Multi Security Scan
Publicado por C00L3R_ 20/08/2008
[ Hits: 7.246 ]
Homepage: https://github.com/CoolerVoid
Bem simples, terminei ele estes dias. Ainda irei adicionar mais funções para ficar bacana.
Ainda está em fase beta. xD
#!/usr/bin/perl
#################################---> Modulos
use Term::ANSIColor;
use HTML::LinkExtor;
use LWP::UserAgent;
IO::Socket::INET;
use Digest::MD5 qw(md5_hex);
use warnings;
#################################---> Carregando Limpa tela
my $sis="$^O";
if ($sis eq MSWin32) { $cmd="cls"; } else { $cmd="clear"; }
inicio: print `$cmd`;
#################################---> Banner de inicio
image();
my $valor=<STDIN>; chomp $valor;
if ($valor eq 0) { exit; }
if ($valor eq 1) {
#################################---> Variavel responsavel pela CMD
$cmd = "http://";
#################################---> Pegando variaveis do usuario
print "qual nome do arquivo txt que contem as listas para scan,apenas o nome \? \n";
my $lista = <STDIN>; chomp $lista;
print "Se nao quiser proxy coloque 0 \n";
print "Qual o proxy \? exemplo 200.1.2.0:8080 \n";
my $proxy = <STDIN>; chomp $proxy;
#################################---> iniciando constructor de Agent Stealth
$agent = new LWP::UserAgent;
$agent->agent('Mozilla/5.0 (X11; U; Gentoo Linux amd64; en-US; rv:1.8.1.12) Gecko/20080301 Firefox/2.0.0.12');
$agent->cookie_jar( {} );
$agent->timeout(10);
################################---> Condicao do uso do proxy
if($proxy!=0) {
$agent->env_proxy();
$agent->proxy("http", "http://$proxy/");
}
################################---> iniciando filtro com regex
open (my $injection, "<$lista.txt")|| die "erro em abrir $lista.txt $!\n";
while (<$injection>) {
if ($_ =~ s/$\=.*/=$cmd/mg) {
open(LOG,">>sites.txt"); print LOG "$_"; close(LOG); }
}
print "pronto links separados e com CMD injetada\n";
close $injection;
################################---> iniciando Scaner de PHP-injection
print "agora o scan vai procurar sites vulneraveis\n";
open (my $teste, "<sites.txt");
while (<$teste>) {
my $pagina="$_"."?";
my $request = HTTP::Request->new('GET',$pagina);
my $result = $agent->request($request);
my $site = $agent->request($request); # $result->content();
if ($site->is_success) { if($site->content =~ /owlphp/) {
open (OUT, ">>vuln.txt"); print OUT "$pagina\n"; close(OUT); }}
}
print "Scan-owl terminado\nabra vuln.txt para ver sites vuln\n"; close($teste);
sleep 3; goto inicio;
}
################################---> Host predict
if ($valor eq 2) {
print "qual pagina voce quer ver info \?\n";
my $pagin=<STDIN>; chomp $pagin;
my $socket = IO::Socket::INET->new(
PeerAddr => "$pagin",
PeerPort => "80",
Timeout => "7",
Proto => "tcp"
);
die "Nao foi possivel criar a socket\n" unless $socket;
if ($socket) {
print $socket "GET /index.html HTTP/1.0\r\n\r\n";
while (<$socket>) {
if ($_ =~ /Date:|Server:|squid|system/){
print "$_"; }
}}
my $ip = inet_ntoa(inet_aton($pagin));
print "IP:$ip\n";
close($socket);
sleep 8; goto inicio;
}
##############################---> novidades do boteco
if ($valor eq 3) {
print "pegando ultimos posts do blog botecounix.serveftp.com\n";
my $pagi="http://cooler.justfree.com/boteco/?feed=rss2";
$agent = new LWP::UserAgent;
$request = HTTP::Request->new('GET',$pagi);
$result = $agent->request($request);
@result = $result->content();
open(RES,">","novi.txt");
print RES @result; close(RES); open(RES,"<","novi.txt");
@texto = <RES>; close(RES); unlink ("novi.txt");
foreach (@texto) {
if ($_ =~ m/<(title|link)>(.*?)<\/(title|link)>/) {
my $nova="$2";
print "$nova\n"; }}
sleep 8; goto inicio;
}
#############################---> novidades milw0rm
if ($valor eq 4) {
&milworm(); sleep 5; goto inicio;
}
#############################---> MD5 Crack
if ($valor eq 5) {
print "MD5 crack\n";
print "Author: evolution0x55 \n";
print "Wordlist file? ";
chomp($file=<>);
open(FOPEN, $file) or die($file." not found!");
print "\nMD5 Hash? ";
chomp($hash=<>);
print "\n";
foreach (<FOPEN>){
$line_hash=md5_hex($_);
if ($line_hash eq $hash){
print "CRACKED: ".$_;
exit 0;
}
print $_.":".$hash." [FAILED]\n";
}
close(FOPEN);
print "\n\nHash not cracked.";
sleep 10; goto inicio;
}
#################################----> Googler
if ($valor eq 6) {
#################################---> Pegando Variaveis do usuario
#unlink resposta.txt;
print "Googler LinkExtor by C00L3R\n";
print "vamos la, Qual string de busca \?\n";
my $string = <STDIN>; chomp $string;
print "Se nao quiser proxy coloque 0 \n";
print "Qual o proxy \? exemplo 200.1.2.0:8080 \n";
my $proxy = <STDIN>; chomp $proxy;
#################################---> iniciando constructor Stealth
my $agent = new LWP::UserAgent;
$agent->agent('Mozilla/5.0 (X11; U; Gentoo Linux amd64; en-US; rv:1.8.1.12) Gecko/20080301 Firefox/2.0.0.12');
$agent->cookie_jar( {} );
#################################---> Ativando Proxy
if($proxy!=0) {
$agent->env_proxy();
$agent->proxy("http", "http://$proxy/");
}
#################################---> Loop de Busca do Google
print "fazendo busca isso pode demorar minutos\n";
for(my $i=10;$i<100;$i+=2) {
my $pa="http://www.google.com.pl/search?q=$string&start=$i";
my $request = HTTP::Request->new('GET',$pa);
my $result = $agent->request($request);
my $resposta = $result->content();
open (OUT, ">>paginas.txt");
print OUT "$resposta\n"; close(OUT);
}
#################################---> Extraindo Links
eval {
print "paginas pegas agora extraindo os links\n"; sleep 3;
my $parser = HTML::LinkExtor->new;
$parser->parse_file("paginas.txt");
my @links = $parser->links;
foreach (@links) {
print 'Type: ', shift @$_, "\n";
while (my ($name, $val) = splice(@$_, 0, 2)) {
print " $name -> $val\n";
if ($val !~ /videos.*|google.*|groups.*|image.*|www\.google.*|orkut.*|64.*|youtube.*/) {
open (OUT, ">>resposta.txt"); print OUT "$val\n"; close(OUT);
print "$val\n";
}
}
}
#unlink paginas.txt;
print "Scan Caos Google terminado resultado salvo em resposta.txt\n";
}
}
################################--->funcoes diversas
sub milworm() {
@sploits = (); $version = 1.0; $getit = 'http://milw0rm.com/rss.php';
$agent = new LWP::UserAgent; $request = HTTP::Request->new('GET',$getit);
$result = $agent->request($request); $getit =~ s/.*\///;
@result = $result->content(); open(RES,">","mille.txt");
print RES @result; close(RES); open(RES,"<","mille.txt");
@inhalt = <RES>; close(RES); unlink ("mille.txt");
foreach $shit (@inhalt) { $shit =~ tr/</ /; $shit =~ tr/>/ /;
$shit =~ tr/\// /; $shit =~ s/milw0rm.com//ig;
if ($shit =~ m/title/i) { $shit =~ s/title/ /ig; push(@sploits,"$shit");
} } print @sploits; }
sub image {
print q{
Owl-Tool-Beta
=======================================================
|| ... * . _ . * * ||
||* . * . * (_) * ||
|| . |* .. * .. ||
|| . * \| * .___. .. * * ||
||* \/ |/ \/(o,o) . * ||
|| _\_\ | / /) )* _/_ * ||
|| \ \| /,--"-"--- .. * Coded by C00l3r_ ||
||_-----` |(,__,__/__/_ . * ||
|| \ || .. * ||
|| ||| . * ||
|| * ||| * ||
|| * ||| * * ||
||, -=-~' .-^- _--^----.-.-.-.-^.-.-.-.-.-.-.-.-.-.- ||
|| ` ||
=======================================================
http://BotecoUnix.com.br
--------------------------------------------------------
0- Sair
1- Coruja php injectScan 0.1
2- Httpd type Scan
3- BotecoUnix News
4- Milw0rm News
5- MD5 crack
6- Googler LinkExtor term version 0.2
==================================================================
thanks furadordeSyS,r0t3d,b4rtb0y,_mlk_,voidpointer,st4t1c,C0lt7r
my parents and relatives,my friends thanks for all
------------------------------------------------------------------
}}
Scripts recomendados
Script para encontrar vulnerabilidades no BIND
R4$T4 Scan - Portscan básico comentado
Comentários
[1] Comentário enviado por evolution0x55 em 31/08/2008 - 02:05h
You sir, are absolutely horrible. Get something better to do. You might want to code your own shit next time.
-evolution0x55
You sir, are absolutely horrible. Get something better to do. You might want to code your own shit next time.
-evolution0x55
[2] Comentário enviado por Cooler_ em 31/08/2008 - 17:41h
I do not publish the gold but I publish as to use the hammer ...
come of somebody anonymous thing, this is absolutely pathetic, you dude is pathetic , if you make better you show to a program its…
I made this program playing , HAHAHA
I do not publish the gold but I publish as to use the hammer ...
come of somebody anonymous thing, this is absolutely pathetic, you dude is pathetic , if you make better you show to a program its…
I made this program playing , HAHAHA
Patrocínio
Site hospedado pelo provedor RedeHost.
Destaques
Artigos
Compartilhando a tela do Computador no Celular via Deskreen
Como Configurar um Túnel SSH Reverso para Acessar Sua Máquina Local a Partir de uma Máquina Remota
Configuração para desligamento automatizado de Computadores em um Ambiente Comercial
Dicas
Como renomear arquivos de letras maiúsculas para minúsculas
Imprimindo no formato livreto no Linux
Vim - incrementando números em substituição
Efeito "livro" em arquivos PDF
Como resolver o erro no CUPS: Unable to get list of printer drivers
Tópicos
SysAdmin ou DevOps: Qual curso inicial pra essa área? (3)
É cada coisa que me aparece! - não é só 3% (3)
Melhorando a precisão de valores flutuantes em python[AJUDA] (5)
Top 10 do mês
-
Xerxes
1° lugar - 67.163 pts -
Fábio Berbert de Paula
2° lugar - 50.806 pts -
Buckminster
3° lugar - 18.034 pts -
Mauricio Ferrari
4° lugar - 15.788 pts -
Alberto Federman Neto.
5° lugar - 14.679 pts -
Diego Mendes Rodrigues
6° lugar - 13.357 pts -
Daniel Lara Souza
7° lugar - 12.889 pts -
edps
8° lugar - 11.450 pts -
Andre (pinduvoz)
9° lugar - 11.100 pts -
Alessandro de Oliveira Faria (A.K.A. CABELO)
10° lugar - 11.086 pts
Scripts
[Python] Automação de scan de vulnerabilidades
[Python] Script para analise de superficie de ataque
[Shell Script] Novo script para redimensionar, rotacionar, converter e espelhar arquivos de imagem
[Shell Script] Iniciador de DOOM (DSDA-DOOM, Doom Retro ou Woof!)
[Shell Script] Script para adicionar bordas às imagens de uma pasta
A maior comunidade GNU/Linux da América Latina! Artigos, dicas, tutoriais, fórum, scripts e muito mais. Ideal para quem busca auto-ajuda.
Site hospedado por:
