python学习xml解析和多线程中遇到的问题进行简单分享。
之前手里一直在用公司大佬们写的nmap结果处理工具,近期项目较清闲,想着自己去学习下python的多线程来跑一下nmap探测结果,并将生成的状态码和标题输入到csv文件中,写的比较粗糙,勉强能用。
项目地址:https://github.com/msfisgood/Nmap_tools/
运行结果:
另外从大佬那儿了解到nmap支持直接跑title的
--script=http-title
import csvimport timeimport sysimport requestsimport datetimeimport threadingimport threadpoolfrom bs4 import BeautifulSoup as bsfrom requests.packages.urllib3.exceptions import InsecureRequestWarningtry:import xml.etree.cElementTree as ETexcept ImportError:import xml.etree.ElementTree as ETrequests.packages.urllib3.disable_warnings(InsecureRequestWarning)Time = datetime.datetime.now().strftime('%Y-%m-%d')#print(Time)CODE = []def GetFile(path): # 获取文件try:tree = ET.parse(path)root = tree.getroot()#print(root.tag)# print(Item)except Exception as e:print(e)return {}ports = []for host in root.findall('host'):if host.find('status').get('state') == 'down':continue#print(host)address = host.find('address').get('addr',None)#print(address)if not address:continuefor port in host.iter('port'):state = port.find('state').get('state','')portid = port.get('portid',None)serv = port.find('service')serv = serv.get('name')if serv == "":serv == "未知"#print(state,portid,serv)ports.append({'IP':address,'PORT':portid,'STATUS':state,'SERVICE':serv})return(ports)def MkdirFile(Date_list):with open(Time+'.csv','w',newline='') as csvf:fieldnames = ['IP','PORT','STATUS','SERVICE','URL','CODE','TITLE']writer = csv.DictWriter(csvf,fieldnames=fieldnames)writer.writeheader()writer.writerows(Date_list)print("文件输出成功!")def GetTitle(url):MyUa = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.150 Safari/537.36"try:headers = {'User-Agent': MyUa,'Connection': 'close'}r = requests.get(url=url, verify=False, headers=headers, timeout=5)soup = bs(r.text.encode('utf-8'), 'html.parser')title = soup.find('title').text#print(r.status_code)code = r.status_codeif code != 400 and soup != "":print(url + " ------ 发现Web ------ title:" + title)CODE.append({'URL':url,'CODE':code,'TITLE':title})return(CODE)elif code == 400:url2 = "https://"+url.strip('http://')headers = {'User-Agent': MyUa,'Connection': 'close'}r = requests.get(url=url2, verify=False, headers=headers, timeout=5)code = r.status_codesoup = bs(r.text.encode('utf-8'), 'html.parser')title = soup.find('title').textprint(url2 + " ------ 发现Web ------ title:" + title)CODE.append({'URL':url2,'CODE':code,'TITLE':title})return(CODE)else:CODE.append({'URL':url,'CODE':code,'TITLE':title})return(CODE)except:title = "Network Error!"code = '无'CODE.append({'URL':url,'CODE':code,'TITLE':title})print(url+" ------ "+"请求失败"+" ------ Network Error!")return(CODE)if __name__ == '__main__':if len(sys.argv) != 3:print("----------------USEAGE:python3 nmap_tools path threads-----------------")print("----------------example:python3 nmap_tools 1.xml 10--------------------")sys.exit()path = sys.argv[1]start_time = time.time()T = int(sys.argv[2])MyUrl = GetFile(path)url = []for u in MyUrl:a = u['IP']b = u['PORT']c = u['STATUS']d = u['SERVICE']url.append("http://"+a+":"+b)#print(url)pool = threadpool.ThreadPool(T)threading = threadpool.makeRequests(GetTitle,url)[pool.putRequest(req) for req in threading]pool.wait()N = 0for d in MyUrl:#print(d)key1 = 'URL'key2 = 'CODE'key3 = 'TITLE'c1 = CODE[N]['URL']c2 = CODE[N]['CODE']c3 = CODE[N]['TITLE']#print(c1,c2)d[key1] = c1d[key2] = c2d[key3] = c3N += 1#print(MyUrl)MkdirFile(MyUrl)print("用时:%s second"%(time.time() - start_time) )
本文始发于微信公众号(Khan安全攻防实验室):Nmap结果处理小工具
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论