BOT_NAME = "myproject" # 是否随机UA头 RANDOM_UA = True # 随机UA头选项 "random" "chrome" "edge" "firefox" "safari" RANDOM_UA_TYPE = "random" SPIDER_MODULES = ["myproject.spiders"] NEWSPIDER_MODULE = "myproject.spiders" # UA头设置 USER_AGENT = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Edg/119.0.0.0" # MIDDLEWARES 设置 DOWNLOADER_MIDDLEWARES = { 'myproject.middlewares.RandomUserAgentMiddlware': 100, } # 是否遵循robots.txt rules ROBOTSTXT_OBEY = True RANDOM_UA_PER_REQUEST = True # 爬取深度 DEPTH_LIMIT = 4 # 爬取延时 DOWNLOAD_DELAY = 0 ITEM_PIPELINES = { 'myproject.pipelines.URLPipeline': 100, } REQUEST_FINGERPRINTER_IMPLEMENTATION = "2.7" TWISTED_REACTOR = "twisted.internet.asyncioreactor.AsyncioSelectorReactor" FEED_EXPORT_ENCODING = "utf-8" LOG_LEVEL= 'WARNING'

程序测试

**自定义**

Complex HTML Test

Welcome to My Website

This is a paragraph.

Featured Products

Product 1

Description of Product 1.

Product 2

Description of Product 2.

` 标签的信息，包括待提取的属性列表中的属性值： ``` {'属性1':'属性值1','属性2':'属性值2'} ``` 如果将 `extract_content` 参数设置为 `True`，则标签内容将会被提取。 {% endtab %} {% endtabs %} ## 存储模块 {% tabs %} {% tab title="Recorder库" %} **Recorder功能** * 创建工作文件夹 * 根据插件接口返回的log记录各插件日志 * 根据插件接口返回的result记录插件运行结果 ```python import os import sys import logging # 获取历史记录文件夹 history_dir=os.path.join(os.path.dirname(os.path.dirname(os.path.abspath(__file__))),'History') # print(history_dir) # 记录类 class Recorder: def __init__(self,project_name) -> None: self.project_name=project_name project_dir=os.path.join(history_dir,project_name) self.project_dir=project_dir self.pluginDir_dic={} self.pluginlist=[] # 这里的pluginlist就是插件信息列表 ''' [ { "name": "Nmap", "version": "0.7.1", "statu": "Nmap", "require_options": { "ip": "xxxxxxxxxxxxxxxx" } } ]''' # 创建项目文件夹 def creat_dir(self,pluginlist): # 创建项目文件夹 try: os.mkdir(self.project_dir) print(f"[+]创建项目{self.project_dir}文件夹成功") except Exception as e: print(f"[ERROR]新建项目{self.project_name}文件夹Exception:\n\t",e) # 创建插件记录文件夹 for i in pluginlist: try: self.pluginlist.append(i['name']) # 只存储插件名:["A"] plugin_dir=os.path.join(self.project_dir,i["name"]) self.pluginDir_dic[i['name']]=plugin_dir # 存储对应插件的地址:{"A":"A_dir"} os.mkdir(plugin_dir) print(f"[+]创建项目插件文件夹{plugin_dir}成功") except Exception as e: print(f"[ERROR]新建项目{self.project_name}插件文件夹Exception:\n\t",e) # print(self.pluginDir_dic) def creat_a_dir(self,plugin_name): newdir=os.path.join(os.path.join(history_dir,self.project_name),plugin_name) print(newdir) try: os.mkdir(newdir) except Exception as e: print(f"[ERROR]新建项目{self.project_name}插件文件夹Exception:\n\t",e) self.pluginlist.append(plugin_name) self.pluginDir_dic[plugin_name]=newdir """ 将消息传给插件管理器的接口，接收一个字典格式如下： a={ "name":"PluginName", "type":"log" "level":"info" "messages":[ "111111", "222222" ] } """ def log(self, message): print("日志-记录~o.0") print(message) plugin_name=message["name"] # 如果plugin_name不在pluginlist中就新建文件夹,并将该plugin_name添加到pluginlist,把新建的地址添加到pluginDir_dic if(plugin_name not in self.pluginlist): self.creat_a_dir(plugin_name) logpath = self.pluginDir_dic[plugin_name] log_level = message.get("level", "info") # 默认级别为info log_file = os.path.join(logpath,"log.txt") # 创建一个日志记录器 logger = logging.getLogger('my_logger') logger.setLevel(logging.DEBUG) # 创建一个文件处理器并指定日志文件路径 file_handler = logging.FileHandler(log_file) # 设置文件处理器的日志级别 file_handler.setLevel(logging.DEBUG) # 创建一个格式化器，定义日志消息的格式 formatter = logging.Formatter('%(asctime)s - %(levelname)s - %(message)s') # 将格式化器应用到文件处理器 file_handler.setFormatter(formatter) # 将文件处理器添加到日志记录器 logger.addHandler(file_handler) # print(log_file) # 根据级别添加日志 if log_level == "info": # print(message["messages"]) for m in message["messages"]: print(m) logger.info(m) elif log_level == "warning": for m in message["messages"]: logger.warning(m) elif log_level == "error": for m in message["messages"]: logger.error(m) elif log_level == "debug": for m in message["messages"]: logger.debug(m) else: print(f"未正确设定message['level']\n\tlevel分为debug,info,warning,error,critical") return """ 将消息传给插件管理器的接口，接收一个字典格式如下： a={ "name":"PluginName", "type":"log", "level":"info", "messages":[ "111111", "222222" ] } """ # 处理结果 def result(self,message): plugin_name=message["name"] if(plugin_name not in self.pluginlist): self.creat_a_dir(plugin_name) print(f"[ERROR]插件{plugin_name}不存在,已根据插件{plugin_name}创建新的插件目录") resultpath = self.pluginDir_dic.get(plugin_name) result_file = resultpath + "/result.txt" try: with open(result_file, "a") as f: for m in message["messages"]: f.write(str(m)+"\n") print(f"[+]插件{plugin_name}记录成功") except Exception as e: logging.critical("[ERROR]插件{}记录失败\n\t{}".format(plugin_name,e)) return ``` {% endtab %} {% tab title="store库" %} **storage类的功能：** 负责实现与数据库交互进行自定义表单创建数据存储 ```python import pymysql from . import mysql_setting import logging class Storage_Base: #配置数据库 def __init__(self): self.mysql_host = mysql_setting.mysql_host self.mysql_port = mysql_setting.mysql_port self.mysql_user = mysql_setting.mysql_user self.mysql_password = mysql_setting.mysql_password self.mysql_db = mysql_setting.mysql_db self.tables=[] self.tables_name=[] # 建立连接 def Connect_mysql(self): self.conn = pymysql.connect( host=self.mysql_host, port=self.mysql_port, user=self.mysql_user, password=self.mysql_password, db=self.mysql_db, charset='utf8' ) try: self.cursor = self.conn.cursor() logging.info("Connect_mysql: 连接成功 [Connection success]") except Exception as e: logging.error("Connect_mysql: 连接失败 [Connection failure]%s:" % e) return False # 关闭连接 def close(self): self.cursor.close() self.conn.close() ''' 根据setting创建表单 setting格式: setting={ 'table_name':'urlitem', 'columns':{ 'url':'varchar(255)', 'cookie':'varchar(255)', 'tag':'varchar(255)', 'type':'varchar(255)', 'name':'varchar(255)' } } 创建表单 ''' def Creat_table(self, setting): self.setting = setting if 'table_name' in setting and setting['table_name']: table_name = setting['table_name'] self.tables.append(setting) self.tables_name.append(table_name) else: logging.error("Creat_table: table_name is null") return False if 'columns' in setting and setting['columns']: columns = [] for column_name, column_value in setting['columns'].items(): columns.append(f"{column_name} {column_value}") columns_str = ", ".join(columns) # 注意此语句会造成sql注入，注意后续修改 query="CREATE TABLE IF NOT EXISTS {} ({})".format(table_name,columns_str) # print(query) try: self.cursor.execute(query) # 检查 'id' 列是否已经存在 self.cursor.execute("SHOW COLUMNS FROM {} LIKE 'id'".format(table_name)) result = self.cursor.fetchone() print(result) if result is None: self.cursor.execute("ALTER TABLE {} ADD COLUMN id INT PRIMARY KEY AUTO_INCREMENT".format(table_name)) logging.info("create_table: 表单创建成功 [Table created successfully]") else: logging.info("create_table: 'id' 列已经存在 [Column 'id' already exists]") except Exception as e: logging.error("create_table: 表单创建失败 [Table creation failure]: %s" % e) else: logging.error("Creat_table: columns is null") return False # 判断item是否符合存储要求(私有函数) def _validate_item_for_insert(self,item): # 判断存储对象item是否为空 if not item: logging.error("Insert_data: 传入存储对象为空 [item is null]") return False # 判断table_name是否为空 if not item.get('table_name'): logging.error("Insert_data: 表单名为空 [table_name is null]") return False else : table_name = item.get('table_name') # 判断表单是否存在 if table_name not in self.tables_name: logging.error("Insert_data: 表单不存在请先建立表单 [The table does not exist. Please create the table first]") return False table = self.tables[self.tables_name.index(table_name)] setting_columns = table.get('columns').keys() item_columns = item.get('columns').keys() if setting_columns != item_columns: logging.error("Insert_data: 待插入表单的列名与对应表单的列名不匹配 [Column names of the item do not match the table's column names]") return False else: return True ''' 提取的内容格式 item={ 'table_name':'urlitem', 'columns':{ 'url':'url_str', 'cookie':'cookie_str', 'tag':'tag_str', 'type':'type_str', 'name':'name_str' } } ''' def insert_data(self, item): if not self._validate_item_for_insert(item): logging.error("Insert_data: 数据不合法请查看你的item是否与对应setting格式相同 [Insert data failed]") return False table_name = item['table_name'] columns = item['columns'] column_names = list(columns.keys()) column_values = list(columns.values()) placeholders = ", ".join(["%s"] * len(column_names)) sql = f"INSERT INTO {table_name} ({', '.join(column_names)}) VALUES ({placeholders})" try: with self.conn.cursor() as cursor: cursor.execute(sql, tuple(column_values)) self.conn.commit() logging.info("Insert_data: 数据插入成功 [Insert data successfully]") except Exception: logging.exception("Insert_data: 数据插入失败 [Insert data failed]") return False return True ``` //待完善数据为进行过滤会导致sql注入漏洞 {% endtab %} {% endtabs %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://doc.why403.cn/gai-shu/yi-lai-mo-kuai-shi-xian.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.