Magictree
De Linuxmemo.
(→Astuce) |
(→Definition) |
||
| Ligne 31 : | Ligne 31 : | ||
[ | [ | ||
| - | ["host", "//host", ""] | + | ["host", "//host", ""] |
["port", "ipproto/port[state="open']", "leaf"] | ["port", "ipproto/port[state="open']", "leaf"] | ||
] | ] | ||
| Ligne 38 : | Ligne 38 : | ||
'''A repository''' is a location where queries and methods may be stored. | '''A repository''' is a location where queries and methods may be stored. | ||
| + | |||
==Astuce== | ==Astuce== | ||
*tous les ports ouverts | *tous les ports ouverts | ||
Version du 16 juillet 2020 à 11:16
Voir: Dradis
- Extraction de données sur un fichier au format XML (nmap, OpenVAS, Nessus...).
- Exécution de commandes.
- Annotations
http://www.gremwell.com/what_is_magictree
http://www.gremwell.com/magictreedoc
XPath Crash Course (query language)
Voir: XPath
- language
http://www.gremwell.com/magictreedoc/2ac07abf.html
- fonctions
http://www.gremwell.com/magictreedoc/be27bc9e.html
- refs
http://www.w3.org/TR/xpath (en)
http://xmlfr.org/w3c/TR/xpath/ (fr)
http://fr.wikipedia.org/wiki/XPath
Definition
A query is what you enter in Table View to extract data from the tree in a table form. A query consists of one or more triples, each consisting of field name, expression and flags. For example, the following is a query that lists all open ports and hosts:
[ ["host", "//host", ""] ["port", "ipproto/port[state="open']", "leaf"] ]
A method is an executable command with the information necessary to execute it. A method contains the command itself, the input mode ("None", "Environment" or "TabSep" - see Commands Execution - Input), and the query that is used to extract the data from the tree and feed it to the command.
A repository is a location where queries and methods may be stored.
Astuce
- tous les ports ouverts
["host", "//host", ""] ["port", "ipproto/port[state="open"]", "leaf"]
- tous les services http
["host", "//host", ""] ["port", "descendant::port[descendant::service="http"]"]
