Blog

XAttacker adalah Website Vulnerability Scanner & Auto Exploiteryang di tulis dalam bahasa pemrograman Perl untuk menganalisis sebuah celah web dan meng eksploitasi nya secara otomatis.

Sebelum menjalankan tool nya alangkah baik nya di recode ulang dengan sendiri, karena hasil deface dari tool ini masih menggunakan nick name sang pembuat tool ini.

X Attacker Tool Website Vulnerability Scanner & Auto Exploiter

Saat ini tools ini didukung oleh CMS seperti WordPress, Joomla, Drupal, PrestaShop, dan LokoMedia.

+] Auto Cms Detect

[1] WordPress :

[+] Adblock Blocker
[+] WP All Import
[+] Blaze
[+] Catpro
[+] Cherry Plugin
[+] Download Manager
[+] Formcraft
[+] levoslideshow
[+] Power Zoomer
[+] Gravity Forms
[+] Revslider Upload Shell
[+] Revslider Dafece Ajax
[+] Revslider Get Config
[+] Showbiz
[+] Simple Ads Manager
[+] Slide Show Pro
[+] WP Mobile Detector
[+] Wysija
[+] InBoundio Marketing
[+] dzs-zoomsounds
[+] Reflex Gallery
[+] Creative Contact Form
[+] Work The Flow File Upload
[+] WP Job Manger
[+] PHP Event Calendar
[+] Synoptic
[+] Wp Shop
[+] Content Injection
[+] Cubed Theme NEW
[+] Rightnow Theme NEW
[+] Konzept NEW
[+] Omni Secure Files NEW
[+] Pitchprint NEW
[+] Satoshi NEW
[+] Pinboard NEW
[+] Barclaycart NEW

[2] Joomla

[+] Com Jce
[+] Com Media
[+] Com Jdownloads
[+] Com Fabrik
[+] Com Jdownloads Index
[+] Com Foxcontact
[+] Com Ads Manager
[+] Com Blog
[+] Com Users
[+] Com Weblinks
[+] mod_simplefileupload
[+] Com Facileforms NEW
[+] Com Jwallpapers NEW
[+] Com Extplorer NEW
[+] Com Rokdownloads NEW
[+] Com Sexycontactform NEW
[+] Com Jbcatalog NEW

[3] DruPal

[+] Add Admin
[+] Drupalgeddon NEW

[4] PrestaShop

[+] columnadverts
[+] soopamobile
[+] soopabanners
[+] Vtermslideshow
[+] simpleslideshow
[+] productpageadverts
[+] homepageadvertise
[+] homepageadvertise2
[+] jro_homepageadvertise
[+] attributewizardpro
[+] 1attributewizardpro
[+] AttributewizardproOLD
[+] attributewizardpro_x
[+] advancedslider
[+] cartabandonmentpro
[+] cartabandonmentproOld
[+] videostab
[+] wg24themeadministration
[+] fieldvmegamenu
[+] wdoptionpanel
[+] pk_flexmenu
[+] pk_vertflexmenu
[+] nvn_export_orders
[+] megamenu
[+] tdpsthemeoptionpanel
[+] psmodthemeoptionpanel
[+] masseditproduct
[+] blocktestimonial NEW

[5] Lokomedia

SQL injection

Usage

Short FormLong FormDescription-l–listwebsites list

Example

if you have list websites run tool with this command line

perl XAttacker.pl -l list.txt

if you don’t have list websites run the tool with this command

perl XAttacker.pl

BUG ?

Submit new issue

Installation Linux

git clone https://github.com/Moham3dRiahi/XAttacker.git cd XAttacker perl XAttacker.pl

Installation Windows

Download Perl Download XAttacker Extract XAttacker into Desktop Open CMD and type the following commands: cd Desktop/XAttacker-master/ perl XAttacker.pl

Version

Current version is 2.5 What’s New

• blocktestimonial Exploit
• Cubed Theme Exploit
• Rightnow Theme Exploit
• Konzept Exploit
• Omni Secure Files Exploit
• Pitchprint Exploit
• Satoshi Exploit
• Pinboard Exploit
• Barclaycart Exploit
• Com Facileforms Exploit
• Com Jwallpapers Exploit
• Com Extplorer Exploit
• Com Rokdownloads Exploit
• Com Sexycontactform Exploit
• Com Jbcatalog Exploit
• Com Blog Exploit
• Com Foxcontact Exploit
• Drupal Geddon Exploit
• Speed up
• Bug fixes

Cara Install XAttacker di Termux

Buka terminal kalian dan ketikkan kode di bawah ini ( kali ini gw pake termux )

$ apt update && apt upgrade
$ apt install perl
$ apt install git https://github.com/Moham3dRiahi/XAttacker

Setelah terinstall tool nya, kita install juga modul – modul perl nya agar tool nya bisa berjalan dengan sempurna .

Ketik

$ cpan

cpan[1]> install HTTP::Request
cpan[2]> install LWP::UserAgent

Setelah semua nya terinstall, masuk folder XAttacker nya dengan mengetik

$ cd XAttacker

Dan untuk menjalankan tool nya cukup ketik

$ perl XAttacker.pl -l list.txt