Due to various reasons, a task of analyzing intrusion logs fell on me. How can I quickly analyze a 1G log? ? Mr. Ci said that he could create a script to parse and store it in the database, and then analyze it in the database. . . Forget it, that’s a pain in the ass, just write a script to analyze the problematic logs. So there was this little script. As for how to use it, it’s up to you, haha. For example, if you find the SQL injection statement and then see the IP, you can change the script, use the IP as a feature to extract the log, and analyze the intrusion process. It's very fast. It only takes a few seconds for my broken machine to run a 1G log file.
Writing programs to complete tasks at work is very happy and interesting. Haha
Use parameters: seay.py E:/1.log
#coding = utf8
#Filename = seay.py
import os
import sys
#特征,可以随意改,两块五一次
_tezheng = {'union','select','file_put_contents'}
def CheckFile(_path):
_f = open(_path,"r")
_All_Line = _f.readlines()
_f.close()
_Count_Line =0
_Len_Line = len(_All_Line)
_Ex_Str = ''
print('Read Over --')
while _Count_Line<_Len_Line:
_Str = _All_Line[_Count_Line]
for _tz_Str in _tezheng:
if _tz_Str in _Str: #可以加and条件,这个贵一点,5毛一次
_Ex_Str+=_tz_Str+_Str+'\r\n'
_Count_Line+=1
_f1 = open(_path+'.seay.txt',"w")
_f1.write(_Ex_Str)
_f1.close()
print 'Find Over--'
if len(sys.argv)==2:
_File = sys.argv[1]
if os.path.lexists(_File):
CheckFile(_File)
else:
print('File does not exist!')
else:
print 'Parameter error'
print sys.argv[0]+' FilePath'The final file generated is: original file name.seay.txt in the same directory, in the format of matching features + log
Python's Hybrid Approach: Compilation and Interpretation CombinedMay 08, 2025 am 12:16 AMPythonusesahybridapproach,combiningcompilationtobytecodeandinterpretation.1)Codeiscompiledtoplatform-independentbytecode.2)BytecodeisinterpretedbythePythonVirtualMachine,enhancingefficiencyandportability.
Learn the Differences Between Python's 'for' and 'while' LoopsMay 08, 2025 am 12:11 AMThekeydifferencesbetweenPython's"for"and"while"loopsare:1)"For"loopsareidealforiteratingoversequencesorknowniterations,while2)"while"loopsarebetterforcontinuinguntilaconditionismetwithoutpredefinediterations.Un
Python concatenate lists with duplicatesMay 08, 2025 am 12:09 AMIn Python, you can connect lists and manage duplicate elements through a variety of methods: 1) Use operators or extend() to retain all duplicate elements; 2) Convert to sets and then return to lists to remove all duplicate elements, but the original order will be lost; 3) Use loops or list comprehensions to combine sets to remove duplicate elements and maintain the original order.
Python List Concatenation Performance: Speed ComparisonMay 08, 2025 am 12:09 AMThefastestmethodforlistconcatenationinPythondependsonlistsize:1)Forsmalllists,the operatorisefficient.2)Forlargerlists,list.extend()orlistcomprehensionisfaster,withextend()beingmorememory-efficientbymodifyinglistsin-place.
How do you insert elements into a Python list?May 08, 2025 am 12:07 AMToinsertelementsintoaPythonlist,useappend()toaddtotheend,insert()foraspecificposition,andextend()formultipleelements.1)Useappend()foraddingsingleitemstotheend.2)Useinsert()toaddataspecificindex,thoughit'sslowerforlargelists.3)Useextend()toaddmultiple
Are Python lists dynamic arrays or linked lists under the hood?May 07, 2025 am 12:16 AMPythonlistsareimplementedasdynamicarrays,notlinkedlists.1)Theyarestoredincontiguousmemoryblocks,whichmayrequirereallocationwhenappendingitems,impactingperformance.2)Linkedlistswouldofferefficientinsertions/deletionsbutslowerindexedaccess,leadingPytho
How do you remove elements from a Python list?May 07, 2025 am 12:15 AMPythonoffersfourmainmethodstoremoveelementsfromalist:1)remove(value)removesthefirstoccurrenceofavalue,2)pop(index)removesandreturnsanelementataspecifiedindex,3)delstatementremoveselementsbyindexorslice,and4)clear()removesallitemsfromthelist.Eachmetho
What should you check if you get a 'Permission denied' error when trying to run a script?May 07, 2025 am 12:12 AMToresolvea"Permissiondenied"errorwhenrunningascript,followthesesteps:1)Checkandadjustthescript'spermissionsusingchmod xmyscript.shtomakeitexecutable.2)Ensurethescriptislocatedinadirectorywhereyouhavewritepermissions,suchasyourhomedirectory.
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
MinGW - Minimalist GNU for Windows
This project is in the process of being migrated to osdn.net/projects/mingw, you can continue to follow us there. MinGW: A native Windows port of the GNU Compiler Collection (GCC), freely distributable import libraries and header files for building native Windows applications; includes extensions to the MSVC runtime to support C99 functionality. All MinGW software can run on 64-bit Windows platforms.
MantisBT
Mantis is an easy-to-deploy web-based defect tracking tool designed to aid in product defect tracking. It requires PHP, MySQL and a web server. Check out our demo and hosting services.
VSCode Windows 64-bit Download
A free and powerful IDE editor launched by Microsoft
EditPlus Chinese cracked version
Small size, syntax highlighting, does not support code prompt function
WebStorm Mac version
Useful JavaScript development tools
