Skip to content
This repository has been archived by the owner on Dec 28, 2023. It is now read-only.

Commit

Permalink
weblogic
Browse files Browse the repository at this point in the history
  • Loading branch information
@4ra1n
4ra1n committed May 19, 2023
1 parent 6e5f293 commit 0a888fb
Show file tree
Hide file tree
Showing 9 changed files with 106 additions and 44 deletions.
19 changes: 10 additions & 9 deletions CHANGELOG.MD
View file
Original file line number Diff line number Diff line change
Expand Up @@ -288,15 +288,16 @@ Others:
## 1.7

更新内容:
1. 在Windows中选择xray时设置EXE后缀,在文件较多时提高效率
2. 选择本地POC时,设置YML和YAML过滤,在文件较多时提高效率
3. 选择URL列表文件时设置TXT过滤,在文件较多时提高效率
4. 删除自带小游戏部分,这部分功能没有必要
5. 高级设置部分的代理应该添加提示避免被当成被动代理
6. 更新SnakeYAML和Log4j2依赖,虽然不存在漏洞还是更一下
7. 更新默认POC列表内容,新版本增加了一些POC
8. XRAY和RAD下载面板加入官方链接,镜像站不支持新版本了
9. 更新一些版本信息
1. 服务扫描模块加入了Weblogic IIOP扫描(参考README最下方)
2. 在Windows中选择xray时设置EXE后缀,在文件较多时提高效率
3. 选择本地POC时,设置YML和YAML过滤,在文件较多时提高效率
4. 选择URL列表文件时设置TXT过滤,在文件较多时提高效率
5. 删除自带小游戏部分,这部分功能没有必要
6. 高级设置部分的代理应该添加提示避免被当成被动代理
7. 更新SnakeYAML和Log4j2依赖,虽然不存在漏洞还是更一下
8. 更新默认POC列表内容,新版本增加了一些POC
9. XRAY和RAD下载面板加入官方链接,镜像站不支持新版本了
10. 更新一些版本信息

下载:
- super-xray-1.7.jar 版本通过`java -jar super-xray-1.7.jar`启动
Expand Down
4 changes: 2 additions & 2 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -92,9 +92,9 @@

## 服务扫描

目前只支持`Tomcat AJP`服务扫描
支持`Tomcat AJP`和一些`Weblogic IIOP`漏洞扫描

![](img/0012.png)
![](img/0016.png)

