janhsu / oday Goto Github PK
View Code? Open in Web Editor NEWjavafx编写的poc管理工具和漏洞扫描的小工具
javafx编写的poc管理工具和漏洞扫描的小工具
确实牛逼,省的我自己写poc脚本了,大佬NB!!!!
1、有些poc需要匹配返回包1的内容,放在请求包2中请求,建议优化
2、验证漏洞后如getshell,给一个返回webshell的路径,而不单只在返回包中体现,命令执行漏洞类似。像goby
3、漏洞扫描匹配指纹模块,不清楚匹配到了哪些指纹
4、指纹识别可以导入ehole指纹
非常感谢师傅分享的工具,个人建议不强求
有一个批量添加的功能会比较好,或者初始的多加一点,目前有点鸡肋,一条一条的加累死人了哦
漏洞扫描功能建议也排序下,把最新的poc放在最上面,还有就是漏洞扫描开始的时候没办法暂停.....
师傅搞个群,交流一下开发经验
1.3版本的怎么还是0.98版本的源码
显示会重复,并且有时能扫出来洞,有时扫不出来
1、cms不能自己增加
2、即使选择了作者内置的cms,然后添加poc,提交的时候,显示添加成功,实际上并没有实时更新显示POC,需要关闭重新打开。
3、在添加poc的漏洞扫描页面,有个包含或者正则匹配,假设同时需要包含两个条件,或者两个条件中的一个,这个设置怎恶魔办?比如body返回a或者返回b,则表示有漏洞,这个没法设置。
如果可以兼容nuclei和pocsuite 的POC就好了
扫描的结果好像不能一键全部导出,只能一个一个导出
可以在弄弄吗
1.能否增加其他格式POC的导入导出功能,比如nuclei的yaml、xray的yaml或者pocsuite3的格式
2.能否新增远程数据库连接功能,将数据库放在服务端,方便团队协作
师傅你好,我想要你最新版的源码,我想二开,将数据库以云端方式进行同步,因为工作环境多变,或团队使用,需要同步一下,求师傅给一下最新版的源码好嘛,[email protected] 感谢
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.