def run(self): while True: try: (fname,taskid,url,start_time) = config.queue.get(timeout=1) injector = SqlmapAPIWrapper(fname) injector.settaskid(taskid) if not injector.terminal(): if time.time()-start_time>config.sqlmap_tasktimeout: injector.clear() continue config.queue.put((fname,taskid,url,start_time)) time.sleep(3) continue if injector.vulnerable(): print with_color(32, "#%s [VulUrl] %s"%(time.strftime("%H:%M:%S"),url)) print with_color(32, "#%s [Exploit] sqlmap -r %s"%(time.strftime("%H:%M:%S"), config.save_path + '/' + fname)) sys.stdout.flush() injector.delete() else: injector.clear() except Empty: time.sleep(3) except KeyboardInterrupt: return
def run(self): while True: try: (fname, taskid, url, start_time) = config.queue.get(timeout=1) injector = SqlmapAPIWrapper(fname) injector.settaskid(taskid) if not injector.terminal(): if time.time() - start_time > config.sqlmap_tasktimeout: injector.clear() continue config.queue.put((fname, taskid, url, start_time)) time.sleep(3) continue if injector.vulnerable(): print with_color( 32, "#%s [VulUrl] %s" % (time.strftime("%H:%M:%S"), url)) print with_color( 32, "#%s [Exploit] sqlmap -r %s" % (time.strftime("%H:%M:%S"), config.save_path + '/' + fname)) sys.stdout.flush() injector.delete() else: injector.clear() except Empty: time.sleep(3) except KeyboardInterrupt: return
def run(self): while True: try: (fname,taskid,payload,start_time) = config.queue.get(timeout=1) #print (fname,taskid,payload,start_time) injector = SqlmapAPIWrapper(fname,payload) injector.settaskid(taskid) #当sqlmapapi检测结束后... if not injector.terminal(): if time.time()-start_time>config.sqlmap_tasktimeout: injector.clear() continue config.queue.put((fname,taskid,payload,start_time)) time.sleep(5) continue if injector.vulnerable(): print with_color(32, "#%s [VulUrl] %s"%(time.strftime("%H:%M:%S"),payload['url'])) print with_color(32, "#%s [Exploit] sqlmap -r %s -v 3 --level 3"%(time.strftime("%H:%M:%S"), config.save_path + '/' + fname)) vlu_str = "#%s [VulUrl] %s \n#%s [Exploit] sqlmap -r %s -v 3 --level 3"%(time.strftime("%H:%M:%S"),payload['url'],time.strftime("%H:%M:%S"), config.save_path + '/' + fname) writelog(vlu_str,time.strftime("%Y-%m-%d")) sys.stdout.flush() injector.delete() else: injector.clear() except Empty: time.sleep(3) pass except KeyboardInterrupt: return