Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <!--
- ########################################################################
- # Script : 1337 Multiple CMS Scaner Online v0.4 ( Modified Edition Wink
- # Author : AlternatorIWnet@Shahril
- # Original Author : KedAns-Dz ( ked-h [ at ] hotmail [ dot ] com Wink
- # Author HomePage : www.1337day.com
- # What Change ?! :-
- # - Better Reverse IP method
- # - Replace File_Get_Contents with cURL
- # - Change Style Wink
- # - Change PacketStormSecurity to Exploit-DB Big Grin
- # - Remove Some Un-Expected Result (maybe have some more)
- # Greets to : Dz Offenders Cr3W - Algerian Cyber Army - Inj3ct0r Team - TBD Security
- #########################################################################
- // Script Functions , start ..!
- -->
- <html>
- <head>
- <meta http-equiv="Content-Language" content="fr">
- <meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
- <title>1337 Multiple CMS Scaner Online v0.4 (0!IIIV) by KedAns-Dz ( Modified by AlternatorIWnet )</title>
- <meta content="KedAns-Dz , Inj3ct0r Team , 1337 Multiple CMS Scaner Online, AltenatorIWnet" name="description">
- <link href="http://209.217.227.77/~forumant/favicon.ico" type="image/x-icon" rel="shortcut icon" />
- <style>
- @import url(http://fonts.googleapis.com/css?family=Fredoka+One);@import url(http://fonts.googleapis.com/css?family=A...ff; }
- </style>
- </head>
- <body>
- <p align="center"> </p>
- <p align="center"> </p>
- <p align="center"> </p>
- <p align="center"><font size="4">1337 Multiple CMS Scaner Online v0.4 (0!IIIV) | T0olKit By : KedAns-Dz </font></p><br><p align="center"><font size="4">( Modified by AltenatorIWnet )</font></p><br>
- <form method="POST">
- <p align="center"><input type="text" name="site" size="65" value=""><input type="submit" value="Scan.."></p>
- </form><center>
- <?php
- @set_time_limit(0);
- @error_reporting(0);
- /* Use Curl to replace file_get_contents */
- function getdata($url){
- $ch = curl_init($url);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- $data = curl_exec ($ch);
- curl_close ($ch);
- return $data;
- }
- /* Check Exploit At Exploit-DB */
- function check_exploit($cpmxx){
- $link = "http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=&filter_exploit_text=".$cpmxx."&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=";
- $result = @getdata("$link");
- if (strpos($result, "No results") != FALSE)
- {
- echo"<td>Not Found</td><td><a href='http://www.google.com/#hl=en&q=download+$cpmxx'>Download</a></td></tr>";
- }else{
- echo"<td><a href='$link'>Found</a></td><td><=</td></tr>";
- }
- }
- /* Joomla Conf */
- function check_com($url){
- $source = @getdata("http://$url/");
- preg_match_all('{option,(.*?)/}i',$source,$f);
- preg_match_all('{option=(.*?)(&|&|")}i',$source,$f2);
- preg_match_all('{/components/(.*?)/}i',$source,$f3);
- $arz=array_merge($f2[1],$f[1],$f3[1]);
- $coms=array();
- if(count($arz)==0){ echo "<tr><td colspan=3>[ Joomla ] ...Nothing Found !</td></tr>";}
- foreach(array_unique($arz) as $x){
- $coms[]=$x;
- }
- foreach($coms as $comm){
- if(strlen($comm) < 40) {
- echo "<tr><td>$comm</td>";
- check_exploit($comm);
- }
- }
- }
- /* WordPress Conf */
- function get_plugins($url){
- $source = @getdata("http://$url/");
- preg_match_all("#/plugins/(.*?)/#i", $source, $f);
- $arz=array_unique($f[1]);
- if(count($arz)==0){
- echo "<tr><td colspan=3>[ Wordpress ] ...Nothing Found !</td></tr>";
- }
- foreach($arz as $plugin){
- if(strlen($plugin) < 40) {
- echo "<tr><td>$plugin</td>";
- check_exploit($plugin);
- }
- }
- }
- /* Nuke's Conf */
- function get_numod($url){
- $source = @getdata("http://$url/");
- preg_match_all('{?name=(.*?)/}i',$source,$f);
- preg_match_all('{?name=(.*?)(&|&|l_op=")}i',$source,$f2);
- preg_match_all('{/modules/(.*?)/}i',$source,$f3);
- $arz=array_merge($f2[1],$f[1],$f3[1]);
- $cpm=array();
- if(count($arz)==0){
- echo "<tr><td colspan=3>[ Nuke's ] ...Nothing Found !</td></tr>";
- }
- foreach(array_unique($arz) as $x){
- $cpm[]=$x;
- }
- foreach($cpm as $nmod){
- if(strlen($nmod) < 40) {
- echo "<tr><td>$nmod</td>";
- check_exploit($nmod);
- }
- }
- }
- /* Xoops Conf */
- function get_xoomod($url){
- $source = @getdata("http://$url/");
- preg_match_all('{/modules/(.*?)/}i',$source,$f);
- $arz=array_merge($f[1]);
- $cpm=array();
- if(count($arz)==0){
- echo "<tr><td colspan=3>[ Xoops ] ...Nothing Found !</td></tr>";
- }
- foreach(array_unique($arz) as $x){
- $cpm[]=$x;
- }
- foreach($cpm as $xmod){
- if(strlen($xmod) < 40) {
- echo "<tr><td>$xmod</td>";
- check_exploit($xmod);
- }
- }
- }
- /**************************************************************/
- if(!isset($_POST['site'])) { $credit = credit();die("<br><br>$credit"); }
- function findit($mytext,$starttag,$endtag) {
- $posLeft = @stripos($mytext,$starttag)+strlen($starttag);
- $posRight = @stripos($mytext,$endtag,$posLeft+1);
- return @substr($mytext,$posLeft,$posRight-$posLeft);
- flush();
- }
- function CleanAndClear($site) {
- $output = strtolower($site);
- $aaa = array("http://" ,"/" ,"www.");
- foreach($aaa as $aa1) {
- if (strpos($output, "$aa1") != FALSE) {
- $output = (str_replace("$aa1", "", $output));
- }
- }
- return $output;
- }
- function reverse_ip($site){
- $getip = @file_get_contents("http://networktools.nl/reverseip/$site");
- $ipss = @findit($getip,'<pre>','</pre>');
- return $ipss;
- flush();
- }
- function clean_array($site){
- $ipp = "<b>".gethostbyname(CleanAndClear($site))."</b>";
- $reverse = reverse_ip(CleanAndClear($site));
- $clean_string = CleanAndClear(str_replace("\n", " ", str_replace("Domains on $ipp: ", "", $reverse)));
- $clean_array = array_filter(explode(" ", trim(str_replace(" ","",$clean_string))));
- return $clean_array;
- }
- $start_array = clean_array($_POST['site']);
- echo'<table border="1" width=\"80%\" align=\"center\">
- <tr><td width=\"30%\"><b>Server IP : </b></td><td><b>'.gethostbyname(CleanAndClear($_POST['site'])).'</b></td></tr>
- <tr><td width=\"30%\"><b>Sites Found : </b></td><td><b>'.count($start_array).'</b></td></tr>
- </table>';
- echo "<br><br>";
- echo'<table border="1" width="80%" align=\"center\">';
- foreach($start_array as $h3h3){
- echo'<tr id=new><td><b><a href=http://'.$h3h3.'/>'.$h3h3.'</a></b></td><td><b>Exploit-DB</b></td><td><b>Challenge of Exploiting ..!</b></td></tr>';
- check_com($h3h3);
- get_plugins($h3h3);
- get_numod($h3h3);
- get_xoomod($h3h3);
- }
- echo"</table>";
- function credit(){
- echo "</center>
- <br><p align=\"center\">
- Coded By : <a href='http://facebook.com/KedAns'>KedAns-Dz</a> | Modified by <b>AltenatorIWnet</b> | <a href='http://1337day.com/'>Inj3ct0r 1337day Exploit Database</a><br>
- Made in Algeria | CopyCenter (^.^) 2o12
- </p>
- </body>
- </html>";
- }
- ?>
- <!-- ' Thanks to KedAns-Dz Lagripe-Dz aNd K!LLer-Dz'-->
Add Comment
Please, Sign In to add comment