pocsuite3.md at 53add38b2008312d3852421979319aa332aa0f5a

pocsuite3.md

176 lines | UTF-8 | 5 KB

Blame

pocsuite3 https://github.com/knownsec/pocsuite3

Legal Disclaimer

Usage of pocsuite3 for attacking targets without prior mutual consent is illegal. pocsuite3 is for security testing purposes only

法律免责声明

未经事先双方同意，使用 pocsuite3 攻击目标是非法的。 pocsuite3 仅用于安全测试目的

Overview

pocsuite3 is an open-sourced remote vulnerability testing and proof-of-concept development framework developed by the Knownsec 404 Team. It comes with a powerful proof-of-concept engine, many nice features for the ultimate penetration testers and security researchers.

Features

PoC scripts can running with verify, attack, shell mode in different way
Plugin ecosystem
Dynamic loading PoC script from any where (local file, redis, database, Seebug ...)
Load multi-target from any where (CIDR, local file, redis, database, Zoomeye, Shodan ...)
Results can be easily exported
Dynamic patch and hook requests
Both command line tool and python package import to use
IPV6 support
Global HTTP/HTTPS/SOCKS proxy support
Simple spider API for PoC script to use
Integrate with Seebug (for load PoC from Seebug website)
Integrate with ZoomEye (for load target from ZoomEye Dork)
Integrate with Shodan (for load target from Shodan Dork)
Integrate with Ceye (for verify blind DNS and HTTP request)
Integrate with Interactsh (for verify blind DNS and HTTP request)
Integrate with Fofa (for load target from Fofa Dork)
Friendly debug PoC scripts with IDEs
More ...

Screenshots

pocsuite3 console mode

pocsuite3 shell mode

pocsuite3 load PoC from Seebug

pocsuite3 load multi-target from ZoomEye

pocsuite3 load multi-target from Shodan

Requirements

Python 3.6+
Works on Linux, Windows, Mac OSX, BSD, etc.

Installation

Paste at a terminal prompt:

Python pip

pip3 install pocsuite3

# use other pypi mirror
pip3 install -i https://pypi.tuna.tsinghua.edu.cn/simple pocsuite3

MacOS

brew update
brew info pocsuite3
brew install pocsuite3

Debian, Ubuntu, Kali

sudo apt update
sudo apt install pocsuite3

ArchLinux

yay pocsuite3

Or click here to download the latest source zip package and extract

$ wget https://github.com/knownsec/pocsuite3/archive/master.zip
$ unzip master.zip
$ cd pocsuite3-master
$ pip3 install -r requirements.txt
$ python3 setup.py install

The latest version of this software is available at: https://pocsuite.org

Documentation

Documentation is available in the docs directory.

Usage

cli mode

	# basic usage, use -v to set the log level
	pocsuite -u http://example.com -r example.py -v 2

	# run poc with shell mode
	pocsuite -u http://example.com -r example.py -v 2 --shell

	# search for the target of redis service from ZoomEye and perform batch detection of vulnerabilities. The thread is set to 20
	pocsuite -r redis.py --dork service:redis --threads 20

	# load all poc in the poc directory and save the result as html
	pocsuite -u http://example.com --plugins poc_from_pocs,html_report

	# load the target from the file, and use the poc under the poc directory to scan
	pocsuite -f batch.txt --plugins poc_from_pocs,html_report

	# load CIDR target
	pocsuite -u 10.0.0.0/24 -r example.py --plugins target_from_cidr

	# the custom parameters `command` is implemented in ecshop poc, which can be set from command line options
	pocsuite -u http://example.com -r ecshop_rce.py --attack --command "whoami"

console mode
    poc-console