本文最后更新于678 天前,其中的信息可能已经过时
fofa常用语法
app="Coremail" && country=CN #查找使用coremail并且在中国境内的网站
title="管理后台" || title="登录后台" #查找title中含有管理后台或者登录后台的网站
port!="80" #匹配端口不为80端口的服务
title="管理后台" #查找title含有管理后台的ip
header="thinkphp" #查找响应头含有thinkphp的ip
body="管理后台" #查找响应包含有thinkphp的ip
domain="baidu.com" #查找指定根域的所有子域
host="baidu" #查找host字段中带有baidu的网站
country="CN" #查找中国境内的ip
region="Jiangsu" #查找江苏地区的ip
cert="phpinfo.me" #搜索证书(如https证书、imaps证书等)中含有"phpinfo.me"关键词的网站和IP
server="apache" #服务器使用apache的网站
查找指定应用
app=”Coremail” #查找使用Coremail的网站
app=”Oracle-Weblogic_interface_7001″ #查找使用Weblogic的网站
app=”CCTV-Cameras” #查找使用九安视频监控的网站
app=”奇安信-天擎” #查找使用天擎的网站
app=”Apache-Shiro” #查找使用shiro的网站
app=”struts2″ #查找使用struts2的网站
app=”TongDa-OA” #查找使用通达OA的网站
app=”致远互联-OA” #查找使用致远OA的网站
app=”泛微-协同办公OA” #查找使用泛微OA的网站
app=”万户网络-ezOFFICE” #查找使用万户OA的网站
app=”ATLASSIAN-Confluence” #查找使用confluence的网站
app=”f5-BIGIP” #查找使用f5的网站
title=”+ ID_VC_Welcome +” #查找Vcenter的网站
搜索使用exchange的网站
app=”Microsoft-Exchange”
title=”Outlook Web App”
microsoft exchange 2013:
app=”Microsoft-Exchange-2013″
app=”Microsoft-Exchange-Server-2013-CU21″
app=”Microsoft-Exchange-Server-2013-CU17″
app=”Microsoft-Exchange-Server-2013-CU23″
app=”Microsoft-Exchange-Server-2013-CU13″
app=”Microsoft-Exchange-Server-2013-CU22″
app=”Microsoft-Exchange-Server-2013-CU11″
app=”Microsoft-Exchange-Server-2013-CU2″
app=”Microsoft-Exchange-Server-2013-CU16″
app=”Microsoft-Exchange-Server-2013-CU19″
app=”Microsoft-Exchange-Server-2013-CU3″
app=”Microsoft-Exchange-Server-2013-CU18″
app=”Microsoft-Exchange-Server-2013-CU5″
app=”Microsoft-Exchange-Server-2013-CU20″
app=”Microsoft-Exchange-Server-2013-CU12″
app=”Microsoft-Exchange-Server-2013-CU15″
app=”Microsoft-Exchange-Server-2013-CU10″
app=”Microsoft-Exchange-Server-2013-CU9″
app=”Microsoft-Exchange-Server-2013-CU6″
app=”Microsoft-Exchange-Server-2013-CU7″
app=”Microsoft-Exchange-Server-2013-CU1″
app=”Microsoft-Exchange-Server-2013-CU14″
app=”Microsoft-Exchange-Server-2013-CU8″
app=”Microsoft-Exchange-Server-2013-RTM”
app=”Microsoft-Exchange-Server-2013-SP1″
app=”Microsoft-Exchange-2013″
microsoft exchange 2016:
app=”Microsoft-Exchange-Server-2016-CU19″
app=”Microsoft-Exchange-Server-2016-CU3″
app=”Microsoft-Exchange-Server-2016-CU12″
app=”Microsoft-Exchange-Server-2016-RTM”
app=”Microsoft-Exchange-Server-2016-CU7″
app=”Microsoft-Exchange-Server-2016-CU17″
app=”Microsoft-Exchange-Server-2016-CU2″
app=”Microsoft-Exchange-Server-2016-CU1″
app=”Microsoft-Exchange-Server-2016-CU14″
app=”Microsoft-Exchange-Server-2016-CU5″
app=”Microsoft-Exchange-Server-2016-CU11″
app=”Microsoft-Exchange-Server-2016-CU9″
app=”Microsoft-Exchange-Server-2016-CU16″
app=”Microsoft-Exchange-Server-2016-CU10″
app=”Microsoft-Exchange-Server-2016-CU6″
app=”Microsoft-Exchange-Server-2016-CU13″
app=”Microsoft-Exchange-Server-2016-CU18″
app=”Microsoft-Exchange-Server-2016-CU8″
app=”Microsoft-Exchange-Server-2016-CU4″
app=”Microsoft-Exchange-2016-POP3-server”
microsoft exchange 2019:
app=”Microsoft-Exchange-Server-2019-CU5″
app=”Microsoft-Exchange-Server-2019-CU3″
app=”Microsoft-Exchange-Server-2019-Preview”
app=”Microsoft-Exchange-Server-2019-CU8″
app=”Microsoft-Exchange-Server-2019-CU1″
app=”Microsoft-Exchange-Server-2019-CU7″
app=”Microsoft-Exchange-Server-2019-CU2″
app=”Microsoft-Exchange-Server-2019-CU6″
app=”Microsoft-Exchange-Server-2019-RTM”
app=”Microsoft-Exchange-Server-2019-CU4″
microsoft exchange 2010:
app=”Microsoft-Exchange-2010-POP3-server-version-03.1″
app=”Microsoft-Exchange-Server-2010″
查找指定数据库的ip
protocol=mysql #查找使用mysql的ip
protocol=mssql #查找使用mssql的ip
protocol=oracle #查找使用oracle的ip
protocol=redis #查找使用redis的ip
查看指定开放端口的ip
port="3389" #查找开放3389端口的主机
ports="1433,3306,3389" #查找开放了1433,3306,3389端口的主机
ports=="1433,3306,3389" #查找只开放了1433,3306,3389端口的主机
查看ip或网段信息
ip="220.181.38.148" #查找指定ip的信息
ip="220.181.38.0/24" #查找指定网段的信息
查找指定css或者js网站
通过一些cms或者别的什么,源代码找到独特的css或者js文件,然后直接放到搜索框,不需要任何语法
