需求:内部资产盘点(漏洞)扫描
问题:公司大了,内网网段“剪不断理还乱”…,拿到上千个网段信息,在扫描前需要去重复和去包含关系,防止重复扫描和提升扫描效率
解决:python脚本,有个处理网段的库灰常好用IPy库实现。(自己尝试通过网络掩码位数写了写逻辑去重,也是不那么得手。(安装 pip install IPy)
处理脚本:
#去ip段的重叠、包含等
from IPy import IP
file = 'hostnetmask.txt.py' #需要去重复的ip网段文件(按行)
def ipuniq():
dlist = []
with open(file,'r') as ff:
for x in ff.readlines():
x = x.strip()
with open(file, 'r') as f:
for i in f.readlines():
i = i.strip()
if i != x:
if IP(i) in IP(x): # 判断网段是否包含
print('{} >>>>> {}'.format(i,x))
dlist.append(i)
dlist.sort()
data = []
print('>>>>>>>>>>>>>>>>>>去重复后的网段<<<<<<<<<<<<<<<<<<<<<<<<')
with open(file,'r') as df:
for n in df.readlines():
n = n.strip()
if n not in dlist:
print(n)
data.append(n)
print(dlist) #打印去重叠后的网段
文件内容eg:
cat hostnetmask.txt.py
10.19.33.0/24
10.19.32.0/24