40.网络安全渗透测试—[穷举篇3]—[KALI的Metasploit穷举模块的使用]

本文阅读 2 分钟
首页 代码,C/C#/C++ 正文

我认为:无论是学习安全还是从事安全的人,多多少少都会有些许的情怀和使命感!!!

一、Metasploit的相关概念/下载地址/安装配置步骤

1、Metasploit相关概念:

是什么: Metasploit是一款开源的安全漏洞检测工具,可以帮助安全和IT专业人士识别安全性问题,验证漏洞的缓解措施,并管理专家驱动的安全性进行评估,提供真正的安全风险情报。这些功能包括智能开发,代码审计,Web应用程序扫描,社会工程。团队合作,在Metasploit和综合报告提出了他们的发现。

2、Windows-Metasploit下载地址:

下载地址: 传送门

下载地址2: [传送门]

3、安装步骤:

img

img img img img

4、配置步骤:

(1)配置环境变量path:L:attack-toolsmetasploitmetasploit-frameworkbin (2)打开cmd,测试是否可以打开该工具:msfconsole img

5、无需配置:

直接打开的方法:双击安装目录下的msfconsole.bat批处理文件,即可打开该工具!!! img img

二、Kali Metasploit 穷举模块的使用

1、kali打开工具的方法:msfconsole

terminal中键入msfconsole,即可打开,如下图所示: imgimg

2、部分穷举模块:auxiliary/scanner目录下

auxiliary/scanner/ftp/ftp_login
    auxiliary/scanner/ssh/ssh_login
    auxiliary/scanner/telnet/telnet_login
    auxiliary/scanner/smb/smb_login
    auxiliary/scanner/mssql/mssql_login
    auxiliary/scanner/mysql/mysql_login
    auxiliary/scanner/oracle/oracle_login
    auxiliary/scanner/postgres/postgres_login
    auxiliary/scanner/vnc/vnc_login
    auxiliary/scanner/pcanywhere/pcanywhere_login
    auxiliary/scanner/snmp/snmp_login

3、用法示例:以mysql为例

(1)攻击配置:msfconsole->use->set->set->set

msfconsole
    msf5 > use auxiliary/scanner/mysql/mysql_login
    msf5 auxiliary(mysql_login) > set PASS_FILE /root/xhydra/pass.txt
    msf5 auxiliary(mysql_login) > set USERNAME root
    msf5 auxiliary(mysql_login) > set RHOSTS 192.168.97.214
    msf5 auxiliary(mysql_login) > run
    # set 设置
    # show options 查询设置
    # back 返回
    # info 查询模块的信息
    # exploit/run 运行模块

(2)查看配置:show options img (3)开始爆破:run/exploit img

三、Windows Metasploit 穷举模块的使用

img img

四、所有的穷举模块

use auxiliary/scanner/acpp/login
    use auxiliary/scanner/afp/afp_login
    use auxiliary/scanner/afp/afp_server_info
    use auxiliary/scanner/backdoor/energizer_duo_detect
    use auxiliary/scanner/chargen/chargen_probe
    use auxiliary/scanner/couchdb/couchdb_enum
    use auxiliary/scanner/couchdb/couchdb_login
    use auxiliary/scanner/db2/db2_auth
    use auxiliary/scanner/db2/db2_version
    use auxiliary/scanner/db2/discovery
    use auxiliary/scanner/dcerpc/endpoint_mapper
    use auxiliary/scanner/dcerpc/hidden
    use auxiliary/scanner/dcerpc/management
    use auxiliary/scanner/dcerpc/tcp_dcerpc_auditor
    use auxiliary/scanner/dcerpc/windows_deployment_services
    use auxiliary/scanner/dect/call_scanner
    use auxiliary/scanner/dect/station_scanner
    use auxiliary/scanner/discovery/arp_sweep
    use auxiliary/scanner/discovery/empty_udp
    use auxiliary/scanner/discovery/ipv6_multicast_ping
    use auxiliary/scanner/discovery/ipv6_neighbor
    use auxiliary/scanner/discovery/ipv6_neighbor_router_advertisement
    use auxiliary/scanner/discovery/udp_probe
    use auxiliary/scanner/discovery/udp_sweep
    use auxiliary/scanner/dlsw/dlsw_leak_capture
    use auxiliary/scanner/dns/dns_amp
    use auxiliary/scanner/elasticsearch/indices_enum
    use auxiliary/scanner/emc/alphastor_devicemanager
    use auxiliary/scanner/emc/alphastor_librarymanager
    use auxiliary/scanner/etcd/open_key_scanner
    use auxiliary/scanner/etcd/version
    use auxiliary/scanner/finger/finger_users
    use auxiliary/scanner/ftp/anonymous
    use auxiliary/scanner/ftp/bison_ftp_traversal
    use auxiliary/scanner/ftp/colorado_ftp_traversal
    use auxiliary/scanner/ftp/easy_file_sharing_ftp
    use auxiliary/scanner/ftp/ftp_login
    use auxiliary/scanner/ftp/ftp_version
    use auxiliary/scanner/ftp/konica_ftp_traversal
    use auxiliary/scanner/ftp/pcman_ftp_traversal
    use auxiliary/scanner/ftp/titanftp_xcrc_traversal
    use auxiliary/scanner/gopher/gopher_gophermap
    use auxiliary/scanner/gprs/gtp_echo
    use auxiliary/scanner/h323/h323_version
    use auxiliary/scanner/http/a10networks_ax_directory_traversal
    use auxiliary/scanner/http/accellion_fta_statecode_file_read
    use auxiliary/scanner/http/adobe_xml_inject
    use auxiliary/scanner/http/advantech_webaccess_login
    use auxiliary/scanner/http/allegro_rompager_misfortune_cookie
    use auxiliary/scanner/http/apache_activemq_source_disclosure
    use auxiliary/scanner/http/apache_activemq_traversal
    use auxiliary/scanner/http/apache_mod_cgi_bash_env
    use auxiliary/scanner/http/apache_optionsbleed
    use auxiliary/scanner/http/apache_userdir_enum
    use auxiliary/scanner/http/appletv_login
    use auxiliary/scanner/http/atlassian_crowd_fileaccess
    use auxiliary/scanner/http/axis_local_file_include
    use auxiliary/scanner/http/axis_login
    use auxiliary/scanner/http/backup_file
    use auxiliary/scanner/http/barracuda_directory_traversal
    use auxiliary/scanner/http/bavision_cam_login
    use auxiliary/scanner/http/binom3_login_config_pass_dump
    use auxiliary/scanner/http/bitweaver_overlay_type_traversal
    use auxiliary/scanner/http/blind_sql_query
    use auxiliary/scanner/http/bmc_trackit_passwd_reset
    use auxiliary/scanner/http/brute_dirs
    use auxiliary/scanner/http/buffalo_login
    use auxiliary/scanner/http/buildmaster_login
    use auxiliary/scanner/http/caidao_bruteforce_login
    use auxiliary/scanner/http/canon_wireless
    use auxiliary/scanner/http/cert
    use auxiliary/scanner/http/cgit_traversal
    use auxiliary/scanner/http/chef_webui_login
    use auxiliary/scanner/http/chromecast_webserver
    use auxiliary/scanner/http/chromecast_wifi
    use auxiliary/scanner/http/cisco_asa_asdm
    use auxiliary/scanner/http/cisco_device_manager
    use auxiliary/scanner/http/cisco_directory_traversal
    use auxiliary/scanner/http/cisco_firepower_download
    use auxiliary/scanner/http/cisco_firepower_login
    use auxiliary/scanner/http/cisco_ios_auth_bypass
    use auxiliary/scanner/http/cisco_ironport_enum
    use auxiliary/scanner/http/cisco_nac_manager_traversal
    use auxiliary/scanner/http/cisco_ssl_vpn
    use auxiliary/scanner/http/cisco_ssl_vpn_priv_esc
    use auxiliary/scanner/http/citrix_dir_traversal
    use auxiliary/scanner/http/clansphere_traversal
    use auxiliary/scanner/http/cnpilot_r_web_login_loot
    use auxiliary/scanner/http/coldfusion_locale_traversal
    use auxiliary/scanner/http/coldfusion_version
    use auxiliary/scanner/http/concrete5_member_list
    use auxiliary/scanner/http/copy_of_file
    use auxiliary/scanner/http/crawler
    use auxiliary/scanner/http/dell_idrac
    use auxiliary/scanner/http/dicoogle_traversal
    use auxiliary/scanner/http/dir_listing
    use auxiliary/scanner/http/dir_scanner
    use auxiliary/scanner/http/dir_webdav_unicode_bypass
    use auxiliary/scanner/http/directadmin_login
    use auxiliary/scanner/http/dlink_dir_300_615_http_login
    use auxiliary/scanner/http/dlink_dir_615h_http_login
    use auxiliary/scanner/http/dlink_dir_session_cgi_http_login
    use auxiliary/scanner/http/dlink_user_agent_backdoor
    use auxiliary/scanner/http/dnalims_file_retrieve
    use auxiliary/scanner/http/docker_version
    use auxiliary/scanner/http/dolibarr_login
    use auxiliary/scanner/http/drupal_views_user_enum
    use auxiliary/scanner/http/ektron_cms400net
    use auxiliary/scanner/http/elasticsearch_traversal
    use auxiliary/scanner/http/enum_wayback
    use auxiliary/scanner/http/epmp1000_dump_config
    use auxiliary/scanner/http/epmp1000_dump_hashes
    use auxiliary/scanner/http/epmp1000_get_chart_cmd_exec
    use auxiliary/scanner/http/epmp1000_ping_cmd_exec
    use auxiliary/scanner/http/epmp1000_reset_pass
    use auxiliary/scanner/http/epmp1000_web_login
    use auxiliary/scanner/http/error_sql_injection
    use auxiliary/scanner/http/es_file_explorer_open_port
    use auxiliary/scanner/http/etherpad_duo_login
    use auxiliary/scanner/http/exchange_web_server_pushsubscription
    use auxiliary/scanner/http/f5_bigip_virtual_server
    use auxiliary/scanner/http/f5_mgmt_scanner
    use auxiliary/scanner/http/file_same_name_dir
    use auxiliary/scanner/http/files_dir
    use auxiliary/scanner/http/fortinet_ssl_vpn
    use auxiliary/scanner/http/frontpage_credential_dump
    use auxiliary/scanner/http/frontpage_login
    use auxiliary/scanner/http/gavazzi_em_login_loot
    use auxiliary/scanner/http/git_scanner
    use auxiliary/scanner/http/gitlab_login
    use auxiliary/scanner/http/gitlab_user_enum
    use auxiliary/scanner/http/glassfish_login
    use auxiliary/scanner/http/glassfish_traversal
    use auxiliary/scanner/http/goahead_traversal
    use auxiliary/scanner/http/groupwise_agents_http_traversal
    use auxiliary/scanner/http/host_header_injection
    use auxiliary/scanner/http/hp_imc_bims_downloadservlet_traversal
    use auxiliary/scanner/http/hp_imc_faultdownloadservlet_traversal
    use auxiliary/scanner/http/hp_imc_ictdownloadservlet_traversal
    use auxiliary/scanner/http/hp_imc_reportimgservlt_traversal
    use auxiliary/scanner/http/hp_imc_som_file_download
    use auxiliary/scanner/http/hp_sitescope_getfileinternal_fileaccess
    use auxiliary/scanner/http/hp_sitescope_getsitescopeconfiguration
    use auxiliary/scanner/http/hp_sitescope_loadfilecontent_fileaccess
    use auxiliary/scanner/http/hp_sys_mgmt_login
    use auxiliary/scanner/http/http_header
    use auxiliary/scanner/http/http_hsts
    use auxiliary/scanner/http/http_login
    use auxiliary/scanner/http/http_put
    use auxiliary/scanner/http/http_sickrage_password_leak
    use auxiliary/scanner/http/http_traversal
    use auxiliary/scanner/http/http_version
    use auxiliary/scanner/http/httpbl_lookup
    use auxiliary/scanner/http/httpdasm_directory_traversal
    use auxiliary/scanner/http/iis_internal_ip
    use auxiliary/scanner/http/iis_shortname_scanner
    use auxiliary/scanner/http/influxdb_enum
    use auxiliary/scanner/http/infovista_enum
    use auxiliary/scanner/http/intel_amt_digest_bypass
    use auxiliary/scanner/http/ipboard_login
    use auxiliary/scanner/http/jboss_status
