{"id":13574775,"url":"https://github.com/Le0nsec/SecCrawler","last_synced_at":"2025-04-04T18:32:03.346Z","repository":{"id":39893938,"uuid":"438181431","full_name":"Le0nsec/SecCrawler","owner":"Le0nsec","description":"一个方便安全研究人员获取每日安全日报的爬虫和推送程序，目前爬取范围包括先知社区、安全客、Seebug Paper、跳跳糖、奇安信攻防社区、棱角社区以及绿盟、腾讯玄武、天融信、360等实验室博客，持续更新中。","archived":false,"fork":false,"pushed_at":"2023-12-24T16:26:56.000Z","size":116,"stargazers_count":891,"open_issues_count":13,"forks_count":143,"subscribers_count":13,"default_branch":"master","last_synced_at":"2024-11-05T10:44:39.904Z","etag":null,"topics":["anquanke","bot","crawler","security","seebug","xianzhi"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Le0nsec.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-12-14T08:53:08.000Z","updated_at":"2024-11-01T14:25:38.000Z","dependencies_parsed_at":"2024-11-05T10:57:15.326Z","dependency_job_id":null,"html_url":"https://github.com/Le0nsec/SecCrawler","commit_stats":null,"previous_names":[],"tags_count":8,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Le0nsec%2FSecCrawler","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Le0nsec%2FSecCrawler/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Le0nsec%2FSecCrawler/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Le0nsec%2FSecCrawler/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Le0nsec","download_url":"https://codeload.github.com/Le0nsec/SecCrawler/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247229631,"owners_count":20905090,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["anquanke","bot","crawler","security","seebug","xianzhi"],"created_at":"2024-08-01T15:00:54.590Z","updated_at":"2025-04-04T18:32:03.013Z","avatar_url":"https://github.com/Le0nsec.png","language":"Go","funding_links":[],"categories":["其他_安全与渗透","Go"],"sub_categories":["网络服务_其他"],"readme":"\u003ch1 align=\"center\"\u003e\nSecCrawler\n\u003c/h1\u003e\n\n\n![SecCrawler](https://socialify.git.ci/Le0nsec/SecCrawler/image?font=Inter\u0026language=1\u0026logo=https%3A%2F%2Favatars.githubusercontent.com%2Fu%2F66706544\u0026owner=1\u0026pattern=Floating%20Cogs\u0026theme=Dark)\n\n\u003ch4 align=\"center\"\u003e\n一个方便安全研究人员获取每日安全日报的爬虫和推送程序，目前爬取范围包括先知社区、安全客、Seebug Paper、跳跳糖、奇安信攻防社区、棱角社区以及绿盟、腾讯玄武、天融信、360等实验室博客，持续更新中。\n\u003c/h4\u003e\n\n\u003cp align=\"center\"\u003e\n  \u003ca href=\"https://github.com/Le0nsec/SecCrawler/issues\"\u003e\n    \u003cimg src=\"https://img.shields.io/github/issues/Le0nsec/SecCrawler?style=flat-square\"\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://github.com/Le0nsec/SecCrawler/network/members\"\u003e\n    \u003cimg src=\"https://img.shields.io/github/forks/Le0nsec/SecCrawler?style=flat-square\"\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://github.com/Le0nsec/SecCrawler/stargazers\"\u003e\n    \u003cimg src=\"https://img.shields.io/github/stars/Le0nsec/SecCrawler?style=flat-square\"\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://github.com/Le0nsec/SecCrawler/blob/master/LICENSE\"\u003e\n    \u003cimg src=\"https://img.shields.io/github/license/Le0nsec/SecCrawler?style=flat-square\"\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://github.com/RichardLitt/standard-readme\"\u003e\n    \u003cimg src=\"https://img.shields.io/badge/readme%20style-standard-brightgreen.svg?style=flat-square\"\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://github.com/Le0nsec/SecCrawler/releases\"\u003e\n    \u003cimg src=\"https://img.shields.io/github/v/release/Le0nsec/SecCrawler?include_prereleases\u0026style=flat-square\"\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://github.com/Le0nsec/SecCrawler/releases\"\u003e\n    \u003cimg src=\"https://img.shields.io/github/downloads/Le0nsec/SecCrawler/total?color=red\u0026style=flat-square\"\u003e\n  \u003c/a\u003e  \n\u003c/p\u003e\n\n\n\n\n## Table of Contents\n\n- [Introduction](#introduction)\n   - [Usage](#usage) \n   - [守护进程](#守护进程配置)\n   - [API](#api) \n   - [先知社区相关配置说明](#先知社区相关配置说明) \n   - [ChromeDriver](#chromedriver) \n   - [微信或QQ推送群](#微信或QQ推送群)\n- [Features](#features)\n- [Install](#install)\n- [Config](#config)\n- [Demo](#demo)\n- [Contributing](#contributing)\n- [License](#license)\n\n\n## Introduction\n\nSecCrawler 是一个跨平台的方便安全研究人员获取每日安全日报的爬虫和机器人推送程序，目前爬取范围包括先知社区、安全客、Seebug Paper、跳跳糖、奇安信攻防社区、棱角社区，机器人推送范围包括企业微信机器人、飞书机器人、钉钉机器人、Server酱、HexQBot（QQ群机器人）、WgpSecBot（微信机器人），持续更新中。\n\n### Usage\n\n程序使用yml格式的配置文件，第一次使用时请使用`-init`参数在当前文件夹生成默认配置文件，在配置文件中设置爬取的网站和推送机器人相关配置，目前包括在内的网站和推送的机器人在[Features](#features)中可以查看，可以设置每日推送的整点时间以及是否开启API。\n\n```text\n\n  _____            _____                    _           \n / ____|          / ____|                  | |          \n| (___   ___  ___| |     _ __ __ ___      _| | ___ _ __ \n \\___ \\ / _ \\/ __| |    | '__/ _  \\ \\ /\\ / / |/ _ \\ '__|\n ____) |  __/ (__| |____| | | (_| |\\ V  V /| |  __/ |   \n|_____/ \\___|\\___|\\_____|_|  \\__,_| \\_/\\_/ |_|\\___|_|   \t\t\t\t\t\t\t  \nSecCrawler dev\n\nOptions:\n  -c file\n    \tthe config file to be used, or generate a config file with the specified name with -init (default \"config.yml\")\n  -help\n    \tprint help info\n  -init\n    \tgenerate a config file\n  -test\n    \tstop after running once\n  -version\n    \tprint version info\n\n```\n\n- 使用`-h/-help`查看详细命令\n- 使用`-c`指定使用的配置文件，或者在生成配置文件时配合`-init`生成指定文件名的配置文件\n- 使用`-test`参数执行一次程序后退出\n- 使用`-version`输出详细版本信息\n\n如果开启了定时任务（Cron），程序使用定时任务每天根据设置好的时间整点自动运行，编辑好相关配置后后台运行即可。\n\n简单运行命令：\n\n```sh\n$ nohup ./SecCrawler \u003e\u003e run.log 2\u003e\u00261 \u0026\n```\n\n或者使用screen\n\n```sh\n$ screen ./SecCrawler\n$ ctrl a+d / control a+d # 回到主会话\n```\n\n如果长期使用，建议配置[守护进程](#守护进程配置)。\n### 守护进程配置\n\n首先执行`vim /etc/systemd/system/SecCrawler.service`输入以下内容：\n\n```\n[Unit]\nDescription=SecCrawler\nAfter=network.target\n \n[Service]\nType=simple\nWorkingDirectory=\u003cSecCrawler Path\u003e\nExecStart=\u003cSecCrawler Path\u003e/SecCrawler -c config.yml\nRestart=on-failure\n \n[Install]\nWantedBy=multi-user.target\n```\n\n其中`\u003cSecCrawler Path\u003e`为SecCrawler可执行文件存放的路径。\n\n保存后执行`systemctl daemon-reload`，现在你就可以使用以下命令来管理程序了：\n\n- 启动: systemctl start SecCrawler\n- 关闭: systemctl stop SecCrawler\n- 自启: systemctl enable SecCrawler\n- 状态: systemctl status SecCrawler\n- 重启: systemctl restart SecCrawler\n- **查看日志**: journalctl -u SecCrawler\n\n\n\n程序旨在帮助安全研究者自动化获取每日更新的安全文章，适用于每日安全日报推送，爬取的安全社区网站范围和支持推送的机器人持续增加中，欢迎在[issues](https://github.com/Le0nsec/SecCrawler/issues)中提供宝贵的建议。\n\n\n:rocket: 目前 SecCrawler 已在MacOS Apple silicon 、Ubuntu 20.04运行测试通过。\n### API\n\nSecCrawler提供了Web API，配合其他工具可以主动调用API进行爬取或推送。\n\n- [API文档](https://www.apifox.cn/apidoc/shared-b613c4fc-56a6-4724-831f-4c1ac5547ab5)\n- 注意请求API需要带上Authorization头，在配置文件中配置`auth`值\n- 若想为API配置证书，可使用[nginx](https://www.nginx.com/)等反向代理工具实现。\n\n### 先知社区相关配置说明\n\n先知安全社区设置有反爬措施，官方RSS需要使用 Selenium 调用浏览器进行渲染，SecCrawler 提供了两种方法：\n\n- 配置文件中`XianZhi.UseChromeDriver`设置为true：使用 Selenium 调用浏览器渲染，需要用户自行下载对应版本的`ChromeDriver`和`Chrome`，并且在配置文件中指定`ChromeDriver`的路径\n\n- `XianZhi.UseChromeDriver`设置为false：需要用户设置`XianZhi.CustomRSSURL`为无反爬措施的先知社区RSS镜像站地址，如https://xianzhi2rss.xlab.app/feed.xml （笔者不保证无害，这里只做示例，请自行判断是否使用）\n\n### ChromeDriver\n\nChromeDriver镜像站：http://npm.taobao.org/mirrors/chromedriver/\n\n\n- Windows和Mac用户在[下载Chrome](https://www.google.cn/chrome/)并安装后，下载对应chrome版本的ChromeDriver并在配置文件`config.yml`中指定ChromeDriver的路径\n- Linux用户在下载Chrome（链接如下）并安装后，同上编辑配置文件\n    - [Debian/Ubuntu(64位.deb)](https://dl.google.com/linux/direct/google-chrome-stable_current_amd64.deb)\n    - [Fedora/openSUSE(64位.rpm)](https://dl.google.com/linux/direct/google-chrome-stable_current_x86_64.rpm)\n\n\n\u003e Chrome浏览器可以访问`chrome://version/`查看版本\n\n\u003e 命令行可以使用`google-chrome-stable --version`查看版本\n\n### 微信或QQ推送群\n\n如果不想自己配置环境，只想获取每日推送，可以扫码加推送群：\n\n如果微信群二维码失效或者人数已满，可以添加微信号：WgpSecBot，然后私聊发送 SecCrawler 进群。\n\n\u003cimg src=\"https://user-images.githubusercontent.com/66706544/161177856-28747b34-c6bc-4048-8ec4-1f3ae7ad1452.jpg\" width = \"300\" alt=\"\" align=center /\u003e\u003cimg src=\"https://user-images.githubusercontent.com/66706544/161190566-96e23bb6-c7f8-4811-a52c-fc175b341cfc.jpg\" width = \"300\" alt=\"\" align=center /\u003e\n\n\n## Features\n\n支持的爬取网站列表：\n\n- [x] [先知安全社区](https://xz.aliyun.com/)\n- [x] [安全客](https://www.anquanke.com/knowledge) (安全知识专区)\n- [x] [Seebug Paper](https://paper.seebug.org/)\n- [x] [棱角安全社区](https://forum.ywhack.com/forum-59-1.html)\n- [x] [跳跳糖](https://tttang.com/)\n- [x] [奇安信攻防社区](https://forum.butian.net/community/all/newest)\n- [x] [火线Zone](zone.huoxian.cn)\n- [x] ~~[洞见微信聚合](http://wechat.doonsec.com/)~~ 暂时注释，有需要可自行编译\n- [x] 实验室\n  - [x] [Noah Lab](http://noahblog.360.cn/)\n  - [x] [360 核心安全技术博客](https://blogs.360.net/)\n  - [x] [绿盟科技技术博客](http://blog.nsfocus.net/)\n  - [x] [腾讯安全玄武实验室](https://xlab.tencent.com/)\n  - [x] [天融信阿尔法实验室](http://blog.topsec.com.cn)\n  - [x] [360 Netlab](https://blog.netlab.360.com/)\n  - [x] [斗象能力中心](https://blog.riskivy.com/)\n  - [x] [腾讯安全响应中心](https://security.tencent.com/index.php/blog)\n  - [x] [南京邮电大学小绿草信息安全实验室](https://ctf.njupt.edu.cn/)\n  \n\n支持的推送机器人列表：\n\n- [x] [企业微信群机器人](https://work.weixin.qq.com/api/doc/90000/90136/91770)\n- [x] [HexQBot](https://github.com/Am473ur/HexQBot) (QQ群机器人 自建)\n- [x] [Server酱](https://sct.ftqq.com/)\n- [x] [飞书群机器人](https://open.feishu.cn/document/ukTMukTMukTM/ucTM5YjL3ETO24yNxkjN)\n- [x] [钉钉群机器人](https://open.dingtalk.com/document/robots/custom-robot-access)\n- [x] [WgpSecBot](https://bot.wgpsec.org)\n- [ ] [pushplus](http://pushplus.hxtrip.com/)\n\n## Install\n\n你可以在[Releases](https://github.com/Le0nsec/SecCrawler/releases)下载最新的SecCrawler。\n\n\n或者从源码编译：\n\n\n```sh\n$ git clone https://github.com/Le0nsec/SecCrawler.git\n$ cd SecCrawler\n$ go build .\n```\n\n\n## Config\n`config.yml`配置文件模板注释：\n\n```yml\n# 设置Selenium使用的ChromeDriver路径，支持相对路径或绝对路径（如果不爬取先知社区可以不用设置）\nChromeDriver: ./chromedriver/linux64\n\nProxy:\n  ProxyUrl: http://127.0.0.1:7890 # 代理地址，支持http/https/socks协议\n  CrawlerProxyEnabled: false # 是否开启爬虫代理\n  BotProxyEnabled: false # 是否开启请求机器人代理\n\nCron:\n  enabled: false # 是否开启定时任务，开启后每天按照指定的时间爬取并推送\n  time: 11 # 设置定时任务每天整点爬取推送时间，范围 0 ~ 23（整数）\n\nApi:\n  enabled: false # 是否开启API\n  debug: false # 是否开启Gin-DEBUG模式\n  host: 127.0.0.1\n  port: 8080\n  auth: auth_key_here # 请求api需要带上Authorization头\n\nCrawler:\n  # 棱角社区\n  # https://forum.ywhack.com/forum-59-1.html\n  EdgeForum:\n    enabled: false\n  # 先知安全技术社区\n  # https://xz.aliyun.com/\n  XianZhi:\n    enabled: false\n    UseChromeDriver: true # 是否使用selenium调用浏览器爬取，设置为true需要指定ChromeDriver地址，为false需要指定没有反爬措施的自定义网址CustomRSSURL\n    CustomRSSURL: \"\"\n  # SeebugPaper（知道创宇404实验室）\n  # https://paper.seebug.org/\n  SeebugPaper:\n    enabled: false\n  # 安全客\n  # https://www.anquanke.com/\n  Anquanke:\n    enabled: false\n  # 跳跳糖\n  # http://tttang.com/\n  Tttang:\n    enabled: false\n  # 奇安信攻防社区\n  # https://forum.butian.net/community/all/newest\n  QiAnXin:\n    enabled: false\n  # 洞见微信聚合\n  # http://wechat.doonsec.com/\n  # DongJian:\n  #   enabled: false\n  Lab:\n    enabled: true # 是否开启各大实验室文章爬取\n    NoahLab:\n      enabled: true\n    Blog360:\n      enabled: true\n    Nsfocus:\n      enabled: true\n    Xlab:\n      enabled: true\n    AlphaLab:\n      enabled: true\n    Netlab:\n      enabled: true\n    RiskivyBlog:\n      enabled: true\n    TSRCBlog:\n      enabled: true\n    X1cT34m:\n      enabled: true\nBot:\n  # 企业微信群机器人\n  # https://work.weixin.qq.com/api/doc/90000/90136/91770\n  WecomBot:\n    enabled: false\n    key: xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx\n    timeout: 2\n  # 飞书群机器人\n  # https://open.feishu.cn/document/ukTMukTMukTM/ucTM5YjL3ETO24yNxkjN\n  FeishuBot:\n    enabled: false\n    key: xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx\n    timeout: 2\n  # 钉钉群机器人\n  # https://open.dingtalk.com/document/robots/custom-robot-access\n  DingBot:\n    enabled: false\n    token: xxxxxxxxxxxxxxxxxxxx\n    timeout: 2\n  # HexQBot\n  # https://github.com/Am473ur/HexQBot\n  HexQBot:\n    enabled: false\n    api: http://xxxxxx.com/send\n    qqgroup: 0\n    key: xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx\n    timeout: 2\n  # Server酱\n  # https://sct.ftqq.com/\n  ServerChan:\n    enabled: false\n    sendkey: xxxxxxxxxxxxxxxxxxxx\n    timeout: 2\n  # WgpSecBot\n  # https://bot.wgpsec.org/\n  WgpSecBot:\n    enabled: false\n    key: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx\n    timeout: 2\n\n```\n\n## Demo\n\n\u003cp align=\"center\"\u003e\n  \u003cimg src=\"https://user-images.githubusercontent.com/66706544/146009777-d64c1ae8-03b6-4da3-82ff-a4a47b17dcf9.png\" /\u003e\n  \u003cimg src=\"https://user-images.githubusercontent.com/66706544/154257622-6d8bb37e-e312-48b8-a4f3-96b145a32555.png\" /\u003e\n\u003c/p\u003e\n\n\n## Contributing\n\n\n如果您有高质量的安全社区网站希望被爬取，或者想推荐被广泛使用的推送机器人，欢迎联系我微信和邮箱：`leonsec[at]h4ck.fun`或提交[issue](https://github.com/Le0nsec/SecCrawler/issues)和[PR](https://github.com/Le0nsec/SecCrawler/pulls)。\n\n\n\u003cimg src=\"https://user-images.githubusercontent.com/66706544/155312764-6baef289-7490-43f7-a64f-48b576ab6675.jpg\" width = \"300\" alt=\"\" align=center /\u003e\n\n\n\n\n## License\n\n\n[GNU General Public License v3.0](https://github.com/Le0nsec/SecCrawler/blob/master/LICENSE)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FLe0nsec%2FSecCrawler","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FLe0nsec%2FSecCrawler","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FLe0nsec%2FSecCrawler/lists"}