HasPrefix(entry.Name(), pocname+"-")
导致不能读到74cms-sqli
[ERR] Could not run nmap command: exit status 255
[FTL] Could not run enumeration: Could not run nmap command: exit status 255
扫描过程中出现“brady map[]} false” 这个会发生卡死的现象,程序到此处不会往下运行了
希望能增加update的功能,这样对go编译的朋友友好点。
I'm getting error while Installing go and git clone, here I'm attaching screenshots for your perusal, please take a look at them
我们使用procexp64.exe与procmon.exe观察scan4all调用nmap的行为;发现在scan4all加入300个C段同时扫描时,调用NMAP会出现异常。具体表现为程序卡死(卡死时间超过48小时)并且无报错,NMAP没有发起TCP SYN记录。
I run elasticsearch with docker, i think i do alternative es.
then docker logs DOCKERID :
`Exception in thread "main" java.lang.RuntimeException: starting java failed with [1]
output:
[0.000s][error][logging] Error opening log file 'logs/gc.log': Permission denied
[0.000s][error][logging] Initialization of output 'file=logs/gc.log' using options 'filecount=32,filesize=64m' failed.
error:
Invalid -Xlog option '-Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m', see error log for details.
Error: Could not create the Java Virtual Machine.
Error: A fatal exception has occurred. Program will exit.
at org.elasticsearch.tools.launchers.JvmOption.flagsFinal(JvmOption.java:119)
at org.elasticsearch.tools.launchers.JvmOption.findFinalOptions(JvmOption.java:81)
at org.elasticsearch.tools.launchers.JvmErgonomics.choose(JvmErgonomics.java:38)
at org.elasticsearch.tools.launchers.JvmOptionsParser.jvmOptions(JvmOptionsParser.java:135)
at org.elasticsearch.tools.launchers.JvmOptionsParser.main(JvmOptionsParser.java:86)
Exception in thread "main" java.lang.RuntimeException: starting java failed with [1]
output:
[0.001s][error][logging] Error opening log file 'logs/gc.log': Permission denied
[0.001s][error][logging] Initialization of output 'file=logs/gc.log' using options 'filecount=32,filesize=64m' failed.
error:
Invalid -Xlog option '-Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m', see error log for details.
Error: Could not create the Java Virtual Machine.
Error: A fatal exception has occurred. Program will exit.
at org.elasticsearch.tools.launchers.JvmOption.flagsFinal(JvmOption.java:119)
at org.elasticsearch.tools.launchers.JvmOption.findFinalOptions(JvmOption.java:81)
at org.elasticsearch.tools.launchers.JvmErgonomics.choose(JvmErgonomics.java:38)
at org.elasticsearch.tools.launchers.JvmOptionsParser.jvmOptions(JvmOptionsParser.java:135)
at org.elasticsearch.tools.launchers.JvmOptionsParser.main(JvmOptionsParser.java:86)
Exception in thread "main" java.lang.RuntimeException: starting java failed with [1]
output:
[0.000s][error][logging] Error opening log file 'logs/gc.log': Permission denied
[0.000s][error][logging] Initialization of output 'file=logs/gc.log' using options 'filecount=32,filesize=64m' failed.
error:
Invalid -Xlog option '-Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m', see error log for details.
Error: Could not create the Java Virtual Machine.
Error: A fatal exception has occurred. Program will exit.
at org.elasticsearch.tools.launchers.JvmOption.flagsFinal(JvmOption.java:119)
at org.elasticsearch.tools.launchers.JvmOption.findFinalOptions(JvmOption.java:81)
at org.elasticsearch.tools.launchers.JvmErgonomics.choose(JvmErgonomics.java:38)
at org.elasticsearch.tools.launchers.JvmOptionsParser.jvmOptions(JvmOptionsParser.java:135)
at org.elasticsearch.tools.launchers.JvmOptionsParser.main(JvmOptionsParser.java:86)
Exception in thread "main" java.lang.RuntimeException: starting java failed with [1]
output:
[0.000s][error][logging] Error opening log file 'logs/gc.log': Permission denied
[0.000s][error][logging] Initialization of output 'file=logs/gc.log' using options 'filecount=32,filesize=64m' failed.
error:
Invalid -Xlog option '-Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m', see error log for details.
Error: Could not create the Java Virtual Machine.
Error: A fatal exception has occurred. Program will exit.
at org.elasticsearch.tools.launchers.JvmOption.flagsFinal(JvmOption.java:119)
at org.elasticsearch.tools.launchers.JvmOption.findFinalOptions(JvmOption.java:81)
at org.elasticsearch.tools.launchers.JvmErgonomics.choose(JvmErgonomics.java:38)
at org.elasticsearch.tools.launchers.JvmOptionsParser.jvmOptions(JvmOptionsParser.java:135)
at org.elasticsearch.tools.launchers.JvmOptionsParser.main(JvmOptionsParser.java:86)
Exception in thread "main" java.lang.RuntimeException: starting java failed with [1]
output:
[0.000s][error][logging] Error opening log file 'logs/gc.log': Permission denied
[0.000s][error][logging] Initialization of output 'file=logs/gc.log' using options 'filecount=32,filesize=64m' failed.
error:
Invalid -Xlog option '-Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m', see error log for details.
Error: Could not create the Java Virtual Machine.
Error: A fatal exception has occurred. Program will exit.
at org.elasticsearch.tools.launchers.JvmOption.flagsFinal(JvmOption.java:119)
at org.elasticsearch.tools.launchers.JvmOption.findFinalOptions(JvmOption.java:81)
at org.elasticsearch.tools.launchers.JvmErgonomics.choose(JvmErgonomics.java:38)
at org.elasticsearch.tools.launchers.JvmOptionsParser.jvmOptions(JvmOptionsParser.java:135)
at org.elasticsearch.tools.launchers.JvmOptionsParser.main(JvmOptionsParser.java:86)
Exception in thread "main" java.lang.RuntimeException: starting java failed with [1]
output:
[0.000s][error][logging] Error opening log file 'logs/gc.log': Permission denied
[0.000s][error][logging] Initialization of output 'file=logs/gc.log' using options 'filecount=32,filesize=64m' failed.
error:
Invalid -Xlog option '-Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m', see error log for details.
Error: Could not create the Java Virtual Machine.
Error: A fatal exception has occurred. Program will exit.
at org.elasticsearch.tools.launchers.JvmOption.flagsFinal(JvmOption.java:119)
at org.elasticsearch.tools.launchers.JvmOption.findFinalOptions(JvmOption.java:81)
at org.elasticsearch.tools.launchers.JvmErgonomics.choose(JvmErgonomics.java:38)
at org.elasticsearch.tools.launchers.JvmOptionsParser.jvmOptions(JvmOptionsParser.java:135)
at org.elasticsearch.tools.launchers.JvmOptionsParser.main(JvmOptionsParser.java:86)
Exception in thread "main" java.lang.RuntimeException: starting java failed with [1]
output:
[0.000s][error][logging] Error opening log file 'logs/gc.log': Permission denied
[0.000s][error][logging] Initialization of output 'file=logs/gc.log' using options 'filecount=32,filesize=64m' failed.
error:
Invalid -Xlog option '-Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m', see error log for details.
Error: Could not create the Java Virtual Machine.
Error: A fatal exception has occurred. Program will exit.
at org.elasticsearch.tools.launchers.JvmOption.flagsFinal(JvmOption.java:119)
at org.elasticsearch.tools.launchers.JvmOption.findFinalOptions(JvmOption.java:81)
at org.elasticsearch.tools.launchers.JvmErgonomics.choose(JvmErgonomics.java:38)
at org.elasticsearch.tools.launchers.JvmOptionsParser.jvmOptions(JvmOptionsParser.java:135)
at org.elasticsearch.tools.launchers.JvmOptionsParser.main(JvmOptionsParser.java:86)
Exception in thread "main" java.lang.RuntimeException: starting java failed with [1]
output:
error:
OpenJDK 64-Bit Server VM warning: INFO: os::commit_memory(0x00000006c0000000, 4294967296, 0) failed; error='Not enough space' (errno=12)
at org.elasticsearch.tools.launchers.JvmOption.flagsFinal(JvmOption.java:119)
at org.elasticsearch.tools.launchers.JvmOption.findFinalOptions(JvmOption.java:81)
at org.elasticsearch.tools.launchers.JvmErgonomics.choose(JvmErgonomics.java:38)
at org.elasticsearch.tools.launchers.JvmOptionsParser.jvmOptions(JvmOptionsParser.java:135)
at org.elasticsearch.tools.launchers.JvmOptionsParser.main(JvmOptionsParser.java:86)`
比如 --url https://www.baidu.com 然后只对这一个网站进行poc测试
另外问一下 nuclei 和 xray 的poc支持实时更新吗 nuclei的poc更新速度还是蛮快的
C:\Users\feng>go install github.com/hktalent/[email protected]
go: github.com/hktalent/[email protected]: github.com/hktalent/[email protected]: invalid version: Get "https://proxy.golang.org/github.com/hktalent/scan4all/@v/2.4.8.info": dial tcp 142.251.43.17:443: connectex: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond.
Hi,
I get error when I try to run the tool.
2022/08/03 21:54:09 wait for init config files ...
2022/08/03 21:54:13 Init2 k-v db 不能多个进程同时开启 Mmap value log file. Path=.DbCache/000000.vlog. Error=exec format error
2022/08/03 21:54:13 init config files is over .
panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x14a pc=0xa27d54]
goroutine 1 [running]:
github.com/dgraph-io/badger.(*DB).View(0x24221c0?, 0xc000719e48)
/home/draksjahs/go/pkg/mod/github.com/dgraph-io/[email protected]/txn.go:676 +0x34
github.com/hktalent/scan4all/lib/util.(*KvDbOp).Get(0x2131586?, {0x206b128?, 0x35245d8?})
/home/draksjahs/go/pkg/mod/github.com/hktalent/[email protected]/lib/util/kvDb.go:75 +0x71
github.com/hktalent/scan4all/brute.init.2.func1()
/home/draksjahs/go/pkg/mod/github.com/hktalent/[email protected]/brute/fuzzAI.go:51 +0x16f
github.com/hktalent/scan4all/lib/util.DoInit(0x7?)
/home/draksjahs/go/pkg/mod/github.com/hktalent/[email protected]/lib/util/config.go:417 +0xb6
main.main()
/home/draksjahs/go/pkg/mod/github.com/hktalent/[email protected]/main.go:23 +0x5d
While running the scanner got this error i'm running on Ubuntu 18.04 wsl
Running nmap command: nmap -n --unique --resolve-all -Pn --min-hostgroup 64 --max-retries 0 --host-timeout 10m --script-timeout 3m -oX /tmp/scan4all-out528460591 --version-intensity 9 --min-rate 10000 -T4 -p 80,443 192.168.2.2
[ERR] Could not run nmap command: exit status 255
[FTL] Could not run enumeration: Could not run nmap command: exit status 255
Hello,
My name is bot ami
I am a bug bounty hunter
Step to POC :
go: downloading github.com/hktalent/scan4all v0.0.0-20220720131937-997c737b4dbf
go: downloading github.com/Ullaakut/nmap v2.0.2+incompatible
go: downloading github.com/corpix/uarand v0.2.0
go: downloading github.com/spf13/viper v1.12.0
