Kscan是一款轻量级的资产发现工具,可针对IP/IP段或资产列表进行端口扫描以及TCP指纹识别和Banner抓取

Related tags

Network kscan
Overview

Kscan-简单好用的资产测绘工具

一、简介


██╗  ██╗███████╗ ██████╗ █████╗ ███╗   ██╗
██║ ██╔╝██╔════╝██╔════╝██╔══██╗████╗  ██║
█████╔╝ ███████╗██║     ███████║██╔██╗ ██║
██╔═██╗ ╚════██║██║     ██╔══██║██║╚██╗██║
██║  ██╗███████║╚██████╗██║  ██║██║ ╚████║
╚═╝  ╚═╝╚══════╝ ╚═════╝╚═╝  ╚═╝╚═╝  ╚═══╝

Kscan从初次发布至今经历了很多个版本,首次发布于吐司,姑且就叫她1.0吧:

https://www.t00ls.net/thread-57634-1-1.html

而后呢,发布了1.5版本首发于棱角,对之前的代码进行了重构:

https://forum.ywhack.com/viewthread.php?tid=114928

原本造这个轮子的初衷是为了解决平时自己护网大面积的寻找薄弱资产问题,最开始的雏形也只具备HTTP关键字(标题、Header)探测功能,现在的版本新增TCP端口的banner识别,以及HTTP、HTTPS的指纹识别功能。在这里也感谢EHole(棱洞)提供的指纹信息。

现在这个版本的kscan使用go编写,实际上前人已经提供了很多具备相似功能的工具了,但是最终我还是坚定心思,写一款自己的工具。

二、碎碎念

在开始正式介绍kscan之前,我决定聊一聊有关渗透过程过程中最重要的信息收集阶段:资产发现。

image-20210220154321503

如上图所示,从提供攻击目标,到最终实施攻击,经历了四个关键阶段。

  • 转换阶段

    这部分阶段主要目标是完成:从攻击目标到信息资产的一个转换,例如从一个关键字、主域名到具体的IP地址或者其他引申的子域名,主要手段是通过FOFA、钟馗之眼、子域名挖掘/爆破工具来生成一个模糊的清单用于后续阶段去做深层次的筛选。

    其实EHole、Glass等工具有做这一个阶段的整合,但是在这方面,我没有把这个功能做到kscan中,目前我其实是刻意把转换阶段独立出来的。因为在这个阶段,不论是搜索的关键字也好,还是通过域名找到真实IP也好,还是其实更多的需要”人“来做识别。识别完成之后,再生成一个清单给kscan,这样会使后面的流程更高效。

    当然这只是我的个人的一个执念,如果后续反响强烈的话,加进去其实也未尝不可。

  • 扫描阶段

    这一阶段主要是针对IP进行端口扫描以便于后续的应用层识别,扫描速率达标的工具诸如:s.exe、masscan等大都只能实现对开放情况进行探测。而目前的大部分工具,把这部分工作交给了FOFA等搜索引擎,不会自己进行资产探测,这样的优点是不会有大量的端口探测包打草惊蛇,缺点是存在时效性。可能漏掉资产。权衡之后,最终还是把这块功能整合到了kscan中,毕竟IP被封了可以换,资产漏掉了可就是真的漏掉了。

  • 识别阶段

    这一阶段就是对已开放的端口进行深度的端口识别,传统工具大都是只能对端口开放情况进行探测,各别具备识别功能的工具如:nmap效率则是硬伤,而且不能对内容进行解析,无法获取标题等。又或者只能进行HTTP等特定协议进行识别。为了解决这些问题,kscan在确保效率、不发送更多数据包的前提下,能够识别大多数开放端口的协议。

  • 检测阶段

    最后一个阶段,就是应用层检测了,类似CMS指纹识别、敏感目录/文件探测等等,kscan的开发初衷是在不发送更多数据的情况下更多的获取目标的信息,所以不会进行更深层次的目录扫描、指纹比对。但是会进行ico文件hash比对以及首页关键字比对,和返回包头部比对。这其实基本可以满足大部分的指纹识别需求了。

三、使用方法

鄙人是一个懒人,所以在写工具的时候也往易用性上进行了更多的考量

usage: kscan [-h,--help] (-t,--target) [-p,--port|--top] [-o,--output] [--proxy] [--threads] [--http-code] [--path] [--host] [--timeout]

optional arguments:
  -h , --help     show this help message and exit
  -t , --target   直接扫描指定对象,支持IP、URL、IP/[16-32]、file:/tmp/target.txt
  -p , --port     扫描指定端口,默认会扫描TOP400,支持:80,8080,8088-8090
  -o , --output   将扫描结果保存到文件
  --top           扫描WooYun统计开放端口前x个,最高支持1000个
  --proxy         设置代理{socks5/socks4/https/http}://IP:port
  --threads       线程参数,默认线程4000
  --http-code     指定会记录的HTTP状态码,逗号分割,默认会记录200,301,302,403,404
  --path          指定请求访问的目录,逗号分割,慎用!
  --host          指定所有请求的头部HOSTS值,慎用!
  --timeout       设置超时时间,默认3秒钟,单位为秒!

命令很简单相信举几个例子你们都会用

example:	kscan -t www.baidu.com
#你可以直接输入域名
example:	kscan -t http://www.baidu.com/1.asp
#你也可以直接输入URL地址
example:	kscan -t 114.114.114.114
#你还可以直接输入IP地址
example:	kscan -t 114.114.114.114/24
#你当然也可以直接输入IP+掩码
example:	kscan -t file:/tmp/target.txt
#你亦可以从文件导入,你甚至文件里面还可以嵌套文件
#其他命令都是一些修饰命令,相信聪明的你们都会用啦~~~

四、演示

image-20210220162851992

五、特别感谢

六、文末

Github项目地址(BUG、需求、规则欢迎提交): https://github.com/lcvvvv/kscan

image-20210220164117920

image-20210220164117923

Comments
  • 1.53.1-1.60版本登录爆破模块存在BUG

    1.53.1-1.60版本登录爆破模块存在BUG

    1.53.1版本识别服务成功后没有调用爆破 image

    1.60.0版本识别服务调用爆破模块后没有爆破成功,手工测试登录成功(已知redis密码进行测试)

    更早版本未测试,fscan扫描redis口令成功

    使用命令 ./kscan_linux_amd64 -t XXXX -p 6379 -o result.txt --hydra --hydra-pass pass.txt
    ./kscan_linux_amd64 -t XXXX -p 6379 -o result.txt --hydra --hydra-pass pass.txt --hydra-mod redis

    opened by winezer0 7
  • 是越界了吗?

    是越界了吗?

    panic: runtime error: index out of range [10] with length 10

    goroutine 1 [running]: kscan/lib/chinese.isUtf8(0xc0052b7b40, 0xa, 0x10, 0xc0052b7b4a) /Users/kv2/Project/Gkscan/lib/chinese/chinese.go:83 +0xed kscan/lib/chinese.ByteToUTF8(0xc0052b7b40, 0xa, 0x10, 0xc0052b7b40, 0xa, 0x10) /Users/kv2/Project/Gkscan/lib/chinese/chinese.go:32 +0x61 kscan/lib/chinese.ToUTF8(...) /Users/kv2/Project/Gkscan/lib/chinese/chinese.go:63 kscan/lib/gonmap.(*AppBanner).Output(0xc003c492c0, 0xc0004cbd40, 0x1) /Users/kv2/Project/Gkscan/lib/gonmap/type-appbanner.go:176 +0xa8 kscan/run.(*kscan).Output(0xc008248b40) /Users/kv2/Project/Gkscan/run/type-kscan.go:215 +0x9a kscan/run.Start(0xc000192000, 0xff, 0x100, 0xce8998, 0x0, 0x0, 0xc4e800, 0x190, 0x462, 0x0, ...) /Users/kv2/Project/Gkscan/run/run.go:37 +0x1f0 main.main() /Users/kv2/Project/Gkscan/kscan.go:59 +0x8b

    opened by teamtopkarl 4
  • The filename, directory name, or volume label syntax is incorrect

    The filename, directory name, or volume label syntax is incorrect

    .\kscan_windows_amd64.exe -t https://www.test.com 无法运行,报错: Error:https://www.test.comopen https://www.test.com: The filename, directory name, or volume label syntax is incorrect.

    opened by flyballon 3
  • linux 遇到错误

    linux 遇到错误

    错误太多了,以这种为主

    goroutine 1594 [chan receive, 50 minutes]: kscan/lib/pool.(*Pool).work(0xc004e5def0) /Users/kv2/Project/Gkscan/lib/pool/pool.go:81 +0x94 created by kscan/lib/pool.(*Pool).Run /Users/kv2/Project/Gkscan/lib/pool/pool.go:110 +0x79

    goroutine 1595 [chan send]: kscan/lib/pool.(*Pool).work(0xc004e5df90) /Users/kv2/Project/Gkscan/lib/pool/pool.go:96 +0x265 created by kscan/lib/pool.(*Pool).Run /Users/kv2/Project/Gkscan/lib/pool/pool.go:110 +0x79

    中间伴随着少量这种错误

    goroutine 2938 [runnable]: internal/poll.runtime_pollWait(0x7fbf2b8c8ac0, 0x77, 0xc004ce8000) /Users/kv2/Project/go/go1.16.10/src/runtime/netpoll.go:227 +0x55 internal/poll.(*pollDesc).wait(0xc004923e98, 0x77, 0x103f600, 0xc0052285a0, 0xc004923e80) /Users/kv2/Project/go/go1.16.10/src/internal/poll/fd_poll_runtime.go:87 +0x45 internal/poll.(*pollDesc).waitWrite(...) /Users/kv2/Project/go/go1.16.10/src/internal/poll/fd_poll_runtime.go:96 internal/poll.(*FD).WaitWrite(...) /Users/kv2/Project/go/go1.16.10/src/internal/poll/fd_unix.go:528 net.(*netFD).connect(0xc004923e80, 0x103f6c8, 0xc0052285a0, 0x0, 0x0, 0x1033bc0, 0xc003616680, 0x0, 0x0, 0x0, ...) /Users/kv2/Project/go/go1.16.10/src/net/fd_unix.go:141 +0x27b net.(*netFD).dial(0xc004923e80, 0x103f6c8, 0xc0052285a0, 0x1042c50, 0x0, 0x1042c50, 0xc00a6f06c0, 0x0, 0x7fbf2aa48ed8, 0x10) /Users/kv2/Project/go/go1.16.10/src/net/sock_posix.go:149 +0x10b net.socket(0x103f6c8, 0xc0052285a0, 0xc39a52, 0x3, 0x2, 0x1, 0x0, 0x0, 0x1042c50, 0x0, ...) /Users/kv2/Project/go/go1.16.10/src/net/sock_posix.go:70 +0x1c5 net.internetSocket(0x103f6c8, 0xc0052285a0, 0xc39a52, 0x3, 0x1042c50, 0x0, 0x1042c50, 0xc00a6f06c0, 0x1, 0x0, ...) /Users/kv2/Project/go/go1.16.10/src/net/ipsock_posix.go:141 +0x145 net.(*sysDialer).doDialTCP(0xc004923b80, 0x103f6c8, 0xc0052285a0, 0x0, 0xc00a6f06c0, 0xb7b7e0, 0x18aaf98, 0x0) /Users/kv2/Project/go/go1.16.10/src/net/tcpsock_posix.go:65 +0xc5 net.(*sysDialer).dialTCP(0xc004923b80, 0x103f6c8, 0xc0052285a0, 0x0, 0xc00a6f06c0, 0x46bcc7, 0x4055fd, 0x60) /Users/kv2/Project/go/go1.16.10/src/net/tcpsock_posix.go:61 +0xd7 net.(*sysDialer).dialSingle(0xc004923b80, 0x103f6c8, 0xc0052285a0, 0x1038b40, 0xc00a6f06c0, 0x0, 0x0, 0x0, 0x0) /Users/kv2/Project/go/go1.16.10/src/net/dial.go:580 +0x5e8 net.(*sysDialer).dialSerial(0xc004923b80, 0x103f6c8, 0xc0052285a0, 0xc013ccd2a0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0) /Users/kv2/Project/go/go1.16.10/src/net/dial.go:548 +0x15e net.(*Dialer).DialContext(0xc009bffc90, 0x103f6c8, 0xc0052285a0, 0xc39a52, 0x3, 0xc00ae4ce70, 0x13, 0x0, 0x0, 0x0, ...) /Users/kv2/Project/go/go1.16.10/src/net/dial.go:425 +0x6e5 net.(*Dialer).Dial(...) /Users/kv2/Project/go/go1.16.10/src/net/dial.go:348 net.DialTimeout(0xc39a52, 0x3, 0xc00ae4ce70, 0x13, 0xb2d05e00, 0x40dbd2, 0x7fbf2af59f40, 0xc00ae4ce70, 0x18) /Users/kv2/Project/go/go1.16.10/src/net/dial.go:334 +0xba kscan/lib/gonmap/simplenet.Send(0xc39a52, 0x3, 0xc00ae4ce70, 0x13, 0x0, 0x0, 0xb2d05e00, 0x0, 0x0, 0x0, ...) /Users/kv2/Project/Gkscan/lib/gonmap/simplenet/simplenet.go:14 +0xaf kscan/lib/gonmap.PortScan(0xc39a52, 0x3, 0xc00ae4ce70, 0x13, 0xb2d05e00, 0xc00ae4ce70) /Users/kv2/Project/Gkscan/lib/gonmap/portscan.go:12 +0x71 kscan/run.(*kscan).PortDiscovery.func3(0xbde220, 0xc007c7d240, 0x124, 0x1) /Users/kv2/Project/Gkscan/run/type-kscan.go:225 +0x14f kscan/lib/pool.NewWorker.func1(0xbde220, 0xc007c7d240, 0x0, 0x0, 0x0, 0x0) /Users/kv2/Project/Gkscan/lib/pool/pool.go:28 +0x82 kscan/lib/pool.(*Worker).Run(...) /Users/kv2/Project/Gkscan/lib/pool/pool.go:36 kscan/lib/pool.(*Pool).work(0xc004e5df90) /Users/kv2/Project/Gkscan/lib/pool/pool.go:92 +0x185 created by kscan/lib/pool.(*Pool).Run /Users/kv2/Project/Gkscan/lib/pool/pool.go:110 +0x79

    bug 
    opened by badboycxcc 3
  • 结果输出json和爆破问题

    结果输出json和爆破问题

    1. 爆破成攻,结果不会输出到json文件里(-oJ),但是会输出至txt里(-o) image image image

    2. 如果是未授权不显示爆破成功,比如redis,是不是考虑给爆破加上未授权的检查 image image

    3. 爆破追加的字典是否和默认字典有做过去重呢

    另外还有个疑问,默认线程100,一般设置多大可以尽可能保持准确性

    谢谢大佬

    opened by TerickJojo 2
  • 当前线程过高,请降低线程!或者请执行

    当前线程过高,请降低线程!或者请执行"ulimit -n 50000"命令放开操作系统限制

    % kscan_darwin_amd64 -t 192.168.1.1/24 ~/Downloads wangyandeMacBook-Pro

     _   __
    |#| /#/    轻量级资产测绘工具 by:kv2	
    |#|/#/   _____  _____     *     _   _
    |#.#/   /Edge/ /Forum|   /#\   |#\ |#|
    |##|   |#|___  |#|      /###\  |##\|#|
    |#.#\   \#####\|#|     /#/_\#\ |#.#.#|
    |#|\#\ /\___|#||#|____/#/###\#\|#|\##|
    |#| \#\\#####/ \#####/#/ v1.74#\#| \#|
    

    Tips:可以使用--spy 10,将会进行10.0.0.1/8(A段)进行网关存活性探测

    [+]2022/05/05 10:58:00 当前环境为:darwin, 输出编码为:utf-8 [+]2022/05/05 10:58:00 成功读取URL地址:[0]个,成功读取主机地址:[256]个,待检测端口:[102400]个 [+]2022/05/05 10:58:00 成功加载NMAP探针:[149]个,指纹[11914]条,favicon指纹:[493]条,keyword指纹:[1327]条 [*]2022/05/05 10:58:00 未检测到qqwry.dat,将关闭CDN检测功能,如需开启,请执行kscan --download-qqwry下载该文件 当前线程过高,请降低线程!或者请执行"ulimit -n 50000"命令放开操作系统限制

    我执行了 sudo ulimit -n 50000
    Password: /usr/bin/ulimit: line 4: ulimit: open files: cannot modify limit: Invalid argument

    我的设备信息是: screenfetch ~/Downloads wang

                 -/+:.          [email protected]
                :++++.          OS: 64bit Mac OS X 10.13.6 17G14042
               /+++/.           Kernel: x86_64 Darwin 17.7.0
       .:-::- .+/:-``.::-       Uptime: 4d 14h 54m
    .:/++++++/::::/++++++/:`    Packages: 26
    

    .:///////////////////////:Shell: zsh 5.3 //////////////////////// Resolution: 1920x1080 -+++++++++++++++++++++++DE: Aqua /++++++++++++++++++++++/ WM: Quartz Compositor /sssssssssssssssssssssss. WM Theme: Blue :ssssssssssssssssssssssss- Disk: 63G / 251G (26%) osssssssssssssssssssssssso/ CPU: Intel Core i5-7267U @ 3.10GHz syyyyyyyyyyyyyyyyyyyyyyyy+ GPU: Intel Iris Plus Graphics 650 ossssssssssssssssssssss/ RAM: 4675MiB / 8192MiB :ooooooooooooooooooo+.:+oo+/:-..-:/+o+/-

    请问这个是bug 吗?还是我的设备性能不够?

    opened by kingxiaofire 2
  • 最新版变异报错

    最新版变异报错

    kscan/core/fofa

    core/fofa/fofa.go:19:27: cannot use slog.Debug() (type slog.Logger) as type *log.Logger in argument to fofa.SetLogger: need type assertion

    opened by murray-sky 2
  • redis服务识别失败

    redis服务识别失败

    使用程序获取banner信息时发现redis服务无法识别成功。调试发现是正则的问题

    [gonmap] 2022/08/16 14:40:40 type-probe.go:82: 开始匹配正则: service:redis 
    pattern: ^-ERR wrong number of arguments for 'get' command\r\n$ 
    response:-ERR wrong number of arguments for 'get' command
    -ERR unknown command 'User-Agent:'
    -ERR unknown command 'Accept:'
    

    把正则改为^-ERR wrong number of arguments for 'get' command\r\n就可以正常识别,不知道其他服务有没有类似的情况。 扫描的redis服务版本: 3.2.12

    bug 
    opened by u1timate06 2
  • -oJ output json incorrect 输出的json不是标准json

    -oJ output json incorrect 输出的json不是标准json

    [{"AppDigest":"SSH-2.0-Op","ApplicationComponent":"","DeviceType":"protocol 2.0","Hostname":"","IPAddr":"192.168.1.205","Info":"protocol 2.0","OperatingSystem":"","Port":"22","ProductName":"OpenSSH","Protocol":"ssh","Response":"SSH-2.0-OpenSSH_7.4\r\n","StatusCode":"200","URL":"ssh://192.168.1.205:22","Version":"7.4"},{"AppDigest":"J8.0.22+']","ApplicationComponent":"","DeviceType":"","Hostname":"","IPAddr":"192.168.1.205","Info":"","OperatingSystem":"","Port":"3306","ProductName":"MySQL","Protocol":"mysql","Response":"J\u0000\u0000\u0000\n8.0.22\u0000\ufffd+\u0000\u0000']d\u0026,N\u0012\u0017\u0000\ufffd\ufffd!\u0002\u0000\ufffd\ufffd\u0015\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000FAC\u0016X\u001aiWPC\u0017T\u0000caching_sha2_password\u0000!\u0000\u0000\u0001\ufffd\ufffd\u0004#08S01Got packets out of order","StatusCode":"200","URL":"mysql://192.168.1.205:3306","Version":"8.0.22"},{"AppDigest":"e"Y(DESCRI","ApplicationComponent":"","DeviceType":"unauthorized","Hostname":"","IPAddr":"192.168.1.205","Info":"unauthorized","OperatingSystem":"","Port":"1521","ProductName":"Oracle TNS Listener","Protocol":"oracle","Response":"\u0000e\u0000\u0000\u0004\u0000\u0000\u0000"\u0000\u0000Y(DESCRIPTION=(TMP=)(VSNNUM=186646784)(ERR=1189)(ERROR_STACK=(ERROR=(CODE=1189)(EMFI=4))))","StatusCode":"200","URL":"oracle://192.168.1.205:1521","Version":""},{"AppDigest":"HTTP状态404-未找到","ApplicationComponent":"","CertSubject":"","DeviceType":"","Hostname":"","IPAddr":"192.168.1.205","Info":"","OperatingSystem":"","Port":"80","ProductName":"","Protocol":"http","Response":"HTTP/1.1 404 \r\nContent-Type: text/html;charset=utf-8\r\nContent-Language: zh-CN\r\nContent-Length: 648\r\nDate: Fri, 29 Jul 2022 03:06:19 GMT\r\n\t\n\u003c!doctype html\u003e\u003chtml lang="zh"\u003e\u003chead\u003e\u003ctitle\u003eHTTP状态 404 - 未找到\u003c/title\u003e\u003cstyle type="text/css"\u003ebody {font-family:Tahoma,Arial,sans-serif;} h1, h2, h3, b {color:white;background-color:#525D76;} h1 {font-size:22px;} h2 {font-size:16px;} h3 {font-size:14px;} p {font-size:12px;} a {color:black;} .line {height:1px;background-color:#525D76;border:none;}\u003c/style\u003e\u003c/head\u003e\u003cbody\u003e\u003ch1\u003eHTTP状态 404 - 未找到\u003c/h1\u003e\u003chr class="line" /\u003e\u003cp\u003e\u003cb\u003e类型\u003c/b\u003e 状态报告\u003c/p\u003e\u003cp\u003e\u003cb\u003e描述\u003c/b\u003e 源服务器未能找到目标资源的表示或者是不愿公开一个已经存在的资源表示。\u003c/p\u003e\u003chr class="line" /\u003e\u003ch3\u003eApache Tomcat/9.0.41\u003c/h3\u003e\u003c/body\u003e\u003c/html\u003e","ResponseDigest":"TTP状态404-未找到HTTP状态40","StatusCode":"404","URL":"http://192.168.1.205","Version":""},{"AppDigest":"HTTP状态404-未找到","ApplicationComponent":"","CertSubject":"CN=toptoward.com","DeviceType":"","Hostname":"","IPAddr":"192.168.1.205","Info":"","OperatingSystem":"","Port":"443","ProductName":"","Protocol":"https","Response":"HTTP/1.1 404 \r\nDate: Fri, 29 Jul 2022 03:06:19 GMT\r\nContent-Type: text/html;charset=utf-8\r\nContent-Language: zh-CN\r\nContent-Length: 648\r\n\t\n\u003c!doctype html\u003e\u003chtml lang="zh"\u003e\u003chead\u003e\u003ctitle\u003eHTTP状态 404 - 未找到\u003c/title\u003e\u003cstyle type="text/css"\u003ebody {font-family:Tahoma,Arial,sans-serif;} h1, h2, h3, b {color:white;background-color:#525D76;} h1 {font-size:22px;} h2 {font-size:16px;} h3 {font-size:14px;} p {font-size:12px;} a {color:black;} .line {height:1px;background-color:#525D76;border:none;}\u003c/style\u003e\u003c/head\u003e\u003cbody\u003e\u003ch1\u003eHTTP状态 404 - 未找到\u003c/h1\u003e\u003chr class="line" /\u003e\u003cp\u003e\u003cb\u003e类型\u003c/b\u003e 状态报告\u003c/p\u003e\u003cp\u003e\u003cb\u003e描述\u003c/b\u003e 源服务器未能找到目标资源的表示或者是不愿公开一个已经存在的资源表示。\u003c/p\u003e\u003chr class="line" /\u003e\u003ch3\u003eApache Tomcat/9.0.41\u003c/h3\u003e\u003c/body\u003e\u003c/html\u003e","ResponseDigest":"类型状态报告描述源服务器未能找到目标资源","StatusCode":"404","URL":"https://192.168.1.205","Version":""},{"AppDigest":"SQLDB2RA)@","ApplicationComponent":"","DeviceType":"","Hostname":"","IPAddr":"192.168.1.205","Info":"","OperatingSystem":"","Port":"50000","ProductName":"IBM DB2 Database Server","Protocol":"db2","Response":"\u0000\ufffd\u0010\u0000\u0000\u0001\u0000\u0000SQLDB2RA\u0001\u0000\u0005\u0000\u0007\u0001\u0001)\ufffd\u000e\u0014\[email protected]\u0001\u0000\u0000\u0000SQLCA \ufffd\u0000\u0000\u0000H\ufffd\ufffd\ufffd\u0000\u0000 SQLJS1DA\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000\u0000 ","StatusCode":"200","URL":"db2://192.168.1.205:50000","Version":""},{"AppDigest":"SSL","ApplicationComponent":"","CertSubject":"","DeviceType":"","Hostname":"","IPAddr":"192.168.1.205","Info":"","OperatingSystem":"","Port":"9091","ProductName":"","Protocol":"ssl","Response":"\u0016\u0003\u0003\u0000Q\u0002\u0000\u0000M\u0003\u0003Y\ufffdo\ufffd\ufffd\ufffd6\ufffd\ufffd\ufffdH\u003e\ufffd\ufffd\ufffd\ufffd趍\ufffd\ufffd\u0005\ufffd-DOWNGRD\u0001 \ufffdT\ufffd\ufffd\ufffd_\ufffd\ufffdI\ufffd\ufffd\ufffdBː\ufffd\u0019{\ufffd6\ufffd\ufffdy\u0016\u0015\ufffd7\ufffdx\ufffdC-\u0000/\u0000\u0000\u0005\ufffd\u0001\u0000\u0001\u0000\u0016\u0003\u0003\nU\u000b\u0000\nQ\u0000\nN\u0000\u0005\ufffd0\ufffd\u0005\ufffd0\ufffd\u0004~\ufffd\u0003\u0002\u0001\u0002\u0002\u0010\u0007,ծF\u0013f\ufffd\ufffdI\ufffd\ufffd?\ufffd\ufffdk0\r\u0006\t*\ufffdH\ufffd\ufffd\r\u0001\u0001\u000b\u0005\u00000n1\u000b0\t\u0006\u0003U\u0004\u0006\u0013\u0002US1\u00150\u0013\u0006\u0003U\u0004\n\u0013\u000cDigiCert Inc1\u00190\u0017\u0006\u0003U\u0004\u000b\u0013\u0010www.digicert.com1-0+\u0006\u0003U\u0004\u0003\u0013$Encryption Everywhere DV TLS CA - G10\u001e\u0017\r201214000000Z\u0017\r211214235959Z0\u00181\u00160\u0014\u0006\u0003U\u0004\u0003\u0013\rtoptoward.com0\ufffd\u0001"0\r\u0006\t*\ufffdH\ufffd\ufffd\r\u0001\u0001\u0001\u0005\u0000\u0003\ufffd\u0001\u000f\u00000\ufffd\u0001\n\u0002\ufffd\u0001\u0001\u0000\ufffdB\ufffdb\ufffd\ufffd\u001e\ufffd\ufffd\u0008"3\ufffdgՆ\ufffd\ufffd\ufffd\ufffdq\ufffdI1\ufffd\ufffdA\u0011\ufffd$\ufffdǨu\ufffd\ufffd\u0003\ufffd\ufffdq\ufffd?ZNk\ufffd\ufffd\ufffd\ufffd5\ufffd}\ufffdx\ufffd\u003c\u0012\u0011\ufffd\u0005)\u0016b\ufffdB6T\ufffd\ufffd\ufffd\ufffdl\u0017l6(\ufffd!\u001f\ufffd\u001b\ufffd\ufffd\ufffdL\ufffd\ufffd\ufffd\u001e*\ufffd\ufffd\ufffdT\ufffd\ufffd\ufffd\u000e\ufffd\ufffd\ufffd\ufffd ܇\ufffd2V!\ufffdv\ufffdY}\ufffdθ\ufffd$?\ufffd'\ufffd\ufffd~\ufffd\u001e\ufffd\ufffd\ufffd\ufffd\u001a\ufffd\u0015\u0013\ufffd\ufffdFemr\ufffd\u001a®\ufffd\ufffd\ufffd\u0019\ufffd\ufffd\ufffd\u0012f\ufffd\ufffd\ufffd\ufffdk\u0019l\ufffd","ResponseDigest":"","StatusCode":"0","URL":"ssl://192.168.1.205:9091","Version":""}]"}]sCode":"0","URL":"ssl://192.168.1.205:9091","Version":""}]31d6cfe0","chunk-2582d9ae":"04e832d0","chunk-33b4c51c":"e2de6f67","chunk-9e10c2f6":"96fb68e0","chunk-bc55feac":"37c88888","chunk-3d79a1c5":"02aaa85a","chunk-3d88fcda":"263c6dd8","chunk-4a360574":"69076bde","chunk-51fd7f72":"9dafc52b","chunk-586335cc":"e6762c61","chunk-58f6103c":"fa53f996","chunk-5b686aa7":"767a5252","chunk-5cf81f04":"75737536","chunk-5ef711dc":"31d6cfe0","chunk-17ae3db7":"ae76d0c6","chunk-2f3a7746":"83e8fa5e","chunk-4b8f5c24":"fb3e4caa","chunk-70dceec1":"ed540a91","chunk-75f0f5f6":"89ad7f02","chunk-7adeb691":"31d6cfe0","chunk-9690b836":"87451dd3","chunk-9dea02c4":"c16476d2","chunk-a4682e64":"31d6cfe0","chunk-ac782f8c":"ad96a67f","chunk-b4763d10":"e1c415f2","chunk-cbdb156a":"31d6cfe0","chunk-410164e1":"f9b120b0","chunk-582e0af2":"bffc73cf","chunk-58fd425c":"c7ae8809","chunk-6620fe5f":"0f1ae035","chunk-ccaf6566":"b1ef8074","chunk-d38f169c":"b75e0fda","chunk-e5475b08":"28f89ee0","chunk-f111a69e":"9a278ae5"}[c]+".css",f=d.p+u,h=document.getElementsByTagName("link"),t=0;t\u003ch.length;t++){var r=h[t],k=r.getAttribute("data-href")||r.getAttribute("href");if("stylesheet"===r.rel\u0026\u0026(k===u||k===f))return e()}var o=document.getElementsByTagName("style");for(t=0;t\u003co.length;t++){r=o[t],k=r.getAttribute("data-href");if(k===u||k===f)return e()}var b=document.createElement("link");b.rel="stylesheet",b.type="text/css",b.onload=e,b.onerror=function(e){var u=e\u0026\u0026e.target\u0026\u0026e.target.src||f,h=new Error("Loading CSS chunk "+c+" failed.\n("+u+")");h.code="CSS_CHUNK_LOAD_FAILED",h.request=u,delete a[c],b.parentNode.removeChild(b),n(h)},b.href=f;var i=document.getElementsByTagName("head")[0];i.appendChild(b)})).then((function(){a[c]=0})));var u=f[c];if(0!==u)if(u)e.push(u[2]);else{var h=new Promise((function(e,n){u=f[c]=[e,n]}));e.push(u[2]=h);var r,k=document.createElement("script");k.charset="utf-8",k.timeout=120,d.nc\u0026\u0026k.setAttribute("nonce",d.nc),k.src=t(c),r=function(e){k.onerror=k.onload=null,clearTimeout(o);var n=f[c];if(0!==n){if(n){var u=e\u0026\u0026("load"===e.type?"missing":e.type),a=e\u0026\u0026e.target\u0026\u0026e.target.src,h=new Error("Loading chunk "+c+" failed.\n("+u+": "+a+")");h.type=u,h.request=a,n1}f[c]=void 0}};var o=setTimeout((function(){r({type:"timeout",target:k})}),12e4);k.onerror=k.onload=r,document.head.appendChild(k)}return Promise.all(e)},d.m=c,d.c=u,d.d=function(c,e,n){d.o(c,e)||Object.defineProperty(c,e,{enumerable:!0,get:n})},d.r=function(c){"undefined"!==typeof Symbol\u0026\u0026Symbol.toStringTag\u0026\u0026Object.defineProperty(c,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(c,"__esModule",{value:!0})},d.t=function(c,e){if(1\u0026e\u0026\u0026(c=d(c)),8\u0026e)return c;if(4\u0026e\u0026\u0026"object"===typeof c\u0026\u0026c\u0026\u0026c.__esModule)return c;var n=Object.create(null);if(d.r(n),Object.defineProperty(n,"default",{enumerable:!0,value:c}),2\u0026e\u0026\u0026"string"!=typeof c)for(var u in c)d.d(n,u,function(e){return c[e]}.bind(null,u));return n},d.n=function(c){var e=c\u0026\u0026c.__esModule?function(){return c["default"]}:function(){return c};return d.d(e,"a",e),e},d.o=function(c,e){return Object.prototype.hasOwnProperty.call(c,e)},d.p="/",d.oe=function(c){throw console.error(c),c};var r=window["webpackJsonp"]=window["webpackJsonp"]||[],k=r.push.bind(r);r.push=e,r=r.slice();for(var o=0;o\u003cr.length;o++)e(r[o]);var b=k;n()})([]);\u003c/script\u003e\u003cscript src=/static/js/app.4e6db06a.js\u003e\u003c/script\u003e\u003c/body\u003e\u003c/html\u003e","ResponseDigest":"utJavaScriptenabled.","StatusCode":"200","URL":"http://192.168.1.102","Version":"1.21.6"},{"AppDigest":"数据防泄漏系统","ApplicationComponent":"","CertSubject":"CN=dlptest.cn","DeviceType":"","Hostname":"","IPAddr":"192.168.1.102","Info":"","OperatingSystem":"","Port":"443","ProductName":"nginx","Protocol":"https","Response":"HTTP/1.1 200 OK\r\nEtag: "62ce7521-1c5d"\r\nAccept-Ranges: bytes\r\nServer: nginx/1.21.6\r\nDate: Fri, 29 Jul 2022 02:22:53 GMT\r\nContent-Type: text/html\r\nContent-Length: 7261\r\nLast-Modified: Wed, 13 Jul 2022 07:32:49 GMT\r\n\t\n\u003c!DOCTYPE html\u003e\u003chtml\u003e\u003chead\u003e\u003cmeta charset=utf-8\u003e\u003cmeta http-equiv=X-UA-Compatible content="IE=edge,chrome=1"\u003e\u003cmeta name=viewport content="width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no"\u003e\u003clink rel=icon href=/favicon.ico\u003e\u003ctitle\u003e数据防泄漏系统\u003c/title\u003e\u003clink href=/static/css/chunk-elementUI.dd50ba92.css rel=stylesheet\u003e\u003clink href=/static/css/chunk-libs.38e7a10a.css rel=stylesheet\u003e\u003clink href=/static/css/app.d4ac77f9.css rel=stylesheet\u003e\u003c/head\u003e\u003cbody\u003e\u003cnoscript\u003e\u003cstrong\u003eWe're sorry but 数据防泄漏系统 doesn't work properly without JavaScript enabled. Please enable it to continue.