unit1.~pas

明小子旁注Domain3.0和Domain2.2两个版本源码

  try
    ProgressBar1.Max := ProgressMax; //设置进度条最大值
    ProgressBar1.Position := Progress; //设置浏览器的的进度
    if FlagOpen2 = 1 then
      URL.Text := 'about:blank'
    else
      URL.Text := self.Web.LocationURL;
  except
  end;

end;

//======================== 插入、全选、反选、导入 =====================

procedure TForm1.InsertPageTextClick(Sender: TObject);
var
  B: boolean;
  T: TListitem;
  S: string;
begin
  S := '必须在自定义检测页面前加上" /  " '; //-----插入
  B := inputquery('自定设置', '自定义检测页面      ', S);
  if B then
  begin
    if s = '' then exit;
    if s[1] <> '/' then
    begin
      showmessage('请在检测页面最前面加上" / "!');
      exit;
    end;
    CLBox.AddItem(S, T);
    if Flag_Search = 0 then
    begin
      CLBox.Checked[CLBox.Items.Count - 1] := True;
      TempSearch := CLBox.Items.Text;
      S_1.Text := TempSearch + '[ADMIN_LOGIN]' + #13 + SearchAdmin;
      S_1.SaveToFile(ExtractFilePath(application.ExeName) + 'SearchPage.txt');
    end
    else
    begin
      CLBox.Checked[CLBox.Items.Count - 1] := True;
      TempSearch2 := CLBox.Items.Text;
      S_1.Text := TempSearch + '[ADMIN_LOGIN]' + #13 + TempSearch2;
      S_1.SaveToFile(ExtractFilePath(application.ExeName) + 'SearchPage.txt');
    end;
  end;
end;

procedure TForm1.AllSelectClick(Sender: TObject);
var
  i: integer;
begin
  for i := 0 to CLBox.Items.Count - 1 do //-----全选
    CLBox.Checked[i] := True;
end;

procedure TForm1.TumSelectClick(Sender: TObject);
var
  i: integer;
begin
  for i := 0 to CLBox.Items.Count - 1 do //-----反选
    CLBox.Checked[i] := False;
end;

procedure TForm1.LoadPageTextClick(Sender: TObject);
begin
  if OpenDialog1.Execute then //-----导入
    CLBox.Items.LoadFromFile(OpenDialog1.FileName);
end; //----------------------------- END -------------------------------

procedure TForm1.N2Click(Sender: TObject);
begin
  try
    FiagClick := listview1.ItemIndex;
    Edit1.Text := listview1.Items[listview1.Itemindex].Caption;
    Edit1.SelectAll;
    Edit1.CopyToClipboard; //复制单个查询结果
  except
  end;
end;

procedure TForm1.N1Click(Sender: TObject);
begin
  try //打开单个查询结果
    shellexecute(handle, 'open', pchar(listview1.Items[listview1.Itemindex].Caption), nil, nil, sw_show);
    FiagClick := listview1.ItemIndex;
  except
  end;
end;

procedure TForm1.AboutClick(Sender: TObject);
const
  H = #10#13;
var
  s: string;
begin
  application.MessageBox(
    '旁注入侵专用程序  Ver 2.2 修正版' + H +
    '该版本修正了上一个版的几个BUG,包括上传的默认木马不能正常' + H +
    '提交、检测程序后不能关闭、检测后不能浏览网页、WIN 98不兼' + H +
    '容问题及个别的较小的BUG!' + H +
    '--------------------------------------------------------' + H +
    '申明:本工具查询部分的风格基本模仿了老兵的domian.exe' + H +
    '使用说明：' + H +
    '1：输入域名 - PING得到IP - 查询该服务器上所有站点' + H +
    '2：设置访问页面功能：选上该功能后，打开的页面将会是以：' + H +
    '网址 + 你设置所要访问的页面直接打开!' + H +
    '主要上为了方便大家查找每个网站上指定的页面!' + H +
    '当然如果你没有选上，那么打开的就直接是该站点的网址!' + H +
    '说明：工具没有什么多大的功能，主要是为了方便大家使用!' + H +
    '邮箱：E-Mail:zsmv@163.com  制作于：2004/11/16制作 ' + H +
    '程序编写环境：WIN XP + Ddelphi 7.0 ' + h +
    '黑客动画吧 http://www.hack58.com  明小子  QQ:830540' + #13 +
    '特别推荐：http://www.socut.com 烁空网页设计' + H +
    '提供旁注程序1.2源程序代码给感兴趣的朋友,新版暂不提供!' + H +
    'http://www.hackdiy.com/Domain1.2-Code.rar', '关于虚拟主机查询部分', 32)
end;

procedure TForm1.ListView1Click(Sender: TObject);
begin
  if listview1.Items.count <= 0 then exit;
  try
    URL.Text := listview1.Items[listview1.Itemindex].Caption;
  except
  end;
end;

procedure TForm1.NesStartClick(Sender: TObject);
var
  Thread1: T1;
  i: integer;
begin
  try
    Ani.Stop;
    Ani.Visible := False;
    Lsb_Site.Clear;
    ListView1.Clear;
    StartScan.Enabled := True;
    Label6.Caption := '';
  except
  end;
end;

procedure TForm1.BtCopyClick(Sender: TObject);
var
  S: string;
begin
  if not AddPage.Enabled then
  begin
    URL.SelectAll;
    URL.CopyToClipboard;
  end
  else
  begin
    S := URL.Text + AddPage.Text;
    Edit2.Text := S;
    Edit2.SelectAll;
    Edit2.CopyToClipboard;
  end;
end;

procedure TForm1.R2_AutoClick(Sender: TObject);
begin

  ASPFileName.Text := '';
  if R2_Auto.Checked then
  begin
    ASPFileName.Enabled := True;
    FilesBrowse.Enabled := True;
    ASPFileName.ReadOnly := True;
    FilesB.Visible := False;
  end
  else
  begin
    ASPFileName.ReadOnly := FAlse;
    ASPFileName.Enabled := false;
    FilesBrowse.Enabled := false;
    FilesB.Visible := True;
  end;
end;

procedure TForm1.R1_DefautlClick(Sender: TObject);
begin
  FilesB.Visible := True;
  FilesBrowse.Enabled := false;
  ASPFileName.ReadOnly := FAlse;
  ASPFileName.Text := 'DIY.asp';
  FilesB.Visible := True;
end;

procedure TForm1.RadioButton4Click(Sender: TObject);
begin
  CookiesData.Enabled := True;
end;

procedure TForm1.RadioButton3Click(Sender: TObject);
begin
  CookiesData.Enabled := False;
end;

procedure TForm1.ProException(Sender: TObject; E: Exception);
begin
  MessageBox(Handle, pchar('系统错误：(' + E.ClassName + ')' + E.Message + '！'), '系统提示', MB_OK + MB_ICONSTOP);
end;

procedure TForm1.OpenAccessClick(Sender: TObject);
begin

  Screen.Cursor := crHourGlass;
  try
    if Open_File.Execute then
      DataPath.Text := Open_File.FileName;
  finally
    Screen.Cursor := crDefault;
  end;

  if DataPath.text = '' then exit;
  Screen.Cursor := crHourGlass;
  try
    //连接数据库
    MainCon.Close;
    MainCon.ConnectionString := DBPra1 + Trim(DataPath.Text) + DBPra2 + Trim(RzEdit1.Text);
    try
      MainCon.Open;
      suiSideChannel1.StayOn := True;
    except
      messagebox(Handle, '该数据库需要密码验证,请先输入数据库密码,' + #13 + '再尝试打开打开该数据库!', '数据库连接错误', MB_OK + MB_ICONINFORMATION);
      Abort;
    end;
    TableName.Items.Clear;
    MainCon.GetTableNames(TableName.Items);
  finally
    Screen.Cursor := crDefault;
  end;
end;

procedure TForm1.TableNameDblClick(Sender: TObject);
begin
  self.ADOQuery1.Close;
  self.ADOQuery1.SQL.Clear;
  self.ADOQuery1.SQL.text := 'select * from ' + TableName.Items[TableName.Itemindex];
  self.ADOQuery1.Open;
end;

procedure TForm1.TabSet1Change(Sender: TObject; NewTab: Integer;
  var AllowChange: Boolean);
begin
  case newtab of
    0:
      begin
        FlatPanel2.Visible := True;
        suiSideChannel1.Visible := True;
        DBGrid1.Visible := True;
        CrackDataPass.Visible := False;
        MD5Group.Visible := False;
      end;
    1:
      begin
        FlatPanel2.Visible := False;
        suiSideChannel1.Visible := False;
        DBGrid1.Visible := False;
        CrackDataPass.Visible := True;
        MD5Group.Visible := True;
      end;
  end;
end;

procedure TForm1.PortETChange(Sender: TObject);
begin
  if CreakDataPath.Text <> '' then btCrackPass.Enabled := true
  else btCrackPass.Enabled := false;
end;