    use auxiliary/scanner/http/jboss_vulnscan
    use auxiliary/scanner/http/jenkins_command
    use auxiliary/scanner/http/jenkins_enum
    use auxiliary/scanner/http/jenkins_login
    use auxiliary/scanner/http/joomla_bruteforce_login
    use auxiliary/scanner/http/joomla_ecommercewd_sqli_scanner
    use auxiliary/scanner/http/joomla_gallerywd_sqli_scanner
    use auxiliary/scanner/http/joomla_pages
    use auxiliary/scanner/http/joomla_plugins
    use auxiliary/scanner/http/joomla_version
    use auxiliary/scanner/http/kodi_traversal
    use auxiliary/scanner/http/linknat_vos_traversal
    use auxiliary/scanner/http/linksys_e1500_traversal
    use auxiliary/scanner/http/litespeed_source_disclosure
    use auxiliary/scanner/http/lucky_punch
    use auxiliary/scanner/http/majordomo2_directory_traversal
    use auxiliary/scanner/http/manageengine_desktop_central_login
    use auxiliary/scanner/http/manageengine_deviceexpert_traversal
    use auxiliary/scanner/http/manageengine_deviceexpert_user_creds
    use auxiliary/scanner/http/manageengine_securitymanager_traversal
    use auxiliary/scanner/http/mediawiki_svg_fileaccess
    use auxiliary/scanner/http/meteocontrol_weblog_extractadmin
    use auxiliary/scanner/http/mod_negotiation_brute
    use auxiliary/scanner/http/mod_negotiation_scanner
    use auxiliary/scanner/http/ms09_020_webdav_unicode_bypass
    use auxiliary/scanner/http/ms15_034_http_sys_memory_dump
    use auxiliary/scanner/http/mybook_live_login
    use auxiliary/scanner/http/netdecision_traversal
    use auxiliary/scanner/http/netgear_sph200d_traversal
    use auxiliary/scanner/http/nginx_source_disclosure
    use auxiliary/scanner/http/novell_file_reporter_fsfui_fileaccess
    use auxiliary/scanner/http/novell_file_reporter_srs_fileaccess
    use auxiliary/scanner/http/novell_mdm_creds
    use auxiliary/scanner/http/ntlm_info_enumeration
    use auxiliary/scanner/http/octopusdeploy_login
    use auxiliary/scanner/http/onion_omega2_login
    use auxiliary/scanner/http/open_proxy
    use auxiliary/scanner/http/openmind_messageos_login
    use auxiliary/scanner/http/options
    use auxiliary/scanner/http/oracle_demantra_database_credentials_leak
    use auxiliary/scanner/http/oracle_demantra_file_retrieval
    use auxiliary/scanner/http/oracle_ilom_login
    use auxiliary/scanner/http/owa_ews_login
    use auxiliary/scanner/http/owa_iis_internal_ip
    use auxiliary/scanner/http/owa_login
    use auxiliary/scanner/http/phpmyadmin_login
    use auxiliary/scanner/http/pocketpad_login
    use auxiliary/scanner/http/prev_dir_same_name_file
    use auxiliary/scanner/http/radware_appdirector_enum
    use auxiliary/scanner/http/rails_json_yaml_scanner
    use auxiliary/scanner/http/rails_mass_assignment
    use auxiliary/scanner/http/rails_xml_yaml_scanner
    use auxiliary/scanner/http/replace_ext
    use auxiliary/scanner/http/rewrite_proxy_bypass
    use auxiliary/scanner/http/rfcode_reader_enum
    use auxiliary/scanner/http/rips_traversal
    use auxiliary/scanner/http/riverbed_steelhead_vcx_file_read
    use auxiliary/scanner/http/robots_txt
    use auxiliary/scanner/http/s40_traversal
    use auxiliary/scanner/http/sap_businessobjects_user_brute
    use auxiliary/scanner/http/sap_businessobjects_user_brute_web
    use auxiliary/scanner/http/sap_businessobjects_user_enum
    use auxiliary/scanner/http/sap_businessobjects_version_enum
    use auxiliary/scanner/http/scraper
    use auxiliary/scanner/http/sentry_cdu_enum
    use auxiliary/scanner/http/servicedesk_plus_traversal
    use auxiliary/scanner/http/sevone_enum
    use auxiliary/scanner/http/simple_webserver_traversal
    use auxiliary/scanner/http/smt_ipmi_49152_exposure
    use auxiliary/scanner/http/smt_ipmi_cgi_scanner
    use auxiliary/scanner/http/smt_ipmi_static_cert_scanner
    use auxiliary/scanner/http/smt_ipmi_url_redirect_traversal
    use auxiliary/scanner/http/soap_xml
    use auxiliary/scanner/http/sockso_traversal
    use auxiliary/scanner/http/splunk_web_login
    use auxiliary/scanner/http/springcloud_traversal
    use auxiliary/scanner/http/squid_pivot_scanning
    use auxiliary/scanner/http/squiz_matrix_user_enum
    use auxiliary/scanner/http/ssl
    use auxiliary/scanner/http/ssl_version
    use auxiliary/scanner/http/support_center_plus_directory_traversal
    use auxiliary/scanner/http/surgenews_user_creds
    use auxiliary/scanner/http/svn_scanner
    use auxiliary/scanner/http/svn_wcdb_scanner
    use auxiliary/scanner/http/sybase_easerver_traversal
    use auxiliary/scanner/http/symantec_brightmail_ldapcreds
    use auxiliary/scanner/http/symantec_brightmail_logfile
    use auxiliary/scanner/http/symantec_web_gateway_login
    use auxiliary/scanner/http/thinvnc_traversal
    use auxiliary/scanner/http/titan_ftp_admin_pwd
    use auxiliary/scanner/http/title
    use auxiliary/scanner/http/tomcat_enum
    use auxiliary/scanner/http/tomcat_mgr_login
    use auxiliary/scanner/http/totaljs_traversal
    use auxiliary/scanner/http/tplink_traversal_noauth
    use auxiliary/scanner/http/trace
    use auxiliary/scanner/http/trace_axd
    use auxiliary/scanner/http/tvt_nvms_traversal
    use auxiliary/scanner/http/typo3_bruteforce
    use auxiliary/scanner/http/vcms_login
    use auxiliary/scanner/http/verb_auth_bypass
    use auxiliary/scanner/http/vhost_scanner
    use auxiliary/scanner/http/wangkongbao_traversal
    use auxiliary/scanner/http/web_vulndb
    use auxiliary/scanner/http/webdav_internal_ip
    use auxiliary/scanner/http/webdav_scanner
    use auxiliary/scanner/http/webdav_website_content
    use auxiliary/scanner/http/webpagetest_traversal
    use auxiliary/scanner/http/wildfly_traversal
    use auxiliary/scanner/http/wordpress_content_injection
    use auxiliary/scanner/http/wordpress_cp_calendar_sqli
    use auxiliary/scanner/http/wordpress_ghost_scanner
    use auxiliary/scanner/http/wordpress_login_enum
    use auxiliary/scanner/http/wordpress_multicall_creds
    use auxiliary/scanner/http/wordpress_pingback_access
    use auxiliary/scanner/http/wordpress_scanner
    use auxiliary/scanner/http/wordpress_xmlrpc_login
    use auxiliary/scanner/http/wp_arbitrary_file_deletion
    use auxiliary/scanner/http/wp_contus_video_gallery_sqli
    use auxiliary/scanner/http/wp_dukapress_file_read
    use auxiliary/scanner/http/wp_gimedia_library_file_read
    use auxiliary/scanner/http/wp_mobile_pack_info_disclosure
    use auxiliary/scanner/http/wp_mobileedition_file_read
    use auxiliary/scanner/http/wp_nextgen_galley_file_read
    use auxiliary/scanner/http/wp_simple_backup_file_read
    use auxiliary/scanner/http/wp_subscribe_comments_file_read
    use auxiliary/scanner/http/xpath
    use auxiliary/scanner/http/yaws_traversal
    use auxiliary/scanner/http/zabbix_login
    use auxiliary/scanner/http/zenworks_assetmanagement_fileaccess
    use auxiliary/scanner/http/zenworks_assetmanagement_getconfig
    use auxiliary/scanner/ike/cisco_ike_benigncertain
    use auxiliary/scanner/imap/imap_version
    use auxiliary/scanner/ip/ipidseq
    use auxiliary/scanner/ipmi/ipmi_cipher_zero
    use auxiliary/scanner/ipmi/ipmi_dumphashes
    use auxiliary/scanner/ipmi/ipmi_version
    use auxiliary/scanner/jenkins/jenkins_udp_broadcast_enum
    use auxiliary/scanner/kademlia/server_info
    use auxiliary/scanner/llmnr/query
    use auxiliary/scanner/lotus/lotus_domino_hashes
    use auxiliary/scanner/lotus/lotus_domino_login
    use auxiliary/scanner/lotus/lotus_domino_version
    use auxiliary/scanner/mdns/query
    use auxiliary/scanner/memcached/memcached_amp
    use auxiliary/scanner/memcached/memcached_udp_version
    use auxiliary/scanner/misc/cctv_dvr_login
    use auxiliary/scanner/misc/cisco_smart_install
    use auxiliary/scanner/misc/clamav_control
    use auxiliary/scanner/misc/dahua_dvr_auth_bypass
    use auxiliary/scanner/misc/dvr_config_disclosure
    use auxiliary/scanner/misc/easycafe_server_fileaccess
    use auxiliary/scanner/misc/ib_service_mgr_info
    use auxiliary/scanner/misc/ibm_mq_channel_brute
    use auxiliary/scanner/misc/ibm_mq_enum
    use auxiliary/scanner/misc/ibm_mq_login
    use auxiliary/scanner/misc/java_jmx_server
    use auxiliary/scanner/misc/java_rmi_server
    use auxiliary/scanner/misc/oki_scanner
    use auxiliary/scanner/misc/poisonivy_control_scanner
    use auxiliary/scanner/misc/raysharp_dvr_passwords
    use auxiliary/scanner/misc/rosewill_rxs3211_passwords
    use auxiliary/scanner/misc/sercomm_backdoor_scanner
    use auxiliary/scanner/misc/sunrpc_portmapper
    use auxiliary/scanner/misc/zenworks_preboot_fileaccess
    use auxiliary/scanner/mongodb/mongodb_login
    use auxiliary/scanner/motorola/timbuktu_udp
    use auxiliary/scanner/mqtt/connect
    use auxiliary/scanner/msf/msf_rpc_login
    use auxiliary/scanner/msf/msf_web_login
    use auxiliary/scanner/mssql/mssql_hashdump
    use auxiliary/scanner/mssql/mssql_login
    use auxiliary/scanner/mssql/mssql_ping
    use auxiliary/scanner/mssql/mssql_schemadump
    use auxiliary/scanner/mysql/mysql_authbypass_hashdump
    use auxiliary/scanner/mysql/mysql_file_enum
    use auxiliary/scanner/mysql/mysql_hashdump
    use auxiliary/scanner/mysql/mysql_login
    use auxiliary/scanner/mysql/mysql_schemadump
    use auxiliary/scanner/mysql/mysql_version
    use auxiliary/scanner/mysql/mysql_writable_dirs
    use auxiliary/scanner/natpmp/natpmp_portscan
    use auxiliary/scanner/nessus/nessus_ntp_login
    use auxiliary/scanner/nessus/nessus_rest_login
    use auxiliary/scanner/nessus/nessus_xmlrpc_login
    use auxiliary/scanner/nessus/nessus_xmlrpc_ping
    use auxiliary/scanner/netbios/nbname
    use auxiliary/scanner/nexpose/nexpose_api_login
    use auxiliary/scanner/nfs/nfsmount
    use auxiliary/scanner/nntp/nntp_login
    use auxiliary/scanner/ntp/ntp_monlist
    use auxiliary/scanner/ntp/ntp_nak_to_the_future
    use auxiliary/scanner/ntp/ntp_peer_list_dos
    use auxiliary/scanner/ntp/ntp_peer_list_sum_dos
    use auxiliary/scanner/ntp/ntp_readvar
    use auxiliary/scanner/ntp/ntp_req_nonce_dos
    use auxiliary/scanner/ntp/ntp_reslist_dos
    use auxiliary/scanner/ntp/ntp_unsettrap_dos
    use auxiliary/scanner/openvas/openvas_gsad_login
    use auxiliary/scanner/openvas/openvas_omp_login
    use auxiliary/scanner/openvas/openvas_otp_login
    use auxiliary/scanner/oracle/emc_sid
    use auxiliary/scanner/oracle/isqlplus_login
    use auxiliary/scanner/oracle/isqlplus_sidbrute
    use auxiliary/scanner/oracle/oracle_hashdump
    use auxiliary/scanner/oracle/oracle_login
    use auxiliary/scanner/oracle/sid_brute
    use auxiliary/scanner/oracle/sid_enum
    use auxiliary/scanner/oracle/spy_sid
    use auxiliary/scanner/oracle/tnslsnr_version
    use auxiliary/scanner/oracle/tnspoison_checker
    use auxiliary/scanner/oracle/xdb_sid
    use auxiliary/scanner/oracle/xdb_sid_brute
    use auxiliary/scanner/pcanywhere/pcanywhere_login
    use auxiliary/scanner/pcanywhere/pcanywhere_tcp
    use auxiliary/scanner/pcanywhere/pcanywhere_udp
    use auxiliary/scanner/pop3/pop3_login
    use auxiliary/scanner/pop3/pop3_version
    use auxiliary/scanner/portmap/portmap_amp
    use auxiliary/scanner/portscan/ack
    use auxiliary/scanner/portscan/ftpbounce
    use auxiliary/scanner/portscan/syn
    use auxiliary/scanner/portscan/tcp
    use auxiliary/scanner/portscan/xmas
    use auxiliary/scanner/postgres/postgres_dbname_flag_injection
    use auxiliary/scanner/postgres/postgres_hashdump
    use auxiliary/scanner/postgres/postgres_login
    use auxiliary/scanner/postgres/postgres_schemadump
    use auxiliary/scanner/postgres/postgres_version
    use auxiliary/scanner/printer/canon_iradv_pwd_extract
    use auxiliary/scanner/printer/printer_delete_file
    use auxiliary/scanner/printer/printer_download_file
    use auxiliary/scanner/printer/printer_env_vars
    use auxiliary/scanner/printer/printer_list_dir
    use auxiliary/scanner/printer/printer_list_volumes
    use auxiliary/scanner/printer/printer_ready_message
    use auxiliary/scanner/printer/printer_upload_file
    use auxiliary/scanner/printer/printer_version_info
    use auxiliary/scanner/quake/server_info
    use auxiliary/scanner/rdp/cve_2019_0708_bluekeep
    use auxiliary/scanner/rdp/ms12_020_check
    use auxiliary/scanner/rdp/rdp_scanner
    use auxiliary/scanner/redis/file_upload
    use auxiliary/scanner/redis/redis_login
