神兵利器 | HW常见OA利用工具
2023-2-16 08:31:4 Author: 天驿安全(查看原文) 阅读量:586 收藏

  • 常见OA漏洞利用检测工具

  • Tools-1

  • Tools-2

  • Tools-3

后台回复tools,获取工具。

常见OA漏洞利用检测工具

攻防演练里最重要的环节莫过于信息收集,熟话说,要想打点打得好,信息收集少不了。

攻防演练中最常见的就是各个公司的oa系统。如果能拿下oa系统,便是一个好的开端。

Tools-1

集成致远、蓝凌、用友、通达、万户多个OA的利用工具.

支持漏洞如下:

SeeyonOA_Session_Divulge_Upload_Getshell漏洞 
SeeyonOA_Fastjson_SursenServlet_Rce漏洞 
SeeyonOA_Fastjson_ChangeLocale_Rce漏洞 
SeeyonOA_ajaxAction_Upload_GetShell漏洞 
SeeyonOA_A8_Htmlofficeservlet_Rce漏洞 
SeeyonOA_A6_InitDataAssess_Divulge漏洞 
SeeyonOA_A6_Setextno_Sqlinjection漏洞 
SeeyonOA_A6_DownExcelBeanServlet漏洞 
SeeyonOA_A6_CreateMysql_Divulge漏洞 
SeeyonOA_GetSessionList_Divulge漏洞 
SeeyonOA_Webmail_FileDownLoad漏洞 
SeeyonOA_Session_Divulge漏洞 
SeeyonOA_A8_Information漏洞 
WeaverOA_E_cology_WorkflowServiceXml_Rce漏洞 
WeaverOA_Weaver_common_Ctrl_FileUpload漏洞 
WeaverOA_E_Cology_getSqlData_SqInjection漏洞 
WeaverOA_E_Cology_LoginSSO_Sqlinjection漏洞 
WeaverOA_E_Office_Upload_Getshell漏洞 
WeaverOA_E_Cology_DBconfigReader漏洞 
WeaverOA_Mysql_config_Information漏洞 
WeaverOA_E_Bridge_任意文件读取漏洞 
WeaverOA_V9_Upload_Getshell漏洞 
WeaverOA_E_Mobile_Ongl_Rce漏洞 
WeaverOA_V8_Sqlinjection漏洞 
TongdaOA_Attachment_remark_FileInclude漏洞 
TongdaOA_Management_Upload_Getshell漏洞 
TongdaOA_Delete_Authincphp_Getshell漏洞 
TongdaOA_Ispirit_Upload_Getshell漏洞 
TongdaOA_Api_Ali_Upload_Getshell漏洞 
TongdaOA_Report_Bi_Sqlnjection漏洞 
TongdaOA_Swfupload_Sqlnjection漏洞 
TongdaOA_File_Include_Getshell漏洞 
TongdaOA_Get_Contactlist漏洞 
TongdaOA_AnyUser_Login漏洞 
Yongyon_BshServlet_DatabaseDecode漏洞 
YongYou_NCCloudFS_Sqlinjection漏洞 
YongYou_ERP_NC_DirTraversal漏洞 
YongYou_U8_Rce_Sqlinjection漏洞 
Yongyon_U8_getSessionList漏洞 
YongYou_NC_Uapws_XXE漏洞 
YongYou_U8_Sqlinjection漏洞 
Yongyon_EF_DirTraversal漏洞 
YongYou_BshServlet_Rce漏洞 
WanhuOA_FileUpload_Controller_Getshell漏洞 
WanhuOA_Download_http_Filedown漏洞 
WanhuOA_showResult_Sqlinjection漏洞 
WanhuOA_Download_old_Filedown漏洞 
WanhuOA_Download_ftp_Filedown漏洞 
WanhuOA_smartUpload_Getshell漏洞 
LandrayOA_Custom_SSRF_JNDI漏洞 
LandrayOA_sysSearchMain_Rce漏洞 
LandrayOA_Custom_FileRead漏洞 

Tools-2

集成致远、蓝凌、用友、通达、万户、金蝶、泛微、红海、H3c、禅道等多个HW常见系统的利用工具

TongdaOA_Report_Bi_Sqlnjection漏洞 
TongdaOA_Swfupload_Sqlnjection漏洞 
TongdaOA_File_Include_Getshell漏洞 
TongdaOA_Get_Contactlist漏洞 
TongdaOA_AnyUser_Login漏洞 
Yongyon_BshServlet_DatabaseDecode漏洞 
YongYou_NCCloudFS_Sqlinjection漏洞 
YongYou_ERP_NC_DirTraversal漏洞 
YongYou_U8_Rce_Sqlinjection漏洞 
Yongyon_U8_getSessionList漏洞 
YongYou_NC_Uapws_XXE漏洞 
YongYou_U8_Sqlinjection漏洞 
Yongyon_EF_DirTraversal漏洞 
YongYou_BshServlet_Rce漏洞 
WanhuOA_FileUpload_Controller_Getshell漏洞 
WanhuOA_Download_http_Filedown漏洞 
WanhuOA_showResult_Sqlinjection漏洞 
WanhuOA_Download_old_Filedown漏洞 
WanhuOA_Download_ftp_Filedown漏洞 
WanhuOA_smartUpload_Getshell漏洞 
LandrayOA_Custom_SSRF_JNDI漏洞 
LandrayOA_sysSearchMain_Rce漏洞 

Tools-3

集成致远、蓝凌、用友、通达、万户OA利用工具

ps:

常见fofa语法

app="蓝凌软件-OA系统"
body="iVMS-4200" 
(app="BEA-WebLogic-Server" || app="Weblogic_interface_7001") && country="CN"
"天融信数据防泄漏系统"
header=”Set-Cookie: TWFID=”
app=”深信服-SSL-VPN”
title="终端检测响应平台"

常见OA系统

OA系统

华天动力OA(OA8000), 通达OA, OA(a8/seeyon/ufida), yongyoufe, pmway_E4_crm, Dolibarr, PHPOA, 78oa, WishOA, 金和协同管理平台, 泛微协同办公OA, 万户ezOFFICE, ranzhi, Zimbra, Lotus, OA企业智能办公自动化系统, ecwapoa, ezOFFICE。

文章转载自公众号:不懂安全的果仁


文章来源: http://mp.weixin.qq.com/s?__biz=MzkxNjIxNDQyMQ==&mid=2247494163&idx=1&sn=0efea7b3e58a4b64ff0cbd57edcbba6f&chksm=c151ede9f62664ff0a0a6333a415ad18196906522c0f342c6bc53977b065451adb876cb60d9d#rd
如有侵权请联系:admin#unsafe.sh