Add files via upload

Author: AlisamTechnology

atscan.pl

@@ -10,6 +10,8 @@
 use Digest::MD5;
 use MIME::Base64;
 use Net::Ping;
+use HTTP::Cookies;
+
 ## Copy@right Alisam Technology see License.txt
 
 ## INTRODUCTION ###########################################################################################

inc/conf/version.log

@@ -2,6 +2,7 @@ ATSCAN SCANNER VERSION 13.1.0 RELEASE
 =====================================================
   CHANGES: 12/05/2018
   - Fix update.
+  - Fix validation by url.
   - Enjoy!
   =================
 

inc/funcs.pl

@@ -176,39 +176,31 @@ sub get_psx {
 
 our ($system, $agent, $ua);
 
-## TIMEOUT
-sub get_timeout {
-  my $time;
-  if (defined $timeout || $timeout) { $time=$timeout; }
-  else{ $time=5; }
-  return $time;
-}
-
 ## HEADERS
 @defaultHeaders = (
-  'Accept' => 'image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,image/png, */*',
-  'Accept-Charset' => 'iso-8859-1,*,utf-8', 
-  'Accept-Language' => 'en-US',
-  'Accept' => 'text/xml, application/xml, application/xhtml+xml, text/html;q=0.9, image/png, image/jpeg, image/gif;q=0.2, text/plain;q=0.8,
-   text/css, */*;q=0.1',
-  'Accept-Encoding' => 'gzip, deflate, compress;q=0.9',
-  'Connection' => 'keep-alive'
+  "Accept => image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,image/png, */*",
+  "Accept-Charset => iso-8859-1,*,utf-8", 
+  "Accept-Language => en-US",
+  "Accept => text/xml, application/xml, application/xhtml+xml, text/html;q=0.9, image/png, image/jpeg, image/gif;q=0.2, text/plain;q=0.8,
+   text/css, */*;q=0.1",
+  "Accept-Encoding => gzip, deflate, compress;q=0.9",
+  "Connection => keep-alive"
   );
 our $headers;
 
 if (defined $headers) {
-  @userHeaders=split (",", $headers);
-  push @defaultHeaders, @userHeaders;
+  push @defaultHeaders, $headers;
 }
 
-use HTTP::Cookies;
 ## SET PROXY
 $agent="Mozilla/5.0 (".$systems[rand @systems];
 $ua=LWP::UserAgent->new( agent => $agent, @defaultHeaders, cookie_jar => HTTP::Cookies->new());
 $ua->cookie_jar({});
 $ua->env_proxy;
-$timeout=get_timeout();
-$ua->timeout($timeout);
+if (defined $timeout || $timeout) {
+  $ua->timeout($timeout);
+}
+
 if ($proxy || $prandom || defined $proxy || defined $prandom) {  
   $ua->proxy([qw/ http https ftp ftps /] => $psx); $ua->cookie_jar({ });
 }
@@ -621,11 +613,10 @@ sub checkUloadedShell {
   my $URL1=$_[0];
   my $isUploaded="";
   $URL1=getHost($URL1);
-  $URL1="$URL1/$validShell";
-  $ua = LWP::UserAgent->new;
+  $URL1.=$validShell;
   my $reShell = $ua->get("$URL1");
   if ($reShell->is_success and ($reShell->code eq "200")) {
-    $URL1=$isUploaded;
+    $isUploaded=$URL1;
   }
   return $isUploaded;
 }
@@ -739,7 +730,7 @@ sub printProxy {
 sub Targs {
   our ($mindex, $Hstatus, $validText);
   my @Targs=($xss, $data, $lfi, $ifinurl, $WpSites, $Hstatus, $validText, $adminPage, $subdomain, $JoomRfi, $WpAfd, $mindex, $port, $mupload, $mzip, $JoomSites, $eMails, $searchIps,
-             $regex, $command, $ping, $interactive);
+             $regex, $command, $ping, $interactive, $validShell);
   my $Targ=0;
   for (@Targs) { $Targ++ if defined $_; }
   return $Targ;

inc/search/print.pl

@@ -84,7 +84,7 @@ sub printResults {
   my $o=OO();
   if ($o<$limit) {
     if ($result) {
-      titleSCAN() if $result && (defined $Hstatus || defined $validText || defined $notIn);
+      titleSCAN() if $result && (defined $Hstatus || defined $validText || defined $notIn || defined $validShell);
       validateResult($URL1, $status, $html, $response, $result);
     }
     elsif ($reg) {
@@ -163,10 +163,10 @@ sub checkValidation {
   if (defined $noExist || defined $Hstatus || $validText) {
     if (defined $noExist) {
       if (defined $Hstatus) { if ($status == $Hstatus) { $cV=""; } }
-      if (defined $validText) { if ($html=~m/^$validText$/i) { $cV=""; } }
+      if (defined $validText) { if ($html=~m/\b$validText\b/) { $cV=""; } }
     }else{
       if (defined $Hstatus) { if ($status ne $Hstatus) { $cV=""; } }
-      if (defined $validText) { if ($html!~m/^$validText$/i) { $cV=""; } }
+      if (defined $validText) { if ($html!~m/\b$validText\b/) { $cV=""; } }
     }
   }
   if (defined $notIn) { if (index($html, $notIn) != -1) { $cV=""; } }

inc/search/process.pl

@@ -5,7 +5,7 @@
 ## Copy@right Alisam Technology see License.txt
 
 our ($browserLang, $mrand, $motorparam, $motor, $motor1, $motor2, $motor3, $motor4, $motor5, $mrandom, $googleDomain, $prandom, $proxy, $psx, $mlevel, $ifinurl, $unique, $mdom, 
-     $searchRegex, $Target, $dork, $ua, $Id, $MsId, $V_SEARCH,$nolisting, $mindex, $zone, $agent, $noExist, $notIn, $expHost, $mupload, $expIp);
+     $searchRegex, $Target, $dork, $ua, $Id, $MsId, $V_SEARCH,$nolisting, $mindex, $headers, $zone, $agent, $noExist, $notIn, $expHost, $mupload, $expIp);
 our (@motor, @TODO, @V_TODO, @c, @TT, @DS, @DT, @dorks, @SCAN_TITLE, @motors, @mrands, @aTsearch, @proxies);
 our ($limit, $post, $get, $replace, $output, $data, $noQuery, $V_IP, $replaceFROM, $eMails, $searchIps, $brandom, $validShell, $noinfo, $timeout, $method, $command, @defaultHeaders, @OTHERS, @ErrT);
 
@@ -188,7 +188,8 @@ sub printInfoUrl {
       elsif (defined $post || ($method and $method eq "post")) { print "$DT[32]\n"; }
       elsif (defined $mupload || ($method and $method eq "upload")) { print "UPLOAD\n"; }
       else{ print "$DS[15]\n"; }
-      if ($timeout !=10) { print $c[1]."    $TT[10] ".$c[10]."$timeout s\n"; }
+      if ($timeout or defined $timeout) { print $c[1]."    $TT[10] ".$c[10]."$timeout s\n"; }
+      if (defined $headers) { print $c[1]."    HEADERS ".$c[10]."$headers\n"; }
       for (our @replace) {
         if (defined $_) {
           print $c[1]."    $OTHERS[14]   "; print $c[10]."[$_]\n";
@@ -237,23 +238,23 @@ sub getHtml {
   }
   if ($data) {
     if (defined $post || ($method && $method eq "post")) {
-      $response=$ua->post($URL, @defaultHeaders, Content => [$data]);
+      $response=$ua->post($URL, Content => [$data]);
     }elsif (defined $mupload || ($mupload && $mupload eq "upload")) {
-      $response=$ua->post($URL, @defaultHeaders, Content_Type => 'multipart/form-data', Content => [$data]);
+      $response=$ua->post($URL, Content_Type => 'multipart/form-data', Content => [$data]);
     }elsif (defined $get || ($method && $method eq "get")) { 
       $data=~s/\=>/\=/g; $data=~s/\,/&/g; $data=~s/\s//g;
       $data=~s/(\'|\")//g;
       $URL.="?".$data;
       $URL=~s/\s//g;
-      $response=$ua->get($URL, @defaultHeaders);
+      $response=$ua->get($URL);
     }
   }else{
     if (defined $post || ($method && $method eq "post")) {
-      $response=$ua->post($URL, @defaultHeaders); }
+      $response=$ua->post($URL); }
     elsif (defined $get || ($method && $method eq "get")) {
-      $response=$ua->get($URL, @defaultHeaders);
+      $response=$ua->get($URL);
     }else{
-      $response=$ua->get($URL, @defaultHeaders);
+      $response=$ua->get($URL);
     }
   }
   my $html=$response->decoded_content;