?????????????python??С??????????????????Acuenetix Web Vulnerability Scanner?????????裬???????Щ????????裬?????????д??mysql?????д??????£?????????Щ?·??
???????????????????????飬Url???????????衢??????
????????????????????????????????????????????????HttpЭ???????????????????????????Щ???и????????url??????url???????url?????????????mysql???????????url??
??????????蹦???????????Awvs????????wvs_console.exe?????е?????????????awvs??????????????????裬???????????Щawvs???÷?????????????????????????????????????ò??????????????????????XML??棬??????????????????÷?????
?????????Awvs????????У?wvs_console.exe?????????к????????????????????Awvs????????????й????????????????????????????url???????????衣???????????浽????access????????????????savetodatabase??????
????Awvs???????????????浽?????access??????У?????????Wvs_alerts?????????????浽Mssql??????У??????????Application Setting???????á?????????????????access?????????Σ??????3??????????????д??mysql?????????????????????request?е?host??????????get??post???????????????????????????????????url??
??????????????????????Bug??????????????????????????????????o????????и?????????п???????????????????????????????????????????????? ?????????????????????url??????衣
?????????????????????°??????????????????????·????????????????????
????Awvs?????????????????Wvs_scans?????????????????url???????迪?????????????????????????url???浽???list?У??????????????????????????URL??????????????????list?У????list?е?url???ж????????????URL list?У????????????url list??????????????????????????衣
????????????ò???????????????????????????????????????????????????????????wvs????????ж??
???????????????????????????????????????????Щ????????????Ь?????????????о??????Ч???????????д?????so???ü?????????????????????????????
????downurl.py ????
#coding:utf-8
import MySQLdb
import os??time??shutil
import hashlib??re
datanow=time.strftime('%Y-%m-%d'??time.localtime(time.time()))
#filetype='.txt'
#urlfilename=datanow+filetype
#path="D:wvscanurl\"
#newfile=path+urlfilename
datanow=time.strftime('%Y-%m-%d'??time.localtime(time.time()))
con=MySQLdb.Connect('10.1.1.1'??'root'??'12345678'??'wvsdb')
cur=con.cursor()
sqlstr='select url from urls where time like %s'
values=datanow+'%'
cur.execute(sqlstr??values)
data=cur.fetchall()
#???????URL???浽????url.txt???
f=open(r'd:Wvscanurl.txt'??'a+')
uhfile=open(r'd:Wvscanurlhash.txt'??'a+')
line=uhfile.readlines()
#????????url???м??????????????hash??????????url.txt??url?????
for i in range(0??len(data)):
impurl=str(data[i][0]).split('=')[0]
urlhash=hashlib.new('md5'??impurl).hexdigest()
urlhash=urlhash+' '
if urlhash in line:
pass
else:
uhfile.write(urlhash)
newurl=str(data[i][0])+' '
f.writelines(newurl)
cur.close()
con.close()