Coder Social home page Coder Social logo

sixteen250 / oascanner Goto Github PK

View Code? Open in Web Editor NEW

This project forked from yyming-sudo/oascanner

0.0 0.0 0.0 104 KB

OAscanner是一款综合性的OA扫描利用工具,所有的漏洞都来自互联网曝光的漏洞,采用了python3的Gui界面对新手更友好!

Python 99.97% Java 0.03%

oascanner's Introduction

OAscanner

OAscanner是一款综合性的OA扫描利用工具,所有的漏洞都来自互联网曝光的漏洞,采用了python3的Gui界面对新手更友好! OA综合扫描利用工具1.3

作者很穷,release只能编译windwos版本

优化了代码结构

采用面向对象优化代码整洁度

修复回显错误的bug

目录收录漏洞信息:

泛微#WorkflowServiceXml命令执行漏洞

泛微uploadOperation.jsp文件上传

泛微OA8 js/hrm注入

泛微Bsh 远程代码执行漏洞

泛微V9 logo-eoffice.php文件上传

致远ajax.do上传漏洞

致远setextno.jsp注入漏洞

致远test.jsp注入漏洞

致远session泄露漏洞

致远远程命令执行漏洞

致远数据库信息泄露

致远initDataAssess.jsp 用户敏感信息泄露

致远datasourceCtp.properties配置文件下载

用友FileReceiveServlet文件上传

用友test.jsp注入漏洞

用友BshServlet 远程命令执行

用友UFIDA目录遍历漏洞

用友GRP-U8 SQL注入漏洞

用友NC 信息泄露漏洞

蓝凌文件读取漏洞

使用截图:

image image

目前收录的历史漏洞较少,但是这个项目回经常维护。欢迎各位联系作者修复bug!

tips:目前开源工具里含有的所有漏洞均来源于互联网公开的漏洞,不放置任何0day信息。

声明:

使用此项目时请遵守国家相关法律规定,由于传播或利用此工具造成的危害由使用者本人承担,作者不承担任何责任!切勿用于非法、未授权的渗透测试。

oascanner's People

Contributors

lnsmile avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.