Lolec :) Posted February 21, 2009 Report Posted February 21, 2009 Exploit Scanner by Reiluke (LFI/RFI/SQLI/XSS) 1. Added “Get from all domains”, included in the app is domain.txt w/c contains common domains, if you want to search for all domains just check this and click scan sites, it will give a lot more results than before, included also is domain2.txt if you want to use all domains, just rename to domain.txt2. SQLi extensive - will add more parameter comma, parenthesis, double qoute, qoute, to generate errors, it will make scanning longer3. SQLi cond - its page comparison, program will get results from “and 1=0? and “and 1=1? compares them if there are changes, also for strings “‘ and 1=0/*” and “‘ and 1=1/*”, its not accurate 50/50 because of sites with ad’s w/c changes html source everytime you visit the page4. XSS checking - now this is 98% accurate, its a wrapper of internet explorer, eliminating false positives, its slow so i recommend you set a timeout in ie http://www.google.com/search?q=timeout+ie&ie=utf-8&oe=utf-8&aq=t&rls=org.mozilla:en-US:official&client=firefox-a <– some guides, if you dont it sometimes stops at the middle (default timeout in ie is 10min lol), also disable IE images at advanced options, this will make checking faster.5. LFI scan - added sa simple lfi scan, its error based, if it detects an file inclusion error, its added to the list, it appends “/etc/passwd%00? at the end, its not the correct path but a sample, you can use lfi fuzzer to check directories (im planning making one as perl avaiable fuzzer dont ~censored~ work)6. RFI scan - will included a simple textfile and check contents, RFI is very few right now but with good dork you will find em, its 98% accurate, 2% is false positives…the file is included but not parsedto do: multiple dork scanenjoyCode:**10/16/2008**fixed a multhreading issue, now it will test faster with specified threadsadded different google countries to search foradded additional parameter to force errors**10/12/2008**i got tired of filtering sites so i made one its error based, the probability of sql injection is good but may give false positives, still working on other methods to detect (eg 1=0/1=1 + union + etc..)support mysql,sqlserver,mcaccess,cfm..it uses blackle so you can get 5000 test sites, after that use a proxymultithreadedDownload mu:http://www.megaupload.com/?d=YG806YZDDownload maxishare:http://www.maxishare.net/en/file/11521/exploitscanner-rar.html Quote
Lolec :) Posted February 21, 2009 Author Report Posted February 21, 2009 le-am luat de pe h4cky0u...bine ca nu mi l-am bagat in PC ) daca e virus Quote
Gonzalez Posted February 21, 2009 Report Posted February 21, 2009 Inainte sa postezi ceva, incearca.-Gonzalez Quote
crs12decoder Posted February 22, 2009 Report Posted February 22, 2009 stii ce? ai putea sa specifici de unde il ai si daca l-ai folosit sau nu in cazu in care nu e scanat... altfel ia-ti-l si baga-ti-l in cur! Nu am chef sa reinstalez iar cacatu asta de windows pt ca dau dublu click pe o idiotenie...Din moment ce aveai poza cu programu presupuneam ca l-ai incercat si nu e nevoie sa-mi fac griji. Quote
