Bagaimana untuk menulis skrip pengesanan tanpa kebenaran python3 Redis-Redis-php.cn

Bagaimana untuk menulis skrip pengesanan tanpa kebenaran python3 Redis

WBOY

Lepaskan： 2023-05-29 23:55:04

ke hadapan

1561 orang telah melayarinya

import sys
import getopt
import socket


def get_target():

    opts, args = getopt.getopt(sys.argv[1:], &#39;-i:-p:-h&#39;)
    # print(opts)
    for opt_name, opt_value in opts:
        if opt_name == &#39;-h&#39;:
            print(&#39;[*]This is help information            [*]n&#39;
                  &#39;[*]-i + vulnerable-ip                  [*]n&#39;
                  &#39;[*]-p + vulnerable-port                [*]n&#39;
                  &#39;[*]Example:python3 -i 127.0.0.1 -p 6379[*]n&#39;)

        if opt_name in (&#39;-i&#39;, ):
            ip = opt_value

        if opt_name in (&#39;-p&#39;, ):
            port = opt_value

    return ip, port

def passwd_dict():
    passwd = [&#39;redis@123&#39;, &#39;Redis@123&#39;, &#39;Passw0rd&#39;, &#39;123456&#39;]
    return passwd

def main(ip, port, passwd):
    print("[*]Redis Unauthorized and Weak Password Detection  [*]n"
          "[*]By: Zh1z3ven                                    [*]n"
          "[*]Blog: https://www.cnblogs.com/Zh1z3ven/         [*]n")
    s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
    s.connect((ip, int(port)))
    send_data = &#39;INFOrn&#39;
    s.send(send_data.encode())
    res = s.recv(1024)
    response = bytes.decode(res)
    # print(response)
    if &#39;redis_version&#39; in response:
        result = &#39;[!]Vulnerable {0}:{1} 存在未授权访问  [!]&#39;.format(ip, port)
        print(result)
        return result

    elif &#39;NOAUTH&#39; in response:
        for item in passwd:
            s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
            s.connect((ip, int(port)))
            send_data = &#39;AUTH {0}rn&#39;.format(item)
            s.send(send_data.encode())
            res = s.recv(1024)
            response = bytes.decode(res)
            # print(response)

            if &#39;+OK&#39; in response:
                result = &#39;[!]Vulnerable: {0}:{1} 存在弱口令{2} [!]&#39;.format(ip, port, item)
                print(result)
                return result
            else:
                result = &#39;[*] 不存在未授权及弱口令 [*]&#39;
                print(result)
                return result


if __name__ == &#39;__main__&#39;:

    ip, port = get_target()
    passwd = passwd_dict()
    main(ip, port, passwd)

Salin selepas log masuk

Atas ialah kandungan terperinci Bagaimana untuk menulis skrip pengesanan tanpa kebenaran python3 Redis. Untuk maklumat lanjut, sila ikut artikel berkaitan lain di laman web China PHP!