Advertisement
mrfmr

[PHP] SQLi Scanner In IP

May 20th, 2018
266
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 3.26 KB | None | 0 0
  1. /*
  2. ##################################################
  3. ## ##
  4. ## Name : SQLi Grab From Bing In IP ##
  5. ## Author: T3754K1T1 ##
  6. ## Thanks: Mr.TenWap - L0c4lH34rtz - Mr.Magnom ##
  7. ## AnonCyberTeam ##
  8. ## ##
  9. ##################################################
  10. */
  11. <title>SQLi Grab From Bing In IP</title>
  12. <center>
  13.  
  14. <br />
  15. <font color='yellow'>T3754K1T1 Priv8</font><br> <br>
  16. <a<title>Bing Grabber from Ip</title>
  17. <center>
  18. <br>
  19. <font face='Tahoma' size='4' color='#FF0000'>Submit IP For Grab SQLi Vuln</font><br />
  20. <form method="post">
  21. <center>
  22. <br/><input type="text" name="site" size="42" />
  23. <br><input type="submit" name="go" value="Gaskeun:)" />
  24. </center>
  25. </form>
  26. <style type="text/css">
  27. body{
  28. background-color: #0A0000;
  29. }
  30. a{
  31. text-decoration: none;
  32. }
  33.  
  34. input{
  35. color: #FF0000;
  36. border: dotted 1pt #0078AA;
  37. //*height: */
  38. }
  39. </style>
  40.  
  41. <?php
  42. //<>
  43.  
  44. // functions
  45.  
  46.  
  47. function getsource($url, $proxy) {
  48. $curl = curl_init($url);
  49. curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.2) Gecko/20090729 Firefox/3.5.2 GTB5");
  50. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  51. if ($proxy) {
  52. $proxy = explode(':', autoprox());
  53. curl_setopt($curl, CURLOPT_PROXY, $proxy[0]);
  54. curl_setopt($curl, CURLOPT_PROXYPORT, $proxy[1]);
  55. }
  56. $content = curl_exec($curl);
  57. curl_close($curl);
  58. return $content;
  59. }
  60.  
  61. /////////////
  62. error_reporting(0);
  63. set_time_limit(0);
  64. $ip=$_POST['site'];
  65. if($_POST["go"]) {
  66.  
  67. $npage = 1;
  68. $npages = 300;
  69. $allLinks = array();
  70. $lll = array();
  71. while($npage <= $npages) {
  72. $x = getsource("http://www.bing.com/search?q=ip%3A" . $ip . "+id%3D&first=" . $npage, $proxy);
  73. if ($x) {
  74. preg_match_all('#<h2><a href="(.*?)" h="ID#', $x, $findlink);
  75. foreach ($findlink[1] as $fl) array_push($allLinks, $fl);
  76. $npage = $npage + 10;
  77. if (preg_match("(first=" . $npage . "&amp)siU", $x, $linksuiv) == 0) break;
  78. } else break;
  79. }
  80. //print_r($allLinks) ;
  81. $col=array_filter($allLinks);
  82. $lol=array_unique($col);
  83.  
  84. foreach ($lol as $urll){
  85. //echo'<b><font color="06FD02"><a href='.$urll.'>'.$urll.'</a></font></b><br>';
  86. sqli($urll);
  87. }
  88.  
  89.  
  90. }
  91. function sqli($url){
  92. $url2=("$url%27");
  93. $xx=http_get($url2);
  94. if(preg_match("/SQL syntax/i",$x) or eregi('You have an error',$xx) or eregi(' in your SQL syntax',$x)or preg_match('/sql/i',$x)){
  95. echo'<b><font color="green">'.$url2.'</font></b><br>';
  96. }else{
  97. echo'<b><font color="red">'.$url2.'</font></b><br>';
  98. }
  99. }
  100. function http_get($url){
  101. $im = curl_init($url);
  102. curl_setopt($im, CURLOPT_RETURNTRANSFER, 1);
  103. curl_setopt($im, CURLOPT_CONNECTTIMEOUT, 10);
  104. curl_setopt($im, CURLOPT_FOLLOWLOCATION, 1);
  105. curl_setopt($im, CURLOPT_HEADER, 0);
  106. return curl_exec($im);
  107. curl_close($im);
  108. }
  109.  
  110.  
  111. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement