Project Address#
https://github.com/niudaii/zpscan/releases#
Tool Introduction
This tool integrates domainscan, webscan, ipscan, crack, dirscan, pocscan, expscan to start information collection with one click, eliminating the need for other steps.
Function Introduction#
domainscan#
Passive collection using subfinder, DNS verification using ksubdoamin
Wildcard resolution, CDN detection
Obtain domain-related web (host) assets, scan using webscan
webscan#
Support for http/https scheme automatic detection
Obtain statusCode, contentLength, favicon, iconHash, title, wappalyzer, finger
Automatically decode Chinese in title
JS static analysis redirection
Automatically analyze favicon to obtain iconhash
Custom fingerprint tags for filtering and marking, pocTags corresponding to pocscan
Linkage module (webscan -> pocscan)
ipscan#
Support for multiple input formats (192.168.1.1-128) (192.168.1.0/24)
Port scanning first (tcp), using nmap fingerprint recognition protocol
Obtain geographical location
Operating system identification
Linkage module (ipscan -> webscan -> crack)
crack
Support for default port protocol and custom protocol cracking (127.0.0.1:3306) (127.0.01:3307|mysql)
Support for common service credential cracking, unauthorized detection (ftp,ssh,wmi,wmihash,smb,mssql,oracle,mysql,rdp,postgres,redis,memcached,mongodb)
All module test cases (cracking success, failure, timeout)