远程批量抓取Ubuntu PC信息的脚本

远程批量抓取Ubuntu PC信息的脚本（多个脚本分工完成）

有多个知识点：

a、  带密码ssh登录并批量执行

b、  nc命令检查端口是否开放

c、  grep –w （对词精确匹配）

d、  grep –A （显示匹配行之后行的内容）

1、  从所有PC网段里筛选出有开放22端口的ip

root@archivebak:~# cat/usr/local/bin/pingubt.sh

#!/bin/bash

rm -rf /log/ip_ubt.txt

rm -rf /log/ssh_22_0_ok.txt

rm -rf /log/ssh_22_0.txt

touch /log/ssh_22_0_ok.txt

touch /log/ssh_22_0.txt

rm -rf /log/ssh_22_1_ok.txt

rm -rf /log/ssh_22_1.txt

touch /log/ssh_22_1_ok.txt

touch /log/ssh_22_1.txt

rm -rf /log/ssh_22_29_ok.txt

rm -rf /log/ssh_22_29.txt

touch /log/ssh_22_29_ok.txt

touch /log/ssh_22_29.txt

Net1="10 11 12 13 "

Net2="10 11 12 13 "

Net3="10 11 12 13"

for Net in $Net1

do

for inum in `seq 1 253`

do

IPP="10.0.$Net.$inum 22"

IP="10.0.$Net.$inum"

/bin/nc -v -w 5 -z $IPP > /dev/null2>&1

if [ $? -eq 0 ];then

echo $IPP:ok >> /log/ssh_22_0_ok.txt

echo $IP >> /log/ssh_22_0.txt

fi

done

done

for Net in $Net2

do

for inum in `seq 1 253`

do

IPP="10.1.$Net.$inum 22"

IP="10.1.$Net.$inum"

/bin/nc -v -w 5 -z $IPP > /dev/null2>&1

if [ $? -eq 0 ];then

echo $IPP:ok >> /log/ssh_22_1_ok.txt

echo $IP >> /log/ssh_22_1.txt

fi

done

done

for Net in $Net3

do

for inum in `seq 1 253`

do

IPP="10.29.$Net.$inum 22"

IP="10.29.$Net.$inum"

/bin/nc -v -w 5 -z $IPP > /dev/null2>&1

if [ $? -eq 0 ];then

echo $IPP:ok >> /log/ssh_22_29_ok.txt

echo $IP >> /log/ssh_22_29.txt

fi

done

done

2、远程带密码ssh登录脚本（expect脚本）

root@archivebak:~/pcu# cat/usr/local/bin/ssh_PC.exp

#!/usr/bin/expexct -f

set ip [lindex $argv 0]

set timeout 5

spawn ssh ming\\zhi.yang@$ip

expect {

"*(yes/no)*" { send "yes\r"; exp_continue}

"Password:" { send "****\r" }

}

expect "$*"

send "ifconfig | grep addr:10 | cut -b16-32\r"

send "hostname\r"

send "who | grep ming | head -n1\r"

send "cat /etc/issue\r"

send "exit\r"

expect eof

root@archivebak:~/pcu#

3、通过for循环对开放22端口的ip进行批量登录（执行时须将输出进行保存, sh host.sh&>> /log/pcu/users_0.txt）

root@archivebak:~/pcu# cat hosts.sh

#!/bin/bash

for IP in `cat /log/ssh_22_0.txt`

do

/usr/bin/expect /usr/local/bin/ssh_PC.exp$IP

done

root@archivebak:~/pcu#

4、统计ssh登录成功ip的脚本

root@archivebak:~/pcu# cat ssh_22_0_no.sh

#!/bin/bash

rm -rf /log/pcu/ubt_ip_0.txt

rm -rf /log/pcu/ubt_ip_0_no.txt

touch /log/pcu/ubt_ip_0.txt

touch /log/pcu/ubt_ip_0_no.txt

for IP in `cat /log/ssh_22_0.txt`

do

Co=`cat /log/users_0_bak.txt | grep -w $IP| tail -n 1 | awk -F[:" "]+ '{print $3}'`

if [ $Co = $IP ];then

echo $IP >> /log/pcu/ubt_ip_0.txt

else

echo $IP >> /log/pcu/ubt_ip_0_no.txt

fi

done

root@archivebak:~/pcu#

统计结果到excel的脚本如下：

先对执行的输出进行下整理（挑出成功部分存到另1文档）：

# cat grep_0.sh

#!/bin/bash

/bin/rm -rf /log/PC/exp2_0.txt

/bin/touch /log/PC/exp2_0.txt

for IP in `cat /log/ssh_22_0.txt`

do

/bin/cat /log/PC/exp_0.txt | grep -w $IP -A 10 | grep -v spawn | grep -v Wel | grep -v Pas | grep -v Conn | grep -v Last| grep -v https | grep -v updated | grep -v updates | grep -v exit | grep -v Unable | grep -v Received | grep -v Too | grep -v Please | grep -v Warning | grep -v ECDSA | grep -v programs | grep -v yes| grep -v Ubuntu | grep -v files | grep -v terms | grep -v The | grep -v denied  >> /log/PC/exp2_0.txt

done

/bin/cat /log/PC/exp2_0.txt | grep addr:10. | grep -v ifconfig | uniq > /log/PC/exp3_0.txt

/bin/sed 's/[[:space:]]//g' /log/PC/exp3_0.txt > /log/PC/exp4_0.txt

/bin/sed 's/.\{5\}//' /log/PC/exp3_0.txt > /log/PC/exp5_0.txt

抓出成功的ip、主机名、用户名信息到excel文档中：

# cat csv_0.sh

#!/bin/bash

/bin/rm -rf /log/PC/csv_0.txt

/bin/touch /log/PC/csv_0.txt

for IP in `cat /log/PC/exp4_0.txt`

do

IPP=`echo $IP | sed 's/.\{5\}//'`

Host=`/bin/cat /log/PC/exp2_0.txt | grep -w $IP -A 10 | grep sh | grep -v @ | head -n 1`

User=`/bin/cat /log/PC/exp2_0.txt | grep -w $IP -A 10 | grep :0 | awk -F[:" "]+ '{print $1}' | head -n 1`

/bin/echo "$IPP,$Host,$User" >> /log/PC/csv_0.txt

done

/bin/sed 's/[[:space:]]//g' /log/PC/csv_0.txt > /log/PC/csv2_0.txt

/bin/cat /log/PC/csv2_0.txt | tr -s '[:blank:]'',' > /log/PC/csv_0.csv