{"id":2085,"date":"2024-05-25T21:06:41","date_gmt":"2024-05-25T13:06:41","guid":{"rendered":"http:\/\/oneai.eu.org\/?p=2085"},"modified":"2024-05-25T21:06:41","modified_gmt":"2024-05-25T13:06:41","slug":"%e8%bd%ac-owtf%ef%bc%9a%e4%b8%80%e6%ac%be%e5%8a%9f%e8%83%bd%e5%bc%ba%e5%a4%a7%e7%9a%84%e6%94%bb%e5%87%bb%e5%9e%8bweb%e6%b5%8b%e8%af%95%e6%a1%86%e6%9e%b6","status":"publish","type":"post","link":"https:\/\/oneai.eu.org\/?p=2085","title":{"rendered":"\u8f6c OWTF\uff1a\u4e00\u6b3e\u529f\u80fd\u5f3a\u5927\u7684\u653b\u51fb\u578bWeb\u6d4b\u8bd5\u6846\u67b6"},"content":{"rendered":"<div class=\"main-warpper\" data-v-6323c702=\"\">\n<div class=\"artical-header\" data-v-6323c702=\"\">\n<div class=\"title\" data-v-6323c702=\"\"><span class=\"title-span\" data-v-6323c702=\"\">OWTF\uff1a\u4e00\u6b3e\u529f\u80fd\u5f3a\u5927\u7684\u653b\u51fb\u578bWeb\u6d4b\u8bd5\u6846\u67b6<\/span> <!----> <!----> <!----> <!----><\/div>\n<div class=\"author-info\" data-v-6323c702=\"\">\n<div class=\"author-left\" data-v-6323c702=\"\"><a href=\"javascript:;\" class=\"author\" data-v-6323c702=\"\"><i aria-label=\"\u56fe\u6807: user\" class=\"anticon anticon-user\" data-v-6323c702=\"\"><svg viewBox=\"64 64 896 896\" data-icon=\"user\" width=\"1em\" height=\"1em\" fill=\"currentColor\" aria-hidden=\"true\" focusable=\"false\" class=\"\"><path d=\"M858.5 763.6a374 374 0 0 0-80.6-119.5 375.63 375.63 0 0 0-119.5-80.6c-.4-.2-.8-.3-1.2-.5C719.5 518 760 444.7 760 362c0-137-111-248-248-248S264 225 264 362c0 82.7 40.5 156 102.8 201.1-.4.2-.8.3-1.2.5-44.8 18.9-85 46-119.5 80.6a375.63 375.63 0 0 0-80.6 119.5A371.7 371.7 0 0 0 136 901.8a8 8 0 0 0 8 8.2h60c4.4 0 7.9-3.5 8-7.8 2-77.2 33-149.5 87.8-204.3 56.7-56.7 132-87.9 212.2-87.9s155.5 31.2 212.2 87.9C779 752.7 810 825 812 902.2c.1 4.4 3.6 7.8 8 7.8h60a8 8 0 0 0 8-8.2c-1-47.8-10.9-94.3-29.5-138.2zM512 534c-45.9 0-89.1-17.9-121.6-50.4S340 407.9 340 362c0-45.9 17.9-89.1 50.4-121.6S466.1 190 512 190s89.1 17.9 121.6 50.4S684 316.1 684 362c0 45.9-17.9 89.1-50.4 121.6S557.9 534 512 534z\"><\/path><\/svg><\/i>Alpha_h4ck<br \/>\n                  <!----> <!