site admni panel bulma yardım!!
- Konbuyu başlatan berkay88
- Başlangıç tarihi
admin.php
DCMS
login.htm
login.html
login/
login.php
adm/
admin/
admin/account.html
admin/login.html
admin/login.htm
admin/home
admin/controlpanel.html
admin/controlpanel.htm
admin/cp
admin/adminLogin.html
admin/adminLogin.htm
admin/admin_login
admin/controlpanel
admin/admin-login
admin-login
admin/account
admin/admin
admin.htm
admin.html
adminitem/
adminitem
adminitems/
adminitems.php
administrator/
administrator/login
administrator
administration/
administration
adminLogin/
adminlogin.php
admin_area/admin
admin_area/
admin_area/login
manager/
manager.php
letmein/
letmein.php
superuser/
superuser.php
access/
access.php
sysadm/
sysadm.php
superman/
supervisor/
panel.php
control/
control.php
member/
member.php
members/
members.php
user/
user.php
cp/
uvpanel/
manage/
manage
management/
management
signin/
signin.php
log-in/
log-in.php
log_in/
log_in.html
sign_in/
sign_in.html
sign-in/
sign-in.php
users/
users.php
accounts/
accounts.php
wp-login.php
bb-admin/login
bb-admin/admin
bb-admin/admin.html
administrator/account
relogin.htm
relogin.html
check.php
relogin.php
processlogin.php
checklogin.php
checkuser.php
checkadmin.php
isadmin.php
authenticate.php
authentication.php
auth.php
authuser.php
authadmin.php
cp.php
modelsearch/login
moderator
moderator/
controlpanel/
controlpanel
admincontrol
adminpanel
fileadmin/
fileadmin.php
sysadmin.php
admin1
admin1.html
admin1.htm
admin2
admin2.html
yonetim
yonetim.html
yonetici
yonetici.html
phpmyadmin/
myadmin/
ur-admin
ur-admin/
Server
Server/
wp-admin/
administr8
administr8/
webadmin/
webadmin
administratie/
admins/
admins
administrivia/
Database_Administration/
useradmin/
sysadmins/
admin1/
system-administration/
administrators/
pgadmin/
directadmin/
staradmin/
ServerAdministrator/
SysAdmin/
administer/
LiveUser_Admin/
sys-admin/
typo3/
panel/
cpanel/
cpanel_file/
platz_login/
rcLogin/
blogindex/
formslogin/
autologin/
support_login/
****_login/
manuallogin/
simpleLogin/
loginflat/
utility_login/
showlogin/
memlogin/
login-redirect/
sub-login/
wp-login/
login1/
dir-login/
login_db/
xlogin/
smblogin/
customer_login/
UserLogin/
login-us/
acct_login/
bigadmin/
project-admins/
phppgadmin/
pureadmin/
sql-admin/
radmind/
openvpnadmin/
wizmysqladmin/
vadmind/
ezsqliteadmin/
hpwebjetadmin/
newsadmin/
adminpro/
Lotus_Domino_Admin/
bbadmin/
vmailadmin/
Indy_admin/
ccp14admin/
irc-macadmin/
banneradmin/
sshadmin/
phpldapadmin/
macadmin/
administratoraccounts/
admin4_account/
admin4_colon/
radmind-1/
Super-Admin/
AdminTools/
cmsadmin/
SysAdmin2/
globes_admin/
cadmins/
phpSQLiteAdmin/
navSiteAdmin/
server_admin_small/
logo_sysadmin/
power_user/
system_administration/
ss_vms_admin_sm/
bb-admin/
panel-administracion/
instadmin/
memberadmin/
administratorlogin/
adm.php
admin_login
panel-administracion/login
pages/admin/admin-login
pages/admin/
acceso.php
admincp/login
admincp/
adminarea/
admincontrol/
affiliate.php
adm_auth.php
memberadmin.php
administratorlogin
modules/admin/
administrators
siteadmin/
siteadmin
adminsite/
kpanel/
vorod/
vorod
vorud/
vorud
adminpanel/
PSUser/
secure/
webmaster/
webmaster
autologin
userlogin
admin_area
cmsadmin
security/
usr/
root/
secret/
admin/login
admin/adminLogin
moderator.php
moderator.html
moderator/login
moderator/admin
yonetici
0admin/
0manager/
aadmin/
cgi-bin/login
login1
login_admin/
login_admin
login_out/
login_out
login_user
loginerror/
loginok/
loginsave/
loginsuper/
loginsuper
login
logout/
logout
secrets/
super1/
super1
super_index
super_login
supermanager
superman
superuser
supervise/
supervise/Login
super
Bu kodları Sırasıyla sıtenın sonuna ekle garantı bulacaksındır admın panelını
DCMS
login.htm
login.html
login/
login.php
adm/
admin/
admin/account.html
admin/login.html
admin/login.htm
admin/home
admin/controlpanel.html
admin/controlpanel.htm
admin/cp
admin/adminLogin.html
admin/adminLogin.htm
admin/admin_login
admin/controlpanel
admin/admin-login
admin-login
admin/account
admin/admin
admin.htm
admin.html
adminitem/
adminitem
adminitems/
adminitems.php
administrator/
