![](https://img-blog.csdnimg.cn/20201014180756916.png?x-oss-process=image/resize,m_fixed,h_64,w_64)
python安全工具编写
本宝宝不开心
本宝宝不开心,造轮子和夯实基础中
展开
-
4.python编写ZIP压缩文件爆破工具
准备pyzippersys网上很多用zipfile的,针对现在的压缩软件加密体系,已经不适用了,因为zipfile只支持ZipCrypto算法的解压及密码爆破,AES-256为现行压缩软件默认采用的加密算法,安利7zip一枚:无广告的压缩软件爆破zip文件import pyzipper#Runtimerror:密码错误时抛出的异常,捕获并处理该异常就能获得正确的密码f1 = open('pass.txt','r')with pyzipper.AESZipFile('port1000.原创 2020-12-04 14:26:07 · 1399 阅读 · 0 评论 -
3.python编写端口扫描器
准备socketsysport1000.txtimport socketimport sys#Usage: python3 portscan.py x.x.x.x#输入目标ipip = sys.argv[1]#SOCKE_STREAM:tcp AF_INET:ipv4with open('port1000.txt','r') as f: for i in f: i = i.strip() try: s = socke原创 2020-12-04 10:08:13 · 102 阅读 · 0 评论 -
2.python编写子域名爆破工具
准备socketsyssubdomain.txt#用法: python3 subdomain.py xxxx.comimport socketimport sysdomain = sys.argv[1] with open('subdomain.txt','r') as f: for i in f: i = i.strip() subdomain = i + '.'+domain try: ip = s原创 2020-12-03 17:06:18 · 904 阅读 · 1 评论 -
1.python编写web目录扫描工具
准备requests库御剑字典sysfake_useragent# 注意pip版本号,安装py3的linux:pip3 install requests cmd:pip install requests 记得将字典改成utf-8格式# webscan.py v1.0# 用法:python webscan.py urlimport requestsimport sysimport fake_useragentheaders = {'User-Agent':fake_原创 2020-12-03 15:24:58 · 669 阅读 · 0 评论