溫馨提示×
您好,登錄后才能下訂單哦!
點擊 登錄注冊 即表示同意《億速云用戶服務條款》
您好,登錄后才能下訂單哦!
通過Python中的requests模塊也可以來發送HTTP請求,接收HTTP響應,從而實現一些更加靈活的操作。
requests是第三方庫,不過在Kali中已經自帶了該模塊。Python3和Python2的用法稍微有些差別,這里先以Python2為例。
root@kali:~# python
Python 2.7.15 (default, Jul 28 2018, 11:29:29)
[GCC 8.1.0] on linux2
Type "help", "copyright", "credits" or "license" for more information.
>>>
>>> import requests下面以之前做過的Bugku中的Get和Post方法兩道題目為例,來介紹requests模塊的用法。
1.Get請求
利用requests模塊中的get方法,向目標url發送Get請求,將結果賦值給變量r1,直接查看r1的值,將顯示狀態碼。查看text屬性可以獲得HTTP響應正文。通過print()函數輸出,可以解析其中的換行符。
>>> r1=requests.get(url='http://123.206.87.240:8002/get/')
>>> r1
<Response [200]>
>>> r1.text
u"$what=$_GET['what'];<br>\r\necho $what;<br>\r\nif($what=='flag')<br>\r\necho 'flag{****}';<br>\r\n\r\n\r\n"
>>> print(r1.text)
$what=$_GET['what'];<br>
echo $what;<br>
if($what=='flag')<br>
echo 'flag{****}';<br>下面發送帶參數的Get請求,參數要以字典的形式表示:
>>> r1=requests.get(url='http://123.206.87.240:8002/get/',params={'what':'flag'})
>>> print(r1.text)
$what=$_GET['what'];<br>
echo $what;<br>
if($what=='flag')<br>
echo 'flag{****}';<br>
flagflag{bugku_get_su8kej2en}2.Post請求
仍是向目標url發送Post請求,并將結果存儲在變量r2中:
>>> r2=requests.post(url='http://123.206.87.240:8002/post/')
>>> print(r2.text)
$what=$_POST['what'];<br>
echo $what;<br>
if($what=='flag')<br>
echo 'flag{****}';<br>發送帶參數的Post請求:
>>> r2=requests.post(url='http://123.206.87.240:8002/post/',data={'what':'flag'})
>>> print(r2.text)
$what=$_POST['what'];<br>
echo $what;<br>
if($what=='flag')<br>
echo 'flag{****}';<br>
flagflag{bugku_get_ssseint67se}3.查看報文頭
查看headers屬性可以獲得響應頭,可以看到響應頭中的信息是以字典的形式存放:
>>> r1.headers
{'Content-Encoding': 'gzip', 'Transfer-Encoding': 'chunked', 'Keep-Alive': 'timeout=60', 'Server': 'nginx', 'Connection': 'keep-alive', 'Date': 'Tue, 04 Dec 2018 23:12:33 GMT', 'Content-Type': 'text/html'}通過for循環對字典中的鍵進行遍歷:
>>> for key in r1.headers:
... print(key)
...
Server
Date
Content-Type
Transfer-Encoding
Connection
Keep-Alive
Content-Encoding遍歷鍵和值:
>>> for key in r1.headers:
... print(key,r1.headers[key])
...
('Server', 'nginx')
('Date', 'Tue, 04 Dec 2018 23:12:33 GMT')
('Content-Type', 'text/html')
('Transfer-Encoding', 'chunked')
('Connection', 'keep-alive')
('Keep-Alive', 'timeout=60')
('Content-Encoding', 'gzip')查看指定的鍵值:
>>> r1.headers['Server']
'nginx'查看request.headers屬性可以獲得請求頭:
>>> r1.request.headers
{'Connection': 'keep-alive', 'Accept-Encoding': 'gzip, deflate', 'Accept': '*/*', 'User-Agent': 'python-requests/2.18.4'}免責聲明:本站發布的內容(圖片、視頻和文字)以原創、轉載和分享為主,文章觀點不代表本網站立場,如果涉及侵權請聯系站長郵箱:is@yisu.com進行舉報,并提供相關證據,一經查實,將立刻刪除涉嫌侵權內容。
