{"id":13841165,"url":"https://github.com/k8gege/LadonGo","last_synced_at":"2025-07-11T12:30:31.027Z","repository":{"id":37741828,"uuid":"310595798","full_name":"k8gege/LadonGo","owner":"k8gege","description":"Ladon for Kali 全平台开源内网渗透扫描器,Windows/Linux/Mac/路由器内网渗透，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。","archived":false,"fork":false,"pushed_at":"2023-12-15T16:35:45.000Z","size":3524,"stargazers_count":1614,"open_issues_count":1,"forks_count":297,"subscribers_count":33,"default_branch":"main","last_synced_at":"2024-11-21T06:36:12.407Z","etag":null,"topics":["bannerscan","brute-force","detection","exploit","ftpscan","hacktools","ms17010","mysqlscan","poc","portscan","scanner","security-tools","smbscan","sshscan"],"latest_commit_sha":null,"homepage":"http://k8gege.org/Ladon","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/k8gege.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-11-06T12:48:25.000Z","updated_at":"2024-11-20T15:50:11.000Z","dependencies_parsed_at":"2023-12-08T16:25:16.165Z","dependency_job_id":"f8c04fa9-d223-42a0-923c-54e4ec63dcaf","html_url":"https://github.com/k8gege/LadonGo","commit_stats":{"total_commits":79,"total_committers":2,"mean_commits":39.5,"dds":0.430379746835443,"last_synced_commit":"d364895fb459d99bda242166e5305f23c387754f"},"previous_names":[],"tags_count":20,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/k8gege%2FLadonGo","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/k8gege%2FLadonGo/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/k8gege%2FLadonGo/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/k8gege%2FLadonGo/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/k8gege","download_url":"https://codeload.github.com/k8gege/LadonGo/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225720397,"owners_count":17513596,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bannerscan","brute-force","detection","exploit","ftpscan","hacktools","ms17010","mysqlscan","poc","portscan","scanner","security-tools","smbscan","sshscan"],"created_at":"2024-08-04T17:01:03.602Z","updated_at":"2024-11-21T11:30:22.674Z","avatar_url":"https://github.com/k8gege.png","language":"Go","funding_links":[],"categories":["Go (531)","Go"],"sub_categories":[],"readme":"\n# Ladon Scanner For Golang\n### Wiki\nhttp://k8gege.org/Ladon/LadonGo.html\u003cbr\u003e\n\n[![Author](https://img.shields.io/badge/Author-k8gege-blueviolet)](https://github.com/k8gege) \n[![Ladon](https://img.shields.io/badge/LadonGo-5.2-yellowgreen)](https://github.com/k8gege/LadonGo) \n[![Bin](https://img.shields.io/badge/LadonGo-Bin-ff69b4)](https://github.com/k8gege/LadonGo/releases) \n[![GitHub issues](https://img.shields.io/github/issues/k8gege/LadonGo)](https://github.com/k8gege/LadonGo/issues) \n[![Github Stars](https://img.shields.io/github/stars/k8gege/LadonGo)](https://github.com/k8gege/LadonGo) \n[![GitHub forks](https://img.shields.io/github/forks/k8gege/LadonGo)](https://github.com/k8gege/LadonGo)\n[![GitHub license](https://img.shields.io/github/license/k8gege/LadonGo)](https://github.com/k8gege/LadonGo)\n[![Downloads](https://img.shields.io/github/downloads/k8gege/LadonGo/total?label=Release%20Download)](https://github.com/k8gege/LadonGo/releases/latest)\n\n### Introduction\n\nLadonGo is an open source intranet penetration scanner framework, which can be used to easily detect segment C, B, A live hosts, fingerprint identification, port scanning, password explosion, remote execution, high-risk vulnerability detection, etc. Version 4.0 includes 37 functions, high risk vulnerability detection MS17010, SmbGhost, remote execution of SshCmd, WinrmCmd, PhpShell, JspShell, GoWebShell, L, 12 protocol password explosion Smb/Ssh/Ftp/Mysql/Mssql/Oracle/Sqlplus/Winrm/HttpBasic/Edits/MongoDB/RouterOS, survival detection/information collection/fingerprint identification NbtInfo, OnlinePC, Ping, Icmp, SnmpScan, HttpBanner, HttpTitle, TcpBanner, WeblogicScan, O xidScan, Port scan / service probe portscan, forward to Socks5 proxy\u003c br\u003e\n\nLadonGO 5.2 Pentest Scanner framework 全平台Go开源内网渗透扫描器框架,Windows/Linux/Mac内网渗透，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。\n\n### Development environment\n\nOS: Kali 2019 X64\u003cbr\u003e\n\nIDE: Mousepad\u003cbr\u003e\n\nGo: 1.13 Linux\u003cbr\u003e\n\n\n### Function module\n\n#### Detection\n\n . | . \n-|-\nOnlinePC |         (Using ICMP/SNMP/Ping detect Online hosts)\nPingScan |         (Using system ping to detect Online hosts)\nIcmpScan |         (Using ICMP Protocol to detect Online hosts)\nSnmpScan |         (Using Snmp Protocol to detect Online hosts)\nHttpBanner |       (Using HTTP Protocol Scan Web Banner)\nHttpTitle |        (Using HTTP protocol Scan Web titles)\nT3Scan |           (Using T3 Protocol Scan Weblogic hosts)\nPortScan |         (Scan hosts open ports using TCP protocol)\nTcpBanner |        (Scan hosts open ports using TCP protocol)\nOxidScan |         (Using dcom Protocol enumeration network interfaces)\nNbtInfo |        (Scan hosts open ports using NBT protocol)\n\n#### VulDetection\n\n . | . \n-|-\nMS17010 |          (Using SMB Protocol to detect MS17010 hosts)\nSmbGhost |         (Using SMB Protocol to detect SmbGhost hosts)\nCVE-2021-21972 |   (Check VMware vCenter 6.5 6.7 7.0 Rce Vul)\nCVE-2021-26855 |   (Check CVE-2021-26855 Microsoft Exchange SSRF)\n\n \n#### BruteForce\n\n . | . \n-|-\nSmbScan |          (Using SMB Protocol to Brute-For 445 Port)\nSshScan |          (Using SSH Protocol to Brute-For 22 Port)\nFtpScan |          (Using FTP Protocol to Brute-For 21 Port)\n401Scan |          (Using HTTP BasicAuth to Brute-For web Port)\nMysqlScan |        (Using Mysql Protocol to Brute-For 3306 Port)\nMssqlScan |        (Using Mssql Protocol to Brute-For 1433 Port)\nOracleScan |       (Using Oracle Protocol to Brute-For 1521 Port)\nMongodbScan |       (Using Mongodb Protocol to Brute-For 27017 Port)\nWinrmScan |        (Using Winrm Protocol to Brute-For 5985 Port)\nSqlplusScan |      (Using Oracle Sqlplus Brute-For 1521 Port)\nRedisScan |      (Using Redis Protocol to Brute-For 6379 Port)\n\n#### RemoteExec\n\n . | . \n-|-\nSshCmd |           (SSH Remote command execution Default 22 Port)\nWinrmCmd |         (Winrm Remote command execution Default 5985 Port)\nPhpShell |         (Php WebShell command execution Default 80 Port)\nGoWebShell  |    (Go WebShell Default http://IP:888/web)\nWinJspShell  |   (JSP Shell Remote command execution