go: downloading github.com/projectdiscovery/fileutil v0.0.0-20220705195237-01becc2a8963
go: downloading github.com/projectdiscovery/goflags v0.0.8-0.20220610073650-5d31a8c159e3
go: downloading github.com/projectdiscovery/iputil v0.0.0-20220620153941-036d511e4097
go: downloading github.com/projectdiscovery/mapcidr v1.0.0
go: downloading github.com/projectdiscovery/uncover v0.0.5
go: downloading github.com/projectdiscovery/subfinder/v2 v2.5.2
go: downloading github.com/fsnotify/fsnotify v1.5.4
go: downloading github.com/mitchellh/mapstructure v1.5.0
go: downloading github.com/spf13/afero v1.8.2
go: downloading golang.org/x/net v0.0.0-20220708220712-1185a9018129
go: downloading github.com/projectdiscovery/nuclei/v2 v2.7.4
go: downloading github.com/projectdiscovery/rawhttp v0.0.8-0.20220526170355-03de6bb78f37
go: downloading github.com/projectdiscovery/stringsutil v0.0.0-20220712170325-48c50c332cb4
go: downloading github.com/projectdiscovery/wappalyzergo v0.0.51
go: downloading github.com/antchfx/xmlquery v1.3.11
go: downloading github.com/phayes/freeport v0.0.0-20220201140144-74d24b5ae9f5
go: downloading github.com/projectdiscovery/cdncheck v0.0.4-0.20220322144854-b2d8ce308abb
go: downloading github.com/miekg/dns v1.1.50
go: downloading gopkg.in/yaml.v3 v3.0.1
go: downloading github.com/subosito/gotenv v1.3.0
go: downloading gopkg.in/ini.v1 v1.66.4
go: downloading github.com/magiconair/properties v1.8.6
go: downloading github.com/pelletier/go-toml/v2 v2.0.1
go: downloading github.com/projectdiscovery/nuclei-updatecheck-api v0.0.0-20220612112524-9b1adac8563c
go: downloading github.com/pelletier/go-toml v1.9.5
go: downloading golang.org/x/oauth2 v0.0.0-20220411215720-9780585627b5
go: downloading github.com/projectdiscovery/fastdialer v0.0.16-0.20220609092737-7e3c7dcecf16
go: downloading github.com/antlabs/strsim v0.0.2
go: downloading gorm.io/gorm v1.23.8
go: downloading github.com/microcosm-cc/bluemonday v1.0.19
go: downloading github.com/olivere/elastic v6.2.37+incompatible
go: downloading github.com/jlaffaye/ftp v0.0.0-20190624084859-c1312a7102bf
go: downloading go.mongodb.org/mongo-driver v1.9.1
go: downloading github.com/denisenkom/go-mssqldb v0.12.2
go: downloading github.com/sijms/go-ora/v2 v2.4.25
go: downloading github.com/go-routeros/routeros v0.0.0-20210123142807-2a44d57c6730
go: downloading github.com/stacktitan/smb v0.0.0-20190531122847-da9a425dceb8
go: downloading github.com/gosnmp/gosnmp v1.35.0
go: downloading golang.org/x/crypto v0.0.0-20220411220226-7b82a4e95df4
go: downloading github.com/masterzen/winrm v0.0.0-20220513085036-69f69afcd9e9
go: downloading github.com/lcvvvv/gonmap v1.1.8
go: downloading github.com/antchfx/xpath v1.2.1
go: downloading golang.org/x/sys v0.0.0-20220704084225-05e143d24a9e
go: downloading github.com/hashicorp/errwrap v1.0.0
go: downloading github.com/projectdiscovery/interactsh v1.0.5
go: downloading github.com/go-rod/rod v0.108.1
go: downloading github.com/shirou/gopsutil/v3 v3.22.6
go: downloading github.com/owenrumney/go-sarif/v2 v2.1.2
go: downloading github.com/antchfx/htmlquery v1.2.5
go: downloading github.com/itchyny/gojq v0.12.8
go: downloading github.com/aws/aws-sdk-go v1.44.55
go: downloading gorm.io/driver/sqlite v1.3.6
go: downloading github.com/gorilla/websocket v1.5.0
go: downloading golang.org/x/time v0.0.0-20220411224347-583f2d630306
go: downloading github.com/satori/go.uuid v1.2.0
go: downloading github.com/google/cel-go v0.11.4
go: downloading github.com/golang-sql/civil v0.0.0-20190719163853-cb61b32ac6fe
go: downloading github.com/golang-sql/sqlexp v0.1.0
go: downloading github.com/youmark/pkcs8 v0.0.0-20181117223130-1be2e3e5546d
go: downloading github.com/huin/asn1ber v0.0.0-20120622192748-af09f62e6358
go: downloading github.com/icodeface/tls v0.0.0-20190904083142-17aec93c60e5
go: downloading github.com/lunixbochs/struc v0.0.0-20200707160740-784aaebc1d40
go: downloading github.com/Azure/go-ntlmssp v0.0.0-20211209120228-48547f28849e
go: downloading github.com/ChrisTrenkamp/goxpath v0.0.0-20210404020558-97928f7e12b6
go: downloading github.com/jcmturner/gokrb5/v8 v8.4.2
go: downloading github.com/gofrs/uuid v4.2.0+incompatible
go: downloading github.com/ysmood/leakless v0.8.0
go: downloading github.com/xanzy/go-gitlab v0.68.2
go: downloading github.com/hashicorp/go-version v1.6.0
go: downloading github.com/dlclark/regexp2 v1.4.0
go: downloading google.golang.org/genproto v0.0.0-20220602131408-e326c6e8e9c8
go: downloading github.com/jinzhu/now v1.1.5
go: downloading github.com/go-stack/stack v1.8.0
go: downloading github.com/klauspost/compress v1.15.6
go: downloading golang.org/x/sync v0.0.0-20210220032951-036812b2e83c
go: downloading github.com/xdg-go/scram v1.0.2
go: downloading github.com/xdg-go/stringprep v1.0.2
go: downloading github.com/jcmturner/dnsutils/v2 v2.0.0
go: downloading github.com/jcmturner/gofork v1.0.0
go: downloading github.com/hashicorp/go-uuid v1.0.2
go: downloading github.com/jcmturner/goidentity/v6 v6.0.1
go: downloading github.com/masterzen/simplexml v0.0.0-20190410153822-31eea3082786
go: downloading github.com/hashicorp/go-cleanhttp v0.5.2
go: downloading github.com/hashicorp/go-retryablehttp v0.7.1
go: downloading github.com/stoewer/go-strcase v1.2.0
go: downloading github.com/xdg-go/pbkdf2 v1.0.0
go: downloading github.com/antlr/antlr4/runtime/Go/antlr v0.0.0-20220418222510-f25a4f6275ed
go: downloading github.com/jcmturner/aescts/v2 v2.0.0
go: downloading github.com/jcmturner/rpc/v2 v2.0.3
go: downloading google.golang.org/genproto v0.0.0-20220602131408-e326c6e8e9c8
go: downloading github.com/klauspost/compress v1.15.6
go: downloading github.com/hashicorp/go-uuid v1.0.2
go: downloading github.com/jcmturner/gofork v1.0.0
go: downloading github.com/jcmturner/dnsutils/v2 v2.0.0
go: downloading github.com/masterzen/simplexml v0.0.0-20190410153822-31eea3082786
go: downloading github.com/jcmturner/goidentity/v6 v6.0.1
go: downloading github.com/hashicorp/go-cleanhttp v0.5.2
go: downloading github.com/hashicorp/go-retryablehttp v0.7.1
go: downloading github.com/stoewer/go-strcase v1.2.0
go: downloading github.com/xdg-go/pbkdf2 v1.0.0
go: downloading github.com/antlr/antlr4/runtime/Go/antlr v0.0.0-20220418222510-f25a4f6275ed
go: downloading github.com/jcmturner/aescts/v2 v2.0.0
go: downloading github.com/jcmturner/rpc/v2 v2.0.3
github.com/mattn/go-sqlite3
cgo: C compiler "gcc" not found: exec: "gcc": executable file not found in %PATH%
go install github.com/hktalent/[email protected]
go/pkg/mod/github.com/google/[email protected]/pcap/pcap_unix.go:34:10: fatal error: pcap.h: No such file or directory
34 | #include <pcap.h>
| ^~~~~~~~
compilation terminated.
When using go get -v and latest @2.7.1
build github.com/hktalent/scan4all: cannot load embed: malformed module path "embed": missing dot in first path element
C:UsersAdministratorDesktopscan4all_2.2.5_windows_amd64
scan4all.exe -host http://www.cnu.cc/
badger 2022/06/22 12:19:37 INFO: All 0 tables opened in 0s
badger 2022/06/22 12:19:37 INFO: Replaying file id: 0 at offset: 0
2022/06/22 12:19:37 Init k-v db 不能多个进程同时开启 Value log truncate required to run DB. This might result in data loss
2022/06/22 12:19:37 config.ReadInConfig open config/config.json: The system cannot find the path specified.
[INF] Running CONNECT scan with non root privileges
panic: runtime error: invalid memory address or nil pointer dereference
[signal 0xc0000005 code=0x0 addr=0x14a pc=0xb329d4]
goroutine 1 [running]:
github.com/dgraph-io/badger.(*DB).View(0x12?, 0xc005b75708)
D:/a/scan4all/scan4all/vendor/github.com/dgraph-io/badger/txn.go:676 +0x34
github.com/hktalent/scan4all/pkg.(*KvDbOp).Get(0xc00576a10f?, {0xc00576a10f?, 0x24ba6e4?})
D:/a/scan4all/scan4all/pkg/kvDb.go:59 +0x71
github.com/hktalent/scan4all/pkg.DoDns({0xc00576a108, 0x12})
D:/a/scan4all/scan4all/pkg/domain.go:77 +0x1c5
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).PreProcessTargets.func1(0xc0058be760?, 0xc0058e6000?, {0xc00576a108, 0x12})
D:/a/scan4all/scan4all/pkg/naabu/v2/pkg/runner/targets.go:101 +0x95
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).PreProcessTargets(0xc00609a460)
D:/a/scan4all/scan4all/pkg/naabu/v2/pkg/runner/targets.go:113 +0x234
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).Load(0xc00609a460)
D:/a/scan4all/scan4all/pkg/naabu/v2/pkg/runner/targets.go:34 +0x7a
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).RunEnumeration(0xc00609a460)
D:/a/scan4all/scan4all/pkg/naabu/v2/pkg/runner/runner.go:194 +0x245
main.main()
D:/a/scan4all/scan4all/main.go:20 +0x187
尝试了好几个版本都是这个错误,不清楚是哪里的问题
需要 手动删除下缓存文件
win系统
I have found that in the last version don't appear these modules:
go: finding module for package github.com/hktalent/scan4all/pocs_go/confluence
go: finding module for package github.com/hktalent/scan4all/pocs_go/f5
Hello,
I could not see nuclei running? with -v parameters.
./scan4all -host site.com -v --passive and ./scan4all -l list.txt -v --passive
How scan with nuclei or custom tool?
nmap: unrecognized option '--unique'
[ERR] Could not run nmap command: exit status 255
[FTL] Could not run enumeration: Could not run nmap command: exit status 255
# github.com/google/gopacket/pcap
../../go/pkg/mod/github.com/google/[email protected]/pcap/pcap_unix.go:34:10: fatal error: pcap.h: No such file or directory
34 | #include <pcap.h>
| ^~~~~~~~
compilation terminated.
root@ubuntu:~/test# chmod 775 ./scan4all
root@ubuntu:~/test# ./scan4all -list test-7-21.txt -v -debug
2022/07/21 18:45:11 DbName config/scan4all_db
2022/07/21 18:45:11 unable to open database file: no such file or directory
2022/07/21 18:45:11 wait for init config files ...
2022/07/21 18:45:11 init config files is over .
Starting Nmap 7.80 ( https://nmap.org ) at 2022-07-21 18:45 PDT
Read data files from: /usr/bin/../share/nmap
Nmap done: 0 IP addresses (0 hosts up) scanned in 0.07 seconds
Raw packets sent: 0 (0B) | Rcvd: 0 (0B)
WARNING: No targets were specified, so 0 hosts scanned.
[INF] Running SYN scan with CAP_NET_RAW privileges
[INF] Port scan starting....
2022/07/21 18:45:11 start close cache, StopCPUProfile...
panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x28 pc=0x755bf5]
goroutine 1 [running]:
net/url.(*URL).Hostname(...)
/opt/hostedtoolcache/go/1.18.4/x64/src/net/url/url.go:1133
github.com/hktalent/scan4all/lib.HoneyportDetection({0xc0004cc000, 0xe})
/home/runner/work/scan4all/scan4all/lib/HoneypotDetection.go:30 +0x115
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).MergeToFile(0xc007014bd0)
/home/runner/work/scan4all/scan4all/pkg/naabu/v2/pkg/runner/targets.go:78 +0x565
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).Load(0xc007014bd0)
/home/runner/work/scan4all/scan4all/pkg/naabu/v2/pkg/runner/targets.go:31 +0x45
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).RunEnumeration(0xc007014bd0)
/home/runner/work/scan4all/scan4all/pkg/naabu/v2/pkg/runner/runner.go:207 +0x245
main.main()
/home/runner/work/scan4all/scan4all/main.go:78 +0x40f
root@ubuntu:~/test# ls
config LICENSE README_EN.md README.md scan4all scan4all_2.6.1_linux_amd64.zip test-7-21.txt
root@ubuntu:~/test# rm -rf config/
root@ubuntu:~/test# ./scan4all -list test-7-21.txt -v -debug
2022/07/21 18:45:41 DbName config/scan4all_db
2022/07/21 18:45:41 unable to open database file: no such file or directory
2022/07/21 18:45:41 wait for init config files ...
2022/07/21 18:45:42 init config files is over .
Starting Nmap 7.80 ( https://nmap.org ) at 2022-07-21 18:45 PDT
Read data files from: /usr/bin/../share/nmap
Nmap done: 0 IP addresses (0 hosts up) scanned in 0.05 seconds
Raw packets sent: 0 (0B) | Rcvd: 0 (0B)
WARNING: No targets were specified, so 0 hosts scanned.
[INF] Running SYN scan with CAP_NET_RAW privileges
[INF] Port scan starting....
2022/07/21 18:45:42 start close cache, StopCPUProfile...
panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x28 pc=0x755bf5]
goroutine 1 [running]:
net/url.(*URL).Hostname(...)
/opt/hostedtoolcache/go/1.18.4/x64/src/net/url/url.go:1133
github.com/hktalent/scan4all/lib.HoneyportDetection({0xc005828000, 0xe})
/home/runner/work/scan4all/scan4all/lib/HoneypotDetection.go:30 +0x115
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).MergeToFile(0xc00708ebd0)
/home/runner/work/scan4all/scan4all/pkg/naabu/v2/pkg/runner/targets.go:78 +0x565
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).Load(0xc00708ebd0)
/home/runner/work/scan4all/scan4all/pkg/naabu/v2/pkg/runner/targets.go:31 +0x45
github.com/hktalent/scan4all/pkg/naabu/v2/pkg/runner.(*Runner).RunEnumeration(0xc00708ebd0)
/home/runner/work/scan4all/scan4all/pkg/naabu/v2/pkg/runner/runner.go:207 +0x245
main.main()
/home/runner/work/scan4all/scan4all/main.go:78 +0x40f
The tool you wrote is really good. Can you share the mac osx(arm64) release version of this tool?
指定不使用poc为什么还有poc check
Hello,
I just want to crawl a website. I want the application to scan for vulnerabilities on the port I specified without doing a port scan. I just want it scanned for known vulnerabilities.
I created a command as follows. But the application still brute-forces the ssh port. How do I prevent it from brute-force?
scan4all -host http://scanme.nmap.org -p 80 -ep 22,3306 -stream -v
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google ❤️ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.