diff options
Diffstat (limited to 'backdoor')
| -rw-r--r-- | backdoor/index.php | 207 |
1 files changed, 207 insertions, 0 deletions
diff --git a/backdoor/index.php b/backdoor/index.php new file mode 100644 index 0000000..38ff336 --- /dev/null +++ b/backdoor/index.php @@ -0,0 +1,207 @@ +<!DOCTYPE html> +<html lang="en"> + + <head> + <meta charset="UTF-8"> + <meta name="viewport" content="width=device-width, initial-scale=1.0"> + <meta http-equiv="X-UA-Compatible" content="ie=edge"> + <title>s1nical - Backdoor/ Login Finder</title> + <link rel="icon" type="image/jpg" href="/favicon.jpg" sizes="128x128"> + <!-- Site metadata --> + <meta name="description" content="Backdoor/ Login Finder"> + <meta property="og:description" content="Backdoor/ Login Finder"> + <meta property="og:title" content="s1nical - Backdoor/ Login Finder"> + <meta property="twitter:card" content="summary"> + <meta property="twitter:site" content="@9inny"> + <meta property="og:image" content=""> + <meta property="og:url" content="https://cyne.cf/backdoor"> + <link rel="apple-touch-icon" sizes="128x128" href="/favicon.jpg"> + <link rel="icon" type="image/jpg" href="/favicon.jpg" sizes="128x128"> + <link rel="canonical" href="https://cyne.cf/backdoor"> + <link rel="author" href="humans.txt" /> + <!-- Schema.org Stuff --> + <script type="application/ld+json"> + { + "name": "s1nical", + "alternateName": "s1n", + "description": "Backdoor/ Login Finder", + "headline": "Backdoor/ Login Finder", + "url": "https://cyne.cf/backdoor", + "image": "", + "sameAs": [ + "https://twitter.com/9inny", + "https://github.com/8cy", + "https://www.reddit.com/user/s1nical/" + ], + "publisher": { + "@type": "Organization", + "logo": { + "@type": "ImageObject", + "url": "" + } + }, + "@type": "WebSite", + "@context": "http://schema.org" + } + </script> + <!-- External Libraries --> + <script src="https://cdnjs.cloudflare.com/ajax/libs/trianglify/0.3.1/trianglify.min.js"></script> + <script src="https://ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js"></script> + <script src="https://code.jquery.com/jquery-1.10.2.js"></script> + <!-- CSS Links --> + <link rel="stylesheet" href="/about/css/main.css"> + <link rel="stylesheet" href="/about/css/navigation-bar.css"> + <link rel="stylesheet" href="/about/css/loader-animation.css"> + <link rel="stylesheet" href="/about/css/blog-slider.css"> + <link rel="stylesheet" href="/404/css/main.css"> + <!-- Invisible Scripts --> + <script src="/js/loader-animation.js"></script> + <script src="/js/refresh-on-media.js"></script> + </head> + + <body> + <!-- Visable Scripts --> + <script src="/js/background-sparkles.js"></script> + + <!-- Navigation Bar --> + <div class="navigation-bar"> + <nav class="nav"> + <a href="/home/" class="nav-item" active-color="orange">Home</a> + <!-- Had `is-active` after it but removed it due to not highlighting. --> + <a href="/about/" class="nav-item" active-color="green">About</a> <!-- About --> + <!--<a href="https://p.s1n.pw/" class="nav-item" active-color="blue">Portfolio</a> <!-- Testimonials --> + <a href="https://cyne.cf/status" class="nav-item" active-color="red">Status</a> <!-- Blog --> + <!--<a href="/cars/" class="nav-item" active-color="rebeccapurple">Cars</a> <!-- Contact --> + <!--<a href="https://nani.s1n.pw" class="nav-item" active-color="rebeccapurple">Nani?!</a>--> + <span class="nav-indicator"></span> + </nav> + </div> + + <style> + .result { + -webkit-user-select: text; + -moz-user-select: text; + -ms-user-select: text; + user-select: text; + } + </style> + + <div class="bio"> + <div class="links"> + <div class="blog-slider"> + <div class="content"> + <form method="POST"> + <font size="3" face="Orbitron"><b>URL:</b> <input type ="text" name="site" /> + <font size="3" face="Orbitron"><b>Search:</b> <select name="search"> + <option value="xhell">Backdoor</option> + <option value="php">Admin Page</option> + <input type = "submit" name="submit" value="Find" /> + </form> + <style> + @media (max-width: 768px) { + .content { + font-size: 10px; + } + } + </style> + <br class="mobile"> + <h1> + <!-- Filler --> + </h1> + <a class="mobile" href="/home/">Back home</a> + <h1 class="mobile"> + <!-- Filler --> + </h1> + </div> + </div> + </div> + </div> + + <!-- Loading Animation --> + <div class="loader-wrapper"> + <div class="loader"> + <row> + <span></span> + <span></span> + <span></span> + </row> + <row> + <span></span> + <span></span> + <span></span> + </row> + <row> + <span></span> + <span></span> + <span></span> + </row> + </div> + </div> + </body> + +</html> + +<?php +@session_start(); +@error_reporting(0); +@ini_set('error_log',NULL); +@ini_set('log_errors',0); +@ini_set('display_errors', 0); +@set_time_limit(0); + +if(isset($_POST['submit']) && !empty($_POST['site'])) { + $url = $_POST['site']; + $search = $_POST['search']; + + switch($search) { + case 'php': + s_php($url); + break; + case 'xhell': + s_xhell($url); + break; + default: + echo "<br>Please select a item to search... "; + break; + } + + +} elseif(isset($_POST['submit']) && empty($_POST['site'])) { + echo "Please PUT in the URL and try again..."; +} + +function s_php($get_url) { + + $pages = array('/redaktur','/webadmin','/adminweb','/web@admin','/operator','/webmaster','/web@master','/master@web','/administrator','/admin_area','/login_area','/admin','/sign_in','/login','/superuser','/log-in','/bb-admin','/wp-login.php','/admin_login','/moderator','/po-admin','/management','/manage','/phpmyadmin','/phpMyAdmin','/PMA','/phpmysql','/pmadmin','/user'); + find_admin($pages,$get_url); +} + +function s_xhell($get_url) { + $pages = array('/symlink','/sym','/dm1sym','/asu.txt','/DecW.txt','/idx_config','/idx_cgi','/wso.php','/idx.php','/dm.php','/DM5.php','/1n73ct10n.php','/shell.php','/r00t.php','/idb.php','/idb.phtml','/sabun.php','/r00t.pl','/z.php','/.php','/sh3ll.php','/xploit.php','/sa.php','/-.php','/_.php','/&.php','/$.php','/indoxploit.php','/indoXploit.php','/jembutmu.php','/jembutku.php','/indo.php','/upload.php?option=upload','/simple.php','/k3ll3d.php','/shellx.php','/kill.php','/whmkiller.php','/tools.php','/indexx.php','/shell.phtml','/shell.php.jpg','/unix.php','/b374k.php','/irdb.php','/mig3r.php','/cp.php','/cpanel.php','/indeshell.php','/cmd.php','/upl.php','/shell.txt','/unknown.txt','/root.txt','/haxor.img','/haxor.ht','/anon.txt','/c99.php','/wp-content/plugins/akismet/akismet.php','/wp-content/plugins/akismet/index.php','/d.php','/hmm.php','/include.php','/up.php','/gaza.php','/dz1.php','/priv8.php','/andela.php','/a.php','/css.php' ); + find_admin($pages,$get_url); +} + +function find_admin($pages_list,$url) { + set_time_limit(0); + $find = false; + + foreach($pages_list as $key => $value) { + $c_start = curl_init(); + curl_setopt($c_start,CURLOPT_AUTOREFERER,1); + curl_setopt($c_start, CURLOPT_RETURNTRANSFER, 1); + curl_setopt($c_start, CURLOPT_HEADER, 1); + curl_setopt($c_start, CURLOPT_URL, $url.$value); + $result = curl_exec($c_start); + curl_close($c_start); + + if (preg_match("/200 OK/", $result)) { + echo "<br /> <h3> Found! :<a href='".$url.$value."'>".url.$value."</a> </h3> <br />"; + $find = true ; + } + } + + if(!$find) { + echo "<h3>Not able to find... </h3>"; + } +} +?>
\ No newline at end of file |