Code Monkey home page Code Monkey logo

dir_scan's Introduction

Godscan

Godscan 是一款python编写的具有图形化界面的漏洞检测框架,可以之定义漏洞检测 poc ,主要是帮助安全测试者,更好的去记录和整理历史漏洞,以便更好的进行漏洞检测,提高工作效率!

请勿用于非法的用途,否则造成的严重后果与本项目无关。

项目简介

​ 通过学习 python 编程语言, 进而对常见 web 漏洞 poc 进行收集编写,使得能进行一键化检测及利用。于是通过pyqt5 开发加载 poc 脚本框架以便更好利用漏洞,简单功能实现如下:

获取扫描地址 ---> 加载漏洞检测脚本 ---> 输出检测结果 ---> 一键利用命令执行和反弹

  • poc 涉及漏洞基本信息和参考地址

    主要参看 https://vulhub.org/ 及各安全论坛及博客

  • poc 会做好分类自动化获取分类

吾将 poc 脚本框架命名为 GodScan

显示模块

​ 分为三个模块,漏洞检测、漏洞利用、编码解码等

漏洞检测

显示设置 --> 可以设置显示全部、存在、不存在三种情况显示,并且增加颜色显示效果,漏洞存在显示红色,漏洞等级显示,高危 -->红色、 中危 -->黄色、底危 -->绿色。

界面 -- 增加主题效果

设置 --> 自动获取 ua 等请求头,也可自定义。

具体效果如下:

线程暂无法使用, 等以后进行优化

1

漏洞利用

反弹 shell (不一定成功,因为判断局限很多,且只适用于目标机器为 liunx,懂的~~~) 做好监听 ----------- 自行测试即可

image-20210917165903978

命令执行效果

image-20210917165903978

编码解码模块 --> 支持有 url 编码/解码、base64 编码/解码、Hex 编码/解码、Unicode 编码/解码, 因为需求是中文与对应编码转换,所以只支持常见的需求。

增加界面对称 --> 添加‘俄罗斯方块’小游戏

image-20210917165937113

小游戏

image-20210917165958281

dir_scan's People

Contributors

guoke324 avatar

Watchers

avatar

Forkers

wysssadda

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.