目录
脚本源码用法效果及示例SSH 端口FTP 端口版本:Grey Hack v0.7.3618 - Alpha
适用于SSH (22) 端口、FTP (21) 端口、HTTP (80) 端口、SMTP (25) 端口及3306/3307 端口 。
脚本源码
if params.len != 2 or params[0] == "-h" or params[0] == "--help" then exit("<b>Usage: "+program_path.split("/")[-1]+" [ip_address] [port]</b>")metaxploit = include_lib("/lib/metaxploit.so")if not metaxploit thenmetaxploit = include_lib(current_path + "/metaxploit.so")end ifif not metaxploit then exit("Error: Can't find metaxploit library in the /lib path or the current folder")address = params[0]port = params[1].to_intnet_session = _use( address, port )if not net_session then exit("Error: can't connect to net session")metaLib = net_session.dump_libprint("Founded " + metaLib.lib_name + " "+ metaLib.version)if not metaLib then exit("Error: TargetLib not found.")exploits = metaxploit.scan(metaLib)for exploit in exploitsprint(exploit)result_lists = metaxploit.scan_address(metaLib, exploit).split("Unsafe check: ")[1:]for result_list in result_liststarget_str = result_list.split(".")[0]target_key = target_str.split(" ")[-1]result = metaLib.overflow(exploit, target_key[3:-4])print(target_key + ": " + typeof(result))print(result_list)end forend for
用法
【脚本名】 【公网IP】 【端口号】
效果及示例
先检测目标端口库版本
再尝试遍历检测对应漏洞的内存地址、关键字和漏洞类型
并打印触发条件、所获得的权限或失败原因
SSH 端口
FTP 端口
如果觉得《【 Grey Hack 】万金油脚本:常见端口漏洞检测》对你有帮助,请点赞、收藏,并留下你的观点哦!
