SHOW:
|
|
- or go back to the newest paste.
1 | <html> | |
2 | <form method="post"> | |
3 | Dork: <input type="text" name="dork" value="inurl:semua-berita.html" size="50" height="10"> | |
4 | <input type="submit" value="scan"> | |
5 | </form> | |
6 | </html> | |
7 | <?php | |
8 | // IndoXploit | |
9 | // Mr. Error 404 - shor7cut - tu5b0l3d - UstadCage_48 - sohai sec7or - cyber_taregh - ./MrJ - Mr. Xenophobic - bunglon_ijo - k3c0t - jackwild3r - wisnu404 - magelang6etar - Falcon-G21 - Rieqyns13 | |
10 | class indoxploit { | |
11 | public $dork; | |
12 | public function google($dork, $page) { | |
13 | $kunAPI = "AIzaSyDYG1FME1N7meBZLcywY7VojMHmtUAUIzY"; | |
14 | $dork = urlencode($dork); | |
15 | $url = "http://ajax.googleapis.com/ajax/services/search/web?v=1.0&hl=iw&rsz=8&q={$dork}&key=$kunAPI&start={$page}"; | |
16 | $output = json_decode($this->http_getx($url, true), true); | |
17 | if($output) { | |
18 | return $output; | |
19 | } else { | |
20 | return false; | |
21 | } | |
22 | } | |
23 | public function http_getx($url, $safemode = false) { | |
24 | if($safemode === true) sleep(1); | |
25 | $im = curl_init($url); | |
26 | curl_setopt($im, CURLOPT_RETURNTRANSFER, 1); | |
27 | curl_setopt($im, CURLOPT_CONNECTTIMEOUT, 10); | |
28 | curl_setopt($im, CURLOPT_FOLLOWLOCATION, 1); | |
29 | curl_setopt($im, CURLOPT_HEADER, 0); | |
30 | return curl_exec($im); | |
31 | curl_close(); | |
32 | } | |
33 | public function buffer() { | |
34 | ob_flush(); | |
35 | flush(); | |
36 | } | |
37 | } | |
38 | $dorker = new indoxploit; | |
39 | $dork = $dorker->dork = $_POST['dork']; | |
40 | if(isset($dork)) { | |
41 | $data = $dorker->google($dork, "0"); | |
42 | $dorker->buffer(); | |
43 | if($data) { | |
44 | foreach($data['responseData']['cursor']['pages'] as $key => $data_page) { | |
45 | $data = $dorker->google($dork, $data_page['start']); | |
46 | foreach($data['responseData']['results'] as $key => $load_data) { | |
47 | if($_SESSION[$load_data['visibleUrl']]) { | |
48 | } else { | |
49 | $_SESSION[$load_data['visibleUrl']] = "1"; | |
50 | $url = "http://".$load_data['visibleUrl']."/adminweb/"; | |
51 | $cek = $dorker->http_getx($url, true); | |
52 | if(preg_match("/CMS lokomedia|Administrator|LOGIN ADMINISTRATOR/i", $cek)) { | |
53 | echo $url."<br>"; | |
54 | } | |
55 | $dorker->buffer(); | |
56 | } | |
57 | } | |
58 | } | |
59 | $dorker->buffer(); | |
60 | } else { | |
61 | echo "google captcha."; | |
62 | } | |
63 | } |