API tools faq
paste
Advertisement
Guest User

finder

a guest
Aug 18th, 2017
107
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.27 KB | None | 0 0
raw download clone embed print report
  1. use HTTP::Request;
  2. use LWP::UserAgent;
  3. START:
  4. system('cls');
  5. system('color a');
  6. system('title WP/Joomla Sh3ll Finder V2.0 (By X-c0d3r)');
  7. print "\n";
  8. print "\t++++++++++++++++++++Private++++++++++++++++++++\n";
  9. print "\t+ WP/Joomla Shell Finder v2.0 (X-c0d3r) +\n";
  10. print "\t+ Greetz: Indian Cyber Space +\n";
  11. print "\t+ P1v0t_4ntr4xt | P4r1nd4 +\n";
  12. print "\t+ S3n_H4x0r | N3t_m0nst3r +\n";
  13. print "\t+ C0D3D32 | C0d3_Sm4sh3r +\n";
  14. print "\t+ All Ind14n H4ck3rs +\n";
  15. print "\t+++++++++++++++++++++++++++++++++++++++++++++++\n";
  16. print "\n";
  17. print "\tSelect the type of cms the site uses:\n";
  18. print "\t ___________________________________________\n";
  19. print "\t|| 1 = Wordpress ||\n";
  20. print "\t|| 2 = Joomla! ||\n";
  21. print "\t|| 3 = View Usage (Must Read) ||\n";
  22. print "\t||__________________________________________||\n";
  23. print "\tEnter your choice 1/2 -> ";
  24. $cms=<STDIN>;
  25. chomp $cms;
  26. if ($cms eq '1')
  27. {
  28. ret1:
  29. print "\n\tPlease Enter Site\n \tExample: www.defaced-wp-site.com\n\t-> ";
  30. $site=<STDIN>;
  31. chomp $site;
  32. if ( $site !~ /^http:/ )
  33. {
  34. $site = 'http://'. $site;
  35. }
  36. if ( $site !~ /\/$/ ) {
  37. $site = $site . '/';
  38. }
  39. if ($site =~ m/([a-z0-9-].*)[.{2}](([a-z]{4}|[a-z]{3}|[a-z]{2}))/) {
  40. goto temp1;
  41. } else
  42. {
  43. print "\n\tPlease cooperate & use this script by entering a proper site! -_-";
  44. goto ret1;
  45. }
  46. temp1:
  47. print "\n";
  48. print "\n\tPlease Enter the Theme dir used by site: example: twentyeleven,twentyten....\n\t->";
  49. $theme=<STDIN>;
  50. $dir="wp-content/themes/";
  51. chomp $theme;
  52. $name="$site$dir$theme/$dirs";print "\t-> Defaced Site: $site\n";print "\t-> Starting Bruteforcing process....\n";
  53.  
  54. open IN, "< wpfinal.txt" or die "\tFile wpfinal.txt not found please create and put ur brute forcing list!";
  55. push(@brute_terms,<IN>);
  56. my $num = @brute_terms;print ("\t-> Having $num paths for guessing.\n");
  57. foreach $dirs(@brute_terms)
  58. {
  59. $name="$site$dir$theme/$dirs";
  60. my $req=HTTP::Request->new(GET=>$name);
  61. my $ua=LWP::UserAgent->new();
  62. $ua->timeout(60);
  63. my $response=$ua->request($req);
  64. if($response->content =~ /Uname:/ || $response->content =~ /Symlink/ || $response->content =~/server ip :/ || $response->content =~ /<form method=post>/ || /<input type=password/)
  65. {
  66. print " \n\t >.Found Sh3ll -> $name\n";
  67. system('pause');
  68. }
  69. else {
  70. print "\n\tNot found -> ".$name;
  71. }
  72. }
  73. }
  74.  
  75.  
  76.  
  77. if ($cms eq '2')
  78. {
  79. ret:print "\n\tPlease Enter Site\n\t Example: www.defaced-joomla-site.com\n\t-> ";
  80. $site=<STDIN>;
  81. chomp $site;
  82. if ( $site !~ /^http:/ )
  83. {
  84. $site = 'http://'.$site;
  85. }
  86. if ( $site !~ /\/$/ )
  87. {
  88. $site = $site.'/';
  89. }
  90. if ($site =~ m/([a-z0-9-].*)[.{2}](([a-z]{4}|[a-z]{3}|[a-z]{2}))/)
  91. {
  92. goto temp;
  93. }
  94. else {
  95. print "\n\tPlease cooperate & use this script by entering a proper site! -_-";
  96. goto ret;
  97. }
  98. temp:print "\n";print "\tPlease Enter the Template dir used by site: example: beez,system...\n\t->";
  99. $theme=<STDIN>;
  100. $dir="templates/";
  101. chomp $theme;
  102. $name="$site$dir$theme/$dirs";print "\t-> Defaced Site: $site\n";print "\t-> Starting Bruteforcing process....";
  103.  
  104. open IN, "< jofinal.txt" or die "\tFile jofinal.txt not found please create and put ur brute forcing list!";
  105. push(@brute_terms,<IN>);
  106. my $num = @brute_terms;print ("\t-> Having $num paths for guessing .\n");
  107. foreach $dirs(@brute_terms)
  108. {
  109. $name="$site$dir$theme/$dirs";
  110. my $req=HTTP::Request->new(GET=>$name);
  111. my $ua=LWP::UserAgent->new();
  112. $ua->timeout(60);
  113. my $response=$ua->request($req);
  114. if($response->content =~ /Uname:/ || $response->content =~ /Symlink/ || $response->content =~/server ip :/ || $response->content =~ /<form method=post>/ || /<input type=password/)
  115. {
  116. print "\n\t >.Found Sh3ll -> $name\n";
  117. system ('pause');
  118. }
  119. else { print "\n\tNot found -> $name ";
  120. }
  121. }
  122. }
  123.  
  124. if ($cms eq 3){ &usage }
  125. sub usage()
  126. {print ("\n\t-->To find theme/template dir used by the site use google dork cache:site.com then -> view source\n\n");
  127. system("pause");
  128. system("cls");print ("\n");
  129. goto START;
  130. }
  131. if ($cms != 1 && 2 && 3){ goto START; }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!