新增插件功能

Author: Tokeii0

extensions/__pycache__/base64_decoder.cpython-310.pyc

@@ -0,0 +1,26 @@
+import base64
+import re
+
+plugin_info = {
+    "title": "Base64解码", 
+    "description": "尝试解码文件中的Base64编码内容",
+    "usage": "选择一个文件,然后点击此插件",
+    "category": "CTF工具"
+}
+
+def run(file_path):
+    with open(file_path, 'r') as f:
+        content = f.read()
+    
+    base64_pattern = re.compile(r'(?:[A-Za-z0-9+/]{4})*(?:[A-Za-z0-9+/]{2}==|[A-Za-z0-9+/]{3}=)?')
+    matches = base64_pattern.findall(content)
+    
+    for match in matches:
+        if len(match) > 20:  # 忽略短字符串
+            try:
+                decoded = base64.b64decode(match).decode('utf-8')
+                print(f"原始Base64: {match[:20]}...")
+                print(f"解码结果: {decoded[:50]}...")
+                print("---")
+            except:
+                pass

extensions/__pycache__/example_plugin.cpython-310.pyc

@@ -0,0 +1,15 @@
+import hashlib
+
+plugin_info = {
+    "title": "文件哈希计算", 
+    "description": "计算文件的MD5, SHA1和SHA256哈希值",
+    "usage": "选择一个文件,然后点击此插件",
+    "category": "文件分析"
+}
+
+def run(file_path):
+    with open(file_path, 'rb') as f:
+        data = f.read()
+        print(f"MD5: {hashlib.md5(data).hexdigest()}")
+        print(f"SHA1: {hashlib.sha1(data).hexdigest()}")
+        print(f"SHA256: {hashlib.sha256(data).hexdigest()}")

extensions/__pycache__/file_analyzer.cpython-310.pyc

@@ -0,0 +1,33 @@
+import binascii
+
+plugin_info = {
+    "title": "文件头分析", 
+    "description": "分析文件头信息",
+    "usage": "选择一个文件,然后点击此插件",
+    "category": "文件分析"
+}
+
+def run(file_path):
+    with open(file_path, 'rb') as f:
+        header = f.read(16)
+    
+    print("文件头(十六进制):")
+    print(binascii.hexlify(header).decode())
+    
+    # 常见文件头签名
+    signatures = {
+        b'\x89PNG\r\n\x1a\n': 'PNG图像',
+        b'GIF87a': 'GIF图像(87a)',
+        b'GIF89a': 'GIF图像(89a)',
+        b'\xff\xd8\xff': 'JPEG图像',
+        b'PK\x03\x04': 'ZIP压缩文件',
+        b'MZ': 'Windows可执行文件',
+        b'%PDF': 'PDF文档'
+    }
+    
+    for sig, file_type in signatures.items():
+        if header.startswith(sig):
+            print(f"识别为: {file_type}")
+            return
+    
+    print("未识别的文件类型")

extensions/__pycache__/file_hash.cpython-310.pyc

@@ -0,0 +1,49 @@
+from plugin.NewtableWidget import NewtableWidget
+from plugin.QuicklyView import QuicklyView
+from PySide6.QtWidgets import QApplication
+import os
+import csv
+import chardet
+import traceback
+
+class OpenFile:
+    def __init__(self):
+        self.table_widget = None
+
+    def run(self, file_path):
+        print(f"文件分析器正在处理文件: {file_path}")
+        
+        file_size = os.path.getsize(file_path)
+        file_extension = os.path.splitext(file_path)[1]
+        
+        try:
+            with open(file_path, 'rb') as file:
+                raw_content = file.read(1000)
+            encoding = chardet.detect(raw_content)['encoding']
+            content = raw_content.decode(encoding or 'utf-8', errors='replace')
+        except Exception as e:
+            content = f"无法读取文件内容: {str(e)}"
+        
+        # 首先判断是否为CSV文件
+        if file_extension.lower() == '.csv':
+            try:
+                self.table_widget = NewtableWidget(file_path, f"CSV内容 - {os.path.basename(file_path)}")
+                self.table_widget.show()
+                print("CSV文件内容已在表格中显示")
+            except Exception as e:
+                print(f"无法解析CSV文件: {str(e)}")
+                traceback.print_exc()
+        else:
+            try:
+                quick_view = QuicklyView(f"文件内容预览 - {os.path.basename(file_path)}")
+                quick_view.load_file_content(file_path)
+                QApplication.instance().processEvents()
+                quick_view.show_and_exec()
+                print("文件内容预览已在新窗口中打开")
+            except Exception as e:
+                print(f"显示 QuicklyView 时发生错误：{str(e)}")
+                traceback.print_exc()
+        
+        print(f"文件大小: {file_size} 字节")
+        print(f"文件扩展名: {file_extension}")
+        print("文件分析器执行完毕")

extensions/__pycache__/file_header_analyzer.cpython-310.pyc

@@ -0,0 +1,16 @@
+from extensions.front.openfile import OpenFile # 调用快速
+
+
+plugin_info = {
+    "title": "快速打开文件", 
+    "description": "快速打开文件",
+    "usage": "选择一个文件,然后点击此插件",
+    "category": "文件操作"
+}
+
+
+file_analyzer = OpenFile()
+
+def run(file_path):
+    file_analyzer.run(file_path)
+

extensions/__pycache__/quick_open.cpython-310.pyc

@@ -0,0 +1,29 @@
+from PIL import Image
+import binascii
+
+plugin_info = {
+    "title": "隐写术检测", 
+    "description": "检测图片中可能存在的隐写内容",
+    "usage": "选择一个图片文件,然后点击此插件",
+    "category": "CTF工具"
+}
+
+def run(file_path):
+    try:
+        with Image.open(file_path) as img:
+            # 检查LSB
+            pixels = list(img.getdata())
+            lsb = ''.join([bin(p)[-1] for p in pixels[:100]])
+            print("前100像素的LSB:")
+            print(lsb)
+            
+            # 检查EXIF数据
+            exif = img._getexif()
+            if exif:
+                print("EXIF数据:")
+                for tag_id, value in exif.items():
+                    print(f"{tag_id}: {value}")
+            else:
+                print("没有EXIF数据")
+    except Exception as e:
+        print(f"分析图片时出错: {str(e)}")

extensions/__pycache__/steganography_detector.cpython-310.pyc

@@ -0,0 +1,18 @@
+import re
+
+plugin_info = {
+    "title": "字符串提取", 
+    "description": "从文件中提取可打印字符串",
+    "usage": "选择一个文件,然后点击此插件",
+    "category": "文件分析"
+}
+
+def run(file_path):
+    with open(file_path, 'rb') as f:
+        content = f.read()
+    
+    strings = re.findall(b'[\x20-\x7E]{4,}', content)
+    print("提取的字符串:")
+    for s in strings[:20]:  # 只打印前20个字符串
+        print(s.decode())
+    print(f"总共提取了 {len(strings)} 个字符串")

extensions/__pycache__/string_extractor.cpython-310.pyc

@@ -0,0 +1,69 @@
+import zipfile
+import os
+
+# 插件信息字典,包含插件的基本信息
+plugin_info = {
+    "title": "解压文件",  # 插件标题
+    "description": "解压ZIP、RAR等压缩文件",  # 插件描述
+    "usage": "选择一个压缩文件,然后点击此插件",  # 使用说明
+    "category": "文件操作"  # 插件类别
+}
+
+def run(file_path):
+    """
+    插件的主要执行函数
+    
+    参数:
+    file_path (str): 要处理的文件的路径
+    
+    返回:
+    None
+    """
+    # 检查文件是否存在
+    if not os.path.exists(file_path):
+        print(f"错误: 文件 {file_path} 不存在")
+        return
+
+    # 获取文件扩展名
+    _, file_extension = os.path.splitext(file_path)
+    
+    # 根据文件扩展名选择相应的解压方法
+    if file_extension.lower() == '.zip':
+        extract_zip(file_path)
+    else:
+        print(f"不支持的文件类型: {file_extension}")
+
+def extract_zip(file_path):
+    """
+    解压ZIP文件
+    
+    参数:
+    file_path (str): ZIP文件的路径，即文件槽内文件路径
+    
+    返回:
+    None
+    """
+    try:
+        # 创建输出目录
+        output_dir = os.path.join('output', 'extracted_files')
+        os.makedirs(output_dir, exist_ok=True)
+        
+        # 解压文件
+        with zipfile.ZipFile(file_path, 'r') as zip_ref:
+            zip_ref.extractall(output_dir)
+        
+        print(f"文件已成功解压到: {output_dir}")
+        
+        # 列出解压后的文件
+        print("解压的文件列表:")
+        for root, dirs, files in os.walk(output_dir):
+            for file in files:
+                print(os.path.join(root, file))
+    
+    except zipfile.BadZipFile:
+        print("错误: 无效的ZIP文件")
+    except Exception as e:
+        print(f"解压过程中发生错误: {str(e)}")
+
+# 注意: 如果需要支持其他类型的压缩文件(如RAR),
+# 可以添加相应的解压函数并在run()中调用