## 菜单

Expand Down
Binary file removed img/0012.png
View file
Binary file not shown.
Binary file removed img/0013.png
View file
Binary file not shown.
Binary file added img/0016.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
56 changes: 43 additions & 13 deletions src/main/java/com/chaitin/xray/form/AJPScanForm.form
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@
<grid id="27dc6" binding="ajpPanel" layout-manager="GridLayoutManager" row-count="1" column-count="1" same-size-horizontally="false" same-size-vertically="false" hgap="-1" vgap="-1">
<margin top="0" left="0" bottom="0" right="0"/>
<constraints>
<xy x="20" y="20" width="808" height="400"/>
<xy x="20" y="20" width="837" height="400"/>
</constraints>
<properties/>
<border type="none"/>
Expand Down Expand Up @@ -42,101 +42,131 @@
</component>
</children>
</scrollpane>
<grid id="33e15" binding="ajpConfigPanel" layout-manager="GridLayoutManager" row-count="2" column-count="6" same-size-horizontally="false" same-size-vertically="false" hgap="-1" vgap="-1">
<grid id="33e15" binding="ajpConfigPanel" layout-manager="GridLayoutManager" row-count="3" column-count="7" same-size-horizontally="false" same-size-vertically="false" hgap="-1" vgap="-1">
<margin top="0" left="0" bottom="0" right="0"/>
<constraints>
<grid row="0" column="0" row-span="1" col-span="1" vsize-policy="3" hsize-policy="3" anchor="0" fill="3" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<background color="-12828863"/>
</properties>
<border type="none" title="Tomcat AJP Service Scan"/>
<border type="none" title="AJP / IIOP Service Scan"/>
<children>
<component id="a7491" class="javax.swing.JLabel" binding="targetIPLabel">
<constraints>
<grid row="0" column="0" row-span="1" col-span="1" vsize-policy="0" hsize-policy="0" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
<grid row="1" column="0" row-span="1" col-span="1" vsize-policy="0" hsize-policy="0" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<text value="Target IP"/>
</properties>
</component>
<component id="4291c" class="javax.swing.JTextField" binding="targetIPText">
<constraints>
<grid row="0" column="1" row-span="1" col-span="1" vsize-policy="0" hsize-policy="6" anchor="8" fill="1" indent="0" use-parent-layout="false">
<grid row="1" column="1" row-span="1" col-span="2" vsize-policy="0" hsize-policy="6" anchor="8" fill="1" indent="0" use-parent-layout="false">
<preferred-size width="150" height="-1"/>
</grid>
</constraints>
<properties/>
</component>
<component id="28807" class="javax.swing.JLabel" binding="targetPortLabel">
<constraints>
<grid row="0" column="2" row-span="1" col-span="1" vsize-policy="0" hsize-policy="0" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
<grid row="1" column="3" row-span="1" col-span="1" vsize-policy="0" hsize-policy="0" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<text value="Target Port"/>
</properties>
</component>
<component id="49f84" class="javax.swing.JTextField" binding="portText">
<constraints>
<grid row="0" column="3" row-span="1" col-span="2" vsize-policy="0" hsize-policy="6" anchor="8" fill="1" indent="0" use-parent-layout="false">
<grid row="1" column="4" row-span="1" col-span="2" vsize-policy="0" hsize-policy="6" anchor="8" fill="1" indent="0" use-parent-layout="false">
<preferred-size width="150" height="-1"/>
</grid>
</constraints>
<properties/>
</component>
<component id="25a29" class="javax.swing.JLabel" binding="outputFileLabel">
<constraints>
<grid row="1" column="0" row-span="1" col-span="1" vsize-policy="0" hsize-policy="0" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
<grid row="2" column="0" row-span="1" col-span="1" vsize-policy="0" hsize-policy="0" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<text value="Output File"/>
</properties>
</component>
<component id="bf246" class="javax.swing.JTextField" binding="outFileText">
<constraints>
<grid row="1" column="1" row-span="1" col-span="1" vsize-policy="0" hsize-policy="6" anchor="8" fill="1" indent="0" use-parent-layout="false">
<grid row="2" column="1" row-span="1" col-span="2" vsize-policy="0" hsize-policy="6" anchor="8" fill="1" indent="0" use-parent-layout="false">
<preferred-size width="150" height="-1"/>
</grid>
</constraints>
<properties/>
</component>
<component id="74ace" class="javax.swing.JButton" binding="generateButton" default-binding="true">
<constraints>
<grid row="1" column="2" row-span="1" col-span="1" vsize-policy="0" hsize-policy="3" anchor="0" fill="1" indent="0" use-parent-layout="false"/>
<grid row="2" column="3" row-span="1" col-span="1" vsize-policy="0" hsize-policy="3" anchor="0" fill="1" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<text value="Generate"/>
</properties>
</component>
<component id="e422d" class="javax.swing.JButton" binding="openButton" default-binding="true">
<constraints>
<grid row="1" column="3" row-span="1" col-span="1" vsize-policy="0" hsize-policy="3" anchor="0" fill="1" indent="0" use-parent-layout="false"/>
<grid row="2" column="4" row-span="1" col-span="1" vsize-policy="0" hsize-policy="3" anchor="0" fill="1" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<text value="Open"/>
</properties>
</component>
<component id="e0caf" class="javax.swing.JButton" binding="startScanButton" default-binding="true">
<constraints>
<grid row="0" column="5" row-span="1" col-span="1" vsize-policy="0" hsize-policy="3" anchor="0" fill="1" indent="0" use-parent-layout="false"/>
<grid row="1" column="6" row-span="1" col-span="1" vsize-policy="0" hsize-policy="3" anchor="0" fill="1" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<text value="Start Scan"/>
</properties>
</component>
<component id="5bc8d" class="javax.swing.JCheckBox" binding="deleteCheckBox">
<constraints>
<grid row="1" column="4" row-span="1" col-span="2" vsize-policy="0" hsize-policy="3" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
<grid row="2" column="5" row-span="1" col-span="2" vsize-policy="0" hsize-policy="3" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<background color="-12828863"/>
<text value="delete when output"/>
</properties>
</component>
<component id="b58cb" class="javax.swing.JLabel" binding="payloadLabel">
<constraints>
<grid row="0" column="0" row-span="1" col-span="1" vsize-policy="0" hsize-policy="0" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<text value="Payload"/>
</properties>
</component>
<component id="55e1c" class="javax.swing.JRadioButton" binding="tomcatAJPPotentialRCERadioButton" default-binding="true">
<constraints>
<grid row="0" column="1" row-span="1" col-span="1" vsize-policy="0" hsize-policy="3" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<text value="Tomcat AJP Potential RCE (CVE-2020-1938)"/>
</properties>
</component>
<component id="4d513" class="javax.swing.JRadioButton" binding="weblogicRCECVE2023RadioButton" default-binding="true">
<constraints>
<grid row="0" column="2" row-span="1" col-span="5" vsize-policy="0" hsize-policy="3" anchor="8" fill="0" indent="0" use-parent-layout="false"/>
</constraints>
<properties>
<text value="Weblogic RCE (CVE-2023-21839/21931/21979)"/>
</properties>
</component>
</children>
</grid>
</children>
</grid>
</children>
</grid>
<buttonGroups>
<group name="payload">
<member id="55e1c"/>
<member id="4d513"/>
</group>
</buttonGroups>
</form>
Loading

0 comments on commit 0a888fb

Please sign in to comment.