\u003c/strong\u003e\u003c/noscript\u003e\u003cdiv id=app\u003e\u003c/div\u003e\u003cscript src=/map/areas.js\u003e\u003c/script\u003e\u003cscript src=/map/mapcode.js\u003e\u003c/script\u003e\u003cscript src=/static/js/chunk-elementUI.b22c4281.js\u003e\u003c/script\u003e\u003cscript src=/static/js/chunk-libs.eed728b1.js\u003e\u003c/script\u003e\u003cscript\u003e(function(c){function e(e){for(var u,a,t=e[0],d=e[1],r=e[2],k=0,o=[];k\u003ct.length;k++)a=t[k],f[a]\u0026\u0026o.push(f[a][0]),f[a]=0;for(u in d)Object.prototype.hasOwnProperty.call(d,u)\u0026\u0026(c[u]=d[u]);b\u0026\u0026b(e);while(o.length)o.shift()();return h.push.apply(h,r||[]),n()}function n(){for(var c,e=0;e\u003ch.length;e++){for(var n=h[e],u=!0,a=1;a\u003cn.length;a++){var t=n[a];0!==f[t]\u0026\u0026(u=!1)}u\u0026\u0026(h.splice(e--,1),c=d(d.s=n[0]))}return c}var u={},a={runtime:0},f={runtime:0},h=[];function t(c){return d.p+"static/js/"+({}[c]||c)+"."+{"chunk-05aeca47":"0421e6f7","chunk-079dcc5e":"02ff2783","chunk-0f8481f0":"3d823985","chunk-131641e3":"6bcef170","chunk-1413e1d2":"64052834","chunk-16de96d2":"630c4f01","chunk-2974d436":"45ef140b","chunk-29868e8c":"00c296b4","chunk-2b64090c":"318732c5","chunk-2b6de145":"09ed490b","chunk-2dfbc658":"ca81acc0","chunk-3cc2e4c0":"8346cc2e","chunk-2582d9ae":"2d7d560e","chunk-33b4c51c":"4973e972","chunk-9e10c2f6":"25d884a4","chunk-bc55feac":"f8c1060f","chunk-3d79a1c5":"6c725604","chunk-3d88fcda":"9c72ce4d","chunk-4a360574":"4ac57bad","chunk-51fd7f72":"f2f9a4a3","chunk-586335cc":"67dc21d3","chunk-58f6103c":"253ac8ee","chunk-5b686aa7":"83527bea","chunk-5cf81f04":"8913e4df","chunk-5ef711dc":"7111b9a6","chunk-17ae3db7":"a51b8c65","chunk-2f3a7746":"bc9085a5","chunk-4b8f5c24":"eb559815","chunk-70dceec1":"f068f9f3","chunk-75f0f5f6":"3bc5d88d","chunk-7adeb691":"6fbb00b5","chunk-9690b836":"90d0d4cf","chunk-9dea02c4":"dfed30ca","chunk-a4682e64":"7e43a7cd","chunk-ac782f8c":"bbca980c","chunk-b4763d10":"b36eea48","chunk-cbdb156a":"2d81929e","chunk-410164e1":"2134b76a","chunk-582e0af2":"de8e93f0","chunk-58fd425c":"9088a3f7","chunk-6620fe5f":"fd4dba49","chunk-ccaf6566":"13f7101a","chunk-d38f169c":"b3c3ea8e","chunk-e5475b08":"27ae4313","chunk-f111a69e":"c8602311"}[c]+".js"}function d(e){if(u[e])return u[e].exports;var n=u[e]={i:e,l:!1,exports:{}};return c[e].call(n.exports,n,n.exports,d),n.l=!0,n.exports}d.e=function(c){var e=[],n={"chunk-05aeca47":1,"chunk-079dcc5e":1,"chunk-0f8481f0":1,"chunk-131641e3":1,"chunk-1413e1d2":1,"chunk-16de96d2":1,"chunk-2974d436":1,"chunk-29868e8c":1,"chunk-2b64090c":1,"chunk-2b6de145":1,"chunk-2dfbc658":1,"chunk-2582d9ae":1,"chunk-33b4c51c":1,"chunk-9e10c2f6":1,"chunk-bc55feac":1,"chunk-3d79a1c5":1,"chunk-3d88fcda":1,"chunk-4a360574":1,"chunk-51fd7f72":1,"chunk-586335cc":1,"chunk-58f6103c":1,"chunk-5b686aa7":1,"chunk-5cf81f04":1,"chunk-17ae3db7":1,"chunk-2f3a7746":1,"chunk-4b8f5c24":1,"chunk-70dceec1":1,"chunk-75f0f5f6":1,"chunk-9690b836":1,"chunk-9dea02c4":1,"chunk-ac782f8c":1,"chunk-b4763d10":1,"chunk-410164e1":1,"chunk-582e0af2":1,"chunk-58fd425c":1,"chunk-6620fe5f":1,"chunk-ccaf6566":1,"chunk-d38f169c":1,"chunk-e5475b08":1,"chunk-f111a69e":1};a[c]?e.push(a[c]):0!==a[c]\u0026\u0026n[c]\u0026\u0026e.push(a[c]=new Promise((function(e,n){for(var u="static/css/"+({}[c]||c)+"."+{"chunk-05aeca47":"7a9ce9cb","chunk-079dcc5e":"1c4cdf9e","chunk-0f8481f0":"17945ec0","chunk-131641e3":"4c918ea3","chunk-1413e1d2":"a5c58b11","chunk-16de96d2":"adbec18f","chunk-2974d436":"03f6334e","chunk-29868e8c":"1536c087","chunk-2b64090c":"ec0bb661","chunk-2b6de145":"9cff845a","chunk-2dfbc658":"7f7ac834","chunk-3cc2e4c0":"31d6cfe0","chunk-2582d9ae":"04e832d0","chunk-33b4c51c":"e2de6f67","chunk-9e10c2f6":"96fb68e0","chunk-bc55feac":"37c88888","chunk-3d79a1c5":"02aaa85a","chunk-3d88fcda":"263c6dd8","chunk-4a360574":"69076bde","chunk-51fd7f72":"9dafc52b","chunk-586335cc":"e6762c61","chunk-58f6103c":"fa53f996","chunk-5b686aa7":"767a5252","chunk-5cf81f04":"75737536","chunk-5ef711dc":"31d6cfe0","chunk-17ae3db7":"ae76d0c6","chunk-2f3a7746":"83e8fa5e","chunk-4b8f5c24":"fb3e4caa","chunk-70dceec1":"ed540a91","chunk-75f0f5f6":"89ad7f02","chunk-7adeb691":"31d6cfe0","chunk-9690b836":"87451dd3","chunk-9dea02c4":"c16476d2","chunk-a4682e64":"31d6cfe0","chunk-ac782f8c":"ad96a67f","chunk-b4763d10":"e1c415f2","chunk-cbdb156a":"31d6cfe0","chunk-410164e1":"f9b120b0","chunk-582e0af2":"bffc73cf","chunk-58fd425c":"c7ae8809","chunk-6620fe5f":"0f1ae035","chunk-ccaf6566":"b1ef8074","chunk-d38f169c":"b75e0fda","chunk-e5475b08":"28f89ee0","chunk-f111a69e":"9a278ae5"}[c]+".css",f=d.p+u,h=document.getElementsByTagName("link"),t=0;t\u003ch.length;t++){var