API tools faq
paste
Advertisement
AndrewHaxalot

Exploiter Admin Control Page Finder

AndrewHaxalot
Oct 14th, 2013
170
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Perl 26.74 KB | None | 0 0
raw download clone embed print report
  1. #!usr/bin/perl
  2. ##########################################
  3. # FiveSec Team Brazil
  4. # site    http://fivesec-team.zz.mu
  5. # Page fb https://www.facebook.com/Fiv3Sec
  6. #Exploiter Admin Controll page finder
  7. #coder by dbturok
  8. #AdminPageFinder -> ADF.pl v1.2
  9. #Skype dbturok.troll
  10. # fb/dbturok.troll
  11. # fb/dbturok.fawkes.5
  12. # fb/FiveSec
  13. #greetz lwks,Orion,kodiak,Gh0st Hack3r,articos,DownBffo,
  14. #contact [email protected]
  15. #########################################
  16. use HTTP::Request;use LWP::UserAgent;use Net::Ping;
  17. #Clear monitor
  18. scan:;
  19. $sis="$^O";if ($sis eq linux){ $cmd="clear"; } else { $cmd="cls"; }
  20.  system("$cmd");
  21. system("color 0A");
  22.  
  23.         print "\n";
  24.         print "#---------------------------------------------------------------#\n";
  25.         print "# FiveSec Team Brazil | www.facebook.com/Fiv3Sec                #\n";
  26.         print "# Coded By dbturok Fawkes                                       #\n";
  27.         print "# AdFinder V 1.2                                     #\n";
  28.         print "# Greetz Lwks,DownBffo,Gh0st Hack3r,Kodiak,Articos,Orion        #\n";
  29.         print "#---------------------------------------------------------------#\n\n";
  30.        
  31.     print" Entre com o site para scan: \n";
  32.     print" Ex: www.site.com\n";
  33.     print" target: ";
  34.     $host=<STDIN>;
  35.     $timeout = 10;
  36.     chomp $host;
  37.    
  38.     if ($cont = $host){&Continuar}
  39.    
  40. sub Continuar{
  41.     print"\n";
  42.     print " Enter site source code:\n";
  43.     print " 1 = ASP\n";
  44.     print " 2 = CFM\n";
  45.     print " 3 = PHP\n";
  46.     print " 4 = JS\n";
  47.     print " 5 = CGI\n";
  48.     print " 6 = BRF\n";
  49.     print "\n Press 1 and 'Enter key' for Select ASP\n";
  50.     print" option:  ";
  51.     $cod=<STDIN>;
  52.     chomp($cod);
  53.  
  54. if ( $host !~ /^http:/ ) {
  55. $host = 'http://' . $host;
  56. }
  57. if ( $host !~ /\/$/ ) {
  58. $host = $host . '/';
  59. }
  60.     print "\n";
  61.     print "  [+] Host: $host\n";
  62.    
  63. if($cod eq "1"){
  64. @asp=(
  65. 'admin',
  66. 'administrator',
  67. 'admin1',
  68. 'admin2',
  69. 'admin3',
  70. 'admin4',
  71. 'admin5',
  72. 'moderator',
  73. 'webadmin',
  74. 'adminarea',
  75. 'bb-admin',
  76. 'adminLogin',
  77. 'admin_area',
  78. 'panel-administracion',
  79. 'instadmin',
  80. 'memberadmin',
  81. 'administratorlogin',
  82. 'adm',
  83. 'account.asp',
  84. 'admin/account.asp',
  85. 'admin/index.asp',
  86. 'admin/login.asp',
  87. 'admin/admin.asp',
  88. 'admin_area/admin.asp',
  89. 'admin_area/login.asp',
  90. 'admin/account.html',
  91. 'admin/index.html',
  92. 'admin/login.html',
  93. 'admin/admin.html',
  94. 'admin_area/admin.html',
  95. 'admin_area/login.html',
  96. 'admin_area/index.html',
  97. 'admin_area/index.asp',
  98. 'bb-admin/index.asp',
  99. 'bb-admin/login.asp',
  100. 'bb-admin/admin.asp',
  101. 'bb-admin/index.html',
  102. 'bb-admin/login.html',
  103. 'bb-admin/admin.html',
  104. 'admin/home.html',
  105. 'admin/controlpanel.html',
  106. 'admin.html',
  107. 'admin/cp.html',
  108. 'cp.html',
  109. 'administrator/index.html',
  110. 'administrator/login.html',
  111. 'administrator/account.html',
  112. 'administrator.html',
  113. 'login.html',
  114. 'modelsearch/login.html',
  115. 'moderator.html',
  116. 'moderator/login.html',
  117. 'moderator/admin.html',
  118. 'account.html',
  119. 'controlpanel.html',
  120. 'admincontrol.html',
  121. 'admin_login.html',
  122. 'panel-administracion/login.html',
  123. 'admin/home.asp',
  124. 'admin/controlpanel.asp',
  125. 'admin.asp',
  126. 'pages/admin/admin-login.asp',
  127. 'admin/admin-login.asp',
  128. 'admin-login.asp',
  129. 'admin/cp.asp',
  130. 'cp.asp',
  131. 'administrator/account.asp',
  132. 'administrator.asp',
  133. 'acceso.asp',
  134. 'login.asp',
  135. 'modelsearch/login.asp',
  136. 'moderator.asp',
  137. 'moderator/login.asp',
  138. 'administrator/login.asp',
  139. 'moderator/admin.asp',
  140. 'controlpanel.asp',
  141. 'admin/account.html',
  142. 'adminpanel.html',
  143. 'webadmin.html',
  144. 'pages/admin/admin-login.html',
  145. 'admin/admin-login.html',
  146. 'webadmin/index.html',
  147. 'webadmin/admin.html',
  148. 'webadmin/login.html',
  149. 'user.asp',
  150. 'user.html',
  151. 'admincp/index.asp',
  152. 'admincp/login.asp',
  153. 'admincp/index.html',
  154. 'admin/adminLogin.html',
  155. 'adminLogin.html',
  156. 'admin/adminLogin.html',
  157. 'home.html',
  158. 'adminarea/index.html',
  159. 'adminarea/admin.html',
  160. 'adminarea/login.html',
  161. 'panel-administracion/index.html',
  162. 'panel-administracion/admin.html',
  163. 'modelsearch/index.html',
  164. 'modelsearch/admin.html',
  165. 'admin/admin_login.html',
  166. 'admincontrol/login.html',
  167. 'adm/index.html',
  168. 'adm.html',
  169. 'admincontrol.asp',
  170. 'admin/account.asp',
  171. 'adminpanel.asp',
  172. 'webadmin.asp',
  173. 'webadmin/index.asp',
  174. 'webadmin/admin.asp',
  175. 'webadmin/login.asp',
  176. 'admin/admin_login.asp',
  177. 'admin_login.asp',
  178. 'panel-administracion/login.asp',
  179. 'adminLogin.asp',
  180. 'admin/adminLogin.asp',
  181. 'home.asp',
  182. 'admin.asp',
  183. 'adminarea/index.asp',
  184. 'adminarea/admin.asp',
  185. 'adminarea/login.asp',
  186. 'admin-login.html',
  187. 'panel-administracion/index.asp',
  188. 'panel-administracion/admin.asp',
  189. 'modelsearch/index.asp',
  190. 'modelsearch/admin.asp',
  191. 'administrator/index.asp',
  192. 'admincontrol/login.asp',
  193. 'adm/admloginuser.asp',
  194. 'admloginuser.asp',
  195. 'admin2.asp',
  196. 'admin2/login.asp',
  197. 'admin2/index.asp',
  198. 'adm/index.asp',
  199. 'adm.asp',
  200. 'affiliate.asp',
  201. 'adm_auth.asp',
  202. 'memberadmin.asp',
  203. 'administratorlogin.asp',
  204. 'siteadmin/login.asp',
  205. 'siteadmin/index.asp',
  206. 'siteadmin/login.html',
  207. 'site/test/login.asp',
  208. 'test/admin/login.asp',
  209. '/site/sistemas/');
  210.  
  211.  
  212. my $pos = @asp;
  213. print "     Loaded $pos possibilidades\n\n";
  214. print "     Press Enter To Continue...\n";
  215. <STDIN>;
  216.  
  217. foreach $ways(@asp){
  218.  
  219. $final=$host.$ways;
  220.  
  221. my $req=HTTP::Request->new(GET=>$final);
  222. my $ua=LWP::UserAgent->new();
  223. $ua->timeout(30);
  224. my $response=$ua->request($req);
  225.  
  226. if($response->content =~ /Username/ ||
  227. $response->content =~ /Password/ ||
  228. $response->content =~ /username/ ||
  229. $response->content =~ /password/ ||
  230. $response->content =~ /USERNAME/ ||
  231. $response->content =~ /PASSWORD/ ||
  232. $response->content =~ /Senha/ ||
  233. $response->content =~ /senha/ ||
  234. $response->content =~ /Personal/ ||
  235. $response->content =~ /Usuario/ ||
  236. $response->content =~ /Clave/ ||
  237. $response->content =~ /Usager/ ||
  238. $response->content =~ /usager/ ||
  239. $response->content =~ /Sing/ ||
  240. $response->content =~ /passe/ ||
  241. $response->content =~ /P\/W/ ||
  242. $response->content =~ /Admin Password/
  243.  
  244. ){
  245.  
  246.  
  247. print "    [+] Found -> $final\n";
  248.  
  249.  
  250. }
  251.     }
  252. }
  253.  
  254.  
  255.  
  256. if($cod eq "2"){
  257.  
