Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func PerformCVEScan ¶ added in v0.0.124
func PerformCVEScan(ctx context.Context, config *pentestfern.PentestCveConfig) *pentestfern.PentestCveReport
PerformCVEScan executes CVE scanning. It runs two execution paths and merges their results into a single PentestCveReport:
- The nuclei engine, filtered by the same --years and --protocol the user supplies on the CLI.
- Custom Go-native detectors registered in internal/pentest/cve, filtered by the same flags so behavior is consistent across both paths.
Both paths produce []*nuclei.NucleiTargetInfo, so the merged report is identical in shape regardless of which detector type produced an attempt.
Types ¶
type Engine ¶
type Engine struct{}
Engine provides the main orchestration for pentest spray operations. Service-specific pentest operations are handled by their respective packages (smb, ssh, telnet, ldap, kerberos, msrpc, winrm, ftp).
func (*Engine) RunSprayPassword ¶ added in v0.0.51
func (e *Engine) RunSprayPassword(ctx context.Context, config *pentestfern.PentestSprayConfig) (*pentestfern.PentestSprayReport, error)
RunSprayPassword executes password spraying attacks against specified targets
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
Package cve provides an adapter framework for non-nuclei CVE detection.
|
Package cve provides an adapter framework for non-nuclei CVE detection. |
|
detectors
CVE-2017-0144 (EternalBlue / MS17-010) detector for the pentest cve custom-detector adapter.
|
CVE-2017-0144 (EternalBlue / MS17-010) detector for the pentest cve custom-detector adapter. |
|
ftpclient
Package ftpclient is a minimal FTP client that supports both passive (EPSV/PASV) and active (PORT/EPRT) data connection modes, with explicit context propagation for connect and data transfer operations.
|
Package ftpclient is a minimal FTP client that supports both passive (EPSV/PASV) and active (PORT/EPRT) data connection modes, with explicit context propagation for connect and data transfer operations. |
|
Package mongodb provides MongoDB penetration testing functionality
|
Package mongodb provides MongoDB penetration testing functionality |
|
Package postgres implements PostgreSQL credential spray and query execution.
|
Package postgres implements PostgreSQL credential spray and query execution. |
|
Package rdp implements pentest operations for the Remote Desktop Protocol (RDP).
|
Package rdp implements pentest operations for the Remote Desktop Protocol (RDP). |
|
bluekeep
Package bluekeep implements the CVE-2019-0708 (BlueKeep) precondition validation against Windows RDP servers.
|
Package bluekeep implements the CVE-2019-0708 (BlueKeep) precondition validation against Windows RDP servers. |
|
eternalblue
Package eternalblue implements the CVE-2017-0144 (EternalBlue / MS17-010) precondition validation against Windows SMB servers.
|
Package eternalblue implements the CVE-2017-0144 (EternalBlue / MS17-010) precondition validation against Windows SMB servers. |
|
Package snmp implements active SNMP pentest operations (write-access probing).
|
Package snmp implements active SNMP pentest operations (write-access probing). |
|
Package ssh — FILE_TRANSFER action implementation.
|
Package ssh — FILE_TRANSFER action implementation. |
Click to show internal directories.
Click to hide internal directories.