admin/dddd
1
0
Fork 0
mirror of https://github.com/SleepingBag945/dddd.git synced 2025-06-08 14:06:33 +00:00
Code Issues Packages Projects Releases Wiki Activity
dddd/common/portscan.go
SleepingBag945 9a83a1b39f dddd v2.0
2024-04-03 06:32:26 +02:00

247 lines
5.6 KiB
Go
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

package common
import (
"bytes"
"dddd/ddout"
"dddd/lib/masscan"
"dddd/structs"
"dddd/utils"
"fmt"
"github.com/projectdiscovery/gologger"
"os"
"os/exec"
"strconv"
"strings"
"sync"
"time"
)
func ParsePort(ports string) (scanPorts []int) {
if ports == "" {
return
}
slices := strings.Split(ports, ",")
for _, port := range slices {
port = strings.TrimSpace(port)
if port == "" {
continue
}
upper := port
if strings.Contains(port, "-") {
ranges := strings.Split(port, "-")
if len(ranges) < 2 {
continue
}
startPort, _ := strconv.Atoi(ranges[0])
endPort, _ := strconv.Atoi(ranges[1])
if startPort < endPort {
port = ranges[0]
upper = ranges[1]
} else {
port = ranges[1]
upper = ranges[0]
}
}
start, _ := strconv.Atoi(port)
end, _ := strconv.Atoi(upper)
for i := start; i <= end; i++ {
scanPorts = append(scanPorts, i)
}
}
scanPorts = utils.RemoveDuplicateElementInt(scanPorts)
return scanPorts
}
func PortScanTCP(IPs []string, Ports string, timeout int) []string {
var AliveAddress []string
gologger.AuditTimeLogger("开始TCP端口扫描端口设置: %s\nTCP端口扫描目标:%s", Ports, strings.Join(IPs, ","))
probePorts := ParsePort(Ports)
workers := structs.GlobalConfig.TCPPortScanThreads
if workers > len(IPs)*len(probePorts) {
workers = len(IPs) * len(probePorts)
}
Addrs := make(chan Addr, len(IPs)*len(probePorts))
results := make(chan string, len(IPs)*len(probePorts))
var wg sync.WaitGroup
//接收结果
go func() {
for found := range results {
AliveAddress = append(AliveAddress, found)
wg.Done()
}
}()
//多线程扫描
for i := 0; i < workers; i++ {
go func() {
for addr := range Addrs {
PortConnect(addr, results, timeout, &wg)
wg.Done()
}
}()
}
//添加扫描目标
for _, port := range probePorts {
for _, host := range IPs {
wg.Add(1)
Addrs <- Addr{host, port}
}
}
wg.Wait()
close(Addrs)
close(results)
gologger.AuditTimeLogger("TCP端口扫描结束")
return AliveAddress
}
type Addr struct {
ip string
port int
}
var PortScan bool
func PortConnect(addr Addr, respondingHosts chan<- string, adjustedTimeout int, wg *sync.WaitGroup) {
host, port := addr.ip, addr.port
conn, err := WrapperTcpWithTimeout("tcp4", fmt.Sprintf("%s:%v", host, port), time.Duration(adjustedTimeout)*time.Second)
defer func() {
if conn != nil {
conn.Close()
}
}()
if err == nil {
address := host + ":" + strconv.Itoa(port)
if PortScan {
// gologger.Silent().Msgf("[PortScan] %v", address)
ddout.FormatOutput(ddout.OutputMessage{
Type: "PortScan",
IP: host,
Port: strconv.Itoa(port),
})
} else {
// gologger.Silent().Msgf("[TCP-Alive] %v", address)
ddout.FormatOutput(ddout.OutputMessage{
Type: "IPAlive",
IP: host,
AdditionalMsg: "TCP:" + strconv.Itoa(port),
})
}
wg.Add(1)
respondingHosts <- address
}
}
func PortScanSYN(IPs []string) []string {
ips := strings.Join(utils.RemoveDuplicateElement(IPs), "\n")
err := os.WriteFile("masscan_tmp.txt", []byte(ips), 0666)
if err != nil {
return []string{}
}
defer os.Remove("masscan_tmp.txt")
ms := masscan.New(structs.GlobalConfig.MasscanPath)
ms.SetFileName("masscan_tmp.txt")
ms.SetPorts("1-65535")
ms.SetRate(strconv.Itoa(structs.GlobalConfig.SYNPortScanThreads))
gologger.Info().Msgf("调用masscan进行SYN端口扫描")
err = ms.Run()
gologger.AuditTimeLogger("masscan扫描结束")
if err != nil {
return []string{}
}
hosts, errParse := ms.Parse()
if errParse != nil {
gologger.Error().Msgf("masscan结果解析失败")
return []string{}
}
var results []string
for _, each := range hosts {
for _, port := range each.Ports {
results = append(results, each.Address.Addr+":"+port.Portid)
}
}
results = utils.RemoveDuplicateElement(results)
for _, each := range results {
// gologger.Silent().Msg("[PortScan] " + each)
t := strings.Split(each, ":")
ddout.FormatOutput(ddout.OutputMessage{
Type: "PortScan",
IP: t[0],
Port: t[1],
})
}
return results
}
// CheckMasScan 校验MasScan是否正确安装
func CheckMasScan() bool {
var bsenv = ""
if OS != "windows" {
bsenv = "/bin/bash"
}
var command *exec.Cmd
if OS == "windows" {
command = exec.Command("cmd", "/c", structs.GlobalConfig.MasscanPath)
} else if OS == "linux" {
command = exec.Command(bsenv, "-c", structs.GlobalConfig.MasscanPath)
} else if OS == "darwin" {
command = exec.Command(bsenv, "-c", structs.GlobalConfig.MasscanPath)
}
outinfo := bytes.Buffer{}
command.Stdout = &outinfo
err := command.Start()
if err != nil {
gologger.Error().Msgf("未检测到路径 %v 存在masscan", structs.GlobalConfig.MasscanPath)
return false
}
_ = command.Wait()
// 未检测到masscan的默认banner
if !strings.Contains(outinfo.String(), "masscan -p80,8000-8100 10.0.0.0/8 --rate=10000") {
gologger.Error().Msgf("未检测到路径 %v 存在masscan", structs.GlobalConfig.MasscanPath)
return false
}
return true
}
func RemoveFirewall(ipPorts []string) []string {
var results []string
gologger.AuditTimeLogger("移除开放端口过多的目标")
m := make(map[string][]string)
for _, ipPort := range ipPorts {
t := strings.Split(ipPort, ":")
ip := t[0]
port := t[1]
_, ok := m[ip]
if !ok {
m[ip] = []string{port}
} else {
m[ip] = append(m[ip], port)
}
}
for ip, ports := range m {
ps := utils.RemoveDuplicateElement(ports)
if len(ps) >= structs.GlobalConfig.PortsThreshold {
gologger.Error().Msgf("%s 端口数量超出阈值,已丢弃", ip)
continue
}
for _, p := range ports {
results = append(results, ip+":"+p)
}
}
return utils.RemoveDuplicateElement(results)
}
Reference in New Issue View Git Blame Copy Permalink