----><\/a> <span class=\"date\" style=\"margin:0 15px\" data-v-6323c702=\"\"><i aria-label=\"\u56fe\u6807: clock-circle\" class=\"anticon anticon-clock-circle\" data-v-6323c702=\"\"><svg viewBox=\"64 64 896 896\" data-icon=\"clock-circle\" width=\"1em\" height=\"1em\" fill=\"currentColor\" aria-hidden=\"true\" focusable=\"false\" class=\"\"><path d=\"M512 64C264.6 64 64 264.6 64 512s200.6 448 448 448 448-200.6 448-448S759.4 64 512 64zm0 820c-205.4 0-372-166.6-372-372s166.6-372 372-372 372 166.6 372 372-166.6 372-372 372z\"><\/path><path d=\"M686.7 638.6L544.1 535.5V288c0-4.4-3.6-8-8-8H488c-4.4 0-8 3.6-8 8v275.4c0 2.6 1.2 5 3.3 6.5l165.4 120.6c3.6 2.6 8.6 1.8 11.2-1.7l28.6-39c2.6-3.7 1.8-8.7-1.8-11.2z\"><\/path><\/svg><\/i>2018-08-26 15:00:14<br \/>\n                <\/span> <span class=\"review\" style=\"margin-right:15px\" data-v-6323c702=\"\"><i aria-label=\"\u56fe\u6807: fire\" class=\"anticon anticon-fire\" data-v-6323c702=\"\"><svg viewBox=\"64 64 896 896\" data-icon=\"fire\" width=\"1em\" height=\"1em\" fill=\"currentColor\" aria-hidden=\"true\" focusable=\"false\" class=\"\"><path d=\"M834.1 469.2A347.49 347.49 0 0 0 751.2 354l-29.1-26.7a8.09 8.09 0 0 0-13 3.3l-13 37.3c-8.1 23.4-23 47.3-44.1 70.8-1.4 1.5-3 1.9-4.1 2-1.1.1-2.8-.1-4.3-1.5-1.4-1.2-2.1-3-2-4.8 3.7-60.2-14.3-128.1-53.7-202C555.3 171 510 123.1 453.4 89.7l-41.3-24.3c-5.4-3.2-12.3 1-12 7.3l2.2 48c1.5 32.8-2.3 61.8-11.3 85.9-11 29.5-26.8 56.9-47 81.5a295.64 295.64 0 0 1-47.5 46.1 352.6 352.6 0 0 0-100.3 121.5A347.75 347.75 0 0 0 160 610c0 47.2 9.3 92.9 27.7 136a349.4 349.4 0 0 0 75.5 110.9c32.4 32 70 57.2 111.9 74.7C418.5 949.8 464.5 959 512 959s93.5-9.2 136.9-27.3A348.6 348.6 0 0 0 760.8 857c32.4-32 57.8-69.4 75.5-110.9a344.2 344.2 0 0 0 27.7-136c0-48.8-10-96.2-29.9-140.9zM713 808.5c-53.7 53.2-125 82.4-201 82.4s-147.3-29.2-201-82.4c-53.5-53.1-83-123.5-83-198.4 0-43.5 9.8-85.2 29.1-124 18.8-37.9 46.8-71.8 80.8-97.9a349.6 349.6 0 0 0 58.6-56.8c25-30.5 44.6-64.5 58.2-101a240 240 0 0 0 12.1-46.5c24.1 22.2 44.3 49 61.2 80.4 33.4 62.6 48.8 118.3 45.8 165.7a74.01 74.01 0 0 0 24.4 59.8 73.36 73.36 0 0 0 53.4 18.8c19.7-1 37.8-9.7 51-24.4 13.3-14.9 24.8-30.1 34.4-45.6 14 17.9 25.7 37.4 35 58.4 15.9 35.8 24 73.9 24 113.1 0 74.9-29.5 145.4-83 198.4z\"><\/path><\/svg><\/i>374985<br \/>\n                <\/span> <!----><\/div>\n<div data-v-6323c702=\"\"><!----><\/div>\n<\/div>\n<p> <!