ice-doom / eyejo Goto Github PK

EyeJo是一款自动化资产风险评估平台，可以协助甲方安全人员或乙方安全人员对授权的资产中进行排查，快速发现存在的薄弱点和攻击面。

Dockerfile 0.17% Shell 0.08% Python 75.54% Java 0.18% Assembly 1.50% HTML 0.17% JavaScript 21.01% Less 1.32% TypeScript 0.02%

pentest-tool recon scanner scanner-web information-gathering security-tools

eyejo's People

Contributors

Stargazers

Watchers

eyejo's Issues

漏洞检测建议

在漏洞检测后，结果列表中显示了，url｜payload | 请求数据 | 漏洞类型

建议将返回信息打印出来，例如存在报错注入，就可以在返回信息中查看报错哪些东西了。

关于新任务域名的问题

为什么需要加http前缀？
另外如果一次执行过多域名 shodan&fofa 会很慢，我等待了10个小时左右还在执行shodan&fofa，大约900子域名

Nuclei-engine integration

it would be really awesome if you add Nuclei-Engine Integration to scan with nuclei yaml templates for vulnerabilties.

https://github.com/projectdiscovery/nuclei

IP扫描问题

请问，在进行项目添加时添加如127.0.0.1这类型IP地址，总是出现域名格式错误的提示，是不是现在不能进行单IP地址的扫描

部署咨询

dokcer部署很顺利，但有些环境不方便docker，想问下，普通部署可以按照django部署进行吗，有哪些坑需要规避。

端口过多会卡死

某些安全设备检测到端口扫描后会给所有SYN包回复ACK确认（比如阿里云），不管端口是否开放，导致eyejo认为扫描的主机所有端口均开放，直接把浏览器卡死。。。并且导致后续任务无法继续。如果开放的端口大于一定数量，应放弃对这个IP的扫描，以免影响扫描进度。

docker pull

使用docker pull 下之后在使用docker run。启动会发现无法访问，内部服务未安装

Traceback (most recent call last):
File "/tmp/pip-install-vde1inbu/pycurl/setup.py", line 223, in configure_unix
stdout=subprocess.PIPE, stderr=subprocess.PIPE)
File "/usr/local/python3/lib/python3.7/subprocess.py", line 775, in init
restore_signals, start_new_session)
File "/usr/local/python3/lib/python3.7/subprocess.py", line 1522, in _execute_child
raise child_exception_type(errno_num, err_msg, err_filename)
FileNotFoundError: [Errno 2] No such file or directory: 'curl-config': 'curl-config'

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "<string>", line 1, in <module>
  File "/tmp/pip-install-vde1inbu/pycurl/setup.py", line 913, in <module>
    ext = get_extension(sys.argv, split_extension_source=split_extension_source)
  File "/tmp/pip-install-vde1inbu/pycurl/setup.py", line 582, in get_extension
    ext_config = ExtensionConfiguration(argv)
  File "/tmp/pip-install-vde1inbu/pycurl/setup.py", line 99, in __init__
    self.configure()
  File "/tmp/pip-install-vde1inbu/pycurl/setup.py", line 227, in configure_unix
    raise ConfigurationError(msg)
__main__.ConfigurationError: Could not run curl-config: [Errno 2] No such file or directory: 'curl-config': 'curl-config'

----------------------------------------

Command "python setup.py egg_info" failed with error code 1 in /tmp/pip-install-vde1inbu/pycurl/
You are using pip version 19.0.3, however version 21.1.1 is available.
You should consider upgrading via the 'pip install --upgrade pip' command.

项目设置-设置api那里不能提交

师傅，设置api那里点击提交无效，一直没有反应

支持xray报告导出

扫描完成后支持xray报告导出

添加任务黑名单限制请问在哪里改

使用pocsuite3的poc无法检测出漏洞

漏洞确定存在，但是在使用poc检测的时候无法检测，后台有这个报错
[2021-05-10 17:35:55,225: ERROR/ForkPoolWorker-2] Task exception was never retrieved
future: <Task finished name='Task-20' coro=<run_pocsuite() done, defined at /root/eyejo/plugin/poc_verify.py:27> exception=UnboundLocalError("local variable 'result' referenced before assignment")>
Traceback (most recent call last):
File "/root/eyejo/plugin/poc_verify.py", line 39, in run_pocsuite
new_results = []
UnboundLocalError: local variable 'result' referenced before assignment
[2021-05-10 17:35:55,226: INFO/ForkPoolWorker-2] EyeJoTask[2074aefb-3940-4c72-b4d5-d40a8e2c26fb]: finish poc_scan time: 0.21214699745178223
[2021-05-10 17:35:55,229: INFO/ForkPoolWorker-2] Task EyeJoTask[2074aefb-3940-4c72-b4d5-d40a8e2c26fb] succeeded in 0.24784187402110547s: None

ice-doom / eyejo Goto Github PK

eyejo's People

Contributors

Stargazers

Watchers

Forkers

eyejo's Issues

Recommend Projects

Recommend Topics

Recommend Org