49 lines
1.2 KiB
Python
49 lines
1.2 KiB
Python
|
import socket
|
||
|
|
import os
|
||
|
|
import sys
|
||
|
|
|
||
|
|
|
||
|
|
def retBanner(ip, port):
|
||
|
|
try:
|
||
|
|
socket.setdefaulttimeout(2)
|
||
|
|
s = socket.socket()
|
||
|
|
s.connect((ip, port))
|
||
|
|
banner = s.recv(1024)
|
||
|
|
return banner
|
||
|
|
except:
|
||
|
|
return
|
||
|
|
|
||
|
|
|
||
|
|
def checkVulns(banner, filename):
|
||
|
|
f = open(filename, "r")
|
||
|
|
for line in f.readlines():
|
||
|
|
if line.strip("\n") in str(banner):
|
||
|
|
print("[+] Server is vulnerable: %s " % banner.strip("\n"))
|
||
|
|
|
||
|
|
|
||
|
|
def main():
|
||
|
|
if len(sys.argv) == 2:
|
||
|
|
filename = sys.argv[1]
|
||
|
|
if not os.path.isfile(filename):
|
||
|
|
print("[-] " + filename + " does not exist.")
|
||
|
|
exit(0)
|
||
|
|
if not os.access(filename, os.R_OK):
|
||
|
|
print("[-] " + filename + " access denied.")
|
||
|
|
exit(0)
|
||
|
|
else:
|
||
|
|
print("[-] Usage: " + str(sys.argv[0]) + "<vuln filename")
|
||
|
|
exit(0)
|
||
|
|
|
||
|
|
portList = [21, 22, 25, 80, 110, 443]
|
||
|
|
for x in range(17, 18):
|
||
|
|
ip = "10.211.55." + str(x)
|
||
|
|
for port in portList:
|
||
|
|
banner = retBanner(ip, port)
|
||
|
|
if banner:
|
||
|
|
print(f"[+] {ip}: {banner}")
|
||
|
|
checkVulns(banner, filename)
|
||
|
|
|
||
|
|
|
||
|
|
if __name__ == "__main__":
|
||
|
|
main()
|