Shell'in Kullanımı :
Aşağıdaki kodları not defterine kopyalayın ve farklı kaydet diyin.
Ardından kaydettiğiniz dosyanın uzantısını ".php" yapın ve servere yükleyin.
Servere yükledikten sonra shelle girmeniz yeterlidir.
Kod:
# Author......: Lagripe-Dz [ at ] HoTMail [ dot ] CoM
# HoMe........: wWw.sEc4EvEr.CoM
# Date........: 22/12/2010
# Last Update.: 23/01/2011
# Gr33tz to...: All MeMber'z 0f wWw.sEc4EvEr.CoM & wWw.sEc-wAr.CoM
// Script Functions , start ..!
function ask_exploit_db($component){ // ???? ????????? ???? ???? ???????
$ExPloiTdb ="http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$component&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=-;
$result = @file_get_contents($ExPloiTdb);
if (eregi("No results",$result)) {
echo"<td>Not Found</td><td><a href='http://www.google.com/search?hl=en&q=download+$component'>Download</a></td></tr>-;
}else{
echo"<td><a href=-$ExPloiTdb'>Found ..!</a></td><td><--</td></tr>-;
}
}
/**************************************************************/
function get_components($site){ // ???? ???????? ???????? ?? ???? ?????? ?????
$source = @file_get_contents($site);
preg_match_all(-{option,(.*?)/}i',$source,$f);
preg_match_all(-{option=(.*?)(&|&|-)}i',$source,$f2);
preg_match_all(-{/components/(.*?)/}i',$source,$f3);
$arz=array_merge($f2[1],$f[1],$f3[1]);
$coms=array();
if(count($arz)==0){ echo -<tr><td colspan=3>[~] Nothing Found ..! , Maybe there is some error site or option ... check it .</td></tr>-;}
foreach(array_unique($arz) as $x){
$coms[]=$x;
}
foreach($coms as $comm){
echo -<tr><td>$comm</td>-;
ask_exploit_db($comm);
}
}
/**************************************************************/
function get_plugins($site){ // ???? ???????? ???????? ?? ???? ?????? ???? ????
$source = @file_get_contents($site);
preg_match_all(-#/plugins/(.*?)/#i", $source, $f);
$plugins=array_unique($f[1]);
if(count($plugins)==0){ echo -<tr><td colspan=3>[~] Nothing Found ..! , Maybe there is some error site or option ... check it .</td></tr>-;}
foreach($plugins as $plugin){
echo -<tr><td>$plugin</td>-;
ask_exploit_db($plugin);
}
}
/**************************************************************/
function t_header($site){ // ????? ??????
echo'<table align="center" border="1" width="50%- cellspacing="1" cellpadding="5">-;
echo'
<tr id="oo">
<td>Site : <a href=--.$site.-->-.$site.-</a></td>
<td>Exploit-db</b></td>
<td>Exploit it !</td>
</tr>
-;
}
?>
<html>
<head>
<***** http-equiv="Content-Language" content="fr">
<***** http-equiv="Content-Type" content="text/html; charset=windows-1252">
<title>#~ JooMla & WordPreSs Get Plugins and CoMPosent</title>
<style>
body,input,table,select{background: black; font-family:Verdana,tahoma; color: white; font-size:10px; }
a:link,a:active,a:visited{text-decoration: none;color: red;}
a:hover {text-decoration: underline; color: red;}
table,td,tr,#gg{ border-style:solid; text-decoration:bold; }
tr:hover,td:hover{background-color: #FFFFCC; color:green;}
.oo:hover{background-color: black; color:white;}
</style>
</head>
<body>
<p align="center"> </p>
<p align="center"> </p>
<p align="center"> </p>
<form method="POST" action=-->
<p align="center">
</p>
<p align="center">
<font size="4">#~ JooMla & WordPreSs, CoMposent ScaN</font></p>
<p align="center">
<font size="4"><br></font></p>
<p align="center">Site :
<input type="text" name="site" size="33" value="http://www.site.com/-><select size="1" name="what">
<option>WordPreSs</option>
<option>JooMla</option>
</select><input type="submit" value="ScaN"></p>
</form>
<?
// start :P :P ...
if($_POST){
$site=strip_tags(trim($_POST['site']));
t_header($site);
echo $x01 = ($_POST['what']=="WordPreSs") ? get_plugins($site):--;
echo $x02 = ($_POST['what']=="JooMla") ? get_components($site):--;
}
?>
</table>
<p align="center">Lagripe-Dz | wWw.sEc4EvEr.CoM<br>
MaDe in AlGeria 2011 ©</p>
</body>
</html>
<?
#~EnD ..! All Right Reserved To Lagripe-Dz [d0t] HoTMail [d0t] CoM and wWw.sEc4EvEr.CoM
?>
Hiç yorum yok: