def storedata(ip='', port='', hackinfo=None):
sqlTool = Sqldatatask.getObject()
localtime = str(time.strftime("%Y-%m-%d %X", time.localtime()))
insertdata = []
# if islocalwork==0:
# work=[]
# dic={"table":config.Config.iptable,"select_params": ['ip','vendor','osfamily','osgen','accurate','updatetime','hostname','state'],"insert_values": [(temphosts,tempvendor,temposfamily,temposgen,tempaccuracy,localtime,temphostname,tempstate)]}
# tempdata={"func":'replaceinserttableinfo_byparams',"dic":dic}
# jsondata=uploaditem.UploadData(url=self.webconfig.upload_ip_info,way='POST',params=tempdata)
# work.append(jsondata)
# self.uploadwork.add_work(work)
# else:
hackinfo = SQLTool.escapewordby(str(hackinfo))
extra = ' on duplicate key update disclosure=\'' + hackinfo + '\' , timesearch=\'' + localtime + '\''
insertdata.append((str(ip), port, hackinfo, str(port)))
sqldatawprk = []
dic = {
"table": config.Config.porttable,
"select_params": ['ip', 'port', 'disclosure', 'portnumber'],
"insert_values": insertdata,
"extra": extra
}
tempwprk = Sqldata.SqlData('inserttableinfo_byparams', dic)
sqldatawprk.append(tempwprk)
sqlTool.add_work(sqldatawprk)
print 'fuzz 数据存储'
pass
def storedata(ip='',port='',hackinfo=None):
sqlTool=Sqldatatask.getObject()
localtime=str(time.strftime("%Y-%m-%d %X", time.localtime()))
insertdata=[]
# if islocalwork==0:
# work=[]
# dic={"table":config.Config.iptable,"select_params": ['ip','vendor','osfamily','osgen','accurate','updatetime','hostname','state'],"insert_values": [(temphosts,tempvendor,temposfamily,temposgen,tempaccuracy,localtime,temphostname,tempstate)]}
# tempdata={"func":'replaceinserttableinfo_byparams',"dic":dic}
# jsondata=uploaditem.UploadData(url=self.webconfig.upload_ip_info,way='POST',params=tempdata)
# work.append(jsondata)
# self.uploadwork.add_work(work)
# else:
hackinfo=SQLTool.escapewordby(str(hackinfo))
extra=' on duplicate key update hackinfo=\''+hackinfo+'\' , timesearch=\''+localtime+'\''
insertdata.append((str(ip),port,hackinfo,str(port)))
sqldatawprk=[]
dic={"table":config.Config.porttable,"select_params":['ip','port','hackinfo','portnumber'],"insert_values":insertdata,"extra":extra}
tempwprk=Sqldata.SqlData('inserttableinfo_byparams',dic)
sqldatawprk.append(tempwprk)
sqlTool.add_work(sqldatawprk)
pass
def storedata(ip='',port='',hackinfo=None):
sqlTool=Sqldatatask.getObject()
localtime=str(time.strftime("%Y-%m-%d %X", time.localtime()))
insertdata=[]
hackinfo=SQLTool.escapewordby(str(hackinfo))
extra=' on duplicate key update disclosure=\''+hackinfo+'\' , timesearch=\''+localtime+'\''
insertdata.append((str(ip),port,hackinfo,str(port)))
dic={"table":config.Config.porttable,"select_params":['ip','port','disclosure','portnumber'],"insert_values":insertdata,"extra":extra}
if islocalwork==0:
work=[]
tempdata={"func":'inserttableinfo_byparams',"dic":dic}
jsondata=uploaditem.UploadData(url=webconfig.WebConfig.upload_ip_info,way='POST',params=tempdata)
work.append(jsondata)
temp=uploadtask.getObject()
temp.add_work(work)
else:
sqldatawprk=[]
tempwprk=Sqldata.SqlData(func='inserttableinfo_byparams',dic)
sqldatawprk.append(tempwprk)
sqlTool.add_work(sqldatawprk)
print 'fuzz 数据存储'
pass
def storedata(ip='', port='', hackresults=None):
sqlTool = Sqldatatask.getObject()
localtime = str(time.strftime("%Y-%m-%d %X", time.localtime()))
insertdata = []
hackresults = SQLTool.escapewordby(str(hackresults))
extra = ' on duplicate key update hackresults=\'' + hackresults + '\' , timesearch=\'' + localtime + '\''
insertdata.append((str(ip), port, hackresults, str(port)))
sqldatawprk = []
dic = {
"table": config.Config.porttable,
"select_params": ['ip', 'port', 'hackresults', 'portnumber'],
"insert_values": insertdata,
"extra": extra
}
tempwprk = Sqldata.SqlData('inserttableinfo_byparams', dic)
sqldatawprk.append(tempwprk)
sqlTool.add_work(sqldatawprk)
pass
def storedata(ip='', port='', hackinfo=None):
sqlTool = Sqldatatask.getObject()
localtime = str(time.strftime("%Y-%m-%d %X", time.localtime()))
insertdata = []
hackinfo = SQLTool.escapewordby(str(hackinfo))
extra = ' on duplicate key update disclosure=\'' + hackinfo + '\' , timesearch=\'' + localtime + '\''
insertdata.append((str(ip), port, hackinfo, str(port)))
dic = {
"table": config.Config.porttable,
"select_params": ['ip', 'port', 'disclosure', 'portnumber'],
"insert_values": insertdata,
"extra": extra
}
if islocalwork == 0:
work = []
tempdata = {"func": 'inserttableinfo_byparams', "dic": dic}
jsondata = uploaditem.UploadData(
url=webconfig.WebConfig.upload_ip_info,
way='POST',
params=tempdata)
work.append(jsondata)
temp = uploadtask.getObject()
temp.add_work(work)
else:
sqldatawprk = []
tempwprk = Sqldata.SqlData('inserttableinfo_byparams', dic)
sqldatawprk.append(tempwprk)
sqlTool.add_work(sqldatawprk)
print 'fuzz 数据存储'
pass
def storedata(ip='', port='', disclosures=None):
sqlTool = Sqldatatask.getObject()
localtime = str(time.strftime("%Y-%m-%d %X", time.localtime()))
insertdata = []
# {'223.223.187.90:8080': [{'status': 200, 'url': '223.223.187.90:8080/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd'}, {'status': 200, 'url': '223.223.187.90:8080/file/Placard/upload/Imo_DownLoadUI.php?cid=1&uid=1&type=1&filename=/../../../../etc/passwd'}, {'status': 200, 'url': '223.223.187.90:8080/resin-doc/resource/tutorial/jndi-appconfig/test?inputFile=/etc/passwd'}, {'status': 200, 'url': '223.223.187.90:8080/wp-config.php~'}, {'status': 200, 'url': '223.223.187.90:8080/'}]}
# 现在是依次遍历list集合拼接,是否可以直接返回list集合,像hackresults一样
disclosure = ''
# for ip_port in disclosures:
# disinfo_list = disclosures[ip_port]
# for disinfo in disinfo_list:
# disclosure += str(disinfo) + '\\n '
# disinfo_list.remove(disinfo)
# print "fuzzey detect callbackfuzz: ", type(disclosures), str(disclosures) # a dict
disclosure = SQLTool.escapewordby(str(disclosures))
extra = ' on duplicate key update disclosure=\'' + disclosure + '\' , timesearch=\'' + localtime + '\''
insertdata.append((str(ip), port, disclosure, str(port)))
sqldatawprk = []
dic = {
"table": config.Config.porttable,
"select_params": ['ip', 'port', 'disclosure', 'portnumber'],
"insert_values": insertdata,
"extra": extra
}
tempwprk = Sqldata.SqlData('inserttableinfo_byparams', dic)
sqldatawprk.append(tempwprk)
sqlTool.add_work(sqldatawprk)
from ..vuldect import pocsearchtask
temp = pocsearchtask.getObject()
# head,context,ip,port,productname,keywords,nmapscript,protocol
temp.add_work([(None, None, ip, port, None, None, disclosures, None)])
pass
