GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → chennqqi → Godnslog

chennqqi / Godnslog

Licence: apache-2.0
An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability

Programming Languages

go
31211 projects - #10 most used programming language

Labels

vulnerabilityxssrce

Projects that are alternatives of or similar to Godnslog

Blackwidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+415.7%)
Mutual labels:  vulnerability, xss, rce
Penetration testing poc
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Stars: ✭ 3,858 (+2143.02%)
Mutual labels:  xss, rce
Application Security Engineer Interview Questions
Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
Stars: ✭ 267 (+55.23%)
Mutual labels:  vulnerability, xss
Hackerone Reports
Top disclosed reports from HackerOne
Stars: ✭ 458 (+166.28%)
Mutual labels:  xss, rce
Phpvuln
Audit tool to find common vulnerabilities in PHP source code
Stars: ✭ 146 (-15.12%)
Mutual labels:  vulnerability, xss
SQL-XSS
A few SQL and XSS attack tools
Stars: ✭ 29 (-83.14%)
Mutual labels:  xss, vulnerability
Gowapt
Go Web Application Penetration Test
Stars: ✭ 300 (+74.42%)
Mutual labels:  vulnerability, xss
APSoft-Web-Scanner-v2
Powerful dork searcher and vulnerability scanner for windows platform
Stars: ✭ 96 (-44.19%)
Mutual labels:  xss, vulnerability
Uxss Db
🔪Browser logic vulnerabilities ☠️
Stars: ✭ 565 (+228.49%)
Mutual labels:  vulnerability, xss
V3n0m Scanner
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Stars: ✭ 847 (+392.44%)
Mutual labels:  vulnerability, xss
Hacker101
Source code for Hacker101.com - a free online web and mobile security class.
Stars: ✭ 12,246 (+7019.77%)
Mutual labels:  xss, vulnerability
XSS-Cheatsheet
XSS Cheatsheet - A collection of XSS attack vectors https://xss.devwerks.net/
Stars: ✭ 26 (-84.88%)
Mutual labels:  xss, vulnerability
SecExample
JAVA 漏洞靶场 (Vulnerability Environment For Java)
Stars: ✭ 228 (+32.56%)
Mutual labels:  rce, vulnerability
Commodity Injection Signatures
Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
Stars: ✭ 267 (+55.23%)
Mutual labels:  xss, rce
PastebinMarkdownXSS
XSS in pastebin.com and reddit.com via unsanitized markdown output
Stars: ✭ 84 (-51.16%)
Mutual labels:  xss, vulnerability
Javacodeaudit
Getting started with java code auditing 代码审计入门的小项目
Stars: ✭ 289 (+68.02%)
Mutual labels:  xss, rce
spring-boot-upload-file-lead-to-rce-tricks
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
Stars: ✭ 517 (+200.58%)
Mutual labels:  rce, vulnerability
PwnX.py
🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit
Stars: ✭ 30 (-82.56%)
Mutual labels:  rce, vulnerability
Xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Stars: ✭ 6,218 (+3515.12%)
Mutual labels:  vulnerability, xss
Cazador unr
Hacking tools
Stars: ✭ 95 (-44.77%)
Mutual labels:  xss, rce
View All Similar Projects ➔

GODNSLOG

A dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability

English Doc | 中文文档

features

  • DNSLOG
  • HTTPLGO
  • Rebinding
  • Push (callback)
  • Multi-user
  • dockerlized
  • python/golang client sdk
  • as a standard name resolve service with support A,CNAME,TXT,MX

DNSLOG

super admin user: admin password will be showed in console logs when first run. you can change it by subcommand resetpw

HTTPLOG

build frontend

requirements:

yarn

cd frontend
yarn install
yarn build

build backend

requirements:

golang >= 1.13.0

go build

docker build

docker build -t "user/godnslog" .

For Chinese user:

docker build -t "user/godnslog" -f DockerfileCN .

RUN

i. Register your domain, eg: example.com Set your DNS Server point to your host, eg: ns.example.com => 100.100.100.100 Some registrar limit set to NS host, your can set two ns host point to only one address. Some registrar to ns host must be different ip address, you can set one to a fake addresss and then change to the same addresss

ii. self build

docker run -p80:8080 -p53:53/udp "user/godnslog"  serve -domain yourdomain.com -4 100.100.100.100

or use dockerhub

docker pull "sort/godnslog"
docker run -p80:8080 -p53:53/udp "sort/godnslog" serve -domain yourdomain.com -4 100.100.100.100

iii. access http://100.100.100.100

Doc

guest/guest123

introduce payload api rebiding resolve

Follow me

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].