Skip to content

Releases: RuoJi6/CACM

v2.3.3

29 Dec 05:14
@RuoJi6 RuoJi6
v2.3.3
7de6580
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.3.3 Latest
Latest

更新

  • feat(searchall): 增强虚拟文件系统排除处理
  • feat(searchall): 添加基于后缀的文件扫描模式
  • feat(jarspy): 添加 JAR 进程发现和反编译命令
  • feat(jarspy): 增强Java进程检测和启动方式识别
  • feat(jarspy): 添加 jps 和 heapdump 子命令支持

祝大家2026新年快乐🎉🎉🎉🎉🎉

元旦快乐

Assets 14
  • CACM_386_en
    sha256:27663b70dec7f82f249f99b8758804dce0c54f6b2e0570c9ce32db6f794623d0
    7.55 MB 2025-12-29T05:54:42Z
  • CACM_386_en_upx
    sha256:084fd9b991f486809215ac1d3fa535c7cbd9525c546bf69368eabf4c640e5836
    2.21 MB 2025-12-29T05:54:43Z
  • CACM_386_zh
    sha256:dd3141223c6a272ca90896fbfb39bb14f660c19e1377f6aa7336d06f82b66b72
    7.55 MB 2025-12-29T05:54:40Z
  • CACM_386_zh_upx
    sha256:40a947eb324248378173c52f3323b72c4e85e90bcd1caf504384bfb5edebda34
    2.21 MB 2025-12-29T05:54:39Z
  • CACM_amd64_en
    sha256:106ad418a5be18902f32727a14634ca20c9bbfe328ab78ae3029eddc7b9b19ee
    8.31 MB 2025-12-29T05:54:37Z
  • CACM_amd64_en_upx
    sha256:14e51ad7b6a0f8024fc7a45360dc47e5845f86f8d2de2fa134a5a70fce4fce42
    2.53 MB 2025-12-29T05:54:35Z
  • CACM_amd64_zh
    sha256:9f56e8d6c439de4fd4eb9ce27bc3ee497a0a4c3590152f272392b2259649b12c
    8.32 MB 2025-12-29T05:54:34Z
  • CACM_amd64_zh_upx
    sha256:40bb26f566ad27ad981a7277789bd8734b6c839a21e5223da9c6f4b4e6caac3b
    2.53 MB 2025-12-29T05:54:33Z
  • CACM_arm64_en
    sha256:d6a7d44daf6b82a5970e587422808575afa4e3db1ffa5894dec80a3abc4e7906
    8.69 MB 2025-12-29T05:54:29Z
  • CACM_arm64_en_upx
    sha256:0df76d6eac530592b87cdec7fc5df03f2a35eed28ba5ea8c769c576a8e360ec6
    2.48 MB 2025-12-29T05:54:31Z
  • Source code (zip)
    2025-10-24T07:22:49Z
  • Source code (tar.gz)
    2025-10-24T07:22:49Z

CACM_v2.3.2

25 Dec 04:42
@RuoJi6 RuoJi6
CACM_v2.3.2
7de6580
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
CACM_v2.3.2

🐛 Bug 修复

  • 修复 scan 模块 ICMP ping 存活检测失败问题 (#35)
    • 非 root 用户在未配置 ping_group_range 的系统上,--ping 参数现在能正常工作
    • 自动检测 ICMP 权限,权限不足时回退到系统 ping 命令
    • 添加友好提示,指导用户如何启用快速 ICMP 模式

📝 改进

  • 优化权限检测逻辑,root 用户自动使用特权模式
Loading

CACM_v2.3.1

11 Oct 14:55
@RuoJi6 RuoJi6
CACM_v2.3.1
719aa44
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
CACM_v2.3.1

feat(netspy): 支持子命令在任意位置解析
feat(searchall): 添加黑名单和默认扫描排除功能
feat(searchall): 添加根目录黑名单排除选项 #33
feat(netspy): 添加 networks-only选项以输出仅保存网段信息

Loading

CACM_v2.3 - docker scan

28 Sep 02:39
@RuoJi6 RuoJi6
CACM_v2.3
719aa44
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
CACM_v2.3 - docker scan

feat(searchall): 添加环境变量扫描功能
feat(xdocker): 容器安全扫描(导出,查看,扫描),可以导出,查看镜像,容器,扫描容器中敏感信息(配置文件,环境变量,文件信息),执行命令等

image image image
Loading

CACM_v2.2.4

25 Sep 13:20
@RuoJi6 RuoJi6
CACM_v2.2.4
719aa44
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
CACM_v2.2.4

fix(searchall): 禁用电子邮箱敏感信息匹配规则 #32
feat(utils): 添加对UPX压缩安全的系统信息获取方法,修复upx压缩之后出现问题

Loading

CACM_v2.2.3 - scan加强

13 Sep 11:25
@RuoJi6 RuoJi6
CACM_v2.2.3
719aa44
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
CACM_v2.2.3 - scan加强
image