Default 80 Port)\nLnxJspShell  |   (JSP Shell Remote command execution Default 80 Port)\nLnxRevShell   |  (Bash Reverse Shell)\n\n#### Exploit\n\n . | . \n-|-\nPhpStudyDoor |     (PhpStudy 2016 \u0026 2018 BackDoor Exploit)\nCVE-2018-14847 |   (Export RouterOS Password 6.29 to 6.42)\n\n#### Socks5\n\n . | . \n-|-\nSocks5 |     (Socks5 forward proxy server)\n\n### Build\n```Bash\ngo get github.com/k8gege/LadonGo\ngo build Ladon.go\n```\n\n### Make\n```Bash\nmake windows\nmake linux\nmake mac\n```\n\n### Install\n#### Linux/Mac\n```Bash\nmake install\n```\n\n#### Windows\n```Bash\ngo run install.go\n```\n\n### Usage\n\n#### help\n```Bash\nLadon FuncList\nLadon Detection\nLadon VulDetection\nadon BruteFor\nLadon RemoteExec\nLadon Exploit\nLadon Example\n```\n\n#### Usage\nLadon IP/pcname/CIDR/URL/txt moudle\n\n```Bash\nLadon 192.168.1.8 MS17010\nLadon 192.168.1.8/24 MS17010\nLadon 192.168.1/c MS17010\nLadon 192.168/b MS17010\nLadon 192/a MS17010\n\nLadon 192.168.1-192.168.5 MS17010\nLadon http://192.168.1.8:8080 BasicAuthScan\nLadon ip.txt MS17010\nLadon url.txt HttpBanner\n```\n\n#### Examples\n\n\n##### Forward Socks5 proxy server\n\nLadon Socks5 192.168.1.8 1080\n\n\n##### Information collection and vulnerability detection\n\n\nPing scan segment C live hosts (with any permission) \u003c br \u003e\n\nLadon 192.168.1.8/24 PingScan\u003cbr\u003e\n\n\nICMP scanning section C survival host (administrator authority)\u003cbr\u003e\n\nLadon 192.168.1.8/24 IcmpScan\u003cbr\u003e\n\n\nSNMP scanning of surviving hosts and devices in Segment C\u003cbr\u003e\n\nLadon 192.168.1.8/24 SnmpScan\u003cbr\u003e\n\n\nSMB scans C-segment eternal blue ms17010 vulnerable hosts \u003c br \u003e\n\nLadon 192.168.1.8/24 MS17010\u003cbr\u003e\n\n\nSMB scans C-segment eternal black smbghost vulnerability host \u003c br \u003e\n\nLadon 192.168.1.8/24 SmbGhost\u003cbr\u003e\n\n\nT3 scans the hosts with open WebLogic in Segment C\u003cbr\u003e\n\nLadon 192.168.1.8/24 T3Scan\u003cbr\u003e\n\n\nHTTP scanning C-segment open Web site Banner\u003cbr\u003e\n\nLadon 192.168.1.8/24 BannerScan\u003cbr\u003e\n\n\nHTTP scanning section C open Web site title\u003cbr\u003e\n\nLadon 192.168.1.8/24 HttpTitle\u003cbr\u003e\n\n\nTCP scans the open port service information of section C. \u003c br \u003e\n\nLadon 192.168.1.8/24 TcpBanner\u003cbr\u003e\n\n\nTCP scans common open ports of segment C hosts\u003cbr\u003e\n\nLadon 192.168.1.8/24 PortScan\u003cbr\u003e\n\n\n##### Password explosion, weak password\n\n\nScan weak password of windows machine on port 445 of section C. \u003c br \u003e\n\nLadon 192.168.1.8/24 SmbScan\u003cbr\u003e\n\n\nScan the SSH weak password of the 22 port Linux machine in section C\u003cbr\u003e\n\nLadon 192.168.1.8/24 SshScan\u003cbr\u003e\n\n\nScan the weak password of FTP server on port 21 of section C. \u003c br \u003e\n\nLadon 192.168.1.8/24 FtpScan\u003cbr\u003e\n\n\nScan the weak password of MySQL server on port 3306 in section C\u003cbr\u003e\n\nLadon 192.168.1.8/24 MysqlScan\u003cbr\u003e\n\n\nScan weak password of Oracle server on port 1521 in segment C\u003cbr\u003e\n\nLadon 192.168.1.8/24 OracleScan\u003cbr\u003e\n\n\nScan the weak password of MongoDB server on port 27017 in