def makeTempfile(content):
temp = tempfile.TemporaryFile()
try:
temp.write(content)
temp.seek(0)
except Exception,e:
elog.exception(e)
def __init__(self):
self.dlog = getDlog(__name__)
try:
self.conn = MySQLdb.connect(host=cf.mysql_host ,user=cf.mysql_user ,passwd=cf.mysql_pass ,port=cf.mysql_port , db=cf.mysql_db, charset='utf8')
self.getCursor()
except Exception, e:
elog.exception(e)
def makeTempfile(content):
temp = tempfile.TemporaryFile()
try:
temp.write(content)
temp.seek(0)
except Exception, e:
elog.exception(e)
def write_file(filename, data):
f = open(filename, 'w')
print "#"*50
print f
print "the filename is =>"+filename
print "#"*50
try:
f.write(data)
except Exception,e:
elog.exception(e)
def write_file(filename, data):
f = open(filename, 'w')
print "#" * 50
print f
print "the filename is =>" + filename
print "#" * 50
try:
f.write(data)
except Exception, e:
elog.exception(e)
def run(self, dreq):
plugins = [p.split(".")[0] for p in self.loadPlugins()]
for plugin in plugins:
try:
cplugin = __import__(self.pack + "."+plugin, fromlist = [plugin, ])
vulc = cplugin.getPluginClass()
self.dlog.debug("[Audit Plugin]Loading Plugin --> %s"%str(vulc))
c = vulc(dreq)
c.audit()
except Exception,e:
elog.exception(e)
def __init__(self):
self.dlog = getDlog(__name__)
try:
self.conn = MySQLdb.connect(host=cf.mysql_host,
user=cf.mysql_user,
passwd=cf.mysql_pass,
port=cf.mysql_port,
db=cf.mysql_db,
charset='utf8')
self.getCursor()
except Exception, e:
elog.exception(e)
def insertVul(self, scanissue):
sql = "insert into vuls(rid, type, host, url, param, method, payloads) values(%s, %s, %s, %s, %s, %s, %s)"
rid = int(scanissue.rid)
params = ( rid, scanissue.type, scanissue.host, scanissue.url, str(scanissue.parameters), scanissue.method, str(scanissue.payload))
try:
n = self.cur.execute(sql, params)
if n==1:
self.dlog.debug("[Vul Insert] url:%s insert success"%scanissue.url)
else:
self.dlog.debug("[Vul Insert] url:%s insert fail"%scanissue.url)
except Exception,e:
elog.exception(e)
def insertRequest(self, drequest):
sql = "insert into requests( host, url, method, headers, cookies ,postdata, request, brequest) values( %s, %s, %s, %s, %s, %s, %s, %s)"
params = (drequest.host, drequest.url, drequest.method, str(drequest.headers), str(drequest.cookie) ,drequest.postdata, drequest.request, str(drequest.brequest))
try:
n = self.cur.execute(sql, params)
if n==1:
self.dlog.debug("[Mysql Insert] url:%s insert success"%drequest.url)
return self.conn.insert_id()
else:
self.dlog.debug("[Mysql Insert] url:%s insert fail"%drequest.url)
except Exception,e:
elog.exception(e)
def run(self, dreq):
plugins = [p.split(".")[0] for p in self.loadPlugins()]
for plugin in plugins:
try:
cplugin = __import__(self.pack + "." + plugin,
fromlist=[
plugin,
])
vulc = cplugin.getPluginClass()
self.dlog.debug("[Audit Plugin]Loading Plugin --> %s" %
str(vulc))
c = vulc(dreq)
c.audit()
except Exception, e:
elog.exception(e)
def insertVul(self, scanissue):
sql = "insert into vuls(rid, type, host, url, param, method, payloads) values(%s, %s, %s, %s, %s, %s, %s)"
rid = int(scanissue.rid)
params = (rid, scanissue.type, scanissue.host, scanissue.url,
str(scanissue.parameters), scanissue.method,
str(scanissue.payload))
try:
n = self.cur.execute(sql, params)
if n == 1:
self.dlog.debug("[Vul Insert] url:%s insert success" %
scanissue.url)
else:
self.dlog.debug("[Vul Insert] url:%s insert fail" %
scanissue.url)
except Exception, e:
elog.exception(e)
def insertRequest(self, drequest):
sql = "insert into requests( host, url, method, headers, cookies ,postdata, request, brequest) values( %s, %s, %s, %s, %s, %s, %s, %s)"
params = (drequest.host, drequest.url, drequest.method,
str(drequest.headers), str(drequest.cookie),
drequest.postdata, drequest.request, str(drequest.brequest))
try:
n = self.cur.execute(sql, params)
if n == 1:
self.dlog.debug("[Mysql Insert] url:%s insert success" %
drequest.url)
return self.conn.insert_id()
else:
self.dlog.debug("[Mysql Insert] url:%s insert fail" %
drequest.url)
except Exception, e:
elog.exception(e)
def __init__(self):
self.dlog = getDlog(__name__)
try:
self.redis = redis.StrictRedis(host=cf.redis_host, port=cf.redis_port, db=0)
except Exception,e:
elog.exception(e)