Home > Developer > Web Develop

Active distributed web Asset scanning

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

One, Redis service installation

System environment:centos7x64 IP address:192.168.1.11

1. Set the static IP address

[[email protected] backlion] #vi/etc/sysconfig/network-scripts/ifcfg-*

Bootproto=static #dhcp改为static (modified)

Onboot=yes #开机启用本配置, usually in the last line (modify)

ipaddr=192.168.1.11 #静态IP (Increase)

gateway=192.168.1.1# default gateway, the virtual machine is installed, usually 2, that is, the gateway setting of VMnet8 (Increase)

netmask=255.255.255.0 #子网掩码 (Increase)

dns1=192.168.1.1 #DNS configuration, Virtual machine installation, DNS on the gateway line, multiple DNS URLs to increase (increase)

2. Set host name

[Email protected] network-scripts]# Hostnamectl set-hostname redis-server.com

1. Set up the Redis warehouse Address

[Email protected] backlion]# Yuminstall epel-release

3. Turn off the firewall

[Email protected] ~]# Cat/etc/selinux/config

# This file controls the state of the SELinux on the system.

# selinux= can take one of these three values:

# Enforcing-selinux security policy is enforced.

# Permissive-selinux Prints warnings instead of enforcing.

# disabled-no SELinux policy is loaded.

Selinux=disabled

# selinuxtype= can take one of three the values:

# targeted-targeted processes is protected,

# Minimum-modification of targeted policy. Only selected processes is protected.

# Mls-multi level Security protection.

selinuxtype=targeted

Close Firewall:
Systemctl Stop Firewalld.service #停止firewall
Systemctl Disable Firewalld.service #禁止firewall开机启动

4. Installing Redis

[Email protected]backlion]# yum Install Redis

Modify the configuration file and listen for all IP addresses

Vim/etc/redis.conf

Find the following line

bind127.0.0.1

Change into

Bind 0.0.0.0

3.redis Configure authentication Password
The Redis configuration file installed in Yum mode is typically in/etc/redis.conf, with the addition of a password and setting daemonize Yes and Protected-mode no

Requirepass backlion

Daemonize Yes

Protected-mode No

4. Start Redis to complete this

[[Email protected]backlion]# redis-server/etc/redis.conf

[[Email protected]backlion]# service Redis start

If you need to set up boot automatically

Chkconfigredis on

[[Email protected]backlion]# yum install git

[[Email protected]backlion]# cd/opt

[Email protected] backlion]#

git clone https://github.com/grayddq/PublicSecScan.git

Second,Server Deployment

System environment:ubuntux64 IP address:192.168.1.12

1. Enter the OPT directory

[Email protected]:~ #cd/opt

2. Download the scan item Publicsecscan

[Email protected]:~# Git clone https://github.com/grayddq/PublicSecScan.git

3. Go to the Publicsecscan directory

[Email protected]:~ #cd Publicsecscan

4. Install the Publicsecscan

Pipinstall-r Requirements.txt

5 Configure the Lib/config.py configuration file (enter Redis and email (optional) information,Wvs information can be ignored

6.domain.txt fill in the information to be scanned, can be updated at any time

7. Implementation

pythonpublicsecscan.py

Third,Worker Deployment

System environment:win7x86 IP address:192.168.1.13

1. Install Python 2.7.5

Https://www.python.org/ftp/python/2.7.5/python-2.7.5.msi # this is win7x86.

2. Installing AWVS10.5

Link: Https://pan.baidu.com/s/16iMwWgIjZyI6CR1ROCd7mQ Password: ia2m

3. Install the Python module separately

amqp-1.4.6,anyjson-0.3.3, billiard-3.3.0.13, celery-3.1.7,celery-4.1.1,kombu-3.0.25,

pytz-2018.4,redis-2.10.6,setuptools-39.2.0, xlwt-1.3.0,pip-10.0.1

Install with the following command

pythonsetup.py Install

One of the packages I have been playing well, uploaded to Baidu network to facilitate everyone to download:

Link: Https://pan.baidu.com/s/1SV-wUdzzHMtNuuA2s4fBJQ Password: TNBW

4. Configure the lib/config.py configuration file (to fill in Redis and WVS related information, email messages can be ignored

5. Go to the Publicsecscan directory and execute the command

CMD code directory execution,-C 1 for one more WVS process, can increase:

Celery-a Tasks Worker-c 1--loglevel=info–ofair

6. View the scan results in the server deployment:

Output directory default:./out/


Active distributed web Asset scanning

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More