----><\/div>\n<div class=\"artical-body\" data-v-6323c702=\"\">\n<div class=\"payread-panel\" data-v-6323c702=\"\">\n<div id=\"tinymce-editor\" class=\"content-detail\" data-v-6323c702=\"\">\n<div><b style=\"color: rgb(0, 176, 80);\">\u4eca\u5929\u7ed9\u5927\u5bb6\u4ecb\u7ecd\u4e00\u6b3e\u540d\u53ebOWTF\uff08Offensive Web Testing Framework-\u653b\u51fb\u578bWeb\u6d4b\u8bd5\u6846\u67b6\uff09\uff0c\u8be5\u6846\u67b6\u6574\u5408\u4e86\u591a\u79cd\u4f18\u79c0\u7684\u5de5\u5177\uff0c\u53ef\u4ee5\u6709\u6548\u63d0\u5347\u6e17\u900f\u6d4b\u8bd5\u7684\u6548\u7387\u3002<\/b><\/p>\n<p><img fetchpriority=\"high\" decoding=\"async\" alt=\"OWTF\uff1a\u4e00\u6b3e\u529f\u80fd\u5f3a\u5927\u7684\u653b\u51fb\u578bWeb\u6d4b\u8bd5\u6846\u67b6\" src=\"https:\/\/image.3001.net\/images\/20180820\/1534699512_5b79a7f8db7bd.png!small\" width=\"690\" height=\"690\" preview=\"0\" large=\"https:\/\/image.3001.net\/images\/20180820\/1534699512_5b79a7f8db7bd.png\" data-pswp-uid=\"1\"><\/p>\n<h2 id=\"h2-1\">OWTF<\/h2>\n<p>OWASPOWTF\u9879\u76ee\u7684\u4e3b\u8981\u76ee\u6807\u5c31\u662f\u63d0\u5347\u6e17\u900f\u6d4b\u8bd5\u7684\u6548\u7387\uff0c\u6d4b\u8bd5\u8fc7\u7a0b\u548c\u6807\u51c6\u7b26\u5408\u7c7b\u4f3cOWASP\u6d4b\u8bd5\u6307\u5357\uff08v3\u6216v4\uff09\u3001OWASP TOP 10\u3001PTES\u548cNIST\u8fd9\u6837\u7684\u5b89\u5168\u6807\u51c6\uff0c\u8fd9\u6837\u5c31\u53ef\u4ee5\u8ba9\u5e7f\u5927\u6e17\u900f\u6d4b\u8bd5\u4eba\u5458\u62e5\u6709\u66f4\u591a\u7684\u65f6\u95f4\u53bb\u5b8c\u6210\u4ee5\u4e0b\u4e8b\u60c5\uff1a<\/p>\n<blockquote>\n<p>1.&nbsp;&nbsp;&nbsp;\u4ece\u6574\u4f53\u5927\u5c40\u51fa\u53d1\u53bb\u601d\u8003\uff0c\u4e0d\u53d7\u601d\u7ef4\u9650\u5236\u3002<\/p>\n<p>2.&nbsp;&nbsp;&nbsp;\u66f4\u6709\u6548\u7387\u5730\u53bb\u5bfb\u627e\u3001\u8bc6\u522b\u548c\u5229\u7528\u6f0f\u6d1e\u3002<\/p>\n<p>3.&nbsp;&nbsp;&nbsp;\u6709\u66f4\u591a\u7684\u65f6\u95f4\u53bb\u7814\u7a76\u590d\u6742\u7684\u6f0f\u6d1e\uff0c\u4f8b\u5982\u903b\u8f91\u6f0f\u6d1e\u3001\u67b6\u6784\u6f0f\u6d1e\u6216\u865a\u62df\u4e3b\u673a\u4f1a\u8bdd\u3002<\/p>\n<p>4.&nbsp;&nbsp;&nbsp;\u5bf9\u66f4\u6709\u53ef\u80fd\u51fa\u73b0\u6f0f\u6d1e\u7684\u7ec4\u4ef6\u8fdb\u884c\u66f4\u591a\u6709\u9488\u5bf9\u6027\u7684\u6a21\u7cca\u6d4b\u8bd5\u3002<\/p>\n<p>5.&nbsp;&nbsp;&nbsp;\u66f4\u597d\u5730\u53bb\u6f14\u793a\u6f0f\u6d1e\u5bf9\u76ee\u6807\u7cfb\u7edf\u7684\u5f71\u54cd\u3002<\/p>\n<\/blockquote>\n<p>\u7814\u7a76\u4eba\u5458\u53ef\u6839\u636e\u81ea\u5df1\u7684\u9700\u8981\u6765\u8fdb\u884c\u5de5\u5177\u914d\u7f6e\uff0c\u5c31\u7b97\u4f60\u6ca1\u6709\u7f16\u7a0b\u7ecf\u9a8c\uff0c\u4f60\u4e5f\u53ef\u4ee5\u76f4\u63a5\u5728\u914d\u7f6e\u6587\u4ef6\u4e2d\u6dfb\u52a0\u7b80\u5355\u7684\u63d2\u4ef6\u6216\u6d4b\u8bd5\u9879\u76ee\u3002<\/p>\n<h2 id=\"h2-2\">\u529f\u80fd\u4ecb\u7ecd<\/h2>\n<blockquote>\n<p>\u5feb\u901f\u6062\u590d\u80fd\u529b\uff1a\u5982\u679c\u67d0\u4e2a\u5de5\u5177\/\u6d4b\u8bd5\u76ee\u6807\u8ba9OWTF\u5d29\u6e83\u4e86\uff0c\u4f60\u53ef\u4ee5\u76f4\u63a5\u5207\u6362\u5230\u5176\u4ed6\u5de5\u5177\/\u6d4b\u8bd5\u83ab\u8868\uff0c\u5e76\u4fdd\u5b58\u90e8\u5206\u8f93\u51fa\u6570\u636e\u3002<\/p>\n<p>\u7075\u6d3b\u6027\uff1a\u53ef\u968f\u65f6\u6682\u5b9a\u6216\u6062\u590d\u5de5\u4f5c\u3002<\/p>\n<p>\u6d4b\u8bd5\u5206\u79bb\uff1aOWTF\u53ef\u4ee5\u5c06\u6d41\u91cf\u5206\u6210\u4e09\u79cd\u7c7b\u578b\u3002<\/p>\n<p>Web\u63a5\u53e3\uff1a\u53ef\u8f7b\u677e\u7ba1\u7406\u5404\u79cd\u5927\u89c4\u6a21\u6e17\u900f\u6d4b\u8bd5\u3002<\/p>\n<p>\u4ea4\u4e92\u6027\uff1a\u5de5\u5177\u9ad8\u5ea6\u53ef\u914d\u7f6e\uff0c\u63d0\u4f9b\u4e86\u5927\u91cfREST API\u3002<\/p>\n<p>\u4ee3\u7801\u7f16\u8f91\uff1a\u63d0\u4f9b\u4e86\u76f8\u5173\u7684\u63d2\u4ef6\u7f16\u8f91\u5668\u3002<\/p>\n<\/blockquote>\n<h2 id=\"h2-3\">\u5de5\u5177\u8981\u6c42<\/h2>\n<p>OWTF\u53ef\u5728Kali Linux\u548cmacOS\u5e73\u53f0\u4e0a\u8fd0\u884c\uff0c\u4f46\u8be5\u5de5\u5177\u4e3b\u8981\u9488\u5bf9\u7684\u5e73\u53f0\u662fKali Linux\u6216\u5176\u4ed6Debian\u884d\u751f\u7248\u672c\u3002<\/p>\n<p>OWTF\u652f\u6301Python 2\u548cPython 3\u3002<\/p>\n<h2 id=\"h2-4\">\u5de5\u5177\u5b89\u88c5<\/h2>\n<p>\u5f3a\u70c8\u5efa\u8bae\u5927\u5bb6\u4f7f\u7528virtualenv\u3002<\/p>\n<h3 id=\"h3-1\">\u624b\u52a8\u642d\u5efa\u6570\u636e\u5e93<\/h3>\n<p>\u66ff\u6362settings.py\u6587\u4ef6\u4e2ddb_name\u3001$db_user\u548c$db_pass\u53d8\u91cf\u7684\u503c\uff0c\u786e\u4fdd\u503c\u7684\u6b63\u786e\u6027\u3002\u63a5\u4e0b\u6765\uff0c\u5f00\u542fpostgreSQL\u670d\u52a1\u5668\uff1a<\/p>\n<p>macOS\uff1a<\/p>\n<pre><code>brew install postgresql\npg_ctl-D \/usr\/local\/var\/postgres start<\/code><\/pre>\n<p>Kali\uff1a<\/p>\n<pre><code>sudo systemctl enable postgresql\nsudo systemctl start postgresql\nsudo service postgresql start<\/code><\/pre>\n<h3 id=\"h3-2\">\u521b\u5efaowtf_db_user\u7528\u6237\uff1a<\/h3>\n<p>macOS\uff1a<\/p>\n<pre><code>psqlpostgres -c \"CREATE USER $db_user WITH PASSWORD '$db_pass';\"<\/code><\/pre>\n<p>Kali\uff1a<\/p>\n<pre><code>sudo su postgres -c \"psql -c \\\"CREATE USER $db_user WITH PASSWORD'$db_pass'\\\"\"<\/code><\/pre>\n<h3 id=\"h3-3\">\u521b\u5efa\u6570\u636e\u5e93\uff1a<\/h3>\n<p>macOS\uff1a<\/p>\n<pre><code>psqlpostgres -c \"CREATE DATABASE $db_name WITH OWNER $db_user ENCODING 'utf-8'TEMPLATE template0;\"<\/code><\/pre>\n<p>Kali\uff1a<\/p>\n<pre><code>sudo su postgres -c \"psql -c \\\"CREATE DATABASE $db_name WITH OWNER$db_user ENCODING 'utf-8' TEMPLATE template0;\\\"\"<\/code><\/pre>\n<h3 id=\"h3-4\">\u514b\u9686\u9879\u76ee\uff1a<\/h3>\n<pre><code>pip install git+https:\/\/github.com\/owtf\/owtf#egg=owtf\npython setup.py develop<\/code><\/pre>\n<p>\u6ce8\uff1a\u5982\u679c\u4f60\u60f3\u5728Windows\u6216macOS\u5e73\u53f0\u4e0a\u8fd0\u884cOWTF\u7684\u8bdd\uff0c\u4f60\u9700\u8981\u4f7f\u7528\u5230Docker Compose\uff0c\u8fd0\u884c\u547d\u4ee4\u201cmake compose\u201d\u4e4b\u540e\uff0c\u4f60\u53ef\u4ee5\u76f4\u63a5\u8bbf\u95eelocalhost:8009\u8fdb\u5165\u5230OWTF Web\u63a5\u53e3\u3002<\/p>\n<h3 id=\"h3-5\">\u5728OSX\u4e0a\u5b89\u88c5<\/h3>\n<p>\u4f9d\u8d56\uff1a\u5b89\u88c5<a href=\"https:\/\/brew.sh\/\">Homebrew<\/a>\u5e76\u6309\u7167\u4e0b\u5217\u6b65\u9aa4\u64cd\u4f5c\uff1a<\/p>\n<pre><code>$virtualenv &lt;venv name&gt;\n$source &lt;venv name&gt;\/bin\/activate\n$brew install coreutils gnu-sed openssl\n# Weneed to install 'cryptography' first to avoid issues\n$ pipinstall cryptography --global-option=build_ext --global-option=\"-L\/usr\/local\/opt\/openssl\/lib\"--global-option=\"-I\/usr\/local\/opt\/openssl\/include\"\n$ gitclone &lt;this repo&gt;\n$ cdowtf\n$python setup.py install\n# RunOWTF!\n$owtf<\/code><\/pre>\n<p><b style=\"color: rgb(159, 163, 168);\">* \u53c2\u8003\u6765\u6e90\uff1a<a href=\"https:\/\/github.com\/owtf\/owtf\" ref=\"nofollow\">owtf<\/a>\uff0cFB\u5c0f\u7f16Alpha_h4ck\u7f16\u8bd1\uff0c\u8f6c\u8f7d\u8bf7\u6ce8\u660e\u6765\u81eaFreeBuf.COM<\/b><\/p>\n<\/div>\n<\/div>\n<p> <!----> <!----> <!----> <!----><\/div>\n<p> <!----> <\/p>\n<div class=\"original-user\" data-v-6323c702=\"\"><!----> <\/p>\n<div class=\"user-tips\" data-v-6323c702=\"\">\n                \u672c\u6587\u4e3a<span data-v-6323c702=\"\"> Alpha_h4ck <\/span>\u72ec\u7acb\u89c2\u70b9\uff0c\u672a\u7ecf\u5141\u8bb8\u4e0d\u5f97\u8f6c\u8f7d\uff0c\u6388\u6743\u8bf7\u8054\u7cfbFreeBuf\u5ba2\u670d\u5c0f\u871c\u8702\uff0c\u5fae\u4fe1\uff1afreebee2022\n              <\/div>\n<\/div>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>OWTF\uff1a\u4e00\u6b3e\u529f\u80fd\u5f3a\u5927\u7684\u653b\u51fb\u578bWeb\u6d4b\u8bd5\u6846\u67b6 Alpha_h4ck 2018-08-26 15:00:14 374985 \u4eca\u5929\u7ed9\u5927\u5bb6\u4ecb\u7ecd\u4e00\u6b3e\u540d\u53ebOWTF\uff08Offensive Web Testing Framework-\u653b\u51fb\u578bWeb\u6d4b\u8bd5\u6846\u67b6\uff09\uff0c\u8be5\u6846\u67b6\u6574\u5408\u4e86\u591a\u79cd\u4f18\u79c0\u7684\u5de5\u5177\uff0c\u53ef\u4ee5\u6709\u6548\u63d0\u5347\u6e17\u900f\u6d4b\u8bd5\u7684\u6548\u7387\u3002 OWTF OWASPOWTF\u9879\u76ee\u7684\u4e3b\u8981\u76ee\u6807\u5c31\u662f\u63d0\u5347\u6e17\u900f\u6d4b\u8bd5\u7684\u6548\u7387\uff0c\u6d4b\u8bd5\u8fc7\u7a0b\u548c\u6807\u51c6\u7b26\u5408\u7c7b\u4f3cOWASP\u6d4b\u8bd5\u6307\u5357\uff08v3\u6216v4\uff09\u3001OWASP TOP 10\u3001PTES\u548cNIST\u8fd9\u6837\u7684\u5b89\u5168\u6807\u51c6\uff0c\u8fd9\u6837\u5c31\u53ef\u4ee5\u8ba9\u5e7f\u5927\u6e17\u900f\u6d4b\u8bd5\u4eba\u5458\u62e5\u6709\u66f4\u591a\u7684\u65f6\u95f4\u53bb\u5b8c\u6210\u4ee5\u4e0b\u4e8b\u60c5\uff1a 1.&nbsp;&nbsp;&nbsp;\u4ece\u6574\u4f53\u5927\u5c40\u51fa\u53d1\u53bb\u601d\u8003\uff0c\u4e0d\u53d7\u601d\u7ef4\u9650\u5236\u3002 2.&nbsp;&nbsp;&nbsp;\u66f4\u6709\u6548\u7387\u5730\u53bb\u5bfb\u627e\u3001\u8bc6\u522b\u548c\u5229\u7528\u6f0f\u6d1e\u3002 3.&nbsp;&nbsp;&nbsp;\u6709\u66f4\u591a\u7684\u65f6\u95f4\u53bb\u7814\u7a76\u590d\u6742\u7684\u6f0f\u6d1e\uff0c\u4f8b\u5982\u903b\u8f91\u6f0f\u6d1e\u3001\u67b6\u6784\u6f0f\u6d1e\u6216\u865a\u62df\u4e3b\u673a\u4f1a\u8bdd\u3002 4.&nbsp;&nbsp;&nbsp;\u5bf9\u66f4\u6709\u53ef\u80fd\u51fa\u73b0\u6f0f\u6d1e\u7684\u7ec4\u4ef6\u8fdb\u884c\u66f4\u591a\u6709\u9488\u5bf9\u6027\u7684\u6a21\u7cca\u6d4b\u8bd5\u3002 5.&nbsp;&nbsp;&nbsp;\u66f4\u597d\u5730\u53bb\u6f14\u793a\u6f0f\u6d1e\u5bf9\u76ee\u6807\u7cfb\u7edf\u7684\u5f71\u54cd\u3002 \u7814\u7a76\u4eba\u5458\u53ef\u6839\u636e\u81ea\u5df1\u7684\u9700\u8981\u6765\u8fdb\u884c\u5de5\u5177\u914d\u7f6e\uff0c\u5c31\u7b97\u4f60\u6ca1\u6709\u7f16\u7a0b\u7ecf\u9a8c\uff0c\u4f60\u4e5f\u53ef\u4ee5\u76f4\u63a5\u5728\u914d\u7f6e\u6587\u4ef6\u4e2d\u6dfb\u52a0\u7b80\u5355\u7684\u63d2\u4ef6\u6216\u6d4b\u8bd5\u9879\u76ee\u3002 \u529f\u80fd\u4ecb\u7ecd \u5feb\u901f\u6062\u590d\u80fd\u529b\uff1a\u5982\u679c\u67d0\u4e2a\u5de5\u5177\/\u6d4b\u8bd5\u76ee\u6807\u8ba9OWTF\u5d29\u6e83\u4e86\uff0c\u4f60\u53ef\u4ee5\u76f4\u63a5\u5207\u6362\u5230\u5176\u4ed6\u5de5\u5177\/\u6d4b\u8bd5\u83ab\u8868\uff0c\u5e76\u4fdd\u5b58\u90e8\u5206\u8f93\u51fa\u6570\u636e\u3002 \u7075\u6d3b\u6027\uff1a\u53ef\u968f\u65f6\u6682\u5b9a\u6216\u6062\u590d\u5de5\u4f5c\u3002 \u6d4b\u8bd5\u5206\u79bb\uff1aOWTF\u53ef\u4ee5\u5c06\u6d41\u91cf\u5206\u6210\u4e09\u79cd\u7c7b\u578b\u3002 Web\u63a5\u53e3\uff1a\u53ef\u8f7b\u677e\u7ba1\u7406\u5404\u79cd\u5927\u89c4\u6a21\u6e17\u900f\u6d4b\u8bd5\u3002 \u4ea4\u4e92\u6027\uff1a\u5de5\u5177\u9ad8\u5ea6\u53ef\u914d\u7f6e\uff0c\u63d0\u4f9b\u4e86\u5927\u91cfREST API\u3002 \u4ee3\u7801\u7f16\u8f91\uff1a\u63d0\u4f9b\u4e86\u76f8\u5173\u7684\u63d2\u4ef6\u7f16\u8f91\u5668\u3002 \u5de5\u5177\u8981\u6c42 OWTF\u53ef\u5728Kali Linux\u548cmacOS\u5e73\u53f0\u4e0a\u8fd0\u884c\uff0c\u4f46\u8be5\u5de5\u5177\u4e3b\u8981\u9488\u5bf9\u7684\u5e73\u53f0\u662fKali Linux\u6216\u5176\u4ed6Debian\u884d\u751f\u7248\u672c\u3002 OWTF\u652f\u6301Python 2\u548cPython 3\u3002 \u5de5\u5177\u5b89\u88c5 \u5f3a\u70c8\u5efa\u8bae\u5927\u5bb6\u4f7f\u7528virtualenv\u3002 \u624b\u52a8\u642d\u5efa\u6570\u636e\u5e93 \u66ff\u6362settings.py\u6587\u4ef6\u4e2ddb_name\u3001$db_user\u548c$db_pass\u53d8\u91cf\u7684\u503c\uff0c\u786e\u4fdd\u503c\u7684\u6b63\u786e\u6027\u3002\u63a5\u4e0b\u6765\uff0c\u5f00\u542fpostgreSQL\u670d\u52a1\u5668\uff1a macOS\uff1a brew install postgresql pg_ctl-D \/usr\/local\/var\/postgres start Kali\uff1a sudo systemctl enable postgresql sudo systemctl start postgresql sudo service postgresql start \u521b\u5efaowtf_db_user\u7528\u6237\uff1a macOS\uff1a psqlpostgres -c &#8220;CREATE USER $db_user WITH PASSWORD &#8216;$db_pass&#8217;;&#8221; Kali\uff1a sudo su postgres -c &#8220;psql -c \\&#8221;CREATE USER $db_user WITH PASSWORD&#8217;$db_pass&#8217;\\&#8221;&#8221; \u521b\u5efa\u6570\u636e\u5e93\uff1a macOS\uff1a psqlpostgres -c &#8220;CREATE DATABASE $db_name WITH OWNER $db_user ENCODING &#8216;utf-8&#8217;TEMPLATE template0;&#8221; Kali\uff1a sudo su postgres -c &#8220;psql -c \\&#8221;CREATE DATABASE $db_name WITH OWNER$db_user ENCODING &#8216;utf-8&#8217; TEMPLATE template0;\\&#8221;&#8221; \u514b\u9686\u9879\u76ee\uff1a pip install git+https:\/\/github.com\/owtf\/owtf#egg=owtf python setup.py develop \u6ce8\uff1a\u5982\u679c\u4f60\u60f3\u5728Windows\u6216macOS\u5e73\u53f0\u4e0a\u8fd0\u884cOWTF\u7684\u8bdd\uff0c\u4f60\u9700\u8981\u4f7f\u7528\u5230Docker Compose\uff0c\u8fd0\u884c\u547d\u4ee4\u201cmake compose\u201d\u4e4b\u540e\uff0c\u4f60\u53ef\u4ee5\u76f4\u63a5\u8bbf\u95eelocalhost:8009\u8fdb\u5165\u5230OWTF Web\u63a5\u53e3\u3002 \u5728OSX\u4e0a\u5b89\u88c5 \u4f9d\u8d56\uff1a\u5b89\u88c5Homebrew\u5e76\u6309\u7167\u4e0b\u5217\u6b65\u9aa4\u64cd\u4f5c\uff1a $virtualenv &lt;venv name&gt; $source &lt;venv name&gt;\/bin\/activate $brew install coreutils gnu-sed openssl # Weneed to install &#8216;cryptography&#8217; first to avoid issues $ pipinstall cryptography &#8211;global-option=build_ext &#8211;global-option=&#8221;-L\/usr\/local\/opt\/openssl\/lib&#8221;&#8211;global-option=&#8221;&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_eb_attr":"","footnotes":""},"categories":[95,80],"tags":[],"class_list":["post-2085","post","type-post","status-publish","format-standard","hentry","category-95","category-80"],"_links":{"self":[{"href":"https:\/\/oneai.eu.org\/index.php?rest_route=\/wp\/v2\/posts\/2085","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/oneai.eu.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/oneai.eu.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/oneai.eu.org\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/oneai.eu.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2085"}],"version-history":[{"count":1,"href":"https:\/\/oneai.eu.org\/index.php?rest_route=\/wp\/v2\/posts\/2085\/revisions"}],"predecessor-version":[{"id":2086,"href":"https:\/\/oneai.eu.org\/index.php?rest_route=\/wp\/v2\/posts\/2085\/revisions\/2086"}],"wp:attachment":[{"href":"https:\/\/oneai.eu.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2085"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/oneai.eu.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2085"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/oneai.eu.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2085"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}