码迷,mamicode.com
首页 > 数据库 > 详细

乌云漏洞爬虫的数据库版本(mysql)

时间:2014-08-18 11:59:44      阅读:352      评论:0      收藏:0      [点我收藏+]

标签:style   blog   http   color   os   数据   for   ar   

特别鸣谢阮思绮同学!虽然感觉这个冷冷的博客也没人看23333

import mysql.connector
import sys, os
import urllib.request
import re
import itertools
user = root
pwd  = ‘‘
host = 127.0.0.1
db   = test
data_file = wooyun.dat
create_table_sql = "CREATE TABLE IF NOT EXISTS mytable (id int(10) AUTO_INCREMENT PRIMARY KEY, type varchar(300) , info varchar(1000) , detail varchar(5000) , repair varchar(1000) )CHARACTER SET utf8"
insert_sql = "INSERT INTO mytable (type, info, detail, repair) VALUES ( %s, %s, %s, %s)"
select_sql = "SELECT id, type, info, detail, repair FROM mytable"
cnx = mysql.connector.connect(user=user, password=pwd, host=host, database=db)
cursor = cnx.cursor()

def create_table_sql_api(a):
    try:
        cursor.execute(a)
    except mysql.connector.Error as err:
        print("create table ‘mytable‘ failed.")
        print("Error: {}".format(err.msg))
        sys.exit()

def insert_sql_api(a,b):
    try:
        cursor.execute(a,b)
    except mysql.connector.Error as err:
        print("insert table ‘mytable‘ failed.")
        print("Error: {}".format(err.msg))
        sys.exit()

def select_sql_api(a):
    try:
        cursor.execute(a)
        for (id, type, info, detail, repair) in cursor:
            print("ID:{}  type:{}  info:{}  repair:{}".format(id, type, info, detail, repair))
    except mysql.connector.Error as err:
        print("query table ‘mytable‘ failed.")
        print("Error: {}".format(err.msg))
        sys.exit()

def get_html_response(url):
    html_response = urllib.request.urlopen(url).read().decode(utf-8)
    return html_response

def geturl(starturl):
    a=get_html_response(starturl)
    childurl=(re.findall(r/bugs/wooyun-\w*-\w*\b,a))
    return childurl

def get_nextpage(starturl):
    d=get_html_response(starturl)
    nextpage=(re.findall(rsearchbug.php\?q=6YeR6J6N&pNO=\w,d))
    return nextpage

starturl="http://www.wooyun.org/searchbug.php?q=6YeR6J6N"
result=[]
final=[]
type_wooyun_n=[]
info_n=[]
detail_n=[]
repair_n=[]
#output=open("D:\\wooyun.csv","w+")

create_table_sql_api(create_table_sql)

for i in get_nextpage(starturl):
    result+=geturl(http://wooyun.org/+re.sub(金融,6YeR6J6N,i))
    #扫描各种漏洞的url地址放入result中
result=set(result)#去除result中重复的地址

for i in result:
    k=get_html_response(http://wooyun.org/+re.sub(金融,%E9%87%91%E8%9E%8D,i))#下载页面到k
    type_wooyun=re.findall(r漏洞类型:.*.</h3>,k)
    info=re.findall(r<h3>\w*:.*.</h3>,k)#空白字符用/s,寻找所有适用于<h3>标签的文字
    detail=re.findall(r<p class="detail">.*.</p>,k)
    repair=re.findall(r修复方案:</h3>\s*<p class="detail">.*.\s*</p>,k)
    for j in type_wooyun:#漏洞类型,为之后进行数据库分类做准备
        j=re.sub(r:\s,:,j)
        j=re.sub(r\t,‘‘,j)
        j=re.sub(r</h3>,‘‘,j)
        type_wooyun_n+=j
    for j in info:#处理概要
        j=re.sub(r:\s,:,j)
        j=re.sub(r<h3>,‘‘,j)
        j=re.sub(r</h3>,‘‘,j)
        j=re.sub(r<a\shref=".*.">,‘‘,j)
        j=re.sub(r</a>,‘‘,j)
        j=re.sub(r<imgheight=".*./>,‘‘,j)
        j=j.split()
        info_n+=j
    for j in detail:#处理详情
        j=re.sub(r:\s,:,j)
        j=re.sub(r<p\sclass="detail">,‘‘,j)
        j=re.sub(r</p>,‘‘,j)
        j=re.sub(r"\starget="_blank"><img\ssrc="/upload/.*.width="600"/></a>,,,j)
        j=re.sub(r<a href=", http://www.wooyun.org,j)
        j=re.sub(r对本漏洞信息进行评价,.*.备学习价值,‘‘,j)
        detail_n+=j
    for j in repair:#处理回复方法
        j=re.sub(r</br>,,,j)
        j=re.sub(r</p>,,,j)
        j=re.sub(r</h3>,,,j)
        j=re.sub(r<p\sclass="detail">,‘‘,j)
        j=re.sub(r,:,j)
        j=j.split()
        repair_n+=j
    
    type_wooyun_str="".join(itertools.chain(*type_wooyun_n))
    info_str="".join(itertools.chain(*info_n))
    detail_str="".join(itertools.chain(*detail_n))  
    repair_str="".join(itertools.chain(*repair_n)) 
    final.append(type_wooyun_str)
    final.append(info_str)
    final.append(detail_str)
    final.append(repair_str)
    insert_sql_api(insert_sql,tuple(final))
    select_sql_api(select_sql)
    #output.writelines(final)
    #output.writelines(‘\n\n‘)
    final.clear()
    repair_n.clear()
    info_n.clear()
    type_wooyun_n.clear()
    detail_n.clear()

    
    

cnx.commit()
cursor.close()
cnx.close()
#output.close()

 

乌云漏洞爬虫的数据库版本(mysql),布布扣,bubuko.com

乌云漏洞爬虫的数据库版本(mysql)

标签:style   blog   http   color   os   数据   for   ar   

原文地址:http://www.cnblogs.com/cmjason/p/3918978.html

(0)
(0)
   
举报
评论 一句话评论(0
登录后才能评论!
© 2014 mamicode.com 版权所有  联系我们:gaon5@hotmail.com
迷上了代码!