AWVS安装及使⽤
使⽤docker安装
docker pull xrsec/awvs
启动镜像
https://hub.docker.com/r/xrsec/awvs 参考链接
下载破解脚本,在本地执⾏
登录⽤户名密码
发起扫描
转到“添加⽬标”⻚⾯以配置要扫描的新⽹站:
docker run -it -d \
--name awvs \
-p 3443:3443 \
xrsec/awvs:latest
wget https://www.fahai.org/Awvs_Crack/check.sh
bash check.sh xrsec/awvs
URL: https://server_ip:3443/#/login
UserName: [email protected]
PassWord: [email protected]
卡到了破解上,然后我开始在网上搜,找了了一条命令安装破解
bash <(curl -sLk https://www.fahai.org/aDisk/Awvs/check.sh) xrsec/awvs:v15
这个命令是使用 curl 下载一个脚本文件,并将其作为参数传递给 bash 命令进行执行。脚本文件的内容是用于检查和安装 Acunetix Web Vulnerability Scanner (AWVS) 的相关文件和配置。
xrsec/awvs:v15 是一个容器镜像的名称和版本号,用于运行 AWVS。
#!/usr/bin/env bash
# set color
export CLICOLOR=1
export LSCOLORS=GxFxCxDxBxegedabagaced
COL_NC='\033[0m' # No Color
COL_LIGHT_YELLOW='\033[1;33m'
INFO="[${COL_LIGHT_YELLOW}~${COL_NC}]"
OVER="\\r\\033[K"
DockerImage=$1
DOCKER_INSTALL_URL="https://ghproxy.com/https://gist.githubusercontent.com/Ran-Xing/b7eef746736e51d6f7c6fd24dd942b5d/raw/a045b53852685c1092221afa37453a191be12991/docker_init.sh"
TOOLS_URL="https://www.fahai.org/aDisk/Awvs/check-tools.sh"
if [ "${AWVS_DEBUG}" = "true" ]; then
set -ex
# TOOLS_URL="http://192.168.226.51/check-tools.sh" # TODO
fi
# set msg
msg_info() {
printf "${INFO} %s ${COL_LIGHT_YELLOW}...${COL_NC}" "${1}" 1>&2
sleep 3
}
msg_ok() {
printf "${OVER} [\033[1;32m✓${COL_NC}] %s\n" "${1}" 1>&2
msg_over
}
msg_err() {
printf "${OVER} [\033[1;31m✗${COL_NC}] %s\n" "${1}" 1>&2
exit 1
}
msg_over() {
printf "${OVER}%s" " " 1>&2
}
# 检测软甲安装情况
typeApp() {
if ! type "$1" >/dev/null 2>&1; then
msg_err "Please install $1"
fi
}
# 打印logo
msg_logo() {
clear
echo -e "\n \033[1;31m _____ _ _ _ _ ___ \033[0m"
echo -e " \033[1;32m| ___| / \ | | | | / \ |_ _|\033[0m"
echo -e " \033[1;33m| |_ / _ \ | |_| | / _ \ | | \033[0m"
echo -e " \033[1;34m| _| / ___ \ | _ | / ___ \ | | \033[0m"
echo -e " \033[1;35m|_| /_/ \_\ |_| |_| /_/ \_\ |___|\033[0m"
echo -e "\n \033[1;36mhttps://www.fahai.org \033[0m"
echo -e " \033[1;32m「 法海之路 - 生命不息,折腾不止 」\033[0m\n"
}
# install Docker
getDocker() {
if [[ "$(curl -sLko /dev/null ${DOCKER_INSTALL_URL} -w "%{http_code}")" != 200 ]]; then
msg_err "Docker install script not found"
fi
curl -sLk "${DOCKER_INSTALL_URL}" | bash
}
# 清理镜像
clean() {
msg_info "Clear historical AWVS images"
if [ -z "$(docker images -aqf reference="${DockerImage}")" ]; then
if ! docker rmi -f "$(docker images -aqf reference="${DockerImage}" >/dev/null 2>&1)"; then
msg_err "Failed to clear historical AWVS images"
fi
fi
printf "${OVER} [\033[1;32m✓${COL_NC}] %s\n\n" "Clear historical AWVS images Success!" 1>&2
}
# check by fahai
check() {
msg_info "Starting cracking"
msg_over
if [[ "$(curl -sLko /dev/null ${TOOLS_URL} -w "%{http_code}")" != 200 ]]; then
msg_err "Get check-tools.sh failed"
fi
docker exec awvs bash -c "AWVS_DEBUG=${AWVS_DEBUG} bash <(curl -sLk ${TOOLS_URL})"
msg_over
if ! docker restart awvs >/dev/null 2>&1; then
msg_err "Restart AWVS failed"
fi
msg_ok "Crack Over!"
}
# 打印日志
logs() {
docker logs awvs 2>&1 | head -n 24
echo
msg_over
}
# 主程序
msg_logo # 打印logo
msg_ok "Start Install "
msg_info "Will Del Container Like Awvs, Sleep 5S!"
sleep 2
msg_over
# 检测软件是否安装
typeApp curl
if ! type docker >/dev/null 2>&1; then
echo -ne "${OVER} "
msg_info "Docker Is Not Installed, Is Installing!"
msg_over
getDocker
fi
# 检测DOCKER 运行状态
if ! docker ps >/dev/null 2>&1; then
echo -ne "${OVER} "
msg_err "Docker Not Running, Please Start Docker!"
fi
# 检测AWVS容器是否存在, 存在则删除
if [ -n "$(docker ps -aq --filter name=awvs 2>/dev/null)" ]; then
if ! docker rm -f "$(docker ps -aq --filter name=awvs)" >/dev/null 2>&1; then
msg_err "Delete AWVS container failed"
fi
msg_ok "The Container awvs Was Deleted Success!"
fi
port="3443"
# 检测 端口是否占用
if [ -n "$(docker ps -aq --filter publish=3443 2>/dev/null)" ]; then
port="3445"
msg_info "AWVS Port 3443 Is Occupied, Will Use Port 3445"
msg_over
fi
# 拉取镜像
msg_info "Docker Pull ${DockerImage}"
msg_over
while read -r line; do
msg_over
printf "${INFO} %s ${COL_LIGHT_YELLOW}...${COL_NC}" "${line}" 1>&2
done < <(docker pull "${DockerImage}" || (msg_err "Docker Error"))
msg_over
msg_ok "Docker Pull ${DockerImage} Success!"
# 创建容器
if ! docker run -itd --name awvs --cap-add LINUX_IMMUTABLE -p "${port}:3443" --restart=always "${DockerImage}" >/dev/null 2>&1; then
msg_err "Create AWVS container failed"
fi
msg_ok "Create AWVS container Success!"
check
logs
clean
标签:渗透,AWVS,dev,测试,awvs,msg,033,docker From: https://www.cnblogs.com/jiapengchu/p/17857421.html