Este sitio utiliza cookies propias y de terceros. Si continúa navegando consideramos que acepta el uso de cookies. OK Más Información.

Mushi_admin_finder :3

  • 0 Respuestas
  • 1692 Vistas

0 Usuarios y 1 Visitante están viendo este tema.

Desconectado The_Mushrr00m

  • *
  • Underc0der
  • Mensajes: 5
  • Actividad:
    0%
  • Reputación 0
  • "Don't Worry, be Hacked........."
    • Ver Perfil
    • Mi Twitter:
    • Email
« en: Julio 04, 2013, 02:34:14 am »
Bueno, primero que nada un saludo para todos los que lleguen a leer esta entrada. :P

Se que en el foro he estado algo ausente desde hace un tiempo, pero aquí esta el inicio de posiblemente una larga serie de “scripts” que publicare, codeados con mi “navaja suiza” Python…

Este es un admin_finder algo básico, pero es el que utilizare en una mini-suit que estoy preparando, con varios scripts que son necesarios a la hora del pentesting.

EDITO:
Aqui les dejo ell Código  :P

Código: Python
  1. #Created for @The_Mushrr00m of the D4rkSh3LL Team
  2. #Open Source Version...
  3. #For suggestions or bugs, contact me on Twitter and D4rkSh3ll blog's team
  4. #http://www.d4rksh3ll.tk/
  5.  
  6. #Greets To all my followers...
  7.  
  8. #cd directory/to/code
  9. #direcory/to/code>python mushi_admin_finder.py
  10. #Spanish-Version :P
  11.  
  12.  
  13.  
  14. import httplib
  15. import socket
  16. import sys
  17.  
  18.  
  19. try:
  20.     print "\t############################################################################################"
  21.     print "\t#                                                                 www.d4rksh3ll.tk/        #"
  22.     print "\t#                                                     www.twitter.com/The_Mushrr00m        #"
  23.     print "\t#                                                     www.twitter.com/Mushrr0m_ACIS        #"
  24.     print "\t#                                                                                          #"
  25.     print "\t# @@@@@@@        @@@   @@@@@@@   @@@  @@@   @@@@@@   @@@  @@@  @@@@@@   @@@       @@@      #"
  26.     print "\t# @@@@@@@@      @@@@   @@@@@@@@  @@@  @@@  @@@@@@@   @@@  @@@  @@@@@@@  @@@       @@@      #"
  27.     print "\t# @@!  @@@     @@[email protected]!   @@!  @@@  @@!  [email protected]@  [email protected]@       @@!  @@@      @@@  @@!       @@!      #"
  28.     print "\t# !!:  !!!  :!!:!:!!:  !!: :!!   !!: :!!        !:!  !!:  !!!      !!:  !!:       !!:      #"
  29.     print "\t# :!:  !:!  !:::!!:::  :!:  !:!  :!:  !:!      !:!   :!:  !:!      :!:   :!:       :!:     #"
  30.     print "\t# :::: ::       :::   ::   :::   ::  :::  :::: ::   ::   :::  :: ::::   :: ::::   :: ::::  #"
  31.     print "\t# :: :  :        :::    :   : :   :   :::  :: : :     :   : :   : : :   : :: : :  : :: : : #"
  32.     print "\t#                                                                                      #"
  33.     print "\t#                                             Mushi_Admin_Finder                           #"
  34.     print "\t#                                              coded by @[email protected]_ACIS      #"
  35.     print "\t#                                               Greets to @W4rl0ck and @D4rkSh3ll members  #"
  36.     print "\t############################################################################################"
  37.  
  38.     var1=0
  39.     var2=0
  40.  
  41.     php = ['?q=user','Flogin.php/','admin/','administrador/','admin1/','admin2/','admin3/','admin4/','admin5/','usuarios/','usuario/','administrator/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracion/','instadmin/',
  42. 'memberadmin/','administratorlogin/','adm/','admin/account.php','admin/index.php','admin/login.php','admin/admin.php','admin/account.php',
  43. 'admin_area/admin.php','admin_area/login.php','siteadmin/login.php','siteadmin/index.php','siteadmin/login.html','admin/account.html','admin/index.html','admin/login.html','admin/admin.html',
  44. 'admin_area/index.php','bb-admin/index.php','bb-admin/login.php','bb-admin/admin.php','admin/home.php','admin_area/login.html','admin_area/index.html',
  45. 'admin/controlpanel.php','admin.php','admincp/index.asp','admincp/login.asp','admincp/index.html','admin/account.html','adminpanel.html','webadmin.html',
  46. 'webadmin/index.html','webadmin/admin.html','webadmin/login.html','admin/admin_login.html','admin_login.html','panel-administracion/login.html',
  47. 'admin/cp.php','cp.php','administrator/index.php','administrator/login.php','nsw/admin/login.php','webadmin/login.php','admin/admin_login.php','admin_login.php',
  48. 'administrator/account.php','administrator.php','admin_area/admin.html','pages/admin/admin-login.php','admin/admin-login.php','admin-login.php',
  49. 'bb-admin/index.html','bb-admin/login.html','acceso.php','bb-admin/admin.html','admin/home.html','login.php','modelsearch/login.php','moderator.php','moderator/login.php',
  50. 'moderator/admin.php','account.php','pages/admin/admin-login.html','admin/admin-login.html','admin-login.html','controlpanel.php','admincontrol.php',
  51. 'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home.html','rcjakar/admin/login.php','adminarea/index.html','adminarea/admin.html',
  52. 'webadmin.php','webadmin/index.php','webadmin/admin.php','admin/controlpanel.html','admin.html','admin/cp.html','cp.html','adminpanel.php','moderator.html',
  53. 'administrator/index.html','administrator/login.html','user.html','administrator/account.html','administrator.html','login.html','modelsearch/login.html',
  54. 'moderator/login.html','adminarea/login.html','panel-administracion/index.html','panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html',
  55. 'admincontrol/login.html','adm/index.html','adm.html','moderator/admin.html','user.php','account.html','controlpanel.html','admincontrol.html',
  56. 'panel-administracion/login.php','wp-login.php','adminLogin.php','admin/adminLogin.php','home.php','admin.php','adminarea/index.php',
  57. 'adminarea/admin.php','adminarea/login.php','panel-administracion/index.php','panel-administracion/admin.php','modelsearch/index.php',
  58. 'modelsearch/admin.php','admincontrol/login.php','adm/admloginuser.php','admloginuser.php','admin2.php','admin2/login.php','admin2/index.php','usuarios/login.php',
  59. 'adm/index.php','adm.php','affiliate.php','adm_auth.php','memberadmin.php','administratorlogin.php']
  60.  
  61.     asp = ['?q=user','Flogin.php/','admin/','administrador/','admin1/','admin2/','admin3/','admin4/','admin5/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracion/','instadmin/',
  62. 'memberadmin/','administratorlogin/','adm/','account.asp','admin/account.asp','admin/index.asp','admin/login.asp','admin/admin.asp',
  63. 'admin_area/admin.asp','admin_area/login.asp','admin/account.html','admin/index.html','admin/login.html','admin/admin.html',
  64. 'admin_area/admin.html','admin_area/login.html','admin_area/index.html','admin_area/index.asp','bb-admin/index.asp','bb-admin/login.asp','bb-admin/admin.asp',
  65. 'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admin/home.html','admin/controlpanel.html','admin.html','admin/cp.html','cp.html',
  66. 'administrator/index.html','administrator/login.html','administrator/account.html','administrator.html','login.html','modelsearch/login.html','moderator.html',
  67. 'moderator/login.html','moderator/admin.html','account.html','controlpanel.html','admincontrol.html','admin_login.html','panel-administracion/login.html',
  68. 'admin/home.asp','admin/controlpanel.asp','admin.asp','pages/admin/admin-login.asp','admin/admin-login.asp','admin-login.asp','admin/cp.asp','cp.asp',
  69. 'administrator/account.asp','administrator.asp','acceso.asp','login.asp','modelsearch/login.asp','moderator.asp','moderator/login.asp','administrator/login.asp',
  70. 'moderator/admin.asp','controlpanel.asp','admin/account.html','adminpanel.html','webadmin.html','pages/admin/admin-login.html','admin/admin-login.html',
  71. 'webadmin/index.html','webadmin/admin.html','webadmin/login.html','user.asp','user.html','admincp/index.asp','admincp/login.asp','admincp/index.html',
  72. 'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home.html','adminarea/index.html','adminarea/admin.html','adminarea/login.html',
  73. 'panel-administracion/index.html','panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html','admin/admin_login.html',
  74. 'admincontrol/login.html','adm/index.html','adm.html','admincontrol.asp','admin/account.asp','adminpanel.asp','webadmin.asp','webadmin/index.asp',
  75. 'webadmin/admin.asp','webadmin/login.asp','admin/admin_login.asp','admin_login.asp','panel-administracion/login.asp','adminLogin.asp',
  76. 'admin/adminLogin.asp','home.asp','admin.asp','adminarea/index.asp','adminarea/admin.asp','adminarea/login.asp','admin-login.html',
  77. 'panel-administracion/index.asp','panel-administracion/admin.asp','modelsearch/index.asp','modelsearch/admin.asp','administrator/index.asp',
  78. 'admincontrol/login.asp','adm/admloginuser.asp','admloginuser.asp','admin2.asp','admin2/login.asp','admin2/index.asp','adm/index.asp',
  79. 'adm.asp','affiliate.asp','adm_auth.asp','memberadmin.asp','administratorlogin.asp','siteadmin/login.asp','siteadmin/index.asp','siteadmin/login.html']
  80.  
  81.     cfm = ['?q=user','Flogin.php/','admin/','administrator/','admin1/','admin2/','admin3/','admin4/','admin5/','usuarios/','usuario/','administrator/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracion/','instadmin/',
  82. 'memberadmin/','administratorlogin/','adm/','admin/account.cfm','admin/index.cfm','admin/login.cfm','admin/admin.cfm','admin/account.cfm',
  83. 'admin_area/admin.cfm','admin_area/login.cfm','siteadmin/login.cfm','siteadmin/index.cfm','siteadmin/login.html','admin/account.html','admin/index.html','admin/login.html','admin/admin.html',
  84. 'admin_area/index.cfm','bb-admin/index.cfm','bb-admin/login.cfm','bb-admin/admin.cfm','admin/home.cfm','admin_area/login.html','admin_area/index.html',
  85. 'admin/controlpanel.cfm','admin.cfm','admincp/index.asp','admincp/login.asp','admincp/index.html','admin/account.html','adminpanel.html','webadmin.html',
  86. 'webadmin/index.html','webadmin/admin.html','webadmin/login.html','admin/admin_login.html','admin_login.html','panel-administracion/login.html',
  87. 'admin/cp.cfm','cp.cfm','administrator/index.cfm','administrator/login.cfm','nsw/admin/login.cfm','webadmin/login.cfm','admin/admin_login.cfm','admin_login.cfm',
  88. 'administrator/account.cfm','administrator.cfm','admin_area/admin.html','pages/admin/admin-login.cfm','admin/admin-login.cfm','admin-login.cfm',
  89. 'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admin/home.html','login.cfm','modelsearch/login.cfm','moderator.cfm','moderator/login.cfm',
  90. 'moderator/admin.cfm','account.cfm','pages/admin/admin-login.html','admin/admin-login.html','admin-login.html','controlpanel.cfm','admincontrol.cfm',
  91. 'admin/adminLogin.html','acceso.cfm','adminLogin.html','admin/adminLogin.html','home.html','rcjakar/admin/login.cfm','adminarea/index.html','adminarea/admin.html',
  92. 'webadmin.cfm','webadmin/index.cfm','webadmin/admin.cfm','admin/controlpanel.html','admin.html','admin/cp.html','cp.html','adminpanel.cfm','moderator.html',
  93. 'administrator/index.html','administrator/login.html','user.html','administrator/account.html','administrator.html','login.html','modelsearch/login.html',
  94. 'moderator/login.html','adminarea/login.html','panel-administracion/index.html','panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html',