  258. @cfm=(
  259. 'admin',
  260. 'administrator',
  261. 'admin1',
  262. 'admin2',
  263. 'admin3',
  264. 'admin4',
  265. 'admin5',
  266. 'usuarios',
  267. 'usuario',
  268. 'administrator',
  269. 'moderator',
  270. 'webadmin',
  271. 'adminarea',
  272. 'bb-admin',
  273. 'adminLogin',
  274. 'admin_area',
  275. 'panel-administracion',
  276. 'instadmin',
  277. 'memberadmin',
  278. 'administratorlogin',
  279. 'adm',
  280. 'admin/account.cfm',
  281. 'admin/index.cfm',
  282. 'admin/login.cfm',
  283. 'admin/admin.cfm',
  284. 'admin/account.cfm',
  285. 'admin_area/admin.cfm',
  286. 'admin_area/login.cfm',
  287. 'siteadmin/login.cfm',
  288. 'siteadmin/index.cfm',
  289. 'siteadmin/login.html',
  290. 'admin/account.html',
  291. 'admin/index.html',
  292. 'admin/login.html',
  293. 'admin/admin.html',
  294. 'admin_area/index.cfm',
  295. 'bb-admin/index.cfm',
  296. 'bb-admin/login.cfm',
  297. 'bb-admin/admin.cfm',
  298. 'admin/home.cfm',
  299. 'admin_area/login.html',
  300. 'admin_area/index.html',
  301. 'admin/controlpanel.cfm',
  302. 'admin.cfm',
  303. 'admincp/index.asp',
  304. 'admincp/login.asp',
  305. 'admincp/index.html',
  306. 'admin/account.html',
  307. 'adminpanel.html',
  308. 'webadmin.html',
  309. 'webadmin/index.html',
  310. 'webadmin/admin.html',
  311. 'webadmin/login.html',
  312. 'admin/admin_login.html',
  313. 'admin_login.html',
  314. 'panel-administracion/login.html',
  315. 'admin/cp.cfm',
  316. 'cp.cfm',
  317. 'administrator/index.cfm',
  318. 'administrator/login.cfm',
  319. 'nsw/admin/login.cfm',
  320. 'webadmin/login.cfm',
  321. 'admin/admin_login.cfm',
  322. 'admin_login.cfm',
  323. 'administrator/account.cfm',
  324. 'administrator.cfm',
  325. 'admin_area/admin.html',
  326. 'pages/admin/admin-login.cfm',
  327. 'admin/admin-login.cfm',
  328. 'admin-login.cfm',
  329. 'bb-admin/index.html',
  330. 'bb-admin/login.html',
  331. 'bb-admin/admin.html',
  332. 'admin/home.html',
  333. 'login.cfm',
  334. 'modelsearch/login.cfm',
  335. 'moderator.cfm',
  336. 'moderator/login.cfm',
  337. 'moderator/admin.cfm',
  338. 'account.cfm',
  339. 'pages/admin/admin-login.html',
  340. 'admin/admin-login.html',
  341. 'admin-login.html',
  342. 'controlpanel.cfm',
  343. 'admincontrol.cfm',
  344. 'admin/adminLogin.html',
  345. 'acceso.cfm',
  346. 'adminLogin.html',
  347. 'admin/adminLogin.html',
  348. 'home.html',
  349. 'rcjakar/admin/login.cfm',
  350. 'adminarea/index.html',
  351. 'adminarea/admin.html',
  352. 'webadmin.cfm',
  353. 'webadmin/index.cfm',
  354. 'webadmin/admin.cfm',
  355. 'admin/controlpanel.html',
  356. 'admin.html',
  357. 'admin/cp.html',
  358. 'cp.html',
  359. 'adminpanel.cfm',
  360. 'moderator.html',
  361. 'administrator/index.html',
  362. 'administrator/login.html',
  363. 'user.html',
  364. 'administrator/account.html',
  365. 'administrator.html',
  366. 'login.html',
  367. 'modelsearch/login.html',
  368. 'moderator/login.html',
  369. 'adminarea/login.html',
  370. 'panel-administracion/index.html',
  371. 'panel-administracion/admin.html',
  372. 'modelsearch/index.html',
  373. 'modelsearch/admin.html',
  374. 'admincontrol/login.html',
  375. 'adm/index.html',
  376. 'adm.html'.
  377. 'moderator/admin.html',
  378. 'user.cfm',
  379. 'account.html',
  380. 'controlpanel.html',
  381. 'admincontrol.html',
  382. 'panel-administracion/login.cfm',
  383. 'wp-login.cfm',
  384. 'adminLogin.cfm',
  385. 'admin/adminLogin.cfm',
  386. 'home.cfm',
  387. 'admin.cfm',
  388. 'adminarea/index.cfm',
  389. 'adminarea/admin.cfm',
  390. 'adminarea/login.cfm',
  391. 'panel-administracion/index.cfm',
  392. 'panel-administracion/admin.cfm',
  393. 'modelsearch/index.cfm',
  394. 'modelsearch/admin.cfm',
  395. 'admincontrol/login.cfm',
  396. 'adm/admloginuser.cfm',
  397. 'admloginuser.cfm',
  398. 'admin2.cfm',
  399. 'admin2/login.cfm',
  400. 'admin2/index.cfm',
  401. 'usuarios/login.cfm',
  402. 'adm/index.cfm',
  403. 'adm.cfm',
  404. 'affiliate.cfm',
  405. 'adm_auth.cfm',
  406. 'memberadmin.cfm',
  407. 'administratorlogin.cfm',
  408. '/site/sistemas/');
  409.  
  410.  
  411. my $pos = @cfm;
  412. print "     Loaded $pos possibilidades\n\n";
  413. print "     Press Enter To Continue...\n";
  414. <STDIN>;
  415. foreach $ways(@cfm){
  416.  
  417. $final=$host.$ways;
  418.  
  419. my $req=HTTP::Request->new(GET=>$final);
  420. my $ua=LWP::UserAgent->new();
  421. $ua->timeout(30);
  422. my $response=$ua->request($req);
  423.  
  424. if($response->content =~ /Username/ ||
  425. $response->content =~ /Password/ ||
  426. $response->content =~ /username/ ||
  427. $response->content =~ /password/ ||
  428. $response->content =~ /USERNAME/ ||
  429. $response->content =~ /PASSWORD/ ||
  430. $response->content =~ /Senha/ ||
  431. $response->content =~ /senha/ ||
  432. $response->content =~ /Personal/ ||
  433. $response->content =~ /Usuario/ ||
  434. $response->content =~ /Clave/ ||
  435. $response->content =~ /Usager/ ||
  436. $response->content =~ /usager/ ||
  437. $response->content =~ /Sing/ ||
  438. $response->content =~ /passe/ ||
  439. $response->content =~ /P\/W/ ||
  440. $response->content =~ /Admin Password/
  441. ){
  442. print "    [+] Found -> $final\n";
  443.         }
  444.     }
  445. }
  446.  
  447.  
  448.  
  449. if($cod eq "3"){
  450.  
  451. @php=(
  452. 'admin',
  453. 'administrator',
  454. 'admin1',
  455. 'admin2',
  456. 'admin3',
  457. 'admin4',
  458. 'admin5',
  459. 'usuarios',
  460. 'usuario',
  461. 'administrator',
  462. 'moderator',
  463. 'webadmin',
  464. 'adminarea',
  465. 'bb-admin',
  466. 'adminLogin',
  467. 'admin_area',
  468. 'panel-administracion',
  469. 'instadmin',
  470. 'memberadmin',
  471. 'administratorlogin',
  472. 'adm',
  473. 'admin/account.php',
  474. 'admin/index.php',
  475. 'admin/login.php',
  476. 'admin/admin.php',
  477. 'admin/account.php',
  478. 'admin_area/admin.php',
  479. 'admin_area/login.php',
  480. 'siteadmin/login.php',
  481. 'siteadmin/index.php',
  482. 'siteadmin/login.html',
  483. 'admin/account.html',
  484. 'admin/index.html',
  485. 'admin/login.html',
  486. 'admin/admin.html',
  487. 'admin_area/index.php',
  488. 'bb-admin/index.php',
  489. 'bb-admin/login.php',
  490. 'bb-admin/admin.php',
  491. 'admin/home.php',
  492. 'admin_area/login.html',
  493. 'admin_area/index.html',
  494. 'admin/controlpanel.php',
  495. 'admin.php',
  496. 'admincp/index.asp',
  497. 'admincp/login.asp',
  498. 'admincp/index.html',
  499. 'admin/account.html',
  500. 'adminpanel.html',
  501. 'webadmin.html',
  502. 'webadmin/index.html',
  503. 'webadmin/admin.html',
  504. 'webadmin/login.html',
  505. 'admin/admin_login.html',
  506. 'admin_login.html',
  507. 'panel-administracion/login.html',
  508. 'admin/cp.php',
  509. 'cp.php',
  510. 'administrator/index.php',
  511. 'administrator/login.php',
  512. 'nsw/admin/login.php',
  513. 'webadmin/login.php',
  514. 'admin/admin_login.php',
  515. 'admin_login.php',
  516. 'administrator/account.php',
  517. 'administrator.php',
  518. 'admin_area/admin.html',
  519. 'pages/admin/admin-login.php',
  520. 'admin/admin-login.php',
  521. 'admin-login.php',
  522. 'bb-admin/index.html',
  523. 'bb-admin/login.html',
  524. 'acceso.php',
  525. 'bb-admin/admin.html',
  526. 'admin/home.html',
  527. 'login.php',
  528. 'modelsearch/login.php',
  529. 'moderator.php',
  530. 'moderator/login.php',
  531. 'moderator/admin.php',
  532. 'account.php',
  533. 'pages/admin/admin-login.html',
  534. 'admin/admin-login.html',
  535. 'admin-login.html',
  536. 'controlpanel.php',
  537. 'admincontrol.php',
  538. 'admin/adminLogin.html',
  539. 'adminLogin.html',
  540. 'admin/adminLogin.html',
  541. 'home.html',
  542. 'rcjakar/admin/login.php',
  543. 'adminarea/index.html',
  544. 'adminarea/admin.html',
  545. 'webadmin.php',
  546. 'webadmin/index.php',
  547. 'webadmin/admin.php',
  548. 'admin/controlpanel.html',
  549. 'admin.html',
  550. 'admin/cp.html',
  551. 'cp.html',
  552. 'adminpanel.php',
  553. 'moderator.html',
  554. 'administrator/index.html',
  555. 'administrator/login.html',
  556. 'user.html',
  557. 'administrator/account.html',
  558. 'administrator.html',
  559. 'login.html',
  560. 'modelsearch/login.html',
  561. 'moderator/login.html',
  562. 'adminarea/login.html',
  563. 'panel-administracion/index.html',
  564. 'panel-administracion/admin.html',
  565. 'modelsearch/index.html',
  566. 'modelsearch/admin.html',
  567. 'admincontrol/login.html',
  568. 'adm/index.html',
  569. 'adm.html',
  570. 'moderator/admin.html',
  571. 'user.php',
  572. 'account.html',
  573. 'controlpanel.html',
  574. 'admincontrol.html',
  575. 'panel-administracion/login.php',
  576. 'wp-login.php',
  577. 'adminLogin.php',
  578. 'admin/adminLogin.php',
  579. 'home.php',
  580. 'admin.php',
  581. 'adminarea/index.php',
  582. 'admin/admin/index.php',
  583. 'adminarea/admin.php',
  584. 'adminarea/login.php',
  585. 'panel-administracion/index.php',
  586. 'panel-administracion/admin.php',
  587. 'modelsearch/index.php',
  588. 'modelsearch/admin.php',
  589. 'admincontrol/login.php',
  590. 'adm/admloginuser.php',
  591. 'admloginuser.php',
  592. 'admin2.php',
  593. 'admin2/login.php',
  594. 'admin2/index.php',
  595. 'usuarios/login.php',
  596. 'adm/index.php',
  597. 'adm.php',
  598. 'affiliate.php',
  599. 'adm_auth.php',
  600. 'memberadmin.php',
  601. 'administratorlogin.php',
  602. '/site/sistemas/');
  603.  
  604.  
  605. my $pos = @php;
  606. print "     Loaded $pos possibilidades\n\n";
  607. print "     Press Enter To Continue...\n";
  608. <STDIN>;
  609. foreach $ways(@php){
  610.  
  611. $final=$host.$ways;
  612.  
  613. my $req=HTTP::Request->new(GET=>$final);
  614. my $ua=LWP::UserAgent->new();
  615. $ua->timeout(30);
  616. my $response=$ua->request($req);
  617.  
  618. if($response->content =~ /Username/ ||
  619. $response->content =~ /Password/ ||
  620. $response->content =~ /username/ ||
  621. $response->content =~ /password/ ||
  622. $response->content =~ /USERNAME/ ||
  623. $response->content =~ /PASSWORD/ ||
  624. $response->content =~ /Senha/ ||
  625. $response->content =~ /senha/ ||
  626. $response->content =~ /Personal/ ||
  627. $response->content =~ /Usuario/ ||
  628. $response->content =~ /Clave/ ||
  629. $response->content =~ /Usager/ ||
  630. $response->content =~ /usager/ ||
  631. $response->content =~ /Sing/ ||
  632. $response->content =~ /passe/ ||
  633. $response->content =~ /P\/W/ ||
  634. $response->content =~ /Admin Password/
  635. ){
  636. print "    [+] Found -> $final\n";
  637.         }
  638.     }
  639. }
  640. if($cod eq "4"){
  641.  
  642. @js=(
  643. 'admin',
  644. 'administrator',
  645. 'admin1',
  646. 'admin2',
  647. 'admin3',
  648. 'admin4',
  649. 'admin5',
  650. 'usuarios',
  651. 'usuario',
  652. 'administrator',
  653. 'moderator',
  654. 'webadmin',
  655. 'adminarea',
  656. 'bb-admin',
  657. 'adminLogin',
  658. 'admin_area',
  659. 'panel-administracion',
  660. 'instadmin',
  661. 'memberadmin',
  662. 'administratorlogin',
  663. 'adm',
  664. 'admin/account.js',
  665. 'admin/index.js',
  666. 'admin/login.js',
  667. 'admin/admin.js',
  668. 'admin/account.js',
  669. 'admin_area/admin.js',
  670. 'admin_area/login.js',
  671. 'siteadmin/login.js',
  672. 'siteadmin/index.js',
  673. 'siteadmin/login.html',
  674. 'admin/account.html',
  675. 'admin/index.html',
  676. 'admin/login.html',
  677. 'admin/admin.html',
  678. 'admin_area/index.js',
  679. 'bb-admin/index.js',
  680. 'bb-admin/login.js',
  681. 'bb-admin/admin.js',
  682. 'admin/home.js',
  683. 'admin_area/login.html',
  684. 'admin_area/index.html',
  685. 'admin/controlpanel.js',
  686. 'admin.js',
  687. 'admincp/index.asp',
  688. 'admincp/login.asp',
  689. 'admincp/index.html',
  690. 'admin/account.html',
  691. 'adminpanel.html',
  692. 'webadmin.html',
  693. 'webadmin/index.html',
  694. 'webadmin/admin.html',
  695. 'webadmin/login.html',
  696. 'admin/admin_login.html',
  697. 'admin_login.html',
  698. 'panel-administracion/login.html',
  699. 'admin/cp.js',
  700. 'cp.js',
  701. 'administrator/index.js',
  702. 'administrator/login.js',
  703. 'nsw/admin/login.js',
  704. 'webadmin/login.js',
  705. 'admin/admin_login.js',
  706. 'admin_login.js',
  707. 'administrator/account.js',
  708. 'administrator.js',
  709. 'admin_area/admin.html',
  710. 'pages/admin/admin-login.js',
  711. 'admin/admin-login.js',
  712. 'admin-login.js',
  713. 'bb-admin/index.html',
  714. 'bb-admin/login.html',
  715. 'bb-admin/admin.html',
  716. 'admin/home.html',
  717. 'login.js',
  718. 'modelsearch/login.js',
  719. 'moderator.js',
  720. 'moderator/login.js',
  721. 'moderator/admin.js',
  722. 'account.js',
  723. 'pages/admin/admin-login.html',
  724. 'admin/admin-login.html',
  725. 'admin-login.html',
  726. 'controlpanel.js',
  727. 'admincontrol.js',
  728. 'admin/adminLogin.html',
  729. 'adminLogin.html',
  730. 'admin/adminLogin.html',
  731. 'home.html',
  732. 'rcjakar/admin/login.js',
  733. 'adminarea/index.html',
  734. 'adminarea/admin.html',
  735. 'webadmin.js',
  736. 'webadmin/index.js',
  737. 'acceso.js',
  738. 'webadmin/admin.js',
  739. 'admin/controlpanel.html',
  740. 'admin.html',
  741. 'admin/cp.html',
  742. 'cp.html',
  743. 'adminpanel.js',
  744. 'moderator.html',
  745. 'administrator/index.html',
  746. 'administrator/login.html',
  747. 'user.html',
  748. 'administrator/account.html',
  749. 'administrator.html',
  750. 'login.html',
  751. 'modelsearch/login.html',
  752. 'moderator/login.html',
  753. 'adminarea/login.html',
  754. 'panel-administracion/index.html',
  755. 'panel-administracion/admin.html',
  756. 'modelsearch/index.html',
  757. 'modelsearch/admin.html',
  758. 'admincontrol/login.html',
  759. 'adm/index.html',
  760. 'adm.html',
  761. 'moderator/admin.html',
  762. 'user.js',
  763. 'account.html',
  764. 'controlpanel.html',
  765. 'admincontrol.html',
  766. 'panel-administracion/login.js',
  767. 'wp-login.js',
  768. 'adminLogin.js',
  769. 'admin/adminLogin.js',
  770. 'home.js',
  771. 'admin.js',
  772. 'adminarea/index.js',
  773. 'adminarea/admin.js',
  774. 'adminarea/login.js',
  775. 'panel-administracion/index.js',
  776. 'panel-administracion/admin.js',
  777. 'modelsearch/index.js',
  778. 'modelsearch/admin.js',
  779. 'admincontrol/login.js',
  780. 'adm/admloginuser.js',
  781. 'admloginuser.js',
  782. 'admin2.js',
  783. 'admin2/login.js',
  784. 'admin2/index.js',
  785. 'usuarios/login.js',
  786. 'adm/index.js',
  787. 'adm.js',
  788. 'affiliate.js',
  789. 'adm_auth.js',
  790. 'memberadmin.js',
  791. 'administratorlogin.js',
  792. '/site/sistemas/');
  793.  
