Joomla Scanner

<!--

Title.......: [ JooMla serv3r ScaNN3r ]
c0d3r.......: [ Lagripe-Dz ]
HoMe........: [ wWw.sEc4EvEr.CoM ]
Date........: [ 26/12/2010 ]
LastUpdate..: [ 28/02/2011 ]
MyBlog......: [ Lagripe-Dz.org ]

-->
<html>
<head>
<meta http-equiv="Content-Language" content="fr">
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<title>#~JooMla serv3r ScaNN3r</title>
<style>
body,table{background: black; font-family:Verdana,tahoma; color: white; font-size:10px; }
A:link {text-decoration: none;color: red;}
A:active {text-decoration: none;color: red;}
A:visited {text-decoration: none;color: red;}
A:hover {text-decoration: underline; color: red;}
#new,input,table,td,tr,#gg{border-style:solid;text-decoration:bold;}
input:hover,tr:hover,td:hover{background-color: #FFFFCC; color:green;}
</style>
</head>

<body>

<p align="center">&nbsp;</p>
<p align="center">&nbsp;</p>
<p align="center">&nbsp;</p>
<p align="center"><font size="3">#~JooMla serv3r ScaNN3r</font></p><br>
<form method="POST">
    <p align="center"><input type="text" name="site" size="65"><input type="submit" value="ScaN"></p>
</form><center>
<?php
@set_time_limit(0);
@error_reporting(E_ALL | E_NOTICE);

function check_exploit($comxx){

$link ="http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=$comxx&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=";

$result = @file_get_contents($link);

if (eregi("No results",$result))  {

echo"<td>Not Found</td><td><a href='http://www.google.dz/#hl=en&q=download+$comxx+joomla+extension'>Download</a></td></tr>";

}else{

echo"<td><a href='$link'>Found</a></td><td><=</td></tr>";

}
}

function check_com($url){

$source = @file_get_contents($url);

preg_match_all('{option,(.*?)/}i',$source,$f);
preg_match_all('{option=(.*?)(&amp;|&|")}i',$source,$f2);
preg_match_all('{/components/(.*?)/}i',$source,$f3);

$arz=array_merge($f2[1],$f[1],$f3[1]);

$coms=array();

foreach(array_unique($arz) as $x){
$coms[]=$x;
}

foreach($coms as $comm){

echo "<tr><td>$comm</td>";
check_exploit($comm);
}

}

function sec($site){
preg_match_all('{http://(.*?)(/index.php)}siU',$site, $sites);
if(eregi("www",$sites[0][0])){
return $site=str_replace("index.php","",$sites[0][0]);
}else{
return $site=str_replace("http://","http://www.",str_replace("index.php","",$sites[0][0]));
}}

$npages = 50000;

if ($_POST)
{
  $ip = trim(strip_tags($_POST['site']));
  $npage = 1;
  $allLinks = array();


   while($npage <= $npages)
  {

  $x=@file_get_contents('http://www.bing.com/search?q=ip%3A' . $ip . '+index.php?option=com&first=' . $npage);


    if ($x)
    {
        preg_match_all('(<div class="sb_tlst">.*<h3>.*<a href="(.*)".*>(.*)</a>.*</h3>.*</div>)siU', $x, $findlink);

        foreach ($findlink[1] as $fl)

        $allLinks[]=sec($fl);


        $npage = $npage + 10;

        if (preg_match('(first=' . $npage . '&amp)siU', $x, $linksuiv) == 0)
            break;
    }

    else
        break;
  }


$allDmns = array();

foreach ($allLinks as $kk => $vv){

$allDmns[] = $vv;
}

echo'<table border="1"  width=\"80%\" align=\"center\">
<tr><td width=\"30%\"><b>Server IP&nbsp;&nbsp;&nbsp;&nbsp; : </b></td><td><b>'.$ip.'</b></td></tr>
<tr><td width=\"30%\"><b>Sites Found&nbsp; : </b></td><td><b>'.count(array_unique($allDmns)).'</b></td></tr>
</table>';
echo "<br><br>";

echo'<table border="1" width="80%" align=\"center\">';

foreach(array_unique($allDmns) as $h3h3){

echo'<tr id=new><td><b><a href='.$h3h3.'>'.$h3h3.'</a></b></td><td><b>Exploit-db</b></td><td><b>challenge of Exploiting ..!</b></td></tr>';

check_com($h3h3);

}

echo"</table>";

}
?></center>
<br><p align="center">
(c)0d3d By <a href='http://www.Lagripe-Dz.org/'>Lagripe-Dz</a> | <a href='http://wWw.sEc4EvEr.CoM/'>wWw.sEc4EvEr.CoM</a><br>
MaDe in AlGeriA 2o11 (r)
</p>
</body>

</html>