procedure TForm1.CreakDataPathChange(Sender: TObject);
begin
  if CreakDataPath.Text <> '' then btCrackPass.Enabled := true
  else btCrackPass.Enabled := false;
end;

procedure TForm1.btCrackPassClick(Sender: TObject);
begin
  try
    if Trim(CreakDataPath.Text) = '' then Exit;
    ExecDirectory(CreakDataPath.Text);
  except
  //application.MessageBox('请查看输入的路径是否正确!','错误提示',48)
  end;
end;

procedure TForm1.btOpenDataClick(Sender: TObject);
begin
  if Open_File.Execute then
    CreakDataPath.Text := Open_File.FileName;
end;

procedure TForm1.PageControl1Change(Sender: TObject);
begin
  tabset1.TabIndex := 0;
  if (FlagOpen = 1) or (FlagOpen2 = 1) then
    web.Navigate('about:blank');
  if self.PageControl1.TabIndex = 1 then
  begin
    try
      listview1.SetFocus;
      listview1.ItemIndex := FiagClick;
    except
    end;
  end;
end;

procedure TForm1.btHelpClick(Sender: TObject);
const
  H = #10#13;
var
  s: string;
begin
  s := s + '检测部分:--------------------------------------------------' + H;
  s := s + '    该检测部分主要用来批量检测虚拟主机上那些站点存在上传漏' + H;
  s := s + '    洞,新加入管理后台登陆页面批量检测,只要在检测页面框上右' + H;
  s := s + '    击选择检测类型既可!                                   ' + H;
  s := s + '程序介绍: -------------------------------------------------' + H;
  s := s + '    程序写于04/11/17日凌晨,但是使用的是单线程检测,速度慢,加' + H;
  s := s + '    上代码写得比较乱,不方便维护,至于程序代码重写,同时使用了' + H;
  s := s + '    多线程检测,不过有时会出现小差错,技术问题,暂无法全力解决' + H;
  s := s + '    我也算是一个完美主义者,虽然这个程序写得很一般不过我还是' + H;
  s := s + '    力求修补程序每一个BUG,及修改程序每一个细节部分!我不能保' + H;
  s := s + '    证程序达到最好的地步,只能使它更好,更完善!希望大家在使用' + H;
  s := s + '    该程序后,把程序的不足之处到我主页的BLOG留言或加我QQ也可' + H;
  s := s + '    我的个人主页:http://www.hackdiy.com' + H;
  s := s + '使用帮助:--------------------------------------------------' + H;
  s := S + '    使用帮助因为我懒得去写,所以直接做个动画教程!个人觉得这' + H;
  s := S + '    样更直观一些 ^_^,教程下载地址:' + H;
  s := S + '    http;//www.hackdiy.com/Demo.rar' + H;
  s := s + '    -------------------------------------------------------' + H;
  S := s + '       98的操作系统请把属性设置为 1024×768 ,然后再使用!';
  application.MessageBox(pchar(s), '使用帮助', 32);
end;

//============================== 升级程序 ===========================

procedure RemovePro;
const
//RemoveText1 = 'DK25DSQDK97CMUI-Domain2.2';
  RemoveText1 = 'LK87WER02SDF36T-Domain2.3';
  RemoveText2 = 'ACDDSQDK39OIUD2-Domain2.5';
  RemoveText3 = 'KIO294DQKL3697D-Domain3.0';
var
  S: string;
begin
  try
    S := FORM1.idHttp1.Get('http://www.hackdiy.com/remove.asp');
  except
    showmessage('抱歉,暂时无法检测!请梢后再试!');
  end;
  if S = RemoveText1 then
  begin
    if application.MessageBox('恭喜，您是否现在下载最新2.3版本？', '升级程序', 36) = 6 then
      shellexecute(0, 'open', 'http://www.hackdiy.com/Domain2.3.rar', nil, 0, sw_shownormal);
  end
  else
  begin
    if s = RemoveText2 then
    begin
      if application.MessageBox('恭喜，您是否现在下载最新2.5版本？', '升级程序', 36) = 6 then
        shellexecute(0, 'open', 'http://www.hackdiy.com/Domain2.5.rar', nil, 0, sw_shownormal);
    end
    else
    begin
      if S = RemoveText3 then
      begin
        if application.MessageBox('恭喜，您是否现在下载最新3.0版本？', '升级程序', 36) = 6 then
          shellexecute(0, 'open', 'http://www.hackdiy.com/Domain3.0.rar', nil, 0, sw_shownormal);
      end
      else
        application.MessageBox('抱歉,暂时没有最新版本!