section C\u003cbr\u003e\n\nLadon 192.168.1.8/24 MongodbScan\u003cbr\u003e\n\n\nScan weak password of Oracle server on port 1521 of section C. \u003c br \u003e\n\nLadon 192.168.1.8/24 SqlplusScan\u003cbr\u003e\n\n\nScan section C 5985 port Winrm server weak password\u003cbr\u003e\n\nLadon 192.168.1.8/24 WinrmScan\u003cbr\u003e\n\n\nScan the empty password of redis server on port 6379 of section C. \u003c br \u003e\n\nLadon 192.168.1.8/24 RedisScan\u003cbr\u003e\n\n\nScan C-segment 8728 port Routeros router \u003c br \u003e\n\nLadon 192.168.1.8/24 RouterOSScan\u003cbr\u003e\n\n##### Remote command execution\n\n```Bash\nLadon SshCmd host port user pass cmd\nLadon WinrmCmd host port user pass cmd\nLadon PhpShell url pass cmd\nLadon PhpStudyDoor url cmd\n```\n\nSshCmd \u0026 WinrmCmd\n![image](http://k8gege.org/k8img/LadonGo/LnxSshWinrm.PNG)\n\nPhpShell \u0026 PhpStudyDoor\n![image](http://k8gege.org/k8img/LadonGo/phpshell.PNG)\n\n#### SCAN IP/24 (192.168.1/c)\n . | . | . \n-|-|-\nICMP |3ms  |1/20s\nWebTitle| 10ms| 1/6s\nT3Scan |15ms| 1/4s\nEthScan |2ms | 1/30s\n\n#### Scan B(192.168/b)\n . | . | . \n-|-|-\nEthScan  | 23Min |  1 Port\nT3Scan   |  1h |  4 Port\nWebTitle | 40Min | 1 Port\nMS17010  |12Min | 1 Port\nSnmp    |  20Min| 1 Port\n\nPS: the scanning speed is actually similar to the speed of Ladon. Net version, but there is no special record, because the speed of go version is recorded by the way during the rewrite test\n\n\n### Cross platform / whole platform / whole system\n\nSupport old and new operating systems, especially old Linux systems. Many online tools can't be used at all or various errors are reported\n\n#### TestOn\n\nID | OS \n-|-\n0 | WinXP\n1 | Win 2003\n2 | Win 7\n3 | Win 8.1\n4 | Win 10\n5 | Win 2008 R2\n6 | Win 2012 R2\n7 | Win 2019\n8 | Kali 1.0.2\n9 | Kali 2018\n10 | Kali 2019\n11 | SUSE 10\n12 | CentOS 5.8\n13 | CentOS 6.3\n14 | CentOS 6.8  \n15 | Fedora 5\n16 | RedHat 5.7 \n17 | BT5-R3  \n18 | MacOS 10.15\n19 | Ubuntu 8\n20 | Ubuntu 18\n\n\n#### MacOS x64 10.15\n![image](http://k8gege.org/k8img/LadonGo/MacMS17010.png)\n\n#### Linux\n![image](http://k8gege.org/k8img/LadonGo/LnxMS17010.PNG)\n\n#### Windows\n![image](http://k8gege.org/k8img/LadonGo/OxidScan.PNG)\n\n\n### Download\n\n#### LadonGo (ALL OS)\nhttps://github.com/k8gege/LadonGo/releases\u003cbr\u003e\nhttp://k8gege.org/Download/LadonGo.rar\n\n#### Ladon (Windows \u0026 Cobalt Strike)\n\nHistory: https://github.com/k8gege/Ladon/releases\u003cbr\u003e\n911 Ver：http://k8gege.org/Download\u003cbr\u003e\n\n\n\u003cdiv style=\"text-align: center; width: 710px; border: green solid 0px;\"\u003e\n\u003cimg alt=\"\" src=\"http://k8gege.org/img/k8team.jpg\" style=\"display: inline-block;width: 250px;height: 300px;\" /\u003e\n\u003c/div\u003e\n\n\n## Stargazers over time\n\n[![Stargazers over time](https://starchart.cc/k8gege/LadonGo.svg)](https://starchart.cc/k8gege/LadonGo)\n\n\u003cimg align='right' src=\"https://profile-counter.glitch.me/LadonGo/count.svg\" width=\"200\"\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fk8gege%2FLadonGo","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fk8gege%2FLadonGo","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fk8gege%2FLadonGo/lists"}