GitHub - emo-crab/observer_ward: Zhen Cha Shou Wei (observer_ward)WebYing Yong He Fu Wu Zhi Wen Shi Bie Gong Ju (Zhi Qian Wu Shan Chu Liao Cang Ku ) * GitHub

Name	Name	Last commit message	Last commit date
Latest commit History 1,077 Commits
.cargo	.cargo
.github	.github
bindings/python	bindings/python
dev-script/hooks	dev-script/hooks
engine	engine
images	images
observer_ward	observer_ward
src	src
tests	tests
.clippy.toml	.clippy.toml
.editorconfig	.editorconfig
.gitignore	.gitignore
.pre-commit-config.yaml	.pre-commit-config.yaml
.rustfmt.toml	.rustfmt.toml
CHANGELOG.md	CHANGELOG.md
Cargo.lock	Cargo.lock
Cargo.toml	Cargo.toml
Dockerfile	Dockerfile
FAQ.md	FAQ.md
LICENSE	LICENSE
README.md	README.md
dprint.json	dprint.json
prompt.txt	prompt.txt
rust-toolchain.toml	rust-toolchain.toml

observer_ward(Zhen Cha Shou Wei )

Fu Wu He WebYing Yong Zhi Wen Shi Bie Gong Ju
View Demo * Report Bug * Request Feature

Guan Yu Zhe Ge Xiang Mu

Zheng Zhong Sheng Ming :Wen Zhong Suo She Ji De Ji Zhu , Si Lu He Gong Ju Jin Gong Yi An Quan Wei Mu De De Xue Xi Jiao Liu Shi Yong ,Ren He Ren Bu De Jiang Qi Yong Yu Fei Fa Yong Tu Yi Ji Ying Li Deng Mu De ,Fou Ze Hou Guo Zi Xing Cheng Dan .

Lei Bie	Shuo Ming
Zuo Zhe	San Mi Qian You Jiao Pi
Tuan Dui	0x727 Wei Lai Yi Duan Shi Jian Jiang Lu Xu Kai Yuan Gong Ju
Ding Wei	She Qu Hua Zhi Wen Ku Shi Bie Gong Ju .
Yu Yan	Rust
Gong Neng	Fu Wu He WebYing Yong Zhi Wen Shi Bie Gong Ju

Ji Yu yamlBian Xie Tan Zhen ,Pi Pei Gui Ze He Ti Qu Qi
Zhi Chi Fu Wu He WebYing Yong Ban Ben Shi Bie
Shi Yong nvdBiao Zhun Tong Yong Ping Tai Mei Ju (CPE) Ming Ming Gui Fan
She Qu Hua Zhi Wen Ku He nmapFu Wu Tan Zhen
Ji Cheng Nuclei Yan Zheng Lou Dong

(back to top)

An Zhuang

Yuan Ma An Zhuang

Cong Yuan Ma Bian Yi An Zhuang ,Geng Duo Ke Yi Cha Kan githubDe actionGong Zuo Liu Wen Jian workflow

cargo build --release --manifest-path=observer_ward/Cargo.toml

Er Jin Zhi An Zhuang

Cong Fa Bu Ye Mian Xia Zai release
Ru Guo Shi MacXi Tong Ke Yi Tong Guo brewAn Zhuang

Shi Yong MacXi Tong brewAn Zhuang

brew install observer_ward

DockerJing Xiang

dockerJing Xiang ,observer_wardZhi You Zhi Wen Shi Bie Gong Neng

docker run --rm -it kaliteam/observer_ward -t http://172.17.0.2 [INFO ] probes loaded: 2223 [INFO ] optimized probes: 7 [INFO ] target loaded: 1 |_uri:[ http://172.17.0.2/ [apache-http] <> (200 OK) ] |_uri:[ http://172.17.0.2/ [thinkphp] <> (200 OK) ]

kaliteam/observer_ward:nucleiShi Nei Zhi nuclei,Zai Mo Ren Pei Zhi Wen Jian Jia You pluginsMu Lu ,Dan Shi Geng Xin Shi Jian Bu Hui Zui Xin Liao ,Shi Gou Jian dockerShi De Ban Ben

docker run --rm -it kaliteam/observer_ward:nuclei -t http://172.17.0.2 --plugin default [INFO ] probes loaded: 2223 [INFO ] optimized probes: 7 [INFO ] target loaded: 1 |_uri:[ http://172.17.0.2/ [apache-http] <> (200 OK) ] |_uri:[ http://172.17.0.2/ [thinkphp] <> (200 OK) ] |_exploitable: [Critical] thinkphp-5023-rce: ThinkPHP 5.0.23 - Remote Code Execution |_matched_at: http://172.17.0.2/index.php?s=captcha |_shell: curl -X 'POST' -d '_method=__construct&filter[]=phpinfo&method=get&server[REQUEST_METHOD]=1' -H 'Accept: */*' -H 'Accept-Language: en' -H 'Content-Type: application/x-www-form-urlencoded' -H 'User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2.1 Safari/605.3.23' 'http://172.17.0.2/index.php?s=captcha'

