def findShells(website):
website = addHTTP(website)
shells = Request(
"https://raw.githubusercontent.com/Anon-Exploiter/Rough_Work/master/shells",
_timeout=6,
_encode=True).split("\n")
print("{}{:<92}| {:<50}".format(c, "URL", "STATUS"))
for _shells in shells:
if len(_shells) != 0:
combo = website + "/" + _shells
try:
resp = requests.get(combo,
timeout=5,
headers=_headers,
allow_redirects=False).status_code
if resp == 200:
print("{}{:<92}| {:<50}".format(g, combo, resp))
elif resp == 301:
print("{}{:<92}| {:<50}".format(r, combo, "404"))
elif resp == 500 or resp == 502:
print("{}{:<92}| {:<50}".format(c, combo, "404"))
else:
print("{}{:<92}| {:<50}".format(r, combo, "404"))
except Exception:
print("{}{:<92}| {:<50}".format(r, combo, "404"))
def manualCrawl(website):
website = addHTTP(website)
webs = removeHTTP(website)
request = Request(website, _timeout=5, _encode=True)
soup = BeautifulSoup(request, 'lxml')
### Links are in ['a', 'link', 'img', 'svg', 'iframe', 'embed', 'audio']
_links = []
a = soup.find_all("a")
for links in a:
_links.append(links['href'])
link = soup.find_all("link")
for links in a:
_links.append(links['href'])
img = soup.find_all("img")
for links in img:
_links.append(links['src'])
iframe = soup.find_all("iframe")
for links in iframe:
_links.append(links['src'])
embed = soup.find_all("embed")
for links in embed:
_links.append(links['src'])
_links = set(_links)
for __links in _links:
if str(webs) in __links:
write(var="~", color=c, data=__links)
def reverseViaYGS(website):
website = addHTTP(website); webs = removeHTTP(website)
url = "https://domains.yougetsignal.com/domains.php"
post = {
'remoteAddress' : webs,
'key' : ''
}
request = requests.post(url, headers=_headers, data=post)
request = request.text.encode('UTF-8')
grab = json.loads(request)
# print(json.dumps(grab, indent=4))
Status = grab['status']
IP = grab['remoteIpAddress']
Domain = grab['remoteAddress']
Total_Domains = grab['domainCount']
Array = grab['domainArray']
if (Status == 'Fail'):
write(var="#", color=r, data="Sorry! Reverse Ip Limit Reached.")
else:
write(var="$", color=c, data="IP: " + IP + "")
write(var="$", color=c, data="Domain: " + Domain + "")
write(var="$", color=c, data="Total Domains: " + Total_Domains + "\n")
domains = []
for x, y in Array:
domains.append(x)
for res in domains:
write(var="#", color=b, data=res)
def grabBanner(website):
website = addHTTP(website)
request = get(website, timeout=5, headers=_headers).headers.items()
for headers in request:
res = f"{headers[0]}: {headers[1]}"
write(var="#", color=c, data=res)
def reverseViaHT(website):
website = addHTTP(website); webs = removeHTTP(website)
url = "http://api.hackertarget.com/reverseiplookup/?q="
combo = "{url}{website}".format(url=url, website=webs)
request = Request(combo, _timeout=5, _encode=True)
if len(request) != 5:
list = request.strip("").split("\n")
for _links in list:
if len(_links) != 0:
write(var="#", color=c, data=_links)
else:
write(var="@", color=r, data="Sorry, The webserver of the website you entered have no domains other then the one you gave :')")
def findSubdomains(website):
website = removeHTTP(website)
print("{}{:<62}| {:<50}".format(c, "URL", "STATUS"))
for _sub in subdomains:
if len(_sub) != 0:
combo = _sub + "." + website; combo = addHTTP(combo)
try:
resp = requests.get(combo, timeout=5, headers=_headers).status_code
if resp != 404:
print("{}{:<62}| {:<50}".format(g, combo, resp))
except Exception:
print("{}{:<62}| {:<50}".format(r, combo, "404"))
def websiteSpeed(website):
website = addHTTP(website)
urlinfo = urlparse.urlparse(website)
start = time.time()
ip = socket.gethostbyname(urlinfo.netloc)
dns_tm = time.time() - start
_dns = "{:<10}:{:>40} seconds".format(" DNS", dns_tm)
write(var="~", color=g, data=_dns)
start = time.time()
_data = urllib.urlopen(website).read()
load_tm = time.time() - start
_load = "{:<10}:{:>40} seconds".format(" Load", load_tm)
_wo = "{:<10}:{:>40} seconds".format(" W/O DNS", load_tm - dns_tm)
write(var="#", color=c, data=_load)
write(var="~", color=g, data=_wo)
def findShells(website):
website = addHTTP(website)
shells = [
"0day.php", "1.php", "10.php", "11.php", "12..php", "12.php",
"123.php", "1234.php", "2.php", "3.php", "4.php", "404.php",
"4ever.php", "5.php", "6.php", "7.php", "8.php", "9.php", "911.php",
"a.php", "abc.php", "abuhlail.php", "admin.php", "admin1.php",
"admin2.asp", "administration/Sym.php", "admins.php", "amad.php",
"asp.aspx/templates/beez/index.php", "b.php", "b374k.php", "back.sql",
"backup.sql", "bbb.php", "Black.php", "BlackMass.asp", "bluff.php",
"buck.sql", "c.php", "c100.php", "c22.php", "c99.php", "cgi.pl",
"Cgishell.plkiller.php", "changeall.php",
"cliente/downloads/h4xor.php", "config.php", "configuration.php",
"cp.php", "cpanel.php", "Cpanel.php", "cpanel/awstats/site.sql",
"cpn.php", "cyber.php", "c100.php", "d.php", "d0maine.php",
"d0mains.php", "d4rk.php", "dam.phpuser.php", "data.sql",
"dom.phpwhmcs.php", "downloads/dom.php", "dz.php", "Dz.php", "dz0.php",
"dz1.php", "e.php", "egy.php", "egyshell.php", "f.php",
"forum.rarjoomla.zipjoomla.rar", "forum.sqlr00t-s3c.php", "forum.zip",
"ftp.txt", "g.php", "gaza.php", "gaza.php", "gzaa_spyslsql-new.php",
"h.php", "i.php", "images/0day.php", "images/1.php", "images/123.php",
"images/2.php", "images/abuhlail.php", "images/admin.php",
"images/admin1.php", "images/admin1/", "images/admin2.asp",
"images/amad.php", "images/asp.aspx", "images/awstats", "images/b.php",
"images/back.sql", "images/backup.sql", "images/Black.php",
"images/buck.sql", "images/c.php", "images/c100.php", "images/c22.php",
"images/c99.php", "images/Cgishell.pl", "images/changeall.php",
"images/configuration.php", "images/cp.php", "images/cpanel",
"images/cpanel.php", "images/Cpanel.php", "images/cpn.php",
"images/d.php", "images/d0maine.php", "images/d0mains.php",
"images/dam.php", "images/data.sql", "images/dom.php", "images/dz.php",
"images/DZ.php", "images/dz0.php", "images/dz1.php",
"images/egyshell.php", "images/error", "images/error_log",
"images/forum.rar", "images/forum.sql", "images/forum.tar",
"images/forum.tar.gz", "images/forum.zip", "images/ftp.txt",
"images/g.php", "images/gaza.php", "images/gzaa_spysl",
"images/home.rar", "images/home.tar", "images/home.tar.gz",
"images/home.zip", "images/images/Sym.php", "images/info.php",
"images/joomla.rar", "images/joomla.zip", "images/k.php",
"images/killer.php", "images/L3b.php", "images/ls.php", "images/m.php",
"images/madspot.php", "images/madspotshell.php", "images/mysql.php",
"images/r00t-s3c.php", "images/r00t.php", "images/r57.php",
"images/sa.php", "images/sa2.php", "images/sado.php",
"images/Sec-War.php", "images/Sh3ll.php", "images/shell.php",
"images/site.rar", "images/site.sql", "images/site.tar.gz",
"images/site.txt", "images/sniper.php", "images/sos.php",
"images/sql-new.php", "images/sql.php", "images/ssl.php",
"images/stories/3xp.php", "images/stories/b374k.php",
"images/stories/r57.php", "images/stories/w.php",
"images/stories/WSO.php", "images/Sym.php", "images/Symlink.php",
"images/Symlink.pl", "images/sysadmins/", "images/t00.php",
"images/term.php", "images/test.txt", "images/tmp/2.php",
"images/tmp/admin.php", "images/tmp/Cgishell.pl",
"images/tmp/changeall.php", "images/tmp/cpn.php", "images/tmp/d.php",
"images/tmp/d0maine.php", "images/tmp/domaine.php",
"images/tmp/domaine.pl", "images/tmp/dz.php", "images/tmp/dz1.php",
"images/tmp/index.php", "images/tmp/killer.php", "images/tmp/L3b.php",
"images/tmp/madspotshell.php", "images/tmp/root.php",
"images/tmp/sql.php", "images/tmp/Sym.php", "images/tmp/user.php",
"images/tmp/vaga.php", "images/tmp/whmcs.php", "images/up.php",
"images/upload.php", "images/uploads.php", "images/user.php",
"images/user.txt", "images/useradmin/", "images/vb.rar",
"images/vb.sql", "images/vb.zip", "images/whmcs.php",
"images/WolF.php", "images/wp.php", "images/wp.rar/", "images/X.php",
"images/xx.pl", "images/zone-h.php", "images/c99.php", "includes/",
"includes/0day.php", "includes/1.php", "includes/123.php",
"includes/2.php", "includes/abuhlail.php", "includes/admin.php",
"includes/admin1.php", "includes/admin1/", "includes/admin2.asp",
"includes/admins.asp", "includes/admins.php", "includes/admins/",
"includes/amad.php", "includes/asp.aspx", "includes/awstats",
"includes/b.php", "includes/b374k.php", "includes/back.sql",
"includes/backup.sql", "includes/billing/killer.php",
"includes/Black.php", "includes/bluff.php", "includes/buck.sql",
"includes/c.php", "includes/c100.php", "includes/c22.php",
"includes/c99.php", "includes/cgi.pl/", "includes/Cgishell.pl",
"includes/changeall.php", "includes/configuration.php",
"includes/cp.php", "includes/cpanel", "includes/cpanel.php",
"includes/Cpanel.php", "includes/cpn.php", "includes/d.php",
"includes/d0maine.php", "includes/d0mains.php", "includes/dam.php",
"includes/data.sql", "includes/dom.php", "includes/downloads/dom.php",
"includes/dz.php", "includes/DZ.php", "includes/dz0.php",
"includes/dz1.php", "includes/egyshell.php", "includes/error",
"includes/error_log", "includes/forum.rar", "includes/forum.sql",
"includes/forum.tar", "includes/forum.tar.gz", "includes/forum.zip",
"includes/ftp.txt", "includes/g.php", "includes/gaza.php",
"includes/gzaa_spysl", "includes/home.rar", "includes/home.tar",
"includes/home.tar.gz", "includes/home.zip", "includes/images/c99.php",
"includes/images/Sym.php", "includes/info.php", "includes/joomla.rar",
"includes/joomla.zip", "includes/k.php", "includes/killer.php",
"includes/king.jeen", "includes/L3b.php", "includes/ls.php",
"includes/m.php", "includes/madspot.php", "includes/madspotshell.php",
"includes/mysql.php", "includes/priv8.php", "includes/r00t-s3c.php",
"includes/r00t.php", "includes/r57.php", "includes/sa.php",
"includes/sa2.php", "includes/sado.php", "includes/Sec-War.php",
"includes/Server.php", "includes/Server/", "includes/Sh3ll.php",
"includes/shell.php", "includes/site.rar", "includes/site.sql",
"includes/site.tar.gz", "includes/site.txt", "includes/sniper.php",
"includes/sos.php", "includes/spy.aspx", "includes/sql-new.php",
"includes/sql.php", "includes/ssl.php", "includes/Sym.php",
"includes/sym/root/home/", "includes/Symlink.php",
"includes/Symlink.pl", "includes/sysadmin.php", "includes/sysadmins/",
"includes/t00.php", "includes/term.php", "includes/test.txt",
"includes/tmp/2.php", "includes/tmp/admin.php", "includes/tmp/cgi.pl",
"includes/tmp/Cgishell.pl", "includes/tmp/changeall.php",
"includes/tmp/cpn.php", "includes/tmp/d.php",
"includes/tmp/d0maine.php", "includes/tmp/domaine.php",
"includes/tmp/domaine.pl", "includes/tmp/dz.php",
"includes/tmp/dz1.php", "includes/tmp/index.php",
"includes/tmp/killer.php", "includes/tmp/L3b.php",
"includes/tmp/madspotshell.php", "includes/tmp/priv8.php",
"includes/tmp/root.php", "includes/tmp/sql.php",
"includes/tmp/Sym.php", "includes/tmp/up.php",
"includes/tmp/upload.php", "includes/tmp/uploads.php",
"includes/tmp/user.php", "includes/tmp/vaga.php",
"includes/tmp/whmcs.php", "includes/tmp/xd.php", "includes/up.php",
"includes/upload.php", "includes/uploads.php", "includes/user.php",
"includes/user.txt", "includes/useradmin/", "includes/vb.rar",
"includes/vb.sql", "includes/vb.zip", "includes/webadmin.html",
"includes/whmcs.php", "includes/WolF.php", "includes/wp-admin/c99.php",
"includes/wp.php", "includes/wp.rar/", "includes/wp.zip",
"includes/WSO.php", "includes/X.php", "includes/xd.php",
"includes/xx.pl", "includes/zone-h.php", "index1.php", "info.php",
"j.php", "k.php", "k.phpzone-h.php", "king.jeenadmins/admins.asp",
"ksa.php", "l.php", "L3b.php", "ls.php", "m.php", "M4r0c.php",
"madspot.php", "madspotshell.php", "madspotshell.php", "myshell.php",
"mysheller.php", "mysql.php", "n.php", "nkr.php", "o.php",
"offline.php", "okay.php", "p.php", "p8.php", "priv8.php",
"pwp-content/plugins/disqus-comment-system/disqus.php", "q.php",
"r.php", "r0k.php", "r00t.php", "r57.php", "readme.php", "rr57.php",
"s.php", "sa.php", "sa2.php", "sado.php", "Server.php",
"Server/wp-admin/c99.php", "settings.php", "Sh3ll.php", "shell.php",
"sheller.php", "site.rar", "sniper.php", "spy.aspxxd.phptmp/xd.php",
"sql.php", "sym.php", "Sym.php", "sym/root/home/billing/killer.php",
"Symlink.php", "Symlink.pl", "syrian_shell.php", "sysadmin.php",
"sysadmins/admin1/sniper.php", "t.php", "t00.php",
"templates/beez/0day.php", "templates/beez/1.php",
"templates/beez/123.php", "templates/beez/2.php",
"templates/beez/abuhlail.php", "templates/beez/admin.php",
"templates/beez/admin1.php", "templates/beez/admin1/",
"templates/beez/admin2.asp", "templates/beez/admins.asp",
"templates/beez/admins.php", "templates/beez/admins/",
"templates/beez/amad.php", "templates/beez/asp.aspx",
"templates/beez/awstats", "templates/beez/b.php",
"templates/beez/back.sql", "templates/beez/backup.sql",
"templates/beez/beez.php", "templates/beez/billing/killer.php",
"templates/beez/Black.php", "templates/beez/bluff.php",
"templates/beez/buck.sql", "templates/beez/c.php",
"templates/beez/c100.php", "templates/beez/c22.php",
"templates/beez/c99.php", "templates/beez/cgi.pl/",
"templates/beez/Cgishell.pl", "templates/beez/changeall.php",
"templates/beez/configuration.php", "templates/beez/cp.php",
"templates/beez/cpanel", "templates/beez/cpanel.php",
"templates/beez/Cpanel.php", "templates/beez/cpn.php",
"templates/beez/d.php", "templates/beez/d0maine.php",
"templates/beez/d0mains.php", "templates/beez/dam.php",
"templates/beez/data.sql", "templates/beez/dom.php",
"templates/beez/downloads/dom.php", "templates/beez/dz.php",
"templates/beez/DZ.php", "templates/beez/dz0.php",
"templates/beez/dz1.php", "templates/beez/egyshell.php",
"templates/beez/error", "templates/beez/error_log",
"templates/beez/forum.rar", "templates/beez/forum.sql",
"templates/beez/forum.tar", "templates/beez/forum.tar.gz",
"templates/beez/forum.zip", "templates/beez/ftp.txt",
"templates/beez/g.php", "templates/beez/gaza.php",
"templates/beez/gzaa_spysl", "templates/beez/home.rar",
"templates/beez/home.tar", "templates/beez/home.tar.gz",
"templates/beez/home.zip", "templates/beez/images/c99.php",
"templates/beez/images/Sym.php", "templates/beez/index.php",
"templates/beez/index.php/images/WSO.php", "templates/beez/info.php",
"templates/beez/joomla.rar", "templates/beez/joomla.zip",
"templates/beez/k.php", "templates/beez/killer.php",
"templates/beez/king.jeen", "templates/beez/L3b.php",
"templates/beez/ls.php", "templates/beez/m.php",
"templates/beez/madspot.php", "templates/beez/madspotshell.php",
"templates/beez/mysql.php", "templates/beez/priv8.php",
"templates/beez/r00t-s3c.php", "templates/beez/r00t.php",
"templates/beez/r57.php", "templates/beez/sa.php",
"templates/beez/sa2.php", "templates/beez/sado.php",
"templates/beez/Sec-War.php", "templates/beez/Server.php",
"templates/beez/Server/", "templates/beez/Sh3ll.php",
"templates/beez/shell.php", "templates/beez/site.rar",
"templates/beez/site.sql", "templates/beez/site.tar.gz",
"templates/beez/site.txt", "templates/beez/sniper.php",
"templates/beez/sos.php", "templates/beez/spy.aspx",
"templates/beez/sql-new.php", "templates/beez/sql.php",
"templates/beez/ssl.php", "templates/beez/Sym.php",
"templates/beez/sym/root/home/", "templates/beez/Symlink.php",
"templates/beez/Symlink.pl", "templates/beez/sysadmin.php",
"templates/beez/sysadmins/", "templates/beez/t00.php",
"templates/beez/term.php", "templates/beez/test.txt",
"templates/beez/tmp/2.php", "templates/beez/tmp/admin.php",
"templates/beez/tmp/cgi.pl", "templates/beez/tmp/Cgishell.pl",
"templates/beez/tmp/changeall.php", "templates/beez/tmp/cpn.php",
"templates/beez/tmp/d.php", "templates/beez/tmp/d0maine.php",
"templates/beez/tmp/domaine.php", "templates/beez/tmp/domaine.pl",
"templates/beez/tmp/dz.php", "templates/beez/tmp/dz1.php",
"templates/beez/tmp/index.php", "templates/beez/tmp/killer.php",
"templates/beez/tmp/L3b.php", "templates/beez/tmp/madspotshell.php",
"templates/beez/tmp/priv8.php", "templates/beez/tmp/root.php",
"templates/beez/tmp/sql.php", "templates/beez/tmp/Sym.php",
"templates/beez/tmp/up.php", "templates/beez/tmp/upload.php",
"templates/beez/tmp/uploads.php", "templates/beez/tmp/user.php",
"templates/beez/tmp/vaga.php", "templates/beez/tmp/whmcs.php",
"templates/beez/tmp/xd.php", "templates/beez/up.php",
"templates/beez/upload.php", "templates/beez/uploads.php",
"templates/beez/user.php", "templates/beez/user.txt",
"templates/beez/useradmin/", "templates/beez/vb.rar",
"templates/beez/vb.sql", "templates/beez/vb.zip",
"templates/beez/webadmin.html", "templates/beez/whmcs.php",
"templates/beez/WolF.php", "templates/beez/wp-admin/c99.php",
"templates/beez/wp.php", "templates/beez/wp.rar/",
"templates/beez/wp.zip", "templates/beez/WSO.php",
"templates/beez/X.php", "templates/beez/xd.php",
"templates/beez/xx.pl", "templates/beez/zone-h.php",
"templates/ja-helio-farsi/index.php",
"templates/rhuk_milkyway/0day.php", "templates/rhuk_milkyway/1.php",
"templates/rhuk_milkyway/123.php", "templates/rhuk_milkyway/2.php",
"templates/rhuk_milkyway/abuhlail.php",
"templates/rhuk_milkyway/admin.php",
"templates/rhuk_milkyway/admin1.php",
"templates/rhuk_milkyway/admin1/",
"templates/rhuk_milkyway/admin2.asp",
"templates/rhuk_milkyway/admins.asp",
"templates/rhuk_milkyway/admins.php",
"templates/rhuk_milkyway/admins/", "templates/rhuk_milkyway/amad.php",
"templates/rhuk_milkyway/asp.aspx", "templates/rhuk_milkyway/awstats",
"templates/rhuk_milkyway/b.php", "templates/rhuk_milkyway/back.sql",
"templates/rhuk_milkyway/backup.sql",
"templates/rhuk_milkyway/billing/killer.php",
"templates/rhuk_milkyway/Black.php",
"templates/rhuk_milkyway/bluff.php",
"templates/rhuk_milkyway/buck.sql", "templates/rhuk_milkyway/c.php",
"templates/rhuk_milkyway/c100.php", "templates/rhuk_milkyway/c22.php",
"templates/rhuk_milkyway/c99.php", "templates/rhuk_milkyway/cgi.pl/",
"templates/rhuk_milkyway/Cgishell.pl",
"templates/rhuk_milkyway/changeall.php",
"templates/rhuk_milkyway/configuration.php",
"templates/rhuk_milkyway/cp.php", "templates/rhuk_milkyway/cpanel",
"templates/rhuk_milkyway/cpanel.php",
"templates/rhuk_milkyway/Cpanel.php", "templates/rhuk_milkyway/cpn.php",
"templates/rhuk_milkyway/d.php", "templates/rhuk_milkyway/d0maine.php",
"templates/rhuk_milkyway/d0mains.php",
"templates/rhuk_milkyway/dam.php", "templates/rhuk_milkyway/data.sql",
"templates/rhuk_milkyway/dom.php",
"templates/rhuk_milkyway/downloads/dom.php",
"templates/rhuk_milkyway/dz.php", "templates/rhuk_milkyway/DZ.php",
"templates/rhuk_milkyway/dz0.php", "templates/rhuk_milkyway/dz1.php",
"templates/rhuk_milkyway/egyshell.php",
"templates/rhuk_milkyway/error", "templates/rhuk_milkyway/error_log",
"templates/rhuk_milkyway/forum.rar",
"templates/rhuk_milkyway/forum.sql",
"templates/rhuk_milkyway/forum.tar",
"templates/rhuk_milkyway/forum.tar.gz",
"templates/rhuk_milkyway/forum.zip", "templates/rhuk_milkyway/ftp.txt",
"templates/rhuk_milkyway/g.php", "templates/rhuk_milkyway/gaza.php",
"templates/rhuk_milkyway/gzaa_spysl",
"templates/rhuk_milkyway/home.rar", "templates/rhuk_milkyway/home.tar",
"templates/rhuk_milkyway/home.tar.gz",
"templates/rhuk_milkyway/home.zip",
"templates/rhuk_milkyway/images/c99.php",
"templates/rhuk_milkyway/images/Sym.php",
"templates/rhuk_milkyway/index.php",
"templates/rhuk_milkyway/index.phptemplates/beez/index.php",
"templates/rhuk_milkyway/info.php",
"templates/rhuk_milkyway/joomla.rar",
"templates/rhuk_milkyway/joomla.zip", "templates/rhuk_milkyway/k.php",
"templates/rhuk_milkyway/killer.php",
"templates/rhuk_milkyway/king.jeen", "templates/rhuk_milkyway/L3b.php",
"templates/rhuk_milkyway/ls.php", "templates/rhuk_milkyway/m.php",
"templates/rhuk_milkyway/madspot.php",
"templates/rhuk_milkyway/madspotshell.php",
"templates/rhuk_milkyway/mysql.php",
"templates/rhuk_milkyway/priv8.php",
"templates/rhuk_milkyway/r00t-s3c.php",
"templates/rhuk_milkyway/r00t.php", "templates/rhuk_milkyway/r57.php",
"templates/rhuk_milkyway/sa.php", "templates/rhuk_milkyway/sa2.php",
"templates/rhuk_milkyway/sado.php",
"templates/rhuk_milkyway/Sec-War.php",
"templates/rhuk_milkyway/Server.php",
"templates/rhuk_milkyway/Server/", "templates/rhuk_milkyway/Sh3ll.php",
"templates/rhuk_milkyway/shell.php",
"templates/rhuk_milkyway/site.rar", "templates/rhuk_milkyway/site.sql",
"templates/rhuk_milkyway/site.tar.gz",
"templates/rhuk_milkyway/site.txt",
"templates/rhuk_milkyway/sniper.php",
"templates/rhuk_milkyway/sos.php", "templates/rhuk_milkyway/spy.aspx",
"templates/rhuk_milkyway/sql-new.php",
"templates/rhuk_milkyway/sql.php", "templates/rhuk_milkyway/ssl.php",
"templates/rhuk_milkyway/Sym.php",
"templates/rhuk_milkyway/sym/root/home/",
"templates/rhuk_milkyway/Symlink.php",
"templates/rhuk_milkyway/Symlink.pl",
"templates/rhuk_milkyway/sysadmin.php",
"templates/rhuk_milkyway/sysadmins/",
"templates/rhuk_milkyway/t00.php", "templates/rhuk_milkyway/term.php",
"templates/rhuk_milkyway/test.txt", "templates/rhuk_milkyway/tmp/2.php",
"templates/rhuk_milkyway/tmp/admin.php",
"templates/rhuk_milkyway/tmp/cgi.pl",
"templates/rhuk_milkyway/tmp/Cgishell.pl",
"templates/rhuk_milkyway/tmp/changeall.php",
"templates/rhuk_milkyway/tmp/cpn.php",
"templates/rhuk_milkyway/tmp/d.php",
"templates/rhuk_milkyway/tmp/d0maine.php",
"templates/rhuk_milkyway/tmp/domaine.php",
"templates/rhuk_milkyway/tmp/domaine.pl",
"templates/rhuk_milkyway/tmp/dz.php",
"templates/rhuk_milkyway/tmp/dz1.php",
"templates/rhuk_milkyway/tmp/index.php",
"templates/rhuk_milkyway/tmp/killer.php",
"templates/rhuk_milkyway/tmp/L3b.php",
"templates/rhuk_milkyway/tmp/madspotshell.php",
"templates/rhuk_milkyway/tmp/priv8.php",
"templates/rhuk_milkyway/tmp/root.php",
"templates/rhuk_milkyway/tmp/sql.php",
"templates/rhuk_milkyway/tmp/Sym.php",
"templates/rhuk_milkyway/tmp/up.php",
"templates/rhuk_milkyway/tmp/upload.php",
"templates/rhuk_milkyway/tmp/uploads.php",
"templates/rhuk_milkyway/tmp/user.php",
"templates/rhuk_milkyway/tmp/vaga.php",
"templates/rhuk_milkyway/tmp/whmcs.php",
"templates/rhuk_milkyway/tmp/xd.php", "templates/rhuk_milkyway/up.php",
"templates/rhuk_milkyway/upload.php",
"templates/rhuk_milkyway/uploads.php",
"templates/rhuk_milkyway/user.php", "templates/rhuk_milkyway/user.txt",
"templates/rhuk_milkyway/useradmin/", "templates/rhuk_milkyway/vb.rar",
"templates/rhuk_milkyway/vb.sql", "templates/rhuk_milkyway/vb.zip",
"templates/rhuk_milkyway/webadmin.html",
"templates/rhuk_milkyway/whmcs.php", "templates/rhuk_milkyway/WolF.php",
"templates/rhuk_milkyway/wp-admin/c99.php",
"templates/rhuk_milkyway/wp.php", "templates/rhuk_milkyway/wp.rar/",
"templates/rhuk_milkyway/wp.zip", "templates/rhuk_milkyway/WSO.php",
"templates/rhuk_milkyway/X.php", "templates/rhuk_milkyway/xd.php",
"templates/rhuk_milkyway/xx.pl", "templates/rhuk_milkyway/zone-h.php",
"test.txt", "tmp.php", "tmp/2.php", "tmp/admin.php", "tmp/as.php",
"tmp/cgi.pl", "tmp/Cgishell.pl", "tmp/changeall.php", "tmp/cpn.php",
"tmp/d.php", "tmp/d0maine.php", "tmp/domaine.php", "tmp/domaine.pl",
"tmp/dz.php", "tmp/dz1.php", "tmp/index.php", "tmp/killer.php",
"tmp/king.php", "tmp/L3b.php", "tmp/madspotshell.php", "tmp/priv8.php",
"tmp/r00t.php", "tmp/r1z.php", "tmp/r57.php", "tmp/readme.php",
"tmp/root.php", "tmp/sa.php", "tmp/sok.php", "tmp/sql.php",
"tmp/ss.php", "tmp/up.php", "tmp/upload.php",
"tmp/upload.phptmp/admin.php", "tmp/uploads.php",
"tmp/user.phptmp/Sym.php", "tmp/vaga.php", "tmp/w.php",
"tmp/whmcs.php", "u.php", "up.php", "upload.php", "uploads.php",
"user.txt", "v.php", "v4team.php", "vb.sql", "vb.zipvb.rar", "w.php",
"webadmin.html", "whmcs.php", "whmcs/downloads/dz.php",
"wp-content/plugins/akismet/0day.php",
"wp-content/plugins/akismet/1.php",
"wp-content/plugins/akismet/123.php",
"wp-content/plugins/akismet/2.php",
"wp-content/plugins/akismet/abuhlail.php",
"wp-content/plugins/akismet/admin.php",
"wp-content/plugins/akismet/admin1.php",
"wp-content/plugins/akismet/admin1/",
"wp-content/plugins/akismet/admin2.asp",
"wp-content/plugins/akismet/admins.asp",
"wp-content/plugins/akismet/admins.php",
"wp-content/plugins/akismet/admins/",
"wp-content/plugins/akismet/akismet.php",
"wp-content/plugins/akismet/amad.php",
"wp-content/plugins/akismet/asp.aspx",
"wp-content/plugins/akismet/awstats",
"wp-content/plugins/akismet/b.php",
"wp-content/plugins/akismet/back.sql",
"wp-content/plugins/akismet/backup.sql",
"wp-content/plugins/akismet/billing/killer.php",
"wp-content/plugins/akismet/Black.php",
"wp-content/plugins/akismet/bluff.php",
"wp-content/plugins/akismet/buck.sql",
"wp-content/plugins/akismet/c.php",
"wp-content/plugins/akismet/c100.php",
"wp-content/plugins/akismet/c22.php",
"wp-content/plugins/akismet/c99.php",
"wp-content/plugins/akismet/cgi.pl/",
"wp-content/plugins/akismet/Cgishell.pl",
"wp-content/plugins/akismet/changeall.php",
"wp-content/plugins/akismet/configuration.php",
"wp-content/plugins/akismet/cp.php",
"wp-content/plugins/akismet/cpanel",
"wp-content/plugins/akismet/cpanel.php",
"wp-content/plugins/akismet/Cpanel.php",
"wp-content/plugins/akismet/cpn.php",
"wp-content/plugins/akismet/d.php",
"wp-content/plugins/akismet/d0maine.php",
"wp-content/plugins/akismet/d0mains.php",
"wp-content/plugins/akismet/dam.php",
"wp-content/plugins/akismet/data.sql",
"wp-content/plugins/akismet/disqus.php",
"wp-content/plugins/akismet/dom.php",
"wp-content/plugins/akismet/downloads/dom.php",
"wp-content/plugins/akismet/dz.php",
"wp-content/plugins/akismet/DZ.php",
"wp-content/plugins/akismet/dz0.php",
"wp-content/plugins/akismet/dz1.php",
"wp-content/plugins/akismet/egyshell.php",
"wp-content/plugins/akismet/error",
"wp-content/plugins/akismet/error_log",
"wp-content/plugins/akismet/forum.rar",
"wp-content/plugins/akismet/forum.sql",
"wp-content/plugins/akismet/forum.tar",
"wp-content/plugins/akismet/forum.tar.gz",
"wp-content/plugins/akismet/forum.zip",
"wp-content/plugins/akismet/ftp.txt",
"wp-content/plugins/akismet/g.php",
"wp-content/plugins/akismet/gaza.php",
"wp-content/plugins/akismet/gzaa_spysl",
"wp-content/plugins/akismet/home.rar",
"wp-content/plugins/akismet/home.tar",
"wp-content/plugins/akismet/home.tar.gz",
"wp-content/plugins/akismet/home.zip",
"wp-content/plugins/akismet/images/c99.php",
"wp-content/plugins/akismet/images/Sym.php",
"wp-content/plugins/akismet/info.php",
"wp-content/plugins/akismet/joomla.rar",
"wp-content/plugins/akismet/joomla.zip",
"wp-content/plugins/akismet/k.php",
"wp-content/plugins/akismet/killer.php",
"wp-content/plugins/akismet/king.jeen",
"wp-content/plugins/akismet/L3b.php",
"wp-content/plugins/akismet/ls.php", "wp-content/plugins/akismet/m.php",
"wp-content/plugins/akismet/madspot.php",
"wp-content/plugins/akismet/madspotshell.php",
"wp-content/plugins/akismet/mysql.php",
"wp-content/plugins/akismet/priv8.php",
"wp-content/plugins/akismet/r00t-s3c.php",
"wp-content/plugins/akismet/r00t.php",
"wp-content/plugins/akismet/r57.php",
"wp-content/plugins/akismet/sa.php",
"wp-content/plugins/akismet/sa2.php",
"wp-content/plugins/akismet/sado.php",
"wp-content/plugins/akismet/Sec-War.php",
"wp-content/plugins/akismet/Server.php",
"wp-content/plugins/akismet/Server/",
"wp-content/plugins/akismet/Sh3ll.php",
"wp-content/plugins/akismet/shell.php",
"wp-content/plugins/akismet/site.rar",
"wp-content/plugins/akismet/site.sql",
"wp-content/plugins/akismet/site.tar.gz",
"wp-content/plugins/akismet/site.txt",
"wp-content/plugins/akismet/sniper.php",
"wp-content/plugins/akismet/sos.php",
"wp-content/plugins/akismet/spy.aspx",
"wp-content/plugins/akismet/sql-new.php",
"wp-content/plugins/akismet/sql.php",
"wp-content/plugins/akismet/ssl.php",
"wp-content/plugins/akismet/Sym.php",
"wp-content/plugins/akismet/sym/root/home/",
"wp-content/plugins/akismet/Symlink.php",
"wp-content/plugins/akismet/Symlink.pl",
"wp-content/plugins/akismet/sysadmin.php",
"wp-content/plugins/akismet/sysadmins/",
"wp-content/plugins/akismet/t00.php",
"wp-content/plugins/akismet/term.php",
"wp-content/plugins/akismet/test.txt",
"wp-content/plugins/akismet/tmp/2.php",
"wp-content/plugins/akismet/tmp/admin.php",
"wp-content/plugins/akismet/tmp/cgi.pl",
"wp-content/plugins/akismet/tmp/Cgishell.pl",
"wp-content/plugins/akismet/tmp/changeall.php",
"wp-content/plugins/akismet/tmp/cpn.php",
"wp-content/plugins/akismet/tmp/d.php",
"wp-content/plugins/akismet/tmp/d0maine.php",
"wp-content/plugins/akismet/tmp/domaine.php",
"wp-content/plugins/akismet/tmp/domaine.pl",
"wp-content/plugins/akismet/tmp/dz.php",
"wp-content/plugins/akismet/tmp/dz1.php",
"wp-content/plugins/akismet/tmp/index.php",
"wp-content/plugins/akismet/tmp/killer.php",
"wp-content/plugins/akismet/tmp/L3b.php",
"wp-content/plugins/akismet/tmp/madspotshell.php",
"wp-content/plugins/akismet/tmp/priv8.php",
"wp-content/plugins/akismet/tmp/root.php",
"wp-content/plugins/akismet/tmp/sql.php",
"wp-content/plugins/akismet/tmp/Sym.php",
"wp-content/plugins/akismet/tmp/up.php",
"wp-content/plugins/akismet/tmp/upload.php",
"wp-content/plugins/akismet/tmp/uploads.php",
"wp-content/plugins/akismet/tmp/user.php",
"wp-content/plugins/akismet/tmp/vaga.php",
"wp-content/plugins/akismet/tmp/whmcs.php",
"wp-content/plugins/akismet/tmp/xd.php",
"wp-content/plugins/akismet/up.php",
"wp-content/plugins/akismet/upload.php",
"wp-content/plugins/akismet/uploads.php",
"wp-content/plugins/akismet/user.php",
"wp-content/plugins/akismet/user.txt",
"wp-content/plugins/akismet/useradmin/",
"wp-content/plugins/akismet/vb.rar",
"wp-content/plugins/akismet/vb.sql",
"wp-content/plugins/akismet/vb.zip",
"wp-content/plugins/akismet/webadmin.html",
"wp-content/plugins/akismet/whmcs.php",
"wp-content/plugins/akismet/widget.php",
"wp-content/plugins/akismet/WolF.php",
"wp-content/plugins/akismet/wp-admin/c99.php",
"wp-content/plugins/akismet/wp.php",
"wp-content/plugins/akismet/wp.rar/",
"wp-content/plugins/akismet/wp.zip",
"wp-content/plugins/akismet/WSO.php",
"wp-content/plugins/akismet/X.php",
"wp-content/plugins/akismet/xd.php", "wp-content/plugins/akismet/xx.pl",
"wp-content/plugins/akismet/zone-h.php",
"wp-content/plugins/count-per-day/js/yc/d00.php",
"wp-content/plugins/disqus-comment-system/0day.php",
"wp-content/plugins/disqus-comment-system/1.php",
"wp-content/plugins/disqus-comment-system/2.php",
"wp-content/plugins/disqus-comment-system/admin.php",
"wp-content/plugins/disqus-comment-system/admin1.php",
"wp-content/plugins/disqus-comment-system/admin1/",
"wp-content/plugins/disqus-comment-system/admin2.asp",
"wp-content/plugins/disqus-comment-system/amad.php",
"wp-content/plugins/disqus-comment-system/c100.php",
"wp-content/plugins/disqus-comment-system/c22.php",
"wp-content/plugins/disqus-comment-system/c99.php",
"wp-content/plugins/disqus-comment-system/Cgishell.pl",
"wp-content/plugins/disqus-comment-system/changeall.php",
"wp-content/plugins/disqus-comment-system/configuration.php",
"wp-content/plugins/disqus-comment-system/cp.php",
"wp-content/plugins/disqus-comment-system/cpanel.php",
"wp-content/plugins/disqus-comment-system/Cpanel.php",
"wp-content/plugins/disqus-comment-system/cpn.php",
"wp-content/plugins/disqus-comment-system/d.php",
"wp-content/plugins/disqus-comment-system/d0mains.php",
"wp-content/plugins/disqus-comment-system/dam.php",
"wp-content/plugins/disqus-comment-system/disqus.php",
"wp-content/plugins/disqus-comment-system/dom.php",
"wp-content/plugins/disqus-comment-system/dz.php",
"wp-content/plugins/disqus-comment-system/DZ.php",
"wp-content/plugins/disqus-comment-system/dz0.php",
"wp-content/plugins/disqus-comment-system/egyshell.php",
"wp-content/plugins/disqus-comment-system/g.php",
"wp-content/plugins/disqus-comment-system/gaza.php",
"wp-content/plugins/disqus-comment-system/gzaa_spysl",
"wp-content/plugins/disqus-comment-system/images/Sym.php",
"wp-content/plugins/disqus-comment-system/info.php",
"wp-content/plugins/disqus-comment-system/k.php",
"wp-content/plugins/disqus-comment-system/killer.php",
"wp-content/plugins/disqus-comment-system/L3b.php",
"wp-content/plugins/disqus-comment-system/ls.php",
"wp-content/plugins/disqus-comment-system/madspot.php",
"wp-content/plugins/disqus-comment-system/madspotshell.php",
"wp-content/plugins/disqus-comment-system/mysql.php",
"wp-content/plugins/disqus-comment-system/r00t.php",
"wp-content/plugins/disqus-comment-system/r57.php",
"wp-content/plugins/disqus-comment-system/sa.php",
"wp-content/plugins/disqus-comment-system/sa2.php",
"wp-content/plugins/disqus-comment-system/sado.php",
"wp-content/plugins/disqus-comment-system/Sec-War.php",
"wp-content/plugins/disqus-comment-system/Sh3ll.php",
"wp-content/plugins/disqus-comment-system/shell.php",
"wp-content/plugins/disqus-comment-system/sniper.php",
"wp-content/plugins/disqus-comment-system/sos.php",
"wp-content/plugins/disqus-comment-system/sql-new.php",
"wp-content/plugins/disqus-comment-system/sql.php",
"wp-content/plugins/disqus-comment-system/ssl.php",
"wp-content/plugins/disqus-comment-system/Sym.php",
"wp-content/plugins/disqus-comment-system/sysadmins/",
"wp-content/plugins/disqus-comment-system/t00.php",
"wp-content/plugins/disqus-comment-system/term.php",
"wp-content/plugins/disqus-comment-system/tmp/2.php",
"wp-content/plugins/disqus-comment-system/tmp/admin.php",
"wp-content/plugins/disqus-comment-system/tmp/Cgishell.pl",
"wp-content/plugins/disqus-comment-system/tmp/changeall.php",
"wp-content/plugins/disqus-comment-system/tmp/cpn.php",
"wp-content/plugins/disqus-comment-system/tmp/d.php",
"wp-content/plugins/disqus-comment-system/tmp/dz.php",
"wp-content/plugins/disqus-comment-system/tmp/index.php",
"wp-content/plugins/disqus-comment-system/tmp/L3b.php",
"wp-content/plugins/disqus-comment-system/tmp/madspotshell.php",
"wp-content/plugins/disqus-comment-system/tmp/root.php",
"wp-content/plugins/disqus-comment-system/tmp/sql.php",
"wp-content/plugins/disqus-comment-system/tmp/Sym.php",
"wp-content/plugins/disqus-comment-system/tmp/user.php",
"wp-content/plugins/disqus-comment-system/tmp/whmcs.php",
"wp-content/plugins/disqus-comment-system/up.php",
"wp-content/plugins/disqus-comment-system/upload.php",
"wp-content/plugins/disqus-comment-system/uploads.php",
"wp-content/plugins/disqus-comment-system/user.php",
"wp-content/plugins/disqus-comment-system/vb.rar",
"wp-content/plugins/disqus-comment-system/vb.zip",
"wp-content/plugins/disqus-comment-system/whmcs.php",
"wp-content/plugins/disqus-comment-system/WolF.php",
"wp-content/plugins/disqus-comment-system/WSO.php",
"wp-content/plugins/disqus-comment-system/xx.pl",
"wp-content/plugins/disqus-comment-system/zone-h.php",
"wp-content/plugins/google-sitemap-generator/123.php",
"wp-content/plugins/google-sitemap-generator/abuhlail.php",
"wp-content/plugins/google-sitemap-generator/admins.asp",
"wp-content/plugins/google-sitemap-generator/admins.php",
"wp-content/plugins/google-sitemap-generator/admins/",
"wp-content/plugins/google-sitemap-generator/asp.aspx",
"wp-content/plugins/google-sitemap-generator/awstats",
"wp-content/plugins/google-sitemap-generator/b.php",
"wp-content/plugins/google-sitemap-generator/back.sql",
"wp-content/plugins/google-sitemap-generator/backup.sql",
"wp-content/plugins/google-sitemap-generator/billing/killer.php",
"wp-content/plugins/google-sitemap-generator/bluff.php",
"wp-content/plugins/google-sitemap-generator/buck.sql",
"wp-content/plugins/google-sitemap-generator/c.php",
"wp-content/plugins/google-sitemap-generator/c100.php",
"wp-content/plugins/google-sitemap-generator/cgi.pl/",
"wp-content/plugins/google-sitemap-generator/cpanel",
"wp-content/plugins/google-sitemap-generator/d0maine.php",
"wp-content/plugins/google-sitemap-generator/data.sql",
"wp-content/plugins/google-sitemap-generator/downloads/dom.php",
"wp-content/plugins/google-sitemap-generator/dz1.php",
"wp-content/plugins/google-sitemap-generator/forum.rar",
"wp-content/plugins/google-sitemap-generator/forum.sql",
"wp-content/plugins/google-sitemap-generator/forum.zip",
"wp-content/plugins/google-sitemap-generator/images/c99.php",
"wp-content/plugins/google-sitemap-generator/joomla.rar",
"wp-content/plugins/google-sitemap-generator/joomla.zip",
"wp-content/plugins/google-sitemap-generator/king.jeen",
"wp-content/plugins/google-sitemap-generator/m.php",
"wp-content/plugins/google-sitemap-generator/priv8.php",
"wp-content/plugins/google-sitemap-generator/r00t-s3c.php",
"wp-content/plugins/google-sitemap-generator/Server.php",
"wp-content/plugins/google-sitemap-generator/Server/",
"wp-content/plugins/google-sitemap-generator/site.sql",
"wp-content/plugins/google-sitemap-generator/sitemap-core.php",
"wp-content/plugins/google-sitemap-generator/spy.aspx",
"wp-content/plugins/google-sitemap-generator/sym/root/home/",
"wp-content/plugins/google-sitemap-generator/Symlink.php",
"wp-content/plugins/google-sitemap-generator/Symlink.pl",
"wp-content/plugins/google-sitemap-generator/sysadmin.php",
"wp-content/plugins/google-sitemap-generator/tmp/admin.php",
"wp-content/plugins/google-sitemap-generator/tmp/cgi.pl",
"wp-content/plugins/google-sitemap-generator/tmp/d0maine.php",
"wp-content/plugins/google-sitemap-generator/tmp/domaine.php",
"wp-content/plugins/google-sitemap-generator/tmp/domaine.pl",
"wp-content/plugins/google-sitemap-generator/tmp/dz1.php",
"wp-content/plugins/google-sitemap-generator/tmp/killer.php",
"wp-content/plugins/google-sitemap-generator/tmp/priv8.php",
"wp-content/plugins/google-sitemap-generator/tmp/sql.php",
"wp-content/plugins/google-sitemap-generator/tmp/up.php",
"wp-content/plugins/google-sitemap-generator/tmp/upload.php",
"wp-content/plugins/google-sitemap-generator/tmp/uploads.php",
"wp-content/plugins/google-sitemap-generator/tmp/vaga.php",
"wp-content/plugins/google-sitemap-generator/tmp/xd.php",
"wp-content/plugins/google-sitemap-generator/up.php",
"wp-content/plugins/google-sitemap-generator/useradmin/",
"wp-content/plugins/google-sitemap-generator/vb.sql",
"wp-content/plugins/google-sitemap-generator/webadmin.html",
"wp-content/plugins/google-sitemap-generator/whmcs.php",
"wp-content/plugins/google-sitemap-generator/wp-admin/c99.php",
"wp-content/plugins/google-sitemap-generator/wp.php",
"wp-content/plugins/google-sitemap-generator/wp.rar/",
"wp-content/plugins/google-sitemap-generator/wp.zip",
"wp-content/plugins/google-sitemap-generator/X.php",
"wp-content/plugins/google-sitemap-generator/xd.php", "wp.php",
"wp.zip", "WSO.php", "X.php", "x.php", "xd.php", "xx.pl", "xxx.php",
"y.php", "yourshell.php", "z.php", "1.php", "c100.php"
]
print("{}{:<92}| {:<50}".format(c, "URL", "STATUS"))
for _shells in shells:
if len(_shells) != 0:
combo = f"{website}/{_shells}"
try:
resp = requests.get(combo,
timeout=5,
headers=_headers,
allow_redirects=False).status_code
if resp == 200:
print("{}{:<92}| {:<50}".format(g, combo, resp))
elif resp == 301:
print("{}{:<92}| {:<50}".format(r, combo, "404"))
elif resp == 500 or resp == 502:
print("{}{:<92}| {:<50}".format(c, combo, "404"))
else:
print("{}{:<92}| {:<50}".format(r, combo, "404"))
except Exception:
print("{}{:<92}| {:<50}".format(r, combo, "404"))
def findAdminPanel(website):
website = addHTTP(website)
panels = [
"0admin/", "0manager/", "aadmin/", "acceso.php", "access.php",
"access/", "account.asp", "account.html", "account.php",
"accounts.php", "accounts/", "acct_login/", "adm", "adm.asp",
"adm.html", "adm.php", "adm/", "adm/admloginuser.asp",
"adm/admloginuser.php", "adm/index.asp", "adm/index.html",
"adm/index.php", "adm_auth.asp", "adm_auth.php", "admcp", "admin",
"admin-login.asp", "admin-login.html", "admin-login.php", "admin.asp",
"admin.htm", "admin.html", "admin.php", "admin/", "ADMIN/",
"admin/account.asp", "admin/account.html", "admin/account.php",
"admin/admin-login.asp", "admin/admin-login.html",
"admin/admin-login.php", "admin/admin.asp", "admin/admin.html",
"admin/admin.php", "admin/admin_login.asp", "admin/admin_login.html",
"admin/admin_login.php", "admin/adminLogin.asp",
"admin/adminLogin.htm", "admin/adminLogin.html",
"admin/adminLogin.php", "admin/controlpanel.asp",
"admin/controlpanel.htm", "admin/controlpanel.html",
"admin/controlpanel.php", "admin/cp.asp", "admin/cp.html",
"admin/cp.php", "admin/home.asp", "admin/home.html", "admin/home.php",
"admin/index.asp", "admin/index.html", "admin/index.php",
"admin/login.asp", "admin/login.htm", "admin/login.html",
"ADMIN/login.html", "admin/login.php", "ADMIN/login.php", "admin1.asp",
"admin1.htm", "admin1.html", "admin1.php", "admin1/", "admin2.asp",
"admin2.html", "admin2.php", "admin2/index.asp", "admin2/index.php",
"admin2/login.asp", "admin2/login.php", "admin4_account/",
"admin4_colon/", "admin_area.php", "admin_area/",
"admin_area/admin.asp", "admin_area/admin.html",
"admin_area/admin.php", "admin_area/index.asp",
"admin_area/index.html", "admin_area/index.php",
"admin_area/login.asp", "admin_area/login.html",
"admin_area/login.php", "admin_login.asp", "admin_login.html",
"admin_login.php", "adminare", "adminarea/", "adminarea/admin.asp",
"adminarea/admin.html", "adminarea/admin.php", "adminarea/index.asp",
"adminarea/index.html", "adminarea/index.php", "adminarea/login.asp",
"adminarea/login.html", "adminarea/login.php", "admincontrol.asp",
"admincontrol.html", "admincontrol.php", "admincontrol/",
"admincontrol/login.asp", "admincontrol/login.html",
"admincontrol/login.php", "admincp", "admincp/", "admincp/index.asp",
"admincp/index.html", "admincp/login.asp", "admincp/login.php",
"administer/", "administr8.asp", "administr8.html", "administr8.php",
"administr8/", "administrador/", "administratie/",
"administration.html", "administration.php", "administration/",
"administrator.asp", "administrator.html", "administrator.php",
"administrator.php/", "administrator/", "administrator/account.asp",
"administrator/account.html", "administrator/account.php",
"administrator/index.asp", "administrator/index.html",
"administrator/index.php", "administrator/login.asp",
"administrator/login.html", "administrator/login.php",
"administratoraccounts/", "administratorlogin.asp",
"administratorlogin.php", "administratorlogin/", "administrators.php",
"administrators/", "administrivia/", "adminitem.php", "adminitem/",
"adminitems.php", "adminitems/", "adminLogin.asp", "adminLogin.html",
"adminlogin.php", "adminLogin.php", "adminLogin/", "adminpanel.asp",
"adminpanel.html", "adminpanel.php", "adminpanel/", "adminpro/",
"admins", "admins.asp", "admins.html", "admins.php", "admins/",
"adminsite/", "AdminTools/", "admloginuser.asp", "admloginuser.php",
