Created
May 2, 2025 03:55
-
-
Save lbr77/50c57ed8d778a3a0bc4fbb57172d4c23 to your computer and use it in GitHub Desktop.
无间计划 博客
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [2025-05-02 11:10:15] [HOST] 目标:172.23.4.12 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:10:15] [HOST] 目标:172.23.4.32 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:10:15] [HOST] 目标:172.23.4.19 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:10:15] [HOST] 目标:172.23.4.51 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.32 状态:open 详情:port=80 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.19 状态:open 详情:port=80 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.51 状态:open 详情:port=139 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.12 状态:open 详情:port=139 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.51 状态:open 详情:port=135 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.12 状态:open 详情:port=135 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.51 状态:open 详情:port=445 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.12 状态:open 详情:port=445 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.19 状态:open 详情:port=22 | |
| [2025-05-02 11:10:19] [SERVICE] 目标:172.23.4.19 状态:identified 详情:version=8.2p1 Ubuntu 4ubuntu0.5, product=OpenSSH, os=Linux, info=Ubuntu Linux; protocol 2.0, banner=SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5., port=22, service=ssh | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.32 状态:open 详情:port=22 | |
| [2025-05-02 11:10:19] [SERVICE] 目标:172.23.4.32 状态:identified 详情:banner=SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5., port=22, service=ssh, version=8.2p1 Ubuntu 4ubuntu0.5, product=OpenSSH, os=Linux, info=Ubuntu Linux; protocol 2.0 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.51 状态:open 详情:port=1521 | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.32 状态:identified 详情:service=http, version=1.18.0, product=nginx, os=Linux, info=Ubuntu, port=80 | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.19 状态:identified 详情:service=http, version=1.18.0, product=nginx, os=Linux, info=Ubuntu, port=80 | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.51 状态:identified 详情:port=139, service=unknown, banner=. | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=139, service=unknown, banner=. | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.51 状态:identified 详情:port=445, service=unknown | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=445, service=unknown | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.51 状态:identified 详情:service=unknown, port=1521 | |
| [2025-05-02 11:11:24] [SERVICE] 目标:172.23.4.51 状态:identified 详情:service=unknown, port=135 | |
| [2025-05-02 11:44:39] [HOST] 目标:172.23.4.12 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:44:39] [HOST] 目标:172.23.4.19 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:44:39] [HOST] 目标:172.23.4.32 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:44:45] [PORT] 目标:172.23.4.19 状态:open 详情:port=80 | |
| [2025-05-02 11:44:45] [PORT] 目标:172.23.4.19 状态:open 详情:port=22 | |
| [2025-05-02 11:44:45] [SERVICE] 目标:172.23.4.19 状态:identified 详情:os=Linux, info=Ubuntu Linux; protocol 2.0, banner=SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5., port=22, service=ssh, version=8.2p1 Ubuntu 4ubuntu0.5, product=OpenSSH | |
| [2025-05-02 11:44:45] [PORT] 目标:172.23.4.12 状态:open 详情:port=139 | |
| [2025-05-02 11:44:45] [PORT] 目标:172.23.4.12 状态:open 详情:port=135 | |
| [2025-05-02 11:44:45] [PORT] 目标:172.23.4.12 状态:open 详情:port=445 | |
| [2025-05-02 11:44:46] [PORT] 目标:172.23.4.32 状态:open 详情:port=22 | |
| [2025-05-02 11:44:46] [SERVICE] 目标:172.23.4.32 状态:identified 详情:banner=SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5., port=22, service=ssh, version=8.2p1 Ubuntu 4ubuntu0.5, product=OpenSSH, os=Linux, info=Ubuntu Linux; protocol 2.0 | |
| [2025-05-02 11:44:46] [PORT] 目标:172.23.4.32 状态:open 详情:port=80 | |
| [2025-05-02 11:44:50] [SERVICE] 目标:172.23.4.19 状态:identified 详情:os=Linux, info=Ubuntu, port=80, service=http, version=1.18.0, product=nginx | |
| [2025-05-02 11:44:50] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=139, service=unknown, banner=. | |
| [2025-05-02 11:44:50] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=445, service=unknown | |
| [2025-05-02 11:44:51] [SERVICE] 目标:172.23.4.32 状态:identified 详情:info=Ubuntu, port=80, service=http, version=1.18.0, product=nginx, os=Linux | |
| [2025-05-02 11:45:50] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=135, service=unknown | |
| [2025-05-02 11:45:50] [SERVICE] 目标:172.23.4.12 状态:identified 详情:ipv6=[], hostname=IZMN9U6ZO3VTRNZ, ipv4=[172.23.4.12 172.24.7.16] | |
| [2025-05-02 11:45:50] [SERVICE] 目标:172.23.4.19 状态:identified 详情:fingerprints=[], port=80, service=http, title=Search UserInfo, url=http://172.23.4.19, status_code=200, length=481, server_info=map[content-type:text/html;charset=ISO-8859-1 date:Fri, 02 May 2025 03:45:50 GMT length:481 server:nginx/1.18.0 (Ubuntu) set-cookie:JSESSIONID=2C616C6FBD091F2B52B70B11E0007D5F; Path=/; HttpOnly status_code:200 title:Search UserInfo] | |
| [2025-05-02 11:45:50] [SERVICE] 目标:172.23.4.32 状态:identified 详情:url=http://172.23.4.32, status_code=200, length=19779, server_info=map[cache-control:no-store, no-cache, must-revalidate content-type:text/html; charset=utf-8 date:Fri, 02 May 2025 03:45:50 GMT expires:Thu, 19 Nov 1981 08:52:00 GMT length:19779 pragma:no-cache server:nginx/1.18.0 (Ubuntu) set-cookie:lg=cn; path=/; HttpOnly status_code:200 title:PbootCMS-永久开源免费的PHP企业网站开发建设管理系统 x-powered-by:PbootCMS x-ua-compatible:IE=edge,chrome=1], fingerprints=[], port=80, service=http, title=PbootCMS-永久开源免费的PHP企业网站开发建设管理系统 | |
| [2025-05-02 11:45:50] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=139, domain_name=PENTEST, workstation_service=IZMN9U6ZO3VTRNZ, server_service=IZMN9U6ZO3VTRNZ | |
| [2025-05-02 11:45:52] [VULN] 目标:http://172.23.4.32:80 状态:vulnerable 详情:vulnerability_type=poc-yaml-pbootcms-database-file-download, vulnerability_name=, author=abcRosexyz(https://github.com/abcRosexyz), references=[https://www.cnblogs.com/0daybug/p/12786036.html] | |
| [2025-05-02 11:45:52] [VULN] 目标:http://172.23.4.32:80 状态:vulnerable 详情:vulnerability_name=php, author=LoRexxar(https://lorexxar.cn),0h1in9e(https://www.ohlinge.cn), references=[https://www.seebug.org/vuldb/ssvid-98364], vulnerability_type=poc-yaml-phpstudy-nginx-wrong-resolve | |
| meterpreter > cat result.txt | |
| [2025-05-02 11:10:15] [HOST] 目标:172.23.4.12 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:10:15] [HOST] 目标:172.23.4.32 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:10:15] [HOST] 目标:172.23.4.19 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:10:15] [HOST] 目标:172.23.4.51 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.32 状态:open 详情:port=80 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.19 状态:open 详情:port=80 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.51 状态:open 详情:port=139 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.12 状态:open 详情:port=139 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.51 状态:open 详情:port=135 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.12 状态:open 详情:port=135 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.51 状态:open 详情:port=445 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.12 状态:open 详情:port=445 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.19 状态:open 详情:port=22 | |
| [2025-05-02 11:10:19] [SERVICE] 目标:172.23.4.19 状态:identified 详情:version=8.2p1 Ubuntu 4ubuntu0.5, product=OpenSSH, os=Linux, info=Ubuntu Linux; protocol 2.0, banner=SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5., port=22, service=ssh | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.32 状态:open 详情:port=22 | |
| [2025-05-02 11:10:19] [SERVICE] 目标:172.23.4.32 状态:identified 详情:banner=SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5., port=22, service=ssh, version=8.2p1 Ubuntu 4ubuntu0.5, product=OpenSSH, os=Linux, info=Ubuntu Linux; protocol 2.0 | |
| [2025-05-02 11:10:19] [PORT] 目标:172.23.4.51 状态:open 详情:port=1521 | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.32 状态:identified 详情:service=http, version=1.18.0, product=nginx, os=Linux, info=Ubuntu, port=80 | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.19 状态:identified 详情:service=http, version=1.18.0, product=nginx, os=Linux, info=Ubuntu, port=80 | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.51 状态:identified 详情:port=139, service=unknown, banner=. | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=139, service=unknown, banner=. | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.51 状态:identified 详情:port=445, service=unknown | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=445, service=unknown | |
| [2025-05-02 11:10:24] [SERVICE] 目标:172.23.4.51 状态:identified 详情:service=unknown, port=1521 | |
| [2025-05-02 11:11:24] [SERVICE] 目标:172.23.4.51 状态:identified 详情:service=unknown, port=135 | |
| [2025-05-02 11:44:39] [HOST] 目标:172.23.4.12 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:44:39] [HOST] 目标:172.23.4.19 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:44:39] [HOST] 目标:172.23.4.32 状态:alive 详情:protocol=ICMP | |
| [2025-05-02 11:44:45] [PORT] 目标:172.23.4.19 状态:open 详情:port=80 | |
| [2025-05-02 11:44:45] [PORT] 目标:172.23.4.19 状态:open 详情:port=22 | |
| [2025-05-02 11:44:45] [SERVICE] 目标:172.23.4.19 状态:identified 详情:os=Linux, info=Ubuntu Linux; protocol 2.0, banner=SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5., port=22, service=ssh, version=8.2p1 Ubuntu 4ubuntu0.5, product=OpenSSH | |
| [2025-05-02 11:44:45] [PORT] 目标:172.23.4.12 状态:open 详情:port=139 | |
| [2025-05-02 11:44:45] [PORT] 目标:172.23.4.12 状态:open 详情:port=135 | |
| [2025-05-02 11:44:45] [PORT] 目标:172.23.4.12 状态:open 详情:port=445 | |
| [2025-05-02 11:44:46] [PORT] 目标:172.23.4.32 状态:open 详情:port=22 | |
| [2025-05-02 11:44:46] [SERVICE] 目标:172.23.4.32 状态:identified 详情:banner=SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5., port=22, service=ssh, version=8.2p1 Ubuntu 4ubuntu0.5, product=OpenSSH, os=Linux, info=Ubuntu Linux; protocol 2.0 | |
| [2025-05-02 11:44:46] [PORT] 目标:172.23.4.32 状态:open 详情:port=80 | |
| [2025-05-02 11:44:50] [SERVICE] 目标:172.23.4.19 状态:identified 详情:os=Linux, info=Ubuntu, port=80, service=http, version=1.18.0, product=nginx | |
| [2025-05-02 11:44:50] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=139, service=unknown, banner=. | |
| [2025-05-02 11:44:50] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=445, service=unknown | |
| [2025-05-02 11:44:51] [SERVICE] 目标:172.23.4.32 状态:identified 详情:info=Ubuntu, port=80, service=http, version=1.18.0, product=nginx, os=Linux | |
| [2025-05-02 11:45:50] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=135, service=unknown | |
| [2025-05-02 11:45:50] [SERVICE] 目标:172.23.4.12 状态:identified 详情:ipv6=[], hostname=IZMN9U6ZO3VTRNZ, ipv4=[172.23.4.12 172.24.7.16] | |
| [2025-05-02 11:45:50] [SERVICE] 目标:172.23.4.19 状态:identified 详情:fingerprints=[], port=80, service=http, title=Search UserInfo, url=http://172.23.4.19, status_code=200, length=481, server_info=map[content-type:text/html;charset=ISO-8859-1 date:Fri, 02 May 2025 03:45:50 GMT length:481 server:nginx/1.18.0 (Ubuntu) set-cookie:JSESSIONID=2C616C6FBD091F2B52B70B11E0007D5F; Path=/; HttpOnly status_code:200 title:Search UserInfo] | |
| [2025-05-02 11:45:50] [SERVICE] 目标:172.23.4.32 状态:identified 详情:url=http://172.23.4.32, status_code=200, length=19779, server_info=map[cache-control:no-store, no-cache, must-revalidate content-type:text/html; charset=utf-8 date:Fri, 02 May 2025 03:45:50 GMT expires:Thu, 19 Nov 1981 08:52:00 GMT length:19779 pragma:no-cache server:nginx/1.18.0 (Ubuntu) set-cookie:lg=cn; path=/; HttpOnly status_code:200 title:PbootCMS-永久开源免费的PHP企业网站开发建设管理系统 x-powered-by:PbootCMS x-ua-compatible:IE=edge,chrome=1], fingerprints=[], port=80, service=http, title=PbootCMS-永久开源免费的PHP企业网站开发建设管理系统 | |
| [2025-05-02 11:45:50] [SERVICE] 目标:172.23.4.12 状态:identified 详情:port=139, domain_name=PENTEST, workstation_service=IZMN9U6ZO3VTRNZ, server_service=IZMN9U6ZO3VTRNZ | |
| [2025-05-02 11:45:52] [VULN] 目标:http://172.23.4.32:80 状态:vulnerable 详情:vulnerability_type=poc-yaml-pbootcms-database-file-download, vulnerability_name=, author=abcRosexyz(https://github.com/abcRosexyz), references=[https://www.cnblogs.com/0daybug/p/12786036.html] | |
| [2025-05-02 11:45:52] [VULN] 目标:http://172.23.4.32:80 状态:vulnerable 详情:vulnerability_name=php, author=LoRexxar(https://lorexxar.cn),0h1in9e(https://www.ohlinge.cn), references=[https://www.seebug.org/vuldb/ssvid-98364], vulnerability_type=poc-yaml-phpstudy-nginx-wrong-resolve |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment