Giter Site home page Giter Site logo

b3nguang / kunwu Goto Github PK

View Code? Open in Web Editor NEW

This project forked from kunwu2023/kunwu

0.0 0.0 0.0 451 KB

kunwu是新一代webshell检测引擎,使用了内置了模糊规则、污点分析模拟执行、机器学习三种高效的检测策略

JavaScript 10.77% Go 48.23% CSS 1.58% HTML 0.56% Vue 38.87%

kunwu's Introduction

KunWu

Static Badge Static Badge

默安科技打造的新一代 WebShell 检测工具「KunWu

模糊规则污点分析模拟执行机器学习三种高效检测策略,精准无误地发现 WebShell 风险

🚀1 快速开始

KunWu 支持 GUI 客户端、CLI 工具、在线 WebShell 检测。

1.1 在线 WebShell 检测

在线检测地址:https://ti.moresec.cn

1.2 编译CLI工具

CLI编译命令:go build -ldflags="-w -s"

1.3 编译GUI工具

  1. 后端编译 cd gui_go/go build -ldflags="-w -s"cd ..
  2. 前端编译修改 src/background.js 文件中 goPath 变量路径为编译后的二进制文件 npm inpm run electron:build

🐉2 客户端使用

2.1 GUI客户端

2.1.1 Mac端使用

下载 KunWu 客户端 ,将app拖拽到Applications目录下。

image

注明:如果提示无法验证开发者,请在设置种选择仍要打开。

2.1.2 Windows端使用

下载 KunWu 客户端 ,解压后运行 昆吾WebShell检测.exe 文件。

2.1.3 开始扫描

image

KunWu 支持快速扫描本地扫描远程扫描;上传或拖拽文件开始扫描!

  • 🛫 快速扫描:执行临时的扫描任务,在客户端重启后数据将会清空。
  • 🚄 本地扫描:执行本地扫描任务,在任务列表中生成扫描任务记录。
  • 🛸 远程扫描:通过SFTP读取远程文件进行扫描。

2.2 CLI客户端使用

下载 KunWu CLI For Win \ KunWu CLI For Mac \ KunWu CLI For Linux

2.2.1 使用 CLI 工具快速扫描本地文件

$ kw -file /home/sample.php
File path: /home/sample.php
Cloud scan: false
filter normal files: true
--------------------------start----------------------------
Local engine scanning...
+------------------------+----------+------+
|        文件路径         | 检出引擎 | 结果  |
+------------------------+----------+------+
| /home/sample.php | 本地引擎 | 恶意 |
+------------------------+----------+------+
--------------------------end----------------------------

Linux 环境使用截图👇

image

高级选项

云端引擎检测(-cloud):该选项开启后,会将本地无法检出的文件上传到云端进行扫描

$ kw -cloud -file /home/sample.php

3# 交流反馈:

🙏4# Stargazers over time

Star History Chart

kunwu's People

Contributors

lanyi1998 avatar kunwu2023 avatar ctccaozhe avatar b3nguang avatar wangsir01 avatar aabysszg avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.