Skip to content

Commit

Permalink
update
Browse files Browse the repository at this point in the history
  • Loading branch information
@zan8in
zan8in committed Dec 22, 2023
1 parent c5222a0 commit d11fe9c
Show file tree
Hide file tree
Showing 42 changed files with 40 additions and 4 deletions.
Binary file modified pocs/v/afrog-pocs.zip
View file
Binary file not shown.
2 changes: 1 addition & 1 deletion pocs/v/version
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
0.3.06
0.3.07
2 changes: 1 addition & 1 deletion v2/pkg/config/banner.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ import (
"github.com/zan8in/gologger"
)

const Version = "2.9.5"
const Version = "2.9.6"

func InitBanner() {
fmt.Printf("\r\n|\tA F 🐸 O G\t|")
Expand Down
3 changes: 2 additions & 1 deletion v2/pkg/protocols/netxclient/netxclient.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -95,7 +95,8 @@ func (nc *NetClient) Request(data, dataType string, variableMap map[string]any)
}

variableMap["response"] = &proto.Response{
Raw: body,
Raw: []byte(hex.EncodeToString(body)),
Body: []byte(hex.EncodeToString(body)),
}

variableMap["fulltarget"] = nc.address
Expand Down
0 ...s/temp/afrog-pocs/cve/CVE-2023-46574.yaml → ...s/afrog-pocs/CVE/2023/CVE-2023-46574.yaml
View file
File renamed without changes.
0 ...s/temp/afrog-pocs/cve/CVE-2023-47246.yaml → ...s/afrog-pocs/CVE/2023/CVE-2023-47246.yaml
View file
File renamed without changes.
0 ...s/temp/afrog-pocs/cve/CVE-2023-49070.yaml → ...s/afrog-pocs/CVE/2023/CVE-2023-49070.yaml
View file
File renamed without changes.
35 changes: 35 additions & 0 deletions v2/pocs/afrog-pocs/fingerprinting/dameng-detect.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,35 @@
id: dameng-detect

info:
name: 达梦数据库
author: zan8in
severity: info
verified: true
description: |-
默认端口 5236 默认密码 达梦数据库默认用户密码SYSDBA:SYSDBA
Fofa: protocol="dameng"
ZoomEye: app:"DMSQL"
reference:
- https://www.dameng.com/
tags: network,db,dameng
created: 2023/12/22

set:
host: request.url.domain
hostname: request.url.host
rules:
r0:
request:
type: tcp
host: "{{hostname}}"
data: "00000000c8005100000000000000000000000099000000000000000001020000000000000000000000000000000000000000000000000000000000000000000008000000382e312e312e34390040000000068149bbe004a62fb45552831704c802d4d802b4579cb045b3c6100880725ececf148a7c9205047caccadfef5ff264460d11092a3b483bf9d24382dea1dc43e7"
data-type: hex
expression: response.body.bcontains(b'00000000e400') || response.body.bcontains(b'40000000')
r1:
request:
type: tcp
host: "{{host}}:5236"
data: "00000000c8005100000000000000000000000099000000000000000001020000000000000000000000000000000000000000000000000000000000000000000008000000382e312e312e34390040000000068149bbe004a62fb45552831704c802d4d802b4579cb045b3c6100880725ececf148a7c9205047caccadfef5ff264460d11092a3b483bf9d24382dea1dc43e7"
data-type: hex
expression: response.body.bcontains(b'00000000e400') || response.body.bcontains(b'40000000')
expression: r0() || r1()
0 ...afrog-pocs/fingerprint/neo4j-browser.yaml → ...og-pocs/fingerprinting/neo4j-browser.yaml
View file
File renamed without changes.
0 ...-pocs/fingerprint/springblade-detect.yaml → ...cs/fingerprinting/springblade-detect.yaml
View file
File renamed without changes.
0 ...ity/chanjet-tplus-checkpassword-sqli.yaml → ...ity/chanjet-tplus-checkpassword-sqli.yaml
View file
File renamed without changes.
0 ...vulnerability/dahua-icc-login-bypass.yaml → ...vulnerability/dahua-icc-login-bypass.yaml
View file
File renamed without changes.
0 ...-portal-auth-config-reset-suffix-rce.yaml → ...-portal-auth-config-reset-suffix-rce.yaml
View file
File renamed without changes.
0 ...aa-portal-auth-config-reset-type-rce.yaml → ...aa-portal-auth-config-reset-type-rce.yaml
View file
File renamed without changes.
0 ...her-oa-c6-fileuploadmessage-fileread.yaml → ...her-oa-c6-fileuploadmessage-fileread.yaml
View file
File renamed without changes.
0 ...y/kindee-scpsupreghandler-fileupload.yaml → ...y/kindee-scpsupreghandler-fileupload.yaml
View file
File renamed without changes.
0 ...lnerability/ruijie-rg-eg-web-mis-rce.yaml → ...lnerability/ruijie-rg-eg-web-mis-rce.yaml
View file
File renamed without changes.
0 ...ijie-rg-uac-account-password-leakage.yaml → ...ijie-rg-uac-account-password-leakage.yaml
View file
File renamed without changes.
0 ...erability/ruijie-rg-uac-nmc-sync-rce.yaml → ...erability/ruijie-rg-uac-nmc-sync-rce.yaml
View file
File renamed without changes.
0 ...te3600-obj-area-export-save-fileread.yaml → ...te3600-obj-area-export-save-fileread.yaml
View file
File renamed without changes.
0 ...3600-obj-area-import-save-fileupload.yaml → ...3600-obj-area-import-save-fileupload.yaml
View file
File renamed without changes.
0 ...te3600-obj-av-import-save-fileupload.yaml → ...te3600-obj-av-import-save-fileupload.yaml
View file
File renamed without changes.
0 ...y/seeyon-management-default-password.yaml → ...y/seeyon-management-default-password.yaml
View file
File renamed without changes.
0 ...pocs/vulnerability/sslvpn-client-rce.yaml → ...pocs/vulnerability/sslvpn-client-rce.yaml
View file
File renamed without changes.
0 ...uperdata-designreportsave-fileupload.yaml → ...uperdata-designreportsave-fileupload.yaml
View file
File renamed without changes.
0 ...nerability/topsec-maincgi-cookie-rce.yaml → ...nerability/topsec-maincgi-cookie-rce.yaml
View file
File renamed without changes.
0 ...lnerability/wanhu-defaultroot-sqli-1.yaml → ...lnerability/wanhu-defaultroot-sqli-1.yaml
View file
File renamed without changes.
0 ...lnerability/wanhu-defaultroot-sqli-2.yaml → ...lnerability/wanhu-defaultroot-sqli-2.yaml
View file
File renamed without changes.
0 ...lnerability/wanhu-defaultroot-sqli-3.yaml → ...lnerability/wanhu-defaultroot-sqli-3.yaml
View file
File renamed without changes.
0 ...vulnerability/wanhu-defaultroot-sqli.yaml → ...vulnerability/wanhu-defaultroot-sqli.yaml
View file
File renamed without changes.
0 ...erability/wanhu-oa-documentedit-sqli.yaml → ...erability/wanhu-oa-documentedit-sqli.yaml
View file
File renamed without changes.
0 ...gyou-grp-u8-SmartUpload01-fileupload.yaml → ...gyou-grp-u8-smartupload01-fileupload.yaml
View file
File renamed without changes.
0 ...ity/yonyou-grp-u8-license-check-sqli.yaml → ...ity/yonyou-grp-u8-license-check-sqli.yaml
View file
File renamed without changes.
0 ...ty/yonyou-grp-u8-selectdmje-jsp-sqli.yaml → ...ty/yonyou-grp-u8-selectdmje-jsp-sqli.yaml
View file
File renamed without changes.
0 ...lity/yonyou-grp-u8-slbmbygr-jsp-sqli.yaml → ...lity/yonyou-grp-u8-slbmbygr-jsp-sqli.yaml
View file
File renamed without changes.
0 .../vulnerability/yonyou-ksoa-dept-sqli.yaml → .../vulnerability/yonyou-ksoa-dept-sqli.yaml
View file
File renamed without changes.
0 ...ulnerability/yonyou-ksoa-paybill-sqi.yaml → ...ulnerability/yonyou-ksoa-paybill-sqi.yaml
View file
File renamed without changes.
0 ...soa-servletimagefield-skeyvalue-sqli.yaml → ...soa-servletimagefield-skeyvalue-sqli.yaml
View file
File renamed without changes.
0 ...onyou-nccloud-uploadchunk-fileupload.yaml → ...onyou-nccloud-uploadchunk-fileupload.yaml
View file
File renamed without changes.
0 ...yonyou-u8-cloud-registerservlet-sqli.yaml → ...yonyou-u8-cloud-registerservlet-sqli.yaml
View file
File renamed without changes.
0 ...ulnerability/zfsoft-createcafile-rce.yaml → ...ulnerability/zfsoft-createcafile-rce.yaml
View file
File renamed without changes.
2 changes: 1 addition & 1 deletion v2/pocs/temp/afrog-pocs/version
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
0.3.06
0.3.07

0 comments on commit d11fe9c

Please sign in to comment.