    use auxiliary/scanner/redis/redis_server
    use auxiliary/scanner/rogue/rogue_recv
    use auxiliary/scanner/rogue/rogue_send
    use auxiliary/scanner/rservices/rexec_login
    use auxiliary/scanner/rservices/rlogin_login
    use auxiliary/scanner/rservices/rsh_login
    use auxiliary/scanner/rsync/modules_list
    use auxiliary/scanner/sap/sap_ctc_verb_tampering_user_mgmt
    use auxiliary/scanner/sap/sap_hostctrl_getcomputersystem
    use auxiliary/scanner/sap/sap_icf_public_info
    use auxiliary/scanner/sap/sap_icm_urlscan
    use auxiliary/scanner/sap/sap_mgmt_con_abaplog
    use auxiliary/scanner/sap/sap_mgmt_con_brute_login
    use auxiliary/scanner/sap/sap_mgmt_con_extractusers
    use auxiliary/scanner/sap/sap_mgmt_con_getaccesspoints
    use auxiliary/scanner/sap/sap_mgmt_con_getenv
    use auxiliary/scanner/sap/sap_mgmt_con_getlogfiles
    use auxiliary/scanner/sap/sap_mgmt_con_getprocesslist
    use auxiliary/scanner/sap/sap_mgmt_con_getprocessparameter
    use auxiliary/scanner/sap/sap_mgmt_con_instanceproperties
    use auxiliary/scanner/sap/sap_mgmt_con_listconfigfiles
    use auxiliary/scanner/sap/sap_mgmt_con_listlogfiles
    use auxiliary/scanner/sap/sap_mgmt_con_startprofile
    use auxiliary/scanner/sap/sap_mgmt_con_version
    use auxiliary/scanner/sap/sap_router_info_request
    use auxiliary/scanner/sap/sap_router_portscanner
    use auxiliary/scanner/sap/sap_service_discovery
    use auxiliary/scanner/sap/sap_smb_relay
    use auxiliary/scanner/sap/sap_soap_bapi_user_create1
    use auxiliary/scanner/sap/sap_soap_rfc_brute_login
    use auxiliary/scanner/sap/sap_soap_rfc_dbmcli_sxpg_call_system_command_exec
    use auxiliary/scanner/sap/sap_soap_rfc_dbmcli_sxpg_command_exec
    use auxiliary/scanner/sap/sap_soap_rfc_eps_get_directory_listing
    use auxiliary/scanner/sap/sap_soap_rfc_pfl_check_os_file_existence
    use auxiliary/scanner/sap/sap_soap_rfc_ping
    use auxiliary/scanner/sap/sap_soap_rfc_read_table
    use auxiliary/scanner/sap/sap_soap_rfc_rzl_read_dir
    use auxiliary/scanner/sap/sap_soap_rfc_susr_rfc_user_interface
    use auxiliary/scanner/sap/sap_soap_rfc_sxpg_call_system_exec
    use auxiliary/scanner/sap/sap_soap_rfc_sxpg_command_exec
    use auxiliary/scanner/sap/sap_soap_rfc_system_info
    use auxiliary/scanner/sap/sap_soap_th_saprel_disclosure
    use auxiliary/scanner/sap/sap_web_gui_brute_login
    use auxiliary/scanner/scada/digi_addp_reboot
    use auxiliary/scanner/scada/digi_addp_version
    use auxiliary/scanner/scada/digi_realport_serialport_scan
    use auxiliary/scanner/scada/digi_realport_version
    use auxiliary/scanner/scada/indusoft_ntwebserver_fileaccess
    use auxiliary/scanner/scada/koyo_login
    use auxiliary/scanner/scada/modbus_findunitid
    use auxiliary/scanner/scada/modbusclient
    use auxiliary/scanner/scada/modbusdetect
    use auxiliary/scanner/scada/moxa_discover
    use auxiliary/scanner/scada/pcomclient
    use auxiliary/scanner/scada/profinet_siemens
    use auxiliary/scanner/scada/sielco_winlog_fileaccess
    use auxiliary/scanner/sip/enumerator
    use auxiliary/scanner/sip/enumerator_tcp
    use auxiliary/scanner/sip/options
    use auxiliary/scanner/sip/options_tcp
    use auxiliary/scanner/sip/sipdroid_ext_enum
    use auxiliary/scanner/smb/impacket/dcomexec
    use auxiliary/scanner/smb/impacket/secretsdump
    use auxiliary/scanner/smb/impacket/wmiexec
    use auxiliary/scanner/smb/pipe_auditor
    use auxiliary/scanner/smb/pipe_dcerpc_auditor
    use auxiliary/scanner/smb/psexec_loggedin_users
    use auxiliary/scanner/smb/smb1
    use auxiliary/scanner/smb/smb2
    use auxiliary/scanner/smb/smb_enum_gpp
    use auxiliary/scanner/smb/smb_enumshares
    use auxiliary/scanner/smb/smb_enumusers
    use auxiliary/scanner/smb/smb_enumusers_domain
    use auxiliary/scanner/smb/smb_login
    use auxiliary/scanner/smb/smb_lookupsid
    use auxiliary/scanner/smb/smb_ms17_010
    use auxiliary/scanner/smb/smb_uninit_cred
    use auxiliary/scanner/smb/smb_version
    use auxiliary/scanner/smtp/smtp_enum
    use auxiliary/scanner/smtp/smtp_ntlm_domain
    use auxiliary/scanner/smtp/smtp_relay
    use auxiliary/scanner/smtp/smtp_version
    use auxiliary/scanner/snmp/aix_version
    use auxiliary/scanner/snmp/arris_dg950
    use auxiliary/scanner/snmp/brocade_enumhash
    use auxiliary/scanner/snmp/cisco_config_tftp
    use auxiliary/scanner/snmp/cisco_upload_file
    use auxiliary/scanner/snmp/cnpilot_r_snmp_loot
    use auxiliary/scanner/snmp/epmp1000_snmp_loot
    use auxiliary/scanner/snmp/netopia_enum
    use auxiliary/scanner/snmp/sbg6580_enum
    use auxiliary/scanner/snmp/snmp_enum
    use auxiliary/scanner/snmp/snmp_enum_hp_laserjet
    use auxiliary/scanner/snmp/snmp_enumshares
    use auxiliary/scanner/snmp/snmp_enumusers
    use auxiliary/scanner/snmp/snmp_login
    use auxiliary/scanner/snmp/snmp_set
    use auxiliary/scanner/snmp/ubee_ddw3611
    use auxiliary/scanner/snmp/xerox_workcentre_enumusers
    use auxiliary/scanner/ssh/apache_karaf_command_execution
    use auxiliary/scanner/ssh/cerberus_sftp_enumusers
    use auxiliary/scanner/ssh/detect_kippo
    use auxiliary/scanner/ssh/eaton_xpert_backdoor
    use auxiliary/scanner/ssh/fortinet_backdoor
    use auxiliary/scanner/ssh/juniper_backdoor
    use auxiliary/scanner/ssh/karaf_login
    use auxiliary/scanner/ssh/libssh_auth_bypass
    use auxiliary/scanner/ssh/ssh_enum_git_keys
    use auxiliary/scanner/ssh/ssh_enumusers
    use auxiliary/scanner/ssh/ssh_identify_pubkeys
    use auxiliary/scanner/ssh/ssh_login
    use auxiliary/scanner/ssh/ssh_login_pubkey
    use auxiliary/scanner/ssh/ssh_version
    use auxiliary/scanner/ssl/bleichenbacher_oracle
    use auxiliary/scanner/ssl/openssl_ccs
    use auxiliary/scanner/ssl/openssl_heartbleed
    use auxiliary/scanner/steam/server_info
    use auxiliary/scanner/telephony/wardial
    use auxiliary/scanner/telnet/brocade_enable_login
    use auxiliary/scanner/telnet/lantronix_telnet_password
    use auxiliary/scanner/telnet/lantronix_telnet_version
    use auxiliary/scanner/telnet/satel_cmd_exec
    use auxiliary/scanner/telnet/telnet_encrypt_overflow
    use auxiliary/scanner/telnet/telnet_login
    use auxiliary/scanner/telnet/telnet_ruggedcom
    use auxiliary/scanner/telnet/telnet_version
    use auxiliary/scanner/teradata/teradata_odbc_login
    use auxiliary/scanner/tftp/ipswitch_whatsupgold_tftp
    use auxiliary/scanner/tftp/netdecision_tftp
    use auxiliary/scanner/tftp/tftpbrute
    use auxiliary/scanner/ubiquiti/ubiquiti_discover
    use auxiliary/scanner/udp/udp_amplification
    use auxiliary/scanner/upnp/ssdp_amp
    use auxiliary/scanner/upnp/ssdp_msearch
    use auxiliary/scanner/varnish/varnish_cli_file_read
    use auxiliary/scanner/varnish/varnish_cli_login
    use auxiliary/scanner/vmware/esx_fingerprint
    use auxiliary/scanner/vmware/vmauthd_login
    use auxiliary/scanner/vmware/vmauthd_version
    use auxiliary/scanner/vmware/vmware_enum_permissions
    use auxiliary/scanner/vmware/vmware_enum_sessions
    use auxiliary/scanner/vmware/vmware_enum_users
    use auxiliary/scanner/vmware/vmware_enum_vms
    use auxiliary/scanner/vmware/vmware_host_details
    use auxiliary/scanner/vmware/vmware_http_login
    use auxiliary/scanner/vmware/vmware_screenshot_stealer
    use auxiliary/scanner/vmware/vmware_server_dir_trav
    use auxiliary/scanner/vmware/vmware_update_manager_traversal
    use auxiliary/scanner/vnc/ard_root_pw
    use auxiliary/scanner/vnc/vnc_login
    use auxiliary/scanner/vnc/vnc_none_auth
    use auxiliary/scanner/voice/recorder
    use auxiliary/scanner/vxworks/urgent11_check
    use auxiliary/scanner/vxworks/wdbrpc_bootline
    use auxiliary/scanner/vxworks/wdbrpc_version
    use auxiliary/scanner/winrm/winrm_auth_methods
    use auxiliary/scanner/winrm/winrm_cmd
    use auxiliary/scanner/winrm/winrm_login
    use auxiliary/scanner/winrm/winrm_wql
    use auxiliary/scanner/wproxy/att_open_proxy
    use auxiliary/scanner/wsdd/wsdd_query
    use auxiliary/scanner/x11/open_x11
本文为互联网自动采集或经作者授权后发布,本文观点不代表立场,若侵权下架请联系我们删帖处理!文章出自:https://blog.csdn.net/qq_45555226/article/details/119426731
-- 展开阅读全文 --
KillDefender 的 Beacon 对象文件 PoC 实现
« 上一篇 02-09
Web安全—逻辑越权漏洞(BAC)
下一篇 » 03-13

发表评论

成为第一个评论的人

热门文章

标签TAG

最近回复