win11在xray的安裝目錄打開powershell
輸入.\xr后tab補齊(.\表示運行的意思),
查看幫助:
...\xray> .\xray_windows_amd64.exe webscan -h
NAME:
webscan - Run a webscan task
USAGE:
webscan [command options] [arguments...]
OPTIONS:
--list, -l list plugins
--plugins value, --plugin value, --plug value specify the plugins to run, separated by ','
--poc value, -p value specify the poc to run, separated by ','
--listen value use proxy resource collector, value is proxy addr, (example: 127.0.0.1:1111)
--basic-crawler value, --basic value use a basic spider to crawl the target and scan the requests
--browser-crawler value, --browser value use a browser spider to crawl the target and scan the requests
--url-file value, --uf value read urls from a local file and scan these urls, one url per line
--burp-file value, --bf value read requests from burpsuite exported file as targets
--url value, -u value scan a **single** url
--data value, -d value data string to be sent through POST (e.g. 'username=admin')
--raw-request FILE, --rr FILE load http raw request from a FILE
--force-ssl, --fs force usage of SSL/HTTPS for raw-request
--json-output FILE, --jo FILE output xray results to FILE in json format
--html-output FILE, --ho FILE output xray result to FILE in HTML format
--webhook-output value, --wo value post xray result to url in json format
按“上”鍵回傳上一條命令,因為xray是單行輸入,
我們選擇basic-crawler,基本爬蟲,結果放到result.html,ctrl+C暫停,
\xray> .\xray_windows_amd64.exe webscan --basic-crawler https://www.baidu.com/ --html-output result.html
當然,百度是沒有漏洞的,爬了一會就觸發百度的安全認證了,
轉載請註明出處,本文鏈接:https://www.uj5u.com/qita/403945.html
標籤:其他
上一篇:跟著狂神學Java:安裝開發環境
下一篇:下拉重繪上拉加載
