How to use the pocsuite3.api.register_poc function in pocsuite3
To help you get started, we’ve selected a few pocsuite3 examples, based on popular ways it is used in public projects.
Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.
knownsec / pocsuite3 / pocsuite3 / pocs / telnet_burst.py View on Github 
task_queue.queue.clear()
result_queue.put((username, password))
def telnet_burst(host, port):
if not port_check(host, port):
return
try:
task_init(host, port)
run_threads(1, task_thread)
except Exception:
pass
register_poc(DemoPOC)return
if anonymous_login(host, port):
logger.info('try burst {}:{} use username:{} password:{}'.format(
host, port, 'anonymous', ''))
result_queue.put(('anonymous', ''))
return
try:
task_init(host, port)
run_threads(4, task_thread)
except Exception:
pass
register_poc(DemoPOC)#漏洞攻击
def _attack(self):
return self._verify()
def save_output(self, result):
#判断有无结果并输出
output = Output(self)
if result:
output.success(result)
else:
output.fail()
return output
register_poc(NFS_POC)def _attack(self):
return self._verify()
# 输出报告
def save_output(self, result):
output = Output(self)
if result:
output.success(result)
else:
output.fail()
return output
# 注册类
register_poc(Jira_RCE_POC) # CVE-2019-11581
register_poc(Jira_SSRF_POC) # CVE-2019-8451return False
# 攻击模块
def _attack(self):
return self._verify()
# 输出报告
def save_output(self, result):
output = Output(self)
if result:
output.success(result)
else:
output.fail()
return output
register_poc(Nexus3_2020_10204_EL_INJECTION_POC)# 攻击模块
def _attack(self):
return self._verify()
# 输出报告
def save_output(self, result):
output = Output(self)
if result:
output.success(result)
else:
output.fail()
return output
register_poc(Nexus3_2018_16621_EL_INJECTION_POC)def gen_key(self, key):
newkey = []
for ki in range(len(key)):
print(key[ki])
print(str(key[ki]))
bsrc = ord(str(key[ki]))
btgt = 0
for i in range(8):
if bsrc & (1 << i):
btgt = btgt | (1 << 7-i)
newkey.append(btgt)
return ''.join(chr(c) for c in newkey)
register_poc(VNC_POC)elif option == '3.x':
payloads = [(ec3payload, '3.x')]
# payloads = [ec2payload, ec3payload]
for payload in payloads:
headers = {'Referer': payload[0]}
resp = requests.get(url, headers=headers)
r = get_middle_text(resp.text, '''<input value="''', " name="back_act" type="hidden">")
if r:
return r
r = get_middle_text(resp.text, '''try:
requests.get(veri_url1)
requests.post(veri_url2, data=data, headers=headers)
except Exception as e:
logger.warn(str(e))
def parse_verify(self, result):
output = Output(self)
if result:
output.success(result)
else:
output.fail('target is not vulnerable')
return output
register_poc(DemoPOC)logger.error(str(ex))
return self.parse_output(result)
def parse_output(self, result):
output = Output(self)
if result:
output.success(result)
else:
output.fail('target is not vulnerable')
return output
_attack = _verify
register_poc(DemoPOC)pocsuite3
Open-sourced remote vulnerability testing framework.
Package Health Score
62 / 100Popular pocsuite3 functions
- pocsuite3.api.logger
- pocsuite3.api.logger.info
- pocsuite3.api.Output
- pocsuite3.api.POC_CATEGORY
- pocsuite3.api.POCBase
- pocsuite3.api.register_poc
- pocsuite3.api.requests
- pocsuite3.api.requests.get
- pocsuite3.api.requests.post
- pocsuite3.api.VUL_TYPE
- pocsuite3.lib.core.common.data_to_stdout
- pocsuite3.lib.core.data.conf
- pocsuite3.lib.core.data.kb
- pocsuite3.lib.core.data.logger
- pocsuite3.lib.core.data.logger.debug
- pocsuite3.lib.core.data.logger.error
- pocsuite3.lib.core.data.logger.info
- pocsuite3.lib.core.data.paths
- pocsuite3.lib.core.datatype.AttribDict
- pocsuite3.lib.request.requests.get