|
|
|
This thread is locked; no one can reply to it.
|
1
2
|
| Script kiddies! |
|
Chris Katko
Member #1,881
January 2002
 |
Post useful scripts for Windows/Linux that you've written! I was working on one last night that uses nbtscan (NetBIOS scan, Win/Linux) to scan for all computers on a network, show their workgroup, and mac address. This way I can easily tell how many computers are NOT joined to the domain like they should be. It computes the network range/CIDR from your IP and subnet and then runs nbtscan and then parses the output. I could also run nmap the same way. I just went back and used "here documents" to embed the supporting AWK scripts into the bash script. Pretty fun stuff. 1# State restoration
2# ==========================================================
3
4OLDIFS=$IFS
5
6# Embedded support progams
7# ==========================================================
8
9
10#AWK 1 - get cidr range from netmask
11#---------------------------------------------
12# read, set display name to '',
13read -d '' awk_range << 'EOF'
14BEGIN {
15FS = "."
16}
17
18{}
19
20END {
21cidr_range=0
22
23for (i=1; i<=NF; i++)
24 {
25# print "trying " $i " in " i " of " NF
26 if($i=="128"){
27 cidr_range+=1
28 }
29 if($i=="192"){
30 cidr_range+=2
31 }
32 if($i=="224"){
33 cidr_range+=3
34 }
35 if($i=="240"){
36 cidr_range+=4
37 }
38 if($i=="248"){
39 cidr_range+=5
40 }
41 if($i=="252"){
42 cidr_range+=6
43 }
44 if($i=="254"){
45 cidr_range+=7
46 }
47 if($i=="255"){
48 cidr_range+=8
49 }
50 }
51
52print cidr_range
53}
54EOF
55
56
57#awk 2 - parse nbtscan output
58#---------------------------------------------
59read -d '' awk_nbtscan << 'EOF'
60BEGIN { FS = ","}
61
62{
63 ip[$1] = $1 #NOTE, we use IP to access each
64
65 field[$1] = $2
66 value[$1] = $3
67
68 data[$1]["ip"] = $1
69
70 if($3 == "Workstation Service")
71 {
72 data[$1]["hostname"] = $2
73 }
74
75 if($3 == "Domain Name")
76 {
77 data[$1]["domainname"] = $2
78 }
79
80 if($2 == "MAC")
81 {
82 data[$1]["mac"] = $3
83 }
84}
85END {
86 for(x in ip){
87 print data[x]["ip"] " - " data[x]["hostname"] " - " data[x]["domainname"] " - " data[x]["mac"]
88 }
89
90}
91EOF
92
93
94# BEGIN PROGRAM
95# ============================================================
96
97#echo "255.255.128.0" | awk "$awk1"
98#nbtscan -vh -s, 192.168.1.1-254 | awk "$awk2"
99
100
101#grab the IP and netmask from ifconfig
102#-----------------------------------------
103
104
105if [ $# -eq 0 ]; then
106 echo "Using default, hardcoded interface wlan0."
107 interface="wlan0"
108else
109 interface="$1"
110fi
111
112echo "Using interface [$interface]"
113
114ip=`ifconfig $interface | egrep -oe 'inet addr:([[:digit:]]{1,3}.){3}[[:digit:]]{1,3}' | awk -F: '{print $2}'`
115
116netmask=`ifconfig $interface | egrep -oe 'Mask:([[:digit:]]{1,3}.){3}[[:digit:]]{1,3}' | awk -F: '{print $2}'`
117
118
119IFS=. read -r i1 i2 i3 i4 <<< "$ip"
120IFS=. read -r m1 m2 m3 m4 <<< "$netmask"
121network=`printf "%d.%d.%d.%d\n" "$((i1 & m1))" "$((i2 & m2))" "$((i3 & m3))" "$((i4 & m4))"`
122
123echo "ip=$ip"
124echo "netmask=$netmask"
125echo "network=$network"
126
127#Return only the network range
128#-----------------------------------------
129
130
131range=`echo "$netmask" | awk "$awk_range"`
132cidr="$network/$range"
133output=`nbtscan -vh -s, $cidr | awk "$awk_nbtscan"`
134echo "range=$range"
135echo "cidr=$cidr"
136echo "$output"
137
138IFS=$OLDIFS
Output is: Using default, hardcoded interface wlan0. Using interface [wlan0] ip=192.168.1.175 netmask=255.255.255.0 network=192.168.1.0 192.168.1.0 Sendto failed: Permission denied 192.168.1.255 Sendto failed: Permission denied range=24 cidr=192.168.1.0/24 192.168.1.196 - HPD1AA8C - MSHOME - 00:00:00:00:00:00 192.168.1.147 - TITAN - WORKGROUP - 00:af:86:22:11:a7 192.168.1.175 - SATURN - WORKGROUP - 00:00:00:00:00:00 Basically, you just run the script (optionally give it the interface name you want to use, wlan0 is default) and it'll grab your network information, compute a proper CIDR / network range (without needing another app), and then pipe that to nbtscan. I might add nmap later. Previously, I used ipcalc (another apt-get package) to produce the CIDR but it was fun replacing it with another awk script. -----sig: |
|
furinkan
Member #10,271
October 2008
 |
I have a post-install script that adds a basic set of tools on an Ubuntu or Linux Mint. Warning, this installs PHP 7. https://gist.github.com/derrekbertrand/7668a695911260dee0c8 Mounts a folder on a remote host using sshfs, pokes it every minute to make sure the connection doesn't break. Honestly, I've stopped having a need for this, as I've changed workflows. https://gist.github.com/derrekbertrand/8911d178ebe23b15670c I also have this which provisions an account on a server with nginx for the Laravel framework (mostly). Mainly for my internal use. |
|
bamccaig
Member #7,536
July 2006
 |
I need to learn awk someday. That's one tool that I'm lacking. All I know is "{print $1}" where $1 is a positional field in the input. I do know Perl though which is probably more powerful, featureful, and clean; so I would generally rely on that, but having awk would be nice when perl isn't available. When possible, you should prefer [[ over [ because it's smarter (less quoting required). I would generally quote the right-hand side of a variable assignment unless I know it can't possibly contain white-space (e.g., static value). In the case of a variable or a subcommand I'd quote it just to be safe. Generally with UNIX-like scripting language quotes nest properly without thinking too hard about it. In Windows, I'm sure you're aware that it's a brainfuck... You just taught me about here-strings! I don't particularly have any scripts in mind at this time. Much of my scripting ends up in my rc repo: https://github.com/bambams/rc (i.e., .bash.d.source, .bash.d). Depending on context I sometimes put them into other repos. For example, git and mercurial scripts have their own repos. Those tend to be very ugly and hacky scripts that go stale if they aren't practical. Here's an example of a simple script that defines a function which allows me to interact with wifi connection settings from a machine that doesn't have automatic wifi setup. It was written for my EeePC netbook running a basic Debian system that booted into text mode where I'd start X manually running xmonad as the window manager. With some magic in /etc/sudoers I was allowed to change a symlink in /etc/network/interfaces.d without a password which is where I'd manually add configuration for networks I knew about and used (generally, only home, and places I'd spend the night). Since I am always working from a command line I generally wrap repetitive tasks into a smart command such as this so that I can type a lot less and don't have to remember the intricate details.
1wifi() {
2 local interface=wlan0;
3 local dir="/etc/network/interfaces.d";
4 local symlink="${dir}/${interface}";
5
6 export WIFI_DEFAULT_NETWORK="${WIFI_DEFAULT_NETWORK:-tiny-bronco}";
7 export WIFI_NETWORK_PATH="${WIFI_NETWORK_PATH:-$HOME/.network.wlan0}";
8
9 local current="$(cat "$WIFI_NETWORK_PATH")";
10
11 case "$1" in
12 connect|on|up)
13 sudo /sbin/ifup "$interface";
14 ;;
15 disconnect|down|off)
16 sudo /sbin/ifdown "$interface";
17 ;;
18 goto|switch|use)
19 local network="${2:-WIFI_DEFAULT_NETWORK}";
20 local path="${dir}/${network}.${interface}";
21
22 sudo ln -fs "$path" "$symlink" || return 1;
23
24 if [[ $network != $current ]]; then
25 echo "Changing to $network.";
26 echo -n "$network" > "$WIFI_NETWORK_PATH";
27 wifi off;
28 wifi on;
29 fi;
30 ;;
31 list|ls)
32 sudo ls "${dir}/" | sed -e 's/\.wlan0\b//g';
33 ;;
34 query|which)
35 echo "$current";
36 ;;
37 re|restart|reup)
38 wifi off && wifi on;
39 ;;
40 st|status)
41 /sbin/ifconfig "$interface";
42 ;;
43 *|'?'|help)
44 cat <<USAGE | "${PAGER:-less}";
45wifi [SUBCOMMAND] [ARG...]