  95. 'admincontrol/login.html','adm/index.html','adm.html','moderator/admin.html','user.cfm','account.html','controlpanel.html','admincontrol.html',
  96. 'panel-administracion/login.cfm','wp-login.cfm','adminLogin.cfm','admin/adminLogin.cfm','home.cfm','admin.cfm','adminarea/index.cfm',
  97. 'adminarea/admin.cfm','adminarea/login.cfm','panel-administracion/index.cfm','panel-administracion/admin.cfm','modelsearch/index.cfm',
  98. 'modelsearch/admin.cfm','admincontrol/login.cfm','adm/admloginuser.cfm','admloginuser.cfm','admin2.cfm','admin2/login.cfm','admin2/index.cfm','usuarios/login.cfm',
  99. 'adm/index.cfm','adm.cfm','affiliate.cfm','adm_auth.cfm','memberadmin.cfm','administratorlogin.cfm']
  100.  
  101.     js = ['?q=user','Flogin.php/','admin/','administrator/','admin1/','admin2/','admin3/','admin4/','admin5/','usuarios/','usuario/','administrator/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracion/','instadmin/',
  102. 'memberadmin/','administratorlogin/','adm/','admin/account.js','admin/index.js','admin/login.js','admin/admin.js','admin/account.js',
  103. 'admin_area/admin.js','admin_area/login.js','siteadmin/login.js','siteadmin/index.js','siteadmin/login.html','admin/account.html','admin/index.html','admin/login.html','admin/admin.html',
  104. 'admin_area/index.js','bb-admin/index.js','bb-admin/login.js','bb-admin/admin.js','admin/home.js','admin_area/login.html','admin_area/index.html',
  105. 'admin/controlpanel.js','admin.js','admincp/index.asp','admincp/login.asp','admincp/index.html','admin/account.html','adminpanel.html','webadmin.html',
  106. 'webadmin/index.html','webadmin/admin.html','webadmin/login.html','admin/admin_login.html','admin_login.html','panel-administracion/login.html',
  107. 'admin/cp.js','cp.js','administrator/index.js','administrator/login.js','nsw/admin/login.js','webadmin/login.js','admin/admin_login.js','admin_login.js',
  108. 'administrator/account.js','administrator.js','admin_area/admin.html','pages/admin/admin-login.js','admin/admin-login.js','admin-login.js',
  109. 'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admin/home.html','login.js','modelsearch/login.js','moderator.js','moderator/login.js',
  110. 'moderator/admin.js','account.js','pages/admin/admin-login.html','admin/admin-login.html','admin-login.html','controlpanel.js','admincontrol.js',
  111. 'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home.html','rcjakar/admin/login.js','adminarea/index.html','adminarea/admin.html',
  112. 'webadmin.js','webadmin/index.js','acceso.js','webadmin/admin.js','admin/controlpanel.html','admin.html','admin/cp.html','cp.html','adminpanel.js','moderator.html',
  113. 'administrator/index.html','administrator/login.html','user.html','administrator/account.html','administrator.html','login.html','modelsearch/login.html',
  114. 'moderator/login.html','adminarea/login.html','panel-administracion/index.html','panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html',
  115. 'admincontrol/login.html','adm/index.html','adm.html','moderator/admin.html','user.js','account.html','controlpanel.html','admincontrol.html',
  116. 'panel-administracion/login.js','wp-login.js','adminLogin.js','admin/adminLogin.js','home.js','admin.js','adminarea/index.js',
  117. 'adminarea/admin.js','adminarea/login.js','panel-administracion/index.js','panel-administracion/admin.js','modelsearch/index.js',
  118. 'modelsearch/admin.js','admincontrol/login.js','adm/admloginuser.js','admloginuser.js','admin2.js','admin2/login.js','admin2/index.js','usuarios/login.js',
  119. 'adm/index.js','adm.js','affiliate.js','adm_auth.js','memberadmin.js','administratorlogin.js']
  120.  
  121.     cgi = ['?q=user','Flogin.php/','admin/','administrator/','admin1/','admin2/','admin3/','admin4/','admin5/','usuarios/','usuario/','administrator/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracion/','instadmin/',
  122. 'memberadmin/','administratorlogin/','adm/','admin/account.cgi','admin/index.cgi','admin/login.cgi','admin/admin.cgi','admin/account.cgi',
  123. 'admin_area/admin.cgi','admin_area/login.cgi','siteadmin/login.cgi','siteadmin/index.cgi','siteadmin/login.html','admin/account.html','admin/index.html','admin/login.html','admin/admin.html',
  124. 'admin_area/index.cgi','bb-admin/index.cgi','bb-admin/login.cgi','bb-admin/admin.cgi','admin/home.cgi','admin_area/login.html','admin_area/index.html',
  125. 'admin/controlpanel.cgi','admin.cgi','admincp/index.asp','admincp/login.asp','admincp/index.html','admin/account.html','adminpanel.html','webadmin.html',
  126. 'webadmin/index.html','webadmin/admin.html','webadmin/login.html','admin/admin_login.html','admin_login.html','panel-administracion/login.html',
  127. 'admin/cp.cgi','cp.cgi','administrator/index.cgi','administrator/login.cgi','nsw/admin/login.cgi','webadmin/login.cgi','admin/admin_login.cgi','admin_login.cgi',
  128. 'administrator/account.cgi','administrator.cgi','admin_area/admin.html','pages/admin/admin-login.cgi','admin/admin-login.cgi','admin-login.cgi',
  129. 'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admin/home.html','login.cgi','modelsearch/login.cgi','moderator.cgi','moderator/login.cgi',
  130. 'moderator/admin.cgi','account.cgi','pages/admin/admin-login.html','admin/admin-login.html','admin-login.html','controlpanel.cgi','admincontrol.cgi',
  131. 'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home.html','rcjakar/admin/login.cgi','adminarea/index.html','adminarea/admin.html',
  132. 'webadmin.cgi','webadmin/index.cgi','acceso.cgi','webadmin/admin.cgi','admin/controlpanel.html','admin.html','admin/cp.html','cp.html','adminpanel.cgi','moderator.html',
  133. 'administrator/index.html','administrator/login.html','user.html','administrator/account.html','administrator.html','login.html','modelsearch/login.html',
  134. 'moderator/login.html','adminarea/login.html','panel-administracion/index.html','panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html',
  135. 'admincontrol/login.html','adm/index.html','adm.html','moderator/admin.html','user.cgi','account.html','controlpanel.html','admincontrol.html',
  136. 'panel-administracion/login.cgi','wp-login.cgi','adminLogin.cgi','admin/adminLogin.cgi','home.cgi','admin.cgi','adminarea/index.cgi',
  137. 'adminarea/admin.cgi','adminarea/login.cgi','panel-administracion/index.cgi','panel-administracion/admin.cgi','modelsearch/index.cgi',
  138. 'modelsearch/admin.cgi','admincontrol/login.cgi','adm/admloginuser.cgi','admloginuser.cgi','admin2.cgi','admin2/login.cgi','admin2/index.cgi','usuarios/login.cgi',
  139. 'adm/index.cgi','adm.cgi','affiliate.cgi','adm_auth.cgi','memberadmin.cgi','administratorlogin.cgi']
  140.  
  141.  
  142.     try:
  143.         site = raw_input("Que sitio quieres escanear?: ")
  144.         site = site.replace("http://","")
  145.         print ("\tChecando el sitio " + site + "...")
  146.         conn = httplib.HTTPConnection(site)
  147.         conn.connect()
  148.         print "\t[$] Siiii.....el servidor esta funcionando :P"
  149.     except (httplib.HTTPResponse, socket.error) as Exit:
  150.         raw_input("\t [!] Oops :( Error occured, Server offline or invalid URL :(")
  151.         exit()
  152.     print "Ingresa el numero del tipo de sitio escaneado:"
  153.     print "1 PHP"
  154.     print "2 ASP"
  155.     print "3 CFM"
  156.     print "4 JS"
  157.     print "5 CGI"
  158.     print "\nEjemplo: Presiona 1 y la tecla enter para seleccionar PHP\n"
  159.     code=input("> ")
  160.  
  161.     if code==1:
  162.         print("\t [+] Escaneando " + site + "...\n\n")
  163.         for admin in php:
  164.             admin = admin.replace("\n","")
  165.             admin = "/" + admin
  166.             host = site + admin
  167.             print ("\t [#] Checando " + host + "...")
  168.             connection = httplib.HTTPConnection(site)
  169.             connection.request("GET",admin)
  170.             response = connection.getresponse()
  171.             var2 = var2 + 1
  172.             if response.status == 200:
  173.                 var1 = var1 + 1
  174.                 print "%s %s" % ( "\n\n>>>" + host, "Pagina de Administrador encontrada! *--* ")
  175.                 raw_input("Presiona la tecla enter para continuar.\n")
  176.             elif response.status == 404:
  177.                 var2 = var2
  178.             elif response.status == 302:
  179.                 print "%s %s" % ("\n>>>" + host, "Posible pagina de Administrador encontrada (302 - Redirect)")
  180.             else:
  181.                 print "%s %s %s" % (host, " Interesantes respuestas:", response.status)
  182.             connection.close()
  183.         print("\n\nCompletado \n")
  184.         print var1, " Paginas de Administrador encontradas"
  185.         print var2, " Total de paginas escaneadas"
  186.         raw_input("[/] Este juego se acabo...): Presiona la tecla enter para salir...")
  187.  
  188.  
  189.     if code==2:
  190.         print("\t [+] Escaneando " + site + "...\n\n")
  191.         for admin in asp:
  192.             admin = admin.replace("\n","")
  193.             admin = "/" + admin
  194.             host = site + admin
  195.             print ("\t [#] Checando " + host + "...")
  196.             connection = httplib.HTTPConnection(site)
  197.             connection.request("GET",admin)
  198.             response = connection.getresponse()
  199.             var2 = var2 + 1
  200.             if response.status == 200:
  201.                 var1 = var1 + 1
  202.                 print "%s %s" % ( "\n\n>>>" + host, "Pagina de Administrador encontrada! *--* ")
  203.                 raw_input("Presiona la tecla enter para continuar.\n")
  204.             elif response.status == 404:
  205.                 var2 = var2
  206.             elif response.status == 302:
  207.                 print "%s %s" % ("\n>>>" + host, "Posible pagina de Administrador encontrada (302 - Redirect)")
  208.             else:
  209.                 print "%s %s %s" % (host, " Interesantes respuestas:", response.status)
  210.             connection.close()
  211.         print("\n\nCompletado \n")
  212.         print var1, " Paginas de Administrador encontradas"
  213.         print var2, " Total de paginas escaneadas"
  214.         raw_input("[/] Este juego se acabo...): Presiona la tecla enter para salir...")
  215.        
  216.        
  217.     if code==3:
  218.         print("\t [+] Escaneando " + site + "...\n\n")
  219.         for admin in cfm:
  220.             admin = admin.replace("\n","")
  221.             admin = "/" + admin
  222.             host = site + admin
  223.             print ("\t [#] Checando " + host + "...")
  224.             connection = httplib.HTTPConnection(site)
  225.             connection.request("GET",admin)
  226.             response = connection.getresponse()
  227.             var2 = var2 + 1
  228.             if response.status == 200:
  229.                 var1 = var1 + 1
  230.                 print "%s %s" % ( "\n\n>>>" + host, "Pagina de Administrador encontrada! *--* ")
  231.                 raw_input("Presiona la tecla enter para continuar.\n")
  232.             elif response.status == 404:
  233.                 var2 = var2
  234.             elif response.status == 302:
  235.                 print "%s %s" % ("\n>>>" + host, "Posible pagina de Administrador encontrada (302 - Redirect)")
  236.             else:
  237.                 print "%s %s %s" % (host, " Interesantes respuestas:", response.status)
  238.             connection.close()
  239.         print("\n\nCompletado \n")
  240.         print var1, " Paginas de Administrador encontradas"
  241.         print var2, " Total de paginas escaneadas"
  242.         raw_input("[/] Este juego se acabo...): Presiona la tecla enter para salir...")
  243.  
  244.     if code==4:
  245.         print("\t [+] Escaneando " + site + "...\n\n")
  246.         for admin in js:
  247.             admin = admin.replace("\n","")
  248.             admin = "/" + admin
  249.             host = site + admin
  250.             print ("\t [#] Checando " + host + "...")
  251.             connection = httplib.HTTPConnection(site)
  252.             connection.request("GET",admin)
  253.             response = connection.getresponse()
  254.             var2 = var2 + 1
  255.             if response.status == 200:
  256.                 var1 = var1 + 1
  257.                 print "%s %s" % ( "\n\n>>>" + host, "Pagina de Administrador encontrada! *--* ")
  258.                 raw_input("Presiona la tecla enter para continuar.\n")
  259.             elif response.status == 404:
  260.                 var2 = var2
  261.             elif response.status == 302:
  262.                 print "%s %s" % ("\n>>>" + host, "Posible pagina de Administrador encontrada (302 - Redirect)")
  263.             else:
  264.                 print "%s %s %s" % (host, " Interesantes respuestas:", response.status)
  265.             connection.close()
  266.         print("\n\nCompletado \n")
  267.         print var1, " Paginas de Administrador encontradas"
  268.         print var2, " Total de paginas escaneadas"
  269.         raw_input("[/] Este juego se acabo...): Presiona la tecla enter para salir...")
  270.  
  271.     if code==5:
  272.        print("\t [+] Escaneando " + site + "...\n\n")
  273.        for admin in cgi:
  274.             admin = admin.replace("\n","")
  275.             admin = "/" + admin
  276.             host = site + admin
  277.             print ("\t [#] Checando " + host + "...")
  278.             connection = httplib.HTTPConnection(site)
  279.             connection.request("GET",admin)
  280.             response = connection.getresponse()
  281.             var2 = var2 + 1
  282.             if response.status == 200:
  283.                 var1 = var1 + 1
  284.                 print "%s %s" % ( "\n\n>>>" + host, "Pagina de Administrador encontrada! *--* ")
  285.                 raw_input("Presiona la tecla enter para continuar.\n")
  286.             elif response.status == 404:
  287.                 var2 = var2
  288.             elif response.status == 302:
  289.                 print "%s %s" % ("\n>>>" + host, "Posible pagina de Administrador encontrada (302 - Redirect)")
  290.             else:
  291.                 print "%s %s %s" % (host, " Interesantes respuestas:", response.status)
  292.                 connection.close()
  293.     print("\n\nCompletado \n")
  294.     print var1, " Paginas de Administrador encontradas"
  295.     print var2, " Total de paginas escaneadas"
  296.     raw_input(" Este juego se acabo...): Presiona la tecla enter para salir...")
  297.        
  298. except (httplib.HTTPResponse, socket.error):
  299.     print "\n\t[!] Sesion Cancelada ; Ocurrio un error. Revisa tus ajustes de internet :("
  300. except (KeyboardInterrupt, SystemExit):
  301.     print "\n\t[!] Sesion Cancelada"
  302.  

Descargar: script: mushi_admin_finder

CONTIENE:
>”mushi_admin_finder.py” (Código fuente/ejecutable desde terminal)
>archivo LEEME.txt

Saludos..!



Follow me on Twitter...

@The_Mushrr00m
@Mushrr00m_ACIS

FUENTE

  ;-)
« Última modificación: Marzo 23, 2015, 12:41:23 pm por Expermicid »

 

¿Te gustó el post? COMPARTILO!