r=h[t],k=r.getAttribute("data-href")||r.getAttribute("href");if("stylesheet"===r.rel\u0026\u0026(k===u||k===f))return e()}var o=document.getElementsByTagName("style");for(t=0;t\u003co.length;t++){r=o[t],k=r.getAttribute("data-href");if(k===u||k===f)return e()}var b=document.createElement("link");b.rel="stylesheet",b.type="text/css",b.onload=e,b.onerror=function(e){var u=e\u0026\u0026e.target\u0026\u0026e.target.src||f,h=new Error("Loading CSS chunk "+c+" failed.\n("+u+")");h.code="CSS_CHUNK_LOAD_FAILED",h.request=u,delete a[c],b.parentNode.removeChild(b),n(h)},b.href=f;var i=document.getElementsByTagName("head")[0];i.appendChild(b)})).then((function(){a[c]=0})));var u=f[c];if(0!==u)if(u)e.push(u[2]);else{var h=new Promise((function(e,n){u=f[c]=[e,n]}));e.push(u[2]=h);var r,k=document.createElement("script");k.charset="utf-8",k.timeout=120,d.nc\u0026\u0026k.setAttribute("nonce",d.nc),k.src=t(c),r=function(e){k.onerror=k.onload=null,clearTimeout(o);var n=f[c];if(0!==n){if(n){var u=e\u0026\u0026("load"===e.type?"missing":e.type),a=e\u0026\u0026e.target\u0026\u0026e.target.src,h=new Error("Loading chunk "+c+" failed.\n("+u+": "+a+")");h.type=u,h.request=a,n1}f[c]=void 0}};var o=setTimeout((function(){r({type:"timeout",target:k})}),12e4);k.onerror=k.onload=r,document.head.appendChild(k)}return Promise.all(e)},d.m=c,d.c=u,d.d=function(c,e,n){d.o(c,e)||Object.defineProperty(c,e,{enumerable:!0,get:n})},d.r=function(c){"undefined"!==typeof Symbol\u0026\u0026Symbol.toStringTag\u0026\u0026Object.defineProperty(c,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(c,"__esModule",{value:!0})},d.t=function(c,e){if(1\u0026e\u0026\u0026(c=d(c)),8\u0026e)return c;if(4\u0026e\u0026\u0026"object"===typeof c\u0026\u0026c\u0026\u0026c.__esModule)return c;var n=Object.create(null);if(d.r(n),Object.defineProperty(n,"default",{enumerable:!0,value:c}),2\u0026e\u0026\u0026"string"!=typeof c)for(var u in c)d.d(n,u,function(e){return c[e]}.bind(null,u));return n},d.n=function(c){var e=c\u0026\u0026c.__esModule?function(){return c["default"]}:function(){return c};return d.d(e,"a",e),e},d.o=function(c,e){return Object.prototype.hasOwnProperty.call(c,e)},d.p="/",d.oe=function(c){throw console.error(c),c};var r=window["webpackJsonp"]=window["webpackJsonp"]||[],k=r.push.bind(r);r.push=e,r=r.slice();for(var o=0;o\u003cr.length;o++)e(r[o]);var b=k;n()})([]);\u003c/script\u003e\u003cscript src=/static/js/app.4e6db06a.js\u003e\u003c/script\u003e\u003c/body\u003e\u003c/html\u003e","ResponseDigest":"ittocontinue.\u003c/stron","StatusCode":"200","URL":"https://192.168.1.102","Version":"1.21.6"},{"AppDigest":"403Forbidden","ApplicationComponent":"","CertSubject":"CN=toptoward.com","DeviceType":"","Hostname":"","IPAddr":"192.168.1.102","Info":"","OperatingSystem":"","Port":"8443","ProductName":"","Protocol":"https","Response":"HTTP/1.1 403 \r\nExpires: 0\r\nDate: Fri, 29 Jul 2022 02:22:53 GMT\r\nX-Content-Type-Options: nosniff\r\nX-Xss-Protection: 1; mode=block\r\nCache-Control: no-cache, no-store, max-age=0, must-revalidate\r\nContent-Length: 0\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=31536000 ; includeSubDomains\r\nX-Frame-Options: DENY\r\n\t\n","ResponseDigest":"","StatusCode":"403","URL":"https://192.168.1.102:8443","Version":""}]

    Error: 在第1行发生解析错误 : ...9091","Version":""}]"}]sCode":"0","URL":

    此处缺少'EOF', '}', ',', ']'字符, 实际上是一个 'STRING'

    opened by sindevil 1
  • new finger

    new finger

    Server: Symantec Endpoint Protection Manager

    Server: XDaemon v1.0

    Server:

    Server: SEPM

    Server: [email protected]

    Server: NSFOCUS

    Server: gSOAP/2.8

    opened by Scivous 0
Releases(v1.76)
Owner
null