  794.  
  795. my $pos = @js;
  796. print "     Loaded $pos possibilidades\n\n";
  797. print "     Press Enter To Continue...\n";
  798. <STDIN>;
  799. foreach $ways(@js){
  800.  
  801. $final=$host.$ways;
  802.  
  803. my $req=HTTP::Request->new(GET=>$final);
  804. my $ua=LWP::UserAgent->new();
  805. $ua->timeout(30);
  806. my $response=$ua->request($req);
  807.  
  808. if($response->content =~ /Username/ ||
  809. $response->content =~ /Password/ ||
  810. $response->content =~ /username/ ||
  811. $response->content =~ /password/ ||
  812. $response->content =~ /USERNAME/ ||
  813. $response->content =~ /PASSWORD/ ||
  814. $response->content =~ /Senha/ ||
  815. $response->content =~ /senha/ ||
  816. $response->content =~ /Personal/ ||
  817. $response->content =~ /Usuario/ ||
  818. $response->content =~ /Clave/ ||
  819. $response->content =~ /Usager/ ||
  820. $response->content =~ /usager/ ||
  821. $response->content =~ /Sing/ ||
  822. $response->content =~ /passe/ ||
  823. $response->content =~ /P\/W/ ||
  824. $response->content =~ /Admin Password/
  825. ){
  826. print "    [+] Found -> $final\n";
  827.         }
  828.     }
  829. }
  830. if($cod eq "5"){
  831.  
  832. @cgi=(
  833. 'admin',
  834. 'administrator',
  835. 'admin1',
  836. 'admin2',
  837. 'admin3',
  838. 'admin4',
  839. 'admin5',
  840. 'usuarios',
  841. 'usuario',
  842. 'administrator',
  843. 'moderator',
  844. 'webadmin',
  845. 'adminarea',
  846. 'bb-admin',
  847. 'adminLogin',
  848. 'admin_area',
  849. 'panel-administracion',
  850. 'instadmin',
  851. 'memberadmin',
  852. 'administratorlogin',
  853. 'adm',
  854. 'admin/account.cgi',
  855. 'admin/index.cgi',
  856. 'admin/login.cgi',
  857. 'admin/admin.cgi',
  858. 'admin/account.cgi',
  859. 'admin_area/admin.cgi',
  860. 'admin_area/login.cgi',
  861. 'siteadmin/login.cgi',
  862. 'siteadmin/index.cgi',
  863. 'siteadmin/login.html',
  864. 'admin/account.html',
  865. 'admin/index.html',
  866. 'admin/login.html',
  867. 'admin/admin.html',
  868. 'admin_area/index.cgi',
  869. 'bb-admin/index.cgi',
  870. 'bb-admin/login.cgi',
  871. 'bb-admin/admin.cgi',
  872. 'admin/home.cgi',
  873. 'admin_area/login.html',
  874. 'admin_area/index.html',
  875. 'admin/controlpanel.cgi',
  876. 'admin.cgi',
  877. 'admincp/index.asp',
  878. 'admincp/login.asp',
  879. 'admincp/index.html',
  880. 'admin/account.html',
  881. 'adminpanel.html',
  882. 'webadmin.html',
  883. 'webadmin/index.html',
  884. 'webadmin/admin.html',
  885. 'webadmin/login.html',
  886. 'admin/admin_login.html',
  887. 'admin_login.html',
  888. 'panel-administracion/login.html',
  889. 'admin/cp.cgi',
  890. 'cp.cgi',
  891. 'administrator/index.cgi',
  892. 'administrator/login.cgi',
  893. 'nsw/admin/login.cgi',
  894. 'webadmin/login.cgi',
  895. 'admin/admin_login.cgi',
  896. 'admin_login.cgi',
  897. 'administrator/account.cgi',
  898. 'administrator.cgi',
  899. 'admin_area/admin.html',
  900. 'pages/admin/admin-login.cgi',
  901. 'admin/admin-login.cgi',
  902. 'admin-login.cgi',
  903. 'bb-admin/index.html',
  904. 'bb-admin/login.html',
  905. 'bb-admin/admin.html',
  906. 'admin/home.html',
  907. 'login.cgi',
  908. 'modelsearch/login.cgi',
  909. 'moderator.cgi',
  910. 'moderator/login.cgi',
  911. 'moderator/admin.cgi',
  912. 'account.cgi',
  913. 'pages/admin/admin-login.html',
  914. 'admin/admin-login.html',
  915. 'admin-login.html',
  916. 'controlpanel.cgi',
  917. 'admincontrol.cgi',
  918. 'admin/adminLogin.html',
  919. 'adminLogin.html',
  920. 'admin/adminLogin.html',
  921. 'home.html',
  922. 'rcjakar/admin/login.cgi',
  923. 'adminarea/index.html',
  924. 'adminarea/admin.html',
  925. 'webadmin.cgi',
  926. 'webadmin/index.cgi',
  927. 'acceso.cgi',
  928. 'webadmin/admin.cgi',
  929. 'admin/controlpanel.html',
  930. 'admin.html',
  931. 'admin/cp.html',
  932. 'cp.html',
  933. 'adminpanel.cgi',
  934. 'moderator.html',
  935. 'administrator/index.html',
  936. 'administrator/login.html',
  937. 'user.html',
  938. 'administrator/account.html',
  939. 'administrator.html',
  940. 'login.html',
  941. 'modelsearch/login.html',
  942. 'moderator/login.html',
  943. 'adminarea/login.html',
  944. 'panel-administracion/index.html',