46
47Subcommands:
48
49 connect (alias: on, up)
50
51 Args: none.
52
53 Attempt to connect the wireless interface using
54 the selected configuration.
55
56 disconnect (alias: down, off)
57
58 Args: none.
59
60 Attempt to disconnect the wireless interface.
61
62 goto (alias: switch, use)
63
64 Args: configuration file name (excluding the extension).
65
66 Change the selected configuration. Configurations
67 must already exist within the configuration
68 directory ($dir).
69
70 If the configuration is changed then we
71 automatically attempt to disconnect from an
72 existing interface and connect using the new
73 configuration.
74
75 help (alias: ?) (default)
76
77 Args: none.
78
79 Print this message to the pager (default pager:
80 less).
81
82 list (alias: ls)
83
84 Args: none.
85
86 List available configurations.
87
88 query (alias: which)
89
90 Args: none.
91
92 Print the name of the currently selected
93 configuration (if known).
94
95 restart (alias: re, reup)
96
97 Args: none.
98
99 Disconnect and connect.
100
101 status (alias: st)
102
103 Args: none.
104
105 Print the ifconfig(1) of the network interface.
106 The format is not defined by this command. It is a
107 simple shell-out (as are most commands).
108USAGE
109 ;;
110 esac;
111};
-- acc.js | al4anim - Allegro 4 Animation library | Allegro 5 VS/NuGet Guide | Allegro.cc Mockup | Allegro.cc <code> Tag | Allegro 4 Timer Example (w/ Semaphores) | Allegro 5 "Winpkg" (MSVC readme) | Bambot | Blog | C++ STL Container Flowchart | Castopulence Software | Check Return Values | Derail? | Is This A Discussion? Flow Chart | Filesystem Hierarchy Standard | Clean Code Talks - Global State and Singletons | How To Use Header Files | GNU/Linux (Debian, Fedora, Gentoo) | rot (rot13, rot47, rotN) | Streaming |
|
Gideon Weems
Member #3,925
October 2003
|
bamccaig said: I need to learn awk someday. That's one tool that I'm lacking. Same here. I've always been able to get by with bash, Python, and of course non-awk coreutils... I know there are a few sed/grep lines I've written that would have been more elegant with awk. Maybe someday. I have no scripts good for sharing, but I would like to share a simple tip: Check out the zenity, dialog, and osd_cat packages of your distribution. |
|
Chris Katko
Member #1,881
January 2002
|
I always put off awk till last night. It's actually super easy and has a C-like syntax. You have: START {} Where start and end are optional header/footer blocked executed once before and after. Otherwise, everything is executed per field. You can set up the field-separator (FS) to be whitespace (default), or commas or dots, etc. There are some strange things. $0 is the whole line. $1 is the first field. $2 the second. HOWEVER, variables do NOT have dollar signs like bash. Dollar signs are only for special fields. I kept running into problems with that initially. NF is number of fields, hence the for loop between 1 and the number of fields (0 being ignored because it's all fields.) Disclaimer: I've only started learning it so there may be better ways, or incorrect nomenclature used. -----sig: |
|
bamccaig
Member #7,536
July 2006
|
Nitpick mode activated. I realize that you didn't necessarily write all of this, and it's purpose is limited so the code doesn't have to be perfect, but we're here so I figure we might as well point out improvements that can be made.
17# Modify the following to match your system
18NGINX_CONFIG='/etc/nginx/sites-available'
19NGINX_SITES_ENABLED='/etc/nginx/sites-enabled'
20PHP_INI_DIR='/etc/php5/fpm/pool.d'
21WEB_SERVER_GROUP='www-data'
22NGINX_INIT='/etc/init.d/nginx'
23PHP_FPM_INIT='/etc/init.d/php5-fpm'
To make it so that you don't have to modify the source itself you can make those environment variables inherited from the environment, and defaulted if unset. That's how I'd prefer to do it. That way the source doesn't have to change at all and the actual "config" can be put in a separate file sourced by your shell. VARNAME="${VARNAME:-default_value}"; If they aren't environment variables then it's probably a better idea to make them lowercase so that they'll be less likely to collide, and they'll stand out differently too. VARNAME=value; export VARNAME # vs varname=value;
25SED=`which sed`
There's basically no value in doing this (unless maybe you're going to modify PATH and want to make sure it doesn't screw with things). An absolute path can be useful for processes running with elevated privileges, but only if the absolute path is known. Querying the system for the absolute path is no different than just letting the system resolve it.
