13 Years of Service
24%
Code:
>#!/usr/bin/perl
#TBH CMS Analyzer Ver1.1
#Coded By MR.CICILI
#Contact Me @ [email protected]
#www.turk-bh.ir/cc/
use HTTP::Request;
use LWP::UserAgent;
use LWP::Simple;
menu :;
system(($^O eq 'MSWin32') ? 'cls' : 'clear');
print "\n\n\t###### ####### ####\n";
print "\t# # # # #\n";
print "\t###### # # # #### TBH / MR.CICILI\n";
print "\n\n Enter Your Target With Http --> ";
$add=;
chomp($add);
print "\n Scanning ...... \n\n";
my $ua = LWP::UserAgent->new;
$ua->agent('Mozilla/5.0' . $ua->agent);
my $res = $ua->get("$add");
$page = get $add."/";
print "\n\n Site Analyzing : \n";
print "\n Target Cms --> "; if ($res->header('X-Meta-Generator') eq '') { print "????????\n"; }
else
{
print $res->header('X-Meta-Generator'); print "\n";
}
print " Programming Language --> "; if($res->header('X-Powered-By') eq '') { print "????????\n";
goto robot; }
else {
print $res->header('X-Powered-By'); print "\n";
}
robot:;
$page = get $add."/robots.txt";
if ($page =~ /User/) { print " Robots Found : \n-----------------------------------------------
$page
-----------------------------------------------\n";
goto head;
}
else {
print "\n Robots --> Not Found\n";
goto head; }
head:;
print "\n Server Analyzing : \n";
print "\n Server Ip --> "; print $res->header('Client-Peer');
print "\n Server Type --> ";
print $res->header('server');
print "\n X-PingBack --> "; if ($res->header('X-Pingback') !~ /xmlrpc/) { print "Xmlrpc Is Not Enabled\n"; goto admin; }
else
{
print $res->header('X-Pingback'); print "\n";
goto admin;
}
print "\n";
admin:;
print "\n Finding Admin Login Page (y/n) ?? --> "; $ad=; chomp($ad); if ($ad =~ /y/)
{print "\n";
print "\n Do You Have an Admin list (y/n) ?? --> ";
$admin_answer = ;
chomp $admin_answer;
if ($admin_answer =~ /y/) {
print "\n[!] Enter the Path to admin list --> ";
$path_to_admin = ;
chomp $path_to_admin;
if (-e "$path_to_admin") {
@admin = ();
open(admin_list,"$path_to_admin");
while () {
push(@admin,);
}
}
}
if ($admin_answer =~ /n/) {
sleep(1);
print "\n Testing...\n";
print "\n\n";
@admin = ('/admin.php',
'/admin/login.php',
'/admin/index.php',
'/login.php',
'/administrator.php',
'/admin/admin.php',
'/admin/login.cgi',
'/administrators.php',
'/admin/admin.asp',
'/wp-login.php',
'/news/login.php',
'/admincp/',
'/modules/admin/',
'/admin.php?do=login',
'/admincontrol/',
'/admin_area/',
'/cmsadmin/',
'/login/',
'/cms_login/',
'/admin_login.php',
'/pgadmin/',
'/sysadmins/',
'/node?destination=node',
'/admin.asp',
'/admin/login.asp',
'/admin/index.asp',
'/login.asp',
'/administrator.asp',
'/admin/admin.asp',
'/admin/login.cgi',
'/administrators.asp',
'/admin/admin.asp',
'/news/login.asp',
'/admin_login.asp',
'/admin.html',
'/admin/login.html',
'/admin/index.html',
'/login.html',
'/administrator.html',
'/admin/admin.html',
'/admin/login.cgi',
'/administrators.html',
'/admin/admin.html',
'/news/login.html',
'/admin_login.html',
'/system/index.php',
'/index.php/admin',
'/Security/login',
'/index.php/login',
'/tiki-admin.php',
'/e107_admin',);
}
foreach $scan(@admin){
$url = $add.$scan;
$request = HTTP::Request->new(GET=>$url);
$useragent = LWP::UserAgent->new();
$response = $useragent->request($request);
if ($response->is_success && $response->content =~ /Pass/) { $msg = Found;
}
else { $msg = "Not Found";}
print "$scan ---- [$msg]\n";
}
print "\n\n";
}
else {
print "\n Scanning Finished\n";
}