Scanner | Scripting and security

Servidor web con el servicio que permite leer un código QR

# Leer un código QR
# Las funciones JavaScript se han obtenido de webqr.com

# Descargar las funciones JavaScript al equipo
#Start-BitsTransfer "https://webqr.com/webqr.js"
#Start-BitsTransfer "https://webqr.com/llqrcode.js"

$routes = @{
    
    # Cargar las funciones JavaScript
    # Es necesario quitar el caracter // porque provoca un error al leer el fichero JS

    "/webqr.js" = { return (gc ./webqr.js) | % {if(!($_ -match "// " -or $_ -match "//document" )){$_}} }

    "/llqrcode.js" = { return (gc ./llqrcode.js) }

    # Cargar el código HTML

    "/" = { return '<html>
<head>
<title>QR Code scanner</title>

<style type="text/css">
body{
    width:100%;
    text-align:center;
}
#main{
    margin: 15px auto;
    background:white;
    overflow: auto;
	width: 100%;
}
#header{
    background:white;
    margin-bottom:15px;
}
#mainbody{
    background: white;
    width:100%;
	display:none;
}

#qr-canvas{
    display:none;
}

#mp1{
    text-align:center;
    font-size:35px;
}
#imghelp{
    position:relative;
    left:0px;
    top:-160px;
    z-index:100;
    font:18px arial,sans-serif;
    background:#f0f0f0;
	margin-left:35px;
	margin-right:35px;
	padding-top:10px;
	padding-bottom:10px;
	border-radius:20px;
}
.selector{
    margin:0;
    padding:0;
    cursor:pointer;
    margin-bottom:-5px;
}
#outdiv
{
    width:320px;
    height:240px;
	border: solid;
	border-width: 3px 3px 3px 3px;
}
#result{
    border: solid;
	border-width: 1px 1px 1px 1px;
	padding:20px;
	width:70%;
}

.tsel{
    padding:0;
}

</style>

<script type="text/javascript" src="llqrcode.js"></script>
<script type="text/javascript" src="webqr.js"></script>

</head>

<body>
<div id="main">
<div id="header">
<p id="mp1">QR Code scanner</p>
</div>
<div id="mainbody">
<table class="tsel" border="0" width="100%">
<tr>
<td valign="top" align="center" width="50%">
<table class="tsel" border="0">
<tr>
<td><div class="selector" onclick="setimg()" align="right"/>Scanner</td></tr>
<tr><td colspan="2" align="center">
<div id="outdiv">
</div></td></tr>
</table>
</td>
</tr>
<tr><td colspan="3" align="center">
<div id="result"></div>
</td></tr>
</table>
</div>
</div>
<canvas id="qr-canvas" width="800" height="600"></canvas>
<script type="text/javascript">load();</script>
</body>

</html>' }

}

$url = 'http://localhost:8080/'
$listener = New-Object System.Net.HttpListener
$listener.Prefixes.Add($url)
$listener.Start()

Write-Host "Funcionando $url..."

while ($listener.IsListening)
{
    $context = $listener.GetContext()
    $requestUrl = $context.Request.Url
    $con
    $response = $context.Response

    Write-Host ''
    Write-Host "Petición: $requestUrl"

    $localPath = $requestUrl.LocalPath
    $route = $routes.Get_Item($requestUrl.LocalPath)

    if ($route -eq $null)
    {
        $response.StatusCode = 404
    }
    else
    {
        $content = & $route
        $buffer = [System.Text.Encoding]::UTF8.GetBytes($content)
        $response.ContentLength64 = $buffer.Length
        $response.OutputStream.Write($buffer, 0, $buffer.Length)
    }
    
    $response.Close()

    $responseStatus = $response.StatusCode
    Write-Host "Respuesta: $responseStatus"
}

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

# Leer un código QR

# Las funciones JavaScript se han obtenido de webqr.com

# Descargar las funciones JavaScript al equipo

#Start-BitsTransfer "https://webqr.com/webqr.js"

#Start-BitsTransfer "https://webqr.com/llqrcode.js"

$routes = @{

# Cargar las funciones JavaScript

# Es necesario quitar el caracter // porque provoca un error al leer el fichero JS

"/webqr.js" = { return (gc ./webqr.js) | % {if(!($_ -match "// " -or $_ -match "//document" )){$_}} }

"/llqrcode.js" = { return (gc ./llqrcode.js) }

# Cargar el código HTML

"/" = { return '<html>

<head>

<title>QR Code scanner</title>

body{

width:100%;

text-align:center;

}

#main{

margin: 15px auto;

background:white;

overflow: auto;

width: 100%;

}

#header{

background:white;

margin-bottom:15px;

}

#mainbody{

background: white;

width:100%;

display:none;

}

#qr-canvas{

display:none;

}

#mp1{

text-align:center;

font-size:35px;

}

#imghelp{

position:relative;

left:0px;

top:-160px;

z-index:100;

font:18px arial,sans-serif;

background:#f0f0f0;

margin-left:35px;

margin-right:35px;

padding-top:10px;

padding-bottom:10px;

border-radius:20px;

}

.selector{

margin:0;

padding:0;

cursor:pointer;

margin-bottom:-5px;

}

#outdiv

{

width:320px;

height:240px;

border: solid;

border-width: 3px 3px 3px 3px;

}

#result{

border: solid;

border-width: 1px 1px 1px 1px;

padding:20px;

width:70%;

}

.tsel{

padding:0;

}

</style>

</head>

<body>

<p id="mp1">QR Code scanner</p>

</div>

<tr>

<tr>

<td><div class="selector" onclick="setimg()" align="right"/>Scanner</td></tr>

</div></td></tr>

</table>

</td>

</tr>

</td></tr>

</table>

</div>

</body>

</html>' }

}

$url = 'http://localhost:8080/'

$listener = New-Object System.Net.HttpListener

$listener.Prefixes.Add($url)

$listener.Start()

Write-Host "Funcionando $url..."

while ($listener.IsListening)

{

$context = $listener.GetContext()

$requestUrl = $context.Request.Url

$con

$response = $context.Response

Write-Host ''

Write-Host "Petición: $requestUrl"

$localPath = $requestUrl.LocalPath

$route = $routes.Get_Item($requestUrl.LocalPath)

if ($route -eq $null)

{

$response.StatusCode = 404

}

else

{

$content = & $route

$buffer = [System.Text.Encoding]::UTF8.GetBytes($content)

$response.ContentLength64 = $buffer.Length

$response.OutputStream.Write($buffer, 0, $buffer.Length)

}

$response.Close()

$responseStatus = $response.StatusCode

Write-Host "Respuesta: $responseStatus"

}

Petición desde Chrome

Security

Nikto

13/01/201713/04/2017

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6700 potentially dangerous files/programs, checks for outdated versions of over 1250 servers, and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated. For more information Install (recommended): Run from a git repo – https://github.com/sullo/nikto Download (recommended): Latest GitHub Release (zip) Stable Release: Version 2.1.5 bz2 or […]

PowerShell Security

Introducción a Metasploit con Powershell (Nmap)

02/01/201706/03/2017

#Realizado por Julián Martínez

#Nmap (Network Mapper) is a security scanner, originally written by Gordon Lyon (also known by his pseudonym Fyodor Vaskovich), used to discover hosts and services on a computer network, thus building a "map" of the network.

#Hacer ping a un rango de direcciones IP con Nmap para detectar las que están usadas por un dispositivo
130..135 | %{nmap -sP 192.168.25.$_}

#Hacer ping con Nmap y saber que sistema operativo tiene el dispositivo de esa IP 
nmap -O 192.168.25.132

#Realizado por Julián Martínez

#Nmap (Network Mapper) is a security scanner, originally written by Gordon Lyon (also known by his pseudonym Fyodor Vaskovich), used to discover hosts and services on a computer network, thus building a "map" of the network.

#Hacer ping a un rango de direcciones IP con Nmap para detectar las que están usadas por un dispositivo

130..135 | %{nmap -sP 192.168.25.$_}

#Hacer ping con Nmap y saber que sistema operativo tiene el dispositivo de esa IP

nmap -O 192.168.25.132

Radio

Quick start guide (RTL-SDR software defined radio)

02/01/201718/01/2017

This link is a guide aimed at helping anyone set up a cheap radio scanner based on the RTL-SDR software defined radio as fast as possible on a Windows system. If you have any trouble during the installation, please see the troubleshooting guide further down the page. We also have brief instructions for getting started on Linux and OSX at the end of this page. Please note that the RTL-SDR is not a plug and play device. You will need to have sufficient skills to perform basic PC operations such as unzipping files, installing software, moving and copying files and have the motivation to learn new software. More […]

PowerShell Security Web scraping

SiteCheck Results (Malware and Security Scanner)

22/07/201620/07/2016

$url="https://sitecheck.sucuri.net/results/www.jesusninoc.com/"
$result = Invoke-WebRequest $url
$result.AllElements | Where class -eq “col-12 col-sm-12 col-lg-12” | %{$_.innerText}

$url="https://sitecheck.sucuri.net/results/www.jesusninoc.com/"

$result = Invoke-WebRequest $url

$result.AllElements | Where class -eq “col-12 col-sm-12 col-lg-12” | %{$_.innerText}

Database PowerShell Security Vulnerability

Posh-SecModule

13/08/201511/02/2017

This module is a PowerShell v3 only module at the moment. The module is a collection of functions that I have found usefull in my day to day work as a security professional. The functions are broken in to functionality: Discovery: Perform network discovery. Parse: Parsers for Nmap, DNSRecon and other type of output files from security tools. PostExploitation: Functions to help in performing post exploitation tasks. Registry: Collection of functions for manipulating the registry in remote hosts using WMI. Nessus: Collection of assemblies and functions for automating the Nessus Vulnerability Scanner. Utilities: General purpose functions. Audit: Functions that may […]

Java Network

Analizar direcciones IP para detectar puertos abiertos (versión 2)

02/07/201515/12/2017

import java.net.*;
import java.io.*;

public class ScannerIP {
	public static void main(String[] args) {
	//Introducir como argumento de entrada las direcciones IP
		for (int i = 0; i < args.length; i++) {
			//Comprobar puertos del 80 al 90
			for (int port = 80; port < 90; port++) {
				try {
					Socket SocketIP = new Socket(args[i], port);
					System.out.println("Conectar a " + SocketIP.getInetAddress() + " en el puerto " + SocketIP.getPort() + " desde el puerto " + SocketIP.getLocalPort() + " en " + SocketIP.getLocalAddress());
					SocketIP.close();
					} // end try
				catch (UnknownHostException ex) {
					System.err.println(ex);
					}
				catch (SocketException ex) {
					System.err.println(ex);
					}
				catch (IOException ex) {
					System.err.println(ex);
					}
				} // fin for IP
			} // fin for port
		} // fin main
	} // fin ScannerIP

import java.net.*;

import java.io.*;

public class ScannerIP {

public static void main(String[] args) {

//Introducir como argumento de entrada las direcciones IP

for (int i = 0; i < args.length; i++) {

//Comprobar puertos del 80 al 90

for (int port = 80; port < 90; port++) {

try {

Socket SocketIP = new Socket(args[i], port);

System.out.println("Conectar a " + SocketIP.getInetAddress() + " en el puerto " + SocketIP.getPort() + " desde el puerto " + SocketIP.getLocalPort() + " en " + SocketIP.getLocalAddress());

SocketIP.close();

} // end try

catch (UnknownHostException ex) {

System.err.println(ex);

}

catch (SocketException ex) {

System.err.println(ex);

}

catch (IOException ex) {

System.err.println(ex);

}

} // fin for IP

} // fin for port

} // fin main

} // fin ScannerIP

Java Network

Analizar direcciones IP para detectar puertos abiertos (versión 1)

02/07/201515/12/2017

import java.net.*;
import java.io.*;

public class ScannerIP {
	public static void main(String[] args) {
		//Introducir como argumento de entrada las direcciones IP
		for (int i = 0; i < args.length; i++) {
			try {
				Socket SocketIP = new Socket(args[i], 80);
				System.out.println("Conectar a " + SocketIP.getInetAddress() + " en el puerto " + SocketIP.getPort() + " desde el puerto " + SocketIP.getLocalPort() + " en " + SocketIP.getLocalAddress());
				SocketIP.close();
				} // end try
			catch (UnknownHostException ex) {
				System.err.println(ex);
				}
			catch (SocketException ex) {
				System.err.println(ex);
				}
			catch (IOException ex) {
				System.err.println(ex);
				}
			} // fin for
		} // fin main
	} // fin ScannerIP

import java.net.*;

import java.io.*;

public class ScannerIP {

public static void main(String[] args) {

//Introducir como argumento de entrada las direcciones IP

for (int i = 0; i < args.length; i++) {

try {

Socket SocketIP = new Socket(args[i], 80);

System.out.println("Conectar a " + SocketIP.getInetAddress() + " en el puerto " + SocketIP.getPort() + " desde el puerto " + SocketIP.getLocalPort() + " en " + SocketIP.getLocalAddress());

SocketIP.close();

} // end try

catch (UnknownHostException ex) {

System.err.println(ex);

}

catch (SocketException ex) {

System.err.println(ex);

}

catch (IOException ex) {

System.err.println(ex);

}

} // fin for

} // fin main

} // fin ScannerIP

Security Web

Angry IP scanner

12/03/201517/02/2016

Angry IP scanner is a very fast IP address and port scanner. It can scan IP addresses in any range as well as any their ports. It is cross-platform and lightweight. Not requiring any installations, it can be freely copied and used anywhere. Angry IP scanner simply pings each IP address to check if it’s alive, then optionally it is resolving its hostname, determines the MAC address, scans ports, etc. The amount of gathered data about each host can be extended with plugins. It also has additional features, like NetBIOS information (computer name, workgroup name, and currently logged in Windows […]

Security

Nmap Security Scanner

10/03/201526/11/2015

Nmap (“Network Mapper”) is a free and open source (license) utility for network discovery and security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. It was designed to rapidly scan large networks, but […]

Older Posts