SHOW:
|
|
- or go back to the newest paste.
| 1 | <html> | |
| 2 | <head> | |
| 3 | <meta content="text/html; charset=ISO-8859-1" | |
| 4 | http-equiv="content-type"> | |
| 5 | <title>exploit Root ~ JxH</title> | |
| 6 | </head> | |
| 7 | <body> | |
| 8 | <div style="text-align: center;">JaBr<span style="color: red;">O</span>t | |
| 9 | HaCkEr<br> | |
| 10 | Om4rJxH@gmail.com<br> | |
| 11 | </div> | |
| 12 | </body> | |
| 13 | </html> | |
| 14 | ||
| 15 | <ol> | |
| 16 | <strong> | |
| 17 | <? | |
| 18 | #c0d3r : Al7rby | |
| 19 | #Rights : JaBrOt HaCkEr ~ Om4rJxH@gmail.com | |
| 20 | ||
| 21 | ||
| 22 | ||
| 23 | @set_time_limit(0); | |
| 24 | @error_reporting(E_ALL | E_NOTICE); | |
| 25 | ||
| 26 | ||
| 27 | echo "<pre>"; | |
| 28 | ||
| 29 | @unlink("jxh.txt");
| |
| 30 | execute("yum list installed |awk {' print $1 '} |awk -F'.' {' print $1 '} > jxh.txt");
| |
| 31 | $apps = @file('jxh.txt');
| |
| 32 | (!$apps) ? die("Error::jxh.txt Not Exist , Means Can't execute with PHP ."):"";
| |
| 33 | ||
| 34 | echo "<p># There is : [".count($apps)."] Application</p>"; | |
| 35 | ||
| 36 | ||
| 37 | foreach($apps as $app){
| |
| 38 | ||
| 39 | $app = str_replace(array("\n","\r"),"",$app);
| |
| 40 | ||
| 41 | ||
| 42 | echo (exploit_db($app)) ? "[+] Found ( <b>$app</b> ) : <a href=http://www.exploit-db.com/search/?action=search&filter_description=$app>here</a>\n":"[-] Not Found ( $app )\n"; | |
| 43 | ||
| 44 | } | |
| 45 | ||
| 46 | function exploit_db($wht){
| |
| 47 | ||
| 48 | $result = @file_get_contents("http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$wht&filter_exploit_text=&filter_author=&filter_platform=16&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=");
| |
| 49 | ||
| 50 | flush();flush(); | |
| 51 | ||
| 52 | return (eregi("No results",$result)) ? false:true;
| |
| 53 | ||
| 54 | } | |
| 55 | ||
| 56 | function execute($command) | |
| 57 | {
| |
| 58 | global $os; | |
| 59 | if(function_exists('passthru')){$exec = passthru($command);}
| |
| 60 | elseif(function_exists('system') && !$exec){$exec= system($command); }
| |
| 61 | elseif(function_exists('exec') && !$exec){exec($command,$output);$exec=join("\n",$output);}
| |
| 62 | elseif(function_exists('shell_exec') && !$exec){$exec=shell_exec($command);}
| |
| 63 | elseif(function_exists('popen') && !$exec){$fp = popen($command,"r");
| |
| 64 | {while(!feof($fp)){$result.=fread($fp,1024);}pclose($fp);}$exec = convert_cyr_string($result,"d","w");}
| |
| 65 | elseif(function_exists('win_shell_execute') && !$exec){$exec = winshell($command);}
| |
| 66 | elseif(function_exists('win32_create_service') && !$exec){$exec=srvshell($command);}
| |
| 67 | elseif(extension_loaded('ffi') && !$exec){$exec=ffishell($command);}
| |
| 68 | elseif(extension_loaded('perl') && !$exec){$exec=perlshell($command);}
| |
| 69 | elseif(!$exec) {$exec = slashBypass($command);}
| |
| 70 | elseif(!$exec && extension_loaded('python'))
| |
| 71 | {$exec = python_eval("import os
| |
| 72 | pwd = os.getcwd() | |
| 73 | print pwd | |
| 74 | os.system('".$command."')");}
| |
| 75 | elseif($exec){return $exec;}
| |
| 76 | } | |
| 77 | ||
| 78 | ||
| 79 | ?> | |
| 80 | </strong> | |
| 81 | </ol> | |
| 82 | <html> | |
| 83 | <head> | |
| 84 | <title></title> | |
| 85 | </head> | |
| 86 | <body> | |
| 87 | <div style="text-align: center;">© <span style="font-weight: bold;">J<span | |
| 88 | style="color: red;">x</span>H</span> 2010<br> | |
| 89 | </div> | |
| 90 | <div style="text-align: center;"></div> | |
| 91 | </body> | |
| 92 | </html> |
