我的'sys.argv'python代码无法正常工作

时间:2019-11-16 05:50:52

标签: python

我正在用python制造SSRF扫描器,但是我对python中的'sys.argv'了解不多。 这是我的代码,在我运行(python3)时不起作用:

class targets:
    def __init__(self, url, ip, port, method, param, error):
        self.url = url
        self.ip = ip
        self.port = port
        self.method = method
        self.param = param
        self.er = error 

    def scan(target):
        print("Success!")
        print(target.url)
        print(target.method)
        print(target.ip)

for carg in sys.argv:
    target = targets('', '', '', '', '', "Please enter a valid command. If you don't know how to use it, enter '-help'")
    if "-u" in carg:
        argnum = sys.argv.index(carg)
        argnum += 1
        target.url = sys.argv[argnum]
        if "-g" in carg:
            argnum += 1
            target.method = "g"
            if "-i" in carg:
                argnum = sys.argv.index(carg)
                argnum += 1
                target.ip = sys.argv[argnum]
            if "-pt" in carg:
                argnum = sys.argv.index(carg)
                argnum += 1
                target.port = sys.argv[argnum]
        if "-p" in carg:
            if not "-pa" in carg:
                print("Please enter the parameters of request(POST)")
                quit
            argnum += 1
            target.method = "p"
            if "-i" in carg:
                argnum = sys.argv.index(carg)
                argnum += 1
                target.ip = sys.argv[argnum]
            if "-p" in carg:
                argnum = sys.argv.index(carg)
                argnum += 1
                target.port = sys.argv[argnum]
        else:
            print(target.er)
            quit
        target.scan()

    elif carg == "-help":
        tuto = open("tutorial.dat", "r")
        tuto.read()
        tuto.close
        print(tuto)
    else:
        print(target.er)

运行此代码后:ssrf.py -u google.com -g -i 123.123.123.123

我收到了这个:

Please enter a valid command. If you don't know how to use it, enter '-help'
Please enter a valid command. If you don't know how to use it, enter '-help'
Success!
google.com


Please enter a valid command. If you don't know how to use it, enter '-help'
Please enter a valid command. If you don't know how to use it, enter '-help'
Please enter a valid command. If you don't know how to use it, enter '-help'
Please enter a valid command. If you don't know how to use it, enter '-help'

那不是我在等待的东西

Success!
google.com
g
123.123.123.123

任何人都可以告诉我这段代码有什么问题吗(抱歉,这是一个愚蠢的问题,抱歉,如果英语不好)

1 个答案:

答案 0 :(得分:1)

sys.argv不是该任务的正确工具。使用argparse。 Python文档非常丰富,提供了有关使用sysargparse

的示例

Python Doc argparse

示例:

#pars.py
import argparse


parser = argparse.ArgumentParser('SSRF',
    description='SSRF scanner description')

parser.add_argument('-u','--url', metavar='url',
    type=str, required=True, help='url to scan' )

parser.add_argument('-i','--ip', metavar='ip',
    type=str, required=True, help='ip address' )

parsed = parser.parse_args()

# do something parsed.url or parsed.ip
print(parsed.url, parsed.ip)
print(parsed)

# run
#>>> python pars.py --help
#>>> python pars.py -i 133.333.3 -u hello.com
#>>> python pars.py --url world.com --ip 123.45.6
相关问题
最新问题