Home Explore Project
Register Sign In
lyq
/
AWIScan
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
AWIScan
/
lib
/
controller
/
engine.py

engine.py 5.3 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143 
  1. #!/usr/bin/env python3
    2. 

  2. # -*- coding: utf-8 -*-
    3. 

  3. 

  4. """
    5. 

  5. @Author: hywell
    6. 

  6. @Email: hywell.28@gmail.com
    7. 

  7. @Blog: iassas.com
    8. 

  8. @Date: 2019/10/16 23:38
    9. 

  9. """
    10. 

  10. 

  11. import asyncio
    12. 

  12. import aiodns
    13. 

  13. # import multiprocessing as mp
    14. 

  14. import traceback
    15. 

  15. import sys
    16. 

  16. 

  17. from lib.controller.aiodirscan import dirBrute
    18. 

  18. from lib.controller.aioportscan import portScan
    19. 

  19. from lib.controller.aiosubdomainscan import subDomainBrute
    20. 

  20. from lib.core.data import logger
    21. 

  21. from lib.core.options import TargetRegister
    22. 

  22. from lib.core.setting import CONF, DIR_FILE, DNS_SERVERS, DNS_SUB_FILE, DNS_SUB_FULL_FILE, TARGETS
    23. 

  23. from lib.parse.result import resultParse, save
    24. 

  24. 

  25. 

  26. async def scan(task_queue):
    27. 

  27.     while True:
    28. 

  28.         target = await task_queue.get()
    29. 

  29.         flag = target[0]
    30. 

  30.         current_target = target[1]
    31. 

  31.         results = []
    32. 

  32.         try:
    33. 

  33.             if flag == 1:
    34. 

  34.                 results = await portScan(current_target)
    35. 

  35.             elif flag == 2 and CONF.dns_servers:
    36. 

  36.                 results = await subDomainBrute(current_target)
    37. 

  37.             elif flag == 3:
    38. 

  38.                 results = await dirBrute(current_target)
    39. 

  39.         except Exception as e:
    40. 

  40.             errmsg = traceback.format_exc()
    41. 

  41.             if "NmapError" in errmsg:
    42. 

  42.                 TARGETS.ERROR.ip.append(current_target)
    43. 

  43.             else:
    44. 

  44.                 logger.error("[AWIscan] It's errmsg:%s" % errmsg)
    45. 

  45.             logger.warning("[AWIScan] %s look like failed " % current_target)
    46. 

  46.         finally:
    47. 

  47.             logger.info('[AWIScan] Async working IP: %d/%d Domain: %d/%d URL: %d/%d' % (
    48. 

  48.                 len(TARGETS.END.ip), len(TARGETS.IP), len(TARGETS.END.domain), len(TARGETS.DOMAIN),
    49. 

  49.                 len(TARGETS.END.url), len(TARGETS.URL)))
    50. 

  50.             if results:
    51. 

  51.                 # Parse the result, put it into the work queue.
    52. 

  52.                 resultParse(task_queue, target, results)
    53. 

  53.             task_queue.task_done()
    54. 

  54. 

  55. 

  56. async def control(base_targets):
    57. 

  57.     targets_queue = asyncio.Queue()
    58. 

  58.     # ip:[1, ip] domain:[2, domain] subDomain: [2, subDomain, domain] url_dir: [3, url_dir, url]
    59. 

  59.     for target in TargetRegister(base_targets):
    60. 

  60.         targets_queue.put_nowait(target)
    61. 

  61.     if targets_queue.qsize() == 0:
    62. 

  62.         logger.warning("[AWIScan] No targets found. Please load targets with [-i|-f] or verify target num")
    63. 

  63.         sys.exit()
    64. 

  64.     else:
    65. 

  65.         logger.info("[AWIScan] Target loading completed. Total %d targets" % (
    66. 

  66.                 len(TARGETS.IP) + len(TARGETS.DOMAIN) + len(TARGETS.URL)))
    67. 

  67. 

  68.     CONF.base_nums = targets_queue.qsize()
    69. 

  69. 

  70.     logger.info("[AWIScan] Set the tasks of async_nums: %d" % CONF.async_num)
    71. 

