[*]修复一个会漏资产的bug，之前会漏掉某些SSL端口的非SSL资产

lcvvvv · lcvvvv · commit 00de1aa9e049 · 2022-05-10T09:52:27.000+08:00
diff --git a/get-appbanner.go b/get-appbanner.go
@@ -37,9 +37,13 @@ func GetAppBannerFromTcpBanner(banner *TcpBanner) *AppBanner {
 	return getAppBanner(parse, banner)
 }
 
-func GetAppBannerFromUrl(url *urlparse.URL) *AppBanner {
-	if url.Scheme != "http" && url.Scheme != "https" {
-		banner := GetTcpBanner(url.Netloc, url.Port, New(), HttpTimeout*20)
+func GetAppBannerFromUrlString(urlString string) *AppBanner {
+	Url, err := urlparse.Load(urlString)
+	if err != nil {
+		logger.Println(err)
+	}
+	if Url.Scheme != "http" && Url.Scheme != "https" {
+		banner := GetTcpBanner(Url.Netloc, Url.Port, New(), HttpTimeout*20)
 		if banner == nil {
 			return nil
 		}
@@ -48,18 +52,16 @@ func GetAppBannerFromUrl(url *urlparse.URL) *AppBanner {
 		}
 		return GetAppBannerFromTcpBanner(banner)
 	}
-
-	if url.Port == 0 && url.Scheme == "" {
-		url.Port = 80
-		url.Scheme = "http"
+	if Url.Port == 0 && Url.Scheme == "http" {
+		Url.Port = 80
 	}
-	if url.Port == 0 && url.Scheme == "https" {
-		url.Port = 443
+	if Url.Port == 0 && Url.Scheme == "https" {
+		Url.Port = 443
 	}
-	if url.Port == 0 {
-		url.Port = 80
+	if Url.Port == 0 {
+		Url.Port = 80
 	}
-	return getAppBanner(url, nil)
+	return getAppBanner(Url, nil)
 }
 
 func getAppBanner(url *urlparse.URL, tcpBanner *TcpBanner) *AppBanner {
diff --git a/lib/urlparse/urlparse.go b/lib/urlparse/urlparse.go
@@ -37,13 +37,10 @@ func Load(s string) (*URL, error) {
 	}
 	return &URL{
 		Scheme: func() string {
-			if r.Port() == "80" {
-				return "http"
+			if r.Scheme != "" {
+				return r.Scheme
 			}
-			if r.Port() == "443" {
-				return "https"
-			}
-			return r.Scheme
+			return ""
 		}(),
 		Netloc: r.Hostname(),
 		Path: func() string {
diff --git a/type-probe.go b/type-probe.go
@@ -53,6 +53,12 @@ func (p *probe) loads(sArr []string) {
 func (p *probe) scan(t target) (response, error) {
 	tls := p.sslports.Exist(t.port)
 	text, err := simplenet.Send(p.request.protocol, tls, t.URI(), p.request.string, p.totalwaitms, 512)
+	if err != nil {
+		if strings.Contains(err.Error(), "STEP1") && tls == true {
+			tls = false
+			text, err = simplenet.Send(p.request.protocol, tls, t.URI(), p.request.string, p.totalwaitms, 512)
+		}
+	}
 	return response{
 		string: text,
 		tls:    tls,

Original file line number	Diff line number	Diff line change
`@@ -37,9 +37,13 @@ func GetAppBannerFromTcpBanner(banner TcpBanner) AppBanner {`
`37`	`37`	`return getAppBanner(parse, banner)`
`38`	`38`	`}`
`39`	`39`
`40`		`-func GetAppBannerFromUrl(url urlparse.URL) AppBanner {`
`41`		`- if url.Scheme != "http" && url.Scheme != "https" {`
`42`		`- banner := GetTcpBanner(url.Netloc, url.Port, New(), HttpTimeout*20)`
	`40`	`+func GetAppBannerFromUrlString(urlString string) *AppBanner {`
	`41`	`+ Url, err := urlparse.Load(urlString)`
	`42`	`+ if err != nil {`
	`43`	`+ logger.Println(err)`
	`44`	`+ }`
	`45`	`+ if Url.Scheme != "http" && Url.Scheme != "https" {`
	`46`	`+ banner := GetTcpBanner(Url.Netloc, Url.Port, New(), HttpTimeout*20)`
`43`	`47`	`if banner == nil {`
`44`	`48`	`return nil`
`45`	`49`	`}`
`@@ -48,18 +52,16 @@ func GetAppBannerFromUrl(url urlparse.URL) AppBanner {`
`48`	`52`	`}`
`49`	`53`	`return GetAppBannerFromTcpBanner(banner)`
`50`	`54`	`}`
`51`		`-`
`52`		`- if url.Port == 0 && url.Scheme == "" {`
`53`		`- url.Port = 80`
`54`		`- url.Scheme = "http"`
	`55`	`+ if Url.Port == 0 && Url.Scheme == "http" {`
	`56`	`+ Url.Port = 80`
`55`	`57`	`}`
`56`		`- if url.Port == 0 && url.Scheme == "https" {`
`57`		`- url.Port = 443`
	`58`	`+ if Url.Port == 0 && Url.Scheme == "https" {`
	`59`	`+ Url.Port = 443`
`58`	`60`	`}`
`59`		`- if url.Port == 0 {`
`60`		`- url.Port = 80`
	`61`	`+ if Url.Port == 0 {`
	`62`	`+ Url.Port = 80`
`61`	`63`	`}`
`62`		`- return getAppBanner(url, nil)`
	`64`	`+ return getAppBanner(Url, nil)`
`63`	`65`	`}`
`64`	`66`
`65`	`67`	`func getAppBanner(url urlparse.URL, tcpBanner TcpBanner) *AppBanner {`