基于 https://github.com/TideSec/TideFinger/blob/master/cms_finger.db cms指纹库中的fofa指纹。
可以看到识别规则会包含一些逻辑运算符,原作者只使用了正则来粗略的处理,感觉误报会很多,于是我用“后缀表达式”的方法来识别这些运算符,感觉算是可以完美处理这些规则了。
支持 body=”” titile=”” 这些语法,支持 && || ( ) 等的运算符。同时也把sqlite数据导出为json格式,然后自己也加了一些识别规则。
p s: 用类似表达式的方式来作指纹识别,只访问一次首页就能得出结果,用各种运算符来保证准确性,感觉挺不错的。
指纹
```json
[
{
“name”: “Dell-Printer”,
“rule”: “title=\”Dell Laser Printer\””,
“program”: “”
},
{
“name”: “HP-OfficeJet-Printer”,
“rule”: “title=\”HP Officejet\” || body=\”align=\”center\”>HP Officejet\””,
“program”: “”
},
{
“name”: “Biscom-Delivery-Server”,
“rule”: “body=\”/bds/stylesheets/fds.css\” || body=\”/bds/includes/fdsJavascript.do\””,
“program”: “”
},
{
“name”: “DD-WRT”,
“rule”: “body=\”style/pwc/ddwrt.css\””,
“program”: “”
},
{
“name”: “ewebeditor”,
“rule”: “body=\”/ewebeditor.htm?\””,
“program”: “”
},
{
“name”: “fckeditor”,
“rule”: “body=\”new FCKeditor\””,
“program”: “”
},
{
“name”: “xheditor”,
“rule”: “body=\”xheditorlang/zh-cn.js\”||body=\”class=\”xheditor\”||body=\”.xheditor(\””,
“program”: “”
},
{
“name”: “百为路由”,
“rule”: “body=\”提交验证的id必须是ctlsubmit\””,
“program”: “”
},
{
“name”: “锐捷NBR路由器”,
“rule”: “body=\”freenbr_login_form.png\””,
“program”: “”
},
{
“name”: “mikrotik”,
“rule”: “title=\”RouterOS\” && body=\”mikrotik\””,
“program”: “”
},
{
“name”: “ThinkSNS”,
“rule”: “body=\”/addons/theme/\” && body=\”全局变量\””,
“program”: “”
},
{
“name”: “h3c路由器”,
“rule”: “title=\”Web user login\” && body=\”nLanguageSupported\””,
“program”: “”
},
{
“name”: “jcg无线路由器”,
“rule”: “title=\”Wireless Router\” && body=\”http://www.jcgcn.com\“”,
“program”: “”
},
{
“name”: “D-Link_VoIP_Wireless_Router”,
“rule”: “title=\”D-Link VoIP Wireless Router\””,
“program”: “”
},
{
“name”: “arrisi_Touchstone”,
“rule”: “title=\”Touchstone Status\” || body=\”passWithWarnings\””,
“program”: “”
},
{
“name”: “ZyXEL”,
“rule”: “body=\”Forms/rpAuth_1\””,
“program”: “”
},
{
“name”: “Ruckus”,
“rule”: “body=\”mon. Tell me your username\” || title=\”Ruckus Wireless Admin\””,
“program”: “”
},
{
“name”: “Motorola_SBG900”,
“rule”: “title=\”Motorola SBG900\””,
“program”: “”
},
{
“name”: “Wimax_CPE”,
“rule”: “title=\”Wimax CPE Configuration\””,
“program”: “”
},
{
“name”: “Cisco_Cable_Modem”,
“rule”: “title=\”Cisco Cable Modem\””,
“program”: “”
},
{
“name”: “Scientific-Atlanta_Cable_Modem”,
“rule”: “title=\”Scientific-Atlanta Cable Modem\””,
“program”: “”
},
{
“name”: “rap”,
“rule”: “body=\”/jscripts/rap_util.js\””,
“program”: “”
},
{
“name”: “ZTE_MiFi_UNE”,
“rule”: “title=\”MiFi UNE 4G LTE\””,
“program”: “”
},
{
“name”: “ZTE_ZSRV2_Router”,
“rule”: “title=\”ZSRV2路由器Web管理系统\” && body=\”ZTE Corporation. All Rights Reserved.\””,
“program”: “”
},
{
“name”: “百为智能流控路由器”,
“rule”: “title=\”BYTEVALUE 智能流控路由器\” && body=\”\””,
“program”: “”
},
{
“name”: “乐视路由器”,
“rule”: “title=\”乐视路由器\” && body=\”
“program”: “”
},
{
“name”: “Verizon_Wireless_Router”,
“rule”: “title=\”Wireless Broadband Router Management Console\” && body = \”verizon_logo_blk.gif\””,
“program”: “”
},
{
“name”: “Nexus_NX_router”,
“rule”: “body=\”http://nexuswifi.com/\” && title=\”Nexus NX\””,
“program”: “”
},
{
“name”: “Verizon_Router”,
“rule”: “title=\”Verizon Router\””,
“program”: “”
},
{
“name”: “小米路由器”,
“rule”: “title=\”小米路由器\” “,
“program”: “”
},
{
“name”: “QNO_Router”,
“rule”: “body=\”/QNOVirtual_Keyboard.js\” && body=\”/images/login_img01_03.gif\””,
“program”: “”
},
{
“name”: “爱快流控路由”,
“rule”: “title=\”爱快\” && body=\”/resources/images/land_prompt_ico01.gif\””,
“program”: “”
},
{
“name”: “Django”,
\” || body=\”csrfmiddlewaretoken\””,
“program”: “”
},
{
“name”: “axis2-web”,
“rule”: “body=\”axis2-web/css/axis-style.css\””,
“program”: “”
},
{
“name”: “Apache-Wicket”,
“rule”: “body=\”xmlns:wicket=\” || body=\”/org.apache.wicket.\””,
“program”: “”
},
{
“name”: “BEA-WebLogic-Server”,
“rule”: “body=\”