Ru Men

~ ./observer_ward -u ~ ./observer_ward -t http://httpbin.org/ [INFO ] probes loaded: 6183 [INFO ] target loaded: 1 [INFO ] optimized probes: 8 :[ http://httpbin.org/ [0example,swagger] <httpbin.org> (200 OK) ]

Shi Yong Bang Zhu

./observer_ward --help Usage: observer_ward [-l <list>] [-t <target...>] [-p <probe-path>] [--probe-dir <probe-dir...>] [--ua <ua>] [--mode <mode>] [--timeout <timeout>] [--thread <thread>] [--proxy <proxy>] [--ir] [--ic] [--plugin <plugin>] [-o <output>] [--format <format>] [--no-color] [--nuclei-args <nuclei-args...>] [--silent] [--debug] [--config-dir <config-dir>] [--update-self] [-u] [--update-plugin] [--daemon] [--token <token>] [--webhook <webhook>] [--webhook-auth <webhook-auth>] [--api-server <api-server>] [--mitm <mitm>] [--mcp] [--prompt-path <prompt-path>] [--asynq-redis <asynq-redis>] [--asynq-mode <asynq-mode>] observer_ward Options: -l, --list multiple targets from file path -t, --target the target (required) -p, --probe-path customized fingerprint file path --probe-dir customized fingerprint yaml file dir --ua customized ua --mode mode probes option[tcp,http,all] default: all --timeout set request timeout. --thread number of concurrent threads. --proxy proxy to use for requests (ex:[http(s)|socks5(h)]://host:port) --ir include request/response pairs in output --ic include certificate pairs in output --plugin customized template dir -o, --output export to the file --format output format option[json,csv,txt] default: txt --no-color disable output content coloring --nuclei-args poc nuclei engine additional args --silent silent mode --debug debug mode --config-dir customized template dir --update-self update self -u, --update-fingerprint update fingerprint --update-plugin update plugin --daemon api background service --token api Bearer authentication --webhook send results to webhook server (ex:https://host:port/webhook) --webhook-auth the auth will be set to the webhook request header AUTHORIZATION --api-server start a web API service (ex:127.0.0.1:8080) --mitm start a MITM proxy server (ex:127.0.0.1:1080) --mcp enable stdio mcp server --prompt-path read the path file and customize the LLM to generate prompt --asynq-redis redis URI for asynq task queue (ex:redis://127.0.0.1:6379) --asynq-mode asynq mode option[receive,send,both] default: receive --help, help display usage information

Can Shu Ming	Zuo Yong He Miao Shu
-l,--list	Cong Wen Jian Zhong Du Qu Mu Biao Lie Biao ,Yi Xing Yi Ge Mu Biao
-t,--target	Dan Ge Huo Zhe Duo Ge Mu Biao
-p,--probe	jsonTan Zhen Lu Jing (Ru Guo He `--probe-dir`Yi Qi Shi Yong ,Gai Can Shu Wei Zhuan Huan jsonHou De Shu Chu Wen Jian Lu Jing )
--probe-dir	yamlTan Zhen Mu Lu (Ru Guo He `--probe`Yi Qi Shi Yong ,Hui Du Qu Gai Mu Lu Xia De Quan Bu yamlWen Jian Zhuan Huan Wei Yi Ge jsonWen Jian )
--ua	She Zhi Qing Qiu Tou
--mode	Shi Bie Mo Shi :[tcp,http,all],Mo Ren http,Ye Jiu Shi Dang Mu Biao Mei You Xie Yi De Shi Hou Hui Chang Shi Tian Jia webXie Yi Zai Qu Shi Bie
--timeout	Qing Qiu He Lian Jie Chao Shi ,Dan Wei Wei Miao
--thread	Tong Shi Shi Bie De Xian Cheng Shu ,Mo Ren Wei cpuDe He Shu
--proxy	She Zhi Dai Li Fu Wu Qi ,Zhi Chi httpHe socks5,Li Ru :`https://username:password@your-proxy.com:port`
--ir	Zai jsonJie Guo Zhong Bao Cun Qing Qiu He Xiang Ying ,Bao Cun Qing Qiu Xiang Ying Ke Neng Bi Jiao Xiao Hao Nei Cun
--ic	Zai jsonJie Guo Zhong Bao Cun Zheng Shu Shu Ju
--plugin	Zhi Ding nucleiCha Jian Lu Jing ,Hui Kai Qi nucleiYan Zheng Lou Dong ,Ru Guo Lu Jing Wei `default`Mo Ren Diao Yong Pei Zhi Wen Jian Jia Xia De `plugins`Mu Lu
-o,--output	Jiang Jie Guo Bao Cun Dao Wen Jian ,Ru Guo Wen Jian Hou Zhui Ming Shi Xia Mian Ge Shi Zhi Chi De Ke Yi Sheng Lue `--format`Can Shu
--format	Shu Chu Ge Shi :Zhi Chi `json`,`csv`He `txt`,Zai Bao Cun Wen Jian De Shi Hou Hui Gen Ju Wen Jian Hou Zhui Zi Dong Shi Bie
--no-color	Jin Yong Yan Se Shu Chu
--nuclei-args	nucleiDe E Wai Can Shu ,Hui An Zhao Kong Ge Fen Ge Zhui Jia Dao Diao Yong nucleiCan Shu ,Li Ru :`-es info`,Pai Chu infoCha Jian ,Zhi Chi Duo Ge
--silent	Jing Mo Mo Shi ,Bu Da Yin Ren He Xin Xi ,Chang Yong Zai Ming Ling Xing Guan Dao Zuo Wei Shu Ru Yuan
--debug	Kai Qi Diao Shi Mo Shi ,Hui Shu Chu Geng Duo Xin Xi ,Bao Gua Qing Qiu He Xiang Ying ,Ti Qu Dao De Tu Biao Ha Xi ,nucleiDiao Yong Ming Ling Xing Deng Xin Xi
--config-dir	Zhi Ding Pei Zhi Wen Jian Jia ,Mo Ren Zai Yong Hu Pei Zhi Wen Jian Jia Xia De `observer_ward`Mu Lu
--update-self	Geng Xin Cheng Xu Zi Shen Ban Ben ,Ye Jiu Shi Gai Xiang Mu De `defaultv4`Fa Bu Biao Qian
-u,--update-fingerprint	Geng Xin Zhi Wen Dao Pei Zhi Wen Jian Jia ,Hui Fu Gai `web_fingerprint_v4.json`Wen Jian
--update-plugin	Geng Xin She Qu nucleiCha Jian Dao Pei Zhi Wen Jian Jia ,Hui Zi Dong Jie Ya zipBing Qie Fu Gai `plugins`Mu Lu
--daemon	apiFu Wu Hou Tai Yun Xing ,windowBu Zhi Chi
--token	apiFu Wu Ren Zheng token
--webhook	Yao Jiang Shi Bie Jie Guo Tong Guo webhookFa Song Dao Zhi Ding url
--webhook-auth	webhookDe `AUTHORIZATION`Ren Zheng
--api-server	apiJian Ting Di Zhi De Duan Kou
--mitm	Qi Dong MITM Dai Li Fu Wu Qi (Shi Li :127.0.0.1:1080)
--mcp	Qi Yong stdio mcp Fu Wu
--prompt-path	Du Qu Lu Jing Wen Jian Bing Zi Ding Yi LLM Yong Yu Sheng Cheng prompt
--asynq-redis	asynq Ren Wu Dui Lie De Redis URI(Shi Li :redis://127.0.0.1:6379)
--asynq-mode	asynq Mo Shi Xuan Xiang [receive,send,both],Mo Ren :receive
--help	Da Yin Bang Zhu Xin Xi

Geng Xin Zhi Wen Ku

Cong githubXia Zai Zhi Wen Ku ,Mo Ren Zhi Geng Xin webZhi Wen ,Ru Guo Xu Yao Jia Zai Fu Wu Zhi Wen Xu Yao Zi Xing Xia Zai service_fingerprint_v4.json Dao Pei Zhi Wen Jian Jia .
Mo Ren Bu Geng Xin Fu Wu Zhi Wen

./observer_ward -u

Mo Ren De Zhi Wen Wen Jian Ming You Liang Ge web_fingerprint_v4.jsonHe service_fingerprint_v4.json,Ru Guo Zai Pei Zhi Wen Jian Jia Zhong Cun Zai Jiang Hui Zi Dong Jia Zai .
Li Ru :web_fingerprint_v4.jsonWen Jian Zai Pei Zhi Wen Jian Jia Xia De Lu Jing

Cao Zuo Xi Tong	Bao Cun Lu Jing
Windows	C:\Users\Alice\AppData\Roaming\observer_ward\web_fingerprint_v4.json
Linux	/home/alice/.config/observer_ward/web_fingerprint_v4.json
macOS	/Users/Alice/Library/Application Support/observer_ward/web_fingerprint_v4.json

Zhi Ding yamlWen Jian Jia --probe-dirHe Dan Ge jsonWen Jian --probe-pathCan Shu Jiang Quan Bu yamlWen Jian Zhuan Huan Wei Yi Ge Dan jsonWen Jian ,Fang Bian Xi Dai
Ran Hou Jiang Zhe Ge jsonWen Jian Fu Zhi Dao Pei Zhi Wen Jian Jia

./observer_ward --probe-dir web_fingerprint --probe-dir service_fingerprint/null -p fingerprint_v4.json [INFO ] i convert the 6183 yaml file of the probe directory to a json file fingerprint_v4.json

Li Ru Ni Ke Yi Jiang FingerprintHubXiang Mu Xia De Fu Wu Zhi Wen Zhong nullTan Zhen Zhuan Huan Wei jsonWen Jian ,Bing Bao Cun Dao Pei Zhi Wen Jian Jia

~ ./observer_ward --probe-dir FingerprintHub/service-fingerprint/null -p .config/observer_ward/service_fingerprint_v4.json [INFO ] i convert the 3960 yaml file of the probe directory to a json file .config/observer_ward/service_fingerprint_v4.json

Diao Shi Mo Shi

Shi Yong --debugKai Qi Diao Shi Mo Shi ,Ke Yi Kan Dao Geng Xiang Xi De Shu Chu Jie Guo

Details

./observer_ward -t http://httpbin.org -p observer_ward/examples/json.yaml --debug [INFO ] probes loaded: 1 [INFO ] target loaded: 1 [INFO ] optimized probes: 1 [DEBUG] start: http://httpbin.org/ [DEBUG] Request { uri: http://httpbin.org/ip, version: HTTP/1.1, method: GET, headers: { "accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8", "content-type": "application/json", }, body: None, raw_request: None, } [DEBUG] Response { version: HTTP/1.1, uri: http://httpbin.org/ip, status_code: 200, headers: { "date": "Mon, 08 Jul 2024 13:19:59 GMT", "content-type": "application/json", "content-length": "32", "connection": "keep-alive", "server": "gunicorn/19.9.0", "access-control-allow-origin": "*", "access-control-allow-credentials": "true", }, extensions: Extensions, body: Some( { "origin": "1.1.1.1" } , ), } [DEBUG] end: http://httpbin.org/ :[ http://httpbin.org/] :[ http://httpbin.org/ip [httpbin-ip] <>] |_: ip:["1.1.1.1"]

(back to top)

MITM(Zhong Jian Ren Dai Li )Zhi Chi

observer_ward Zhi Chi Yi MITM(Zhong Jian Ren Dai Li )Mo Shi Bei Dong Huo Qu Qing Qiu /Xiang Ying Bing Jin Xing Zhi Wen Shi Bie ,Gua He Zai Dai Li Chang Jing Xia Dui Zhen Shi Liu Liang Jin Xing Bei Dong Zhi Wen Pi Pei .

Qi Yong Yao Dian :

MITM Gong Neng You crate Te Xing mitm Kong Zhi ;Mo Ren Te Xing Bao Han mitm,Ruo Shi Yong Zi Ding Yi Te Xing Qing Que Bao Qi Yong Gai Te Xing .
Qi Dong Cheng Xu Shi Shi Yong --mitm Can Shu Zhi Ding Jian Ting Di Zhi (Li Ru 127.0.0.1:1080).

Ben Di Qi Dong Shi Li :

./observer_ward --mitm 127.0.0.1:1080 INFO probes loaded: 3131 INFO optimized probes: 9 INFO Starting MITM proxy server on 127.0.0.1:1080 INFO MITM proxy service started: http://127.0.0.1:1080 INFO Configure your browser or tool to use this proxy INFO CA certificate path: .slinger-mitm/ca_cert.pem

Shi Yong Shuo Ming :

Qi Dong Hou Hui Zai Ri Zhi Zhong Shu Chu Dai Li Jian Ting Di Zhi He CA Zheng Shu Lu Jing .slinger-mitm/ca_cert.pem,Dao Ru CA Zheng Shu Yi Xin Ren Dai Li Hou Ji Ke Lan Jie HTTPS Liu Liang .
derGe Shi Zheng Shu Ke Yi Shi Yong openssl x509 -in ca_cert.pem -outform DER -out cacert.derJin Xing Zhuan Huan
Bei Lan Jie De Xiang Ying Hui Yi Bu Ti Jiao Gei Zhi Wen Yin Qing Jin Xing Pi Pei ,Pi Pei Dao De Jie Guo Hui Tong Guo Yi You De Shu Chu Fang Shi (Zhong Duan , Wen Jian , webhook Deng )Fan Hui .
Ru Guo She Zhi --proxyHui Shi Yong Shang You Dai Li ,Ye Jiu Shi Liu Liang Hui Xian Jing Guo observer_wardDe mitmDai Li Zai Jing Guo Shang You Dai Li Fa Song Qing Qiu .
Ruo Gou Jian Wei Qi Yong mitm Te Xing ,Qi Dong Shi Hui Ti Shi Te Xing Wei Qi Yong Bing Fan Hui Cuo Wu .

Asynq(Redis Fen Bu Shi Ren Wu Dui Lie )Zhi Chi

observer_ward Ji Cheng Liao Ji Yu Redis De Ren Wu Dui Lie (asynq),Ke Yi Ba Zhi Wen Shi Bie Ren Wu Tong Guo Redis Ru Dui ,worker Hui Cong Dui Lie Qu Chu Ren Wu Bing Chu Li ;worker Ye Ke Yi Ba Chu Li Jie Guo Fa Song Hui Jie Guo Dui Lie .

Qi Yong Yao Dian :

Asynq Gong Neng You crate Te Xing asynq_task Kong Zhi ;Mo Ren Te Xing Bao Han asynq_task,Ruo Shi Yong Zi Ding Yi Te Xing Qing Que Bao Qi Yong Gai Te Xing .
Shi Yong --asynq-redis Zhi Ding Redis Lian Jie (Li Ru redis://127.0.0.1:6379).
Shi Yong --asynq-mode Zhi Ding Mo Shi :receiveZhi Cong redisJie Shou Ren Wu , sendZhi Fa Song Shi Bie Jie Guo Dao redis, bothCong redisJie Shou Ren Wu Bing Qie Jiang Shi Bie Jie Guo Fan Hui Dao redis. Tui Jian both Mo Shi Yong Yu Wan Zheng De Shou Fa Liu Cheng .

Qi Dong worker Shi Li (Ben Di Redis,both Mo Shi ):

./observer_ward --asynq-redis redis://127.0.0.1:6379 --asynq-mode both

Fa Song Ren Wu Shi Li :Xiang Mu Zhong Bao Han Shi Li Cheng Xu observer_ward/examples/send_asynq_task.rs,Yong Yu Ba Shi Li Ren Wu Ru Dui .

cargo run --manifest-path observer_ward/Cargo.toml --example send_asynq_task

Ren Wu Zai He Shi Li :

Uri(Zhu Dong Qing Qiu )Ren Wu Shi Li :

{ "task_id": "example-123456", "input": { "type": "uri", "target": ["http://example.com"] } }

HttpData(Bei Dong Pi Pei )Ren Wu Shi Li :

{ "task_id": "example-123456", "input": { "type": "http_data", "request": { "uri": "http://example.com/", "method": "GET", "headers": null, "body": null }, "response": { "uri": "http://example.com/", "status_code": 200, "headers": null, "body": "..." } } }

Shuo Ming :HttpData Zhong De request / response Cai Yong slinger De Xu Lie Hua Ge Shi ;Ru Guo Xu Yao Geng Jing Que De Xu Lie Hua Xing Shi ,Qing Can Kao slinger De Ding Yi .

(back to top)

Mu Biao Shu Ru

Shi Yong --targetHuo Zhe -tZhi Ding Yi Ge Huo Zhe Duo Ge uriMu Biao

~ ./observer_ward -t https://www.example.com/ -t http://httpbin.org [INFO ] probes loaded: 6183 [INFO ] target loaded: 2 [INFO ] optimized probes: 8 :[ https://www.example.com/ <Example Domain> (200 OK) ] :[ http://httpbin.org/ [0example,swagger] <httpbin.org> (200 OK) ]

Shi Yong --listHuo Zhe -lZhi Ding Yi Ge Mu Biao Lie Biao Wen Jian

~ ./observer_ward -l target.txt [INFO ] probes loaded: 6183 [INFO ] target loaded: 3 [INFO ] optimized probes: 8 :[ tcp://127.0.0.1:22/ [ssh] <SSH-2.0-OpenSSH_9.7>] |_: version:[9.7] info:[protocol 2.0] :[ http://172.17.0.2/ [apache-http] <>] :[ http://172.17.0.2/ [thinkphp] <>] :[ http://httpbin.org/ [swagger,0example] <httpbin.org> (200 OK) ]

Cong Biao Zhun Shu Ru Du Qu Mu Biao

~ echo http://172.17.0.2 | ./observer_ward [INFO ] probes loaded: 6183 [INFO ] optimized probes: 8 [INFO ] target loaded: 1 :[ http://172.17.0.2/ [apache-http] <>] :[ http://172.17.0.2/ [thinkphp] <>]

(back to top)

Jie Guo Shu Chu

Shi Yong --outputHuo Zhe -oJiang Jie Guo Bao Cun Dao Zhi Ding Wen Jian Lu Jing

~ ./observer_ward -t https://www.example.com/ -o output.txt [INFO ] probes loaded: 6183 [INFO ] optimized probes: 8 [INFO ] target loaded: 1 ~ cat output.txt :[ https://www.example.com/ <Example Domain> (200 OK) ]

Ru Guo Shi Bao Cun Dao Wen Jian Shu Chu Ge Shi Hui Gen Ju Wen Jian Hou Zhui Zi Dong Qie Huan ,Ye Ke Yi Shi Yong --formatCan Shu Zhi Ding Shu Chu Ge Shi ,Zhi Chi : txt,json,csv

~ ./observer_ward -t https://httpbin.org/ -o output.json [INFO ] probes loaded: 6183 [INFO ] optimized probes: 8 [INFO ] target loaded: 1 ~ cat output.json {"https://httpbin.org/":{"title":["httpbin.org"],"status":200,"favicon":{"https://httpbin.org/static/favicon.ico":{"md5":"3aa2067193b2ed83f24c30bd238a717c","mmh3":"-1296740046"}},"name":["swagger"],"fingerprints":[{"matcher-results":[{"template":"swagger","info":{"name":"swagger","author":"cn-kali-team","tags":"detect,tech,swagger","severity":"info","metadata":{"product":"swagger","vendor":"00_unknown","verified":true}},"matcher-name":["swagger-ui.css"],"extractor":{}}],"matched-at":"https://httpbin.org/"}],"nuclei":{}}}

Zai Bao Cun Wen Jian De Tong Shi Ye Hui Zai Zhong Duan Da Yin Jin Du Xin Xi ,Ru Guo Yao Xiang Zhi Da Yin Chun Jie Guo Shu Ju Ke Yi Shi Yong --silentKai Qi Jing Mo Mo Shi ,Li Ru :Wo Zhi Xiang Da Yin json Ge Shi De Shu Ju Bing Shu Chu Dao jq

~ ./observer_ward_amd64 -t http://172.17.0.2 --format json --ir --ic --silent |jq

Qi Zhong De --irHe --icFen Bie Wei Bao Cun Jie Guo De Qing Qiu Xiang Ying He Zheng Shu Xin Xi
Shi Yong --webhookZhi Ding Yao Jiang Jie Guo Fa Song Dao De Fu Wu Qi url,Ru Guo webhookFu Wu Qi You Ren Zheng Ye Ke Yi Shi Yong --webhook-authTian Jia Zhi Dao Authorization Qing Qiu Tou

from flask import Flask, request app = Flask(__name__) @app.route("/webhook", methods=['POST']) def observer_ward_webhook(): print("Authorization: ", request.headers.get("Authorization")) print(request.json) return 'ok' if __name__ == '__main__': app.run()

Li Ru Xian Zai Ben Di Qi Dong Yi Ge Jian Yi webhookFu Wu Qi

observer_ward git:(main) python observer_ward/examples/webhook.py * Serving Flask app 'webhook' * Debug mode: off WARNING: This is a development server. Do not use it in a production deployment. Use a production WSGI server instead. * Running on http://127.0.0.1:5000 Press CTRL+C to quit

Jiang Jie Guo Fa Song Dao Ben Di webhookFu Wu Qi :http://127.0.0.1:5000,Dang Shi Bie Wan Cheng Hou Ni Jiang Ke Yi Zai webhookFu Wu Qi Jie Shou Dao Jie Guo

~ ./observer_ward -t http://httpbin.org --webhook http://127.0.0.1:5000/webhook --webhook-auth 22e038328151a7a06fd4ebfa63a10228 [INFO ] probes loaded: 6183 [INFO ] optimized probes: 8 [INFO ] target loaded: 1 :[ http://httpbin.org/ [swagger,0example] <httpbin.org> (200 OK) ]

(back to top)

Geng Xin nucleiCha Jian

Shi Yong --update-pluginGeng Xin nucleiCha Jian Dao Pei Zhi Wen Jian Jia De pluginsMu Lu
Dang Ran Ni Ye Ke Yi Shou Dong Jiang plugins.zip Xia Zai Dao Pei Zhi Wen Jian Jia Bing Jie Ya
Zhu Yi :Mei Ci Geng Xin Hui Jiang Yuan Lai Cha Jian Wen Jian Jia Shan Chu Diao Zai Jie Ya ,Ru Guo Ni You Zi Ji De Cha Jian Xu Yao Dan Du Cun Fang Zai Bie De Wen Jian Jia

Ji Cheng nucleiYan Zheng Lou Dong

Kai Qi Gai Gong Neng Qian Xian An Zhuang Zui Xin Ban De nucleiDao Xi Tong Huan Jing Bian Liang ,Shi De Cheng Xu Ke Yi Zai Ming Ling Xing Zhong Zheng Chang Diao Yong
Shi Yong --pluginZhi Ding nucleiDe templateWen Jian Jia Kai Qi nuclei,Zhe Ge pluginsWen Jian Jia Ke Yi Dao She Qu Zhi Wen Ku Xiang Mu Xia Zai
Dang --pluginDe Can Shu Wei defaultShi ,Mo Ren Shi Yong Pei Zhi Wen Jian Jia Zhong De pluginsWen Jian Jia ,Ye Jiu Shi Shi Yong --update-pluginXia Zai De Cha Jian
Wen Jian Jia Jie Gou Wei Han Shang /Chan Pin /nucleiDe yamlWen Jian ,Ru Guo Shi Bie Dao De Zhi Wen Jie Xi cpeHou De Dao Liao Han Shang He Chan Pin Zai Zhe Ge Wen Jian Jia Ke Yi Zhao Dao Jiu Hui Diao Yong Zhe Ge Wen Jian Jia Xia Mian De yamlJin Xing Lou Dong Yan Zheng
Li Ru :Zhi Wen Shi Bie Dao Liao tomcat,Tong Guo Jie Xi cpeDe Dao Han Shang Wei apacheHe Chan Pin Wei tomcat,Diao Yong apache/tomcatWen Jian Jia Xia Mian De Quan Bu yamlYan Zheng Lou Dong

~ ./observer_ward -t http://172.17.0.2/ --plugin default [INFO ] probes loaded: 6183 [INFO ] optimized probes: 8 [INFO ] target loaded: 1 :[ http://172.17.0.2/ [apache-http] <>] :[ http://172.17.0.2/ [thinkphp] <>] |_: [Critical] thinkphp-5023-rce: ThinkPHP 5.0.23 - Remote Code Execution |_: http://172.17.0.2/index.php?s=captcha |_: curl -X 'POST' -d '_method=__construct&filter[]=phpinfo&method=get&server[REQUEST_METHOD]=1' -H 'Accept: */*' -H 'Accept-Language: en' -H 'Content-Type: application/x-www-form-urlencoded' -H 'User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.5 Safari/605.1.15 Ddg/17.4' 'http://172.17.0.2/index.php?s=captcha'

Shi Yong --nuclei-argsZhui Jia nucleiCan Shu ,Li Ru :Shang Chuan Jie Guo Dao Yun Duan He Pai Chu Xin Xi Cha Jian

~ ./observer_ward -t http://172.17.0.2/ --plugin default --nuclei-args "-cloud-upload" --nuclei-args "-es info"

Kai Qi WebFu Wu

Shi Yong --api-serverZhi Ding Jian Ting IPHe Duan Kou ,--tokenShe Zhi apiDe BearerRen Zheng

~ ./observer_ward --api-server 127.0.0.1:8000 --token 22e038328151a7a06fd4ebfa63a10228 [INFO ] probes loaded: 6183 [INFO ] optimized probes: 8 [INFO ] API service has been started: http://127.0.0.1:8000/v1/observer_ward [INFO ] :curl --request POST \ --url http://127.0.0.1:8000/v1/observer_ward \ --header 'Authorization: Bearer 22e038328151a7a06fd4ebfa63a10228' \ --json '{"target":["https://httpbin.org/"]}' [INFO ] :[result...]

Shi Yong curlQing Qiu api,Tong Shi She Zhi AuthorizationCan Shu

~ curl --request POST \ --url http://127.0.0.1:8000/v1/observer_ward \ --header 'Authorization: Bearer 22e038328151a7a06fd4ebfa63a10228' \ --json '{"target":["https://httpbin.org/"]}' {"https://httpbin.org/":{"title":["httpbin.org"],"status":200,"favicon":{"https://httpbin.org/static/favicon.ico":{"md5":"3aa2067193b2ed83f24c30bd238a717c","mmh3":"-1296740046"}},"name":["swagger"],"fingerprints":[{"matcher-results":[{"template":"swagger","info":{"name":"swagger","author":"cn-kali-team","tags":"detect,tech,swagger","severity":"info","metadata":{"product":"swagger","vendor":"00_unknown","verified":true}},"matcher-name":["swagger-ui.css"],"extractor":{}}],"matched-at":"https://httpbin.org/"}],"nuclei":{}}}

Tong Guo apiHuo Qu Dang Qian config,Zhe Xie Zi Duan Du Shi Ke Yi Tong Guo Mei Ci De POSTQing Qiu Chuang Jian Shi Bie Ren Wu Zhong Pei Zhi

~ curl --request GET \ --url http://127.0.0.1:8000/v1/config \ --header 'Authorization: Bearer 22e038328151a7a06fd4ebfa63a10228' \ --header 'Content-Type: application/json' {"target":[],"ua":"Mozilla/5.0 (X11; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/94.0","timeout":10,"thread":4,"ir":false,"ic":false,"update-fingerprint":false,"update-plugin":false,"webhook":null,"webhook-auth":null}

She Zhi update-pluginHe update-fingerprintWei trueGeng Xin Zhi Wen Ku He nucleiDe Cha Jian Ku

