Open XTeam-Wing opened 3 weeks ago
测试代码
func TestEngine(t *testing.T) { engine, err := NewEngine() if err != nil { panic(err) } fmt.Println(engine.String()) client := &http.Client{ Transport: &http.Transport{ TLSClientConfig: &tls.Config{InsecureSkipVerify: true}, }, } resp, err := client.Get("https://www.aliyun.com") if err != nil { panic(err) } start := time.Now() content := httputils.ReadRaw(resp) frames, err := engine.DetectContent(content) if err != nil { return } println("耗时: " + time.Since(start).String()) fmt.Println(frames.String()) for _, f := range frames { fmt.Println("cpe: ", f.CPE(), "||||", f.Name, "||||", f.Version) } }
测试结果
工业控制产品:goby||elasticsearch:goby||map/reduce:goby||log4j2:goby||tengine:(fingers wappalyzer)||mongodb-数据库:goby||focus:flink||hsts:wappalyzer||postgresql:goby||oracle companies:goby||mysql:goby||易软天创-ranzhi-oa:goby||redis:goby
从结果来看wappalyzer的规则解析没问题,goby的误报比较严重。
应该是数据库相关的规则问题
XTeam-Wing
commented
3 weeks ago XTeam-Wing
commented
3 weeks ago
测试代码
测试结果
从结果来看wappalyzer的规则解析没问题,goby的误报比较严重。