send
Grupo de Telegram
play_arrow
Este sitio utiliza cookies propias y de terceros. Si continúa navegando consideramos que acepta el uso de cookies. OK Más Información.

Scanner de Directorio

  • 0 Respuestas
  • 2261 Vistas

0 Usuarios y 1 Visitante están viendo este tema.

Conectado ANTRAX

  • *
  • Administrator
  • Mensajes: 5267
  • Actividad:
    48.33%
  • Reputación 26
  • ANTRAX
    • Ver Perfil
    • Underc0de
    • Email
  • Skype: underc0de.org
  • Twitter: @Underc0de
« en: Marzo 31, 2012, 01:31:35 pm »
Código: Perl
  1. #!/usr/bin/perl
  2.  
  3.  
  4. #
  5.  
  6.  
  7. #bY boER
  8.  
  9.  
  10. use LWP::UserAgent;
  11.  
  12.  
  13. my $ua = LWP::UserAgent->new();
  14.  
  15.  
  16. $ua->timeout(10);
  17.  
  18.  
  19. $ua->agent("Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.3) Gecko/20010801");
  20.  
  21.  
  22. unless($ARGV[0]){
  23.  
  24.  
  25. OUT("#############################################\n");
  26.  
  27.  
  28. OUT("\n Usage: perl $0 website\n");
  29.  
  30.  
  31. OUT("\n#############################################\n");
  32.  
  33.  
  34. You are not allowed to view links. Register or Login(0);
  35.  
  36.  
  37. }
  38.  
  39.  
  40. if($^O =~ /Win/){
  41.  
  42.  
  43. You are not allowed to view links. Register or Login("cls");
  44.  
  45.  
  46. }else{
  47.  
  48.  
  49. You are not allowed to view links. Register or Login("clear");
  50.  
  51.  
  52. }
  53.  
  54.  
  55. OUT("#############################################\n");
  56.  
  57.  
  58. OUT("        Scanner Directory!\n");
  59.  
  60.  
  61. OUT("#############################################\n");
  62.  
  63.  
  64. OUT(" 200 - OK\n");
  65.  
  66.  
  67. OUT(" 401 - Authorization Required\n");
  68.  
  69.  
  70. OUT(" 403 - Forbidden\n");
  71.  
  72.  
  73. OUT(" 500 - Bad Hostname | Internal Server Error\n");
  74.  
  75.  
  76. OUT("#############################################\n");
  77.  
  78.  
  79. $webcl = clear($ARGV[0]);
  80.  
  81.  
  82. OUT("\n# Scanning: $webcl\n\n");
  83.  
  84.  
  85. brute($webcl);
  86.  
  87.  
  88. OUT("\n# Scanning Finished\n");
  89.  
  90.  
  91. sub brute{
  92.  
  93.  
  94. $web = You are not allowed to view links. Register or Login;
  95.  
  96.  
  97. @paths = ("access","active","adm","admin","_admin","administrator",
  98.  
  99.  
  100. "administracion","_administracion","~administracion","administer",
  101.  
  102.  
  103. "upload","uploads","~adm","~admin","~administrator","~guest","~mail",
  104.  
  105.  
  106. "~operator","~root","~sys","~sysadm","~sysadmin","~test","~user","~www",
  107.  
  108.  
  109. "~webmaster","admin_upload","admin_uploadpic","editpassword",
  110.  
  111.  
  112. "manager_userinfo","manager_tongji","managerenter","incupfile","inc",
  113.  
  114.  
  115. "upfile","admin_index","admin_admin","index_admin","index","admindefault",
  116.  
  117.  
  118. "default","manage","login","manage_index","index_manage","admin1",
  119.  
  120.  
  121. "admin_login","login_admin","ad_login","ad_manage","count","manager",
  122.  
  123.  
  124. "adminlogin","adminuserlogin","adm_login","chklogin","adduser","adminuser",
  125.  
  126.  
  127. "admin_user","edituser","adminadduser","adminmember","addmember","adminedit",
  128.  
  129.  
  130. "admin_edit","up","upfiles","aadmin","admintab","admin_main","fileadmin",
  131.  
  132.  
  133. "databases","includeinc","***","app","apacheasp","apps","archive","archives",
  134.  
  135.  
  136. "asp","back","backup","back-up","bak","bakup","bak-up","basic","bea","bin",
