Bem, hoje eu irei re-postar um PHPmyAdminFinder, pois eu vi esse script:Apenas usuários registrados e ativados podem ver os links., Clique aqui para se cadastrar..., pois bem ele ja e bastante antigo, então eu resolvi pelo menos tentar fazer um pouco melhor:
Código:
#!/usr/bin/perl use LWP::UserAgent qw(request agent timeout); use HTTP::Request qw(uri method content); use threads; $ua = LWP::UserAgent->new(); $ua->agent('Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Firefox/31.0'); $ua->timeout('50'); sub httpc{ $sit = $_[0]; my $res = HTTP::Request->new(); $res->uri($sit); $res->method('GET'); $ret = $ua->request($res); if($ret->is_success){ print "[+]The page $sit exists!\n\n"; push @ok, $sit; }else{ print "[!]The page $sit doesnt exists..\n\n"; push @fa, $sit; } } system('cls') if($^O =~ /Win/) || system('clear'); print "\t\t**********************************\n"; print "\t\t# #\n"; print "\t\t# #\n"; print "\t\t#\tPHPMYADMIN Finder #\n"; print "\t\t#\tCoded by andreol263 #\n"; print "\t\t# #\n"; print "\t\t# #\n"; print "\t\t**********************************\n\n"; print "[+]Set the target site:\n"; chomp($doe=<STDIN>); if($doe !~ m(http://)){ $doe = 'http://' . $doe; } $doe =~ s!/\Z!!; print "[+]Set the location of the file with the admins:\n"; chomp($in=<STDIN>); if(-e $in){ open DIRFH, '<', $in; (@dirs) = <DIRFH>; close DIRFH; }else{ die "[!]The file with pages doesnt exists!\n"; } { for($i = 1, $i<=12, $i++){ push @threads, $i; } foreach $t(@threads){ $t = threads->create({'stack_size' => 32*4096, 'exit' => 'threads_only'}, \&httpc); $t->join(); } } foreach $xx (@dirs){ my $mac = $doe . $xx; &httpc($mac); } print "Results:\n@ok possible exists!\n-----------------------\n @fa doesnt exists..\n---------------------\n"; threads->exit();
O Que ele apresenta de diferente do antigo? bem eu mantive a wordlist, que agora e EXTERNA, já e uma novidade, basta quando perguntar aonde esta wordlist vc colocar aonde ela se localiza, se estiver na mesma pasta que o script, basta coloca somente o nome dela, outra novidade e a OTIMIZAÇÃO do codigo, eu tentei fazer o meu melhor para ele carrega o quanto menos possivel de modulos em excesso, outra novidade e o Multi-Threading, que ira deixar o programa bem mais rapido, bem e isso, aproveitem, comentem o que vocês acharam
a Wordlist e essa aqui:
Código:
/phpMyAdmin/ /phpmyadmin/ /PMA/ /admin/ /dbadmin/ /mysql/ /myadmin/ /phpmyadmin2/ /phpMyAdmin2/ /phpMyAdmin-2/ /php-my-admin/ /phpMyAdmin-2.2.3/ /phpMyAdmin-2.2.6/ /phpMyAdmin-2.5.1/ /phpMyAdmin-2.5.4/ /phpMyAdmin-2.5.5-rc1/ /phpMyAdmin-2.5.5-rc2/ /phpMyAdmin-2.5.5/ /phpMyAdmin-2.5.5-pl1/ /phpMyAdmin-2.5.6-rc1/ /phpMyAdmin-2.5.6-rc2/ /phpMyAdmin-2.5.6/ /phpMyAdmin-2.5.7/ /phpMyAdmin-2.5.7-pl1/ /phpMyAdmin-2.6.0-alpha/ /phpMyAdmin-2.6.0-alpha2/ /phpMyAdmin-2.6.0-beta1/ /phpMyAdmin-2.6.0-beta2/ /phpMyAdmin-2.6.0-rc1/ /phpMyAdmin-2.6.0-rc2/ /phpMyAdmin-2.6.0-rc3/ /phpMyAdmin-2.6.0/ /phpMyAdmin-2.6.0-pl1/ /phpMyAdmin-2.6.0-pl2/ /phpMyAdmin-2.6.0-pl3/ /phpMyAdmin-2.6.1-rc1/ /phpMyAdmin-2.6.1-rc2/ /phpMyAdmin-2.6.1/ /phpMyAdmin-2.6.1-pl1/ /phpMyAdmin-2.6.1-pl2/ /phpMyAdmin-2.6.1-pl3/ /phpMyAdmin-2.6.2-rc1/ /phpMyAdmin-2.6.2-beta1/ /phpMyAdmin-2.6.2-rc1/ /phpMyAdmin-2.6.2/ /phpMyAdmin-2.6.2-pl1/ /phpMyAdmin-2.6.3/ /phpMyAdmin-2.6.3-rc1/ /phpMyAdmin-2.6.3/ /phpMyAdmin-2.6.3-pl1/ /phpMyAdmin-2.6.4-rc1/ /phpMyAdmin-2.6.4-pl1/ /phpMyAdmin-2.6.4-pl2/ /phpMyAdmin-2.6.4-pl3/ /phpMyAdmin-2.6.4-pl4/ /phpMyAdmin-2.6.4/ /phpMyAdmin-2.7.0-beta1/ /phpMyAdmin-2.7.0-rc1/ /phpMyAdmin-2.7.0-pl1/ /phpMyAdmin-2.7.0-pl2/ /phpMyAdmin-2.7.0/ /phpMyAdmin-2.8.0-beta1/ /phpMyAdmin-2.8.0-rc1/ /phpMyAdmin-2.8.0-rc2/ /phpMyAdmin-2.8.0/ /phpMyAdmin-2.8.0.1/ /phpMyAdmin-2.8.0.2/ /phpMyAdmin-2.8.0.3/ /phpMyAdmin-2.8.0.4/ /phpMyAdmin-2.8.1-rc1/ /phpMyAdmin-2.8.1/ /phpMyAdmin-2.8.2/ /sqlmanager/ /mysqlmanager/ /p/m/a/ /PMA2005/ /pma2005/ /phpmanager/ /php-myadmin/ /phpmy-admin/ /webadmin/ /sqlweb/ /websql/ /webdb/ /mysqladmin/ /mysql-admin/
basta você colocar em arquivo de texto e quando o programa pedir por uma wordlist utilizar esta!
Comment