1. 添加基线漏洞扫描插件

2. 添加exploit插件,已完成1/7

main.py

@@ -130,4 +130,4 @@ def check_debug():
             }
 
     # 输出结果
-    output.print_script_run_result(scripts_result)
+    output.show_results(scripts_result)

plugins/AD/BAK_Plugin_AD_Exploit_Constrained_Delegation.py

@@ -833,7 +833,6 @@ class PluginADConstrainedDelegation(PluginAdExploitBase):
     """
 
     alias = ADPluginAlias.ConstrainedDelegate
-    # next_chains = [ADPluginAlias.PsExec, ADPluginAlias.SmbExec, ADPluginAlias.WmiExec]
     p_type = AllPluginTypes.Exploit
 
     def __init__(self):

plugins/AD/BAK_Plugin_AD_Scan_Template.py

@@ -0,0 +1,21 @@
+from copy import copy
+
+from plugins.AD import PluginADScanBase
+from utils.consts import AllPluginTypes
+
+
+class PluginADXXX(PluginADScanBase):
+    """
+
+    """
+
+    display = ""
+    alias = ""
+    p_type = AllPluginTypes.Scan
+
+    def __init__(self, *args, **kwargs):
+        super().__init__(*args, **kwargs)
+
+    def run_script(self, args) -> dict:
+        result = copy(self.result)
+        return result

plugins/AD/Plugin_AD_Exploit_LDAP_Info.py

@@ -0,0 +1,32 @@
+import argparse
+from copy import copy
+
+from plugins.AD import PluginAdExploitBase
+from utils.consts import AllPluginTypes
+
+
+class PluginADLdapInformation(PluginAdExploitBase):
+    """
+    LDAP信息收集
+    """
+
+    display = "LDAP信息收集"
+    alias = "ldap_inf"
+    p_type = AllPluginTypes.Exploit
+
+    def __init__(self):
+        super().__init__()
+
+    def reg_argument(self, parser: argparse.ArgumentParser):
+        parser.add_argument("--", help="", dest="")
+        parser.add_argument("--", help="",
+                            dest="")
+
+    def run_script(self, args) -> dict:
+        """
+        脚本入口函数
+        :return: bool
+        """
+        result = copy(self.result)
+        # TODO
+        return result

plugins/AD/Plugin_AD_Exploit_NetBIOS_Info.py

@@ -0,0 +1,32 @@
+import argparse
+from copy import copy
+
+from plugins.AD import PluginAdExploitBase
+from utils.consts import AllPluginTypes
+
+
+class PluginADNetBiosInformation(PluginAdExploitBase):
+    """
+    netbios 协议探测
+    """
+
+    display = "netbios 协议探测"
+    alias = "ntbs_inf"
+    p_type = AllPluginTypes.Exploit
+
+    def __init__(self):
+        super().__init__()
+
+    def reg_argument(self, parser: argparse.ArgumentParser):
+        parser.add_argument("--", help="", dest="")
+        parser.add_argument("--", help="",
+                            dest="")
+
+    def run_script(self, args) -> dict:
+        """
+        脚本入口函数
+        :return: bool
+        """
+        result = copy(self.result)
+        # TODO
+        return result

plugins/AD/Plugin_AD_Exploit_PsLogon_Info.py

@@ -0,0 +1,32 @@
+import argparse
+from copy import copy
+
+from plugins.AD import PluginAdExploitBase
+from utils.consts import AllPluginTypes
+
+
+class PluginADPsLogonInformation(PluginAdExploitBase):
+    """
+    Pslogon信息收集
+    """
+
+    display = "Pslogon信息收集"
+    alias = "pslg_info"
+    p_type = AllPluginTypes.Exploit
+
+    def __init__(self):
+        super().__init__()
+
+    def reg_argument(self, parser: argparse.ArgumentParser):
+        parser.add_argument("--", help="", dest="")
+        parser.add_argument("--", help="",
+                            dest="")
+
+    def run_script(self, args) -> dict:
+        """
+        脚本入口函数
+        :return: bool
+        """
+        result = copy(self.result)
+        # TODO
+        return result

plugins/AD/Plugin_AD_Exploit_SAMR_Info.py

@@ -0,0 +1,32 @@
+import argparse
+from copy import copy
+
+from plugins.AD import PluginAdExploitBase
+from utils.consts import AllPluginTypes
+
+
+class PluginADSAMRInformation(PluginAdExploitBase):
+    """
+    SAMR信息探测
+    """
+
+    display = "SAMR信息探测"
+    alias = "samr_info"
+    p_type = AllPluginTypes.Exploit
+
+    def __init__(self):
+        super().__init__()
+
+    def reg_argument(self, parser: argparse.ArgumentParser):
+        parser.add_argument("--", help="", dest="")
+        parser.add_argument("--", help="",
+                            dest="")
+
+    def run_script(self, args) -> dict:
+        """
+        脚本入口函数
+        :return: bool
+        """
+        result = copy(self.result)
+        # TODO
+        return result

plugins/AD/Plugin_AD_Exploit_Spn_Scan.py

@@ -0,0 +1,32 @@
+import argparse
+from copy import copy
+
+from plugins.AD import PluginAdExploitBase
+from utils.consts import AllPluginTypes
+
+
+class PluginADSpnScan(PluginAdExploitBase):
+    """
+    spn 扫描
+    """
+
+    display = "spn扫描"
+    alias = "spn_inf"
+    p_type = AllPluginTypes.Exploit
+
+    def __init__(self):
+        super().__init__()
+
+    def reg_argument(self, parser: argparse.ArgumentParser):
+        parser.add_argument("--", help="", dest="")
+        parser.add_argument("--", help="",
+                            dest="")
+
+    def run_script(self, args) -> dict:
+        """
+        脚本入口函数
+        :return: bool
+        """
+        result = copy(self.result)
+        # TODO
+        return result

plugins/AD/Plugin_AD_Exploit_adidns_dump.py

@@ -0,0 +1,33 @@
+import argparse
+from copy import copy
+
+from plugins.AD import PluginAdExploitBase
+from utils.consts import AllPluginTypes
+
+
+class PluginADAdiDNSDump(PluginAdExploitBase):
+    """
+    AdiDNSDump信息探测
+    """
+
+    display = "AdiDNSDump信息探测"
+    alias = "adi_dns_dmp"
+    p_type = AllPluginTypes.Exploit
+
+    def __init__(self):
+        super().__init__()
+
+    def reg_argument(self, parser: argparse.ArgumentParser):
+        parser.description= "AdiDNSDump信息探测"
+        parser.add_argument("--", help="", dest="")
+        parser.add_argument("--", help="",
+                            dest="")
+
+    def run_script(self, args) -> dict:
+        """
+        脚本入口函数
+        :return: bool
+        """
+        result = copy(self.result)
+        # TODO
+        return result