mirrors/fscan
1
0
Fork 0
mirror of https://github.com/shadow1ng/fscan.git synced 2025-07-13 21:02:44 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

fix: 修复#439

Browse Source
This commit is contained in:
ZacharyZcR 2025-04-05 21:55:57 +08:00
parent e962b9171b
commit e4e3ff1763
1 changed files with 130 additions and 42 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

172
Plugins/WebTitle.go
View File

@ -2,9 +2,11 @@ package Plugins
import ( import (
"compress/gzip" "compress/gzip"
"context"
"crypto/tls" "crypto/tls"
"fmt" "fmt"
"io" "io"
"net"
"net/http" "net/http"
"net/url" "net/url"
"regexp" "regexp"
@ -368,58 +370,144 @@ func gettitle(body []byte) (title string) {
// GetProtocol 检测目标主机的协议类型(HTTP/HTTPS) // GetProtocol 检测目标主机的协议类型(HTTP/HTTPS)
func GetProtocol(host string, Timeout int64) (protocol string) { func GetProtocol(host string, Timeout int64) (protocol string) {
Common.LogDebug(fmt.Sprintf("开始检测主机协议 - 主机: %s, 超时: %d秒", host, Timeout)) Common.LogDebug(fmt.Sprintf("开始检测主机协议 - 主机: %s, 超时: %d秒", host, Timeout))
protocol = "http" protocol = "http" // 默认协议
// 根据标准端口快速判断协议 timeoutDuration := time.Duration(Timeout) * time.Second
if strings.HasSuffix(host, ":80") || !strings.Contains(host, ":") { ctx, cancel := context.WithTimeout(context.Background(), timeoutDuration)
Common.LogDebug("检测到HTTP标准端口或无端口使用HTTP协议") defer cancel()
// 1. 根据标准端口快速判断协议
if strings.HasSuffix(host, ":80") {
Common.LogDebug("检测到标准HTTP端口使用HTTP协议")
return return
} else if strings.HasSuffix(host, ":443") { } else if strings.HasSuffix(host, ":443") {
Common.LogDebug("检测到HTTPS标准端口使用HTTPS协议") Common.LogDebug("检测到标准HTTPS端口使用HTTPS协议")
protocol = "https" return "https"
return
} }
// 尝试建立TCP连接 // 2. 并发检测HTTP和HTTPS
Common.LogDebug("尝试建立TCP连接") resultChan := make(chan string, 2)
socksconn, err := Common.WrapperTcpWithTimeout("tcp", host, time.Duration(Timeout)*time.Second)
if err != nil {
Common.LogDebug(fmt.Sprintf("TCP连接失败: %v", err))
return
}
// 尝试TLS握手 // 检测HTTPS
Common.LogDebug("开始TLS握手") go func() {
conn := tls.Client(socksconn, &tls.Config{ tlsConfig := &tls.Config{
MinVersion: tls.VersionTLS10, InsecureSkipVerify: true,
InsecureSkipVerify: true, MinVersion: tls.VersionTLS10,
})
// 确保连接关闭
defer func() {
if conn != nil {
defer func() {
if err := recover(); err != nil {
Common.LogError(fmt.Sprintf("连接关闭时发生错误: %v", err))
}
}()
Common.LogDebug("关闭连接")
conn.Close()
} }
dialer := &net.Dialer{
Timeout: timeoutDuration / 2, // 缩短单次尝试的超时时间
}
conn, err := tls.DialWithDialer(dialer, "tcp", host, tlsConfig)
if err == nil {
Common.LogDebug("HTTPS连接成功")
conn.Close()
resultChan <- "https"
return
}
// 分析TLS错误
if err != nil {
errMsg := strings.ToLower(err.Error())
// 这些错误可能表明服务器确实支持TLS但有其他问题
if strings.Contains(errMsg, "handshake failure") ||
strings.Contains(errMsg, "certificate") ||
strings.Contains(errMsg, "tls") ||
strings.Contains(errMsg, "x509") ||
strings.Contains(errMsg, "secure") {
Common.LogDebug(fmt.Sprintf("TLS握手有错误但可能是HTTPS协议: %v", err))
resultChan <- "https"
return
}
}
resultChan <- ""
}() }()
// 设置连接超时 // 检测HTTP
conn.SetDeadline(time.Now().Add(time.Duration(Timeout) * time.Second)) go func() {
req, err := http.NewRequestWithContext(ctx, "HEAD", fmt.Sprintf("http://%s", host), nil)
if err != nil {
resultChan <- ""
return
}
// 执行TLS握手 client := &http.Client{
err = conn.Handshake() Transport: &http.Transport{
if err == nil || strings.Contains(err.Error(), "handshake failure") { TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
Common.LogDebug("TLS握手成功或握手失败但确认是HTTPS协议") DialContext: (&net.Dialer{
protocol = "https" Timeout: timeoutDuration / 2,
} else { }).DialContext,
Common.LogDebug(fmt.Sprintf("TLS握手失败: %v使用HTTP协议", err)) },
CheckRedirect: func(req *http.Request, via []*http.Request) error {
return http.ErrUseLastResponse // 不跟随重定向
},
Timeout: timeoutDuration / 2,
}
resp, err := client.Do(req)
if err == nil {
resp.Body.Close()
Common.LogDebug(fmt.Sprintf("HTTP连接成功状态码: %d", resp.StatusCode))
resultChan <- "http"
return
}
// 尝试原始TCP连接和简单HTTP请求
netConn, err := net.DialTimeout("tcp", host, timeoutDuration/2)
if err == nil {
defer netConn.Close()
netConn.SetDeadline(time.Now().Add(timeoutDuration / 2))
// 发送简单HTTP请求
_, err = netConn.Write([]byte("HEAD / HTTP/1.0\r\nHost: " + host + "\r\n\r\n"))
if err == nil {
// 读取响应
buf := make([]byte, 1024)
netConn.SetDeadline(time.Now().Add(timeoutDuration / 2))
n, err := netConn.Read(buf)
if err == nil && n > 0 {
response := string(buf[:n])
if strings.Contains(response, "HTTP/") {
Common.LogDebug("通过原始TCP连接确认HTTP协议")
resultChan <- "http"
return
}
}
}
}
resultChan <- ""
}()
// 3. 收集结果并决定使用哪种协议
var httpsResult, httpResult string
// 等待两个goroutine返回结果或超时
for i := 0; i < 2; i++ {
select {
case result := <-resultChan:
if result == "https" {
httpsResult = result
} else if result == "http" {
httpResult = result
}
case <-ctx.Done():
Common.LogDebug("协议检测超时")
break
}
} }
Common.LogDebug(fmt.Sprintf("协议检测完成,使用: %s", protocol)) // 4. 决定使用哪种协议
return protocol if httpsResult == "https" {
Common.LogDebug("优先使用HTTPS协议")
return "https"
} else if httpResult == "http" {
Common.LogDebug("使用HTTP协议")
return "http"
}
// 5. 如果两种协议都无法确认,保持默认值
Common.LogDebug(fmt.Sprintf("无法确定协议,使用默认协议: %s", protocol))
return
} }