Tekil Mesaj gösterimi - Kod Düzenleme ( YARDIM )

Konu Kod Düzenleme ( YARDIM )

23-11-2010, 23:56:21

#8

sinfulls

Alıntı

<?php
$titulo = 'Linux-H.org [ Register Atttack ] Attack | Defacers';
//------------------------------>
//------------------------------>
include('../../global.php');//-->
$cmd = $_GET["cmd"];
if ($cmd == 'attacker'){
$erro = false;
$urlhttp = false;
$errodominio = false;
$errojustfree = false;
$erromy3gb = false;
$errourl = false;
$erronome = false;
$brinicio = false;
$brfim = false;
$urlok = false;
$url = trim(j($_POST['url']));
$hacker = j($_POST['hacker']);
$falha = j($_POST['falha']);
if (strstr($url, "http://http://")){
$s1 = substr($url, 14, 255);
$s2 = "http://" . $s1;
$url = "".$s2."";
} $sql = mysql_query("SELECT * FROM defacers WHERE url LIKE '%".$url."%'");
if (mysql_num_rows($sql) != 0){
$erro = true;
$errodominio = true;
} $brinicio = true;
$brfim = true;
if ($url == "http://"){
$erro = true;
$urlhttp = true;
} if(strstr($url, ".justfree.com")){
$erro = true;
$errojustfree = true;
} if(strstr($url, ".my3gb.com")){
$erro = true;
$erromy3gb = true;
} if(strlen($url)>255||strlen($url)>0&&(ereg('^http://',$url)!=1||strrpos($url,'.')<10||strstr($url, "=http://")||strstr($url, "%3C")||strstr($url, "=<"))){
$erro = true;
$errourl = true;
} if(strlen($hacker)<2||strlen($hacker)>255){
$erro = true;
$erronome = true;
} if ($erro == false){
$arquivo = md5(uniqid(time())) . "." . htm;
$file = $arquivo;
$erro = 'erro.htm';
if (@copy($url, $file)){
} else {
@copy($erro, $file);
} $data = date("j.m.Y");
mysql_query("Insert Into defacers values (NULL,'$hacker','$url','$falha','$data','$arquivo' ,'n','n')");
$urlok = true;
}
include('../../s1.php');//------>
//------------------------------>
?>
<table width="100%" border="0" cellpadding="0" cellspacing="0" id="c">
<tr>
<td height="28" background="/imgs/barra.jpg">  <?=$me_rataque?></td>
</tr>
<tr>
<td bgcolor="#CCCCCC" id="b"><a href="/registrar,attack">Normal</a> | <a href="/registrar,attack,mass">Mass</a><br />
<?
if ($brinicio == true){ ?>
<br>
<? } ?>
<?
if ($errodominio == true){ ?>
<font color="#FF0000">Erro: "
<?=$url?>
"</font> <br>
<? } ?>
<?
if ($errojustfree == true){ ?>
<font color="#FF0000">Erro: "justfree.com"</font>
<br>
<? } ?>
<?
if ($erromy3gb == true){ ?>
<font color="#FF0000">Erro: "my3gb.com"</font>
<br>
<? } ?>
<?
if ($errourl == true){ ?>
<font color="#FF0000">Erro: Domínio "
<?=$url?>
"</font> <br>
<? } ?>
<?
if ($erronome == true){ ?>
<font color="#FF0000">Erro: Nome "
<? if ($hacker == ''){ echo "Em branco"; } else { echo "$hacker"; } ?>
"</font> <br>
<? } ?>
<?
if ($brfim == true){ ?>
<br>
<? } ?>
<form id="form1" name="form1" method="post" action="?cmd=attacker">
<table width="100%" border="0" cellpadding="0" cellspacing="5" bgcolor="#FFFFFF">
<tr>
<td width="150">*<?=$me_defacer?></td>
<td><label>
<input name="hacker" type="text" id="hacker" size="30" value="<?=h($hacker)?>" />
<?
if ($erronome == true){ ?>
<font color="#FF0000">Erro [ Digite nome
valido ]</font>
<? } ?>
</label></td>
</tr>
<tr>
<td>*<?=$me_dominio?></td>
<td><label>
<input name="url" type="text" id="url" value="<? if ($url == ''){ echo "http://"; } else { echo h($url); } ?>" size="30" />
<?
if ($urlhttp == true){ ?>
<font color="#FF0000">Erro [ "http://" Digite
um domínio ]</font>
<?
} elseif ($errojustfree == true){ ?>
<font color="#FF0000">Erro [ "justfree.com"
Não é Aceito no Attack-H ]</font>
<?
} elseif ($erromy3gb == true){ ?>
<font color="#FF0000">Erro [ "my3gb.com"
Não é Aceito no Attack-H ]</font>
<?
} elseif ($errodominio == true){ ?>
<font color="#FF0000">Erro [ Domínio
ja registrado ]</font>
<?
} elseif ($errourl == true){ ?>
<font color="#FF0000">Erro [ Digite Domínio
valido ]</font>
<?
} elseif ($urlok == true){ ?>
<font color="#0000FF">OK [ Registrado! ]</font>
<? } ?>
</label></td>
</tr>
<tr>
<td><?=$me_falha?></td>
<td><label>
<select name="falha" id="falha">
<option>Não Avaliar</option>
<option>Arquivo Remoto Injection (RFI)</option>
<option>SQL Injection</option>
<option>Csrf, XSS</option>
<option>Telnet</option>
<option>Arquivo Espião</option>
<option>Trojan</option>
<option>Exploits</option>
<option>Engenharia Social</option>
<option>Esqueci a senha</option>
<option>Acesso Painel de Controle</option>
<option>Acesso ao Servidor</option>
<option>Brute Force</option>
<option>Sniffing</option>
<option>Domínio Hack</option>
<option>Acesso FTP</option>
<option>Phishing</option>
<option>Root Linux</option>
<option>Windows Root</option>
<option>URL Envenenamento</option>
<option>Reclassificação
após atacar o Firewall</option>
<option>Reclassificação
após atacar o Roteador</option>
<option>DNS ataque através de
engenharia social</option>
<option>DNS ataque através de
cache Poisoning</option>
<option>Outro tipo de Falha</option>
</select>
</label></td>
</tr>
<tr>
<td><label>
<input type="submit" name="button" id="button" value="<?=$me_registrar?>" />
</label></td>
<td> </td>
</tr>
</table>
</form>
</td>
</tr>
</table>
<?php include('../../s2.php'); } ?>

index.php bu bu dosyanın içinde çalıştırıyor işlemi, dediğinizi tam olarak bulamadım.