Giter Club home page Giter Club logo

cnvd-2020-10487-tomcat-ajp-lfi's People

Contributors

ydhcui avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

xiaokuoai szd79056181 lubyruffy xxnbyy pl0m21 raul1718 dotaerwg scholargg sccdlth maoqingya chopperd binddns ottoknown 0chencc xycxmz allenbean fengzihk maxsecurity uuuunotfound lw1988 0xsb kesonn p3rh4ps 615 ysymiaofu lz1y anonymity3712 gscr10 evi1hack rainism thelostworldfree bb33bb nothingcw timeshu startagain2016 lynx-1 espandy v1cker m4tir listenquiet shad0w008 jooeji w20di xdreamseeker sholway shimxx feisec eleven728 wuyifan66 dragoneeg maskertui dointisme dawnyang-cn grayguest reallws leoonzhang haoirui jiushill podvps kyhvedn securitycn xsec aftern00n wind-- idaking yizhimanpadewoniu shad0wpf 4869aptx jaky5155 r4b3rt shellfeel doublefast m0nk1yer da4er windyalexq lululau pdsdt jimsonzhang tenwx venscor 1u0hun jimdx taonese i1ch crackercat killvxk lovelywei l34rner rhankare naozibuhao johnhubcr minluzhou zhengjunqiao askyeye junyu1991 shadow1ng futurebody 746964750 vi3it0r mrawb

cnvd-2020-10487-tomcat-ajp-lfi's Issues

does it used with python2 ?

,firstly , I got mistakes in makefile() , then I change bufsize args to buffering , then line get errors,:print("".join([d.data for d in data]))
Error: sequence item 0: expected str instance, bytes found
can you give me some suggestions?
thks

NotImplemented Error

Does it mean that AJP is not enabled?

root@kali:~# python tomcatlfi.py X.X.X.X -p 8080 -f WEB-INF/web.xml
Getting resource at ajp13://X.X.X.X:8080/asdf
Traceback (most recent call last):
File "tomcatlfi.py", line 299, in
{'name':'req_attribute','value':['javax.servlet.include.servlet_path','/']},
File "tomcatlfi.py", line 274, in perform_request
responses = self.forward_request.send_and_receive(self.socket, self.stream)
File "tomcatlfi.py", line 154, in send_and_receive
r = AjpResponse.receive(stream)
File "tomcatlfi.py", line 225, in receive
r.parse(stream)
File "tomcatlfi.py", line 193, in parse
raise NotImplementedError
NotImplementedError

总是读到首页内容

大佬用你的这个脚本读靶场可以,但是在一个实战环境中读取的内容永远是首页中的html,版本端口都符合漏洞,请教下大佬知不知道怎么回事。

运行报错,求解决

Traceback (most recent call last):
File "CNVD-2020-10487-Tomcat-Ajp-lfi.py", line 299, in
{'name':'req_attribute','value':['javax.servlet.include.servlet_path','/']},
File "CNVD-2020-10487-Tomcat-Ajp-lfi.py", line 274, in perform_request
responses = self.forward_request.send_and_receive(self.socket, self.stream)
File "CNVD-2020-10487-Tomcat-Ajp-lfi.py", line 154, in send_and_receive
r = AjpResponse.receive(stream)
File "CNVD-2020-10487-Tomcat-Ajp-lfi.py", line 225, in receive
r.parse(stream)
File "CNVD-2020-10487-Tomcat-Ajp-lfi.py", line 182, in parse
self.magic, self.data_length, self.prefix_code = unpack(stream, ">HHb")
File "CNVD-2020-10487-Tomcat-Ajp-lfi.py", line 16, in unpack
return struct.unpack(fmt, buf)
struct.error: unpack requires a string argument of length 5

[Errno 111] Connection refused

Traceback (most recent call last):
File "test.py", line 295, in
t = Tomcat(args.target, args.port)
File "test.py", line 261, in init
self.socket.connect((target_host, target_port))
File "/usr/lib64/python2.7/socket.py", line 224, in meth
return getattr(self._sock,name)(*args)
socket.error: [Errno 111] Connection refused

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.