Chinyorwa ichi chichataura nezve otomatiki XSS hutsinde scanner inonzi Dalfox. Vaverengi vachadzidza nezve mikana yehurongwa hwekuziva kushomeka mukudzivirira kwewebhu hurongwa.
NhanganyayaDALFOX ndeyekukurumidza uye ine simba xss kusagadzikana scanner ("kuyambuka-rudzi rugwaro") yakagadzirwa pane hwaro hweDOM parser. Pamusoro pekutsvaga matambudziko akabatana neXss kurwiswa, zvakare ine zvimwe zvinhu zvekuyedza wewebhu system yeSQLI, SSTI uye yakavhurika redirect. Iyo scanner inogona kuona mhando dzakasiyana dzemhando dzeXSS dzimba: "Inoratidzwa", "yakachengetwa" uye "bofu".
Kuisa iyo DALFOX SCANNERPane zvakawanda zvingasarudzwa zvekuisa chirongwa ichi. Imwe yenzira dzakakurumbira kwazvo ndeyekuisa uchishandisa kumba.
Kuisirwa uchishandisa snapcraftIyi nzira yekuisa inoda snapcraft. Vaverengi vanogona kuziva kana snap yakaiswa muhurongwa hwavo nekupinda mushe kuraira ("snap"). Kana iyo purogiramu isati yatangwa kare, inodikanwa kuti ishandure iyo link iri pazasi kuti igadzire.
Sudo snap kuisa dalfox
Kuita DALFOX kuisirwa uchishandisa nzira mbiri dzinotevera, mushandisi anofanirwa kushandiswa neicho chazvino vhezheni yemutauro wakakurumbira. Munhu anogona kutarisa vhezheni yemutauro wakaiswa uchishandisa iyo ende shanduro yekuraira. Kana ukaenda haana kumbobvira aiswa, wobva wotevera chinongedzo pazasi kuti ugadzire.
Kuisa kubva kune yekutanga sosiGo111mode = pa Go Get -v Github.com/hahwul/dalfox/V2
Kuisa kuenda neGitHubGit Clone Https://gitub.com/hahwul/dalfox CD dalfox Goavaka
Kuisirwa neDockerDocker dhonza hahwul / dalfox: zvazvino
Vaverengi vanofanira kunyora uyu murairo:
Docker Run -it hahwul / dalfox: Latfox / app / dalfox Url https://www.HAHUL.com
Iyo nzira iri pazasi inoshanda chete paMacos.
Kuisirwa neMusebrewBrew Tap Hahwul / DalFox Brew isa dalfox
Nheyo dzebasa dalfoxKuongorora iyo chaiyo URL
Dalfox url http://testphp.vngub.com/listproducs.php.
Kuongorora seti ye url
DALFOX inogona zvakare kuongorora akawanda ma dols panguva imwe chete.
Cat samples / sample_target.txt | Dalfox pombi.
kana
Dalfox faira ./samples/sample_target.txt
Mushandisi anogona kushandisa iyo paramspider comm cac
Kupfupikisa kumusoro, kwakakodzera kutaura kuti ichi chishandiso chinokurumidza chekutsvaga XSS uye mamwe ewebhu anozivikanwa mabasa ekuzvipira. Chishandiso chinopa zvidiki zvevanyepedzera uye zvine zvimwe zvinhu zvekutsvaga mhando dzakasiyana dzemhando dzekuchengetedza matambudziko ekuchengetedza.
ZVINOKOSHA! Ruzivo chete nekuda kwechinangwa chedzidzo. Ndokumbirawo uteedzere nemutemo uye usashandise ruzivo urwu rwezvisiri pamutemo zvinangwa.
Mamwe mashoko anonakidza pane chisoclub.ru. SUBSCRIBE Tiri: Facebook | VK | Twitter | Instagram | Telegraph | Zen | Mutumwa | Icq New | YouTube | Pulse.