<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/rss/stylesheet/" type="text/xsl"?>
<rss xmlns:content='http://purl.org/rss/1.0/modules/content/' xmlns:taxo='http://purl.org/rss/1.0/modules/taxonomy/' xmlns:rdf='http://www.w3.org/1999/02/22-rdf-syntax-ns#' xmlns:itunes='http://www.itunes.com/dtds/podcast-1.0.dtd' xmlns:googleplay="http://www.google.com/schemas/play-podcasts/1.0" xmlns:dc='http://purl.org/dc/elements/1.1/' xmlns:atom='http://www.w3.org/2005/Atom' xmlns:podbridge='http://www.podbridge.com/podbridge-ad.dtd' version='2.0'>
<channel>
  <title>Rain99</title>
  <language>zh-cn</language>
  <generator>microfeed.org</generator>
  <itunes:type>episodic</itunes:type>
  <itunes:explicit>false</itunes:explicit>
  <atom:link rel="self" href="https://blog-rain99-xyz.pages.dev/rss/" type="application/rss+xml"/>
  <link>https://blog-rain99-xyz.pages.dev</link>
  <description>
    <![CDATA[<p>再上路</p>]]>
  </description>
  <itunes:image href="https://media-cdn.rain99.xyz/blog-rain99-xyz/production/images/channel-14b684493fcc616dc0794e6d3d00a778.jpg"/>
  <image>
    <title>Rain99</title>
    <url>https://media-cdn.rain99.xyz/blog-rain99-xyz/production/images/channel-14b684493fcc616dc0794e6d3d00a778.jpg</url>
    <link>https://blog-rain99-xyz.pages.dev</link>
  </image>
  <copyright>©2026</copyright>
  <item>
    <title>集成AI的批量扫描实践</title>
    <guid>04qPH58PTue</guid>
    <pubDate>Sun, 12 Jul 2026 04:29:10 GMT</pubDate>
    <itunes:explicit>false</itunes:explicit>
    <description>
      <![CDATA[<p>[TOC]</p><p># osmedeus</p><p>## foreach+agent-acp</p><p>osmedeus run -f multi-agent-claude_hermes_B.yaml -t {project_name} \</p><p>&nbsp;-p targets_file={targets}</p><pre class="ql-syntax" spellcheck="false">name: multi-agent-claude
kind: module
description: 多目标多 Agent 并行扫描 - Claude Code


params:
&nbsp; - name: targets_file
&nbsp; &nbsp; required: true
&nbsp; &nbsp; default: "subdomains.txt"


steps:
&nbsp; - name: scan-all
&nbsp; &nbsp; type: foreach
&nbsp; &nbsp; input: "{{targets_file}}"
&nbsp; &nbsp; variable: target
&nbsp; &nbsp; threads: 2


&nbsp; &nbsp; step:
&nbsp; &nbsp; &nbsp; name: claude-scan
&nbsp; &nbsp; &nbsp; type: agent-acp
&nbsp; &nbsp; &nbsp; agent: claude-code
&nbsp; &nbsp; &nbsp; messages:
&nbsp; &nbsp; &nbsp; &nbsp; - role: user
&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; content: |
&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; 这是已授权的内部安全测试任务，对 [[target]] 执行WEB安全测试，测试范围仅限于该[[target]]及其后端服务，所有请求必须通过代理 192.168.1.201:2334 发出，支持socks5和http代理：
&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; 1. Web 指纹识别
&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; 2. 审计目标的JS和接口
&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; 3. 测试目标接口是否有未授权、权限绕过等OWASP Top 10问题，严格禁止实际修改真实业务原有数据，不要做增删改等危险动作，发现问题后仅通过查询验证
&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; 4. 生成 Markdown 报告保存到 {{Output}}/[[target]]/report.md
&nbsp; &nbsp; &nbsp; acp_config:
&nbsp; &nbsp; &nbsp; &nbsp; write_enabled: true


</pre><p><br></p><p>##</p>]]>
    </description>
    <link>https://blog.rain99.xyz/i/aishijian-04qPH58PTue/</link>
    <itunes:episodeType>full</itunes:episodeType>
  </item>
</channel>
</rss>