Giter Club home page Giter Club logo

Comments (10)

nullptrKey avatar nullptrKey commented on May 16, 2024 1

@0xbug 是少了3个“符号,我真是太粗心了

from sqliscanner.

0xbug avatar 0xbug commented on May 16, 2024 1

@99bt 仔细看报错信息就能发现问题啦,哈哈

from sqliscanner.

0xbug avatar 0xbug commented on May 16, 2024

@99bt File "/SQLiScanner/SQLiScanner/settings.py", line 2 Django settings for SQLiScanner project. ^ SyntaxError: invalid syntax 应该是编辑 SQLiScanner/settings.py 的时候删掉某些东西了,可否提供一下脱敏后的SQLiScanner/settings.py

from sqliscanner.

nullptrKey avatar nullptrKey commented on May 16, 2024

@0xbug

(venv) root@kali:/SQLiScanner# cat SQLiScanner/settings.py 

Django settings for SQLiScanner project.

Generated by 'django-admin startproject' using Django 1.9.

For more information on this file, see
https://docs.djangoproject.com/en/1.9/topics/settings/

For the full list of settings and their values, see
https://docs.djangoproject.com/en/1.9/ref/settings/
"""

import os
import djcelery

# Build paths inside the project like this: os.path.join(BASE_DIR, ...)
BASE_DIR = os.path.dirname(os.path.dirname(os.path.abspath(__file__)))


# Quick-start development settings - unsuitable for production
# See https://docs.djangoproject.com/en/1.9/howto/deployment/checklist/

# SECURITY WARNING: keep the secret key used in production secret!
SECRET_KEY = 'p2mot&vgzvk2a93zsp5t173b6oe=ye43po!t%6((v*w(1ike7-'

# SECURITY WARNING: don't run with debug turned on in production!
DEBUG = True

ALLOWED_HOSTS = []


# Application definition

INSTALLED_APPS = [
    'django.contrib.admin',
    'django.contrib.auth',
    'django.contrib.contenttypes',
    'django.contrib.sessions',
    'django.contrib.messages',
    'django.contrib.staticfiles',
    'rest_framework',
    'django_filters',
    'corsheaders',
    'djcelery',
    'scanner',
]

MIDDLEWARE_CLASSES = [
    'django.middleware.security.SecurityMiddleware',
    'django.contrib.sessions.middleware.SessionMiddleware',
    'corsheaders.middleware.CorsMiddleware',
    'django.middleware.common.CommonMiddleware',
    'django.middleware.csrf.CsrfViewMiddleware',
    'django.contrib.auth.middleware.AuthenticationMiddleware',
    'django.contrib.auth.middleware.SessionAuthenticationMiddleware',
    'django.contrib.messages.middleware.MessageMiddleware',
    'django.middleware.clickjacking.XFrameOptionsMiddleware',
]

ROOT_URLCONF = 'SQLiScanner.urls'

TEMPLATES = [
    {
        'BACKEND': 'django.template.backends.django.DjangoTemplates',
        'DIRS': [os.path.join(BASE_DIR, 'templates')],
        'APP_DIRS': True,
        'OPTIONS': {
            'context_processors': [
                'django.template.context_processors.debug',
                'django.template.context_processors.request',
                'django.contrib.auth.context_processors.auth',
                'django.contrib.messages.context_processors.messages',
            ],
        },
    },
]

WSGI_APPLICATION = 'SQLiScanner.wsgi.application'


# Database
# https://docs.djangoproject.com/en/1.9/ref/settings/#databases


DATABASES = {
    'default': {
        'ENGINE': 'django.db.backends.postgresql',
        'NAME': 'sqltest',
        'USER': 'sqltest',
        'PASSWORD': 'sqltest',
        'HOST': '127.0.0.1',
        'PORT': '5432',
    }
}


# Password validation
# https://docs.djangoproject.com/en/1.9/ref/settings/#auth-password-validators

AUTH_PASSWORD_VALIDATORS = [
    {
        'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
    },
]


# Internationalization
# https://docs.djangoproject.com/en/1.9/topics/i18n/

LANGUAGE_CODE = 'zh-Hans'
TIME_ZONE = 'Asia/Shanghai'
USE_I18N = True
USE_L10N = True
USE_TZ = False


# Static files (CSS, JavaScript, Images)
# https://docs.djangoproject.com/en/1.9/howto/static-files/

STATIC_URL = '/static/'
# STATIC_ROOT = [os.path.join(BASE_DIR, "static/"), BASE_DIR]
STATIC_ROOT = os.path.join(BASE_DIR, "/static/")
STATICFILES_DIRS = [os.path.join(BASE_DIR, "static/"), BASE_DIR]

# Celery

djcelery.setup_loader()
BROKER_URL = "redis://localhost:6379"
CELERYBEAT_SCHEDULER = 'djcelery.schedulers.DatabaseScheduler'

# CORS

CORS_ORIGIN_ALLOW_ALL = True

# REST_FRAMEWORK

REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': (
        'rest_framework.authentication.SessionAuthentication',
    ),
    'DEFAULT_PERMISSION_CLASSES': (
        'rest_framework.permissions.IsAuthenticated',
    ),
    'DEFAULT_PAGINATION_CLASS': 'rest_framework.pagination.PageNumberPagination',
    'PAGE_SIZE': 10,
    # 'DATETIME_FORMAT': ("%m-%d %H:%M"),
}

# Email

EMAIL_BACKEND = 'django.core.mail.backends.smtp.EmailBackend'
EMAIL_USE_TLS = False
EMAIL_HOST = ''
EMAIL_PORT = 25
EMAIL_HOST_USER = ''
EMAIL_HOST_PASSWORD = ''
DEFAULT_FROM_EMAIL = ''

from sqliscanner.

nullptrKey avatar nullptrKey commented on May 16, 2024

@0xbug 这个是我的数据库的状态

root@kali:/# service postgresql status 
● postgresql.service - PostgreSQL RDBMS
   Loaded: loaded (/lib/systemd/system/postgresql.service; disabled; vendor pres
   Active: active (exited) since Wed 2016-11-09 01:59:53 EST; 6min ago
  Process: 1486 ExecStart=/bin/true (code=exited, status=0/SUCCESS)
 Main PID: 1486 (code=exited, status=0/SUCCESS)

Nov 09 01:59:53 kali systemd[1]: Starting PostgreSQL RDBMS...
Nov 09 01:59:53 kali systemd[1]: Started PostgreSQL RDBMS.

from sqliscanner.

nullptrKey avatar nullptrKey commented on May 16, 2024

@0xbug 安装好之后是挂本地代理使用吗?

from sqliscanner.

0xbug avatar 0xbug commented on May 16, 2024

@99bt 嗯,目前支持上传 har 文件;可以用 Charles 做代理然后保存请求为 har 格式,也可以用 Charles 打开 pcap 文件然后再导出为 har 格式

from sqliscanner.

nullptrKey avatar nullptrKey commented on May 16, 2024

@0xbug 好的,就说要先浏览器浏览一遍网页之后,然后倒入进去扫描对吧?

from sqliscanner.

0xbug avatar 0xbug commented on May 16, 2024

@99bt 对,有时间可以研究研究 Charles里面的设置项

from sqliscanner.

nullptrKey avatar nullptrKey commented on May 16, 2024

@0xbug 好的,

from sqliscanner.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.