Esihlokweni esilandelayo sizobheka iSpaghetti. Lolu uhlelo lokusebenza lomthombo ovulekile. Sekwenziwe ePython futhi izosivumela ukuskena izinhlelo zokusebenza zewebhu sifuna ubungozi ukuze uzilungise. Uhlelo lokusebenza lwenzelwe ukuthola amafayela ahlukahlukene okuzenzakalelayo noma angavikelekile, kanye nokuthola ukulungisa okungalungile.
Namuhla, noma imuphi umsebenzisi onolwazi oluncane angakha izinhlelo zokusebenza zewebhu, yingakho izinkulungwane zezinhlelo zokusebenza zewebhu zenziwa nsuku zonke. Inkinga ukuthi eziningi zazo zidalwe ngaphandle kokulandela imigqa yokuphepha eyisisekelo. Ukugwema ukushiya iminyango ivulekile, singasebenzisa lolu hlelo ukuhlaziya ukuthi izinhlelo zethu zewebhu zisezingeni eliphakeme noma okungenani elamukelekayo lokuphepha. I-Spaghetti iyisithwebuli esithakazelisa kakhulu futhi esisebenziseka kalula.
Izici ezijwayelekile zeSpaghetti 0.1.0
Njengoba yathuthukiswa ku i-python leli thuluzi lizo ukwazi ukusebenza kunoma yiluphi uhlelo lokusebenza yenze ihambisane ne-python version 2.7.
Uhlelo luqukethe amandla "Ukuprinta iminwe”Lokho kuzosivumela ukuthi siqoqe imininingwane kuhlelo lokusebenza lewebhu. Phakathi kwakho konke imininingwane ongayiqoqa Lolu hlelo lokusebenza luqokomisa imininingwane ehlobene neseva, uhlaka olusetshenziselwa ukuthuthukiswa (i-CakePHP, i-CherryPy, i-Django, ...), luzosazisa uma luqukethe i-firewall esebenzayo (i-Cloudflare, i-AWS, i-Barracuda, ...), uma ithuthukiswe kusetshenziswa i-cms (i-Drupal, i-Joomla, i-Wordpress, njll.), uhlelo lokusebenza lapho uhlelo lusebenza khona nolimi olusetshenziswayo.
Singathola nemininingwane kuphaneli yokuphatha yohlelo lokusebenza lewebhu, iminyango engemuva (uma kukhona) nezinye izinto eziningi. Ngaphezu kwalokho, lolu hlelo luza lunochungechunge lwezinto ezisebenzisekayo eziwusizo. Konke lokhu singakwenza kusuka esigungwini nangendlela elula.
Ukusebenza kwalolu hlelo lwe-terminal, ngokujwayelekile, kube yilokhu okulandelayo. Njalo lapho sisebenzisa ithuluzi kuzomelwe sikhethe i-URL yohlelo lokusebenza lewebhu esifuna ukuyihlaziya. Kuzofanele futhi sifake nemingcele ehambelana nokusebenza esifuna ukukusebenzisa. Lapho-ke ithuluzi lizophatha ukwenza ukuhlaziywa okuhambisanayo futhi lizokhombisa imiphumela etholakele.
Singafinyelela ikhodi yohlelo lokusebenza nezici zalo ekhasini le- I-Github wephrojekthi. Umbuso unamandla amakhulu futhi kulula ukuwusebenzisa. Kumele futhi kuthiwe unonjiniyela osebenza kakhulu, ogxile kumathuluzi ahlobene nokuphepha kwekhompyutha. Ngakho-ke ngicabanga ukuthi ukubuyekeza okulandelayo kuyindaba yesikhathi.
Faka iSpaghetti 0.1.0
Kulesi sihloko sizofaka ku-Ubuntu 16.04, kepha iSpaghetti singafakwa kunoma yikuphi ukusatshalaliswa. Kumelwe nje sikwenze ufake i-python 2.7 (ubuncane) bese usebenzisa imiyalo elandelayo:
git clone https://github.com/m4ll0k/Spaghetti.git cd Spaghetti pip install -r doc/requirements.txt python spaghetti.py -h
Lapho ukufakwa sekuqediwe, singasebenzisa ithuluzi kuzo zonke izinhlelo zokusebenza zewebhu esifuna ukuskena.
Sebenzisa i-Spaghetti
Kubalulekile ukuqaphela ukuthi ukusetshenziswa okungcono kakhulu esingakwenza kuleli thuluzi ukuthola izikhala ezivulekile zokuphepha kuzinhlelo zethu zokusebenza zewebhu. Ngohlelo, ngemuva kokuthola amaphutha ezokuphepha, kufanele kube lula ngathi ukuwaxazulula (uma singabathuthukisi). Ngale ndlela singenza izinhlelo zethu zokusebenza zivikeleke kakhulu.
Ukuze usebenzise lolu hlelo, njengoba ngishilo phambilini, kusuka ku-terminal (Ctrl + Alt + T) kuzofanele sibhale okuthile okulandelayo:
python spaghetti.py -u “objetivo” -s [0-3]
noma singasebenzisa futhi:
python spaghetti.py --url “objetivo” --scan [0-3]
Lapho ufunda khona "inhloso" kufanele ubeke i-URL ukuze uyihlaziye. Ngezinketho ze- -uo –url ibhekisa kwithagethi yokuskena, i -so -scan izosinika amathuba ahlukahlukene kusuka ku-0 kuye ku-3. Ungahlola incazelo enemininingwane eminingi ngosizo lohlelo.
Uma sifuna ukwazi ukuthi yiziphi izinketho ezisenza sitholakale kuzo, singasebenzisa usizo elizosikhombisa lona esikrinini.
Kungaba ubuwula ukungatholi ukuthi abanye abasebenzisi bangasebenzisa leli thuluzi ukuzama ukufinyelela kuzinhlelo zokusebenza zewebhu okungezona ezabo. Lokhu kuzoncika ezimisweni zokuziphatha zomsebenzisi ngamunye.
Njengoba kungabonakala kungakholeki, ukufakwa kuyangihluleka lapho ngifuna ukufaka i- "Isobho elihle", ayisekeli iPython3 nakancane futhi ngenxa yombhedo wamazwibela athi "phrinta" bekufanele basebenzise "ukungenisa kusuka ku -___kusasa___" :
Ukuqoqa i-BeautifulSoup
Ukulanda i-BeautifulSoup-3.2.1.tar.gz
Qedela ukukhipha kusuka kumyalo python setup.py egg_info:
I-Traceback (ucingo lwakamuva lugcine):
Ifayela «», umugqa 1, ku
Ifayela "/tmp/pip-build-hgiw5x3b/BeautifulSoup/setup.py", umugqa 22
phrinta "Ukuhlolwa kweyunithi kuhlulekile!"
^
Iphutha le-Syntax: Ama-parenthes alahlekile kukholi ethi 'phrinta'
Ngicabanga ukuthi i-BeautifulSoup ingafakwa kusetshenziswa i-Sudo apt install python-bs4. Ngiyethemba ukuthi ixazulula inkinga yakho. Salu2.