~ curl --request POST \ --url http://127.0.0.1:8000/v1/config \ --header 'Authorization: Bearer 22e038328151a7a06fd4ebfa63a10228' \ --json '{"target":[],"update-plugin":true,"update-fingerprint":true}' {"target":[],"ua":"Mozilla/5.0 (X11; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/94.0","timeout":10,"thread":4,"ir":false,"ic":false,"update-fingerprint":true,"update-plugin":true,"webhook":null,"webhook-auth":null

Ru Guo Tong Shi Kai Qi Liao --webhookHuo Zhe Ti Jiao De Ren Wu Pei Zhi Zhong De webhookBu Wei Kong ,Qing Qiu apiHou Hui Zai Hou Tai Yun Xing Ren Wu ,Jie Guo Jiang Tong Guo webhookFa Song Dao Zhi Ding Fu Wu Qi
Ru Guo Bu Xiang Jian Ting Ben Di Duan Kou Ye Ke Yi Zhi Ding --api-serverCan Shu Wei unix-socketWen Jian Lu Jing ,Shi Yong socket over http

~ ./observer_ward --api-server /tmp/observer_ward.socket [INFO ] probes loaded: 6183 [INFO ] optimized probes: 8 [INFO ] API service has been started: /tmp/observer_ward.socket [INFO ] :curl --request POST \ --unix-socket /tmp/observer_ward.socket \ --url http://localhost/v1/observer_ward \ --header 'Authorization: Bearer 22e038328151a7a06fd4ebfa63a10228' \ --json '{"target":["https://httpbin.org/"]}' [INFO ] :[result...]

Ti Jiao Zhi Wen

observer_wardShi Yong Dao De Zhi Wen Gui Ze Quan Bu Lai Zi FingerprintHubXiang Mu .
Ru Guo Xu Yao Huo Qu Zhi Wen Ku He Ti Jiao Zhi Wen Gui Ze ,Qing Cha Kan FingerprintHubXiang Mu .

Wei observer_wardZuo Gong Xian

Ti Jiao Dai Ma

Dian Ji ForkAn Niu Ke Long Zhe Ge Xiang Mu Dao Ni De Cang Ku

git clone git@github.com:Ni De Ge Ren githubYong Hu Ming /observer_ward.git

Tian Jia Shang You Jie Shou Geng Xin

cd observer_ward git remote add upstream git@github.com:emo-crab/observer_ward.git git fetch upstream

Pei Zhi Ni De githubGe Ren Xin Xi

git config --global user.name "$GITHUB_USERNAME" git config --global user.email "$GITHUB_EMAIL" git config --global github.user "$GITHUB_USERNAME"

La Qu Suo You Fen Zhi De Gui Ze

git fetch --all git fetch upstream

Bu Yao Zhi Jie Zai mainFen Zhi Shang Xiu Gai ,Li Ru Wo Xiang Xiu Gai Mou Ge bug,Chuang Jian Yi Ge Xin De Fen Zhi Bing Qie Huan Dao Xin De Fen Zhi .

git checkout -b dev

Xiu Gai Wan Cheng Hou ,Ce Shi Tong Guo

cargo clippy --fix --allow-dirty --workspace --all-features --all-targets -- -D warnings --allow deprecated

Gen Zong Xiu Gai He Ti Jiao Pull-Requests.

git add Ni Tian Jia Huo Zhe Xiu Gai De Wen Jian Ming git commit -m "Tian Jia Ni De Miao Shu " git push origin dev

Da Kai Ni ForkZhe Ge Xiang Mu De Di Zhi ,Dian Ji Yu Shang You He Bing ,Deng Dai Shen He He Bing Dai Ma .

(back to top)

License

Distributed under the GPL-3.0-only License. See LICENSE for more information.

(back to top)

Contact

Your Name - @Kali_Team - root@kali-team.cn

Project Link: https://github.com/emo-crab/observer_ward

(back to top)

Acknowledgments

(back to top)

Uh oh!

Folders and files

Latest commit

History

Repository files navigation

observer_ward(Zhen Cha Shou Wei )

Guan Yu Zhe Ge Xiang Mu

An Zhuang

Yuan Ma An Zhuang

Er Jin Zhi An Zhuang

Shi Yong MacXi Tong brewAn Zhuang

DockerJing Xiang

Ru Men

Geng Xin Zhi Wen Ku

Diao Shi Mo Shi

MITM(Zhong Jian Ren Dai Li )Zhi Chi

Asynq(Redis Fen Bu Shi Ren Wu Dui Lie )Zhi Chi

Mu Biao Shu Ru

Jie Guo Shu Chu

Geng Xin nucleiCha Jian

Ji Cheng nucleiYan Zheng Lou Dong

Kai Qi WebFu Wu

Ti Jiao Zhi Wen

Wei observer_wardZuo Gong Xian

Ti Jiao Dai Ma

License

Contact

Acknowledgments

Stargazers over time

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases 5

Sponsor this project

Uh oh!

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages