Tweet
C'est un script qui permet de trouver la page phpMyAdmin d'un site.
Usage: perl $0 website
# Exemple : perl checker.pl site.com #
Usage: perl $0 website
# Exemple : perl checker.pl site.com #
Code:
#!/usr/bin/perl
#Admin finder
#Moded to phpMyAdmin Checker.
#bY boER, Moded by Geuks.
use LWP::UserAgent;
my $ua = LWP::UserAgent->new();
$ua->timeout(10);
$ua->agent("Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.3) Gecko/20010801");
unless($ARGV[0]){
print q(
#############################################
# #
############ phpMyAdmin Checker. ############
# #
#############################################
#############################################
# _____ _ #
# | __ \ | | #
# | | \/ ___ _ _| | _____ #
# | |___ / _ \ | | | |/ / __| #
# | |-| \ __/ |_| | <\__ \ #
# \____/\___|\__,_|_|\_\___/ #
# #
# #
#############################################
#############################################
# #
# #
# #
########## Usage: perl $0 website ###########
# Exemple : perl checker.pl site.com #
#############################################
);exit;}
if($^O =~ /Win/){
system("cls");
}else{
system("clear");
}
OUT("#############################################\n");
OUT(" Scanner Directory!\n");
OUT("#############################################\n");
OUT(" 200 - OK\n");
OUT(" 401 - Authorization Required\n");
OUT(" 403 - Forbidden\n");
OUT(" 404 - Not Found\n");
OUT(" 500 - Bad Hostname | Internal Server Error\n");
OUT("#############################################\n");
$webcl = clear($ARGV[0]);
OUT("\n# Scanning: $webcl\n\n");
brute($webcl);
OUT("\n# Scanning Finished\n");
OUT("\n# Thank you.\n");
sub brute{
$web = shift;
@paths = (
"phpMyAdmin/",
"phpmyadmin/",
"PMA/",
"admin/",
"dbadmin/",
"mysql/",
"myadmin/",
"phpmyadmin2/",
"phpMyAdmin2/",
"phpMyAdmin-2/",
"php-my-admin/",
"phpMyAdmin-2.2.3/",
"phpMyAdmin-2.2.6/",
"phpMyAdmin-2.5.1/",
"phpMyAdmin-2.5.4/",
"phpMyAdmin-2.5.5-rc1/",
"phpMyAdmin-2.5.5-rc2/",
"phpMyAdmin-2.5.5/",
"phpMyAdmin-2.5.5-pl1/",
"phpMyAdmin-2.5.6-rc1/",
"phpMyAdmin-2.5.6-rc2/",
"phpMyAdmin-2.5.6/",
"phpMyAdmin-2.5.7/",
"phpMyAdmin-2.5.7-pl1/",
"phpMyAdmin-2.6.0-alpha/",
"phpMyAdmin-2.6.0-alpha2/",
"phpMyAdmin-2.6.0-beta1/",
"phpMyAdmin-2.6.0-beta2/",
"phpMyAdmin-2.6.0-rc1/",
"phpMyAdmin-2.6.0-rc2/",
"phpMyAdmin-2.6.0-rc3/",
"phpMyAdmin-2.6.0/",
"phpMyAdmin-2.6.0-pl1/",
"phpMyAdmin-2.6.0-pl2/",
"phpMyAdmin-2.6.0-pl3/",
"phpMyAdmin-2.6.1-rc1/",
"phpMyAdmin-2.6.1-rc2/",
"phpMyAdmin-2.6.1/",
"phpMyAdmin-2.6.1-pl1/",
"phpMyAdmin-2.6.1-pl2/",
"phpMyAdmin-2.6.1-pl3/",
"phpMyAdmin-2.6.2-rc1/",
"phpMyAdmin-2.6.2-beta1/",
"phpMyAdmin-2.6.2-rc1/",
"phpMyAdmin-2.6.2/",
"phpMyAdmin-2.6.2-pl1/",
"phpMyAdmin-2.6.3/",
"phpMyAdmin-2.6.3-rc1/",
"phpMyAdmin-2.6.3/",
"phpMyAdmin-2.6.3-pl1/",
"phpMyAdmin-2.6.4-rc1/",
"phpMyAdmin-2.6.4-pl1/",
"phpMyAdmin-2.6.4-pl2/",
"phpMyAdmin-2.6.4-pl3/",
"phpMyAdmin-2.6.4-pl4/",
"phpMyAdmin-2.6.4/",
"phpMyAdmin-2.7.0-beta1/",
"phpMyAdmin-2.7.0-rc1/",
"phpMyAdmin-2.7.0-pl1/",
"phpMyAdmin-2.7.0-pl2/",
"phpMyAdmin-2.7.0/",
"phpMyAdmin-2.8.0-beta1/",
"phpMyAdmin-2.8.0-rc1/",
"phpMyAdmin-2.8.0-rc2/",
"phpMyAdmin-2.8.0/",
"phpMyAdmin-2.8.0.1/",
"phpMyAdmin-2.8.0.2/",
"phpMyAdmin-2.8.0.3/",
"phpMyAdmin-2.8.0.4/",
"phpMyAdmin-2.8.1-rc1/",
"phpMyAdmin-2.8.1/",
"phpMyAdmin-2.8.2/",
"sqlmanager/",
"mysqlmanager/",
"p/m/a/",
"PMA2005/",
"pma2005/",
"phpmanager/",
"php-myadmin/",
"phpmy-admin/",
"webadmin/",
"sqlweb/",
"websql/",
"webdb/",
"mysqladmin/",
"mysql-admin/");
foreach $path(@paths){
chomp($path);
$code = $ua->get($web . $path)->status_line;
check_code($code,$path);
}
}
sub check_code{
$ncode = shift;
$path = shift;
$wp = $webcl . $path;
if($ncode =~ /200/){
OUT("$wp\t=>\t200 OK\n");
}
if($ncode =~ /401/){
OUT("$wp\t=>\t401 Authorization Required\n");
}
if($ncode =~ /403/){
OUT("$wp\t=>\t403 Forbidden\n");
}
if($ncode =~ /404/){
OUT("$wp\t=>\t404 Not Found\n");
}
if($ncode =~ /500/){
OUT("$wp\t=>\t500 Internal Server Error\n");
}
}
sub clear{
$website = shift;
if($website !~ /^http/){
$website = 'http://' . $website;
}
if($website !~ /\/$/){
$website.='/';
}
return $website;
}
sub OUT{
$msg = shift;
syswrite STDOUT, "$msg";
}