forked from knownsec/pocsuite3
-
Notifications
You must be signed in to change notification settings - Fork 0
/
pocsuite.ini
133 lines (127 loc) · 3.01 KB
/
pocsuite.ini
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
[Target]
; target url/cidr (e.g. "http://www.site.com/vuln.php?id=1")
url = https://www.google.com
; scan multiple targets given in a textual file (one per line)
url_file =
; add additional port to each target ([proto:]port, e.g. 8080,https:10000)
ports =
; Skip target's port, only use additional port
skip_target_port =
; load poc file from local or remote from seebug website
poc =
; filter poc by keyword, e.g. cve-2021-22005
poc_keyword = cve-2021-41773
[Mode]
; run poc with verify mode
; run poc with attack mode
; run poc with shell mode
mode = verify
[Request]
; http cookie header value
cookie =
; http host header value
host =
; http referer header value
referer =
; http user-agent header value (default random)
agent =
; use a proxy to connect to the target url (protocol://host:port)
proxy =
; proxy authentication credentials (name:password)
proxy_cred =
; seconds to wait before timeout connection (default 10)
timeout =
; time out retrials times (default 0)
retry =
; delay between two request of one thread
delay =
; extra headers (e.g. "key1: value1\nkey2: value2")
headers =
[Account]
; ceye token
ceye_token =
; oob server
oob_server =
; oob token
oob_token =
; seebug token
seebug_token =
; zoomeye token
zoomeye_token =
; Shodan token
shodan_token =
; fofa user
fofa_user =
; fofa token
fofa_token =
; quake token
quake_token =
; hunter token
hunter_token =
; Censys uid
censys_uid =
; Censys secret
censys_secret =
[Modules]
; zoomeye dork used for search
dork =
; zoomeye dork used for search
dork_zoomeye =
; shodan dork used for search
dork_shodan =
; censys dork used for search
dork_censys =
; fofa dork used for search
dork_fofa =
; quake dork used for search
dork_quake =
; hunter dork used for search
dork_hunter =
; max page used in search api
max_page = 1
; search type used in zoomeye api, web or host
search_type = host
; seebug keyword used for search
vul_keyword =
; seebug ssvid number for target poc
ssvid =
; connect back host for target poc in shell mode
connect_back_host =
; connect back port for target poc in shell mode
connect_back_port =
; enable TLS listener in shell mode
enable_tls_listener = False
; compare popular web search engines
comparison = False
; whether dork is in base64 format
dork_b64 = False
[Optimization]
; output file to write (json lines format)
output_path =
; load plugins to execute
plugins =
; user defined poc scripts path
pocs_path =
; max number of concurrent network requests (default 150)
threads =
; automatically choose defaut choice without asking
batch =
; check install_requires
check_requires = False
; activate quiet mode, working without logger
quiet = False
; hiden sensitive information when published to the network
ppt = False
; use scapy capture flow
pcap = False
; export suricata rules, default export request and response
rule = False
; only export suricata request rule
rule_req = False
; specify the name of the export rule file
rule_filename =
; Disable URL protocol correction and honeypot check
no_check =
[Poc options]
; show all definition options
show_options =