"admon/", "ADMON/", "affiliate.asp", "affiliate.php", "auth.php",
"authadmin.php", "authenticate.php", "authentication.php",
"authuser.php", "autologin.php", "autologin/", "banneradmin/",
"bb-admin/", "bb-admin/admin.asp", "bb-admin/admin.html",
"bb-admin/admin.php", "bb-admin/index.asp", "bb-admin/index.html",
"bb-admin/index.php", "bb-admin/login.asp", "bb-admin/login.html",
"bb-admin/login.php", "bbadmin/", "bigadmin/", "blog/wp-login.php",
"blogindex/", "cadmins/", "ccms/", "ccms/index.php", "ccms/login.php",
"ccp14admin/", "cgi-bin/login", "cgi-bin/login.php", "check.php",
"checkadmin.php", "checklogin.php", "checkuser.php", "cms/",
"cmsadmin.php", "cmsadmin/", "configuration/", "configure/",
"control.php", "control/", "controlpanel", "controlpanel.asp",
"controlpanel.html", "controlpanel.php", "controlpanel/", "cp",
"cp.asp", "cp.html", "cp.php", "cp/", "cpanel", "cpanel/", "cPanel/",
"cpanel_file/", "customer_login/", "Database_Administration/",
"database_administration/", "ddx/", "ddx/index", "dir-login/",
"directadmin/", "dotAdmin/", "ezsqliteadmin/", "fileadmin.asp",
"fileadmin.html", "fileadmin.php", "fileadmin/", "formslogin/",
"globes_admin/", "home.asp", "home.html", "home.php", "hpwebjetadmin/",
"Indy_admin/", "instadmin/", "irc-macadmin/", "isadmin.php", "kpanel/",
"letmein.php", "letmein/", "LiveUser_Admin/", "log-in.php", "log-in/",
"log_in.php", "log_in/", "login", "login-redirect/", "login-us/",
"login.asp", "login.htm", "login.html", "login.php", "login/",
"login1", "login1.php", "login1/", "login_admin", "login_admin.php",
"login_admin/", "login_db/", "login_out", "login_out.php",
"login_out/", "login_user", "login_user.php", "loginerror/",
"loginflat/", "loginok/", "loginsave/", "loginsuper", "loginsuper.php",
"loginsuper/", "logo_sysadmin/", "logout", "logout.php", "logout/",
"Lotus_Domino_Admin/", "macadmin/", "maintenance/", "manage.php",
"manage/", "management.php", "management/", "manager.php", "manager/",
"manuallogin/", "member.php", "member/", "memberadmin.asp",
"memberadmin.php", "memberadmin/", "members.php", "members/",
"memlogin/", "meta_login/", "modcp", "modcp/", "modelsearch/admin.asp",
"modelsearch/admin.html", "modelsearch/admin.php",
"modelsearch/index.asp", "modelsearch/index.html",
"modelsearch/index.php", "modelsearch/login.asp",
"modelsearch/login.html", "modelsearch/login.php", "moderator.asp",
"moderator.html", "moderator.php", "moderator.php/", "moderator/",
"moderator/admin.", "moderator/admin.asp", "moderator/admin.html",
"moderator/admin.php", "moderator/login.asp", "moderator/login.html",
"moderator/login.php", "moderatorcp", "modules/admin/", "myadmin/",
"navSiteAdmin/", "newsadmin/", "nsw/admin/login.php", "openvpnadmin/",
"pages/admin/", "pages/admin/admin-login.asp",
"pages/admin/admin-login.html", "pages/admin/admin-login.php",
"panel-administracion/", "panel-administracion/admin.asp",
"panel-administracion/admin.html", "panel-administracion/admin.php",
"panel-administracion/index.asp", "panel-administracion/index.html",
"panel-administracion/index.php", "panel-administracion/login.asp",
"panel-administracion/login.html", "panel-administracion/login.php",
"panel.php", "panel/", "panelc/", "paneldecontrol/", "pgadmin/",
"phpldapadmin/", "phpMyAdmin", "phpmyadmin/", "phpMyAdmin/themes/",
"phppgadmin/", "phpSQLiteAdmin/", "platz_login/", "power_user/",
"processlogin.php", "project-admins/", "PSUser/", "pureadmin/",
"radmind-1/", "radmind/", "rcjakar/admin/login.php", "rcLogin/",
"registration/", "relogin.htm", "relogin.html", "relogin.php", "root/",
"secret/", "secrets/", "secure/", "security/", "Server.asp",
"Server.html", "Server.php", "Server/", "server/",
"server_admin_small/", "ServerAdministrator/", "showlogin/",
"sign-in.php", "sign-in/", "sign_in.php", "sign_in/", "signin.php",
"signin/", "simpleLogin/", "siteadmin.php", "siteadmin/",
"siteadmin/index.asp", "siteadmin/index.php", "siteadmin/login.asp",
"siteadmin/login.html", "siteadmin/login.php", "smblogin/",
"sql-admin/", "ss_vms_admin_sm/", "sshadmin/", "staradmin/",
"sub-login/", "super", "Super-Admin/", "super.php", "super1",
"super1.php", "super1/", "super_index", "super_index.php",
"super_login", "super_login.php", "superman", "superman.php",
"superman/", "supermanager", "supermanager.php", "superuser",
"superuser.php", "superuser/", "supervise/", "supervise/Login",
"supervise/Login.php", "supervisor/", "support_login/", "sys-admin/",
"sysadm.php", "sysadm/", "sysadmin.asp", "sysadmin.html",
"sysadmin.php", "SysAdmin/", "sysadmin/", "SysAdmin2/", "sysadmins/",
"system-administration/", "system_administration/", "typo3/",
"ur-admin.", "ur-admin.asp", "ur-admin.html", "ur-admin.php",
"ur-admin/", "user.asp", "user.html", "user.php", "user/",
"user/admin.php", "useradmin/", "userlogin.php", "UserLogin/",
"users.php", "users/", "users/admin.php", "usr/", "utility_login/",
"uvpanel/", "vadmind/", "vmailadmin/", "vorod.php", "vorod/",
"vorud.php", "vorud/", "webadmin.asp", "webadmin.html", "webadmin.php",
"webadmin/", "WebAdmin/", "webadmin/admin.asp", "webadmin/admin.html",
"webadmin/admin.php", "webadmin/index.asp", "webadmin/index.html",
"webadmin/index.php", "webadmin/login.asp", "webadmin/login.html",
"webadmin/login.php", "webmaster.php", "webmaster/", "websvn/",
"wizmysqladmin/", "wp-admin/", "wp-admin/index.php", "wp-login.php",
"wp-login/", "xlogin/", "yonetici.asp", "yonetici.html",
"yonetici.php", "yonetim.asp", "yonetim.html", "yonetim.php"
]
print("{}{:<92}| {:<50}".format(c, "URL", "STATUS"))
for _panels in panels:
if len(_panels) != 0:
combo = website + "/" + _panels
try:
resp = requests.get(combo,
timeout=5,
headers=_headers,
allow_redirects=False).status_code
if resp == 200:
print("{}{:<92}| {:<50}".format(g, combo, resp))
elif resp == 301:
print("{}{:<92}| {:<50}".format(r, combo, "404"))
elif resp == 500 or resp == 502:
print("{}{:<92}| {:<50}".format(c, combo, "404"))
else:
print("{}{:<92}| {:<50}".format(r, combo, "404"))
except Exception:
print("{}{:<92}| {:<50}".format(r, combo, "404"))
