Un simple programa para buscar el famoso panel de administracion.
Una imagen :
(http://doddyhackman.webcindario.com/images/adminfinderdelphi.jpg)
El codigo :
// Admin Finder 0.2
// Coded By Doddy H
unit admin;
interface
uses
Windows, Messages, SysUtils, Variants, Classes, Graphics, Controls, Forms,
Dialogs, StdCtrls, sGroupBox, ComCtrls, sStatusBar, jpeg, ExtCtrls,
IdBaseComponent, IdComponent, IdTCPConnection, IdTCPClient, IdHTTP,
sSkinManager, sListBox, sButton, sEdit, ShellApi, Menus;
type
TForm1 = class(TForm)
sSkinManager1: TsSkinManager;
IdHTTP1: TIdHTTP;
Image1: TImage;
sStatusBar1: TsStatusBar;
sGroupBox1: TsGroupBox;
sEdit1: TsEdit;
sGroupBox2: TsGroupBox;
sListBox1: TsListBox;
sEdit2: TsEdit;
PopupMenu1: TPopupMenu;
S1: TMenuItem;
A1: TMenuItem;
E1: TMenuItem;
procedure sListBox1DblClick(Sender: TObject);
procedure S1Click(Sender: TObject);
procedure S2Click(Sender: TObject);
procedure A1Click(Sender: TObject);
procedure E1Click(Sender: TObject);
procedure FormCreate(Sender: TObject);
private
{ Private declarations }
public
{ Public declarations }
end;
var
Form1: TForm1;
implementation
{$R *.dfm}
procedure TForm1.A1Click(Sender: TObject);
begin
ShowMessage('Contact to lepuke[at]hotmail[com]');
end;
procedure TForm1.E1Click(Sender: TObject);
begin
Form1.Close();
end;
procedure TForm1.FormCreate(Sender: TObject);
begin
sSkinManager1.SkinDirectory := ExtractFilePath(Application.ExeName) + 'Data';
sSkinManager1.SkinName := 'garnet';
sSkinManager1.Active := True;
end;
procedure TForm1.S1Click(Sender: TObject);
const
paginas: array [1 .. 250] of string = ('admin/admin.asp', 'admin/login.asp',
'admin/index.asp', 'admin/admin.aspx', 'admin/login.aspx',
'admin/index.aspx', 'admin/webmaster.asp', 'admin/webmaster.aspx',
'asp/admin/index.asp', 'asp/admin/index.aspx', 'asp/admin/admin.asp',
'asp/admin/admin.aspx', 'asp/admin/webmaster.asp',
'asp/admin/webmaster.aspx', 'admin/', 'login.asp', 'login.aspx',
'admin.asp', 'admin.aspx', 'webmaster.aspx', 'webmaster.asp',
'login/index.asp', 'login/index.aspx', 'login/login.asp',
'login/login.aspx', 'login/admin.asp', 'login/admin.aspx',
'administracion/index.asp', 'administracion/index.aspx',
'administracion/login.asp', 'administracion/login.aspx',
'administracion/webmaster.asp', 'administracion/webmaster.aspx',
'administracion/admin.asp', 'administracion/admin.aspx', 'php/admin/',
'admin/admin.php', 'admin/index.php', 'admin/login.php',
'admin/system.php', 'admin/ingresar.php', 'admin/administrador.php',
'admin/default.php', 'administracion/', 'administracion/index.php',
'administracion/login.php', 'administracion/ingresar.php',
'administracion/admin.php', 'administration/', 'administration/index.php',
'administration/login.php', 'administrator/index.php',
'administrator/login.php', 'administrator/system.php', 'system/',
'system/login.php', 'admin.php', 'login.php', 'administrador.php',
'administration.php', 'administrator.php', 'admin1.html', 'admin1.php',
'admin2.php', 'admin2.html', 'yonetim.php', 'yonetim.html', 'yonetici.php',
'yonetici.html', 'adm/', 'admin/account.php', 'admin/account.html',
'admin/index.html', 'admin/login.html', 'admin/home.php',
'admin/controlpanel.html', 'admin/controlpanel.php', 'admin.html',
'admin/cp.php', 'admin/cp.html', 'cp.php', 'cp.html', 'administrator/',
'administrator/index.html', 'administrator/login.html',
'administrator/account.html', 'administrator/account.php',
'administrator.html', 'login.html', 'modelsearch/login.php',
'moderator.php', 'moderator.html', 'moderator/login.php',
'moderator/login.html', 'moderator/admin.php', 'moderator/admin.html',
'moderator/', 'account.php', 'account.html', 'controlpanel/',
'controlpanel.php', 'controlpanel.html', 'admincontrol.php',
'admincontrol.html', 'adminpanel.php', 'adminpanel.html', 'admin1.asp',
'admin2.asp', 'yonetim.asp', 'yonetici.asp', 'admin/account.asp',
'admin/home.asp', 'admin/controlpanel.asp', 'admin/cp.asp', 'cp.asp',
'administrator/index.asp', 'administrator/login.asp',
'administrator/account.asp', 'administrator.asp', 'modelsearch/login.asp',
'moderator.asp', 'moderator/login.asp', 'moderator/admin.asp',
'account.asp', 'controlpanel.asp', 'admincontrol.asp', 'adminpanel.asp',
'fileadmin/', 'fileadmin.php', 'fileadmin.asp', 'fileadmin.html',
'administration.html', 'sysadmin.php', 'sysadmin.html', 'phpmyadmin/',
'myadmin/', 'sysadmin.asp', 'sysadmin/', 'ur-admin.asp', 'ur-admin.php',
'ur-admin.html', 'ur-admin/', 'Server.php', 'Server.html', 'Server.asp',
'Server/', 'wpadmin/', 'administr8.php', 'administr8.html', 'administr8/',
'administr8.asp', 'webadmin/', 'webadmin.php', 'webadmin.asp',
'webadmin.html', 'administratie/', 'admins/', 'admins.php', 'admins.asp',
'admins.html', 'administrivia/', 'Database_Administration/', 'WebAdmin/',
'useradmin/', 'sysadmins/', 'admin1/', 'systemadministration/',
'administrators/', 'pgadmin/', 'directadmin/', 'staradmin/',
'ServerAdministrator/', 'SysAdmin/', 'administer/', 'LiveUser_Admin/',
'sysadmin/', 'typo3/', 'panel/', 'cpanel/', 'cPanel/', 'cpanel_file/',
'platz_login/', 'rcLogin/', 'blogindex/', 'formslogin/', 'autologin/',
'support_login/', 'meta_login/', 'manuallogin/', 'simpleLogin/',
'loginflat/', 'utility_login/', 'showlogin/', 'memlogin/', 'members/',
'login-redirect/', 'sublogin/', 'wplogin/', 'login1/', 'dirlogin/',
'login_db/', 'xlogin/', 'smblogin/', 'customer_login/', 'UserLogin/',
'loginus/', 'acct_login/', 'admin_area/', 'bigadmin/', 'project-admins/',
'phppgadmin/', 'pureadmin/', 'sqladmin/', 'radmind/', 'openvpnadmin/',
'wizmysqladmin/', 'vadmind/', 'ezsqliteadmin/', 'hpwebjetadmin/',
'newsadmin/', 'adminpro/', 'Lotus_Domino_Admin/', 'bbadmin/',
'vmailadmin/', 'Indy_admin/', 'ccp14admin/', 'irc-macadmin/',
'banneradmin/', 'sshadmin/', 'phpldapadmin/', 'macadmin/',
'administratoraccounts/', 'admin4_account/', 'admin4_colon/', 'radmind1/',
'SuperAdmin/', 'AdminTools/', 'cmsadmin/', 'SysAdmin2/', 'globes_admin/',
'cadmins/', 'phpSQLiteAdmin/', 'navSiteAdmin/', 'server_admin_small/',
'logo_sysadmin/', 'server/', 'database_administration/', 'power_user/',
'system_administration/', 'ss_vms_admin_sm/');
var
IdHTTP: TIdHTTP;
i: integer;
begin
try
sListBox1.Clear;
sStatusBar1.Panels[0].text := '[+] Starting the scan';
Form1.sStatusBar1.Update;
IdHTTP := TIdHTTP.Create(nil);
for i := Low(paginas) to High(paginas) do
try
sStatusBar1.Panels[0].text := '[+] Testing : ' + paginas[i];
Form1.sStatusBar1.Update;
IdHTTP.Get(sEdit1.text + '/' + paginas[i]);
if IdHTTP.ResponseCode = 200 then
sListBox1.Items.Add(sEdit1.text + '/' + paginas[i]);
sListBox1.Update;
except
on E: EIdHttpProtocolException do
;
on E: Exception do
;
end;
finally
IdHTTP.Free;
end;
sStatusBar1.Panels[0].text := '[+] Finished';
Form1.sStatusBar1.Update;
end;
procedure TForm1.S2Click(Sender: TObject);
begin
Abort;
end;
procedure TForm1.sListBox1DblClick(Sender: TObject);
begin
sEdit2.text := sListBox1.Items.Strings[sListBox1.ItemIndex];
sEdit2.SelectAll;
sEdit2.CopyToClipboard;
end;
end.
// The End ?
Si quieren lo puede bajar de aca (https://sourceforge.net/projects/adminfinder/).