python采集浏览器的cookie-python 采集网页
Time:2023-11-24 22:19:08
关于python采集浏览器的cookie的问题,我们总结了以下几点,给你解答:
python采集浏览器的cookie
上次分享了利用浏览器抓包获得 cookie 使爬虫可以突破网站的登录校验
python 爬虫如何突破登录验证
本文以 chrome 浏览器为例,演示如何读取浏览器存储在磁盘上的 cookie 用于爬虫
cookie 位置chrome 使用 sqlite 数据库保存 cookie 文件,数据库文件路径是 %LOCALAPPDATA%\Google\Chrome\User Data\Default\Cookies
echo %LOCALAPPDATA%\Google\Chrome\User Data\Default\CookiesC:\Users\refusea\AppData\Local\Google\Chrome\User Data\Default\Cookies用 sqlite 查看下表结构
# -*- coding: utf-8 -*-import osimport sqlite3if __name__ == '__main__': cookie_file = os.environ['LOCALAPPDATA']+ '\\Google\\Chrome\\User Data\\Default\\Cookies' conn = sqlite3.connect(cookie_file) cursor = conn.cursor() cursor.execute('select * from sqlite_master where type="table" and name="cookies"') for row in cursor: print(row) cursor.close() conn.close()cookie 表结构CREATE TABLE cookies( creation_utc INTEGER NOT NULL, host_key TEXT NOT NULL, name TEXT NOT NULL, value TEXT NOT NULL, path TEXT NOT NULL, expires_utc INTEGER NOT NULL, is_secure INTEGER NOT NULL, is_httponly INTEGER NOT NULL, last_access_utc INTEGER NOT NULL, has_expires INTEGER NOT NULL DEFAULT 1, is_persistent INTEGER NOT NULL DEFAULT 1, priority INTEGER NOT NULL DEFAULT 1, encrypted_value BLOB DEFAULT '', samesite INTEGER NOT NULL DEFAULT -1, source_scheme INTEGER NOT NULL DEFAULT 0, UNIQUE (host_key, name, path))各个字段含义没有找到文档,对照 chrome 的 cookie 查看界面倒也不难猜测
查看 cookie
以下 sql 就可以取到 baidu.com 域名下的 所有 cookie 了
select name, path, encrypted_value from cookies where host_key='.baidu.com'注意
cookie 的值是加密的,需要解密才能使用host_key 的值是 '.baidu.com',注意前面那个点解密 cookie根据密文的前几个字节判断加密方式
前 4 个字节是 `b'x01x00x00x00'`: DPAPI前 3 个字节是 `b'v10'`: AESDPAPI这是 windows 系统内置的一个数据保护接口,可对数据进行加解密的操作
AESAES 的密钥存放在 `%LOCALAPPDATA%\Google\Chrome\User Data\Local State`,该文件格式为 json
type "%LOCALAPPDATA%\Google\Chrome\User Data\Local State"密钥的路径是 /os_crypt/encrypted_key
AES 密钥
其值是 base64 编码的
以下给出从本机浏览器获取 cookie 的 python 代码实现供参考
# -*- coding: utf-8 -*-import sqlite3import osimport jsonimport base64from cryptography.hazmat.backends import default_backendfrom cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modesdef dpapi_decrypt(encrypted_value): import ctypes import ctypes.wintypes class DATA_BLOB(ctypes.Structure): _fields_ = [('cbData', ctypes.wintypes.DWORD), ('pbData', ctypes.POINTER(ctypes.c_char))] p = ctypes.create_string_buffer(encrypted_value, len(encrypted_value)) blobin = DATA_BLOB(ctypes.sizeof(p), p) blobout = DATA_BLOB() retval = ctypes.windll.crypt32.CryptUnprotectData( ctypes.byref(blobin), None, None, None, None, 0, ctypes.byref(blobout)) if not retval: raise ctypes.WinError() result = ctypes.string_at(blobout.pbData, blobout.cbData) ctypes.windll.kernel32.LocalFree(blobout.pbData) return resultdef aes_decrypt(encrypted_value): with open(os.path.join(os.environ['LOCALAPPDATA'], r"Google\Chrome\User Data\Local State"), mode="r", encoding='utf-8') as f: jsn = json.loads(str(f.readline())) encoded_key = jsn["os_crypt"]["encrypted_key"] encrypted_key = base64.b64decode(encoded_key.encode()) encrypted_key = encrypted_key[5:] key = dpapi_decrypt(encrypted_key) nonce = encrypted_value[3:15] cipher = Cipher(algorithms.AES(key), None, backend=default_backend()) cipher.mode = modes.GCM(nonce) decryptor = cipher.decryptor() return decryptor.update(encrypted_value[15:])def decrypt(encrypted_value): try: if encrypted_value[:4] == b'x01x00x00x00': value = dpapi_decrypt(encrypted_value) return value.decode() elif encrypted_value[:3] == b'v10': value = aes_decrypt(encrypted_value) return value[:-16].decode() except WindowsError: return Nonedef get_cookie_from_chrome(domain): file = os.path.join(os.environ['USERPROFILE'], r'AppData\Local\Google\Chrome\User Data\default\Cookies') conn = sqlite3.connect(file) cursor = conn.cursor() sql = "SELECT name, encrypted_value FROM cookies where host_key='{}'".format(domain) cursor.execute(sql) cookie = '' for row in cursor: value = row[1] if value is not None: name = row[0] value = decrypt(value) if value is not None: cookie += name + '=' + value + ';' cursor.close() conn.close() return cookieif __name__ == '__main__': print(get_cookie_from_chrome('.baidu.com'))使用方法,还是以 gitee 为例,如下
# -*- coding: utf-8 -*-import requestsfrom chrome_cookie import get_cookie_from_chromesession = requests.session()if __name__ == '__main__': headers = { 'Host': 'gitee.com', 'User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.75 Safari/537.36', 'Accept': 'application/json', 'Cache-Control': 'no-cache', 'Connection': 'keep-alive', } url = 'https://gitee.com/api/v3/internal/my_resources' result = session.get(url=url, headers=headers) headers['Cookie'] = get_cookie_from_chrome('.gitee.com') result = session.get(url=url, headers=headers) if result.status_code == 200: print('success: \n%s' % (result.text)) else: print(result.status_code)ok,现在做爬虫就简单了,再厉害的验证码也拦不住我了。。。只要用浏览器先登录即可,是不是很方便呢?
python 采集网页
测试环境:Windows10+Python3.5.2
打开命令提示符(管理员),输入pip3 install requests安装requests模块
import requests,re
#获取网页
r = requests.get('http://www.bilibili.com')
#正则表达式获取标题
res = re.search(r'<title>([^<]*)</title>',r.text)
print(res.group(1))
>>>哔哩哔哩弹幕视频网 - ( ゜- ゜)つロ 乾杯~ - bilibili
推荐:《pyspider 爬虫教程(二):ajax 和 http》——足兆叉虫
由于 ajax 实际上也是通过 http 传输数据的,所以我们可以通过 chrome developer tools 找到真实的请求,直接发起真实请求的抓取就可以获得数据了。
ajax 一般是通过 xmlhttprequest 对象接口发送请求的,xmlhttprequest 一般被缩写为 xhr。
python获取浏览器cookie
小意思给威硫清核十其, 使用正则表达说切分开来的
能否式看一下窝的网名啊,这种问题,日后也都能私聊