变形金刚 2
微软曝出MPEG-2视频0day漏洞
July 3, 2009 17:27 | by
Website vulnerable Scanner(XSS,SQL,LFI,RFI,PHPMYADMIN,WGET,GOOGLE,EXPOIT,injector)
A good tool to scan vulnerable websites.
Download:http://img.vul.kr/uploads/20090703/1246608741Website_vulnerable_scanner.txt
A good tool to scan vulnerable websites.
|****************************************************************|
TBDScurity - www.tbdsecurity.com
Website vulnerable scanner Tools By XShimeX
This tool only for education only
Please don't use to break people servers
|****************************************************************|
[Tips]For help, type 'help' and to quit please type 'quit'
-CMD$: help
[sql]Scan SQL Injection vulnerable
[xss]Scan XSS(cross site scripting) vulnerable
[rfi]Scan RFI(remote file include) vulnerable
[lfi]Scan LFI(local file include) vulnerable
[full]Grap link from website and test the SQL,RFI,LFI vulnerable
[google]Grap website from google and start full scan ( SQL,RFI,LFI vulnerable )
[jump]Find all site hosted on same ip and find vulnerable ( SQL,RFI,LFI vulnerable )
-CMD$: rfi
-SITE: http://************
[Info]URL : ************
[Info]Path: /
[Info]Try connect to host
[Info]Connect to host successful
[Info]Finding link on the website
[Info]Found link : 6
[Info]Finding vulnerable...
[Info] RFI vulnerable : http:/************/file.php?inc=http://google.com/ind
ex.html?
[Info]Done
-CMD$:
-CMD$: google
-DORK: inurl:news.php?id=
[Info]Dork : inurl:news.php?id=
[Info]Start google scanning...
[Info]Total site found: 100
[Info]Done finding link on google
[Info]Start full scan - LFI,RFI,SQL Injection
[Info]Start SQL Injection Scan
[Info]URL : www.roguegovernment.com
[Info]Path: /news.php
[Info]Try connect to host
-CMD$: sql
-SITE: http://www.worstpreviews.com
[Info]URL : www.worstpreviews.com
[Info]Path:
[Info]Try connect to host
[Info]Connect to host successful
[Info]Finding link on the website
[Info]Found link : 174
[Info]Finding vulnerable...
[Info]SQL Injection vulnerable : http://www.worstpreviews.com/headline.php?id=1'
[Info]Done
TBDScurity - www.tbdsecurity.com
Website vulnerable scanner Tools By XShimeX
This tool only for education only
Please don't use to break people servers
|****************************************************************|
[Tips]For help, type 'help' and to quit please type 'quit'
-CMD$: help
[sql]Scan SQL Injection vulnerable
[xss]Scan XSS(cross site scripting) vulnerable
[rfi]Scan RFI(remote file include) vulnerable
[lfi]Scan LFI(local file include) vulnerable
[full]Grap link from website and test the SQL,RFI,LFI vulnerable
[google]Grap website from google and start full scan ( SQL,RFI,LFI vulnerable )
[jump]Find all site hosted on same ip and find vulnerable ( SQL,RFI,LFI vulnerable )
-CMD$: rfi
-SITE: http://************
[Info]URL : ************
[Info]Path: /
[Info]Try connect to host
[Info]Connect to host successful
[Info]Finding link on the website
[Info]Found link : 6
[Info]Finding vulnerable...
[Info] RFI vulnerable : http:/************/file.php?inc=http://google.com/ind
ex.html?
[Info]Done
-CMD$:
-CMD$: google
-DORK: inurl:news.php?id=
[Info]Dork : inurl:news.php?id=
[Info]Start google scanning...
[Info]Total site found: 100
[Info]Done finding link on google
[Info]Start full scan - LFI,RFI,SQL Injection
[Info]Start SQL Injection Scan
[Info]URL : www.roguegovernment.com
[Info]Path: /news.php
[Info]Try connect to host
-CMD$: sql
-SITE: http://www.worstpreviews.com
[Info]URL : www.worstpreviews.com
[Info]Path:
[Info]Try connect to host
[Info]Connect to host successful
[Info]Finding link on the website
[Info]Found link : 174
[Info]Finding vulnerable...
[Info]SQL Injection vulnerable : http://www.worstpreviews.com/headline.php?id=1'
[Info]Done
Download:http://img.vul.kr/uploads/20090703/1246608741Website_vulnerable_scanner.txt
估计扫描什么的