  71.     tasks = []
    72. 

  72.     for i in range(0, CONF.async_num):
    73. 

  73.         tasks.append(
    74. 

  74.             asyncio.create_task(scan(targets_queue))
    75. 

  75.         )
    76. 

  76.     await targets_queue.join()
    77. 

  77.     save()
    78. 

  78. 

  79. 

  80. def webEngine():
    81. 

  81.     for dir in open(DIR_FILE).readlines():
    82. 

  82.         dir = dir.strip()
    83. 

  83.         CONF.dir.append(dir)
    84. 

  84.     logger.info("[AWIScan] Dir loading completed. Total %d dir" % len(CONF.dir))
    85. 

  85. 

  86. 

  87. async def test_server(server):
    88. 

  88.     resolver = aiodns.DNSResolver(nameservers=[server])
    89. 

  89.     try:
    90. 

  90.         answers = await resolver.query('public-dns-a.baidu.com', "A")
    91. 

  91.         if answers[0].host != '180.76.76.76':
    92. 

  92.             raise Exception('[AWIScan] %s return incorrect DNS response' % server)
    93. 

  93.         else:
    94. 

  94.             try:
    95. 

  95.                 await resolver.query('test.bad.dns.iassas.com', "A")
    96. 

  96.                 with open('output/AWIScan/bad_dns_servers.txt', 'a') as f:
    97. 

  97.                     f.write(server + '\n')
    98. 

  98.                 logger.warning("[AWIScan] Bad DNS Server found %s" % server)
    99. 

  99.             except aiodns.error.DNSError as e:
    100. 

  100.                 if b"DNS server returned answer with no data" == e.args[1]:
    101. 

  101.                     CONF.dns_servers.append(server)
    102. 

  102.                 elif b"Timeout while contacting DNS servers" == e.args[1]:
    103. 

  103.                     logger.warning("[AWIScan] %s DNS Server test error. Please verify." % server)
    104. 

  104.         logger.info('[AWIScan] DNS Server %s < OK > Found %s' % (server.ljust(16), len(CONF.dns_servers)))
    105. 

  105.     except Exception as e:
    106. 

  106.         logger.warning("[AWIScan] DNS Server %s <Fail> Found %s" % (server.ljust(16), len(CONF.dns_servers)))
    107. 

  107. 

  108. 

  109. async def dnsEngine():
    110. 

  110.     tasks = []
    111. 

  111.     for server in open(DNS_SERVERS).readlines():
    112. 

  112.         server = server.strip()
    113. 

  113.         if server and not server.startswith('#'):
    114. 

  114.             tasks.append(
    115. 

  115.                 asyncio.create_task(test_server(server))
    116. 

  116.             )
    117. 

  117.     await asyncio.gather(*tasks)
    118. 

  118.     if CONF.dns_servers and (CONF.level == 1 or CONF.level == 2):
    119. 

  119.         with open(DNS_SUB_FILE) as f:
    120. 

  120.             for sub in f.readlines():
    121. 

  121.                 CONF.dns_sub.append(sub.strip())
    122. 

  122.         logger.info(
    123. 

  123.             "[AWIScan] DNS loading completed. Total %d DNS Server and %d sub" % (len(CONF.dns_servers),
    124. 

  124.                                                                                  len(CONF.dns_sub)))
    125. 

  125.     elif CONF.dns_servers and CONF.level == 3:
    126. 

  126.         with open(DNS_SUB_FULL_FILE) as f:
    127. 

  127.             for sub in f.readlines():
    128. 

  128.                 CONF.dns_sub.append(sub.strip())
    129. 

  129.         logger.info(
    130. 

  130.             "[AWIScan] DNS loading completed. Total %d DNS Server and %d sub" % (len(CONF.dns_servers),
    131. 

  131.                                                                                  len(CONF.dns_sub)))
    132. 

  132. 

  133. 

  134. def initEngine():
    135. 

  135.     asyncio.run(dnsEngine())
    136. 

  136.     webEngine()
    137. 

  137. 

  138. 

  139. def run(base_targets):
    140. 

  140.     initEngine()
    141. 

  141. 

  142.     asyncio.run(control(base_targets))
    143. 

  143.