API tools faq
paste
Advertisement
Googleinurl

Scanner perl SQL - ERROR UOL

Googleinurl
Aug 31st, 2012
1,131
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Perl 6.00 KB | None | 0 0
raw download clone embed print report
  1. #!/usr/bin/perl
  2.  
  3. use LWP::UserAgent;
  4. use HTTP::Request;
  5. use Term::ANSIColor;
  6. use URI::Escape;
  7. my $ua = LWP::UserAgent->new();
  8. $ua->timeout(7);
  9.  
  10. system "clear";
  11. print color("yellow"), q{
  12.  
  13. Editado Grupo Google INURL - Brasil pesquisa avançada.
  14. Email:Google@inurl.com.br
  15. Blog: blog.inurl.com.br
  16.    
  17.                                                                                                    
  18. },color("reset");
  19.  
  20.  
  21.  
  22. open(clear,'>search-dump.txt.clear'); #deleting previous cleaned search results
  23. close(clear);
  24. open(dork,">search-dump.txt"); #deleting previous search results
  25. close(dork);
  26.  
  27. print color("red"),"Tipo de dork",color("reset")," ex:(news.php?id=), ex:(site:br noticias.php?id=)\n Mais exemplos: \n http://blog.inurl.com.br/search/label/dorks\n http://blog.inurl.com.br/search/label/string\n";
  28. print color("red"),"Dork de pesquisa: \n",color("reset");
  29.    $dork = <STDIN>;
  30.     $dork  = uri_escape($dork);
  31.      chomp($dork);
  32.      
  33. print color("green"),"Arquivo para guardar sites De vulneráveis:",color("reset")," ex:(sitesbr.txt)\n";
  34. print color("red"),"Nome do arquivo: \n",color("reset");
  35.    $file = <STDIN>;
  36.      chomp($file);
  37.      
  38. open(clear,">$file"); #deleting vul result file if the input is the same one
  39. close(clear);
  40. open(clear,">$file.html"); #deleting vul HTML result file if the input is the same one
  41. close(clear);
  42.  
  43.  
  44. print color("green"),"Pesquisar inicializado...",color("reset"),"\n";
  45.  
  46. for ($i = 0; $i < 10000; $i += 10) {
  47.      $useragent = LWP::UserAgent->new(agent => 'Mozilla/4.8 [en] (Windows NT 6.0; U)');
  48.      $useragent->timeout(10);
  49.      $useragent->env_proxy;
  50.  
  51.      $curl = $useragent->get("http://busca.uol.com.br/web/?q=".$dork."&start=".$i)->content;
  52.      $check = index($curl, 'link');
  53.  
  54. while (1) {
  55.     $n = index($curl, '<a href="');
  56.  
  57. if ($n == -1) {
  58. last;
  59. }
  60.  
  61. $curl = substr($curl, $n + 9);
  62.   $s = substr($curl, 0, index($curl, '"'));
  63.  
  64. print color("green"), "[+] ",color("reset"),"$s\n";
  65. open(dork,">>search-dump.txt");
  66. print dork $s, "\n";
  67. close(dork);
  68. }
  69.  
  70. if ($check == -1) {
  71. last;
  72. }
  73. }
  74.    print "\n";
  75.    print color("Red"),"[INFO] ",color("reset"),"Pesquisa Feita\n";
  76.    print "\n";
  77.    print color("Red"),"[INFO] ",color("reset"),"Removendo linhas duplicadas de sua busca.\n";
  78.    sleep 2;
  79.  
  80. my $cleanrthefile = 'search-dump.txt';
  81. my %seen = ();
  82. {
  83.    local @ARGV = ($cleanrthefile);
  84.    local $^I = '.clear';
  85.    while(<>){
  86.       $seen{$_}++;
  87.       next if $seen{$_} > 1;
  88.       print;
  89.    }
  90. }
  91. print color("Red"),"[INFO] ",color("reset"), "ficheiro de processamento concluído.\n";
  92. sleep 2;
  93. print "\n";
  94.  
  95. print color("Red"),"[INFO] ",color("reset"), "Opening search dump to search for",color("red")," vul's\n",color("reset");
  96. print "\n";
  97.  
  98. open FILE, "<", "search-dump.txt" or die $!;
  99.   my @amount1 = <FILE>;
  100.   my $amount1 = @amount1;
  101.   my $infomsg = "$amount1 uris to test";
  102.    print color("red"), "[INFO]" ,color("reset")," $infomsg uris to test\n";
  103.    print "\n";
  104.  
  105. $LOGFILE = "search-dump.txt";
  106. open(LOGFILE) or die("Não foi possível abrir arquivo de log.");
  107. foreach $line (<LOGFILE>) {
  108.     chomp($line);              
  109.     my $url = $line."'";
  110.        
  111.     my  $request = HTTP::Request->new( GET => $url );
  112.     my  $response = $ua->request( $request );
  113.    
  114.    
  115.             if ( $response->content =~ /SQL/  || $response->content =~ /\/var\/www\// ) {
  116.        open(vul,">>$file");
  117.     print vul $url, "\n";
  118.     open HTML, ">>", "$file.html" or die $!;
  119.     close(vul);
  120.         print color("bold red"), "[+] ",color("reset"), "$url",color("bold red"),"      Vulnerável ",color("reset");
  121.         print HTML "<a href=\"$url\">$url</a>\n";
  122.        
  123.     }
  124.    
  125.    
  126.             elsif( $response->content =~ m/80040e14/i ) {
  127.         open(vul,">>$file");
  128.     print vul $url, "\n";
  129.     open HTML, ">>", "$file.html" or die $!;
  130.     close(vul);
  131.         print color("bold yellow"), "[+] ",color("reset"), "$url",color("bold yellow")," MS DB error detected",color("bold red"), " SQLI possible",color("reset");
  132.         print HTML "<a href=\"$url\">$url</a>\n";
  133.         }  
  134.        
  135.        
  136.             elsif( $response->content =~ m/SELECT (.*) FROM (.*) WHERE/i ) {
  137.         open(vul,">>$file");
  138.     print vul $url, "\n";
  139.     open HTML, ">>", "$file.html" or die $!;
  140.     close(vul);
  141.         print color("bold red"), "[+] ",color("reset"), "$url",color("bold red")," SELECT FROM WHERE detected",color("reset");
  142.         print HTML "<a href=\"$url\">$url</a>\n";
  143.         }  
  144.        
  145.        
  146.         elsif( $response->content =~ m/SELECT (.*) FROM (.*)/i ) {
  147.         open(vul,">>$file");
  148.     print vul $url, "\n";
  149.     open HTML, ">>", "$file.html" or die $!;
  150.     close(vul);
  151.         print color("bold red"), "[+] ",color("reset"), "$url",color("bold red")," SELECT FROM WHERE detected",color("reset");
  152.         print HTML "<a href=\"$url\">$url</a>\n";
  153.         }  
  154.        
  155.        
  156.         elsif( $response->content =~ m/(.*) Invalid argument supplied (.*)/i ) {
  157.         open(vul,">>$file");
  158.     print vul $url, "\n";
  159.     open HTML, ">>", "$file.html" or die $!;
  160.     close(vul);
  161.         print color("bold red "), "[+] ",color("reset"), "$url",color("bold red")," Invalid argument supplied Detected",color("reset");
  162.         print HTML "<a href=\"$url\">$url</a>\n";
  163.         }  
  164.        
  165.                
  166. else {
  167.     print color("green"), "[-] ",color("reset"),"$url",color("green"),"~",color("reset");
  168.    
  169.     }
  170.     close vul;
  171.     close HTML;
  172.     print "\n";
  173. }
  174.  
  175. print color("green"),"Pesquisa Vulnerabilidade feita\n",color("reset");
  176. print color("red"),"No arquivo criado sera disponibilizado site com possíveis vulnerabilidade.\n",color("reset");
  177. print "\n";
  178. sleep 2;
  179.  
  180.  
  181. open FILE, "<", "$file" or die $!;
  182. my @amount = <FILE>;
  183. my $amount = @amount;
  184.  
  185. open (CHECKBOOK, "$file");
  186.  
  187. while ($record = <CHECKBOOK>) {
  188.    print color("red"), "[+] ",color("reset"),"[Vull]",color("red"),"--> ERRO ENCONTRADO! ",color("reset"),"$record",color("reset");
  189.    
  190. }
  191.  
  192.    
  193. close(CHECKBOOK);
  194. close(FILE);
  195.    print "\n";
  196.    print color("red"), "[+] $amount URLS ",color("reset")," parecem ser vulnerável. \n";
  197.    print color("red"), "[+] ",color("reset"),"Sites vulneráveis ​​armazenados na",color ("red")," $file.html \n",color("reset");
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!