📄 main_unit.pas
字号:
Edit_keywordPHP: TEdit;
Label60: TLabel;
GroupBox46: TGroupBox;
Label50: TLabel;
web_dict_url: TEdit;
country_type: TComboBox;
db_type: TComboBox;
save_record: TButton;
delete_record: TButton;
GroupBox47: TGroupBox;
ADOTable2: TADOTable;
DBGrid1_result: TDBGrid;
DataSource2: TDataSource;
Recovery_CMD: TButton;
Open_3389: TButton;
Button_update: TButton;
Button15: TButton;
OrderbyBt: TButton;
Panel3: TPanel;
Label61: TLabel;
Edit_pangzhu_scan: TEdit;
Button_pangzhu_scan: TButton;
import_listtable: TButton;
GroupBox48: TGroupBox;
CheckBt: TCheckBox;
ListView_pangzhu: TListBox;
suiButton_del_table: TButton;
Label44: TLabel;
Panel4: TPanel;
edit_cmd: TEdit;
Button16: TButton;
Edit_listdir: TEdit;
Label45: TLabel;
Button17: TButton;
Button18: TButton;
function MyScreenMode(x,y:word):Boolean;
function Add_Adict(Var StrName:String):Boolean;
procedure FormCreate(Sender: TObject);
procedure suiButton_checkClick(Sender: TObject);
procedure wbDocumentComplete(Sender: TObject; const pDisp: IDispatch;
var URL: OleVariant);
procedure suiButton_columnClick(Sender: TObject);
procedure suiButton_tableClick(Sender: TObject);
procedure Button1Click(Sender: TObject);
procedure RzBitBtn1Click(Sender: TObject);
procedure RzBitBtn2Click(Sender: TObject);
procedure RzBitBtn3Click(Sender: TObject);
procedure RzBitBtn4Click(Sender: TObject);
procedure RzBitBtn5Click(Sender: TObject);
procedure RzBitBtn6Click(Sender: TObject);
procedure RzBitBtn7Click(Sender: TObject);
procedure RzBitBtn8Click(Sender: TObject);
procedure RzBitBtn9Click(Sender: TObject);
procedure suiButton_recordClick(Sender: TObject);
procedure ThreadACCColumn(str_url:string;tablename:string;fieldname:string);
procedure SiteNameKeyPress(Sender: TObject; var Key: Char);
procedure WebTitleChange(Sender: TObject; const Text: WideString);
procedure btQueryClick(Sender: TObject);
procedure IdHTTP1WorkBegin(Sender: TObject; AWorkMode: TWorkMode;
const AWorkCountMax: Integer);
procedure IdHTTP1Work(Sender: TObject; AWorkMode: TWorkMode;
const AWorkCount: Integer);
procedure BtUpClick(Sender: TObject);
procedure BtDownClick(Sender: TObject);
procedure WebStatusTextChange(Sender: TObject; const Text: WideString);
procedure CBoxClick(Sender: TObject);
procedure URLChange(Sender: TObject);
procedure GoForwardClick(Sender: TObject);
procedure GoBackClick(Sender: TObject);
procedure SiteListClick(Sender: TObject);
procedure BtOpenClick(Sender: TObject);
procedure URLKeyPress(Sender: TObject; var Key: Char);
procedure WebCommandStateChange(Sender: TObject; Command: Integer;
Enable: WordBool);
procedure WebProgressChange(Sender: TObject; Progress,
ProgressMax: Integer);
procedure BtCopyClick(Sender: TObject);
procedure listdir;
procedure RegDir;
procedure CreateTxt;
procedure SiteListDblClick(Sender: TObject);
procedure Q1Click(Sender: TObject);
procedure N4Click(Sender: TObject);
procedure BugS2Click(Sender: TObject);
procedure StartButtonClick(Sender: TObject);
procedure VisitButtonClick(Sender: TObject);
procedure suiButton_stopClick(Sender: TObject);
procedure ReloadButtonClick(Sender: TObject);
procedure SelectURLKeyDown(Sender: TObject; var Key: Word;
Shift: TShiftState);
procedure phpClick(Sender: TObject);
procedure suiButton_add_tableClick(Sender: TObject);
procedure suiButton_del_tableClick(Sender: TObject);
procedure suiButton_data_exportClick(Sender: TObject);
procedure suiButton_selectClick(Sender: TObject);
procedure N9Click(Sender: TObject);
procedure SelectURLChange(Sender: TObject);
procedure ScanURLChange(Sender: TObject);
procedure shell1Click(Sender: TObject);
procedure N1Click(Sender: TObject);
procedure btAddClick(Sender: TObject);
procedure btUpdateClick(Sender: TObject);
procedure btDeleteClick(Sender: TObject);
procedure DBGridShellCellClick(Column: TColumn);
//procedure lisResultClick(Sender: TObject);
procedure ScanURLKeyPress(Sender: TObject; var Key: Char);
procedure Memo2_AddrClick(Sender: TObject);
procedure executeDBtable(sContent:string);
procedure executeDBUser(sContent:string);
procedure executeDBName(sContent:string);
procedure executeDBSelect(URL:string;sContent:string);
procedure executeColumn(URL:string;sContent:string);
procedure executeRecord(URL:string;sContent:string);
procedure SpeedButton1Click(Sender: TObject);
procedure N3Click(Sender: TObject);
procedure suiEdit_dbnameChange(Sender: TObject);
procedure HttpCli_webDocEnd(Sender: TObject);
procedure txtCmdClick(Sender: TObject);
procedure btVist1Click(Sender: TObject);
procedure btUp1Click(Sender: TObject);
procedure btSearchClick(Sender: TObject);
procedure suiButton_stop_tableClick(Sender: TObject);
procedure suiButton_stop_columnClick(Sender: TObject);
procedure suiButton_stop_recordClick(Sender: TObject);
procedure suiRadioButton_notReportClick(Sender: TObject);
procedure suiRadioButton_reportClick(Sender: TObject);
procedure playanimate;
procedure stopanimate;
procedure suiButton_table_exportClick(Sender: TObject);
procedure suiButton_column_exportClick(Sender: TObject);
procedure suiButton_del_columnClick(Sender: TObject);
procedure btListDirClick(Sender: TObject);
procedure BitBtn1Click(Sender: TObject);
procedure Cmd_Thread;
procedure Clin_Thread;
procedure btOkClick(Sender: TObject);
procedure btStopCmdClick(Sender: TObject);
procedure Button_stop_checkClick(Sender: TObject);
procedure Stopcheck;
procedure DocEnd(Sender:TObject);
procedure suiButton_scan_stopClick(Sender: TObject);
procedure suiRadioButton_methord1Click(Sender: TObject);
procedure suiRadioButton_methord2Click(Sender: TObject);
procedure suiRadioButton_methord3Click(Sender: TObject);
procedure FormClose(Sender: TObject; var Action: TCloseAction);
procedure ThreadACCTable(str_url:string;tablename:string);
procedure btNameClick(Sender: TObject);
procedure Button2Click(Sender: TObject);
procedure Button3Click(Sender: TObject);
procedure Button4Click(Sender: TObject);
procedure Button5Click(Sender: TObject);
procedure Button6Click(Sender: TObject);
procedure Button7Click(Sender: TObject);
procedure Button8Click(Sender: TObject);
procedure Button9Click(Sender: TObject);
procedure Button10Click(Sender: TObject);
procedure Button11Click(Sender: TObject);
procedure Button12Click(Sender: TObject);
procedure Button13Click(Sender: TObject);
procedure btExcClick(Sender: TObject);
procedure btStopRegClick(Sender: TObject);
procedure btPoxryOkClick(Sender: TObject);
procedure btDisposeClick(Sender: TObject);
procedure ListViewClick(Sender: TObject);
procedure strTimeOutChange(Sender: TObject);
procedure Image2Click(Sender: TObject);
procedure ListBoxMReClick(Sender: TObject);
procedure suiButton_scanClick(Sender: TObject);
procedure Button14Click(Sender: TObject);
procedure CheckProxyClick(Sender: TObject);
procedure btInjectClick(Sender: TObject);
procedure suiEdit_add_tableEnter(Sender: TObject);
procedure suiEdit_add_numEnter(Sender: TObject);
procedure PageControl1Change(Sender: TObject);
procedure btPingClick(Sender: TObject);
procedure LoadSiteClick(Sender: TObject);
procedure LoadOutSiteClick(Sender: TObject);
procedure SaveSiteClick(Sender: TObject);
procedure StartScanClick(Sender: TObject);
procedure InsertPageTextClick(Sender: TObject);
procedure AllSelectClick(Sender: TObject);
procedure TumSelectClick(Sender: TObject);
procedure LoadPageTextClick(Sender: TObject);
procedure NesStartClick(Sender: TObject);
// procedure BtUpFilesClick(Sender: TObject);
procedure FilesBrowseClick(Sender: TObject);
// procedure BtPasteClick(Sender: TObject);
procedure GetIP;
procedure InsertSiteClick(Sender: TObject);
procedure OotResultClick(Sender: TObject);
procedure BtUpFilesClick(Sender: TObject);
procedure BtPasteClick(Sender: TObject);
procedure ClientSocket1Connect(Sender: TObject;
Socket: TCustomWinSocket);
procedure ClientSocket1Read(Sender: TObject; Socket: TCustomWinSocket);
procedure CheckBox_keywordClick(Sender: TObject);
procedure rbcProClick(Sender: TObject);
procedure rbcBackClick(Sender: TObject);
procedure R1_DefautlClick(Sender: TObject);
procedure R2_AutoClick(Sender: TObject);
procedure N2Click(Sender: TObject);
procedure U1Click(Sender: TObject);
procedure Button_injectionClick(Sender: TObject);
procedure Button_ColumnClick(Sender: TObject);
procedure Button_StopClolumnClick(Sender: TObject);
procedure Button_TableClick(Sender: TObject);
procedure Button_StopTableClick(Sender: TObject);
procedure Button_forwardClick(Sender: TObject);
procedure Button_backwardClick(Sender: TObject);
procedure Button_NavigateClick(Sender: TObject);
procedure Button_php_tableClick(Sender: TObject);
procedure Button_LoadfileClick(Sender: TObject);
//procedure lisResultSelectItem(Sender: TObject);
procedure ListView_tablepSelectItem(Sender: TObject; Item: TListItem;
Selected: Boolean);
procedure ListView_ColumnpSelectItem(Sender: TObject; Item: TListItem;
Selected: Boolean);
procedure php_startClick(Sender: TObject);
procedure php_stopClick(Sender: TObject);
procedure ListBox1_phpClick(Sender: TObject);
procedure Button_StopPHPCheckClick(Sender: TObject);
procedure ComboBox_URLExit(Sender: TObject);
procedure save_recordClick(Sender: TObject);
procedure delete_recordClick(Sender: TObject);
procedure Recovery_CMDClick(Sender: TObject);
procedure Open_3389Click(Sender: TObject);
procedure Button_updateClick(Sender: TObject);
procedure ListView_recordSelectItem(Sender: TObject; Item: TListItem;
Selected: Boolean);
procedure suiComboBox2_urlExit(Sender: TObject);
procedure Button15Click(Sender: TObject);
procedure OrderbyBtClick(Sender: TObject);
procedure import_record;
Function GetIPStr(URL:string):string;
procedure Button_pangzhu_scanClick(Sender: TObject);
//procedure Button_ScanAllClick(Sender: TObject);
procedure ListView_pangzhuClick(Sender: TObject);
procedure import_listtableClick(Sender: TObject);
procedure Button18Click(Sender: TObject);
procedure ListViewReusltSelectItem(Sender: TObject; Item: TListItem;
Selected: Boolean);
procedure lisResultSelectItem(Sender: TObject; Item: TListItem;
Selected: Boolean);
procedure Button16Click(Sender: TObject);
procedure Button17Click(Sender: TObject);
private
FlagOpen: integer;
DateStr: DWord;
PassCode: WideString;
EncodeArray: array[0..19] of Word;
ReaderArray: array[0..19] of Word;
function CreateShellCode: string;
function GetFileMemo: string;
function Rep: string;
procedure ProException(Sender: TObject; E: Exception);
public
FileBox1: TFileListBox;
URL_Check_End:string;
private
{ Private declarations }
FWbComplete:Boolean;
scan_stop:Boolean;
procedure OpenURL(Str:String);
public
function GetInjWBMsg(str_url: string):Boolean;
function SearchAdmin: string;
function SearchUP: string;
public
ThttpSuccess:Boolean;
stop_cmd:Boolean;
stop_table:Boolean;
stop_column:Boolean;
stop_record:Boolean;
stop_check:Boolean;
stop_Reg:Boolean;
stop_clin:Boolean;
proxy_check:Boolean;
str_Host,str_Port,str_Zh,str_Mm:string;
{ Public declarations }
end;
Function GetPostCode(srcUlt,strType,strName,strPws,strIs:string;HttpCli:THttpCli):string;
function MakeDxSortMessage(srcUlt,strType,strName,strPws:string):string;
function Encode(const msg : String) : String;
function GetHtmlStr(const URL:string;ShowHeaders: boolean = false): string;
const
MaxThreads=64;
MaxTableThreads=256;
MaxdicThreads=512;
var
ThdColCompleteCount:integer;
ThdTabCompleteCount:integer;
ThdObjCompleteCount:integer;
TimeOut:integer;
stop:boolean;
stop_php:boolean;
stop1:boolean;
Form_main: TForm_main;
deletRow:string;//要删除的记录索引
pstrDir:string; //列目录的全局变量
pstrTable:string;//默认临时表名
g_sContent:string;
echoStr:string;//读文本的内容
Stop_PHP_Check:Boolean;//停止php注入检测
//线程对象数组
ThreadsObjects : array [0..MaxThreads - 1] of THTTPThread;
ThdDBSelectObjects : array [0..MaxThreads - 1] of TThreadDBSelect;
ThdDBUserObjects: array [0..MaxThreads - 1] of TThreadDBUser;
ThdDBNameObjects: array [0..MaxThreads - 1] of TThreadDBName;
ThdColumnObjects: array [0..MaxThreads - 1] of TThreadColumn;
ThdRecObjects : array [0..MaxThreads - 1] of TThreadRecData;
ThdErrorTableObj: array [0..MaxTableThreads - 1] of TThreadErrorTable;
ThdErrorDBSelObj: array [0..MaxTableThreads - 1] of TThreadErrorDBSelect;
ThdErrorColumnObj:array [0..MaxTableThreads - 1] of TThreadErrorColumn;
recordCharObj :array [0..MaxTableThreads - 1] of TThreadRecDataACC;
//旁注所用变量————————
var
HTMLCode: string; //储蓄获取到的HTML代码
RecQueryPage: integer = 1; //记录当前页面
SendData: string;
SearchPage: tstrings;
TempSearch: string;
TempSearch2: string;
S_1: TStrings;
Flag_Search: integer = 0;
FlagSiteSum: integer = 0;
FlagOpen2: integer = 0;
FiagClick: integer;
//PHP注入所用变量
var
content:string;//php页面内容
GURL:string;
StopTable:Boolean;
StopColumn:Boolean;
Columns:TStringList;
Column_Count:integer;
const
DBPra1 = 'Provider=Microsoft.Jet.OLEDB.4.0;Data Source=';
DBPra2 = ';Persist Security Info=False;Jet OLEDB:Database Password=';
// ——————————
implementation
uses SUIThemes,thread_Unit,Startform_Unit1,UI_less,Unit_panzhu,
BlastDataFrm;
{$R *.dfm}
//*********************获取Html页面内容************************************
function GetHtmlStr(const URL:string;ShowHeaders: boolean = false): string;
const
Agent = 'Internet Explorer 6.0';
var
hFile, HInet: HINTERNET;
Buffer: array[0..32767] of Char;
BufRead: Cardinal;
BufSize: Cardinal;
TempStream: TStringStream;
dwIndex: dword;
begin
HInet := InternetOpen(PChar(Agent), INTERNET_OPEN_TYPE_PRECONFIG, nil, nil, 0);
if Assigned(HInet) then
try
if LowerCase(Copy(URL,1,7)) <> 'http://' then
hFile := InternetOpenUrl(HInet, PChar('http://' + URL), nil, 0, 0, 0)
else
hFile := InternetOpenUrl(HInet, PChar(URL), nil, 0, 0, 0);
TempStream := TStringStream.Create('');
dwIndex := 0;
BufSize := SizeOf(Buffer);
HttpQueryInfo(hfile, HTTP_QUERY_RAW_HEADERS_CRLF, @Buffer, BufSize, dwIndex);
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -