-
Notifications
You must be signed in to change notification settings - Fork 524
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
MongoDB弱口令检测异常 #126
Comments
是不是没识别出协议,扫描结果截图看看 |
Response指纹识别遇到两种情况: 情况二(根据mongodb协议探测返回的内容): |
你要用--hydra参数,开启弱口令检测功能 |
查看源码(最新1.85版本源码压缩包)(mongodb.go)文件,发现连接数据库好像加上了“ichunt”,把它去掉,重新打包编译即可扫描出来mongodb弱口令: 修改后: |
另外就是MongoDB扫描的时候,Response字段的内容会有差异,大概率都是返回情况一,不知道这里是什么原因,可否优化为第二种情况,或者两者都保留? Response指纹识别遇到两种情况: 情况二: |
感谢提交Bug,将更新到新版本 |
这个是服务器端根据不同的探针请求反馈的不同返回包,因为探针优先级的缘故,会优先使用HTTP请求,但是这不影响指纹识别结果和爆破 |
MongoDB弱口令检测异常,没有弱口令结果,查看返回的Response内容如下:
"Response": "HTTP/1.0 200 OK\r\nConnection: close\r\nContent-Type: text/plain\r\nContent-Length: 85\r\n\r\nIt looks like you are trying to access MongoDB over HTTP on the native driver port.\r\n",
很小几率Response的结果可能是正确的。
检测命令如下:
kscan.exe -t 192.168.86.128 -p 27017 -oJ mongodb.json
实际弱口令为:
admin/123456
The text was updated successfully, but these errors were encountered: