⭐ 欢迎来到虫虫下载站! | 📦 资源下载 📁 资源专辑 ℹ️ 关于我们
⭐ 虫虫下载站
📤 上传资源

📄 apache_ssl_complain.nasl

📁 漏洞扫描源码,可以扫描linux,windows,交换机路由器
💻 NASL
字号:
🔍 
# This script was written by Michel Arboi <arboi@alussinan.org>## GPL#if(description){ script_id(15588); script_version("$Revision: 116 $"); name["english"] = "Detect Apache HTTPS"; script_name(english:name["english"]);  desc["english"] = "Synopsis :An SSL detection issue might impede the OpenVAS Scan.Description :OpenVAS has discovered that it is talking in plain HTTP on a SSL port.OpenVAS has corrected this issue by enabled HTTPS on this port only. However if other SSL ports are used on the remote host, they might be skipped.Solution :Enable SSL tests in the 'Services' preference setting, or increase the timeouts if this option is already set and the plugin missed this port.Risk factor : None"; script_description(english:desc["english"]);  summary["english"] = "Web server complains that we are talking plain HTTP on HTTPS port";  script_summary(english:summary["english"]);  script_category(ACT_GATHER_INFO);  script_copyright(english:"This script is Copyright (C) 2004 Michel Arboi"); script_family(english: "Service detection"); script_dependencie("find_service.nes"); exit(0);}# include("misc_func.inc");banners = get_kb_list("FindService/tcp/*/get_http");if (COMMAND_LINE){  soc = http_open_socket(443);  if (! soc) exit(0);  send(socket: soc, data: 'GET / HTTP/1.0\r\n\r\n');  banner = recv(socket: soc, length: 65535);  http_close_socket(soc);  if (! banner) exit(0);  banners = make_array(443, banner);  }if ( isnull(banners) ) exit(0);foreach p (keys(banners)){# If there are several values, get_kb_item will fork and that's bad.# However, this only happens when the KB is saved?  b = banners[p];  port = ereg_replace(string: p, pattern: ".*/([0-9]+)/.*", replace: "\1");  port = int(port);  if (port)    if (# Apache        b =~ "<!DOCTYPE HTML .*You're speaking plain HTTP to an SSL-enabled server" ||        # Webmin        "Bad Request" >< b && "<pre>This web server is running in SSL mode" >< b)  {    security_note(port);    if (COMMAND_LINE) display("\n **** SSL server detected on ", get_host_ip(), ":", port, " ****\n\n");    if (service_is_unknown(port: port))       register_service(port: port, proto: "www");    for (t = ENCAPS_SSLv2; t <= ENCAPS_TLSv1; t ++)    {      s = open_sock_tcp(port, transport: t);      if (s)      {        send(socket: s, data: 'GET / HTTP/1.0\r\n\r\n');        b = recv(socket: s, length: 4096);        close(s);        k = "Transports/TCP/"+port;        if (defined_func("replace_kb_item"))        {          replace_kb_item(name: k, value: t);          if (b)          {            replace_kb_item(name: "FindService/tcp/"+port+"/get_http", value: b);            replace_kb_item(name: "www/banner/"+port, value: b);          }        }        else        {          set_kb_item(name: k, value: t);          if (b)          {            set_kb_item(name: "FindService/tcp/"+port+"/get_http", value: b);            set_kb_item(name: "www/banner/"+port, value: b);          }        }        break;      }    }  }}

⌨️ 快捷键说明

复制代码 Ctrl + C
搜索代码 Ctrl + F
全屏模式 F11
切换主题 Ctrl + Shift + D
显示快捷键 ?
增大字号 Ctrl + =
减小字号 Ctrl + -