网站后台漏洞扫描器 支持跨平台使用
网站管理面板扫描器,网站后台扫描器,Admin-Scanner,跨平台,可以在linux,windows,android上使用,支持使用代理服务器进行扫描,可以自定义扫描线程延迟时间,有效防止封ip已经网站瘫痪,可以自定义密码字典,使用默认的管理员后台地址进行扫描。
该工具旨在通过使用自定义单词列表或默认单词列表轻松找到任何网站的管理面板[说白了就是靠跑字典的工具,默认后台地址才有点用,或者自定义密码字典]
字典列表
- admin.php
- admin.html
- index.php
- login.php
- login.html
- administrator
- admin
- adminpanel
- cpanel
- login
- wp-login.php
- administrator
- admins
- logins
- admin.asp
- login.asp
- adm/
- admin/
- admin/account.html
- admin/login.html
- admin/login.htm
- admin/controlpanel.html
- admin/controlpanel.htm
- admin/adminLogin.html
- admin/adminLogin.htm
- admin.htm
- admin.html
- adminitem/
- adminitems/
- administrator/
- administrator/login.%EXT%
- administrator.%EXT%
- administration/
- administration.%EXT%
- adminLogin/
- adminlogin.%EXT%
- admin_area/admin.%EXT%
- admin_area/
- admin_area/login.%EXT%
- manager/
- superuser/
- superuser.%EXT%
- access/
- access.%EXT%
- sysadm/
- sysadm.%EXT%
- superman/
- supervisor/
- panel.%EXT%
- control/
- control.%EXT%
- member/
- member.%EXT%
- members/
- user/
- user.%EXT%
- cp/
- uvpanel/
- manage/
- manage.%EXT%
- management/
- management.%EXT%
- signin/
- signin.%EXT%
- log-in/
- log-in.%EXT%
- log_in/
- log_in.%EXT%
- sign_in/
- sign_in.%EXT%
- sign-in/
- sign-in.%EXT%
- users/
- users.%EXT%
- accounts/
- accounts.%EXT%
- bb-admin/login.%EXT%
- bb-admin/admin.%EXT%
- bb-admin/admin.html
- administrator/account.%EXT%
- relogin.htm
- relogin.html
- check.%EXT%
- relogin.%EXT%
- blog/wp-login.%EXT%
- user/admin.%EXT%
- users/admin.%EXT%
- registration/
- processlogin.%EXT%
- checklogin.%EXT%
- checkuser.%EXT%
- checkadmin.%EXT%
- isadmin.%EXT%
- authenticate.%EXT%
- authentication.%EXT%
- auth.%EXT%
- authuser.%EXT%
- authadmin.%EXT%
- cp.%EXT%
- modelsearch/login.%EXT%
- moderator.%EXT%
- moderator/
- controlpanel/
- controlpanel.%EXT%
- admincontrol.%EXT%
- adminpanel.%EXT%
- fileadmin/
- fileadmin.%EXT%
- sysadmin.%EXT%
- admin1.%EXT%
- admin1.html
- admin1.htm
- admin2.%EXT%
- admin2.html
- yonetim.%EXT%
- yonetim.html
- yonetici.%EXT%
- yonetici.html
- phpmyadmin/
- myadmin/
- ur-admin.%EXT%
- ur-admin/
- Server.%EXT%
- Server/
- wp-admin/
- administr8.%EXT%
- administr8/
- webadmin/
- webadmin.%EXT%
- administratie/
- admins/
- admins.%EXT%
- administrivia/
- Database_Administration/
- useradmin/
- sysadmins/
- sysadmins/
- admin1/
- system-administration/
- administrators/
- pgadmin/
- directadmin/
- staradmin/
- ServerAdministrator/
- SysAdmin/
- administer/
- LiveUser_Admin/
- sys-admin/
- typo3/
- panel/
- cpanel/
- cpanel_file/
- platz_login/
- rcLogin/
- blogindex/
- formslogin/
- autologin/
- manuallogin/
- simpleLogin/
- loginflat/
- utility_login/
- showlogin/
- memlogin/
- login-redirect/
- sub-login/
- wp-login/
- login1/
- dir-login/
- login_db/
- xlogin/
- smblogin/
- customer_login/
- UserLogin/
- login-us/
- acct_login/
- bigadmin/
- project-admins/
- phppgadmin/
- pureadmin/
- sql-admin/
- radmind/
- openvpnadmin/
- wizmysqladmin/
- vadmind/
- ezsqliteadmin/
- hpwebjetadmin/
- newsadmin/
- adminpro/
- Lotus_Domino_Admin/
- bbadmin/
- vmailadmin/
- Indy_admin/
- ccp14admin/
- irc-macadmin/
- banneradmin/
- sshadmin/
- phpldapadmin/
- macadmin/
- administratoraccounts/
- admin4_account/
- admin4_colon/
- radmind-1/
- Super-Admin/
- AdminTools/
- cmsadmin/
- SysAdmin2/
- globes_admin/
- cadmins/
- phpSQLiteAdmin/
- navSiteAdmin/
- server_admin_small/
- logo_sysadmin/
- power_user/
- system_administration/
- ss_vms_admin_sm/
- bb-admin/
- panel-administracion/
- instadmin/
- memberadmin/
- administratorlogin/
- adm.%EXT%
- admin_login.%EXT%
- panel-administracion/login.%EXT%
- pages/admin/admin-login.%EXT%
- pages/admin/
- acceso.%EXT%
- admincp/login.%EXT%
- admincp/
- adminarea/
- admincontrol/
- affiliate.%EXT%
- adm_auth.%EXT%
- memberadmin.%EXT%
- administratorlogin.%EXT%
- modules/admin/
- administrators.%EXT%
- siteadmin/
- siteadmin.%EXT%
- adminsite/
- kpanel/
- vorod/
- vorod.%EXT%
- vorud/
- vorud.%EXT%
- adminpanel/
- PSUser/
- secure/
- webmaster/
- webmaster.%EXT%
- autologin.%EXT%
- userlogin.%EXT%
- admin_area.%EXT%
- cmsadmin.%EXT%
- security/
- usr/
- root/
- secret/
- admin/login.%EXT%
- admin/adminLogin.%EXT%
- moderator.php
- moderator.html
- moderator/login.%EXT%
- moderator/admin.%EXT%
- yonetici.%EXT%
- 0admin/
- 0manager/
- aadmin/
- cgi-bin/login%EXT%
- login1%EXT%
- login_admin/
- login_admin%EXT%
- login_out/
- login_out%EXT%
- login_user%EXT%
- loginerror/
- loginok/
- loginsave/
- loginsuper/
- loginsuper%EXT%
- login%EXT%
- logout/
- logout%EXT%
- secrets/
- super1/
- super1%EXT%
- super_index%EXT%
- super_login%EXT%
- supermanager%EXT%
- superman%EXT%
- superuser%EXT%
- supervise/
- supervise/Login%EXT%
- super%EXT%
Linux/pc安装方法
- sudo apt install python3
- sudo apt install python3-pip
- sudo apt install git
- git clone https://github.com/alienwhatever/Admin-Scanner.git cd Admin-Scanner
Termux / Android安装方法
- pkg update && pkg upgrade
- pkg install python3
- pkg install git
- git clone https://github.com/alienwhatever/Admin-Scanner.git
- cd Admin-Scanner
- pip3 install -r requirement.txt
使用方法
- 此工具仅用于教育和测试目的,我对你用这个工具做的事不负责。
- 用法:
- -site <网站地址> - 要扫描的网站网址
- --proxy <prorocol>-<代理服务器ip:端口> - 使用代理服务器扫描管理面板
- --t <秒(s)> - 扫描线程的延迟时间(防止HTTP 508)
- --w <path/of/custom/wordlist> - 自定义扫描字典目录地址
- 例如:
- ./scan.py -site secvery.com
- ./scan.py -site secvery.com --t 1
- ./scan.py -site secvery.com www.secvery.com
- ./scan.py -site secvery.com --w /custom/wordlist/list.txt
- ./scan.py --proxy http-1.2.3.4:8080 -site secvery.com
下载地址
温馨提示:终身会员登陆后查看
原创文章,作者: Admin ,转载请注明出处:https://www.secvery.com/4286.html