123 lines
7.2 KiB
PHP
123 lines
7.2 KiB
PHP
<?php
|
|
|
|
include_once "config.php";
|
|
|
|
$targetsListRegex = '/^[\da-zA-Z-. \/]+$/';
|
|
$hostsListRegex = '/^[\da-zA-Z-.,:\/]+$/';
|
|
$protocolePortsListRegex = '/^(([TU]:)?[0-9\-]+|[a-z\-]+)(,([TU]:)?[0-9\-]+|,[a-z\-]+)*$/';
|
|
$portsListRegex = '/^([0-9\-]+|[a-z\-]+)(,[0-9\-]+|,[a-z\-]+)*$/';
|
|
$tempoRegex = '/^\d+[smh]?$/';
|
|
$fileNameRegex = '/^[^<>:\/|?]+$/';
|
|
|
|
$targets = filter_input(INPUT_GET, 'targets', FILTER_VALIDATE_REGEXP, ['options' => ['regexp' => $targetsListRegex], "flags" => FILTER_NULL_ON_FAILURE]);
|
|
$preset = filter_input(INPUT_GET, "preset");
|
|
|
|
if ($preset && isset($presets[$preset])) {
|
|
$options = $presets[$preset];
|
|
} else {
|
|
$options = filter_input_array(INPUT_GET, [
|
|
// TARGET SPECIFICATION:
|
|
'-iR' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0]],
|
|
'--exclude' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $hostsListRegex]],
|
|
// HOST DISCOVERY:
|
|
'-sL' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $hostsListRegex]],
|
|
'-sP' => FILTER_VALIDATE_BOOLEAN,
|
|
'-P0' => FILTER_VALIDATE_BOOLEAN,
|
|
'-Pn' => FILTER_VALIDATE_BOOLEAN,
|
|
'-PS' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $portsListRegex]],
|
|
'-PA' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $portsListRegex]],
|
|
'-PU' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $portsListRegex]],
|
|
'-PE' => FILTER_VALIDATE_BOOLEAN,
|
|
'-PP' => FILTER_VALIDATE_BOOLEAN,
|
|
'-PM' => FILTER_VALIDATE_BOOLEAN,
|
|
'-PO' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0, 'max_range' => 255]],
|
|
'-PR' => FILTER_VALIDATE_BOOLEAN,
|
|
'--send-ip' => FILTER_VALIDATE_BOOLEAN,
|
|
'-n' => FILTER_VALIDATE_BOOLEAN,
|
|
'-R' => FILTER_VALIDATE_BOOLEAN,
|
|
'--dns-servers' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $hostsListRegex]],
|
|
// SCAN TECHNIQUES:
|
|
'-sS' => FILTER_VALIDATE_BOOLEAN,
|
|
'-sT' => FILTER_VALIDATE_BOOLEAN,
|
|
'-sA' => FILTER_VALIDATE_BOOLEAN,
|
|
'-sW' => FILTER_VALIDATE_BOOLEAN,
|
|
'-sM' => FILTER_VALIDATE_BOOLEAN,
|
|
'-sF' => FILTER_VALIDATE_BOOLEAN,
|
|
'-sN' => FILTER_VALIDATE_BOOLEAN,
|
|
'-sX' => FILTER_VALIDATE_BOOLEAN,
|
|
'-sU' => FILTER_VALIDATE_BOOLEAN,
|
|
'--scanflags' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => '/^(URG|ACK|PSH|RST|SYN|FIN|,)+|[1-9]?[0-9]|[1-2][0-9][0-9]$/']],
|
|
'-sI' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => '/^[a-zA-Z\d:.-]+(:\d+)?$/']],
|
|
'-sO' => FILTER_VALIDATE_BOOLEAN,
|
|
'-b' => FILTER_VALIDATE_URL,
|
|
'--traceroute' => FILTER_VALIDATE_BOOLEAN,
|
|
'--reason' => FILTER_VALIDATE_BOOLEAN,
|
|
// PORT SPECIFICATION AND SCAN ORDER:
|
|
'-p' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $portsListRegex]],
|
|
'-F' => FILTER_VALIDATE_BOOLEAN,
|
|
'-r' => FILTER_VALIDATE_BOOLEAN,
|
|
'--top-ports' => FILTER_VALIDATE_INT,
|
|
'--port-ratio' => ['filter' => FILTER_VALIDATE_FLOAT, 'options' => ['min_range' => 0, 'max_range' => 1]],
|
|
// SERVICE/VERSION DETECTION:
|
|
'-sV' => FILTER_VALIDATE_BOOLEAN,
|
|
'--version-light' => FILTER_VALIDATE_BOOLEAN,
|
|
'--version-intensity' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0, 'max_range' => 9]],
|
|
'--version-all' => FILTER_VALIDATE_BOOLEAN,
|
|
'--version-trace' => FILTER_VALIDATE_BOOLEAN,
|
|
// SCRIPT SCAN:
|
|
'-sC' => FILTER_VALIDATE_BOOLEAN,
|
|
'--script' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => '/^[a-z][a-z0-9,\-\.\/]*$/']],
|
|
'--script-args' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => '/^([a-zA-Z][a-zA-Z0-9\-_]*=[^"]+(,[a-zA-Z][a-zA-Z0-9\-_]*=[^"]+)?)$/']],
|
|
// OS DETECTION:
|
|
'-O' => FILTER_VALIDATE_BOOLEAN,
|
|
'--osscan-limit' => FILTER_VALIDATE_BOOLEAN,
|
|
'--osscan-guess' => FILTER_VALIDATE_BOOLEAN,
|
|
'--max-os-tries' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0]],
|
|
// TIMING AND PERFORMANCE:
|
|
'-T' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0, 'max_range' => 5]],
|
|
'--min-hostgroup' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0]],
|
|
'--max-hostgroup' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0]],
|
|
'--min-parallelism' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0]],
|
|
'--max-parallelism' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0]],
|
|
'--min-rtt-timeout' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $tempoRegex]],
|
|
'--max-rtt-timeout' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $tempoRegex]],
|
|
'--initial-rtt-timeout' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $tempoRegex]],
|
|
'--max-retries' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0]],
|
|
'--host-timeout' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $tempoRegex]],
|
|
'--scan-delay' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $tempoRegex]],
|
|
'--max-scan-delay' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $tempoRegex]],
|
|
// FIREWALL/IDS EVASION AND SPOOFING:
|
|
'-f' => FILTER_VALIDATE_INT,
|
|
'--mtu' => FILTER_VALIDATE_INT,
|
|
'-D' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $hostsListRegex]],
|
|
'-S' => ['filter' => FILTER_VALIDATE_IP],
|
|
'-e' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => '/^[a-z\d]+$/']],
|
|
'-g' => FILTER_VALIDATE_INT,
|
|
'--source-port' => FILTER_VALIDATE_INT,
|
|
'--data-length' => FILTER_VALIDATE_INT,
|
|
'--ip-options' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => '/^\"(R|T|U|L [\da-zA-Z-.: ]+|S [\da-zA-Z-.: ]+|\\\\x[\da-fA-F]{1,2}(\*[\d]+)?|\\\\[0-2]?[\d]{1,2}(\*[\d]+)?)\"$/']],
|
|
'--ttl' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0, 'max_range' => 255]],
|
|
'--spoof-mac' => FILTER_VALIDATE_MAC,
|
|
'--badsum' => FILTER_VALIDATE_BOOLEAN,
|
|
// MISC:
|
|
// '6' => FILTER_VALIDATE_BOOLEAN,
|
|
'-A' => FILTER_VALIDATE_BOOLEAN,
|
|
'--send-eth' => FILTER_VALIDATE_BOOLEAN,
|
|
'--privileged' => FILTER_VALIDATE_BOOLEAN,
|
|
'-V' => FILTER_VALIDATE_BOOLEAN,
|
|
'--unprivileged' => FILTER_VALIDATE_BOOLEAN,
|
|
'-h' => FILTER_VALIDATE_BOOLEAN,
|
|
'--stylesheet' => FILTER_VALIDATE_URL,
|
|
// lanScan
|
|
'name' => ['filter' => FILTER_VALIDATE_REGEXP, 'options' => ['regexp' => $fileNameRegex]],
|
|
'originalURL' => FILTER_VALIDATE_URL,
|
|
'refreshPeriod' => ['filter' => FILTER_VALIDATE_INT, 'options' => ['min_range' => 0]],
|
|
'sudo' => FILTER_VALIDATE_BOOLEAN,
|
|
], false) ?: $presets["default"];
|
|
}
|
|
|
|
$options["--datadir"] = $DATADIR;
|
|
|
|
/*echo "<!--";
|
|
var_dump($options);
|
|
echo "-->\n";*/ |