Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/ghosttroops/go4hacker

Automated penetration and auxiliary systems, providing XSS, XXE, DNS log, SSRF, RCE, web netcat and other Servers,gin-vue-admin，online https://51pwn.com
https://github.com/ghosttroops/go4hacker

exp exploits framework gin gin-vue-admin hacker penetration pentest poc rce vue

Last synced: 5 days ago
JSON representation

Automated penetration and auxiliary systems, providing XSS, XXE, DNS log, SSRF, RCE, web netcat and other Servers,gin-vue-admin，online https://51pwn.com

Host: GitHub
URL: https://github.com/ghosttroops/go4hacker
Owner: GhostTroops
License: apache-2.0
Created: 2022-03-20T02:50:02.000Z (over 2 years ago)
Default Branch: main
Last Pushed: 2024-09-03T21:33:48.000Z (about 1 month ago)
Last Synced: 2024-09-30T09:05:27.757Z (5 days ago)
Topics: exp, exploits, framework, gin, gin-vue-admin, hacker, penetration, pentest, poc, rce, vue
Language: Go
Homepage: https://51pwn.com
Size: 8.67 MB
Stars: 141
Watchers: 6
Forks: 24
Open Issues: 1
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE

Awesome Lists containing this project

README

        [![Twitter](https://img.shields.io/twitter/url/http/Hktalent3135773.svg?style=social)](https://twitter.com/intent/follow?screen_name=Hktalent3135773) [![Follow on Twitter](https://img.shields.io/twitter/follow/Hktalent3135773.svg?style=social&label=Follow)](https://twitter.com/intent/follow?screen_name=Hktalent3135773) [![GitHub Followers](https://img.shields.io/github/followers/hktalent.svg?style=social&label=Follow)](https://github.com/hktalent/)

[![Top Langs](https://profile-counter.glitch.me/hktalent/count.svg)](https://51pwn.com)

# Simple DNS log Server,easy to ACME DNS challenge

log easy send to elasticsearch

https://github.com/hktalent/DNS_Server

## online 

https://51pwn.com/

more demo: https://github.com/hktalent/51Pwn-Platform

# go4Hacker

Automated penetration and auxiliary systems, providing XSS, XXE, DNS log, SSRF, RCE, web netcat and other Servers

more to see:http://github.com/hktalent/goSqlite_gorm



## features

- gin

- vue

- suport http2, -ServerPem -ServerKey

- Standard Domain Resolve Service

- DNSLOG

- HTTPLOG

- Rebinding/CustomRebinding

- Push (callback)

- Multi-user

- dockerlized

- python/golang client sdk

- as a standard name resolve service with support `A,CNAME,TXT,MX`

- xip

### docker 

see

https://hub.docker.com/repository/docker/hktalent/51pwn4hacker

### DNSLOG

super admin user: `admin`

password will be showed in console logs when first run.

you can change it by subcommand `resetpw`

![](https://s1.ax1x.com/2020/08/31/dXPba4.png)

### HTTPLOG

![](https://s1.ax1x.com/2020/08/31/dXiiIH.png)

## build frontend

requirements: 

`yarn`

```

brew install yarn

npm i -g npm@latest

npm install --global yarn

cd frontend

yarn install

yarn add cache-loader

rm -rf ../dist

yarn build --outDir ../dist

cd ..

```

	

## build backend

requirements: 

`golang >= 1.18`

`node >= 14.17.6`

`npm >= 8.5.5`

`yarn >= 1.22.17`

```bash

go build

# set admin passwd

./go4Hacker resetpw -u admin

#eg : 实际运行时，192.168.0.107 调整为公网 ip地址，也就是域名 51pwn.com 指向的公网ip地址

./go4Hacker serve -4 192.168.0.107 -domain 51pwn.com -lang zh-CN

open http://0.0.0.0:8080

```

## docker build

```bash

docker build -t "user/go4Hacker" .

```

For Chinese user:

```bash

docker build -t "user/go4Hacker" -f DockerfileCN .

```

## RUN

i. Register your domain, eg: `example.com`

Set your DNS Server point to your host, eg: ns.example.com => 100.100.100.100

Some registrar limit set to NS host, your can set two ns host point to only one address.

Some registrar to ns host must be different ip address, you can set one to a fake addresss and then change to the same addresss

ii. self build

```bash

docker run -p80:8080 -p53:53/udp "user/go4Hacker"  serve -domain yourdomain.com -4 100.100.100.100

```

or use dockerhub

```bash

docker pull "sort/go4Hacker"

docker run -p80:8080 -p53:53/udp -p80:8080  "sort/go4Hacker" serve -domain yourdomain.com -4 100.100.100.100

```

iii. access http://100.100.100.100

## Doc

guest/guest123

## TODO && Known Issues

- [ ] admin user can read all recordds

- [ ] allow Anonymous user access document page

- [ ] enable custom rebinding stage two setting

- [ ] fix login logical problem

## build from

https://github.com/chennqqi/go4Hacker

but the go and node js modules here are updated to the latest

# Donation

| Wechat Pay | AliPay | Paypal | BTC Pay |BCH Pay |

| --- | --- | --- | --- | --- |

|||[paypal](https://www.paypal.me/pwned2019) **[email protected]**|||