├── UA_Pool.py
├── awvs_proxy.py
├── batchCleanSubdomain.bat
├── batchStatusCodeClean.bat
├── images
    ├── 1.jpg
    ├── 2.jpg
    ├── 3.jpg
    ├── 4.jpg
    ├── 5.jpg
    ├── 6.jpg
    └── 7.jpg
├── lijiejie批量.bat
├── readme.md
├── statusCodeClean.py
├── subdomainClean.py
├── webhookdemo.py
├── xray sql.txt
├── xray_deploy_in_onekey.py
└── 批量处理子域名文件(10k).bat


/awvs_proxy.py:
--------------------------------------------------------------------------------
  1 | __author__ = 'leezp'
  2 | # xray 一键分发awvs任务
  3 | # 191130
  4 | # -*- coding:utf-8 -*-
  5 | import requests
  6 | import json
  7 | import urllib3
  8 | import time
  9 | import queue
 10 | 
 11 | urllib3.disable_warnings()
 12 | 
 13 | 
 14 | class define:
 15 |     num = 1
 16 |     GREEN = "\033[32m"
 17 |     RED = "\033[0;31m"
 18 |     BLUE = "\033[94m"
 19 |     ORANGE = "\033[33m"
 20 |     host = "https://127.0.0.1:3443/"  # 端口后面一定要加/
 21 |     api_key = "1986ad8c0a5b3df4d7028d5f3c06e936c6ffee1016f8148fc9415805468875fc0"
 22 |     api_header = {'X-Auth': api_key, 'content-type': 'application/json;charset=UTF-8'}
 23 |     awvs_scan_rule = {
 24 |         "full": "11111111-1111-1111-1111-111111111111",
 25 |         "highrisk": "11111111-1111-1111-1111-111111111112",
 26 |         "XSS": "11111111-1111-1111-1111-111111111116",
 27 |         "SQL": "11111111-1111-1111-1111-111111111113",
 28 |         "Weakpass": "11111111-1111-1111-1111-111111111115",
 29 |         "crawlonly": "11111111-1111-1111-1111-111111111117"
 30 |     }
 31 | 
 32 | 
 33 | def add(awvshost, url):
 34 |     # 添加任务
 35 |     data = {"address": url, "description": url, "criticality": "10"}
 36 |     try:
 37 |         response = requests.post(awvshost + "api/v1/targets", data=json.dumps(data), headers=define.api_header,
 38 |                                  timeout=30, verify=False)
 39 |         result = json.loads(response.content)
 40 |         return result['target_id']
 41 |     except Exception as e:
 42 |         print(str(e))
 43 |         return
 44 | 
 45 | 
 46 | def cool(awvshost, addr, port, url):
 47 |     try:
 48 |         target_id = add(awvshost, url)
 49 |     except:
 50 |         print(url)
 51 |         pass
 52 |     try:
 53 |         data = {"proxy": {"enabled": True, "address": addr, "protocol": "http", "port": port}}
 54 |         response = requests.patch(awvshost + "api/v1/targets/" + target_id + "/configuration", verify=False,
 55 |                                   data=json.dumps(data), headers=define.api_header)
 56 |         '''
 57 |         resp = requests.get(awvshost + "api/v1/targets/" + target_id + "/configuration", data=json.dumps(data),
 58 |                             headers=define.api_header)
 59 |         print(resp.text)
 60 |         '''
 61 |         data = {'target_id': target_id, 'profile_id': define.awvs_scan_rule['crawlonly'],
 62 |                 'schedule': {'disable': False, 'start_date': None, 'time_sensitive': False}}
 63 |     except Exception as e:
 64 |         print(url)
 65 |         pass
 66 |     try:
 67 |         r = requests.post(url=awvshost + 'api/v1/scans', timeout=10, verify=False, headers=define.api_header,
 68 |                           data=json.dumps(data))
 69 |         if r.status_code == 201:
 70 |             print(define.BLUE + '[-] OK, 扫描任务已经启动 当前扫描第' + str(define.num) + '个网站:%s' % url)
 71 |             define.num += 1
 72 |     except Exception as e:
 73 |         print(e)
 74 |         print(url)
 75 |         pass
 76 | 
 77 | 
 78 | def singlevps():
 79 |     s = open('url.txt', 'r')
 80 |     k = 0
 81 |     j = 0
 82 |     for i in s.readlines():
 83 |         j += 1
 84 |         if j < 1:
 85 |             continue
 86 |         if k > 123:
 87 |             break
 88 |         else:
 89 |             cool(define.host, "127.1.1.1", 22, i.strip())
 90 |             k += 1
 91 |             time.sleep(60)
 92 | 
 93 | 
 94 | def multivps():
 95 |     s = open('url.txt', 'r')
 96 | 
 97 |     q = queue.Queue()
 98 |     host = {
 99 |         1: '172.16.1.1:22,root,XXX,7776'
100 |         , 2: '172.16.1.2:22,root,XXX,7775'
101 |         , 3: '172.16.1.3:22,root,XXX,7776'
102 |         , 4: '172.16.1.4:22,root,XXX,7773'
103 |         , 5: '172.16.1.5:22,root,XXX,7771'
104 |         , 6: '172.16.1.6:22,root,XXX,7778'
105 |         , 7: '172.16.1.7:22,root,XXX,7772'
106 |         , 8: '172.16.1.8:22,root,XXX,7779'
107 |         , 9: '172.16.1.9:22,root,XXX,7770'
108 |         , 10: '172.16.1.10:22,root,XXX,7774'
109 |         , 11: '172.16.1.11:61001,root,XXX,7773'
110 |         , 12: '172.16.1.12:61001,root,XXX,7774'  
111 |     }
112 | 
113 |     for i in s.readlines():
114 |         # 由 lijiejie子域名 扫描完 分割 ， www.baidu.com   cdn
115 |         q.put(i.split(' ')[0].strip())
116 |     while not q.empty():
117 |         try:
118 |             for k in range(len(host)):
119 |                 ip = host.get(k + 1).split(':')[0].strip()
120 |                 port = host.get(k + 1).split(',')[-1].strip()
121 |                 if not q.empty():
122 |                     cool(define.host, ip, port, q.get())
123 |                 else:
124 |                     print('运行结束')
125 |                     break
126 |             time.sleep(10)
127 |         except:
128 |             print('运行结束')
129 | 
130 | 
131 | if __name__ == '__main__':
132 |     # singlevps()
133 |     multivps()
134 | 


--------------------------------------------------------------------------------
/batchCleanSubdomain.bat:
--------------------------------------------------------------------------------
1 | :: 批量执行子域名去重脚本
2 | @echo off
3 | for %%i in (*1_full.txt) do (
4 | 	python36 subdomainClean.py -f %%i
5 | )
6 | :: python36 subdomain.py -f %%i
7 | :: python 文件名不可是中文
8 | :: do  () ，do后面必须有一个空格。
9 | 


--------------------------------------------------------------------------------
/batchStatusCodeClean.bat:
--------------------------------------------------------------------------------
1 | :: 批量执行状态码清洗
2 | @echo off
3 | for %%i in (*full.txt) do (
4 | 	python36 statusCodeClean.py -f %%i
5 | )
6 | :: python36 subdomain.py -f %%i
7 | :: python 文件名不可是中文
8 | :: do  () ，do后面必须有一个空格。
9 | 


--------------------------------------------------------------------------------
/images/1.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/leezp/SubdomainWash/5000f0878088c5d4786559e8313748a7ed8148d0/images/1.jpg


--------------------------------------------------------------------------------
/images/2.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/leezp/SubdomainWash/5000f0878088c5d4786559e8313748a7ed8148d0/images/2.jpg


--------------------------------------------------------------------------------
/images/3.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/leezp/SubdomainWash/5000f0878088c5d4786559e8313748a7ed8148d0/images/3.jpg


--------------------------------------------------------------------------------
/images/4.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/leezp/SubdomainWash/5000f0878088c5d4786559e8313748a7ed8148d0/images/4.jpg


--------------------------------------------------------------------------------
/images/5.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/leezp/SubdomainWash/5000f0878088c5d4786559e8313748a7ed8148d0/images/5.jpg


--------------------------------------------------------------------------------
/images/6.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/leezp/SubdomainWash/5000f0878088c5d4786559e8313748a7ed8148d0/images/6.jpg


--------------------------------------------------------------------------------
/images/7.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/leezp/SubdomainWash/5000f0878088c5d4786559e8313748a7ed8148d0/images/7.jpg


--------------------------------------------------------------------------------
/lijiejie批量.bat:
--------------------------------------------------------------------------------
1 | :: lijiejie 批量
2 | 
3 | setlocal enabledelayedexpansion
4 | for /f %%i in (url.txt) do (
5 | python subDomainsBrute.py %%i  --full
6 | )


--------------------------------------------------------------------------------
/readme.md:
--------------------------------------------------------------------------------
 1 | ## Date 
 2 | 
 3 | 2019.12
 4 | 
 5 | 
 6 | ## 设计思路
 7 | 
 8 | 子域名获取->页面访问去重->子域名任务分发到awvs,并自动部署不同代理(代理为部署了多台xray的内网服务器)->xray分布式跑结果->上传检测成功至云端数据库，并发送wx通知。
 9 | 
10 | 
11 | ## 具体实现
12 | 
13 | ### 数据预处理
14 | 
15 | 1.子域名搜集
16 | 
17 | 这里我使用 [lijiejie 子域名采集](https://github.com/lijiejie/subDomainsBrute) 
18 | 
19 | 2.批量扫描域名获取子域名
20 | 
21 | 将```lijiejie批量.bat``` 放在```lijijie```工具目录下，运行```lijiejie批量.bat```文件。
22 | 
23 | ![](images/1.jpg)
24 | 
25 | 3.批量处理子域名   
26 | 
27 | 运行```批量处理子域名文件(10k).bat```
28 | 
29 | 此步骤作用为：扫描出来的子域名文件大小<10k的复制到一个txt中（a_output.txt）。文件大小>=10k 的 剪切到 当前目录 “1” 文件夹下，下一步对这些大文件进行清洗。
30 | 
31 | ![](images/2.jpg)
32 | 
33 | 
34 | 4.子域名清洗
35 | 
36 | 1）. 去掉无法访问的子域名，
37 | 
38 | 简单写了一些状态码，排除掉：
39 | 
40 | ![](images/3.jpg)
41 | 
42 | 	python3 statusCodeClean.py -f  url_full.txt
43 | 
44 | 转化成bat文件。 ```batchStatusCodeClean.bat```   批量执行状态码清洗
45 | 
46 | 2). 去重复。比如淘宝的资产，去掉一些重复的店铺和由于高并发访问导致的验证码页面，这些页面是一个模板，只需要扫描一个就行了。
47 | 
48 | ![](images/4.jpg)
49 | 
50 | 	python3 subdomainClean.py -f url_1_full.txt
51 | 
52 | 转化成bat文件。 ```batchCleanSubdomain.bat```   批量执行子域名清洗
53 | 
54 | 
55 | ### 数据库搭建
56 | 
57 | 4.存储服务器搭建数据库
58 | 
59 | 简单设计了一下要存储的字段
60 | 
61 | ![](images/5.jpg)
62 | 
63 | 	数据库创建语句见 xray sql.txt
64 | 
65 | 5.开启 webhook
66 | 
67 | ![](images/6.jpg)
68 | 
69 | ### 部署扫描器
70 | 
71 | 6.采用批量连接ssh(我这里部署到10台本地服务器上)，批量上传扫描器和配置文件，批量启动扫描器。
72 | 
73 | 	xray_deploy_in_onekey.py
74 | 
75 | 7.使用 awvs 12 用api调用,找到api并复制。
76 | 
77 | ![](images/7.jpg)
78 | 
79 | 用上面的脚本模拟给awvs配置xray代理。
80 | 
81 | 8.任务分发
82 | 
83 | 给前面部署的扫描器分发任务，每10秒awvs 给每个扫描器分配一个任务。
84 | 
85 | 	awvs_proxy.py
86 | 
87 | ### 躺着收割
88 | 
89 | 躺着让服务器自己跑就完事了。
90 | 
91 | ### 后记
92 | 
93 | 因为没时间和懒又追求效率，所以想把自动化做更好。
94 | 
95 | 做完以后发现自己还是很懒，每次过滤子域名需要打开几个url看看页面区别，提取xpath，懒得弄。
96 | 
97 | 还是把代码贡献出来。怎么说也费心调试了几个晚上。
98 | 
99 | 最后，本人水平有限，欢迎探讨。


--------------------------------------------------------------------------------
/statusCodeClean.py:
--------------------------------------------------------------------------------
 1 | # -*- coding:utf-8 -*-
 2 | __author__ = 'leezp'
 3 | __date__ = 20191231
 4 | import asyncio
 5 | import aiohttp
 6 | import aiomultiprocess
 7 | import aiofiles
 8 | import queue
 9 | import datetime
10 | import random
11 | from lxml import etree
12 | import urllib3
13 | import UA_Pool as UApool
14 | import re
15 | import argparse
16 | 
17 | def parse_args():
18 |     parse = argparse.ArgumentParser(usage='python36 %(prog)s -f url_full.txt')
19 |     parse.add_argument('-f', dest='input_file', type=str, default='url_full.txt', help='default is url_full.txt')
20 |     arg = parse.parse_args()
21 |     return arg.input_file
22 | 
23 | asyncio_Semaphore = 500  # 设置最大并发数为500 , linux可设置1000，效率翻倍
24 | input_file, dic_key = parse_args()
25 | name = input_file.split('_')[0].strip()
26 | output_file = name + '_1_full.txt'
27 | q = queue.Queue()
28 | file = open(input_file, encoding='utf-8')
29 | for x in file.readlines():
30 |     url = 'http://' + x.split(' ')[0].strip()
31 |     # url = x.split(' ')[0].strip()
32 |     q.put(url)
33 | 
34 | 
35 | urllib3.disable_warnings()
36 | 
37 | async def fetch(url):
38 |     sem = asyncio.Semaphore(asyncio_Semaphore)
39 |     async with sem:
40 |         # 最大访问数
41 |         async with aiohttp.ClientSession() as session:
42 |             try:
43 |                 async with session.head(url, timeout=5) as response:
44 |                     status = response.status
45 |                     if status == 404 or status == 500 or status == 504 or status == 503 or status == 512 or status == 608 or status == 403:
46 |                         return
47 |                     async with aiofiles.open(output_file, 'a', encoding='utf-8') as f:
48 |                         await f.write("{}  {}".format(url, status) + '\n')
49 |                         await f.close()
50 |             except Exception as e:
51 |                 print(e)
52 |                 pass
53 |             finally:
54 |                 print('test speed')
55 | 
56 | 
57 | async def main():
58 |     tasks = []
59 |     while not q.empty():
60 |         url = q.get()
61 |         tasks.append(url)
62 |     async with aiomultiprocess.Pool() as pool:
63 |         result = await pool.map(fetch, tasks)
64 |         # print(result)
65 | 
66 | 
67 | # asyncio内部用到了select，而select就是系统打开文件数是有限度的，这个其实是操作系统的限制，linux打开文件的最大数默认是1024，windows默认是509，超过了这个值，程序就开始报错
68 | if __name__ == '__main__':
69 |     start_time = datetime.datetime.now()
70 |     print(start_time)
71 |     # event_loop事件循环：程序开启一个无限的循环，当把一些函数注册到事件循环上时，满足事件发生条件即调用相应的函数。
72 |     loop = asyncio.get_event_loop()
73 |     loop.run_until_complete(main())
74 |     end_time = datetime.datetime.now()
75 |     print('消耗时间:{}'.format(end_time - start_time))
76 | 


--------------------------------------------------------------------------------
/subdomainClean.py:
--------------------------------------------------------------------------------
  1 | # -*- coding:utf-8 -*-
  2 | __author__ = 'leezp'
  3 | __date__ = 20191231
  4 | import asyncio
  5 | import aiohttp
  6 | import aiomultiprocess
  7 | import aiofiles
  8 | import queue
  9 | import datetime
 10 | import random
 11 | from lxml import etree
 12 | import urllib3
 13 | import UA_Pool as UApool
 14 | import re
 15 | import argparse
 16 | 
 17 | urllib3.disable_warnings()
 18 | 
 19 | class Gun():
 20 |     def __init__(self):
 21 |         self.dic = {
 22 |             "None": [
 23 |             ],
 24 |             "taobao": [
 25 |                 ('//*[@id="error-notice"]/div[2]/div[1]   :)  没有找到相应的店铺信息',
 26 |                  '//*[@id="error-notice"]/div[2]/div[3]/ol/li[4]   :) 五秒后跳转至'),
 27 |                 '/html/body/div/div/p[2]  :) 很抱歉',  # ！暂时无法处理您的请求,
 28 |                 '/html/body/div/div/p[2]  :) 亲，慢慢来，请先坐下来喝口水！',
 29 |                 '//*[@id="err"]/div[1]/p[1] :) 亲，小二正忙，滑动一下马上回来',
 30 |                 '//*[@id="dead-page"]/header/div/div/div[2]/p  :) 亲，这是个机器人猖狂的时代，请进行验证证明咱是正常人~',
 31 |                 '//*[@id="dead-page"]/header/div/div/div[2]/div[2]/p[1]  :) 抱歉',  # 很抱歉，现在暂时无法处理您的请求
 32 |                 '//*[@id="J_4938560545"]/div/div[1]/h2  :) 很抱歉，您查看的页面找不到了！',
 33 |                 '//*[@id="err"]/div[1]/p  :)  抱歉！',  # 页面无法访问……
 34 |                 '//*[@id="content"]/div[1]/div/div/div[2]/div[1]/h3/em[2]   :) 抱歉，您要访问的页面不存在',
 35 |                 '//*[@id="App"]/div/div/div/div/div[2]/div[2]   :) 内网访问受限，请先登录阿里郎连接内网后再试',
 36 | 				'/html/body/div[5]/h4  :)  亲，店铺不存在哟！', #亲，店铺不存在哟！输入的店铺地址不正确或店铺已经关闭。
 37 | 				'/html/body/div[2]/div/dl/dt/p  :)   当前页面访问人数过多'
 38 |             ]
 39 |         }
 40 |         self.asyncio_Semaphore = 500  # 设置最大并发数为500 , linux可设置1000，效率翻倍
 41 |         self.title_regex = re.compile(r'<title>([\s\S]*?)</title>')
 42 |         self.zh_regex = re.compile(r'[\u4e00-\u9fa5]+')
 43 | 
 44 | 
 45 | def parse_args():
 46 |     parse = argparse.ArgumentParser(usage='python36 %(prog)s -f targetUrl_full.txt')
 47 |     parse.add_argument('-f', dest='input_file', type=str, default='url_full.txt', help='default is url_full.txt')
 48 |     arg = parse.parse_args()
 49 |     return arg.input_file
 50 | 
 51 | 
 52 | # input_file = 'alisports.com_1_full.txt'
 53 | input_file = parse_args()
 54 | name = input_file.split('_')[0].strip()
 55 | switch = False
 56 | for key, value in Gun().dic.items():
 57 |     if key == name:
 58 |         dic_key = name
 59 |         switch = True
 60 |         break
 61 | if switch == False:
 62 |     dic_key = "None"
 63 | output_file = name + '_out.txt'
 64 | List = Gun().dic["None"]
 65 | output_file = name + '_out.txt'
 66 | 
 67 | q = queue.Queue()
 68 | file = open(input_file, encoding='utf-8')
 69 | for x in file.readlines():
 70 |     #url = 'http://' + x.split(' ')[0].strip()
 71 |     url = x.split(' ')[0].strip()
 72 |     q.put(url)
 73 | 
 74 | 
 75 | # 淘宝 约124 次出现验证码
 76 | async def fetch(url):
 77 |     sem = asyncio.Semaphore(Gun().asyncio_Semaphore)
 78 |     async with sem:
 79 |         # 最大访问数
 80 |         async with aiohttp.ClientSession() as session:
 81 |             try:
 82 |                 # proxy="http://ip:port"
 83 |                 async with session.get(url, headers={'User-Agent': random.choice(UApool.data)},
 84 |                                        verify_ssl=False,
 85 |                                        timeout=3) as resp:
 86 |                     # If encoding is None content encoding is autocalculated using Content-Type HTTP header and chardet tool if the header is not provided by server.
 87 |                     #  text=await resp.text(encoding=None, errors='ignore') 等价于 content = await  resp.read()  code=chardet.detect(content)['encoding']   text=await resp.text(encoding=code, errors='ignore')
 88 |                     status = resp.status
 89 |                     text = await resp.text(encoding=None, errors='ignore')
 90 |                     if Gun().title_regex.search(text) and Gun().title_regex.search(text).group(1):
 91 |                         s = Gun().title_regex.search(text).group(1).strip()
 92 |                         if (
 93 |                                 u'旗舰店' in s and u'天猫' in s) or u'理想生活上天猫' in s or u'现在暂时无法处理您的请求' in s or \
 94 |                                 u'大麦' in s or u'全球演出赛事官方购票平台' or u'亲，访问受限了' in s or \
 95 |                                 'security-X5' in s or 'dopa.com' in s or '米聊' in s or u'官方旗舰店' in s:
 96 |                             return
 97 |                     html = etree.HTML(text)
 98 |                     xp = {}
 99 |                     for i in range(len(List)):
100 |                         if type(List[i]).__name__ == "tuple":
101 |                             xp[str(i)] = html.xpath(List[i][0].split(':)')[0].strip())
102 |                             xp["100"] = html.xpath(List[i][1].split(':)')[0].strip())
103 |                         else:
104 |                             xp[str(i)] = html.xpath(List[i].split(':)')[0].strip())
105 |                     for i in range(len(List)):
106 |                         if type(List[i]).__name__ == "tuple":
107 |                             if len(xp[str(i)]) > 0 and len(xp[str("100")]) > 0:
108 |                                 if xp[str(i)][0].text.strip() == List[i][0].split(':)')[-1].strip() and xp[
109 |                                     "100"][0].text.strip() == List[i][1].split(':)')[-1].strip():
110 |                                     return
111 |                         elif len(xp[str(i)]) > 0 and xp[str(i)][0].text:
112 |                             if List[i].split(':)')[-1].strip() in xp[str(i)][0].text.strip():
113 |                                 return
114 |                     async with aiofiles.open(output_file, 'a', encoding='utf-8') as f:
115 |                         # await f.write("{}  {}  {}".format(url, status, text) + '\n')
116 |                         await f.write("{}  {}".format(url, status) + '\n')
117 |                         await f.close()
118 |             except Exception as e:
119 |                 print(e)
120 |                 pass
121 |             finally:
122 |                 print('test speed')
123 | 
124 | 
125 | async def main():
126 |     tasks = []
127 |     while not q.empty():
128 |         url = q.get()
129 |         tasks.append(url)
130 |     async with aiomultiprocess.Pool() as pool:
131 |         result = await pool.map(fetch, tasks)
132 |         # print(result)
133 | 
134 | 
135 | if __name__ == '__main__':
136 |     start_time = datetime.datetime.now()
137 |     print(start_time)
138 |     # event_loop事件循环：程序开启一个无限的循环，当把一些函数注册到事件循环上时，满足事件发生条件即调用相应的函数。
139 |     loop = asyncio.get_event_loop()
140 |     loop.run_until_complete(main())
141 |     end_time = datetime.datetime.now()
142 |     print('消耗时间:{}'.format(end_time - start_time))
143 | 


--------------------------------------------------------------------------------
/webhookdemo.py:
--------------------------------------------------------------------------------
 1 | __author__ = 'leezp'
 2 | # encoding=utf-8
 3 | from flask import Flask, request  # pip3 install Flask
 4 | import requests
 5 | import datetime
 6 | import logging
 7 | import pymysql
 8 | 
 9 | # http://testphp.vulnweb.com/
10 | # https://sc.ftqq.com/api.send?text=~
11 | app = Flask(__name__)
12 | 
13 | 
14 | def push_ftqq(content):
15 |     resp = requests.post("https://sc.ftqq.com/XXX.send",
16 |                          data={"text": "xray vuln alarm", "desp": content})
17 |     if resp.json()["errno"] != 0:
18 |         raise ValueError("push ftqq failed, %s" % resp.text)
19 | 
20 | 
21 | def connect_db():
22 |     conn = pymysql.connect(host="localhost", port=3306, user="XXX", password="XXX", database="vulnerable",
23 |                            charset="utf8")
24 |     return conn
25 | 
26 | 
27 | @app.route('/webhook', methods=['POST'])
28 | def xray_webhook():
29 |     # 当有数据时再判断
30 |     if request:
31 |         vuln = request.json
32 |         print(vuln)
33 |         '''
34 |         {'create_time': 1575984761043, 'detail': {'filename': '/phpinfo.php', 'host': 'localhost', 'param': {}, 'payload': '', 'port': 808, 'request': 'GET /phpinfo.php HTTP/1.1\r\nHost: localhost:808\r\nUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169\r\nContent-Type: text/plain\r\nCookie: key=value\r\nAccept-Encoding: gzip\r\n\r\n', 'response': 'HTTP/1.1 200 OK\r\nContent-Type: text/html\r\nDate: Tue, 10 Dec 2019 13:32:41 GMT\r\nServer: Apache/2.4.23 (Win32) OpenSSL/1.0.2j mod_fcgid/2.3.9\r\nX-Powered-By: PHP/5.4.45\r\n\r\n<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "DTD/xhtml1-transitional.dtd">\n<html xmlns="http://www.w3.org/1999/xhtml"><head>\n<style type="text/css">\nbody {background-color: #ffffff; color: #000000;}\nbody, td, th, h1, h2 {font-family: sans-serif;}\npre {margin: 0px; font-family: monospace;}\na:link {color: #000099; text-decoration: none; background-color: #ffffff;}\na:hover {text-decoration: underline;}\ntable {border-collapse: collapse;}\n.center {text-align: center;}\n.center table { margin-left: auto; margin-right: auto; text-align: left;}\n.center th { text-align: center !important; }\ntd, th { border: 1px solid #000000; font-size: 75%; vertical-align: baseline;}\nh1 {font-size: 150%;}\nh2 {font-size: 125%;}\n.p {text-align: left;}\n.e {background-color: #ccccff; font-weight: bold; color: #000000;}\n.h {background-color: #9999cc; font-weight: bold; color: #000000;}\n.v {background-color: #cccccc; color: #000000;}\n.vr {background-color: #cccccc; text-align: right; color: #000000;}\nimg {float: right; border: 0px;}\nhr {width: 600px; background-color: #cccccc; border: 0px; height: 1px; color: #000000;}\n</style>\n<title>phpinfo()</title><meta name="ROBOTS" content="NOINDEX,NOFOLLOW,NOARCHIVE" /></head>\n<body><div class="center">\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><td>\n<a href="http://www.php.net/"><img border="0" src="/phpinfo.php?=PHPE9568F34-D428-11d2-A769-00AA001ACF42" alt="PHP Logo" /></a><h1 class="p">PHP Version 5.4.45</h1>\n</td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">System </td><td class="v">Windows NT LEE-PC 6.1 build 7601 (Windows 7 Ultimate Edition Service Pack 1) i586 </td></tr>\n<tr><td class="e">Build Date </td><td class="v">Sep  2 2015 23:45:20 </td></tr>\n<tr><td class="e">Compiler </td><td class="v">MSVC9 (Visual C++ 2008) </td></tr>\n<tr><td class="e">Architecture </td><td class="v">x86 </td></tr>\n<tr><td class="e">Configure Command </td><td class="v">cscript /nologo configure.js  &quot;--enable-snapshot-build&quot; &quot;--enable-debug-pack&quot; &quot;--disable-zts&quot; &quot;--disable-isapi&quot; &quot;--disable-nsapi&quot; &quot;--without-mssql&quot; &quot;--without-pdo-mssql&quot; &quot;--without-pi3web&quot; &quot;--with-pdo-oci=C:\\php-sdk\\oracle\\instantclient10\\sdk,shared&quot; &quot;--with-oci8=C:\\php-sdk\\oracle\\instantclient10\\sdk,shared&quot; &quot;--with-oci8-11g=C:\\php-sdk\\oracle\\instantclient11\\sdk,shared&quot; &quot;--with-enchant=shared&quot; &quot;--enable-object-out-dir=../obj/&quot; &quot;--enable-com-dotnet=shared&quot; &quot;--with-mcrypt=static&quot; &quot;--disable-static-analyze&quot; &quot;--with-pgo&quot; </td></tr>\n<tr><td class="e">Server API </td><td class="v">CGI/FastCGI </td></tr>\n<tr><td class="e">Virtual Directory Support </td><td class="v">disabled </td></tr>\n<tr><td class="e">Configuration File (php.ini) Path </td><td class="v">C:\\Windows </td></tr>\n<tr><td class="e">Loaded Configuration File </td><td class="v">E:\\software\\phpstudy\\php\\php-5.4.45-nts\\php.ini </td></tr>\n<tr><td class="e">Scan this dir for additional .ini files </td><td class="v">(none) </td></tr>\n<tr><td class="e">Additional .ini files parsed </td><td class="v">(none) </td></tr>\n<tr><td class="e">PHP API </td><td class="v">20100412 </td></tr>\n<tr><td class="e">PHP Extension </td><td class="v">20100525 </td></tr>\n<tr><td class="e">Zend Extension </td><td class="v">220100525 </td></tr>\n<tr><td class="e">Zend Extension Build </td><td class="v">API220100525,NTS,VC9 </td></tr>\n<tr><td class="e">PHP Extension Build </td><td class="v">API20100525,NTS,VC9 </td></tr>\n<tr><td class="e">Debug Build </td><td class="v">no </td></tr>\n<tr><td class="e">Thread Safety </td><td class="v">disabled </td></tr>\n<tr><td class="e">Zend Signal Handling </td><td class="v">disabled </td></tr>\n<tr><td class="e">Zend Memory Manager </td><td class="v">enabled </td></tr>\n<tr><td class="e">Zend Multibyte Support </td><td class="v">provided by mbstring </td></tr>\n<tr><td class="e">IPv6 Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">DTrace Support </td><td class="v">disabled </td></tr>\n<tr><td class="e">Registered PHP Streams</td><td class="v">php, file, glob, data, http, ftp, zip, compress.zlib, compress.bzip2, https, ftps, phar</td></tr>\n<tr><td class="e">Registered Stream Socket Transports</td><td class="v">tcp, udp, ssl, sslv3, sslv2, tls</td></tr>\n<tr><td class="e">Registered Stream Filters</td><td class="v">convert.iconv.*, mcrypt.*, mdecrypt.*, string.rot13, string.toupper, string.tolower, string.strip_tags, convert.*, consumed, dechunk, zlib.*, bzip2.*</td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="v"><td>\n<a href="http://www.zend.com/"><img border="0" src="/phpinfo.php?=PHPE9568F35-D428-11d2-A769-00AA001ACF42" alt="Zend logo" /></a>\nThis program makes use of the Zend Scripting Language Engine:<br />Zend&nbsp;Engine&nbsp;v2.4.0,&nbsp;Copyright&nbsp;(c)&nbsp;1998-2014&nbsp;Zend&nbsp;Technologies<br />&nbsp;&nbsp;&nbsp;&nbsp;with&nbsp;Zend&nbsp;Guard&nbsp;Loader&nbsp;v3.3,&nbsp;Copyright&nbsp;(c)&nbsp;1998-2013,&nbsp;by&nbsp;Zend&nbsp;Technologies<br /></td></tr>\n</table><br />\n<hr />\n<h1><a href="/phpinfo.php?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000">PHP Credits</a></h1>\n<hr />\n<h1>Configuration</h1>\n<h2><a name="module_bcmath">bcmath</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">BCMath support </td><td class="v">enabled </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">bcmath.scale</td><td class="v">0</td><td class="v">0</td></tr>\n</table><br />\n<h2><a name="module_bz2">bz2</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">BZip2 Support </td><td class="v">Enabled </td></tr>\n<tr><td class="e">Stream Wrapper support </td><td class="v">compress.bzip2:// </td></tr>\n<tr><td class="e">Stream Filter support </td><td class="v">bzip2.decompress, bzip2.compress </td></tr>\n<tr><td class="e">BZip2 Version </td><td class="v">1.0.6, 6-Sept-2010 </td></tr>\n</table><br />\n<h2><a name="module_calendar">calendar</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Calendar support </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_cgi-fcgi">cgi-fcgi</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">cgi.check_shebang_line</td><td class="v">1</td><td class="v">1</td></tr>\n<tr><td class="e">cgi.discard_path</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">cgi.fix_pathinfo</td><td class="v">1</td><td class="v">1</td></tr>\n<tr><td class="e">cgi.force_redirect</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">cgi.nph</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">cgi.redirect_status_env</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">cgi.rfc2616_headers</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">fastcgi.impersonate</td><td class="v">1</td><td class="v">1</td></tr>\n<tr><td class="e">fastcgi.logging</td><td class="v">1</td><td class="v">1</td></tr>\n</table><br />\n<h2><a name="module_Core">Core</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">PHP Version </td><td class="v">5.4.45 </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">allow_url_fopen</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">allow_url_include</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">always_populate_raw_post_data</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">arg_separator.input</td><td class="v">&amp;</td><td class="v">&amp;</td></tr>\n<tr><td class="e">arg_separator.output</td><td class="v">&amp;</td><td class="v">&amp;</td></tr>\n<tr><td class="e">asp_tags</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">auto_append_file</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">auto_globals_jit</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">auto_prepend_file</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">browscap</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">default_charset</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">default_mimetype</td><td class="v">text/html</td><td class="v">text/html</td></tr>\n<tr><td class="e">disable_classes</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">disable_functions</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">display_errors</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">display_startup_errors</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">doc_root</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">docref_ext</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">docref_root</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">enable_dl</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">enable_post_data_reading</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">error_append_string</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">error_log</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">error_prepend_string</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">error_reporting</td><td class="v">32767</td><td class="v">32767</td></tr>\n<tr><td class="e">exit_on_timeout</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">expose_php</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">extension_dir</td><td class="v">E:\\software\\phpstudy\\php\\php-5.4.45-nts\\ext</td><td class="v">E:\\software\\phpstudy\\php\\php-5.4.45-nts\\ext</td></tr>\n<tr><td class="e">file_uploads</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">highlight.comment</td><td class="v"><font style="color: #FF8000">#FF8000</font></td><td class="v"><font style="color: #FF8000">#FF8000</font></td></tr>\n<tr><td class="e">highlight.default</td><td class="v"><font style="color: #0000BB">#0000BB</font></td><td class="v"><font style="color: #0000BB">#0000BB</font></td></tr>\n<tr><td class="e">highlight.html</td><td class="v"><font style="color: #000000">#000000</font></td><td class="v"><font style="color: #000000">#000000</font></td></tr>\n<tr><td class="e">highlight.keyword</td><td class="v"><font style="color: #007700">#007700</font></td><td class="v"><font style="color: #007700">#007700</font></td></tr>\n<tr><td class="e">highlight.string</td><td class="v"><font style="color: #DD0000">#DD0000</font></td><td class="v"><font style="color: #DD0000">#DD0000</font></td></tr>\n<tr><td class="e">html_errors</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">ignore_repeated_errors</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">ignore_repeated_source</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">ignore_user_abort</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">implicit_flush</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">include_path</td><td class="v">.;C:\\php\\pear</td><td class="v">.;C:\\php\\pear</td></tr>\n<tr><td class="e">log_errors</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">log_errors_max_len</td><td class="v">1024</td><td class="v">1024</td></tr>\n<tr><td class="e">mail.add_x_header</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">mail.force_extra_parameters</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mail.log</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">max_execution_time</td><td class="v">30</td><td class="v">30</td></tr>\n<tr><td class="e">max_file_uploads</td><td class="v">20</td><td class="v">20</td></tr>\n<tr><td class="e">max_input_nesting_level</td><td class="v">64</td><td class="v">64</td></tr>\n<tr><td class="e">max_input_time</td><td class="v">60</td><td class="v">60</td></tr>\n<tr><td class="e">max_input_vars</td><td class="v">1000</td><td class="v">1000</td></tr>\n<tr><td class="e">memory_limit</td><td class="v">128M</td><td class="v">128M</td></tr>\n<tr><td class="e">open_basedir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">output_buffering</td><td class="v">4096</td><td class="v">4096</td></tr>\n<tr><td class="e">output_handler</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">post_max_size</td><td class="v">8M</td><td class="v">8M</td></tr>\n<tr><td class="e">precision</td><td class="v">14</td><td class="v">14</td></tr>\n<tr><td class="e">realpath_cache_size</td><td class="v">16K</td><td class="v">16K</td></tr>\n<tr><td class="e">realpath_cache_ttl</td><td class="v">120</td><td class="v">120</td></tr>\n<tr><td class="e">register_argc_argv</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">report_memleaks</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">report_zend_debug</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">request_order</td><td class="v">CGP</td><td class="v">CGP</td></tr>\n<tr><td class="e">sendmail_from</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">sendmail_path</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">serialize_precision</td><td class="v">17</td><td class="v">17</td></tr>\n<tr><td class="e">short_open_tag</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">SMTP</td><td class="v">localhost</td><td class="v">localhost</td></tr>\n<tr><td class="e">smtp_port</td><td class="v">25</td><td class="v">25</td></tr>\n<tr><td class="e">sql.safe_mode</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">track_errors</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">unserialize_callback_func</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">upload_max_filesize</td><td class="v">2M</td><td class="v">2M</td></tr>\n<tr><td class="e">upload_tmp_dir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">user_dir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">user_ini.cache_ttl</td><td class="v">300</td><td class="v">300</td></tr>\n<tr><td class="e">user_ini.filename</td><td class="v">.user.ini</td><td class="v">.user.ini</td></tr>\n<tr><td class="e">variables_order</td><td class="v">GPCS</td><td class="v">GPCS</td></tr>\n<tr><td class="e">windows.show_crt_warning</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">xmlrpc_error_number</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">xmlrpc_errors</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">zend.detect_unicode</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">zend.enable_gc</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">zend.multibyte</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">zend.script_encoding</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n</table><br />\n<h2><a name="module_ctype">ctype</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">ctype functions </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_curl">curl</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">cURL support </td><td class="v">enabled </td></tr>\n<tr><td class="e">cURL Information </td><td class="v">7.38.0 </td></tr>\n<tr><td class="e">Age </td><td class="v">3 </td></tr>\n<tr><td class="e">Features </td></tr>\n<tr><td class="e">AsynchDNS </td><td class="v">Yes </td></tr>\n<tr><td class="e">Debug </td><td class="v">No </td></tr>\n<tr><td class="e">GSS-Negotiate </td><td class="v">No </td></tr>\n<tr><td class="e">IDN </td><td class="v">No </td></tr>\n<tr><td class="e">IPv6 </td><td class="v">Yes </td></tr>\n<tr><td class="e">Largefile </td><td class="v">Yes </td></tr>\n<tr><td class="e">NTLM </td><td class="v">Yes </td></tr>\n<tr><td class="e">SPNEGO </td><td class="v">Yes </td></tr>\n<tr><td class="e">SSL </td><td class="v">Yes </td></tr>\n<tr><td class="e">SSPI </td><td class="v">Yes </td></tr>\n<tr><td class="e">krb4 </td><td class="v">No </td></tr>\n<tr><td class="e">libz </td><td class="v">Yes </td></tr>\n<tr><td class="e">CharConv </td><td class="v">No </td></tr>\n<tr><td class="e">Protocols </td><td class="v">dict, file, ftp, ftps, gopher, http, https, imap, imaps, ldap, pop3, pop3s, rtsp, scp, sftp, smtp, smtps, telnet, tftp </td></tr>\n<tr><td class="e">Host </td><td class="v">i386-pc-win32 </td></tr>\n<tr><td class="e">SSL Version </td><td class="v">OpenSSL/0.9.8zf </td></tr>\n<tr><td class="e">ZLib Version </td><td class="v">1.2.7 </td></tr>\n<tr><td class="e">libSSH Version </td><td class="v">libssh2/1.4.2 </td></tr>\n</table><br />\n<h2><a name="module_date">date</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">date/time support </td><td class="v">enabled </td></tr>\n<tr><td class="e">&quot;Olson&quot; Timezone Database Version </td><td class="v">2014.8 </td></tr>\n<tr><td class="e">Timezone Database </td><td class="v">internal </td></tr>\n<tr><td class="e">Default timezone </td><td class="v">PRC </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">date.default_latitude</td><td class="v">31.7667</td><td class="v">31.7667</td></tr>\n<tr><td class="e">date.default_longitude</td><td class="v">35.2333</td><td class="v">35.2333</td></tr>\n<tr><td class="e">date.sunrise_zenith</td><td class="v">90.583333</td><td class="v">90.583333</td></tr>\n<tr><td class="e">date.sunset_zenith</td><td class="v">90.583333</td><td class="v">90.583333</td></tr>\n<tr><td class="e">date.timezone</td><td class="v">PRC</td><td class="v">PRC</td></tr>\n</table><br />\n<h2><a name="module_dom">dom</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">DOM/XML </td><td class="v">enabled </td></tr>\n<tr><td class="e">DOM/XML API Version </td><td class="v">20031129 </td></tr>\n<tr><td class="e">libxml Version </td><td class="v">2.7.8 </td></tr>\n<tr><td class="e">HTML Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">XPath Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">XPointer Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">Schema Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">RelaxNG Support </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_ereg">ereg</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Regex Library </td><td class="v">Bundled library enabled </td></tr>\n</table><br />\n<h2><a name="module_filter">filter</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Input Validation and Filtering </td><td class="v">enabled </td></tr>\n<tr><td class="e">Revision </td><td class="v">$Id: ad78b4a085153b8c7f4d6db5dc69df40e969c343 $ </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">filter.default</td><td class="v">unsafe_raw</td><td class="v">unsafe_raw</td></tr>\n<tr><td class="e">filter.default_flags</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n</table><br />\n<h2><a name="module_ftp">ftp</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">FTP support </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_gd">gd</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">GD Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">GD Version </td><td class="v">bundled (2.1.0 compatible) </td></tr>\n<tr><td class="e">FreeType Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">FreeType Linkage </td><td class="v">with freetype </td></tr>\n<tr><td class="e">FreeType Version </td><td class="v">2.4.10 </td></tr>\n<tr><td class="e">GIF Read Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">GIF Create Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">JPEG Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">libJPEG Version </td><td class="v">8 </td></tr>\n<tr><td class="e">PNG Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">libPNG Version </td><td class="v">1.2.50 </td></tr>\n<tr><td class="e">WBMP Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">XPM Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">libXpm Version </td><td class="v">30411 </td></tr>\n<tr><td class="e">XBM Support </td><td class="v">enabled </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">gd.jpeg_ignore_warning</td><td class="v">0</td><td class="v">0</td></tr>\n</table><br />\n<h2><a name="module_hash">hash</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">hash support </td><td class="v">enabled </td></tr>\n<tr><td class="e">Hashing Engines </td><td class="v">md2 md4 md5 sha1 sha224 sha256 sha384 sha512 ripemd128 ripemd160 ripemd256 ripemd320 whirlpool tiger128,3 tiger160,3 tiger192,3 tiger128,4 tiger160,4 tiger192,4 snefru snefru256 gost adler32 crc32 crc32b fnv132 fnv164 joaat haval128,3 haval160,3 haval192,3 haval224,3 haval256,3 haval128,4 haval160,4 haval192,4 haval224,4 haval256,4 haval128,5 haval160,5 haval192,5 haval224,5 haval256,5  </td></tr>\n</table><br />\n<h2><a name="module_iconv">iconv</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">iconv support </td><td class="v">enabled </td></tr>\n<tr><td class="e">iconv implementation </td><td class="v">&quot;libiconv&quot; </td></tr>\n<tr><td class="e">iconv library version </td><td class="v">1.14 </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">iconv.input_encoding</td><td class="v">ISO-8859-1</td><td class="v">ISO-8859-1</td></tr>\n<tr><td class="e">iconv.internal_encoding</td><td class="v">ISO-8859-1</td><td class="v">ISO-8859-1</td></tr>\n<tr><td class="e">iconv.output_encoding</td><td class="v">ISO-8859-1</td><td class="v">ISO-8859-1</td></tr>\n</table><br />\n<h2><a name="module_json">json</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">json support </td><td class="v">enabled </td></tr>\n<tr><td class="e">json version </td><td class="v">1.2.1 </td></tr>\n</table><br />\n<h2><a name="module_libxml">libxml</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">libXML support </td><td class="v">active </td></tr>\n<tr><td class="e">libXML Compiled Version </td><td class="v">2.7.8 </td></tr>\n<tr><td class="e">libXML Loaded Version </td><td class="v">20708 </td></tr>\n<tr><td class="e">libXML streams </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_mbstring">mbstring</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Multibyte Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">Multibyte string engine </td><td class="v">libmbfl </td></tr>\n<tr><td class="e">HTTP input encoding translation </td><td class="v">disabled </td></tr>\n<tr><td class="e">libmbfl version </td><td class="v">1.3.2 </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>mbstring extension makes use of "streamable kanji code filter and converter", which is distributed under the GNU Lesser General Public License version 2.1.</th></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Multibyte (japanese) regex support </td><td class="v">enabled </td></tr>\n<tr><td class="e">Multibyte regex (oniguruma) version </td><td class="v">4.7.1 </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">mbstring.detect_order</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mbstring.encoding_translation</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">mbstring.func_overload</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">mbstring.http_input</td><td class="v">pass</td><td class="v">pass</td></tr>\n<tr><td class="e">mbstring.http_output</td><td class="v">pass</td><td class="v">pass</td></tr>\n<tr><td class="e">mbstring.http_output_conv_mimetypes</td><td class="v">^(text/|application/xhtml\\+xml)</td><td class="v">^(text/|application/xhtml\\+xml)</td></tr>\n<tr><td class="e">mbstring.internal_encoding</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mbstring.language</td><td class="v">neutral</td><td class="v">neutral</td></tr>\n<tr><td class="e">mbstring.strict_detection</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">mbstring.substitute_character</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n</table><br />\n<h2><a name="module_mcrypt">mcrypt</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>mcrypt support</th><th>enabled</th></tr>\n<tr class="h"><th>mcrypt_filter support</th><th>enabled</th></tr>\n<tr><td class="e">Version </td><td class="v">2.5.8 </td></tr>\n<tr><td class="e">Api No </td><td class="v">20021217 </td></tr>\n<tr><td class="e">Supported ciphers </td><td class="v">cast-128 gost rijndael-128 twofish cast-256 loki97 rijndael-192 saferplus wake blowfish-compat des rijndael-256 serpent xtea blowfish enigma rc2 tripledes arcfour  </td></tr>\n<tr><td class="e">Supported modes </td><td class="v">cbc cfb ctr ecb ncfb nofb ofb stream  </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">mcrypt.algorithms_dir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mcrypt.modes_dir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n</table><br />\n<h2><a name="module_mhash">mhash</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">MHASH support </td><td class="v">Enabled </td></tr>\n<tr><td class="e">MHASH API Version </td><td class="v">Emulated Support </td></tr>\n</table><br />\n<h2><a name="module_mysql">mysql</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>MySQL Support</th><th>enabled</th></tr>\n<tr><td class="e">Active Persistent Links </td><td class="v">0 </td></tr>\n<tr><td class="e">Active Links </td><td class="v">0 </td></tr>\n<tr><td class="e">Client API version </td><td class="v">mysqlnd 5.0.10 - 20111026 - $Id: c85105d7c6f7d70d609bb4c000257868a40840ab $ </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">mysql.allow_local_infile</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">mysql.allow_persistent</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">mysql.connect_timeout</td><td class="v">60</td><td class="v">60</td></tr>\n<tr><td class="e">mysql.default_host</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mysql.default_password</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mysql.default_port</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mysql.default_socket</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mysql.default_user</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mysql.max_links</td><td class="v">Unlimited</td><td class="v">Unlimited</td></tr>\n<tr><td class="e">mysql.max_persistent</td><td class="v">Unlimited</td><td class="v">Unlimited</td></tr>\n<tr><td class="e">mysql.trace_mode</td><td class="v">Off</td><td class="v">Off</td></tr>\n</table><br />\n<h2><a name="module_mysqli">mysqli</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>MysqlI Support</th><th>enabled</th></tr>\n<tr><td class="e">Client API library version </td><td class="v">mysqlnd 5.0.10 - 20111026 - $Id: c85105d7c6f7d70d609bb4c000257868a40840ab $ </td></tr>\n<tr><td class="e">Active Persistent Links </td><td class="v">0 </td></tr>\n<tr><td class="e">Inactive Persistent Links </td><td class="v">0 </td></tr>\n<tr><td class="e">Active Links </td><td class="v">0 </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">mysqli.allow_local_infile</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">mysqli.allow_persistent</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">mysqli.default_host</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mysqli.default_port</td><td class="v">3306</td><td class="v">3306</td></tr>\n<tr><td class="e">mysqli.default_pw</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mysqli.default_socket</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mysqli.default_user</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">mysqli.max_links</td><td class="v">Unlimited</td><td class="v">Unlimited</td></tr>\n<tr><td class="e">mysqli.max_persistent</td><td class="v">Unlimited</td><td class="v">Unlimited</td></tr>\n<tr><td class="e">mysqli.reconnect</td><td class="v">Off</td><td class="v">Off</td></tr>\n</table><br />\n<h2><a name="module_mysqlnd">mysqlnd</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>mysqlnd</th><th>enabled</th></tr>\n<tr><td class="e">Version </td><td class="v">mysqlnd 5.0.10 - 20111026 - $Id: c85105d7c6f7d70d609bb4c000257868a40840ab $ </td></tr>\n<tr><td class="e">Compression </td><td class="v">supported </td></tr>\n<tr><td class="e">SSL </td><td class="v">supported </td></tr>\n<tr><td class="e">Command buffer size </td><td class="v">4096 </td></tr>\n<tr><td class="e">Read buffer size </td><td class="v">32768 </td></tr>\n<tr><td class="e">Read timeout </td><td class="v">31536000 </td></tr>\n<tr><td class="e">Collecting statistics </td><td class="v">Yes </td></tr>\n<tr><td class="e">Collecting memory statistics </td><td class="v">Yes </td></tr>\n<tr><td class="e">Tracing </td><td class="v">n/a </td></tr>\n<tr><td class="e">Loaded plugins </td><td class="v">mysqlnd,example,debug_trace,auth_plugin_mysql_native_password,auth_plugin_mysql_clear_password </td></tr>\n<tr><td class="e">API Extensions </td><td class="v">mysql,mysqli,pdo_mysql </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>mysqlnd statistics</th><th> </th></tr>\n<tr><td class="e">bytes_sent </td><td class="v">0 </td></tr>\n<tr><td class="e">bytes_received </td><td class="v">0 </td></tr>\n<tr><td class="e">packets_sent </td><td class="v">0 </td></tr>\n<tr><td class="e">packets_received </td><td class="v">0 </td></tr>\n<tr><td class="e">protocol_overhead_in </td><td class="v">0 </td></tr>\n<tr><td class="e">protocol_overhead_out </td><td class="v">0 </td></tr>\n<tr><td class="e">bytes_received_ok_packet </td><td class="v">0 </td></tr>\n<tr><td class="e">bytes_received_eof_packet </td><td class="v">0 </td></tr>\n<tr><td class="e">bytes_received_rset_header_packet </td><td class="v">0 </td></tr>\n<tr><td class="e">bytes_received_rset_field_meta_packet </td><td class="v">0 </td></tr>\n<tr><td class="e">bytes_received_rset_row_packet </td><td class="v">0 </td></tr>\n<tr><td class="e">bytes_received_prepare_response_packet </td><td class="v">0 </td></tr>\n<tr><td class="e">bytes_received_change_user_packet </td><td class="v">0 </td></tr>\n<tr><td class="e">packets_sent_command </td><td class="v">0 </td></tr>\n<tr><td class="e">packets_received_ok </td><td class="v">0 </td></tr>\n<tr><td class="e">packets_received_eof </td><td class="v">0 </td></tr>\n<tr><td class="e">packets_received_rset_header </td><td class="v">0 </td></tr>\n<tr><td class="e">packets_received_rset_field_meta </td><td class="v">0 </td></tr>\n<tr><td class="e">packets_received_rset_row </td><td class="v">0 </td></tr>\n<tr><td class="e">packets_received_prepare_response </td><td class="v">0 </td></tr>\n<tr><td class="e">packets_received_change_user </td><td class="v">0 </td></tr>\n<tr><td class="e">result_set_queries </td><td class="v">0 </td></tr>\n<tr><td class="e">non_result_set_queries </td><td class="v">0 </td></tr>\n<tr><td class="e">no_index_used </td><td class="v">0 </td></tr>\n<tr><td class="e">bad_index_used </td><td class="v">0 </td></tr>\n<tr><td class="e">slow_queries </td><td class="v">0 </td></tr>\n<tr><td class="e">buffered_sets </td><td class="v">0 </td></tr>\n<tr><td class="e">unbuffered_sets </td><td class="v">0 </td></tr>\n<tr><td class="e">ps_buffered_sets </td><td class="v">0 </td></tr>\n<tr><td class="e">ps_unbuffered_sets </td><td class="v">0 </td></tr>\n<tr><td class="e">flushed_normal_sets </td><td class="v">0 </td></tr>\n<tr><td class="e">flushed_ps_sets </td><td class="v">0 </td></tr>\n<tr><td class="e">ps_prepared_never_executed </td><td class="v">0 </td></tr>\n<tr><td class="e">ps_prepared_once_executed </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_fetched_from_server_normal </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_fetched_from_server_ps </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_buffered_from_client_normal </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_buffered_from_client_ps </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_fetched_from_client_normal_buffered </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_fetched_from_client_normal_unbuffered </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_fetched_from_client_ps_buffered </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_fetched_from_client_ps_unbuffered </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_fetched_from_client_ps_cursor </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_affected_normal </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_affected_ps </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_skipped_normal </td><td class="v">0 </td></tr>\n<tr><td class="e">rows_skipped_ps </td><td class="v">0 </td></tr>\n<tr><td class="e">copy_on_write_saved </td><td class="v">0 </td></tr>\n<tr><td class="e">copy_on_write_performed </td><td class="v">0 </td></tr>\n<tr><td class="e">command_buffer_too_small </td><td class="v">0 </td></tr>\n<tr><td class="e">connect_success </td><td class="v">0 </td></tr>\n<tr><td class="e">connect_failure </td><td class="v">0 </td></tr>\n<tr><td class="e">connection_reused </td><td class="v">0 </td></tr>\n<tr><td class="e">reconnect </td><td class="v">0 </td></tr>\n<tr><td class="e">pconnect_success </td><td class="v">0 </td></tr>\n<tr><td class="e">active_connections </td><td class="v">0 </td></tr>\n<tr><td class="e">active_persistent_connections </td><td class="v">0 </td></tr>\n<tr><td class="e">explicit_close </td><td class="v">0 </td></tr>\n<tr><td class="e">implicit_close </td><td class="v">0 </td></tr>\n<tr><td class="e">disconnect_close </td><td class="v">0 </td></tr>\n<tr><td class="e">in_middle_of_command_close </td><td class="v">0 </td></tr>\n<tr><td class="e">explicit_free_result </td><td class="v">0 </td></tr>\n<tr><td class="e">implicit_free_result </td><td class="v">0 </td></tr>\n<tr><td class="e">explicit_stmt_close </td><td class="v">0 </td></tr>\n<tr><td class="e">implicit_stmt_close </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_emalloc_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_emalloc_amount </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_ecalloc_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_ecalloc_amount </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_erealloc_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_erealloc_amount </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_efree_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_efree_amount </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_malloc_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_malloc_amount </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_calloc_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_calloc_amount </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_realloc_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_realloc_amount </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_free_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_free_amount </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_estrndup_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_strndup_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_estndup_count </td><td class="v">0 </td></tr>\n<tr><td class="e">mem_strdup_count </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_null </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_bit </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_tinyint </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_short </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_int24 </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_int </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_bigint </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_decimal </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_float </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_double </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_date </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_year </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_time </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_datetime </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_timestamp </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_string </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_blob </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_enum </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_set </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_geometry </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_text_fetched_other </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_null </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_bit </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_tinyint </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_short </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_int24 </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_int </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_bigint </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_decimal </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_float </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_double </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_date </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_year </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_time </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_datetime </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_timestamp </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_string </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_blob </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_enum </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_set </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_geometry </td><td class="v">0 </td></tr>\n<tr><td class="e">proto_binary_fetched_other </td><td class="v">0 </td></tr>\n<tr><td class="e">init_command_executed_count </td><td class="v">0 </td></tr>\n<tr><td class="e">init_command_failed_count </td><td class="v">0 </td></tr>\n<tr><td class="e">com_quit </td><td class="v">0 </td></tr>\n<tr><td class="e">com_init_db </td><td class="v">0 </td></tr>\n<tr><td class="e">com_query </td><td class="v">0 </td></tr>\n<tr><td class="e">com_field_list </td><td class="v">0 </td></tr>\n<tr><td class="e">com_create_db </td><td class="v">0 </td></tr>\n<tr><td class="e">com_drop_db </td><td class="v">0 </td></tr>\n<tr><td class="e">com_refresh </td><td class="v">0 </td></tr>\n<tr><td class="e">com_shutdown </td><td class="v">0 </td></tr>\n<tr><td class="e">com_statistics </td><td class="v">0 </td></tr>\n<tr><td class="e">com_process_info </td><td class="v">0 </td></tr>\n<tr><td class="e">com_connect </td><td class="v">0 </td></tr>\n<tr><td class="e">com_process_kill </td><td class="v">0 </td></tr>\n<tr><td class="e">com_debug </td><td class="v">0 </td></tr>\n<tr><td class="e">com_ping </td><td class="v">0 </td></tr>\n<tr><td class="e">com_time </td><td class="v">0 </td></tr>\n<tr><td class="e">com_delayed_insert </td><td class="v">0 </td></tr>\n<tr><td class="e">com_change_user </td><td class="v">0 </td></tr>\n<tr><td class="e">com_binlog_dump </td><td class="v">0 </td></tr>\n<tr><td class="e">com_table_dump </td><td class="v">0 </td></tr>\n<tr><td class="e">com_connect_out </td><td class="v">0 </td></tr>\n<tr><td class="e">com_register_slave </td><td class="v">0 </td></tr>\n<tr><td class="e">com_stmt_prepare </td><td class="v">0 </td></tr>\n<tr><td class="e">com_stmt_execute </td><td class="v">0 </td></tr>\n<tr><td class="e">com_stmt_send_long_data </td><td class="v">0 </td></tr>\n<tr><td class="e">com_stmt_close </td><td class="v">0 </td></tr>\n<tr><td class="e">com_stmt_reset </td><td class="v">0 </td></tr>\n<tr><td class="e">com_stmt_set_option </td><td class="v">0 </td></tr>\n<tr><td class="e">com_stmt_fetch </td><td class="v">0 </td></tr>\n<tr><td class="e">com_deamon </td><td class="v">0 </td></tr>\n<tr><td class="e">bytes_received_real_data_normal </td><td class="v">0 </td></tr>\n<tr><td class="e">bytes_received_real_data_ps </td><td class="v">0 </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>example statistics</th><th> </th></tr>\n<tr><td class="e">stat1 </td><td class="v">0 </td></tr>\n<tr><td class="e">stat2 </td><td class="v">0 </td></tr>\n</table><br />\n<h2><a name="module_odbc">odbc</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>ODBC Support</th><th>enabled</th></tr>\n<tr><td class="e">Active Persistent Links </td><td class="v">0 </td></tr>\n<tr><td class="e">Active Links </td><td class="v">0 </td></tr>\n<tr><td class="e">ODBC library </td><td class="v">Win32 </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">odbc.allow_persistent</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">odbc.check_persistent</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">odbc.default_cursortype</td><td class="v">Static cursor</td><td class="v">Static cursor</td></tr>\n<tr><td class="e">odbc.default_db</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">odbc.default_pw</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">odbc.default_user</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">odbc.defaultbinmode</td><td class="v">return as is</td><td class="v">return as is</td></tr>\n<tr><td class="e">odbc.defaultlrl</td><td class="v">return up to 4096 bytes</td><td class="v">return up to 4096 bytes</td></tr>\n<tr><td class="e">odbc.max_links</td><td class="v">Unlimited</td><td class="v">Unlimited</td></tr>\n<tr><td class="e">odbc.max_persistent</td><td class="v">Unlimited</td><td class="v">Unlimited</td></tr>\n</table><br />\n<h2><a name="module_openssl">openssl</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">OpenSSL support </td><td class="v">enabled </td></tr>\n<tr><td class="e">OpenSSL Library Version </td><td class="v">OpenSSL 0.9.8zf 19 Mar 2015 </td></tr>\n<tr><td class="e">OpenSSL Header Version </td><td class="v">OpenSSL 0.9.8zb 6 Aug 2014 </td></tr>\n</table><br />\n<h2><a name="module_pcre">pcre</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">PCRE (Perl Compatible Regular Expressions) Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">PCRE Library Version </td><td class="v">8.37 2015-04-28 </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">pcre.backtrack_limit</td><td class="v">1000000</td><td class="v">1000000</td></tr>\n<tr><td class="e">pcre.recursion_limit</td><td class="v">100000</td><td class="v">100000</td></tr>\n</table><br />\n<h2><a name="module_PDO">PDO</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>PDO support</th><th>enabled</th></tr>\n<tr><td class="e">PDO drivers </td><td class="v">mysql, odbc, sqlite </td></tr>\n</table><br />\n<h2><a name="module_pdo_mysql">pdo_mysql</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>PDO Driver for MySQL</th><th>enabled</th></tr>\n<tr><td class="e">Client API version </td><td class="v">mysqlnd 5.0.10 - 20111026 - $Id: c85105d7c6f7d70d609bb4c000257868a40840ab $ </td></tr>\n</table><br />\n<h2><a name="module_PDO_ODBC">PDO_ODBC</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>PDO Driver for ODBC (Win32)</th><th>enabled</th></tr>\n<tr><td class="e">ODBC Connection Pooling </td><td class="v">Enabled, strict matching </td></tr>\n</table><br />\n<h2><a name="module_pdo_sqlite">pdo_sqlite</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>PDO Driver for SQLite 3.x</th><th>enabled</th></tr>\n<tr><td class="e">SQLite Library </td><td class="v">3.7.7.1 </td></tr>\n</table><br />\n<h2><a name="module_Phar">Phar</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Phar: PHP Archive support</th><th>enabled</th></tr>\n<tr><td class="e">Phar EXT version </td><td class="v">2.0.1 </td></tr>\n<tr><td class="e">Phar API version </td><td class="v">1.1.1 </td></tr>\n<tr><td class="e">SVN revision </td><td class="v">$Id: ba734629367f9671b25202408d13914fa63d8396 $ </td></tr>\n<tr><td class="e">Phar-based phar archives </td><td class="v">enabled </td></tr>\n<tr><td class="e">Tar-based phar archives </td><td class="v">enabled </td></tr>\n<tr><td class="e">ZIP-based phar archives </td><td class="v">enabled </td></tr>\n<tr><td class="e">gzip compression </td><td class="v">enabled </td></tr>\n<tr><td class="e">bzip2 compression </td><td class="v">enabled </td></tr>\n<tr><td class="e">OpenSSL support </td><td class="v">enabled </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="v"><td>\nPhar based on pear/PHP_Archive, original concept by Davey Shafik.<br />Phar fully realized by Gregory Beaver and Marcus Boerger.<br />Portions of tar implementation Copyright (c) 2003-2009 Tim Kientzle.</td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">phar.cache_list</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">phar.readonly</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">phar.require_hash</td><td class="v">On</td><td class="v">On</td></tr>\n</table><br />\n<h2><a name="module_Reflection">Reflection</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Reflection</th><th>enabled</th></tr>\n<tr><td class="e">Version </td><td class="v">$Id: f6367cdb4e3f392af4a6d441a6641de87c2e50c4 $ </td></tr>\n</table><br />\n<h2><a name="module_session">session</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Session Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">Registered save handlers </td><td class="v">files user  </td></tr>\n<tr><td class="e">Registered serializer handlers </td><td class="v">php php_binary wddx  </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">session.auto_start</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">session.cache_expire</td><td class="v">180</td><td class="v">180</td></tr>\n<tr><td class="e">session.cache_limiter</td><td class="v">nocache</td><td class="v">nocache</td></tr>\n<tr><td class="e">session.cookie_domain</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">session.cookie_httponly</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">session.cookie_lifetime</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">session.cookie_path</td><td class="v">/</td><td class="v">/</td></tr>\n<tr><td class="e">session.cookie_secure</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">session.entropy_file</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">session.entropy_length</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">session.gc_divisor</td><td class="v">1000</td><td class="v">1000</td></tr>\n<tr><td class="e">session.gc_maxlifetime</td><td class="v">1440</td><td class="v">1440</td></tr>\n<tr><td class="e">session.gc_probability</td><td class="v">1</td><td class="v">1</td></tr>\n<tr><td class="e">session.hash_bits_per_character</td><td class="v">5</td><td class="v">5</td></tr>\n<tr><td class="e">session.hash_function</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">session.name</td><td class="v">PHPSESSID</td><td class="v">PHPSESSID</td></tr>\n<tr><td class="e">session.referer_check</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">session.save_handler</td><td class="v">files</td><td class="v">files</td></tr>\n<tr><td class="e">session.save_path</td><td class="v">E:\\software\\phpstudy\\tmp\\tmp</td><td class="v">E:\\software\\phpstudy\\tmp\\tmp</td></tr>\n<tr><td class="e">session.serialize_handler</td><td class="v">php</td><td class="v">php</td></tr>\n<tr><td class="e">session.upload_progress.cleanup</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">session.upload_progress.enabled</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">session.upload_progress.freq</td><td class="v">1%</td><td class="v">1%</td></tr>\n<tr><td class="e">session.upload_progress.min_freq</td><td class="v">1</td><td class="v">1</td></tr>\n<tr><td class="e">session.upload_progress.name</td><td class="v">PHP_SESSION_UPLOAD_PROGRESS</td><td class="v">PHP_SESSION_UPLOAD_PROGRESS</td></tr>\n<tr><td class="e">session.upload_progress.prefix</td><td class="v">upload_progress_</td><td class="v">upload_progress_</td></tr>\n<tr><td class="e">session.use_cookies</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">session.use_only_cookies</td><td class="v">On</td><td class="v">On</td></tr>\n<tr><td class="e">session.use_trans_sid</td><td class="v">0</td><td class="v">0</td></tr>\n</table><br />\n<h2><a name="module_SimpleXML">SimpleXML</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Simplexml support</th><th>enabled</th></tr>\n<tr><td class="e">Revision </td><td class="v">$Id: 16070fc92ad6f69cebb2d52ad3f02794f833ce39 $ </td></tr>\n<tr><td class="e">Schema support </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_sockets">sockets</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Sockets Support </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_SPL">SPL</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>SPL support</th><th>enabled</th></tr>\n<tr><td class="e">Interfaces </td><td class="v">Countable, OuterIterator, RecursiveIterator, SeekableIterator, SplObserver, SplSubject </td></tr>\n<tr><td class="e">Classes </td><td class="v">AppendIterator, ArrayIterator, ArrayObject, BadFunctionCallException, BadMethodCallException, CachingIterator, CallbackFilterIterator, DirectoryIterator, DomainException, EmptyIterator, FilesystemIterator, FilterIterator, GlobIterator, InfiniteIterator, InvalidArgumentException, IteratorIterator, LengthException, LimitIterator, LogicException, MultipleIterator, NoRewindIterator, OutOfBoundsException, OutOfRangeException, OverflowException, ParentIterator, RangeException, RecursiveArrayIterator, RecursiveCachingIterator, RecursiveCallbackFilterIterator, RecursiveDirectoryIterator, RecursiveFilterIterator, RecursiveIteratorIterator, RecursiveRegexIterator, RecursiveTreeIterator, RegexIterator, RuntimeException, SplDoublyLinkedList, SplFileInfo, SplFileObject, SplFixedArray, SplHeap, SplMinHeap, SplMaxHeap, SplObjectStorage, SplPriorityQueue, SplQueue, SplStack, SplTempFileObject, UnderflowException, UnexpectedValueException </td></tr>\n</table><br />\n<h2><a name="module_sqlite3">sqlite3</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>SQLite3 support</th><th>enabled</th></tr>\n<tr><td class="e">SQLite3 module version </td><td class="v">0.7 </td></tr>\n<tr><td class="e">SQLite Library </td><td class="v">3.7.7.1 </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">sqlite3.extension_dir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n</table><br />\n<h2><a name="module_standard">standard</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Dynamic Library Support </td><td class="v">enabled </td></tr>\n<tr><td class="e">Path to sendmail </td><td class="v"><i>no value</i> </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">assert.active</td><td class="v">1</td><td class="v">1</td></tr>\n<tr><td class="e">assert.bail</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">assert.callback</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">assert.quiet_eval</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">assert.warning</td><td class="v">1</td><td class="v">1</td></tr>\n<tr><td class="e">auto_detect_line_endings</td><td class="v">0</td><td class="v">0</td></tr>\n<tr><td class="e">default_socket_timeout</td><td class="v">60</td><td class="v">60</td></tr>\n<tr><td class="e">from</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">url_rewriter.tags</td><td class="v">a=href,area=href,frame=src,input=src,form=fakeentry</td><td class="v">a=href,area=href,frame=src,input=src,form=fakeentry</td></tr>\n<tr><td class="e">user_agent</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n</table><br />\n<h2><a name="module_tokenizer">tokenizer</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Tokenizer Support </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_wddx">wddx</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>WDDX Support</th><th>enabled</th></tr>\n<tr><td class="e">WDDX Session Serializer </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_xml">xml</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">XML Support </td><td class="v">active </td></tr>\n<tr><td class="e">XML Namespace Support </td><td class="v">active </td></tr>\n<tr><td class="e">libxml2 Version </td><td class="v">2.7.8 </td></tr>\n</table><br />\n<h2><a name="module_xmlreader">xmlreader</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">XMLReader </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_xmlrpc">xmlrpc</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">core library version </td><td class="v">xmlrpc-epi v. 0.51 </td></tr>\n<tr><td class="e">php extension version </td><td class="v">0.51 </td></tr>\n<tr><td class="e">author </td><td class="v">Dan Libby </td></tr>\n<tr><td class="e">homepage </td><td class="v">http://xmlrpc-epi.sourceforge.net </td></tr>\n<tr><td class="e">open sourced by </td><td class="v">Epinions.com </td></tr>\n</table><br />\n<h2><a name="module_xmlwriter">xmlwriter</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">XMLWriter </td><td class="v">enabled </td></tr>\n</table><br />\n<h2><a name="module_xsl">xsl</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">XSL </td><td class="v">enabled </td></tr>\n<tr><td class="e">libxslt Version </td><td class="v">1.1.27 </td></tr>\n<tr><td class="e">libxslt compiled against libxml Version </td><td class="v">2.7.8 </td></tr>\n<tr><td class="e">EXSLT </td><td class="v">enabled </td></tr>\n<tr><td class="e">libexslt Version </td><td class="v">0.8.16 </td></tr>\n</table><br />\n<h2><a name="module_Zend Guard Loader">Zend Guard Loader</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Zend Guard Loader </td><td class="v">enabled </td></tr>\n<tr><td class="e">License Path </td><td class="v"><i>no value</i> </td></tr>\n<tr><td class="e">Obfuscation level </td><td class="v">3 </td></tr>\n</table><br />\n<h2><a name="module_zip">zip</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr><td class="e">Zip </td><td class="v">enabled </td></tr>\n<tr><td class="e">Extension Version </td><td class="v">$Id: 6c872ebfb022206b0cc2a183c7a388c7b6ad8685 $ </td></tr>\n<tr><td class="e">Zip version </td><td class="v">1.11.0 </td></tr>\n<tr><td class="e">Libzip version </td><td class="v">0.10.1 </td></tr>\n</table><br />\n<h2><a name="module_zlib">zlib</a></h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>ZLib Support</th><th>enabled</th></tr>\n<tr><td class="e">Stream Wrapper </td><td class="v">compress.zlib:// </td></tr>\n<tr><td class="e">Stream Filter </td><td class="v">zlib.inflate, zlib.deflate </td></tr>\n<tr><td class="e">Compiled Version </td><td class="v">1.2.7 </td></tr>\n<tr><td class="e">Linked Version </td><td class="v">1.2.7 </td></tr>\n</table><br />\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>\n<tr><td class="e">zlib.output_compression</td><td class="v">Off</td><td class="v">Off</td></tr>\n<tr><td class="e">zlib.output_compression_level</td><td class="v">-1</td><td class="v">-1</td></tr>\n<tr><td class="e">zlib.output_handler</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>\n</table><br />\n<h2>Additional Modules</h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Module Name</th></tr>\n</table><br />\n<h2>Environment</h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Variable</th><th>Value</th></tr>\n<tr><td class="e">PATH </td><td class="v"> </td></tr>\n<tr><td class="e">SYSTEMROOT </td><td class="v">C:\\Windows </td></tr>\n<tr><td class="e">COMSPEC </td><td class="v">C:\\Windows\\system32\\cmd.exe </td></tr>\n<tr><td class="e">PATHEXT </td><td class="v">.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC </td></tr>\n<tr><td class="e">WINDIR </td><td class="v">C:\\Windows </td></tr>\n<tr><td class="e">PHP_FCGI_MAX_REQUESTS </td><td class="v">1000 </td></tr>\n<tr><td class="e">PHPRC </td><td class="v">E:/software/phpstudy/php/php-5.4.45-nts/ </td></tr>\n<tr><td class="e">_FCGI_SHUTDOWN_EVENT_ </td><td class="v">1988 </td></tr>\n</table><br />\n<h2>PHP Variables</h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="h"><th>Variable</th><th>Value</th></tr>\n<tr><td class="e">_REQUEST["key"]</td><td class="v">value</td></tr>\n<tr><td class="e">_COOKIE["key"]</td><td class="v">value</td></tr>\n<tr><td class="e">_SERVER["PATH"]</td><td class="v">E:\\software\\xftp4\\;E:\\software\\xshell5\\;C:\\ProgramData\\Oracle\\Java\\javapath;E:\\software\\RailsInstaller\\Ruby2.3.3\\bin;C:\\Program Files (x86)\\Common Files\\NetSarang;E:\\Oracle\\app\\Lee\\product\\11.2.0\\dbhome_1\\bin;C:\\Windows\\system32;C:\\Windows;C:\\Windows\\System32\\Wbem;C:\\Windows\\System32\\WindowsPowerShell\\v1.0\\;E:\\jdk1.7.0_17\\bin;E:\\jdk1.7.0_17\\jre\\bin;C:\\Program Files\\Lenovo\\Fingerprint Manager Pro\\;E:\\software\\Git\\cmd;E:\\software\\python2.7.13;E:\\software\\python2.7.13\\Scripts;C:\\Program Files (x86)\\Windows Kits\\8.1\\Windows Performance Toolkit\\;C:\\Program Files\\Microsoft SQL Server\\110\\Tools\\Binn\\;C:\\Program Files (x86)\\Microsoft SQL Server\\100\\Tools\\Binn\\;C:\\Program Files\\Microsoft SQL Server\\100\\Tools\\Binn\\;C:\\Program Files\\Microsoft SQL Server\\100\\DTS\\Binn\\;C:\\Program Files (x86)\\Microsoft SQL Server\\100\\Tools\\Binn\\VSShell\\Common7\\IDE\\;C:\\Program Files (x86)\\Microsoft Visual Studio 9.0\\Common7\\IDE\\PrivateAssemblies\\;C:\\Program Files (x86)\\Microsoft SQL Server\\100\\DTS\\Binn\\;E:\\software\\php-5.6.36-Win32-VC11-x64;E:\\software\\php-5.6.36-Win32-VC11-x64\\ext;F:\\Hyenae;D:\\软件\\HP\\LoadRunner\\strawberry-perl\\perl\\bin;D:\\MinGW\\bin;E:\\node\\;E:\\software\\python3.6;E:\\software\\python3.6\\Scripts;E:\\software\\Nmap;C:\\Program Files\\dotnet\\;C:\\Program Files (x86)\\dotnet\\;D:\\apache-maven-3.6.1\\bin;E:\\software\\mysql-8.0.17-winx64\\bin\\;C:\\Users\\Administrator\\AppData\\Roaming\\npm;E:\\software\\Nmap</td></tr>\n<tr><td class="e">_SERVER["SYSTEMROOT"]</td><td class="v">C:\\Windows</td></tr>\n<tr><td class="e">_SERVER["COMSPEC"]</td><td class="v">C:\\Windows\\system32\\cmd.exe</td></tr>\n<tr><td class="e">_SERVER["PATHEXT"]</td><td class="v">.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC</td></tr>\n<tr><td class="e">_SERVER["WINDIR"]</td><td class="v">C:\\Windows</td></tr>\n<tr><td class="e">_SERVER["PHP_FCGI_MAX_REQUESTS"]</td><td class="v">1000</td></tr>\n<tr><td class="e">_SERVER["PHPRC"]</td><td class="v">E:/software/phpstudy/php/php-5.4.45-nts/</td></tr>\n<tr><td class="e">_SERVER["_FCGI_SHUTDOWN_EVENT_"]</td><td class="v">1988</td></tr>\n<tr><td class="e">_SERVER["HTTP_CONNECTION"]</td><td class="v">close</td></tr>\n<tr><td class="e">_SERVER["SCRIPT_NAME"]</td><td class="v">/phpinfo.php</td></tr>\n<tr><td class="e">_SERVER["REQUEST_URI"]</td><td class="v">/phpinfo.php</td></tr>\n<tr><td class="e">_SERVER["QUERY_STRING"]</td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">_SERVER["REQUEST_METHOD"]</td><td class="v">GET</td></tr>\n<tr><td class="e">_SERVER["SERVER_PROTOCOL"]</td><td class="v">HTTP/1.1</td></tr>\n<tr><td class="e">_SERVER["GATEWAY_INTERFACE"]</td><td class="v">CGI/1.1</td></tr>\n<tr><td class="e">_SERVER["REMOTE_PORT"]</td><td class="v">53146</td></tr>\n<tr><td class="e">_SERVER["SCRIPT_FILENAME"]</td><td class="v">E:/software/phpstudy/WWW/phpinfo.php</td></tr>\n<tr><td class="e">_SERVER["SERVER_ADMIN"]</td><td class="v">admin@phpStudy.net</td></tr>\n<tr><td class="e">_SERVER["CONTEXT_DOCUMENT_ROOT"]</td><td class="v">E:/software/phpstudy/WWW</td></tr>\n<tr><td class="e">_SERVER["CONTEXT_PREFIX"]</td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">_SERVER["REQUEST_SCHEME"]</td><td class="v">http</td></tr>\n<tr><td class="e">_SERVER["DOCUMENT_ROOT"]</td><td class="v">E:/software/phpstudy/WWW</td></tr>\n<tr><td class="e">_SERVER["REMOTE_ADDR"]</td><td class="v">::1</td></tr>\n<tr><td class="e">_SERVER["SERVER_PORT"]</td><td class="v">808</td></tr>\n<tr><td class="e">_SERVER["SERVER_ADDR"]</td><td class="v">::1</td></tr>\n<tr><td class="e">_SERVER["SERVER_NAME"]</td><td class="v">localhost</td></tr>\n<tr><td class="e">_SERVER["SERVER_SOFTWARE"]</td><td class="v">Apache/2.4.23 (Win32) OpenSSL/1.0.2j mod_fcgid/2.3.9</td></tr>\n<tr><td class="e">_SERVER["SERVER_SIGNATURE"]</td><td class="v"><i>no value</i></td></tr>\n<tr><td class="e">_SERVER["SystemRoot"]</td><td class="v">C:\\Windows</td></tr>\n<tr><td class="e">_SERVER["HTTP_ACCEPT_ENCODING"]</td><td class="v">gzip</td></tr>\n<tr><td class="e">_SERVER["HTTP_COOKIE"]</td><td class="v">key=value</td></tr>\n<tr><td class="e">_SERVER["CONTENT_TYPE"]</td><td class="v">text/plain</td></tr>\n<tr><td class="e">_SERVER["HTTP_USER_AGENT"]</td><td class="v">Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169</td></tr>\n<tr><td class="e">_SERVER["HTTP_HOST"]</td><td class="v">localhost:808</td></tr>\n<tr><td class="e">_SERVER["FCGI_ROLE"]</td><td class="v">RESPONDER</td></tr>\n<tr><td class="e">_SERVER["PHP_SELF"]</td><td class="v">/phpinfo.php</td></tr>\n<tr><td class="e">_SERVER["REQUEST_TIME_FLOAT"]</td><td class="v">1575984761.036</td></tr>\n<tr><td class="e">_SERVER["REQUEST_TIME"]</td><td class="v">1575984761</td></tr>\n</table><br />\n<h2>PHP License</h2>\n<table border="0" cellpadding="3" width="600">\n<tr class="v"><td>\n<p>\nThis program is free software; you can redistribute it and/or modify it under the terms of the PHP License as published by the PHP Group and included in the distribution in the file:  LICENSE\n</p>\n<p>This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.\n</p>\n<p>If you did not receive a copy of the PHP license, or have any questions about PHP licensing, please contact license@php.net.\n</p>\n</td></tr>\n</table><br />\n</div></body></html>', 'url': 'http://localhost:808/phpinfo.php'}, 'plugin': 'dirscan', 'target': {'url': 'http://localhost:808/phpinfo.php'}, 'type': 'web_vuln', 'vuln_class': 'debug'}
35 |         {'create_time': 1575984761810, 'detail': {'filename': '/phpMyAdmin/index.php', 'host': 'localhost', 'param': {}, 'payload': '', 'port': 808, 'request': 'GET /phpMyAdmin/index.php HTTP/1.1\r\nHost: localhost:808\r\nUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169\r\nContent-Type: text/plain\r\nCookie: key=value\r\nAccept-Encoding: gzip\r\n\r\n', 'response': 'HTTP/1.1 200 OK\r\nCache-Control: private, max-age=10800, pre-check=10800\r\nContent-Type: text/html; charset=utf-8\r\nDate: Tue, 10 Dec 2019 13:32:40 GMT\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nLast-Modified: Sat, 27 Jul 2013 22:34:50 GMT\r\nServer: Apache/2.4.23 (Win32) OpenSSL/1.0.2j mod_fcgid/2.3.9\r\nSet-Cookie: pma_lang=en; expires=Thu, 09-Jan-2020 13:32:41 GMT; path=/phpMyAdmin/; httponly\r\nSet-Cookie: pma_mcrypt_iv=dWEpYziYIyA%3D; expires=Thu, 09-Jan-2020 13:32:41 GMT; path=/phpMyAdmin/; httponly\r\nSet-Cookie: phpMyAdmin=s4cl21j4bgmsjbvo6klt7arljjtsgte7; path=/phpMyAdmin/; HttpOnly\r\nX-Powered-By: PHP/5.4.45\r\n\r\n<!DOCTYPE html>\n<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">\n<head>\n    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />\n    <link rel="icon" href="./favicon.ico" type="image/x-icon" />\n    <link rel="shortcut icon" href="./favicon.ico" type="image/x-icon" />\n    <title>phpMyAdmin </title>\n    <link rel="stylesheet" type="text/css" href="phpmyadmin.css.php?server=1&amp;lang=en&amp;token=079d138d9e79c6db5ae60bdc499ac4bc&amp;js_frame=right&amp;nocache=2941593594" />\n    <link rel="stylesheet" type="text/css" href="print.css" media="print" />\n    <link rel="stylesheet" type="text/css" href="./themes/pmahomme/jquery/jquery-ui-1.8.16.custom.css" />\n    <meta name="robots" content="noindex,nofollow" />\n<script src="./js/cross_framing_protection.js?ts=1374964490" type="text/javascript"></script>\n<script src="./js/jquery/jquery-1.6.2+fix-9521.js?ts=1374964490" type="text/javascript"></script>\n<script src="./js/jquery/jquery-ui-1.8.16.custom.js?ts=1374964490" type="text/javascript"></script>\n<script src="./js/update-location.js?ts=1374964490" type="text/javascript"></script>\n<script src="./js/functions.js?ts=1374964490" type="text/javascript"></script>\n<script src="./js/jquery/jquery.qtip-1.0.0-rc3.js?ts=1374964490" type="text/javascript"></script>\n<script src="./js/messages.php?lang=en&amp;db=&amp;token=079d138d9e79c6db5ae60bdc499ac4bc" type="text/javascript"></script>\n<script src="./js/get_image.js.php?theme=pmahomme" type="text/javascript"></script>\n<script type="text/javascript">\n// <![CDATA[\nif (typeof(parent.document) != \'undefined\' && typeof(parent.document) != \'unknown\'\n    && typeof(parent.document.title) == \'string\') {\n    parent.document.title = \'phpMyAdmin \';\n}\n// ]]>\n</script>\n<script type="text/javascript">\n//<![CDATA[\n// show login form in top frame\nif (top != self) {\n    window.top.location.href=location;\n}\n//]]>\n</script>\n</head>\n\n<body class="loginform">\n\n    \n<div class="container">\n<a href="./url.php?url=http%3A%2F%2Fwww.phpmyadmin.net%2F&amp;lang=en&amp;token=079d138d9e79c6db5ae60bdc499ac4bc" target="_blank" class="logo"><img src="./themes/pmahomme/img/logo_right.png" id="imLogo" name="imLogo" alt="phpMyAdmin" border="0" /></a>\n<h1>\n    Welcome to <bdo dir="ltr" xml:lang="en">phpMyAdmin </bdo></h1>\n    \n<form method="post" action="index.php" target="_parent">\n    <input type="hidden" name="db" value="" /><input type="hidden" name="table" value="" /><input type="hidden" name="lang" value="en" /><input type="hidden" name="token" value="079d138d9e79c6db5ae60bdc499ac4bc" /><fieldset><legend xml:lang="en" dir="ltr">Language</legend>\n    <select name="lang" class="autosubmit" xml:lang="en" dir="ltr">\n            <option value="en" selected="selected">English</option>\n        <option value="en_GB">English (United Kingdom)</option>\n        <option value="zh_CN">&#20013;&#25991; - Chinese simplified</option>\n        <option value="zh_TW">&#20013;&#25991; - Chinese traditional</option>\n\n    </select>\n    </fieldset>\n    <noscript>\n    <fieldset class="tblFooters">\n        <input type="submit" value="Go" />\n    </fieldset>\n    </noscript>\n</form>\n    <br />\n<!-- Login form -->\n<form method="post" action="index.php" name="login_form" target="_top" class="login">\n    <fieldset>\n    <legend>\nLog in<a href="./Documentation.html" target="documentation" title="phpMyAdmin documentation"> <img src="themes/dot.gif" title="phpMyAdmin documentation" alt="phpMyAdmin documentation" class="icon ic_b_help" /></a></legend>\n\n        <div class="item">\n            <label for="input_username">Username:</label>\n            <input type="text" name="pma_username" id="input_username" value="" size="24" class="textfield"/>\n        </div>\n        <div class="item">\n            <label for="input_password">Password:</label>\n            <input type="password" name="pma_password" id="input_password" value="" size="24" class="textfield" />\n        </div>\n        <input type="hidden" name="server" value="1" />    </fieldset>\n    <fieldset class="tblFooters">\n        <input value="Go" type="submit" id="input_go" />\n    <input type="hidden" name="lang" value="en" /><input type="hidden" name="token" value="079d138d9e79c6db5ae60bdc499ac4bc" />    </fieldset>\n</form>\n\n    </div>\n    </body>\n</html>\n    ', 'url': 'http://localhost:808/phpMyAdmin/index.php'}, 'plugin': 'dirscan', 'target': {'url': 'http://localhost:808/phpMyAdmin/index.php'}, 'type': 'web_vuln', 'vuln_class': 'admin'}
36 |         {'average_response_time': 579.239, 'num_found_urls': 0, 'num_scanned_urls': 0, 'num_sent_http_requests': 626, 'ratio_failed_http_requests': 0, 'ratio_progress': 0, 'type': 'web_statistic'}
37 | 
38 |         
39 |         '''
40 |         try:
41 |             url = vuln["target"]["url"]
42 |             param = str(vuln['detail']['param'])  # dict 转 str
43 |             payload = vuln['detail']['payload']
44 |             plugin = vuln["plugin"]
45 |             create_time = str(
46 |                 datetime.datetime.fromtimestamp(vuln["create_time"] / 1000).strftime('%Y-%m-%d %H:%M:%S'))
47 | 
48 |             # 判断字典是否含有某key
49 |             # 暴力破解获得的用户名和密码
50 |             if 'username' in vuln.keys() and vuln.__contains__('password'):
51 |                 username = str(vuln['detail']['username'])
52 |                 password = str(vuln['detail']['password'])
53 |                 param = username + '  ;  ' + password
54 | 
55 |             content = """## 恭喜您挖到新漏洞
56 |            
57 |             url: {url}
58 |             payload: {payload}
59 |             param: {param}
60 |             插件: {plugin}
61 |             漏洞类型: {vuln_class}
62 |             发现时间: {create_time}
63 |         
64 |             请及时查看和处理
65 |             """.format(url=url, payload=payload, param=param, plugin=plugin,
66 |                        vuln_class=vuln["vuln_class"] or "Default",
67 |                        create_time=create_time)
68 | 
69 |             # print(content)
70 |         except Exception as e:
71 |             # The return type must be a string, dict, tuple, Response instance, or WSGI callable,
72 |             return 'error'
73 |         try:
74 |             # dirscan/brute_force不推送
75 |             if plugin != 'dirscan' and plugin != 'brute_force':
76 |                 push_ftqq(content)
77 |         except Exception as e:
78 |             # dirscan 等就不要webhook了，访问频率过高会被拉黑
79 |             # ('Connection aborted.', ConnectionResetError(10054, '远程主机强迫关闭了一个现有的连接。', None, 10054, None))
80 |             print(e)
81 |         try:
82 | 
83 |             conn = connect_db()
84 |             sql = 'insert into vulscan set target="%s",vul_info="%s",payload="%s",createtime="%s",plugin_name="%s"' % (
85 |                 pymysql.escape_string(url), pymysql.escape_string(param), pymysql.escape_string(payload), create_time,
86 |                 pymysql.escape_string(plugin))
87 |             logging.info(sql)
88 |             res = conn.query(sql)
89 |             conn.commit()
90 |             # return content
91 |         except Exception as e:
92 |             print(sql)
93 |             logging.exception(e)
94 |         return 'ok'
95 | 
96 | 
97 | if __name__ == '__main__':
98 |     app.run(host='0.0.0.0', port='5000')
99 | 


--------------------------------------------------------------------------------
/xray sql.txt:
--------------------------------------------------------------------------------
1 | create table `vulscan` (`id` int(10) primary key NOT NULL AUTO_INCREMENT,`target` varchar(200),`vul_info` varchar(1000),`inserted` varchar(1000),`plugin_name` varchar(20) ) DEFAULT CHARSET=utf8mb4;
2 | 
3 | alter table vulscan add memo varchar(500) default null ;
4 | 


--------------------------------------------------------------------------------
/xray_deploy_in_onekey.py:
--------------------------------------------------------------------------------
  1 | __author__ = 'leezp'
  2 | # xray 一键部署
  3 | # 191210
  4 | # -*- coding:utf-8 -*-
  5 | # 最后如果能加上扫描端口确认服务已启动就完美了/ 查看进程号，根据结果校验
  6 | 
  7 | 
  8 | import time
  9 | import paramiko
 10 | 
 11 | 
 12 | def creatSShConnectOb(ip_remote, port_remote, username, password):
 13 |     print('---------- start to create SSH object')
 14 |     print(
 15 |         'Remote SSH Info: \'ip:%s  port:%d  username:%s  password:%s\'' % (ip_remote, port_remote, username, password))
 16 |     ssh = paramiko.SSHClient()
 17 |     ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
 18 |     try:
 19 |         ssh.connect(ip_remote, port_remote, username=username, password=password, timeout=60)  # timeout protection
 20 |         return ssh
 21 |     except:
 22 |         print('Warning:\nFist connect the ABC failed, now will retry!')
 23 |         ssh.connect(ip_remote, port_remote, username=username, password=password, timeout=60)  # timeout re-try
 24 |         print('Error:\nAttempt to connect ABC failed!!! Please check the IP / port/ account / password.')
 25 | 
 26 | 
 27 | def chanel_exe_cmd(ChanelSSHOb, cmd, t=0.1):
 28 |     ChanelSSHOb.send(cmd)
 29 |     ChanelSSHOb.send("\n")
 30 |     time.sleep(t)
 31 |     resp = ChanelSSHOb.recv(9999).decode("utf8")
 32 |     # print("Exec Result: %s" % (resp)+'\n')
 33 |     return resp
 34 | 
 35 | 
 36 | def upload2(ip, port, username, password):
 37 |     transport = paramiko.Transport((ip, port))
 38 |     transport.connect(username=username, password=password)
 39 |     sftp = paramiko.SFTPClient.from_transport(transport)  # 如果连接需要密钥，则要加上一个参数，hostkey="密钥"
 40 |     sftp.put('C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\xray-license.lic',
 41 |              '/tmp/xray-license.lic')
 42 |     sftp.put('C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\ca.crt',
 43 |              '/tmp/ca.crt')
 44 |     sftp.put('C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\ca.key',
 45 |              '/tmp/ca.key')
 46 |     sftp.put('C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\config.yaml', '/tmp/config.yaml')
 47 |     # sftp.put('C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\xray_linux_amd64',
 48 |     #     '/tmp/xray_linux_amd64')
 49 |     transport.close()  # 关闭连接
 50 | 
 51 | 
 52 | def upload(ip, port, username, password):
 53 |     transport = paramiko.Transport((ip, port))
 54 |     transport.connect(username=username, password=password)
 55 |     sftp = paramiko.SFTPClient.from_transport(transport)  # 如果连接需要密钥，则要加上一个参数，hostkey="密钥"
 56 |     sftp.put('C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\xray-license.lic',
 57 |              '/home/YOURNAME/xray-license.lic')
 58 |     sftp.put('C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\ca.crt',
 59 |              '/home/YOURNAME/ca.crt')
 60 |     sftp.put('C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\ca.key',
 61 |              '/home/YOURNAME/ca.key')
 62 |     sftp.put('C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\config.yaml', '/home/YOURNAME/config.yaml')
 63 |     # sftp.put('C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\xray_linux_amd64',
 64 |     #     '/home/YOURNAME/xray_linux_amd64')
 65 |     transport.close()  # 关闭连接
 66 | 
 67 | 
 68 | # 杀掉进程
 69 | def kill(chanelSSHOb, ip):
 70 |     sshCmd = "ps aux|grep xray|grep ?|cut -d.  -f1|cut -dt -f2|tr -s ' '|tr ' ' '$'|cut -d$ -f2|xargs kill -9"
 71 |     chanel_exe_cmd(chanelSSHOb, sshCmd)
 72 | 
 73 | 
 74 | def remove(chanelSSHOb, ip):
 75 |     html_name = ip.split('.')[-1] + '.html'
 76 |     sshCmd = 'rm -f /home/YOURNAME/%s' % html_name
 77 |     chanel_exe_cmd(chanelSSHOb, sshCmd)
 78 |     sshCmd = 'rm -f /home/YOURNAME/nohup.out'
 79 |     chanel_exe_cmd(chanelSSHOb, sshCmd)
 80 |     sshCmd = 'rm -f /home/YOURNAME/config.yaml'
 81 |     chanel_exe_cmd(chanelSSHOb, sshCmd)
 82 |     sshCmd = 'rm -f /home/YOURNAME/nohup.out'
 83 |     chanel_exe_cmd(chanelSSHOb, sshCmd)
 84 |     sshCmd = 'rm -f /home/YOURNAME/xray_linux_amd64'
 85 |     # chanel_exe_cmd(chanelSSHOb, sshCmd)
 86 |     '''
 87 |     sshCmd='rm -f /home/YOURNAME/ca.crt'
 88 |     chanel_exe_cmd(chanelSSHOb, sshCmd)
 89 |     sshCmd='rm -f /home/YOURNAME/ca.key'
 90 |     chanel_exe_cmd(chanelSSHOb, sshCmd)
 91 |     sshCmd='rm -f /home/YOURNAME/xray-license.lic'
 92 |     chanel_exe_cmd(chanelSSHOb, sshCmd)
 93 |     '''
 94 | 
 95 | 
 96 | '''
 97 | ip = '172.16.1.9'
 98 | port = '22'
 99 | username = 'XXX'
100 | passwd = 'XXX'
101 | '''
102 | # 需要先 useradd YOURNAME
103 | 
104 | if __name__ == '__main__':
105 |     host = {
106 |         1: '172.16.1.247:22,root,XXX,7776'
107 |         , 2: '172.16.1.225:22,root,XXX,7775'
108 |         , 3: '172.16.1.209:22,root,XXX,7778'
109 |         , 4: '172.16.1.248:22,root,XXX,7773'
110 |         , 5: '172.16.1.230:22,root,XXX,7772'
111 |         , 6: '172.16.1.249:22,root,XXX,7771'
112 |         , 7: '172.16.1.9:22,root,XXX,7779'
113 |         , 8: '10.1.0.224:22,root,XXX,7774'
114 |         , 9: '172.16.1.220:22,root,XXX,7770'
115 |         , 10: '172.16.1.10:22,root,XXX,7774'
116 |         , 11: '172.16.1.47:22,XXX,XXX,7774'
117 |     }
118 |     for k in range(len(host)):
119 |         ip = host.get(k + 1).split(':')[0].strip()
120 |         port = host.get(k + 1).split(',')[0].split(':')[-1].strip()
121 |         username = host.get(k + 1).split(',')[1].strip()
122 |         password = host.get(k + 1).split(',')[2].strip()
123 |         listen_port = host.get(k + 1).split(',')[-1].strip()
124 | 
125 |         ssh = creatSShConnectOb(ip, int(port), username=username, password=password)
126 | 
127 |         chanelSSHOb = ssh.invoke_shell()  # 建立交互式的shel
128 |         # 检查当前用户是否是 root
129 |         Flag = True
130 |         stdin, stdout, stderr = ssh.exec_command("whoami")
131 |         result = stdout.read()
132 |         if result and result.decode().strip() == 'root':
133 |             pass
134 |         else:
135 |             Flag = False
136 |             sshCmd = 'su'
137 |             stdin, stdout, stderr = ssh.exec_command(sshCmd)
138 |             if chanel_exe_cmd(chanelSSHOb, sshCmd).endswith(u"Password: "):
139 |                 sshCmd = 'sh_pwd'
140 |                 chanel_exe_cmd(chanelSSHOb, sshCmd)
141 | 
142 |         ''' 非 root 暂不知道怎么上传
143 |         ftp =ssh.open_sftp()
144 |         ftp.put( 'C:\\Users\\Administrator\\Desktop\\poc 扫描\\xray_windows_amd64.exe\\xray-license.lic','/home/YOURNAME/xray-license.lic')
145 |         # 使用之后记得关闭
146 |         #ftp.get() 下载
147 |         ftp.close()
148 |         '''
149 |         kill(chanelSSHOb, ip)
150 |         remove(chanelSSHOb, ip)
151 |         if Flag:
152 |             # root 用户上传 
153 |             # upload('172.16.1.9', 22, 'XXX', 'XXX')
154 |             upload(ip, int(port), username, password)
155 |         else:
156 |             # 非 root 用户上传到 /tmp
157 |             upload2(ip, int(port), username, password)
158 |             sshCmd = 'mv /tmp/xray-license.lic /home/YOURNAME'
159 |             chanel_exe_cmd(chanelSSHOb, sshCmd)
160 |             sshCmd = 'mv /tmp/ca.crt /home/YOURNAME'
161 |             chanel_exe_cmd(chanelSSHOb, sshCmd)
162 |             sshCmd = 'mv /tmp/ca.key /home/YOURNAME'
163 |             chanel_exe_cmd(chanelSSHOb, sshCmd)
164 |             sshCmd = 'mv /tmp/config.yaml /home/YOURNAME'
165 |             chanel_exe_cmd(chanelSSHOb, sshCmd)
166 |             sshCmd = 'mv /tmp/xray_linux_amd64 /home/YOURNAME'
167 |             chanel_exe_cmd(chanelSSHOb, sshCmd)
168 | 
169 |         sshCmd = 'cd /home/YOURNAME && chmod 555 xray_linux_amd64'
170 |         chanel_exe_cmd(chanelSSHOb, sshCmd)
171 |         # 添加ssl证书
172 |         sshCmd = 'cd /home/YOURNAME && cp ca.crt /etc/pki/ca-trust/source/anchors/'
173 |         chanel_exe_cmd(chanelSSHOb, sshCmd)
174 |         sshCmd = 'update-ca-trust extract'
175 |         chanel_exe_cmd(chanelSSHOb, sshCmd)
176 | 
177 |         sshCmd = 'cd /home/YOURNAME && nohup ./xray_linux_amd64 webscan --listen 0.0.0.0:%d --webhook-output http://YOURMYSQLIP:5000/webhook' % int(
178 |             listen_port)
179 |         # print(sshCmd)
180 |         print(chanel_exe_cmd(chanelSSHOb, sshCmd))
181 | 
182 | '''
183 | def upload(ip):
184 |     transport = paramiko.Transport((ip, 22))
185 |     transport.connect(username='XXX', password='XXX')
186 |     sftp = paramiko.SFTPClient.from_transport(transport)  # 如果连接需要密钥，则要加上一个参数，hostkey="密钥"
187 |     # 上传至 tmp 目录，其他目录权限不够
188 |     sftp.put('C:\\Users\\Administrator\\Desktop\\a.txt', '/tmp/a.txt')
189 |     transport.close()  # 关闭连接
190 | '''
191 | # sshCmd = 'mv /tmp/a.txt /home/YOURNAME'
192 | # print(chanel_exe_cmd(chanelSSHOb, sshCmd))
193 | '''
194 | ssh = creatSShConnectOb(ip, int(port), username=username, password=passwd)
195 | stdin, stdout, stderr = ssh.exec_command(cmd)
196 | result = stdout.read()
197 | if result:
198 |     if result.decode().strip() == 'XXX':
199 |         return result.decode()
200 | else:
201 |     print("连接失败!")
202 |     result = stderr.read()
203 | ssh.close()
204 | '''
205 | 


--------------------------------------------------------------------------------
/批量处理子域名文件(10k).bat:
--------------------------------------------------------------------------------
 1 | :: author : leezp
 2 | @echo off
 3 | pushd "%~dp0"
 4 | :: md 1  创建文件夹 1
 5 | md 1
 6 | type nul > 1/a_output.txt
 7 | for /f "delims=" %%i in ('dir /b  /a-d "*.txt"') do (
 8 | 	:: == 判断文件大小为 0字节
 9 | 	if %%~zi == 0 (
10 | 		:: 以 _ 作分隔符 分割， www.baidu.com_full.txt
11 | 		for /f "delims=_" %%j in ('dir /b  /a-d "%%i"') do (
12 | 			echo %%j >> "1/a_output.txt"
13 | 		)
14 | 	)
15 |     if %%~zi gtr 0 (
16 | 		if %%~zi LSS 10000 (
17 | 			type "%%i" >> "1/a_output.txt"
18 | 			echo %%i
19 | 		)
20 | 	)
21 | 	if %%~zi == 10000 (
22 | 		move "%%i" "1\"
23 | 	)
24 | 	if %%~zi gtr 10000 (
25 | 		move "%%i" "1\"
26 | 	)
27 | )
28 | 
29 | 
30 | :: gtr 表示大于 多少 字节 , LSS 表示 小于 多少字节，遍历当前目录  *.txt  文件  
31 | :: move "%%i" "1\"  将文件移动到当前目录 1文件夹下
32 | :: dir /b /s /a-d "*.txt"  其中 /s 表示遍历，去掉/s 只判断当前目录      
33 | :: for默认是以空格和，：；/等标点符号作分割符的，所以要取得整行内容通常会用"delims="这样的形式来取消for的默认分割符。
34 | :: echo %%~ni >> "1/a_output.txt"	 ::只输出文件名，不输出扩展名


--------------------------------------------------------------------------------