Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #StaY MaD
- #Reverse IP Mass Admin finder
- #Kyubi referrence : #http://img1.wikia.nocookie.net/__cb20120730083419/powerlisting/images/1/1a/Kyuubi-fire-chakra.jpg
- #http://naruto.wikia.com/wiki/Kurama
- #Have fun :::: MaDLeeTs.com ::::
- import urllib2,urllib,socket,argparse,sys,os,threading,Queue,re,httplib
- #list of admins , Extend it if you want more results results
- getx=['/admin/','/administrator/','/admin-cp/','/webways-admin/','/admin_login/']
- found=[]
- #Queue
- q=Queue.Queue()
- #parser
- parser=argparse.ArgumentParser(__file__,description="Reverse IP admin finder ./VIRkid @MaDLeeTs")
- parser.add_argument("--timeout","-t", help="Custom connection timeout",type=float,default=2.0)
- parser.add_argument("--target","-u", help="Specify the target URL/IP")
- parser.add_argument("--proxy","-p",help="Proxy e.g 127.0.0.1:8080 ")
- parser.add_argument("--thrd","-w",help="Number of threads",type=int,default=2)
- args=parser.parse_args()
- #cleaner
- if sys.platform == "linux" or sys.platform == "linux2":
- cl = "clear"
- else:
- cl="cls"
- os.system(cl)
- def banner():
- print "\t\t*********************************************"
- print "\t\t* *"
- print "\t\t* Kyuubi R-admin Buster *"
- print "\t\t* .:VIRkid:. *"
- print "\t\t* Usage: python script.py -help *"
- print "\t\t* ali ahmady , pHaNtOm_X ,Ch3rn0by1 *"
- print "\t\t*********************************************"
- banner()
- def stormer(q,getx):
- try:
- log=open('sites.txt','w')
- for adm in getx:
- while not q.empty():
- site=q.get(block=True, timeout=2)
- cn=urllib.urlopen('http://'+site+adm)
- if cn.getcode()==404:
- pass
- else:
- rsp=cn.read()
- rx=re.findall('type="Password"',rsp,re.I)
- if len(rx) ==1:
- print '[+] %s'%site+adm
- found.append(site+adm)
- else:
- pass
- q.task_done()
- except(socket.error,IOError,httplib.BadStatusLine):
- pass
- finally:
- for uri in found:
- log.write(uri+'\n')
- log.close()
- def killa(nom):
- for i in xrange(nom):
- thread=threading.Thread(target=stormer,args=(q,getx,))
- thread.start()
- thread.join()
- #target filter
- try:
- target=args.target
- if target[-1]=='/':
- target=target.replace(target[-1],"")
- target=target.replace("http://","")
- yg=open('list.txt','w')
- target=socket.gethostbyname(target)
- print "\n"+"-"*25
- print 'Target : %s' %target
- print "-"*25
- #proxy
- proxy=args.proxy
- if proxy:
- opener=urllib2.build_opener(
- urllib2.HTTPHandler(),
- urllib2.HTTPSHandler(),
- urllib2.ProxyHandler({'http':'http://'+proxy}))
- urllib2.install_opener(opener)
- #request
- url = "http://domains.yougetsignal.com/domains.php"
- useragent = "Mozilla/5.0 (Windows NT 5.1; rv:24.0) Gecko/20100101 Firefox/24.0"
- postdata = {'remoteAddress':target,'key':''}
- postdata = urllib.urlencode(postdata)
- request = urllib2.Request(url, postdata)
- request.add_header("User-Agent", useragent)
- result = urllib2.urlopen(request)
- #reading youget response
- dom=result
- dom=dom.read()
- #filter
- dom=dom.replace("[","").replace("]","").replace("\"\"","").replace(", ,",",").replace("{","").replace("}","").replace(", ",",").replace("'",""). replace(":",",").replace('"','').replace("1","")
- dom=dom
- dom=str(dom)
- #stripper ;)
- dom=dom.split(",",1000000)
- domf=dom[15:]
- l=len(domf)
- l=l-1
- while l:
- if l==-1:
- print "[-]Reverse IP limit reached"
- break
- print "-"*25
- print "[+] Domain list fetch complete \n[+] Domain count : %s"%l
- print "-"*25
- #writer
- with open('list.txt','w') as yg:
- for each in domf:
- yg.write(each+'\n')
- #REverse IP COmplete
- if proxy:
- print "-"*25+'\n'+'Proxy : %s'%proxy+'\n'+"-"*25
- if args.thrd:
- print "-"*25+'\n'+'Threads: %s'%args.thrd+'\n'+"-"*25
- if args.timeout:
- print "-"*25+'\n'+'Timeout: %s Seconds'%args.timeout+'\n'+"-"*25
- #Start of Admin buster
- lstx=open('list.txt','r')
- sites=lstx.readlines()
- print"\n"+"-"*25
- print ' Rsp | \tURL'
- print '-'*25
- socket.setdefaulttimeout(args.timeout)
- for each in sites:
- each=each.replace("\n","").replace("\r","")
- q.put(each)
- break
- while not q.empty():
- killa(args.thrd)
- except TypeError:
- print "[-] NO target specified"
- except socket.gaierror:
- print "[-]NOPE WRONG URL"
- except KeyboardInterrupt:
- print "[-] Abort signal Detected"
- except httplib.BadStatusLine:
- print "[-] Something went wrong try again or let it go"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement