Cloudflare Company nezve kuvhura iyo source code yeprojekiti , iyo inoongorora mauto panetiweki nekuda kwekusagadzikana kwekusagadzikana. Flan Scan ndeye yekuwedzera kune network kuchengetedza scanner , kushandura iyo yekupedzisira kuti ive yakazara-inoratidzwa chishandiso chekuzivisa vari panjodzi mumatiweki makuru. Iyo kodhi yeprojekiti yakanyorwa muPython uye pasi peBSD rezinesi.
Flan Scan inoita kuti zvive nyore kuwana yakavhurika network ports panetiweki iri kuferefetwa, tarisa masevhisi ane hukama navo uye neshanduro dzezvirongwa zvinoshandiswa, uye zvakare kugadzira runyorwa rwekusagadzikana kunobata masevhisi akaonekwa. Mushure mekupedzwa kwebasa, mushumo unogadzirwa uchipfupikisa matambudziko akaonekwa uye kunyora mazita eCVE ane chekuita nekusagadzikana kwakaonekwa, kwakarongwa nekuomarara.
Kuti uone kusazvibata kuri kukanganisa masevhisi, script rinopihwa nenmap rinoshandiswa (yazvino vhezheni inogona kutorwa kubva ), kupinda mu database . Mhedzisiro yakafanana inogona kuwanikwa nemurairo:
nmap -sV -oX /shared/xml_files -oN — -v1 —script=scripts/vulners.nse ip-address
"-sV" inotanga sevhisi yekuongorora modhi, "-oX" inotsanangura dhairekitori reshumo yeXML, "-oN" inoisa yakajairika maitiro ekuburitsa mhedzisiro kune koni, -v1 inoseta danho rekubuda, "--script" inoreva. kune vulners.nse script yekuenzanisa masevhisi akaonekwa ane kusasimba kunozivikanwa.
Mabasa anoitwa naFlan Scan anonyanya kuderedzwa kuita kurerutsa kutumira kwenmap-based vulnerability scanning system mumatiweki makuru uye makore nharaunda. Chinyorwa chinopihwa kukurumidza kuendesa yakasarudzika Docker kana Kubernetes mudziyo wekumhanyisa maitiro ekuona mugore uye kusundira mhedzisiro kuGoogle Cloud Storage kana Amazon S3. Zvichienderana neyakagadziriswa XML chirevo chakagadzirwa nenmap, Flan Scan inogadzira iri nyore kuverenga mushumo muLaTeX fomati inogona kushandurwa kuita PDF.
Source: opennet.ru