Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
I
IOT-fuzz
Overview
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
尹启迪
IOT-fuzz
Commits
34d4c597
Commit
34d4c597
authored
Aug 29, 2020
by
尹启迪
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Update Fuzz_DSL.py
parent
a2daff94
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
21 additions
and
43 deletions
+21
-43
Fuzz_DSL.py
Fuzz_DSL.py
+21
-43
No files found.
Fuzz_DSL.py
View file @
34d4c597
from
boofuzz
import
*
from
sys
import
exit
from
time
import
sleep
def
get_banner
(
target
,
my_logger
,
session
,
*
args
,
**
kwargs
):
banner_template
=
"Welcome to Vulnerable Server! Enter HELP for help."
name
=
"<head></head>"
while
(
1
):
try
:
sleep
(
0.5
)
banner
=
target
.
recv
(
10000
)
# if(len(banner)<1):
# print "failed"
# exit(1)
# else:
# print "Received!!!!!!!!!!!!!!!"+banner
except
:
print
"Unable to connect. Target is down. Exiting."
exit
(
1
)
if
(
len
(
banner
)
==
0
):
print
"failed"
exit
(
1
)
else
:
print
"Received!!!!!!!!!!!!!!!"
+
banner
def
main
():
session
=
Session
(
target
=
Target
(
connection
=
TCPSocketConnection
(
"192.168.1.1"
,
80
)),)
s_initialize
(
name
=
"First"
)
s_static
(
"GET / HTTP/1.1"
)
s_static
(
"
\r\n
"
)
s_static
(
"Host: 192.168.1.1"
)
s_static
(
"
\r\n
"
)
s_static
(
"User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:78.0) Gecko/20100101 Firefox/78.0"
)
s_static
(
"
\r\n
"
)
s_static
(
"Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8"
)
s_static
(
"
\r\n
"
)
s_static
(
"Accept-Language: en-US,en;q=0.5"
)
s_static
(
"
\r\n
"
)
break
except
:
break
s_static
(
"Accept-Encoding: gzip, deflate"
)
s_static
(
"
\r\n
"
)
s_static
(
"Connection: close"
)
s_static
(
"
\r\n
"
)
s_static
(
"Upgrade-Insecure-Requests: 1"
)
s_static
(
"
\r\n
"
)
s_static
(
"Cache-Control: max-age=0"
)
s_static
(
"
\r\n
"
)
def
main
():
session
=
Session
(
target
=
Target
(
connection
=
SocketConnection
(
"192.168.1.1"
,
80
)),
receive_data_after_each_request
=
True
,
)
s_initialize
(
name
=
"Login"
)
# with s_block("Post-Line"):
...
...
@@ -85,6 +56,8 @@ def main():
s_static
(
"Upgrade-Insecure-Requests: 1"
)
s_static
(
"
\r\n
"
)
s_static
(
"
\r\n
"
)
s_static
(
"
\r\n
"
)
s_initialize
(
name
=
"Get_key"
)
...
...
@@ -114,6 +87,9 @@ def main():
s_static
(
"Referer: http://192.168.1.1/cgi-bin/New_GUI/Diagnostics.asp"
)
s_static
(
"
\r\n
"
)
s_static
(
"
\r\n
"
)
s_string
(
"test"
)
s_static
(
"
\r\n
"
)
s_initialize
(
name
=
"Post"
)
# with s_block("Post-Line"):
...
...
@@ -159,10 +135,11 @@ def main():
s_static
(
"Type=p&sessionKey=424238335&Addr="
)
s_string
(
"XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
,
max_len
=
1024
)
session
.
connect
(
s_get
(
"First"
))
session
.
connect
(
s_get
(
"First"
),
s_get
(
"Login"
))
session
.
connect
(
s_get
(
"Login"
))
session
.
connect
(
s_get
(
"Login"
),
s_get
(
"Get_key"
),
callback
=
get_banner
)
session
.
connect
(
s_get
(
"Get_key"
),
s_get
(
"Post"
),
callback
=
get_banner
)
# session.connect(s_get("Login"), s_get("Get_key"), callback=get_banner)
# session.connect(s_get("Get_key"), s_get("Post"), callback=get_banner)
session
.
fuzz
()
if
__name__
==
'__main__'
:
main
()
\ No newline at end of file
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment
