62 lines
1.9 KiB
PHP
Executable File
62 lines
1.9 KiB
PHP
Executable File
<?php
|
|
|
|
include_once 'config.php';
|
|
include_once 'filter_inputs.php';
|
|
|
|
if (!file_exists($SCANSDIR)) mkdir($SCANSDIR);
|
|
|
|
$command = ($options["sudo"]?? false ? "sudo " : "") . "nmap";
|
|
foreach ($options as $arg => $value) {
|
|
if (substr($arg, 0, 1) == '-') {
|
|
if (is_null($value)) {
|
|
http_response_code(400);
|
|
$errorMessage = "Valeur incorrecte pour le paramètre <var>$arg</var> : " . filter_input(INPUT_GET, $arg, FILTER_SANITIZE_FULL_SPECIAL_CHARS);
|
|
include_once "options.php";
|
|
die();
|
|
} else if ($value) {
|
|
if ($value === true) {
|
|
$command .= " $arg";
|
|
} else {
|
|
if (substr($arg, 0, 2) == '--') $command .= " $arg " . escapeshellarg($value);
|
|
else $command .= " $arg" . escapeshellarg($value);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
$tempPath = tempnam(sys_get_temp_dir(), 'scan_').".xml";
|
|
|
|
$command .= " -oX '$tempPath' $targets 2>&1";
|
|
|
|
exec($command, $stderr, $retcode);
|
|
|
|
if ($retcode) {
|
|
http_response_code(500);
|
|
$errorMessage = implode("<br/>\n", $stderr);
|
|
include_once "options.php";
|
|
die();
|
|
}
|
|
|
|
$xml = new DOMDocument();
|
|
$xml->load($tempPath);
|
|
`rm "$tempPath"`;
|
|
|
|
$saveAsURL = $options["saveAs"]?? false ? "$BASEDIR/$SCANSDIR/{$options["saveAs"]}.xml" : "";
|
|
$xml->insertBefore($xml->createProcessingInstruction('xslt-param', "name='savedAs' value='".htmlentities($saveAsURL, ENT_QUOTES)."'"), $xml->documentElement);
|
|
foreach ($options as $arg => $value) {
|
|
if (substr($arg, 0, 1) != '-') {
|
|
$xml->insertBefore($xml->createProcessingInstruction('xslt-param', "name='$arg' value='".htmlentities($value, ENT_QUOTES)."'"), $xml->documentElement);
|
|
}
|
|
}
|
|
|
|
if ($options["saveAs"] ?? false) {
|
|
$path = "$SCANSDIR/{$options["saveAs"]}.xml";
|
|
$xml->save($path);
|
|
|
|
header("Location: $path");
|
|
exit();
|
|
} else {
|
|
header('Content-type: text/xml');
|
|
exit($xml->saveXML());
|
|
}
|