描述

  1. 修复 x86获取用户问题 #29
  2. 重构scan扫描,优化扫描 #30
  3. 重构bin下载

详细

  1. feat(scan): 添加自动提升文件描述符限制功能
  2. feat(scan): 增加网页标题提取功能
  3. feat(scan): 模拟gogo的HTTP探测和指纹识别逻辑- 添加IsHttp字段并更新相关逻辑
  4. refactor(scan): 优化端口服务映射
  5. refactor(scan): 优化端口服务猜测功能
  6. feat(scan): 添加 TLS 证书域名提取功能
  7. feat(scan): 禁用 HTTP 重定向跟随并优化 URL 解析逻辑
  8. feat(scan): 实现指纹识别的三层逻辑
  9. feat(scan): 增加增强的存活检测功能
Loading

CACM_v2.2.2

29 Aug 07:23
@RuoJi6 RuoJi6
CACM_v2.2.2
9d4dba8
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
CACM_v2.2.2

更新:

  1. AMD架构(x86/x64):使用 Go 1.17.13 编译【兼容旧版本系统】,ARM架构:使用 Go 1.23.12 编译 #28
  2. build: 添加 x86 架构
  3. feat(netspy): 优化 ARP 探测功能

详细:

  • AMD架构(x86/x64):使用 Go 1.17.13 编译(兼容旧版本系统 #28
  • ARM架构:使用 Go 1.23.12 编译
  • 在 GitHub Actions 中添加了针对 x86 架构的构建流程
  • 更新了构建脚本,支持 x86、amd64 和 arm64 三种架构
  • 添加网络接口和目标网段兼容性检查
  • 添加 ARP 权限检查
  • 实现带 MAC 地址验证的 ARP 探测- 添加代理 ARP 检测功能
  • 优化 ARP 探测性能,按网段分组扫描
  • 新增网络接口信息显示功能
Loading

CACM_v2.2.1

26 Aug 06:50
@RuoJi6 RuoJi6
CACM_v2.2.1
3d5b5e5
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
CACM_v2.2.1

更新描述:

  1. fix(searchall): 修复搜索结果写入文件时包含颜色代码的问题 #13
  2. fix(dl,bin,lpe): 添加xget 加速下载代理
  3. feat(edr): 大幅扩展全球网络安全产品检测覆盖范围(- 检测能力提升:文件路径+157个,服务+113个,进程+150个,总计覆盖300+安全产品)
  4. feat(交互式 Shell): 支持多行命令和更智能的命令解析

详细描述

  • 添加 readMultilineCommand 函数,支持反斜杠续行的多行命令输入- 引入 parseCommand 函数,改进命令解析以正确处理引号和特殊字符
  • 优化命令行提示符和输入处理,提升用户体验
  • 增强卡巴斯基检测:添加klnagent、klserver、klcsexec等核心进程和服务
  • 新增国际主流EDR产品:Fortinet、Check Point、WithSecure、Cybereason、VMware Carbon Black、Elastic Security、Lacework、Darktrace、Proofpoint等
  • 全面覆盖中国网络安全厂商:天融信、亚信安全、卫士通、美亚柏科、梆梆安全、六方云、安全狗、知道创宇、长亭科技、悬镜安全、海云安等
  • 新增云原生安全工具:Aqua、Twistlock、StackRox、NeuVector、Anchore、Trivy、Harbor等容器安全产品
  • 扩展开源安全工具:Fleet、Falco、Sysdig、Datadog、New Relic、Dynatrace等监控和安全平台
  • 添加中国云厂商安全产品:华为、百度、字节跳动、京东云、UCloud、网易、小米、美团、滴滴等
  • 检测能力提升:文件路径+157个,服务+113个,进程+150个,总计覆盖300+安全产品
Loading

v2.2 feat(searchall)

18 Aug 11:53
@RuoJi6 RuoJi6
CACM_v2.2
1b19feb
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.2 feat(searchall)
  1. fix(searchall): 修复搜索结果写入文件时包含颜色代码的问题
  2. feat(searchall): 增加敏感信息识别类型和优化输出- 新增多种敏感信息识别类型,包括各种云服务密钥、数据库连接字符串等
  • 修改 writeResultToFile 函数,去除颜色代码
  • 添加对输出文件本身的检查,避免递归匹配
  • 排除默认输出文件名,防止误匹配
  • 优化搜索匹配的逻辑,显示所有匹配结果
  • 在输出中增加敏感信息类型的描述,提高结果的可读性和实用性
  • 优化代码结构,使用 PatternInfo 结构体管理正则表达式和描述
  • 更新英文翻译文件,添加新的敏感信息类型翻译
image
Loading

网段可达,敏感搜索增强

16 Aug 12:02
@RuoJi6 RuoJi6
CACM_v2.1
1b19feb
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
网段可达,敏感搜索增强
  1. feat(lpe): 增加颜色过滤功能以支持文件输出
  2. feat(netspy): 添加 netspy 网段可达
  3. feat(dl): 添加 GitHub 代理下载功能

dl下载github代理

image

网段可达

image

敏感搜索

image

参考

Loading