-
Notifications
You must be signed in to change notification settings - Fork 118
Expand file tree
/
Copy pathfilterShell.py
More file actions
75 lines (72 loc) · 1.7 KB
/
filterShell.py
File metadata and controls
75 lines (72 loc) · 1.7 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
#!/usr/bin/env python
#coding=utf8
from directory.sensitiveWord import *
from directory.webshell import *
#过滤类
class FilterShell:
#基于敏感文件名过滤
def filename(self, ext, name):
if ext == "php":
if name in php_webshell:
return True
else:
return False
elif ext == "asp":
if name in asp_webshell:
return True
else:
return False
elif ext == "apsx":
if name in aspx_webshell:
return True
else:
return False
elif ext == "jsp":
if name in jsp_webshell:
return True
else:
return False
elif ext == "all":
if name in (php_webshell + asp_webshell + aspx_webshell + jsp_webshell):
return True
else:
return False
else:
print "args error!"
exit(0)
#基于敏感内容过滤
def content(self, ext, ctent):
if ext == "php":
for word in php_sensitive_words.keys():
if word in ctent:
return php_sensitive_words.get(word)
else:
continue
return False
elif ext == "asp":
for word in asp_sensitive_words.keys():
if word in ctent:
return asp_sensitive_words.get(word)
else:
return False
elif ext == "aspx":
for word in aspx_sensitive_words.keys():
if word in ctent:
return aspx_sensitive_words.get(word)
else:
return False
elif ext == "jsp":
for word in jsp_sensitive_words.keys():
if word in ctent:
return jsp_sensitive_words.get(word)
else:
return False
elif ext == "all":
all_sensitive_words = php_sensitive_words + asp_sensitive_words + asp_sensitive_words + jsp_sensitive_words
for word in all_sensitive_words.keys():
return all_sensitive_words.get(word)
else:
return False
else:
print "args error!"
exit(0)