{"id":13843450,"url":"https://github.com/Ovi3/awvs_xray","last_synced_at":"2025-07-11T19:31:35.838Z","repository":{"id":45841556,"uuid":"281052439","full_name":"Ovi3/awvs_xray","owner":"Ovi3","description":"AWVS13和xray的自动化扫描脚本","archived":false,"fork":false,"pushed_at":"2020-08-10T12:27:59.000Z","size":16,"stargazers_count":17,"open_issues_count":0,"forks_count":9,"subscribers_count":3,"default_branch":"master","last_synced_at":"2024-08-05T17:37:26.141Z","etag":null,"topics":["scanner-web","security","vulnerability","vulnerability-scanners","web-security"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Ovi3.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-07-20T07:57:31.000Z","updated_at":"2024-07-26T06:08:04.000Z","dependencies_parsed_at":"2022-09-17T04:42:35.263Z","dependency_job_id":null,"html_url":"https://github.com/Ovi3/awvs_xray","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ovi3%2Fawvs_xray","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ovi3%2Fawvs_xray/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ovi3%2Fawvs_xray/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ovi3%2Fawvs_xray/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Ovi3","download_url":"https://codeload.github.com/Ovi3/awvs_xray/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225754989,"owners_count":17519183,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["scanner-web","security","vulnerability","vulnerability-scanners","web-security"],"created_at":"2024-08-04T17:02:08.919Z","updated_at":"2024-11-21T15:30:57.666Z","avatar_url":"https://github.com/Ovi3.png","language":"Python","funding_links":[],"categories":["Python (1887)","Python"],"sub_categories":[],"readme":"### 简介\n在Ubuntu18.08 x64下搭建AWVS13和xray的自动化扫描。\n\nxray：https://github.com/chaitin/xray/releases\n\nawvs13：https://hub.docker.com/r/vouu/acunetix\n\nawvs13的邮箱、密码：contact@manhtuong.net、Abcd1234\n\n### 功能\n- 下载安装xray、awvs docker镜像\n- xray多开，开启xray回连平台\n- 监听xray是否扫描完成，如果是就扫描下一个url\n\n高度定制化功能：\n- awvs仅作爬取，不扫描，扫描由xray进行\n- 使用iptables设置AWVS监听的3443端口仅本地访问\n- 定时下载awvs报告并删除awvs容器里的报告\n- 每24小时重启AWVS，以释放内存（AWVS容器运行久了，内存越占越满）\n- xray配置：关闭目录爆破、密码爆破\n\n（本仓库代码功能高度定制，每个人的需求不一样。本仓库代码仅供参考）\n\n\n### 文件说明\n\n- install.sh：下载xray、httprobe，安装docker，awvs\n- toggle.sh： 开关TCP:3443端口对外开放。因为AWVS账号密码固定，需要其它机器访问该端口时再开放\n- start.sh： 开始运行xray和awvs\n- check.sh：检测xray运行状态，如果扫描完成则调用awvs添加扫描任务\n- update.sh： 升级xray（或执行./xray_linux_amd64 upgrade来升级）\n- core/awvs13.py： 用于添加awvs扫描任务等\n- core/start_xray.sh： xray被动扫描多开脚本\n- core/reverse_tmpl.yaml：xray回连平台配置文件模板\n- core/modify.py：修改xray配置文件config.yaml，生成config_tmpl.yaml\n\n以下为运行时生成的文件：\n- core/config_tmpl.yaml：xray扫描配置文件模板\n- core/reverse.yaml：xray回连平台配置文件\n- output/result_*.html： xray扫描报告\n- output/*.pdf： awvs扫描报告\n- output/urls_done.txt： 已添加过awvs扫描任务的url列表\n- workspace/： xray的临时工作目录\n\n### 运行步骤\n在一台外网服务器，Ubuntu18.08上运行：\n\n```shell script\nchmod +x *.sh core/*.sh\n# 安装\n./install.sh\n\n# 将url列表文件放在项目根目录的urls.txt文件，供awvs13读取\n# 可以使用httprobe验证domains.txt域名列表文件里的域名是否开web服务，生成urls.txt文件\npython3 httprobe.py domains.txt urls.txt\n\n# 运行awvs13容器；通过tmux开启多个xray；通过tmux每60秒运行一次./check.sh，用于监控xray扫描状态\n./start.sh \u003c外网IP\u003e \u003cxray个数\u003e\n\n# 通过tmux进入会话查看xray扫描状态或check.sh脚本运行状态\ntmux a -t scan\ntmux a -t check\n\n# 关闭xray、awvs13容器\n# 注意该脚本会删除awvs13容器，确保awvs13里无扫描任务再执行\n./stop.sh\n\n```\n\n\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FOvi3%2Fawvs_xray","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FOvi3%2Fawvs_xray","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FOvi3%2Fawvs_xray/lists"}