  137.  
  138.  
  139. "binaries","broken","c","cc","connections","ccs","cache","cgi","fcgi",
  140.  
  141.  
  142. "cgibin","cgi-win","class","classes","classified","classifieds","code",
  143.  
  144.  
  145. "common","credit","creditcards","cv","cvs","customer","customers",
  146.  
  147.  
  148. "CYBERDOCS","CYBERDOCS25","CYBERDOCS31","d","dfiles","data","database",
  149.  
  150.  
  151. "db","dbase","dbm","dbms","demo","dev","devel","develop","development",
  152.  
  153.  
  154. "doc","docs","docs41","docs51","dms","e","email","downloads","ecommerce",
  155.  
  156.  
  157. "ebriefs","error","errors","esales","echannel","esupport","etc","exec",
  158.  
  159.  
  160. "executable","executables","extra","extranet","examples","exchange",
  161.  
  162.  
  163. "fcgi-bin","functions","feedback","file","files","forum","forums","ftp",
  164.  
  165.  
  166. "graphics","galeria","gallery","galerias","guestbook","guests","help",
  167.  
  168.  
  169. "hidden","hide","home","homes","htm","html","imagen","images","icons",
  170.  
  171.  
  172. "incs","include","includes","interactive","internet","intranet","java",
  173.  
  174.  
  175. "javascript","js","jsp","keep","kept","ldap","lib","libs","libraries",
  176.  
  177.  
  178. "links","log","logfiles","logs","lightbox2","mail","me","members","mine",
  179.  
  180.  
  181. "mirror","mirrors","mp3","mp3s","ms","mssql","ms-sql","music","my","new",
  182.  
  183.  
  184. "old","online","order","orders","pages","_pages","pass","passes","passwd",
  185.  
  186.  
  187. "password","polls","passwords","perl","personal","personals","php","_php",
  188.  
  189.  
  190. "phpincludes","pics","pl","pls","plx","press","priv","private","products",
  191.  
  192.  
  193. "production","pub","public","removed","reports","root","sales","save",
  194.  
  195.  
  196. "saved","scripts","secret","secrets","security","servlet","servlets",
  197.  
  198.  
  199. "soap","soapdocs","source","site","sites","SiteServer","sql","src",
  200.  
  201.  
  202. "staff","stats","statistics","ssi","stuff","support","temp","temps","test",
  203.  
  204.  
  205. "text","texts","tmp","user","users","var","vb","vbs","vbscript","vbscripts",
  206.  
  207.  
  208. "weblogic","www","xcache","xsql","zip","zips","W3SVC","W3SVC3","index.php",
  209.  
  210.  
  211. "index.html","phpmyadmin","phpMyAdmin",".bash_history","upload.php",
  212.  
  213.  
  214. "upload.asp","uploader.php","uploader.asp","phpinfo.php","_banners",
  215.  
  216.  
  217. "_adv","468","88","ads","adv","ban","baners","bann","banner","banners",
  218.  
  219.  
  220. "bannerz","be","begun","bn","bnr","cnstats","cnt","phpadsnew","server-status",
  221.  
  222.  
  223. "server-info",".server-status",".server-info",".passwd","INSTALL","_vti_log",
  224.  
  225.  
  226. "admcgi","_notes","_tmp","_temp","panel","_panel","~panel","upFiles","img",
  227.  
  228.  
  229. "es","css","socios","Documentation","INSTALLsetup.php","Upfile","cgi-bin",
  230.  
  231.  
  232. "content","secure","mysql","4Dbin","trustscn_pdos","trustscn_pdos1","_vti_bin",
  233.  
  234.  
  235. "Connections","_mmServerScripts","bot","imag","lobatos","phpmyadm","Phpmyadmin",
  236.  
  237.  
  238. "PhpMyAdmin","PhpGAdmin","PhpInclude","PhpIncludes","phpscripts","PhpScripts",
  239.  
  240.  
  241. "_vti_txt","cgi-local","cgis","WS_FTP.LOG","User.php","Upload.php","AlbumDB.php",
  242.  
  243.  
  244. "add_comment.php","add_photo.php","admin.php","adm.php","adm.asp","admin.asp","main",
  245.  
  246.  
  247. "web","global","globals","uploader","logon","sign","signin","example","update",
  248.  
  249.  
  250. "readme","client","clients","cmd","logfile","details","shtml","asa","jsa",
  251.  
  252.  
  253. "txt","cfm","sav","nsf","bat","com","exe","dll","reg","tar","tar.gz","tgz",
  254.  
  255.  
  256. "o","sh","member","auth","login.php","user.php","admin.php~","members.php",
  257.  
  258.  
  259. "members.php~","configuration.php~","config.php~","Setting.php~","Settings.php~",
  260.  
  261.  
  262. "Settings_bak.php~","Setting_bak.php~","config-bak.php~","member.php","users.php",
  263.  
  264.  
  265. "webadmin.php","webadmin","miembro","miembros","administrador","administration",
  266.  
  267.  
  268. "config.php.inc","config.php.inc~","configuration.php.inc","configuration.php.inc~",
  269.  
  270.  
  271. "DBConnection.inc","includesDBConnection.inc","includesDBConnection.php.inc");
  272.  
  273.  
  274. foreach $path(@paths){
  275.  
  276.  
  277. You are not allowed to view links. Register or Login($path);
  278.  
  279.  
  280. $code = $ua->get($web . $path)->status_line;
  281.  
  282.  
  283. check_code($code,$path);
  284.  
  285.  
  286. }
  287.  
  288.  
  289. }
  290.  
  291.  
  292. sub check_code{
  293.  
  294.  
  295. $ncode = You are not allowed to view links. Register or Login;
  296.  
  297.  
  298. $path = You are not allowed to view links. Register or Login;
  299.  
  300.  
  301. $wp = $webcl . $path;
  302.  
  303.  
  304. if($ncode =~ /200/){
  305.  
  306.  
  307. OUT("$wp\t=>\t200 OK\n");
  308.  
  309.  
  310. }
  311.  
  312.  
  313. if($ncode =~ /401/){
  314.  
  315.  
  316. OUT("$wp\t=>\t401 Authorization Required\n");
  317.  
  318.  
  319. }
  320.  
  321.  
  322. if($ncode =~ /403/){
  323.  
  324.  
  325. OUT("$wp\t=>\t403 Forbidden\n");
  326.  
  327.  
  328. }
  329.  
  330.  
  331. if($ncode =~ /500/){
  332.  
  333.  
  334. OUT("$wp\t=>\t500 Internal Server Error\n");
  335.  
  336.  
  337. }
  338.  
  339.  
  340. }
  341.  
  342.  
  343. sub clear{
  344.  
  345.  
  346. $website = You are not allowed to view links. Register or Login;
  347.  
  348.  
  349. if($website !~ /^http/){
  350.  
  351.  
  352. $website = 'http://' . $website;
  353.  
  354.  
  355. }
  356.  
  357.  
  358. if($website !~ /\/$/){
  359.  
  360.  
  361. $website.='/';
  362.  
  363.  
  364. }
  365.  
  366.  
  367. You are not allowed to view links. Register or Login $website;
  368.  
  369.  
  370. }
  371.  
  372.  
  373. sub OUT{
  374.  
  375.  
  376. $msg = You are not allowed to view links. Register or Login;
  377.  
  378.  
  379. You are not allowed to view links. Register or Login STDOUT, "$msg";
  380.  
  381. }

Autor: Blozzter
« Última modificación: Marzo 14, 2015, 10:17:15 am por Expermicid »


 

¿Te gustó el post? COMPARTILO!



[Uniscan] Scanner de vulnerabilidades WEB hecho en Perl

Iniciado por tar3kw0rm3d

Respuestas: 0
Vistas: 1473
Último mensaje Junio 02, 2013, 08:01:28 pm
por tar3kw0rm3d
PHP Injection Scanner (Perl Code)

Iniciado por @ed33x

Respuestas: 0
Vistas: 1222
Último mensaje Enero 27, 2011, 08:53:33 pm
por @ed33x
Perl - Wordpress XMLRPC Scanner

Iniciado por ZanGetsu

Respuestas: 0
Vistas: 1799
Último mensaje Septiembre 22, 2014, 11:40:12 pm
por ZanGetsu
[Perl] VirusTotal Scanner 0.1

Iniciado por BigBear

Respuestas: 2
Vistas: 1485
Último mensaje Mayo 16, 2013, 02:31:49 pm
por BigBear
Dork Scanner

Iniciado por [T]Killer

Respuestas: 0
Vistas: 1105
Último mensaje Mayo 31, 2011, 07:11:30 am
por [T]Killer