API tools faq
paste
Advertisement
Fadly31337

Shell finder script

Fadly31337
Apr 12th, 2020
244
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 5.81 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. //Shell Finder Script
  3. //Scan for shells at any site
  4.  
  5. error_reporting(0);
  6. set_time_limit(0);
  7.  
  8. echo'
  9. <style>
  10. a{
  11. text-decoration:none;
  12. color: #009900;
  13. }
  14. body{
  15. color: #009900;
  16. }
  17. input[type=text] {
  18.    padding: 3px;
  19.    color: #009900;
  20.    text-shadow: #777777 0px 0px 3px;
  21.    border: 1px solid #007700;
  22.    background: transparent;
  23.    box-shadow: 0px 0px 4px #007700;
  24.    padding: 3px;
  25.    -webkit-border-radius: 4px;
  26.    -moz-border-radius: 4px;
  27.    border-radius: 4px;
  28.    -webkit-box-shadow: rgb(85,85,85) 0px 0px 4px;
  29.    -moz-box-shadow: rgb(85,85,85) 0px 0px 4px;
  30. }
  31. input[type=submit]:hover, input[type=text]:hover {
  32.    color: #ffffff;
  33.    text-shadow: #006600 0px 0px 4px;
  34.    box-shadow: 0px 0px 4px #00dd00;
  35.    border: 1px solid #00dd00;
  36.    padding: 3px;
  37.    -webkit-border-radius: 4px;
  38.    -moz-border-radius: 4px;
  39.    border-radius: 4px;
  40.    -webkit-box-shadow: rgba(0,119,0) 0px 0px 4px;
  41.    -moz-box-shadow: rgba(0,119,0) 0px 0px 4px;
  42. }
  43. input[type=submit] {
  44.    padding: 3px;
  45.    color: #00770;
  46.    font-weight: bold;
  47.    text-align: center;
  48.    text-shadow: 0 1px rgba(255, 255, 255, 0.3);
  49.    background: #aeaeae;
  50.    background-clip: padding-box;
  51.    border: 1px solid #284473;
  52.    border-bottom-color: #223b66;
  53.    border-radius: 4px;
  54.    cursor: pointer;
  55.    background-image: -webkit-linear-gradient(top, #eaeaea, #d0d0d0);
  56.    background-image: -moz-linear-gradient(top, #eaeaea, #d0d0d0);
  57.    background-image: -o-linear-gradient(top, #eaeaea, #d0d0d0);
  58.    background-image: linear-gradient(to bottom, #eaeaea, #d0d0d0);
  59.    -webkit-box-shadow: inset 0 1px rgba(255, 255, 255, 0.5), inset 0 0 7px rgba(255, 255, 255, 0.4), 0 1px 1px rgba(0, 0, 0, 0.15);
  60.    box-shadow: inset 0 1px rgba(255, 255, 255, 0.5), inset 0 0 7px rgba(255, 255, 255, 0.4), 0 1px 1px rgba(0, 0, 0, 0.15);
  61. }
  62. </style>
  63. <body bgcolor=#222222>
  64. <center>
  65. <br><center><span style="font-weight:bold;text-shadow:0px 0px 10px #009900 ;font-size:30px; font-family:Lucida Console; color:#009900">Website Shell Finder</span><br><br>
  66. <img src="http://www11.0zz0.com/2014/08/22/21/592562836.png">
  67. <p align="center"></p><br>
  68. <form method="POST">
  69. </form><center>
  70. <form action="" method="post">
  71. <input name="target" type="text" size="100" value="http://site.org/"/><br>
  72. <br><br>
  73. <input name="scan" size="100" value="Start Scaning" type="submit">
  74. </form><br>';
  75.  
  76. set_time_limit(0);
  77.  
  78. if (isset($_POST["scan"])) {  
  79.  
  80. $url = $_POST['traget'];
  81.  
  82. echo "<br /><span class='start'>Scanning ".$url."<br /><br /></span>";
  83. echo "Results:<br /><br />";
  84.  
  85. //Tambahin Lagi bro, Biar Kemungkinan Ketemunya Tinggi, Setinggi Harapan Aku Memiliki Dia > :(
  86. $shells = array("WSO.php","dz.php","cpanel.php","cpn.php","sql.php","mysql.php","madspot.php","cp.php","cpbt.php","sYm.php",
  87. "x.php","r99.php","lol.php","jo.php","wp.php","whmcs.php","shellz.php","d0main.php","d0mains.php","users.php",
  88. "Cgishell.pl","killer.php","changeall.php","2.php","Sh3ll.php","dz0.php","dam.php","user.php","dom.php","whmcs.php",
  89. "vb.zip","r00t.php","c99.php","gaza.php","1.php","wp.zip"."wp-content/plugins/disqus-comment-system/disqus.php",
  90. "d0mains.php","wp-content/plugins/akismet/akismet.php","madspotshell.php","Sym.php","c22.php","c100.php",
  91. "wp-content/plugins/akismet/admin.php#","wp-content/plugins/google-sitemap-generator/sitemap-core.php#",
  92. "wp-content/plugins/akismet/widget.php#","Cpanel.php","zone-h.php","tmp/user.php","tmp/Sym.php","cp.php",
  93. "tmp/madspotshell.php","tmp/root.php","tmp/whmcs.php","tmp/index.php","tmp/2.php","tmp/dz.php","tmp/cpn.php",
  94. "tmp/changeall.php","tmp/Cgishell.pl","tmp/sql.php","tmp/admin.php","cliente/downloads/h4xor.php",
  95. "whmcs/downloads/dz.php","L3b.php","d.php","tmp/d.php","tmp/L3b.php","wp-content/plugins/akismet/admin.php",
  96. "templates/rhuk_milkyway/index.php","templates/beez/index.php","admin1.php","upload.php","up.php","vb.zip","vb.rar",
  97. "admin2.asp","uploads.php","sa.php","sysadmins/","admin1/","administration/Sym.php","images/Sym.php",
  98. "/r57.php","/wp-content/plugins/disqus-comment-system/disqus.php","/shell.php","/sa.php","/admin.php","/b374k.php",
  99. "/sa2.php","/2.php","/gaza.php","/up.php","/upload.php","/uploads.php","/templates/beez/index.php","shell.php","/amad.php",
  100. "/t00.php","/dz.php","/site.rar","/Black.php","/site.tar.gz","/home.zip","/home.rar","/home.tar","/home.tar.gz",
  101. "/forum.zip","/forum.rar","/forum.tar","/forum.tar.gz","/test.txt","/ftp.txt","/user.txt","/site.txt","/error_log","/error",
  102. "/cpanel","/awstats","/site.sql","/vb.sql","/forum.sql","/backup.sql","/back.sql","/data.sql","wp.rar/",
  103. "wp-content/plugins/disqus-comment-system/disqus.php","asp.aspx","/templates/beez/index.php","tmp/vaga.php",
  104. "tmp/killer.php","whmcs.php","tmp/killer.php","tmp/domaine.pl","tmp/domaine.php","useradmin/",
  105. "tmp/d0maine.php","d0maine.php","tmp/sql.php","tmp/dz1.php","dz1.php","forum.zip","Symlink.php","Symlink.pl",
  106. "forum.rar","joomla.zip","joomla.rar","wp.php","buck.sql","sysadmin.php","images/c99.php", "xd.php", "c100.php",
  107. "spy.aspx","xd.php","tmp/xd.php","sym/root/home/","billing/killer.php","tmp/upload.php","tmp/admin.php",
  108. "Server.php","tmp/uploads.php","tmp/up.php","Server/","wp-admin/c99.php","tmp/priv8.php","priv8.php","cgi.pl/",
  109. "tmp/cgi.pl","downloads/dom.php","templates/ja-helio-farsi/index.php","webadmin.html","admins.php",
  110. "/wp-content/plugins/count-per-day/js/yc/d00.php", "admins/","admins.asp","admins.php","wp.zip");
  111.  
  112. //Start Scan
  113. foreach ($shells as $shell){
  114. $headers = get_headers("$url$shell"); //
  115.  
  116. if (eregi('200', $headers[0])) {
  117. //Result
  118. echo "<a href='$url$shell'>$url$shell</a> <span class='found'>Done :D</span><br /><br/><br/>"; //
  119. $dz = fopen('shells.txt', 'a+');
  120. $suck = "$url$shell";
  121. fwrite($dz, $suck."\n");
  122. }
  123. }
  124. //Result In Text File (shells.txt)
  125. echo "Shells Added to  File [ <a href='./shells.txt' target='_blank'>shells.txt</a> ]</span>";
  126. }
  127. echo"</center>";
  128. echo"</body>";
  129. echo"</html>";
  130. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!