Government Security
Network Security Resources

Jump to content

Photo

Realserver Scanner V2

- - - - - security windows scanner server shell
  • This topic is locked This topic is locked
22 replies to this topic

#1 maZer`-

maZer`-

    Corporal

  • Members
  • 163 posts

Posted 28 August 2003 - 01:58 AM

For Instructions Look in my other Post! ;D
Ok this Scanner will show ya the 100% Vulnerablity for Realservers!
Weve tested it! It works 100%
Owned 2 shells in 10minutes! ;D

Many words but no time *gonna to scan* :P

FIXED: WINDOWS COMPATIBLITY!! ;)

Attached Files



#2 Guest_DuFF_*

Guest_DuFF_*
  • Guests

Posted 28 August 2003 - 02:06 AM

ThX for great work!

Test it!!

I have some Errors!

C:\real>php realscanv2.php ip.txt


X-Powered-By: PHP/4.2.3
Content-type: text/html

PHP Warning: file("") - No error in C:\real\realscanv2.php on line 84
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
Please input the file with the IPLIST-:#
Please input the Port(DEFAULT 554) to Scan-:#
\\ PHP REALSERVER Scanner by >maZER<
\\ IPLIST:
\\ Port: 554




// RESULTS ARE WRITTEN IN -result.txt

#3 maZer`-

maZer`-

    Corporal

  • Members
  • 163 posts

Posted 28 August 2003 - 02:10 AM

if u start the script! he will ask u for iplist! enter the iplist filename! then press enter totimes!
if he didnt ask! type the filename and press enter! ;D

#4 Guest_DuFF_*

Guest_DuFF_*
  • Guests

Posted 28 August 2003 - 02:11 AM

sorry the scanner works great!

Because i cant connect via netcat!

C:\netcat>nc -v -v ???.???.???.??? 31337
stonebsa.ophth.uiowa.edu [???.???.???.???] 31337 (?): connection refused
sent 0, rcvd 0: NOTSOCK


Whats my problem?? Can anybody help me??

I think it is the wrong platform !

THCREALbad v0.4 - Wind0wZ & Linux remote root sploit for Realservers 8+9
by Johnny Cyberpunk (jcyberpunk@thehackerschoice.com)

Detected OS: QTSS/4.1.1 (Build/412.38; Platform/MacOSX)


The Exploit doesn´t work in MacOSX or???
I ned a Windows or a Lunix scan! or?




Here the scanner test it works fine!



C:\real>php realscanv2.php
ip.txt

X-Powered-By: PHP/4.2.3
Content-type: text/html

Please input the file with the IPLIST-:#
Please input the Port(DEFAULT 554) to Scan-:
\\ PHP REALSERVER Scanner by >maZER<
\\ IPLIST: ip.txt
\\ Port: 554


??????????? CONNECTED
??????????? CONNECTED


// RESULTS ARE WRITTEN IN ip-result.txt



THX!!!!!!!!


Sorry for my bad English!

#5 Guest_MKZ_*

Guest_MKZ_*
  • Guests

Posted 28 August 2003 - 02:18 AM

Thx for Sharing.

#6 maZer`-

maZer`-

    Corporal

  • Members
  • 163 posts

Posted 28 August 2003 - 02:26 AM

Dude i said read the other post! :D
If he says just connected! thats just the port is opened!
If he says its vulnerable! WAKE UP AND HACK THE BITCH *Fg*
He will say the Version of Realserver and anything! then u know its vulnerable! :D

#7 Guest_koko_*

Guest_koko_*
  • Guests

Posted 28 August 2003 - 02:40 AM

good one :)

i would like to know if u can do a little bat that takes ips in ip-result.txt and telnet one by one on 31337 itself ?
it'll be a good thing i think :)

#8 maZer`-

maZer`-

    Corporal

  • Members
  • 163 posts

Posted 28 August 2003 - 03:00 AM

koko sorry i doesnt understand what u mean?! o.O
thats just a scanner ! :(
He can only tell u system vulnerablity! :)

#9 DaywalkerX

DaywalkerX

    Private

  • Members
  • 15 posts

Posted 28 August 2003 - 03:04 AM

great work,i thing one little problem :o after starting Box says CONNECTED6.5
what does it mean ?

#10 ][no0b][

][no0b][

    Private First Class

  • Members
  • 48 posts

Posted 28 August 2003 - 03:27 AM

great work dude ...

Thanks for sharing and i will try this one

:D

#11 maZer`-

maZer`-

    Corporal

  • Members
  • 163 posts

Posted 28 August 2003 - 03:45 AM

One Problem at this Scanner!
I set the maximal time of socket connection to 1000ms!
if your victim got ping 300ms he DIDNT FIND THE VULN!!!
If i set the value to 2000ms u will scan to long! ;)
also if your output isnt only CONNECTED
then check the ip again ;)

Or try to look after scanning in the result-txt ;)

#12 -= mAc =-

-= mAc =-

    Private First Class

  • Members
  • 23 posts

Posted 28 August 2003 - 07:25 AM

gives me always this error:

C:\real>php.exe realscanv2.php
ip.txt

X-Powered-By: PHP/4.2.3
Content-type: text/html

PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
PHP Notice: Undefined offset: 1 in C:\real\realscanv2.php on line 89
Please input the file with the IPLIST-:#
Please input the Port(DEFAULT 554) to Scan-:#
\\ PHP REALSERVER Scanner by >maZER<
\\ IPLIST: ip.txt
\\ Port: 554


CONNECTED08
CONNECTED67
CONNECTED7
CONNECTED158
CONNECTED153
CONNECTED248
CONNECTED30
CONNECTED52
CONNECTED162
CONNECTED43
XXX.2.156.136 CONNECTED


// RESULTS ARE WRITTEN IN ip-result.txt

and ip-result.txt is 0 byte

#13 cartman

cartman

    Private First Class

  • Members
  • 62 posts

Posted 28 August 2003 - 08:45 AM

me too :(

#14 Mephisto

Mephisto

    Private First Class

  • Members
  • 46 posts

Posted 28 August 2003 - 08:55 AM

Little question:

How does those PHP scanners work

Do i have to connect to a shell with netcat and type php scanner.php

Or do i have 2 go to my Command prompt and typ this

Can someone help me out :blink:

BTW: thnx 4 the w00t scanner thnx :ph34r:

Greetz mephisto

#15 KuerbY

KuerbY

    Staff Sergeant

  • Members
  • 254 posts

Posted 28 August 2003 - 09:21 AM

hmm the scanner seems to be very strange :P

C:\Real>php.exe realscanv2.php
X-Powered-By: PHP/4.2.3
Content-type: text/html

Please input the file with the IPLIST-:# ip.txt

Please input the Port(DEFAULT 554) to Scan-:# 554

\\ PHP REALSERVER Scanner by >maZER<
\\ IPLIST: ip.txt
\\ Port: 554


CONNECTED67
CONNECTED195
CONNECTED0

what does this mean why did he put the last numbers to the end? :blink:





Also tagged with one or more of these keywords: security, windows, scanner, server, shell