search

chainreactors / gogo

面向红队的, 高度可控可拓展的自动化引擎
https://chainreactors.github.io/wiki/gogo/
GNU General Public License v3.0
1.47k stars 144 forks source link

新版本扫描报错 #86

Closed lintstar closed 3 months ago

lintstar commented 3 months ago 
./gogo -i 192.168.8.11 -ev -p 22 -o color --debug
[warn] cannot create logfile, err:open .sock.lock: permission denied
[*] gogo: , 2024-07-17 15:47.43
[*] Current goroutines: 1000, Version Level: 1,Exploit: auto, PortSpray: false , 2024-07-17 15:47.43
[*] Start task 192.168.8.11 ,total ports: 1 , mod: default , 2024-07-17 15:47.43
[*] ports: 22 , 2024-07-17 15:47.43
[*] Default Scan is expected to take 4 seconds , 2024-07-17 15:47.43
[debug] request https://192.168.8.11:22 , Get "https://192.168.8.11:22": tls: first record does not look like a TLS handshake
[debug] active detect: 192.168.8.11:22, data: "info\n"
[debug] active detect: 192.168.8.11:22, data: "JRMI\x00\x02K"
[debug] active detect: 192.168.8.11:22, data: "\x03\x00\x00*%\xe0\x00\x00\x00\x00\x00Cookie: mstshash=nmap\r\n\x01\x00\b\x00\x03\x00\x00\x00"
[debug] active detect: 192.168.8.11:22, data: "\x12\x01\x004\x00\x00\x00\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\f\x03\x00(\x00\x04\xff\b\x00\x01U\x00\x00\x00MSSQLServer\x00H\x0f\x00\x00"
[debug] active detect: 192.168.8.11:22, data: "\x05\x01\x02"
[debug] active detect: 192.168.8.11:22, data: "\x04\x01\x00"
[debug] active detect: 192.168.8.11:22, data: "CNXN\x01\x00\x00\x01\x00\x00\x10\x00Ú\x00\x00\x00ÕT\x00\x00¼±§±host::\x00"
[debug] active detect: 192.168.8.11:22, data: "envi\n"
[debug] active detect: 192.168.8.11:22, data: "\x00\x00\x00\xa4\xffSMBr\x00\x00\x00\x00\b\x01@\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x06\x00\x00\x01\x00\x00\x81\x00\x02PC NETWORK PROGRAM 1.0\x00\x02MICROSOFT NETWORKS 1.03\x00\x02MICROSOFT NETWORKS 3.0\x00\x02LANMAN1.0\x00\x02LM1.2X002\x00\x02Samba\x00\x02NT LANMAN 1.0\x00\x02NT LM 0.12\x00"
[debug] active detect: 192.168.8.11:22, data: "stats\n"
[debug] active detect: 192.168.8.11:22, data: "JDWP-Handshake\\n"
[debug] active detect: 192.168.8.11:22, data: "\x00Z\x00\x00\x01\x00\x00\x00\x016\x01,\x00\x00\b\x00\x7f\xff\x7f\b\x00\x00\x00\x01\x00 \x00:\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x004\xe6\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00(CONNECT_DATA=(COMMAND=version))"
[-] scan 192.168.8.11:22 unexcept error, runtime error: invalid memory address or nil pointer dereference , 2024-07-17 15:47.44
panic: runtime error: invalid memory address or nil pointer dereference [recovered]
    panic: runtime error: invalid memory address or nil pointer dereference [recovered]
    panic: sync: negative WaitGroup counter
[signal SIGSEGV: segmentation violation code=0x1 addr=0x8 pc=0x12ed18c]

goroutine 68 [running]:
sync.(*WaitGroup).Add(0xc0000a87c0?, 0x1063ab3?)
    /usr/local/go/src/sync/waitgroup.go:62 +0xd8
sync.(*WaitGroup).Done(...)
    /usr/local/go/src/sync/waitgroup.go:87
github.com/chainreactors/gogo/v2/internal/core.DefaultMod.func2({0xc0009958b8?, 0x13818a0?})
    /Users/Tools/ATTCK/gogo/v2/internal/core/core.go:85 +0x37
github.com/panjf2000/ants/v2.(*goWorkerWithFunc).run.func1.1()
    /Users/Tools/go/pkg/mod/github.com/panjf2000/ants/v2@v2.9.1/worker_func.go:54 +0x6d
panic({0x1364ee0?, 0x16f8a80?})
    /usr/local/go/src/runtime/panic.go:914 +0x21f
github.com/chainreactors/gogo/v2/internal/plugin.Dispatch.func1()
    /Users/Tools/ATTCK/gogo/v2/internal/plugin/Dispatch.go:32 +0x154
panic({0x1364ee0?, 0x16f8a80?})
    /usr/local/go/src/runtime/panic.go:914 +0x21f
github.com/chainreactors/gogo/v2/pkg.(*Result).GuessFramework(0xc000995ed0)
    /Users/Tools/ATTCK/gogo/v2/pkg/result.go:107 +0x2c
github.com/chainreactors/gogo/v2/internal/plugin.Dispatch(0xc000995ed0)
    /Users/Tools/ATTCK/gogo/v2/internal/plugin/Dispatch.go:103 +0x42e
github.com/chainreactors/gogo/v2/internal/core.DefaultMod.func1({0x1394d40?, 0xc000712000?})
    /Users/Tools/ATTCK/gogo/v2/internal/core/core.go:56 +0x31b
github.com/panjf2000/ants/v2.(*goWorkerWithFunc).run.func1()
    /Users/Tools/go/pkg/mod/github.com/panjf2000/ants/v2@v2.9.1/worker_func.go:67 +0x97
created by github.com/panjf2000/ants/v2.(*goWorkerWithFunc).run in goroutine 1
    /Users/Tools/go/pkg/mod/github.com/panjf2000/ants/v2@v2.9.1/worker_func.go:48 +0x5c

上个版本是正常的

./gogo -i 192.168.8.11 -ev -p 22 -o color --debug
[*] gogo: , 2024-07-17 15:49.16
[*] Current goroutines: 1000, Version Level: 1,Exploit: auto, PortSpray: false , 2024-07-17 15:49.16
[*] Start task 192.168.8.11 ,total ports: 1 , mod: default , 2024-07-17 15:49.16
[*] ports: 22 , 2024-07-17 15:49.16
[*] Default Scan is expected to take 4 seconds , 2024-07-17 15:49.16
[debug] request https://192.168.8.11:22 , Get "https://192.168.8.11:22": tls: first record does not look like a TLS handshake
[debug] active detect: 192.168.8.11:22, data: "envi\n"
[debug] active detect: 192.168.8.11:22, data: "JRMI\x00\x02K"
[debug] active detect: 192.168.8.11:22, data: "\x00\x00\x00\xa4\xffSMBr\x00\x00\x00\x00\b\x01@\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x06\x00\x00\x01\x00\x00\x81\x00\x02PC NETWORK PROGRAM 1.0\x00\x02MICROSOFT NETWORKS 1.03\x00\x02MICROSOFT NETWORKS 3.0\x00\x02LANMAN1.0\x00\x02LM1.2X002\x00\x02Samba\x00\x02NT LANMAN 1.0\x00\x02NT LM 0.12\x00"
[debug] active detect: 192.168.8.11:22, data: "JDWP-Handshake\\n"
[debug] active detect: 192.168.8.11:22, data: "CNXN\x01\x00\x00\x01\x00\x00\x10\x00Ú\x00\x00\x00ÕT\x00\x00¼±§±host::\x00"
[debug] active detect: 192.168.8.11:22, data: "\x03\x00\x00*%\xe0\x00\x00\x00\x00\x00Cookie: mstshash=nmap\r\n\x01\x00\b\x00\x03\x00\x00\x00"
[debug] active detect: 192.168.8.11:22, data: "\x05\x01\x02"
[debug] active detect: 192.168.8.11:22, data: "\x04\x01\x00"
[debug] active detect: 192.168.8.11:22, data: "\x00Z\x00\x00\x01\x00\x00\x00\x016\x01,\x00\x00\b\x00\x7f\xff\x7f\b\x00\x00\x00\x01\x00 \x00:\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x004\xe6\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00(CONNECT_DATA=(COMMAND=version))"
[debug] active detect: 192.168.8.11:22, data: "info\n"
[debug] active detect: 192.168.8.11:22, data: "\x12\x01\x004\x00\x00\x00\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\f\x03\x00(\x00\x04\xff\b\x00\x01U\x00\x00\x00MSSQLServer\x00H\x0f\x00\x00"
[debug] active detect: 192.168.8.11:22, data: "stats\n"
[+] tcp://192.168.8.11:22           ssh:guess    [open] SSH-2.0-OpenS
[*] Alived: 1, Total: 1 , 2024-07-17 15:49.17
[*] Time consuming: 204.601086ms , 2024-07-17 15:49.17
M09Ic commented 3 months ago

你的版本好像是本地编译的,checkout到v2.13.2应该不存在报错.