41PATTERN="^(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9-]*[a-zA-Z0-9])\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9-]*[A-Za-z0-9])$";
Note that this relies on $ being literal because of what follows. It's probably acceptable, but it made me question it. Using a strategy like Chris did to interpolate parts, especially repeating ones, might make it easier to understand. This is a pretty common way to simplify regular expressions. wrdchr_re="a-zA-Z0-9"; bndchr_re="[${wrdchr_re}]"; midchr_re="[${wrdchr_re}\-]" domprt_re="(${bndchr_re}|${bndchr_re}${midchr_re}*${bndchr_re})"; domain_re="^(${domprt_re}\.)*${domprt_re}\$"; I chose somewhat obscure names just to make them short to keep the composition in a single line/terminal. Unless you're targeting various shells with varying capabilities you can probably reduce this to: read -p "Would you like use ssl on this site (y/N)?" USESSL Alternatively, I'd at least use "echo -n" so that the response was on the same line as the prompt.
63if [ $USESSL == "y" ]; then
The thing that should be quoted, $USESSL, is not and the thing that doesn't need to be quoted, the y, is. Lastly, I'd reiterate quoting of variable expressions and subcommands. Append: Thanks, Chris! That pretty much takes the mystery out of the first awk program. I'm speculating that what looks like array references in the latter is actually storing data into a dictionary, but I'm not sure? It seems like it would help an awful lot to understand those awk programs if you began them with a comment describing the input format as best as you understand it, or even offer a short sample input for reference. For somebody familiar with the input source it's probably not very necessary, but since I've never used nbtscan I have no idea what to expect. -- acc.js | al4anim - Allegro 4 Animation library | Allegro 5 VS/NuGet Guide | Allegro.cc Mockup | Allegro.cc <code> Tag | Allegro 4 Timer Example (w/ Semaphores) | Allegro 5 "Winpkg" (MSVC readme) | Bambot | Blog | C++ STL Container Flowchart | Castopulence Software | Check Return Values | Derail? | Is This A Discussion? Flow Chart | Filesystem Hierarchy Standard | Clean Code Talks - Global State and Singletons | How To Use Header Files | GNU/Linux (Debian, Fedora, Gentoo) | rot (rot13, rot47, rotN) | Streaming |
|
furinkan
Member #10,271
October 2008
|
@bams: No, I only wrote like 20% of that. The original was old and did the job, but I wanted a little more functionality out of it, and I wanted to tweak some things to suit my needs. More importantly, with some fidgeting, it will properly set up an SSL cert. So yeah, If I were to rewrite it myself, I'd clean it up substantially. But you can't complain about free shit on the internet. EDIT: Now that I'm looking closer, the latter half of your post was written by me. Lets just put it out there that bash is not my strong suit. |
|
bamccaig
Member #7,536
July 2006
|
Quote: But you can't complain about free on the internet. Disagreed. furinkan said: Lets just put it out there that bash is not my strong suit. Bash (and sh-variants in general) tends to be something that people don't start out caring about, but eventually their usefulness works their way into your life. I gradually developed a somewhat intermediate level of skill hacking in bash. If you do choose to do any hacking in bash I recommend joining #bash on freenode to ask for criticisms or help. They are extremely helpful, extremely wise, have a ton of readily linkable best practices at their disposal, and they can seriously improve the quality of your bash code and give you a lot more confidence in it. I also have experience being put onto a system with an ancient sh variant. You don't know how much you'll miss the bells and whistles until they're gone. It was still refreshing to see how many features were still supported even then, but it was still a bit of a fight to get comfortable with it. -- acc.js | al4anim - Allegro 4 Animation library | Allegro 5 VS/NuGet Guide | Allegro.cc Mockup | Allegro.cc <code> Tag | Allegro 4 Timer Example (w/ Semaphores) | Allegro 5 "Winpkg" (MSVC readme) | Bambot | Blog | C++ STL Container Flowchart | Castopulence Software | Check Return Values | Derail? | Is This A Discussion? Flow Chart | Filesystem Hierarchy Standard | Clean Code Talks - Global State and Singletons | How To Use Header Files | GNU/Linux (Debian, Fedora, Gentoo) | rot (rot13, rot47, rotN) | Streaming |
Or just use [[ and neither needs to be quoted.
That's awesome. I tried it. It was hard. I failed. 
