使用head请求判断url是否alive，如果url失效，默认不会跑所有的pocs，如果需要不判断是否alive请使用-p参数指定poc，如果仅仅需要判断url是否存活可以使用-p ISAlIVEURL

Author: SummerSec

README.md

@@ -74,6 +74,8 @@ SpringExploit -u https://www.baidu.com/ -proxy http://127.0.0.1:1080
 SpringExploit -i 127.0.0.1/24
 SpringExploit -u https://www.baidu.com/ -p CVE202222947,CVE202222963
 SpringExploit -u https://www.baidu.com/ -p CVE20221388 -shell
+
+使用head请求判断url是否alive，如果url失效，默认不会跑所有的pocs，如果需要不判断是否alive请使用-p参数指定poc，如果仅仅需要判断url是否存活可以使用-p ISAlIVEURL
 SpringExploit -sp
 
 ```

cmd/commons/attack/Pocslist.go

@@ -3,20 +3,26 @@ package attack
 import "container/list"
 
 const (
+	ISAlIVEURL string = "ISAlIVEURL"
+
 	// 2022年list
+
 	CVE202222963 string = "CVE202222963"
 	CVE202222965 string = "CVE202222965"
 	CVE202222947 string = "CVE202222947"
 	CVE20221388  string = "CVE20221388"
 
 	// 2021年list
+
 	CVE202126084 string = "CVE202126084"
 	CVE202122986 string = "CVE202122986"
 )
 
 func GetList() *list.List {
 	l := list.New()
 
+	l.PushBack(ISAlIVEURL)
+
 	// 2022年漏洞
 	l.PushBack(CVE202222963)
 	l.PushBack(CVE202222965)

cmd/commons/attack/attack.go

@@ -29,6 +29,9 @@ func init() {
 
 func addPoc(pocs map[string]interface{}) map[string]interface{} {
 	log.Debug("[*] Add PoC")
+	// 判断url是否存活
+	pocs["ISAlIVEURL"] = &poc.IsAliveUrl{}
+
 	// TODO 添加 2022 poc
 	//pocs["demo"] = &poc.Demo{}
 	pocs["CVE202222947"] = &_022.CVE202222947{}
@@ -58,8 +61,18 @@ func attack(url string, pocs map[string]interface{}, hashmap map[string]interfac
 	//}
 	// 如果没有选定字符串 则默认所有pocs
 	if len(pocsName) == 1 && pocsName[0] == "" {
+		f := pocs["ISAlIVEURL"].(poc.PoC).CheckExp(nil, url, hashmap)
+		if f {
+			log.Infof("[*] %s is alive", url)
+		} else {
+			log.Infof("[*] %s is not alive, donot attack all pocs, Please check url is alive ?", url)
+			return
+		}
 		log.Info("[*] attack all pocs")
 		for k, v := range pocs {
+			if k == "ISAlIVEURL" {
+				continue
+			}
 			log.Infof("[*] attack  %s poc %s", url, k)
 			t := v.(poc.PoC)
 			t.SendPoc(url, hashmap)

cmd/commons/core/runner.go

@@ -161,7 +161,7 @@ func Start2(u string, hashmap map[string]interface{}, i int) {
 	//}
 	defer func() {
 		if errs := recover(); errs != nil {
-			log.Debug("Runner panic: ", errs)
+			log.Debug(errs)
 		}
 	}()
 

cmd/commons/poc/IsAliveUrl.go

@@ -0,0 +1,46 @@
+package poc
+
+import (
+	req2 "github.com/SummerSec/SpringExploit/cmd/commons/req"
+	"github.com/SummerSec/SpringExploit/cmd/commons/utils"
+	"github.com/imroc/req/v3"
+	log "github.com/sirupsen/logrus"
+)
+
+type IsAliveUrl struct{}
+
+func (t IsAliveUrl) SendPoc(target string, hashmap map[string]interface{}) {
+	//reqmap := req2.NewReqInfoToMap(hashmap)
+	//reqmap["url"] = target
+	//reqmap["method"] = "HEAD"
+	//reqmap["timeout"] = "3"
+	//headers := map[string]string{
+	//	"User-Agent": utils.GetUA(),
+	//}
+	//reqmap["headers"] = headers
+	//resp := utils.Send(reqmap)
+	//if t.CheckExp(resp,target,hashmap) {
+	//	log.Infof("[+] %s is alive", target)
+	//}
+
+}
+
+func (t IsAliveUrl) SaveResult(target string, file string) {
+	// nothing to do
+}
+
+func (t IsAliveUrl) CheckExp(resp *req.Response, target string, hashmap map[string]interface{}) bool {
+	reqmap := req2.NewReqInfoToMap(hashmap)
+	reqmap["url"] = target
+	reqmap["method"] = "HEAD"
+	headers := map[string]string{
+		"User-Agent": utils.GetUA(),
+	}
+	reqmap["headers"] = headers
+	resp2 := utils.Send(reqmap)
+	log.Debug(resp2.Dump())
+	if resp2.Dump() == "" {
+		return false
+	}
+	return true
+}

cmd/commons/req/request.go

@@ -126,6 +126,7 @@ func NewReqInfoToMap(hashmap map[string]interface{}) map[string]interface{} {
 	reqmap["mode"] = hashmap["Mode"].(int)
 	reqmap["h1"] = hashmap["H1"].(bool)
 	reqmap["proxy"] = hashmap["Proxy"].(string)
+	reqmap["body"] = ""
 
 	return reqmap
 }

cmd/test/headurl.go

@@ -0,0 +1,14 @@
+package main
+
+import (
+	"fmt"
+	"github.com/imroc/req/v3"
+)
+
+func main() {
+	u := "https://sumsasdasdec.me/"
+	rsp, _ := req.R().EnableDump().Head(u)
+
+	fmt.Println(rsp.Dump())
+
+}