A-A+

Awvs 13 API python利用(调用)脚本

2020年06月15日 17:27 汪洋大海 暂无评论 阅读 61 views 次
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
#!/usr/bin/env python
#coding:utf-8
#Awvs 13 API利用脚本
 
import json
import time
import requests
import urlparse
import requests.packages.urllib3
 
class awvs(object):
    def __init__(self):
       self.task = []
       self.server = '' # 填入AWVS的IP地址
       self.apikey = '' # 填入申请的 API Key
       self.header = {'X-Auth':self.apikey,'content-type':'application/json'}
       #前6个为系统默认扫描策略,后面为自定义
       self.scan_rule = {
          "FS": "11111111-1111-1111-1111-111111111111",
          "HR": "11111111-1111-1111-1111-111111111112",
          "XSS": "11111111-1111-1111-1111-111111111116",
          "SQL": "11111111-1111-1111-1111-111111111113",
          "WP": "11111111-1111-1111-1111-111111111115",
          "CO": "11111111-1111-1111-1111-111111111117"
          }
       self.W = '\033[0m'
       self.G = '\033[1;32m'
       self.O = '\033[1;33m'
       self.R = '\033[1;31m'
       self.B = '\033[1;34m'
       requests.packages.urllib3.disable_warnings()
 
    def request(self, path):
       try:
         return requests.get(url=self.server+path, timeout=10, 
              verify=False, headers=self.header)
       except Exception as e:
         print e
 
    def scan_type(self):
       #扫描策略选择
       try:
         l = '[0] Full Scan\n'
         l += '[1] High Risk Vulnerabilities\n'
         l += '[2] Cross-site Scripting Vulnerabilities\n'
         l += '[3] SQL Injection Vulnerabilities\n'
         l += '[4] Weak Passwords\n'
         l += '[5] Crawl Only'
         print self.G+l+self.W
         rule = raw_input(self.O+'[Awvs_Api/Set_Rule]>> '+self.W)
         if rule == '0':
          return self.scan_rule['FS']
         elif rule == '1':
          return self.scan_rule['HR']
         elif rule == '2':
          return self.scan_rule['XSS']
         elif rule == '3':
          return self.scan_rule['SQL']
         elif rule == '4':
          return self.scan_rule['WP']
         elif rule == '5':
          return self.scan_rule['CO']
         else:
          print self.R+'[-] Ops, 输入有误...'+self.W
       except Exception as e:
         pass
 
    def check_id(self):
       #扫描任务ID选择
       try:
         r = self.request('/scans')
         response = json.loads(r.text)
         text = response['scans']
         if len(text)>0:
          for i in range(len(text)):
              self.task.append(text<i>['scan_id'])
              print self.G+'['+str(i)+']',text<i>['target']['address']+self.W
          task_id = raw_input(self.O+'[Awvs_Api/Set_Task_Id]>> '+self.W)
          return self.task[int(task_id)]
         else:
          print self.R+'[-] Ops, 当前无扫描任务...'+self.W
          return
       except Exception as e:
         print self.R+'[-] Ops, 输入有误...'+self.W
       finally:
         #清空获取的任务列表
         del self.task[:]
 
    def add(self):
       #添加扫描对象
       try:
         target = raw_input(self.O+'[Awvs_Api/Set_Target]>> '+self.W)
         data = {'address':target,'description':'','criticality':10}
         r = requests.post(url=self.server+'/targets', timeout=10, 
          verify=False, headers=self.header, data=json.dumps(data))
         if r.status_code == 201:
          return json.loads(r.text)['target_id']
       except Exception as e:
         print e
 
    def scan(self):
       #启动扫描任务
       data = {'target_id':self.add(),'profile_id':self.scan_type(),
       'schedule':{'disable':False,'start_date':None, 'time_sensitive':False}}
       try:
         r = requests.post(url=self.server+'/scans', timeout=10, 
          verify=False, headers=self.header, data=json.dumps(data))
         if r.status_code == 201:
          print self.G+'[-] OK, 扫描任务已经启动...'+self.W
       except Exception as e:
         print e
 
    def stop(self):
       #停止扫描任务
       try:
         r = requests.post(url=self.server+'/scans/'+self.check_id()+'/abort',
          timeout=10, verify=False, headers=self.header)
         if r.status_code == 204:
          print self.G+'[-] OK, 扫描已经停止...'+self.W
       except Exception as e:
         pass
 
    def view(self):
       #查看任务状态
       try:
         r = self.request('/scans/'+self.check_id())
         response = json.loads(r.text)
         addr = response['target']['address']
         high = response['current_session']['severity_counts']['high']
         medium = response['current_session']['severity_counts']['medium']
         low = response['current_session']['severity_counts']['low']
         status = response['current_session']['status']
         print self.G+u'[-] 扫描目标: {}'.format(addr)
         print u'[-] 扫描状态: {}'.format(status)
         print u'[-] 高危漏洞: {}'.format(high)
         print u'[-] 中危漏洞: {}'.format(medium)
         print u'[-] 低危漏洞: {}'.format(low)+self.W
       except Exception as e:
         pass
 
    def report(self):
       #生成报告
       try:
         data = {'template_id':'11111111-1111-1111-1111-111111111111',
         'source':{'list_type':'scans','id_list':[self.check_id()]}}
         r = requests.post(url=self.server+'/reports',timeout=10, 
          verify=False, headers=self.header, data=json.dumps(data))
         if r.status_code == 201:
          self.download(r.headers['Location'])
       except Exception as e:
         print e
 
    def download(self, path):
       #下载报告
       try:
         r = requests.get(url=self.server.replace('/api/v1','')+path,
          timeout=10, verify=False, headers=self.header)
         response = json.loads(r.text)
         report_id = response['report_id']
         target = response['source']['description']
         url = self.server.replace('/api/v1','')+'/reports/download/'
         print self.G+'[-] 报告生成中...'+self.W
         #等待报告生成
         while True:
          time.sleep(5)
          _r = self.request('/reports/'+report_id)
          if json.loads(_r.text)['status'] == 'completed':
              downloadReportUrl = json.loads(_r.text)["download"][0]
              res = requests.get(url=self.server.replace('/api/v1', "")+downloadReportUrl,verify=False,timeout=10)
              if res.status_code == 200:
                 name = urlparse.urlparse(target).netloc.replace(';','')
                 print self.G+'[-] OK, 报告下载成功.'+self.W
                 with open(name +'.html', 'wb') as f:
                   f.write(res.content)
                 break
       except Exception as e:
         print e
 
    def delete(self):
       #删除扫描任务
       try:
         r = requests.delete(url=self.server+'/scans/'+self.check_id(), 
          timeout=10, verify=False, headers=self.header)
         if r.status_code == 204:
          print self.G+'[-] OK, 已经删除任务...'+self.W
       except Exception as e:
         pass
 
    def handle(self):
       #任务调度
       try:
         self.banner()
         self.usage()
         print '-'*43
         while True:
          show = raw_input(self.O+'[Awvs_Api]>> '+self.W)
          if show == 'view':
              self.view()
          elif show == 'scan':
              self.scan()
          elif show == 'stop':
              self.stop()
          elif show == 'del':
              self.delete()
          elif show == 'report':
              self.report()
          elif show == 'help' or show == '?':
              self.usage()
          elif show == 'exit':
              break
          elif show == '':
              pass
          else:
              print self.R+'[-] Ops, 输入错误...'+self.W
       except KeyboardInterrupt:
         pass
 
    def usage(self): 
       s = '帮助:\n'
       s += '    scan     开始扫描任务\n'
       s += '    stop     停止扫描任务\n'
       s += '    del      删除扫描任务\n'
       s += '    report   任务扫描报告\n'
       s += '    view     查看扫描任务\n'
       s += '    ?、help  查看扫描帮助\n'
       s += '    exit     退出扫描任务'
       print self.B+s+self.W
 
    def banner(self):
       flag = '''
    ___                      ___          _
   /   |_      ___   _______/   |  ____  (_)
  / /| | | /| / / | / / ___/ /| | / __ \/ /
 / ___ | |/ |/ /| |/ (__  ) ___ |/ /_/ / /
/_/  |_|__/|__/ |___/____/_/  |_/ .___/_/
                               /_/'''
 
       print self.O+flag+self.W+'\n'
       print '-'*43
 
if __name__ == '__main__':
    mywvs = awvs()
    mywvs.handle()

原作者:Geekby
文章来源:https://www.t00ls.net/thread-56774-1-1.html
更多详情请去土司查看。

布施恩德可便相知重

微信扫一扫打赏

支付宝扫一扫打赏

×

给我留言