针对 Acunetix AWVS扫描器开发的批量扫描脚本,支持log4j漏洞、SpringShell、SQL注入、XSS、弱口令等专项,支持联动xray、burp、w13scan等被动批量
-BugBounty
awvs14,15 Bugconfig
config.ini
AWVS 14SpringShell\log4j\CVE\Bug Bounty\SQL\XSS xrayburpw13scan
********************************************************************
1 urlAWVS
2
3 ()
4
:1
1
2
3 XSS
4 SQL
5
6 Crawl Only,config.ini
7
8
9 apache-log4j(log4j,awvs 14.6.211220100)
10 Bug Bounty
11 CVEPOC
12
13 Spring4ShellCVE-2022-22965
:?
AWVS14API
cooKie
xray
,w13scan
,burp
config.ini
:(),cookie
,docker
41 Support Scanning !Spring4Shell (CVE-2022-22965) !!!
docker pull xiaomimi8/docker-awvs-14.7.220401065
docker run -it -d -p 13443:3443 xiaomimi8/docker-awvs-14.7.220401065
Username:[email protected] password:Admin123
?() (ID