#!/usr/bin/env python # -*- coding: utf-8 -*- # Author: f0rsaken import getopt import requests import sys import time USER = "" PASS = "" def main(): try: opts, args = getopt.getopt(sys.argv[1:], "hu:p:m:q:l:", ["help", "user=", "pass=", "mode=", "query=", "limit="]) except getopt.GetoptError as e: print("[-] %s" % e) usage() sys.exit(2) username = USER password = PASS mode = "host" query = "" limit = 2048 for o, a in opts: if o in ("-h", "--help"): usage() sys.exit() elif o in ("-u", "--user"): username = a elif o in ("-p", "--pass"): password = a elif o in ("-m", "--mode"): if a in ("host", "web"): mode = a else: print("[-] Unknown Mode!") usage() sys.exit(2) elif o in ("-q", "--query"): query = a elif o in ("-l", "--limit"): try: limit = int(a) except ValueError as e: print("[-] %s" % e) usage() sys.exit(2) else: pass if not query: print("[-] Query Keyword Not Found!") usage() sys.exit(2) print("[!] Mode: %s" % mode) print("[!] Query: %s" % query) print("[!] Limit: %s" % limit) try: choice = raw_input("Start Query? [Y/n] ") except NameError as e: choice = input("Start Query? [Y/n] ") if choice.lower() == "n": sys.exit() authorization = get_authorization(username, password) if not authorization: sys.exit(1) resources_info = get_resources_info(authorization) if not resources_info: sys.exit(1) else: print("[*] Plan: %s" % resources_info["plan"]) print("[*] Resources: Host %s Web %s" % (resources_info["resources"]["host-search"], resources_info["resources"]["web-search"])) result = list() page = 1 while page <= limit: temp = search(authorization, mode, query, str(page)) if not temp: break result.extend(extract(mode, temp)) print("Download Page: %s" % page) page += 1 result = set(result) log = "ZoomEye_" + str(time.time()) + ".txt" with open(log, "w") as f: f.writelines(result) print("Please Check The %s" % log) def usage(): print("Usage: python %s [options]" % sys.argv[0]) print("") print("Options:") print(" -h, --help Show Help Message And Exit") print(" -u USER, --user=USER ZoomEye E-Mail") print(" -p PASS, --pass=PASS ZoomEye Password") print(" -m MODE, --mode=MODE host || web (Default: host)") print(" -q QUERY, --query=QUERY Query Keyword") print(" -l LIMIT, --limit=LIMIT Page Limit (Default: 2048)") def get_authorization(username, password): authorization = dict() access_token = get_access_token(username, password) if access_token: authorization["Authorization"] = "JWT " + access_token["access_token"] else: pass return authorization def get_access_token(username, password): try: r = requests.post("https://api.zoomeye.org/user/login", json={"username": username, "password": password}) except requests.RequestException as e: print("[-] %s" % e) print("[-] Get Access Token Failed!") else: if r.status_code == requests.codes.ok: return r.json() else: print("[-] %s %s \n[-] %s" % (r.status_code, r.json()["error"], r.json()["message"])) print("[-] Get Access Token Failed!") def get_resources_info(authorization): try: r = requests.get("https://api.zoomeye.org/resources-info", headers=authorization) except requests.RequestException as e: print("[-] %s" % e) print("[-] Get Resources Info Failed!") else: if r.status_code == requests.codes.ok: return r.json() else: print("[-] %s %s \n[-] %s" % (r.status_code, r.json()["error"], r.json()["message"])) print("[-] Get Resources Info Failed!") "): try: url = "https://api.zoomeye.org/" + mode + "/search?query=" + query + "&page=" + page print("GET %s" % url) r = requests.get(url, headers=authorization) except requests.RequestException as e: print("[-] %s" % e) print("[-] %s Search Failed!" % mode.capitalize()) else: if r.status_code == requests.codes.ok: return r.json() else: print("[-] %s %s \n[-] %s" % (r.status_code, r.json()["error"], r.json()["message"])) print("[-] %s Search Failed!" % mode.capitalize()) def extract(mode, temp): result = list() if mode == "host": for line in temp["matches"]: result.append(line["ip"] + ":" + str(line["portinfo"]["port"]) + "\n") else: for line in temp["matches"]: result.append(line["site"] + "\n") return result if __name__ == "__main__": main()
欢迎分享,转载请注明来源:内存溢出
评论列表(0条)