Kyuubi R-admin Buster - VIRkid

# StaY MaD
# Reverse IP Mass Admin finder
# Kyubi referrence : #http://img1.wikia.nocookie.net/__cb20120730083419/powerlisting/images/1/1a/Kyuubi-fire-chakra.jpg
# http://naruto.wikia.com/wiki/Kurama
# Have fun     :::: MaDLeeTs.com ::::
import urllib2,urllib,socket,argparse,sys,os,threading,Queue,re,httplib

#List of admins , Extend it if you want more better results :D

getx=['/admin/','/administrator/','/admin-cp/','/webways-admin/','/admin_login/''admin/','administrator/','admin1/','admin2/','admin3/','admin4/','admin5/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracion/','instadmin/',
'memberadmin/','administratorlogin/','adm/','account.asp','admin/account.asp','admin/index.asp','admin/login.asp','admin/admin.asp',
'admin_area/admin.asp','admin_area/login.asp','admin/account.html','admin/index.html','admin/login.html','admin/admin.html',
'admin_area/admin.html','admin_area/login.html','admin_area/index.html','admin_area/index.asp','bb-admin/index.asp','bb-admin/login.asp','bb-admin/admin.asp',
'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admin/home.html','admin/controlpanel.html','admin.html','admin/cp.html','cp.html',
'administrator/index.html','administrator/login.html','administrator/account.html','administrator.html','login.html','modelsearch/login.html','moderator.html',
'moderator/login.html','moderator/admin.html','account.html','controlpanel.html','admincontrol.html','admin_login.html','panel-administracion/login.html',
'admin/home.asp','admin/controlpanel.asp','admin.asp','pages/admin/admin-login.asp','admin/admin-login.asp','admin-login.asp','admin/cp.asp','cp.asp',
'administrator/account.asp','administrator.asp','acceso.asp','login.asp','modelsearch/login.asp','moderator.asp','moderator/login.asp','administrator/login.asp',
'moderator/admin.asp','controlpanel.asp','admin/account.html','adminpanel.html','webadmin.html','pages/admin/admin-login.html','admin/admin-login.html',
'webadmin/index.html','webadmin/admin.html','webadmin/login.html','user.asp','user.html','admincp/index.asp','admincp/login.asp','admincp/index.html',
'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home.html','adminarea/index.html','adminarea/admin.html','adminarea/login.html',
'panel-administracion/index.html','panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html','admin/admin_login.html',
'admincontrol/login.html','adm/index.html','adm.html','admincontrol.asp','admin/account.asp','adminpanel.asp','webadmin.asp','webadmin/index.asp',
'webadmin/admin.asp','webadmin/login.asp','admin/admin_login.asp','admin_login.asp','panel-administracion/login.asp','adminLogin.asp',
'admin/adminLogin.asp','home.asp','admin.asp','adminarea/index.asp','adminarea/admin.asp','adminarea/login.asp','admin-login.html',
'panel-administracion/index.asp','panel-administracion/admin.asp','modelsearch/index.asp','modelsearch/admin.asp','administrator/index.asp',
'admincontrol/login.asp','adm/admloginuser.asp','admloginuser.asp','admin2.asp','admin2/login.asp','admin2/index.asp','adm/index.asp',
'adm.asp','affiliate.asp','adm_auth.asp','memberadmin.asp','administratorlogin.asp','siteadmin/login.asp','siteadmin/index.asp','siteadmin/login.html']
found=[]
#Queue

q=Queue.Queue()

#parser
parser=argparse.ArgumentParser(__file__,description="Reverse IP admin finder ./VIRkid @MaDLeeTs")
parser.add_argument("--timeout","-t", help="Custom connection timeout",type=float,default=2.0)
parser.add_argument("--target","-u", help="Specify the target URL/IP")
parser.add_argument("--proxy","-p",help="Proxy e.g 127.0.0.1:8080 ")
parser.add_argument("--thrd","-w",help="Number of threads",type=int,default=2)
args=parser.parse_args()
#cleaner
if sys.platform == "linux" or sys.platform == "linux2":
    cl = "clear"
else:
    cl="cls"
os.system(cl)
def banner():

    print "\t\t*********************************************"
    print "\t\t*                                           *"
    print "\t\t*        Kyuubi R-admin Buster              *"
    print "\t\t*             .:VIRkid:.                    *"
    print "\t\t*       Usage: python script.py -help       *"
    print "\t\t*     ali ahmady , pHaNtOm_X ,Ch3rn0by1     *"
    print "\t\t*********************************************"
banner()

def stormer(q,getx):
    try:
        log=open('sites.txt','w')
        for adm in getx:
            while not q.empty():
                site=q.get(block=True, timeout=2)


                cn=urllib.urlopen('http://'+site+adm)

                if cn.getcode()==404:
                    pass
                else:

                    rsp=cn.read()
                    rx=re.findall('type="Password"',rsp,re.I)


                    if  len(rx) ==1:

                        print '[+] %s'%site+adm


                        found.append(site+adm)
                    else:

                        pass

                q.task_done()


    except(socket.error,IOError,httplib.BadStatusLine):
        pass
    finally:
        for uri in found:
            log.write(uri+'\n')
        log.close()


def killa(nom):

    for i in xrange(nom):
        thread=threading.Thread(target=stormer,args=(q,getx,))
        thread.start()
    thread.join()
#target filter
try:
    target=args.target
    if target[-1]=='/':
        target=target.replace(target[-1],"")
        target=target.replace("http://","")


    yg=open('list.txt','w')
    target=socket.gethostbyname(target)
    print "\n"+"-"*25
    print 'Target : %s' %target
    print "-"*25
    #proxy
    proxy=args.proxy
    if proxy:
        opener=urllib2.build_opener(
        urllib2.HTTPHandler(),
        urllib2.HTTPSHandler(),
        urllib2.ProxyHandler({'http':'http://'+proxy}))
        urllib2.install_opener(opener)
    #request
    url = "http://domains.yougetsignal.com/domains.php"
    useragent = "Mozilla/5.0 (Windows NT 5.1; rv:24.0) Gecko/20100101 Firefox/24.0"
    postdata = {'remoteAddress':target,'key':''}
    postdata = urllib.urlencode(postdata)

    request = urllib2.Request(url, postdata)

    request.add_header("User-Agent", useragent)

    result = urllib2.urlopen(request)

    #reading youget response
    dom=result
    dom=dom.read()
    #filter
    dom=dom.replace("[","").replace("]","").replace("\"\"","").replace(", ,",",").replace("{","").replace("}","").replace(", ",",").replace("'","").        replace(":",",").replace('"','').replace("1","")
    dom=dom
    dom=str(dom)
    #stripper ;)
    dom=dom.split(",",1000000)
    domf=dom[15:]
    l=len(domf)
    l=l-1
    while l:
        if l==-1:
            print "[-] Reverse IP limit reached"
            break
        print "-"*25
        print "[+] Domain list fetch complete \n[+] Domain count : %s"%l
        print "-"*25
        #writer
        with open('list.txt','w') as yg:
            for each in domf:
                yg.write(each+'\n')
        #REverse IP COmplete
        if proxy:
            print "-"*25+'\n'+'Proxy : %s'%proxy+'\n'+"-"*25
        if args.thrd:
            print "-"*25+'\n'+'Threads: %s'%args.thrd+'\n'+"-"*25
        if args.timeout:
            print "-"*25+'\n'+'Timeout: %s Seconds'%args.timeout+'\n'+"-"*25
        #Start of Admin buster

        lstx=open('list.txt','r')
        sites=lstx.readlines()
        print"\n"+"-"*25
        print ' Rsp | \tURL'
        print '-'*25
        socket.setdefaulttimeout(args.timeout)
        for each in sites:
            each=each.replace("\n","").replace("\r","")

            q.put(each)
        break

    while not q.empty():
        killa(args.thrd)
except TypeError:
    print "[-] NO target specified"
except socket.gaierror:
    print "[-]NOPE WRONG URL"
except KeyboardInterrupt:
    print "[-] Abort signal Detected"
except httplib.BadStatusLine:
    print "[-] Something went wrong try again or let it go"