2019关于phpstudy软件后门简单分析(2)
发布时间:2021-01-04 07:03 所属栏目:52 来源:网络整理
导读:? # -*- coding:utf8 -*-__author__=‘[email?protected]‘__blog__=‘http://pcat.cc‘import osimport stringimport redef strings(file) : chars = string.printable[:94] shortestReturnChar = 4 regExp = ‘[%
|
? # -*- coding:utf8 -*-
__author__=‘[email?protected]‘
__blog__=‘http://pcat.cc‘
import os
import string
import re
def strings(file) :
chars = string.printable[:94]
shortestReturnChar = 4
regExp = ‘[%s]{%d,}‘ % (chars,shortestReturnChar)
pattern = re.compile(regExp)
with open(file,‘rb‘) as f:
return pattern.findall(f.read())
def grep(lines,pattern):
for line in lines:
if pattern in line:
yield line
def pcheck(filename):
# trojan feature
trojan=‘@eval‘
# just check dll file
if filename.endswith(‘.dll‘):
lines=strings(filename)
try:
grep(lines,trojan).next()
except:
return
print ‘=== {0} ===‘.format(filename)
for line in grep(lines,trojan):
print line
pass
def foo():
# . stand for current directory
for path,dirs,files in os.walk(".",topdown=False):
for name in files:
pcheck(os.path.join(path,name))
for name in dirs:
pcheck(os.path.join(path,name))
pass
if __name__ == ‘__main__‘:
foo()
? ? ? ? ? 自己斟酌哦 太菜了呢学个php都给人家当鸡
(编辑:ASP站长网) |
相关内容
居龙:中国大陆首次成网友评论
推荐文章
热点阅读
