..cool, we will make a new module and not just some new module, nope let's make a fully automatic injection script! This tutorial is the first step into making this. Let's first..
AntiFTP uses wordlists in order to bruteforce FTP user accounts
<?php
/* Files that need to be monitored as they can reach huge sizes, while the content may be outdated
Author: Remco Kouw
Site: http://www.hacksuite.com
Last Edit: 26-02-2015
*/
if(!defined('IN_SCRIPT')){
exit;
}
$_CONTEXT['monitor_f'] = array();
// paths in apps
$_CONTEXT['monitor_f'][] = $_PATHS['root']."/Apps/medusa/black/tasks.php";
$_CONTEXT['monitor_f'][] = $_PATHS['root']."/Apps/medusa/white/tasks.php";
// paths in data
$_CONTEXT['monitor_f'][] = $_PATHS['data_root']."/running.txt";
$_CONTEXT['monitor_f'][] = $_PATHS['data_root']."/googledorks.txt";
$_CONTEXT['monitor_f'][] = $_PATHS['data_root']."/proxies.txt";
// paths in logs
include($_PATHS['data_root']."/logsdata.php");
$_CONTEXT['monitor_f'][] = $_PATHS['log_root']."/".$_CONTEXT['l_formats'][0]['file'];
$_CONTEXT['monitor_f'][] = $_PATHS['log_root']."/".$_CONTEXT['l_formats'][3]['file'];
$_CONTEXT['monitor_f'][] = $_PATHS['log_root']."/".$_CONTEXT['l_formats'][2]['file'];
// paths in modules
$_CONTEXT['monitor_f'][] = $_PATHS['root']."/Modules/thc_ah/cracked.txt";
$_CONTEXT['monitor_f'][] = $_PATHS['root']."/Modules/thc_ii/logs/default.php";
$_CONTEXT['monitor_f'][] = $_PATHS['root']."/Modules/thc_sb/keys.txt";
$_CONTEXT['monitor_f'][] = $_PATHS['root']."/Modules/thc_xs/openports.txt";
// paths in testservers
$_CONTEXT['monitor_f'][] = $_PATHS['servers_root']."/RESULTS/xss.php";
?>