  945. 'panel-administracion/admin.html',
  946. 'modelsearch/index.html',
  947. 'modelsearch/admin.html',
  948. 'admincontrol/login.html',
  949. 'adm/index.html',
  950. 'adm.html',
  951. 'moderator/admin.html',
  952. 'user.cgi',
  953. 'account.html',
  954. 'controlpanel.html',
  955. 'admincontrol.html',
  956. 'panel-administracion/login.cgi',
  957. 'wp-login.cgi',
  958. 'adminLogin.cgi',
  959. 'admin/adminLogin.cgi',
  960. 'home.cgi',
  961. 'admin.cgi',
  962. 'adminarea/index.cgi',
  963. 'adminarea/admin.cgi',
  964. 'adminarea/login.cgi',
  965. 'panel-administracion/index.cgi',
  966. 'panel-administracion/admin.cgi',
  967. 'modelsearch/index.cgi',
  968. 'modelsearch/admin.cgi',
  969. 'admincontrol/login.cgi',
  970. 'adm/admloginuser.cgi',
  971. 'admloginuser.cgi',
  972. 'admin2.cgi',
  973. 'admin2/login.cgi',
  974. 'admin2/index.cgi',
  975. 'usuarios/login.cgi',
  976. 'adm/index.cgi',
  977. 'adm.cgi',
  978. 'affiliate.cgi',
  979. 'adm_auth.cgi',
  980. 'memberadmin.cgi',
  981. 'administratorlogin.cgi',
  982. '/site/sistemas/');
  983.  
  984.  
  985. my $pos = @cgi;
  986. print "     Loaded $pos possibilidades\n\n";
  987. print "     Press Enter To Continue...\n";
  988. <STDIN>;
  989. foreach $ways(@cgi){
  990.  
  991. $final=$host.$ways;
  992.  
  993. my $req=HTTP::Request->new(GET=>$final);
  994. my $ua=LWP::UserAgent->new();
  995. $ua->timeout(30);
  996. my $response=$ua->request($req);
  997.  
  998. if($response->content =~ /Username/ ||
  999. $response->content =~ /Password/ ||
  1000. $response->content =~ /username/ ||
  1001. $response->content =~ /password/ ||
  1002. $response->content =~ /USERNAME/ ||
  1003. $response->content =~ /PASSWORD/ ||
  1004. $response->content =~ /Senha/ ||
  1005. $response->content =~ /senha/ ||
  1006. $response->content =~ /Personal/ ||
  1007. $response->content =~ /Usuario/ ||
  1008. $response->content =~ /Clave/ ||
  1009. $response->content =~ /Usager/ ||
  1010. $response->content =~ /usager/ ||
  1011. $response->content =~ /Sing/ ||
  1012. $response->content =~ /passe/ ||
  1013. $response->content =~ /P\/W/ ||
  1014. $response->content =~ /Admin Password/
  1015. ){
  1016. print "    [+] Found -> $final\n";
  1017.             }
  1018.     }
  1019. }
  1020. if($cod eq "6"){
  1021. @brf=(
  1022. 'admin',
  1023. 'administrator',
  1024. 'admin1',
  1025. 'admin2',
  1026. 'admin3',
  1027. 'admin4',
  1028. 'admin5',
  1029. 'usuarios',
  1030. 'usuario',
  1031. 'administrator',
  1032. 'moderator',
  1033. 'webadmin',
  1034. 'adminarea',
  1035. 'bb-admin',
  1036. 'adminLogin',
  1037. 'admin_area',
  1038. 'panel-administracion',
  1039. 'instadmin',
  1040. 'memberadmin',
  1041. 'administratorlogin',
  1042. 'adm',
  1043. 'admin/account.brf',
  1044. 'admin/index.brf',
  1045. 'admin/login.brf',
  1046. 'admin/admin.brf',
  1047. 'admin/account.brf',
  1048. 'admin_area/admin.brf',
  1049. 'admin_area/login.brf',
  1050. 'siteadmin/login.brf',
  1051. 'siteadmin/index.brf',
  1052. 'siteadmin/login.html',
  1053. 'admin/account.html',
  1054. 'admin/index.html',
  1055. 'admin/login.html',
  1056. 'admin/admin.html',
  1057. 'admin_area/index.brf',
  1058. 'bb-admin/index.brf',
  1059. 'bb-admin/login.brf',
  1060. 'bb-admin/admin.brf',
  1061. 'admin/home.brf',
  1062. 'admin_area/login.html',
  1063. 'admin_area/index.html',
  1064. 'admin/controlpanel.brf',
  1065. 'admin.brf',
  1066. 'admincp/index.asp',
  1067. 'admincp/login.asp',
  1068. 'admincp/index.html',
  1069. 'admin/account.html',
  1070. 'adminpanel.html',
  1071. 'webadmin.html',
  1072. 'webadmin/index.html',
  1073. 'webadmin/admin.html',
  1074. 'webadmin/login.html',
  1075. 'admin/admin_login.html',
  1076. 'admin_login.html',
  1077. 'panel-administracion/login.html',
  1078. 'admin/cp.brf',
  1079. 'cp.brf',
  1080. 'administrator/index.brf',
  1081. 'administrator/login.brf',
  1082. 'nsw/admin/login.brf',
  1083. 'webadmin/login.brfbrf',
  1084. 'admin/admin_login.brf',
  1085. 'admin_login.brf',
  1086. 'administrator/account.brf',
  1087. 'administrator.brf',
  1088. 'acceso.brf',
  1089. 'admin_area/admin.html',
  1090. 'pages/admin/admin-login.brf',
  1091. 'admin/admin-login.brf',
  1092. 'admin-login.brf',
  1093. 'bb-admin/index.html',
  1094. 'bb-admin/login.html',
  1095. 'bb-admin/admin.html',
  1096. 'admin/home.html',
  1097. 'login.brf',
  1098. 'modelsearch/login.brf',
  1099. 'moderator.brf',
  1100. 'moderator/login.brf',
  1101. 'moderator/admin.brf',
  1102. 'account.brf',
  1103. 'pages/admin/admin-login.html',
  1104. 'admin/admin-login.html',
  1105. 'admin-login.html',
  1106. 'controlpanel.brf',
  1107. 'admincontrol.brf',
  1108. 'admin/adminLogin.html',
  1109. 'adminLogin.html',
  1110. 'admin/adminLogin.html',
  1111. 'home.html',
  1112. 'rcjakar/admin/login.brf',
  1113. 'adminarea/index.html',
  1114. 'adminarea/admin.html',
  1115. 'webadmin.brf',
  1116. 'webadmin/index.brf',
  1117. 'webadmin/admin.brf',
  1118. 'admin/controlpanel.html',
  1119. 'admin.html',
  1120. 'admin/cp.html',
  1121. 'cp.html',
  1122. 'adminpanel.brf',
  1123. 'moderator.html',
  1124. 'administrator/index.html',
  1125. 'administrator/login.html',
  1126. 'user.html',
  1127. 'administrator/account.html',
  1128. 'administrator.html',
  1129. 'login.html',
  1130. 'modelsearch/login.html',
  1131. 'moderator/login.html',
  1132. 'adminarea/login.html',
  1133. 'panel-administracion/index.html',
  1134. 'panel-administracion/admin.html',
  1135. 'modelsearch/index.html',
  1136. 'modelsearch/admin.html',
  1137. 'admincontrol/login.html',
  1138. 'adm/index.html',
  1139. 'adm.html',
  1140. 'moderator/admin.html',
  1141. 'user.brf',
  1142. 'account.html',
  1143. 'controlpanel.html',
  1144. 'admincontrol.html',
  1145. 'panel-administracion/login.brf',
  1146. 'wp-login.brf',
  1147. 'adminLogin.brf',
  1148. 'admin/adminLogin.brf',
  1149. 'home.brf','admin.brf',
  1150. 'adminarea/index.brf',
  1151. 'adminarea/admin.brf',
  1152. 'adminarea/login.brf',
  1153. 'panel-administracion/index.brf',
  1154. 'panel-administracion/admin.brf',
  1155. 'modelsearch/index.brf',
  1156. 'modelsearch/admin.brf',
  1157. 'admincontrol/login.brf',
  1158. 'adm/admloginuser.brf',
  1159. 'admloginuser.brf',
  1160. 'admin2.brf',
  1161. 'admin2/login.brf',
  1162. 'admin2/index.brf',
  1163. 'usuarios/login.brf',
  1164. 'adm/index.brf',
  1165. 'adm.brf',
  1166. 'affiliate.brf',
  1167. 'adm_auth.brf',
  1168. 'memberadmin.brf',
  1169. 'administratorlogin.brf',
  1170. '/site/sistemas/');
  1171.  
  1172.  
  1173. my $pos = @brf;
  1174. print "     Loaded $pos possibilidades\n\n";
  1175. print "     Press Enter To Continue...\n";
  1176. <STDIN>;
  1177. foreach $ways(@brf){
  1178.  
  1179. $final=$host.$ways;
  1180.  
  1181. my $req=HTTP::Request->new(GET=>$final);
  1182. my $ua=LWP::UserAgent->new();
  1183. $ua->timeout(30);
  1184. my $response=$ua->request($req);
  1185.  
  1186. if($response->content =~ /Username/ ||
  1187. $response->content =~ /Password/ ||
  1188. $response->content =~ /username/ ||
  1189. $response->content =~ /password/ ||
  1190. $response->content =~ /USERNAME/ ||
  1191. $response->content =~ /PASSWORD/ ||
  1192. $response->content =~ /Senha/ ||
  1193. $response->content =~ /senha/ ||
  1194. $response->content =~ /Personal/ ||
  1195. $response->content =~ /Usuario/ ||
  1196. $response->content =~ /Clave/ ||
  1197. $response->content =~ /Usager/ ||
  1198. $response->content =~ /usager/ ||
  1199. $response->content =~ /Sing/ ||
  1200. $response->content =~ /passe/ ||
  1201. $response->content =~ /P\/W/ ||
  1202. $response->content =~ /Admin Password/
  1203. ){
  1204. print "    [+] Found -> $final\n";
  1205.             }
  1206.  
  1207.         }
  1208.    
  1209.     }
  1210.         print "\n  >>>Scann completo\n";
  1211.         print "\n\n";
  1212.         print " Deseja Fazer scannear outro site\n";
  1213.         print " 1. novo scann\n";
  1214.         print " 2. sair\n\n";
  1215.         print " Opcao: ";
  1216.         my $des=<STDIN>;
  1217.         if ($des==1){
  1218.         goto scan; }
  1219.         if ($des==2){&sair}
  1220.    
  1221.    
  1222.             }
  1223. sub sair
  1224.  
  1225. {
  1226. print " \n  [+] Thanks for using script, please visit http://fivesec-team.zz.mu\n\n";
  1227. exit
  1228. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!