pkg/fingerprint/matchfinger.go 中的 iskeyword 函数 应该改为不区分大小写检测比较好
strings.Contains(strings.ToLower(str), strings.ToLower(k))

emobile 指纹都没有识别到，原因就是 window.apiPrifix 与指纹 window.apiprifix 没有匹配到

您好，我看介绍工具是按照指纹对应poc检测的。如果添加未知指纹的POC工具会对扫描目标进行检测吗？

`panic: runtime error: index out of range [1] with length 1 [recovered]
panic: runtime error: index out of range [1] with length 1

goroutine 1063254 [running]:
gopkg.in/yaml%2ev2.handleErr(0xc002830378)
/home/runner/go/pkg/mod/gopkg.in/[email protected]/yaml.go:249 +0x6d
panic({0xebeb80, 0xc00b48a3c0})
/opt/hostedtoolcache/go/1.17.8/x64/src/runtime/panic.go:1038 +0x215
github.com/veo/vscan/pocs_yml/pkg/xray/structs.(*RuleMapSlice).UnmarshalYAML(0xc004c12ef8, 0xc00f75ad60)
/home/runner/work/vscan/vscan/pocs_yml/pkg/xray/structs/poc.go:121 +0x2cd
gopkg.in/yaml%2ev2.(*decoder).callUnmarshaler(0xc0022f6300, 0xc001ca2070, {0x7fe987775318, 0xc004c12ef8})
/home/runner/go/pkg/mod/gopkg.in/[email protected]/decode.go:270 +0xa7
gopkg.in/yaml%2ev2.(*decoder).prepare(0xdc8840, 0xc001ca2070, {0xddd100, 0xc004c12ef8, 0x198})
/home/runner/go/pkg/mod/gopkg.in/[email protected]/decode.go:313 +0x252
gopkg.in/yaml%2ev2.(*decoder).unmarshal(0xc0022f6300, 0xc001ca2070, {0xddd100, 0xc004c12ef8, 0x0})
/home/runner/go/pkg/mod/gopkg.in/[email protected]/decode.go:364 +0x105
gopkg.in/yaml%2ev2.(*decoder).mappingStruct(0xc0022f6300, 0xc001ca1ce0, {0xed1440, 0xc004c12ea0, 0x4})
/home/runner/go/pkg/mod/gopkg.in/[email protected]/decode.go:767 +0xc45
gopkg.in/yaml%2ev2.(*decoder).mapping(0xda9680, 0xc001ca1ce0, {0xed1440, 0xc004c12ea0, 0x0})
/home/runner/go/pkg/mod/gopkg.in/[email protected]/decode.go:626 +0x45f
gopkg.in/yaml%2ev2.(*decoder).unmarshal(0xc0022f6300, 0xc001ca1ce0, {0xed1440, 0xc004c12ea0, 0x7fe986f24598})
/home/runner/go/pkg/mod/gopkg.in/[email protected]/decode.go:372 +0x16c
gopkg.in/yaml%2ev2.(*decoder).document(0xc001ca1c70, 0xc001ca1ce0, {0xed1440, 0xc004c12ea0, 0xc00203d800})
/home/runner/go/pkg/mod/gopkg.in/[email protected]/decode.go:384 +0x5d
gopkg.in/yaml%2ev2.(*decoder).unmarshal(0xda4680, 0xc004c12ea0, {0xed1440, 0xc004c12ea0, 0xc003a9c600})
/home/runner/go/pkg/mod/gopkg.in/[email protected]/decode.go:360 +0x196
gopkg.in/yaml%2ev2.unmarshal({0xc003a9c600, 0x2ff, 0x300}, {0xda4680, 0xc004c12ea0}, 0x0)
/home/runner/go/pkg/mod/gopkg.in/[email protected]/yaml.go:148 +0x406
gopkg.in/yaml%2ev2.Unmarshal(...)
/home/runner/go/pkg/mod/gopkg.in/[email protected]/yaml.go:81
github.com/veo/vscan/pocs_yml/utils.loadPoc({0xfa9320, 0x22}, {0x6})
/home/runner/work/vscan/vscan/pocs_yml/utils/load.go:28 +0x7f
github.com/veo/vscan/pocs_yml/utils.LoadMultiPoc({0xa}, {0xc006d58740, 0x0})
/home/runner/work/vscan/vscan/pocs_yml/utils/load.go:14 +0xad
github.com/veo/vscan/pocs_yml.Check({0xc002ad6828, 0x17}, {0x0, 0xc002153170}, {0x0, 0x0}, {0x0, 0x0}, {0xc006d58740, 0x6})
/home/runner/work/vscan/vscan/pocs_yml/yml_poc_check.go:18 +0x8a
github.com/veo/vscan/pkg/httpx/runner.(*Runner).analyze(_, , {, }, {, }, {, _}, {0xc000a6ac90, 0x17}, ...)
/home/runner/work/vscan/vscan/pkg/httpx/runner/runner.go:1283 +0xa25e
github.com/veo/vscan/pkg/httpx/runner.(*Runner).process.func1({0xc000a6ac90, 0x17}, {0xf41861, 0x3}, {0xf58432, 0xa})
/home/runner/work/vscan/vscan/pkg/httpx/runner/runner.go:694 +0x125
created by github.com/veo/vscan/pkg/httpx/runner.(*Runner).process
/home/runner/work/vscan/vscan/pkg/httpx/runner/runner.go:692 +0x965`

输入如下命令

λ vscan.exe -host miyihouse.cn -json xxx.json

无xxx.json输出

windows上不能运行，即使管理员权限，开启的cmd

师傅好，想要个vx请教一下问题，关于httpx指纹和naabu端口得问题

Hi,

Can you add another alternative to ceye, so we can use for example Burp Collaborator? It often happens that ceye is offline and then another source is needed. Maybe even canarytokens can be a solution.

it would also be possible to give some examples of use, both for a list of ip/domains and even for a single url, please?

thank you

请问是否考虑将fscan POC加入进来，最近发现扫描结果有差异，比如说spring的heapdump，fscan能扫出来而vscan没有

谢谢大佬

好像不能POC扫描啊，我默认-host应该是可以的，但是同样的站点，我用xray的POC可以扫到漏洞，但是vscan没有扫出来，我扫描了我公司的一个C段同样没有任何一个POC命中。

请问代理参数如何使用，是否可以给个例子？

1.搭建了vulhub tomcat弱口令靶场
正常使用tomcat:tomcat可以登录
2.使用vscan不能扫出漏洞，扫完以后默认口令不能登陆了。

我就不知道有没有在扫描

二开可以提供一些详细文章嘛，针对未被指纹识别的URL，漏洞验证逻辑是怎样的啊，是直接所有poc遍历嘛，还是跳过

...
go: downloading github.com/dlclark/regexp2 v1.4.0
go: downloading github.com/segmentio/ksuid v1.0.4
go: downloading go.uber.org/multierr v1.8.0
go: downloading google.golang.org/protobuf v1.28.0
pkg\httpx\common\httpx\csp.go:7:2: github.com/PuerkitoBio/[email protected]: Get "https://proxy.golang.org/github.com/%21puerkito%21bio/goquery/@v/v1.8.0.zip": unexpected EOF
pkg\httpx\common\hashes\jarmhash.go:11:2: github.com/RumbleDiscovery/[email protected]: Get "https://proxy.golang.org/github.com/%21rumble%21discovery/jarm-go/@v/v0.0.6.zip": unexpected EOF
pkg\httpx\runner\runner.go:30:2: github.com/ammario/ipisp/[email protected]: Get "https://proxy.golang.org/github.com/ammario/ipisp/v2/@v/v2.0.0.zip": unexpected EOF
...

在win10 环境下运行go build编译时报错
在浏览器打开Get后面的连接可以正常下载文件

描述：扫描大量ip段一周占用内存越来越大，不知道后面达到一定大小会不会把结果储存进磁盘，释放内存；如果不释放内存会导致系统崩溃或服务被杀死

Hi I am getting this error while compiling the package

github.com/google/gopacket/pcap

/root/go/pkg/mod/github.com/google/[email protected]/pcap/pcap_unix.go:34:10: fatal error: pcap.h: No such file or directory
34 | #include <pcap.h>
| ^~~~~~~~
compilation terminated.

能不能添加url列表功能，只扫描url列表里的网站，不自行探测服务。

panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x679e58]

不知道是否来自误报或对方使用一次性密码，甚至有一次FUZZ出用户名是test，然而全部错误，我更好奇VSCAN是如何得出这个结论的

可以考虑参考项目https://github.com/zan8in/afrog的pocs
收录poc内容极广且持续维护已包含xrayv2的pocs

i run sudo go run main.go -host 127.0.01/24 -top-ports top-100

this and encounterd with this err

目前POC是集成到程序里面了吗？到时候能自动更新POC吗？

指纹探测这个可以调用下棱洞的指纹探测工具应该会更好吧

谢谢

为什么不做成xray那种可以联动burp被动扫描的呢

优化进行中，-l 指定url清单，扫描过程中丢弃路径去检测，出现大量404的问题
当前的流程是依赖
naabu -> httpx->vscan检测，
导致传入参数丢失url路径信息，最终大量检测都是404，缺失web上下文

一次扫描大于一定数量在webscan步骤会报错

更新后速度变慢了好多

Morning, guys. I found default lists absolutely awful.
Please, can we change default directory\files list to this one https://github.com/aels/subdirectories-discover/blob/main/dsstorewordlist.txt cuz it's sorted by occurrence and will deliver relevant results much faster?
Also, default password lists are useless, can we adjust them with this list https://gist.github.com/aels/393ccbb034074d9e1ff82d83acb5265e? it's a fork of PassStation and shows relatively good results in brute-forcing web panels.

Hello,
I really love your project. I use it in my tests all the time. Your project is working really stable. Can you just update the Nuclei and Xray yaml files?

在保存漏洞、httpx指纹检测结果之外，可不可以支持单独保存
naabu的结果到一个文件

ip:port
ip:port

httpx的结果到一个文件

http://ip:port
https://ip:port

后续方便调nuclei进行扫描

test

看了下目前是yml_poc 还是xray pocv1语法版本，是否有计划改进为xray pocv2语法版本的呢？

使用

vscan -l ips.txt -ceyeapi xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx -ceyedomain xxxxxx.ceye.io -csv -o output.csv

output.csv中不显示除http端口外的其他端口，因为我还需要拿着其他端口去nmap做指纹识别~~~

https://github.com/vulhub/vulhub/tree/master/thinkphp/5.0.23-rce
本地docker搭建，只能检测出来如下信息

麻烦帮忙编译一下arm64的vscan

建议，用nuclei的yaml模版技术来做poc