python 获取探针页面，自动查询公司出口

在一些渗透当中，我们需要批量探针出口来达到我们的目的。

所以就有了这个丑陋简洁的小脚本。

#!/usr/bin/env python

#-*- coding:utf- -*-

import sys

import threading

import httplib

import re

import time

class Myclass(threading.Thread):

        def __init__(self,host,path):

                threading.Thread.__init__(self)

                self.host = host

                self.path = path

                self.result = []

        def run(self):

                if "https://" in self.host:

                        conn = httplib.HTTPSConnection(self.host,,None,None,False,)

                else:

                        conn = httplib.HTTPConnection(self.host,,False,)

                i_headers = {"User-Agent": "Mozilla/5.0 (Windows; U; Windows NT 5.1; zh-Us; rv:1.9.1) Gecko/20090624 Firefox/3.5","Accept": "text/plain"}

                conn.request('GET',self.path,headers = i_headers)

                r1 = conn.getresponse()

                text = r1.read()

                text1 = text.lstrip()

                #size = text.count("\n")

                test = open('ip.txt','a+')

                test.write(text1)

                b = open("ip.txt",'r')

                c = open("ids.txt",'w')

                for line in b.readlines():

                        m = re.search(r'(IP:\d*.\w*.\d*.\d*.\d*)',line)

                        mm =  m.group()

                        owa = mm.replace("IP:","").strip().replace("\n","")

                        self.result =  owa.replace("\n","")

                        c.write(self.result)

                        c.write("\n")

                        #print "write success"

                g = open("ids.txt",'r')

                for lines in g.readlines():

                        getsip =  lines.replace("\n","")

                        try:

                                conns = httplib.HTTPConnection("bgp.he.net",,False,)

                        except Exception:

                                print "[-]:connection out time"

                                break

                        else:

                                conns.request('GET','/ip/%s' % getsip,headers = i_headers)

                                r2 = conns.getresponse()

                                texts = r2.read()

                        try:

                                line_split = re.search(r'(<u>.*\d+\D+.*.title=)',texts)

                                obj =  line_split.group()

                                print "server:",obj.replace("<u>","").replace("</u>","").replace("\n","").replace("(<a href=\"","search domain:").replace("\" title=","").replace("/dns/","")

                        except Exception, e:

                                pass

                        time.sleep()

                        #print line_split

def main():

        if len(sys.argv) < :

                print "[*]:Usage python info.py 127.0.0.1 /path"

                sys.exit()

        Mythread = Myclass(sys.argv[],str(sys.argv[]))

        Mythread.start()

if __name__ == "__main__":

        main()

python test.py ip /探针/1.txt

而1.txt页面为:

IP:xxx.xxx.xxx.xxx OS:Windows x Language:xxx Browser:FireFox 2x.0 Referer:xxxxx Cookies: Time:201x-0x-xx 05:43:51 AM id:xxxxx

因为查询的网站有限制。所以1个线程足以。

代码写的太粗糙了，见笑了。