administrator/login
administrator
administration/
administration
adminLogin/
adminlogin.php
admin_area/admin
admin_area/
admin_area/login
manager/
manager.php
letmein/
letmein.php
superuser/
superuser.php
access/
access.php
sysadm/
sysadm.php
superman/
supervisor/
panel.php
control/
control.php
member/
member.php
members/
members.php
user/
user.php
cp/
uvpanel/
manage/
manage
management/
management
signin/
signin.php
log-in/
log-in.php
log_in/
log_in.html
sign_in/
sign_in.html
sign-in/
sign-in.php
users/
users.php
accounts/
accounts.php
wp-login.php
bb-admin/login
bb-admin/admin
bb-admin/admin.html
administrator/account
relogin.htm
relogin.html
check.php
relogin.php
processlogin.php
checklogin.php
checkuser.php
checkadmin.php
isadmin.php
authenticate.php
authentication.php
auth.php
authuser.php
authadmin.php
cp.php
modelsearch/login
moderator
moderator/
controlpanel/
controlpanel
admincontrol
adminpanel
fileadmin/
fileadmin.php
sysadmin.php
admin1
admin1.html
admin1.htm
admin2
admin2.html
yonetim
yonetim.html
yonetici
yonetici.html
phpmyadmin/
myadmin/
ur-admin
ur-admin/
Server
Server/
wp-admin/
administr8
administr8/
webadmin/
webadmin
administratie/
admins/
admins
administrivia/
Database_Administration/
useradmin/
sysadmins/
admin1/
system-administration/
administrators/
pgadmin/
directadmin/
staradmin/
ServerAdministrator/
SysAdmin/
administer/
LiveUser_Admin/
sys-admin/
typo3/
panel/
cpanel/
cpanel_file/
platz_login/
rcLogin/
blogindex/
formslogin/
autologin/
support_login/
****_login/
manuallogin/
simpleLogin/
loginflat/
utility_login/
showlogin/
memlogin/
login-redirect/
sub-login/
wp-login/
login1/
dir-login/
login_db/
xlogin/
smblogin/
customer_login/
UserLogin/
login-us/
acct_login/
bigadmin/
project-admins/
phppgadmin/
pureadmin/
sql-admin/
radmind/
openvpnadmin/
wizmysqladmin/
vadmind/
ezsqliteadmin/
hpwebjetadmin/
newsadmin/
adminpro/
Lotus_Domino_Admin/
bbadmin/
vmailadmin/
Indy_admin/
ccp14admin/
irc-macadmin/
banneradmin/
sshadmin/
phpldapadmin/
macadmin/
administratoraccounts/
admin4_account/
admin4_colon/
radmind-1/
Super-Admin/
AdminTools/
cmsadmin/
SysAdmin2/
globes_admin/
cadmins/
phpSQLiteAdmin/
navSiteAdmin/
server_admin_small/
logo_sysadmin/
power_user/
system_administration/
ss_vms_admin_sm/
bb-admin/
panel-administracion/
instadmin/
memberadmin/
administratorlogin/
adm.php
admin_login
panel-administracion/login
pages/admin/admin-login
pages/admin/
acceso.php
admincp/login
admincp/
adminarea/
admincontrol/
affiliate.php
adm_auth.php
memberadmin.php
administratorlogin
modules/admin/
administrators
siteadmin/
siteadmin
adminsite/
kpanel/
vorod/
vorod
vorud/
vorud
adminpanel/
PSUser/
secure/
webmaster/
webmaster
autologin
userlogin
admin_area
cmsadmin
security/
usr/
root/
secret/
admin/login
admin/adminLogin
moderator.php
moderator.html
moderator/login
moderator/admin
yonetici
0admin/
0manager/
aadmin/
cgi-bin/login
login1
login_admin/
login_admin
login_out/
login_out
login_user
loginerror/
loginok/
loginsave/
loginsuper/
loginsuper
login
logout/
logout
secrets/
super1/
super1
super_index
super_login
supermanager
superman
superuser
supervise/
supervise/Login
super
Bu kodları Sırasıyla sıtenın sonuna ekle garantı bulacaksındır admın panelını
bilindik bi scriptse sole adını bulmaya çalışalım anlaşılan bilindik bi script değil işin zor yani 
Kod:
#!/usr/bin/perl
##
#
# Admin Control Panel Finder ___ Last Version 1.1 ( correcting )
##
use HTTP::Request;
use LWP::UserAgent;
system('cls');
system('title Admin Control Panel Finder v1.1');
print"\n";
print "\t>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>\n";
print "\t< Admin Control Panel Finder v1.1 <\n";
print "\t> Recoded Yogyacarderlink >\n";
print "\t<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<\n";
print "\n";
print "~ Enter Site\n* ex: www.target.com or www.target.com/path\n-> ";
$site=<STDIN>;
chomp $site;
print "\n";
print "~ Enter site source code\n* ex: asp or php\n-> ";
$code=<STDIN>;
chomp($code);
if ( $site !~ /^http:/ ) {
$site = 'http://' . $site;
}
if ( $site !~ /\/$/ ) {
$site = $site . '/';
}
print "\n";
print "->Target: $site\n";
print "->Site source code: $code\n";
print "->Searching admin control panel...\n\n\n";
if($code eq "asp"){
@path1=('admin/','administrator/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracion/','instadmin/',
'memberadmin/','administratorlogin/','adm/','account.asp','admin/account.asp','admin/index.asp','admin/login.asp','admin/admin.asp',
'admin_area/admin.asp','admin_area/login.asp','admin/account.html','admin/index.html','admin/login.html','admin/admin.html',
'admin_area/admin.html','admin_area/login.html','admin_area/index.html','admin_area/index.asp','bb-admin/index.asp','bb-admin/login.asp','bb-admin/admin.asp',
'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admin/home.html','admin/controlpanel.html','admin.html','admin/cp.html','cp.html',
'administrator/index.html','administrator/login.html','administrator/account.html','administrator.html','login.html','modelsearch/login.html','moderator.html',
'moderator/login.html','moderator/admin.html','account.html','controlpanel.html','admincontrol.html','admin_login.html','panel-administracion/login.html',
'admin/home.asp','admin/controlpanel.asp','admin.asp','pages/admin/admin-login.asp','admin/admin-login.asp','admin-login.asp','admin/cp.asp','cp.asp',
'administrator/account.asp','administrator.asp','login.asp','modelsearch/login.asp','moderator.asp','moderator/login.asp','administrator/login.asp',
'moderator/admin.asp','controlpanel.asp','admin/account.html','adminpanel.html','webadmin.html','pages/admin/admin-login.html','admin/admin-login.html',
'webadmin/index.html','webadmin/admin.html','webadmin/login.html','user.asp','user.html','admincp/index.asp','admincp/login.asp','admincp/index.html',
'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home.html','adminarea/index.html','adminarea/admin.html','adminarea/login.html',
'panel-administracion/index.html','panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html','admin/admin_login.html',
'admincontrol/login.html','adm/index.html','adm.html','admincontrol.asp','admin/account.asp','adminpanel.asp','webadmin.asp','webadmin/index.asp',
'webadmin/admin.asp','webadmin/login.asp','admin/admin_login.asp','admin_login.asp','panel-administracion/login.asp','adminLogin.asp',
'admin/adminLogin.asp','home.asp','admin.asp','adminarea/index.asp','adminarea/admin.asp','adminarea/login.asp','admin-login.html',
'panel-administracion/index.asp','panel-administracion/admin.asp','modelsearch/index.asp','modelsearch/admin.asp','administrator/index.asp',
'admincontrol/login.asp','adm/admloginuser.asp','admloginuser.asp','admin2.asp','admin2/login.asp','admin2/index.asp','adm/index.asp',
'adm.asp','affiliate.asp','adm_auth.asp','memberadmin.asp','administratorlogin.asp','siteadmin/login.asp','siteadmin/index.asp','siteadmin/login.html'
);
foreach $ways(@path1){
$final=$site.$ways;
my $req=HTTP::Request->new(GET=>$final);
my $ua=LWP::UserAgent->new();
$ua->timeout(30);
my $response=$ua->request($req);
if($response->content =~ /Username/ ||
$response->content =~ /Password/ ||
$response->content =~ /username/ ||
$response->content =~ /password/ ||
$response->content =~ /USERNAME/ ||
$response->content =~ /PASSWORD/ ||
$response->content =~ /Senha/ ||
$response->content =~ /senha/ ||
$response->content =~ /Personal/ ||
$response->content =~ /Usuario/ ||
$response->content =~ /Clave/ ||
$response->content =~ /Usager/ ||
$response->content =~ /usager/ ||
$response->content =~ /Sing/ ||
$response->content =~ /passe/ ||
$response->content =~ /P\/W/ ||
$response->content =~ /Admin Password/
){
print " \n [+] Found -> $final\n\n";
}else{
print "[-] Not Found <- $final\n";
}
}
}
if($code eq "php"){
@path2=('admin/','administrator/','moderator/','webadmin/','adminarea/','bb-admin/','adminLogin/','admin_area/','panel-administracion/','instadmin/',
'memberadmin/','administratorlogin/','adm/','admin/account.php','admin/index.php','admin/login.php','admin/admin.php','admin/account.php',
'admin_area/admin.php','admin_area/login.php','siteadmin/login.php','siteadmin/index.php','siteadmin/login.html','admin/account.html','admin/index.html','admin/login.html','admin/admin.html',
'admin_area/index.php','bb-admin/index.php','bb-admin/login.php','bb-admin/admin.php','admin/home.php','admin_area/login.html','admin_area/index.html',
'admin/controlpanel.php','admin.php','admincp/index.asp','admincp/login.asp','admincp/index.html','admin/account.html','adminpanel.html','webadmin.html',
'webadmin/index.html','webadmin/admin.html','webadmin/login.html','admin/admin_login.html','admin_login.html','panel-administracion/login.html',
'admin/cp.php','cp.php','administrator/index.php','administrator/login.php','nsw/admin/login.php','webadmin/login.php','admin/admin_login.php','admin_login.php',
'administrator/account.php','administrator.php','admin_area/admin.html','pages/admin/admin-login.php','admin/admin-login.php','admin-login.php',
'bb-admin/index.html','bb-admin/login.html','bb-admin/admin.html','admin/home.html','login.php','modelsearch/login.php','moderator.php','moderator/login.php',
'moderator/admin.php','account.php','pages/admin/admin-login.html','admin/admin-login.html','admin-login.html','controlpanel.php','admincontrol.php',
'admin/adminLogin.html','adminLogin.html','admin/adminLogin.html','home.html','rcjakar/admin/login.php','adminarea/index.html','adminarea/admin.html',
'webadmin.php','webadmin/index.php','webadmin/admin.php','admin/controlpanel.html','admin.html','admin/cp.html','cp.html','adminpanel.php','moderator.html',
'administrator/index.html','administrator/login.html','user.html','administrator/account.html','administrator.html','login.html','modelsearch/login.html',
'moderator/login.html','adminarea/login.html','panel-administracion/index.html','panel-administracion/admin.html','modelsearch/index.html','modelsearch/admin.html',
'admincontrol/login.html','adm/index.html','adm.html','moderator/admin.html','user.php','account.html','controlpanel.html','admincontrol.html',
'panel-administracion/login.php','wp-login.php','adminLogin.php','admin/adminLogin.php','home.php','admin.php','adminarea/index.php',
'adminarea/admin.php','adminarea/login.php','panel-administracion/index.php','panel-administracion/admin.php','modelsearch/index.php',
'modelsearch/admin.php','admincontrol/login.php','adm/admloginuser.php','admloginuser.php','admin2.php','admin2/login.php','admin2/index.php',
'adm/index.php','adm.php','affiliate.php','adm_auth.php','memberadmin.php','administratorlogin.php','dologin.php','do_login.php','admin/dologin.php','admin/do_login.php','administration/','administration/login.php','admin/administration/','admin/administration/login.php','sadmin/','sadmin/login.php','backoffice/','backoffice/index.php','backoffice/admin.php','backoffice/login.php','backoffice/login.html','admin/logadmin.php','webmin/','webmin/login.html','webmin/login.php'
);
foreach $ways(@path2){
$final=$site.$ways;
my $req=HTTP::Request->new(GET=>$final);
my $ua=LWP::UserAgent->new();
$ua->timeout(30);
my $response=$ua->request($req);
if($response->content =~ /Username/ ||
$response->content =~ /Password/ ||
$response->content =~ /username/ ||
$response->content =~ /password/ ||
$response->content =~ /USERNAME/ ||
$response->content =~ /PASSWORD/ ||
$response->content =~ /Senha/ ||
$response->content =~ /senha/ ||
$response->content =~ /Personal/ ||
$response->content =~ /Usuario/ ||
$response->content =~ /Clave/ ||
$response->content =~ /Usager/ ||
$response->content =~ /usager/ ||
$response->content =~ /Sing/ ||
$response->content =~ /passe/ ||
$response->content =~ /P\/W/ ||
$response->content =~ /Admin Password/
){
print " \n [+] Found -> $final\n\n";
}else{
print "[-] Not Found <- $final\n";
}
}
}
##
#
##buyur arşivimden bi exploit
bunu not defterine at uzantısını pl olarak kaydet. active perl kur. ms dos aç .bu exploitide c içinde perl içinde bin klasörüne at. sonra ms dos üzerinden cd c:\perl\bin yaz veya bilidğin yöntem ile perl içindeki bin klasörüne gir. sonra perl exploitismin.pl yaz entere bas. sonra sana asp site mi yoksa php site mi diye soracak onları belirle siteni yaz tarar kendisi.found yazanlar bulunanlardır. ama bu çok uzun yöntem...havij kur- Durum
