添加EvilPot测试靶场:一个专门用于让扫描器产生误报的靶场,编写插件应该尽量避免能在这个靶场扫描出结果 #3068
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Check POC | |
on: [push, pull_request] | |
jobs: | |
check_poc: | |
runs-on: ubuntu-18.04 | |
steps: | |
- uses: actions/setup-python@v1 | |
with: | |
python-version: 3.7 | |
- uses: actions/checkout@v2 | |
with: | |
fetch-depth: 1 | |
- name: Prepare | |
run: | | |
cd $GITHUB_WORKSPACE && \ | |
wget -nv https://github.com/chaitin/xray/releases/download/1.8.2/xray_linux_amd64.zip && \ | |
pip3 install yamllint && \ | |
unzip xray_linux_amd64.zip && \ | |
echo 'update: | |
check: false' > config.yaml | |
- name: Check POC | |
run: | | |
cd $GITHUB_WORKSPACE && \ | |
./xray_linux_amd64 poclint --script "./pocs/*" --filepath "./pocs/" --rules filename,filepath,yamlschema,yamllint,cellint && \ | |
./xray_linux_amd64 poclint --script "./fingerprints/*" --filepath "./fingerprints/" --rules filename,filepath,yamlschema,yamllint,cellint |