Inkampani yeCloudflare malunga nokuvula ikhowudi yomthombo weprojekthi , ejonga iinginginya kumsebenzi womnatha wobuthathaka obungabhalwanga. I-Flan Scan sisongezo kwiskena sokhuseleko senethiwekhi , ukuguqula okokugqibela kwisixhobo esipheleleyo sokuchonga imikhosi esengozini kwiinethiwekhi ezinkulu. Ikhowudi yeprojekthi ibhalwe kwiPython kunye phantsi kwelayisensi ye-BSD.
I-Flan Scan yenza kube lula ukufumana izibuko zenethiwekhi ezivulekileyo kuthungelwano oluphantsi kophando, ukugqiba iinkonzo ezinxulumene nazo kunye neenguqulelo zeenkqubo ezisetyenzisiweyo, kwaye zivelise uluhlu lobuthathaka obuchaphazela iinkonzo ezichongiweyo. Emva kokugqitywa komsebenzi, kwenziwa ingxelo eshwankathela iingxaki ezichongiweyo kwaye idwelisa izichongi ze-CVE ezinxulumene nobuthathaka obuchongiweyo, obuhlelwe ngobungqongqo.
Ukumisela ubuthathaka obuchaphazela iinkonzo, iscript esibonelelwe ngenmap siyasetyenziswa (uguqulelo lwamva nje lungakhutshelwa kwi ), ukufikelela kuvimba weenkcukacha . Isiphumo esifanayo sinokufezekiswa ngomyalelo:
nmap -sV -oX /kwabelwana/xml_files -oN — -v1 —script=scripts/vulners.nse ip-address
I-“-sV” iqala imowudi yokuskena inkonzo, “-oX” ichaza uvimba weefayili wengxelo yeXML, “-oN” ibeka indlela eqhelekileyo yokukhupha iziphumo kwikhonsoli, -v1 ibeka inqanaba leenkcukacha zemveliso, “--script” ibhekisa kwi vulners.nse okubhalwe kuthelekiso lweenkonzo ezichongiweyo ezinobuthathaka obaziwayo.
Imisebenzi eyenziwa nguFlan Scan iyancipha ikakhulu ekwenzeni lula ukuthunyelwa kwenkqubo ye-nmap-based vulnerability scanning in big networks and cloud environments. Iskripthi sinikezelwe ukuhambisa ngokukhawuleza i-Docker eyedwa okanye i-Kubernetes isikhongozeli sokuqhuba inkqubo yokuqinisekisa efini kwaye sityhale iziphumo kuGcino lweLifu likaGoogle okanye iAmazon S3. Ngokusekwe kwingxelo ecwangcisiweyo yeXML eyenziwe yi-nmap, iFlan Scan ivelisa ingxelo efundeka lula kwifomathi yeLaTeX enokuguqulwa ibe yiPDF.
umthombo: opennet.ru