X-Capture The Root (XCTR)


XCTR is a all in one enumeration tool made by Hülya Karabag and Mert Beyoğlu.
To start with you can download the tool from Github XCTR.

root@kali:~/Downloads/XCTR-Hacking-Tools# ./xctr.py

`8.`8888.      ,8'  ,o888888o.8888888 8888888888 8 888888888o.
 `8.`8888.    ,8'  8888     `88.    8 8888       8 8888    `88.
  `8.`8888.  ,8',8 8888       `8.   8 8888       8 8888     `88
   `8.`8888.,8' 88 8888             8 8888       8 8888     ,88
    `8.`88888'  88 8888             8 8888       8 8888.   ,88'
    .88.`8888.  88 8888             8 8888       8 888888888P'
   .8'`8.`8888. 88 8888             8 8888       8 8888`8b
  .8'  `8.`8888.`8 8888       .8'   8 8888       8 8888 `8b.
 .8'    `8.`8888.  8888     ,88'    8 8888       8 8888   `8b.
.8'      `8.`8888.  `8888888P'      8 8888       8 8888     `88.

֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎

֎֎                      𝗖𝗔𝗣𝗧𝗨𝗥𝗘 𝗧𝗢𝗢𝗟𝗦                          ֎֎

֎֎                 𝐈𝐍𝐒𝐓𝐀𝐆𝐑𝐀𝐌==>𝐜𝐚𝐩𝐭𝐮𝐫𝐞𝐭𝐡𝐞𝐫𝐨𝐨𝐭                   ֎֎

֎֎                 𝐂𝐨𝐝𝐞𝐝 𝐁𝐲 ==>𝐇𝐔𝐋𝐘𝐀 𝐊𝐀𝐑𝐀𝐁𝐀𝐆                  ֎֎

֎֎                 𝐂𝐨𝐝𝐞𝐝 𝐁𝐲 ==>𝐌𝐄𝐑𝐓 𝐁𝐄𝐘𝐎𝐆𝐋𝐔                   ֎֎

֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎֎

┌──────────────────────────────────────────────────────────────────────────────┐
   Current project name : hulya
└──────────────────────────────────────────────────────────────────────────────┘
Enter project name : hulya
Directory not found!
Do you want to create _hulya_ named project directory?
y/n : y
Directory created successfully!
Check directory : /root/Downloads/XCTR-Hacking-Tools/results/hulya
<<<<<<<<<<           𝗪𝗘𝗟𝗖𝗢𝗠𝗘 𝗧𝗢 𝗫𝗖𝗧𝗥 𝗧𝗢𝗢𝗟𝗦            >>>>>>>>>>

   1) Dork Finder
   2) Admin Panel Finder
   3) Cms Finder
   4) Ip History
   5) Reverse Ip
   6) Page Viewer
   7) Proxy Finder
   8) Read Me
   9) Settings
   0) EXIT
    Main menu | Choose:


9) Settings (Proxy-Update)
First step to follow before running the tool is to update the proxy-list or WAF could block your requesting IP for multple requests.

   1) Dork Finder
   2) Admin Panel Finder
   3) Cms Finder
   4) Ip History
   5) Reverse Ip
   6) Page Viewer
   7) Proxy Finder
   8) Read Me
   9) Settings
   0) EXIT
    Main menu | Choose: 9

        Settings
       Download
         1- User Agent
         2- Up-to-Date Proxy
       Change
         3- Site url
         4- Site port
         5- Number of threads(max:500)
         6- Current wordlist
         7- Project name

b- Back
Settings | Choose : 2
300 proxy found in free-proxy-list.net
Proxies saved to proxy.txt and updated.
<<<<<<<<<<           𝗪𝗘𝗟𝗖𝗢𝗠𝗘 𝗧𝗢 𝗫𝗖𝗧𝗥 𝗧𝗢𝗢𝗟𝗦            >>>>>>>>>>

   1) Dork Finder
   2) Admin Panel Finder
   3) Cms Finder
   4) Ip History
   5) Reverse Ip
   6) Page Viewer
   7) Proxy Finder
   8) Read Me
   9) Settings
   0) EXIT
    Main menu | Choose:


1) Dork Finder
Once the proxy is updated we are good to go, let’s start with the 1st option which is Dork Finder, we will try someting simple becaus of the resource restrictions e.g: php?id=1

<<<<<<<<<<           𝗪𝗘𝗟𝗖𝗢𝗠𝗘 𝗧𝗢 𝗫𝗖𝗧𝗥 𝗧𝗢𝗢𝗟𝗦            >>>>>>>>>>

   1) Dork Finder
   2) Admin Panel Finder
   3) Cms Finder
   4) Ip History
   5) Reverse Ip
   6) Page Viewer
   7) Proxy Finder
   8) Read Me
   9) Settings
   0) EXIT
    Main menu | Choose: 1

    Dork Finder
    1-) Bing dork finder
    2-) Yandex dork finder

b- Back
Dork menu | Choose:2
(Yandex) | Enter the word you want to search for : php?id=
Url found -> https://www.bible-history.com/subcat.php?id=2
Url found -> https://www.turkhackteam.org/guncel-aciklar/999985-guncel-sql-acikli-siteler-4-farkli-dork-cok-sayida-site.html
Url found -> http://www.sneaindia.com/index.php?id=15
Url found -> https://www.ssy.org/detail.php?id=1
Url found -> https://forum.donanimhaber.com/php-ile-id-gore-url-yapma--128400037
Url found -> https://www.jbctools.com/cataleg.php?id=1
Url found -> https://wmaraci.com/forum/php/php-id-nedir-120767.html
Url found -> https://veteriner.org.tr/tr/manset.php?id=46
Url found -> https://arsyayinlari.com.tr/kitap-detay.php?id=10
Url found -> http://katun.me/page.php?id=10
Url found -> http://esjindex.org/search.php?id=1
Url found -> http://zskblog.com/detay.aspx?id=10
Url found -> http://www.asfaa.org/members.php?id=1
Url found -> https://davidshop.com/showcat.php?id=55
Url found -> https://code.tutsplus.com/tr/tutorials/build-a-shopping-cart-with-php-and-mysql--net-5144
Url found -> https://www.erdinckoc.com.tr/htaccess-ile-php-seo-url-yapma-sef-link-nasil-yapilir-86.html
Url found -> http://burhanaltintas.com/HTML/Sayfa/7/php-htaccess-ile-seo-dostu-url-yapimi.html
Url found -> https://www.r10.net/php/691284-id-ye-gore-veri-cekme.html
Url found -> https://davutabi.com/php-htaccess-ile-seo-uyumlu-link-yapimi
Url found -> https://sanalkurs.net/php-ile-sayfa-editoru-3571.html
Url found -> https://www.mbrepository.com/category.php?id=1
Url found -> https://www.harunalp.com/pdo-ile-site-ici-arama-motoru-yapimi/
Url found -> https://stackoverflow.com/questions/28558523/get-id-from-html-form-php
Url found -> https://meveseinternet.wordpress.com/2015/11/20/htaccess-ile-permalink-seo-yapimi/
Url found -> https://ocw.metu.edu.tr/course/view.php?id=248
Url found -> http://www.meggieschneider.com/php/detail.php?id=48
Url found -> https://freescience.info/books.php?id=1
Url found -> https://www.php.net/manual/tr/function.session-id.php
Url found -> http://forum.efatura.gov.tr/view.php?id=330
Url found -> https://creativeyazilim.com/blog/php-guvenlik-en-yaygin-aciklar-ve-guvenlik-onlemleri
Url found -> https://www.dafont.com/mtheme.php?id=6
Url found -> https://www.sanalicerik.com/sef-link-icin-ornek-olarak-hazirlanmis-htaccess-kodlari-dosyasi/
Url found -> https://www.mustafaercel.com/2013/09/web-sayfalarimizi-seo-linklerle-yapilandiralim/
Url found -> http://www.koddunyasi.net/makale_detay.aspx?makale_ID=254&m_KTG_ID=3&m_KTG=PHP
Url found -> http://iagcc.com/news.php?id=58
Url found -> https://www.phpr.org/php-ile-sayfalama/
Url found -> http://blog.kesdi.com/php/phpileseflink/
Url found -> https://www.laboshop.com/index.php?id=5&L=1
Url found -> https://interaliaproject.com/news.php?id=23
Url found -> http://www.czga.ro/pagina.php?id=10
Url found -> http://forum.efatura.gov.tr/view.php?id=330
Url found -> http://www.adabroker.com.tr/page.php?id=1
Url found -> http://www.koddunyasi.net/makale_detay.aspx?makale_ID=254&m_KTG_ID=3&m_KTG=PHP
Url found -> https://gs1.tobb.org.tr/menu_goster.php?Id=24&MenuId=19
Url found -> http://iagcc.com/news.php?id=58
Url found -> http://blog.kesdi.com/php/phpileseflink/
Url found -> https://www.pixheaven.net/galerie_us.php?id=22
Url found -> https://www.ismailsaygili.com.tr/2012/10/mysql-blind-injection-uygulama-giris.html
Url found -> https://yeraltidunya.blogspot.com/2015/01/sql-injection-2015-dorklar-ve-program.html
Url found -> https://www.tacc.co.il/story.php?id=9
Url found -> https://www.pixheaven.net/galerie_us.php?id=22
Url found -> https://www.ismailsaygili.com.tr/2012/10/mysql-blind-injection-uygulama-giris.html
Url found -> https://yavuz-selim.com/18/01/2016/130/php-seo-uyumlu-link-yapimi
Url found -> https://xarybdisdeegitim.wordpress.com/hazir-sql-dorklari/
Url found -> http://www.beycan.net/441/php-server-global-dizisi-degiskenleri-ve-kullanimi.html
Url found -> http://vedavet.com/urun_detay.php?id=6
Url found -> https://www.hakantasan.com/index/makaleler/94/php-session-kullanimi-oturum-yonetimi/
Url found -> http://www.erbilen.net/pdo-kullanimi/
Url found -> https://www.ggd.org.tr/sehir_efsaneleri2.php?id=47
Url found -> http://www.koppert.com.tr/sayfa.php?id=3
Url found -> http://romanianwriters.ro/s.php?id=1
Url found -> http://www.belgeler.org/hpm/html-php-mysql-giris_prg-php-giris.html
Url found -> http://www.cordoganclark.com/newsitem.php?id=8
Url found -> https://www.daniweb.com/programming/web-development/threads/392221/php-get-id-from-url
Url found -> https://dergi.mta.gov.tr/index.php?id=arsiv
Url found -> http://wurm.info/index.php?id=6
Url found -> http://www.korotonomedya.net/kor/index.php?id=6
Url found -> https://primes.utm.edu/top20/page.php?id=1
Url found -> https://gencler.org/okumalik.php?id=14
Url found -> https://www.exoticfever.com/artists.php?id=115
Url found -> https://www.youtube.com/watch?v=EHjpiu74Q0s
Url found -> https://makaleci.com/php-mysql-islemleri-ekleme-silme-duzenleme-listeleme.html
Url found -> https://ugurgelisken.com/php-ve-mysqli-dersleri-7-php-ve-mysqli-ile-crud-create-read-update-delete-uygulama-ornegi/
Url found -> https://piranha.com.tr/destek/news.php?id=87
Url found -> https://isr-tkd.com/index.php?cntr=e/news.php?id=1
Url found -> https://trod.org.tr/content.php?id=86
Url found -> http://sebilyayinevi.com/index.php?route=product/product&product_id=88
Url found -> https://www.w3schools.com/php/php_mysql_insert_lastid.asp
Url found -> http://www.javsu.com.tr/duyurular.php?id=80
Url found -> http://eduroam.giresun.edu.tr/index.php?id=192
Url found -> https://ogretimsistemi.avrasya.edu.tr/mod/page/view.php?id=2215
Url found -> https://www.kamer.org.tr/icerik_detay.php?id=57
Url found -> https://github.com/rseyf/php-id3
Url found -> https://turkcephp.wordpress.com/2011/09/03/php-ile-bulundugunuz-sayfanin-url-adresini-almak/
Url found -> https://www.tutorialrepublic.com/php-tutorial/php-mysql-last-inserted-id.php
Url found -> https://www.phpkodlari.com/kolay-web-sayfasi/ic-ice-for-foreach-kullanarak-mysqle-coklu-kayit-nasil-yapilir/
Url found -> https://help.directadmin.com/item.php?id=306
Url found -> https://www.turcas.com.tr/kupurler.php?id=74
Url found -> https://hazretimehdi.com/makale.php?id=14417
Url found -> https://phpfiddle.org/
Url found -> https://www.uni-corvinus.hu/index.php?id=44558
Url found -> https://www.killersites.com/community/index.php?/topic/3064-basic-php-system-view-edit-add-delete-records-with-mysqli/
Url found -> https://www.dailymotion.com/video/xdlcp9
Url found -> https://www.fizik.itu.edu.tr/tr/member.php?id=1
Url found -> https://siesta.com.tr/products.php?id=10
Url found -> http://www.adabroker.com.tr/page.php?id=1
Url found -> http://coda.cc/product/product.php?id=4
Url found -> https://acikders.ankara.edu.tr/course/view.php?id=26
Url found -> https://www.frmtr.com/asp-perl-php-html/5722451-php-mysql-id-ye-gore-veri-cekme-yardim.html
Url found -> https://orhanholding.com/category.php?id=25
Url found -> https://kodlab.com/BookDetail.aspx?ID=569
Url found -> https://yilmazdemir.com.tr/phpde-blog-veya-icerik-yonetim-sistemi-olusturmak
Url found -> http://www.ampak.com.tw/product.php?id=21
Url found -> https://www.mediaclick.com.tr/blog/php-nedir
Url found -> http://www.kepan.org.tr/icerik.php?id=338
Url found -> https://www.serpito.com/php-ajax-begeni-oylama-uygulamasi/
Url found -> https://www.guraysuerdem.com/php-ile-oturum-yonetimi-session/
Url found -> https://forum.shiftdelete.net/threads/php-uzantida-resim-gostermek.69351/
Url found -> http://www.harkavagrant.com/index.php?id=1
Url found -> https://www.centraline.com/partnerweb/
Url found -> http://berkeleyrecycling.org/page.php?id=1
Url found -> http://www.a-plussoft.com/en/products.php?id=1
Url found -> https://bilgisayaci.org/php-ile-veritabaninda-veri-silme/
Url found -> http://www.sallatykka.com/web/index.php?id=21
Url found -> https://www.quora.com/How-can-I-rewrite-the-URL-index-PHP-Route-account-profile-to-profile-PHP-Id-any-user-id-note-that-I-have-index-PHP-Route-account-profile
Url found -> http://www.thecoders.net/makaleoku-1-52-PHP--Session-Kullanimi.html
Url found -> https://www.inmotionhosting.com/support/website/grab-all-comments-from-database/
Url found -> https://www.facebook.com/profile.php?id=100001805730811
Url found -> http://www.enespekkaya.com/php-de-rss-olusturmak/
Url found -> http://hawkee.com/snippet/2064/
Url found -> http://www.cqfa.ca/public/index.php?id=1
Url found -> https://burakdemirtas.org/essiz-unique-id-olusturmak/
Url found -> http://www.leitner.com.tr/galeri.php?id=2
Url found -> https://www.thoughtco.com/how-to-generate-unique-id-2694169
Url found -> http://www.lxqqfy.com/e/product.php?id=MR300
Url found -> https://www.seaofstories.com/title.php?id=5193
Url found -> https://www.gib.gov.tr/index.php?id=1079&uid=kusMj3u2REeuOYBg&type=bkk
Url found -> https://www.supremacy1914.com/
Url found -> https://hacksearch.wordpress.com/2014/06/26/paypal-bitcoins-kredi-kart-sql-dorks/
Url found -> http://www.bildiklerimiz.net/Blog/PHP--MySQL-Update-islemi
Url found -> https://beltslib.net/sik-yapilan-php-hatalari.html
Url found -> https://developer.wordpress.org/reference/functions/get_the_id/
Url found -> https://www.sitepoint.com/community/t/username-in-url-instead-of-user-id-php/291913
Url found -> https://www.webloadmpstore.com/product.php?id=3
Url found -> https://kabelindo.co.id/readnews.php?id=4
Url found -> http://www.sksdb.hacettepe.edu.tr/new/post.php?id=5&title=hu-kart-talep-formlari
Url found -> http://canmose.org/sorucevap/question/php-de-quar-ile-gonderilen-id-yi-alma/
Url found -> https://smtmax.com/category.php?id=2
Url found -> http://www.oselart.com/proje-detay.php?id=4
Url found -> https://www.phpeasystep.com/workshopview.php?id=6
Url found -> https://www.meb.gov.tr/MEB_DUYURUAYRINTI.PHP?ID=6478
Url found -> https://www.bridgebase.com/store/movies/viewer.php?id=3295
Url found -> https://www.mylmz.in/genel/en-iyi-10-php-ide
Url found -> https://ilslbd.com/content.php?Id=4
Url found -> https://convivea.com/product.php?id=2
Url found -> https://www.freewordexcelpassword.com/index.php?id=download
Url found -> https://perishablepress.com/dynamic-body-class-id-php-wordpress/
Url found -> https://www.migration.gov.rw/index.php?id=7
Url found -> https://www.tr3d.com/index.php?id=dokuman
Url found -> https://sqesial.blogspot.com/2015/03/sql-ackl-site-hackleme.html
Url found -> http://phpdefteri.com/icerik/65/kayit_ekleme_3_uye_kayit.html
Url found -> https://www.stardoll.com/contest/view.php?id=4017
Url found -> https://bloody.com/en/download.php?id=6
Url found -> https://gs1.tobb.org.tr/menu_goster.php?Id=24&MenuId=19
Url found -> http://www.coda-continuum.com/product/product.php?id=4
Url found -> http://www.karpa.com.tr/index.php?p=contact&contact_id=4
Url found -> http://bilgisayar-muhendisleri.blogspot.com/2014/01/php-mysql-image-upload-etme-ve-okuma.html
Url found -> https://wordpress.stackexchange.com/q/59476
Url found -> https://codeanywhere.com/
Url found -> http://img491.yukle.tc/image.php?id=2575m.JPG
Url found -> http://www.coral-shop.com/news.php?id=220
Url found -> https://www.muratyazici.com/php-kullanici-girisi.html
Url found -> https://www.codeofaninja.com/2014/06/php-object-oriented-crud-example-oop.html
Url found -> https://hayaletinyeri.com/jquery-ile-php-kullanarak-sayfayi-yenilemeden-get-metodunu-kullanmak/
Url found -> https://www.mmproje.com.tr/projedetay.php?id=42&k=1
Url found -> http://360dizayn.com/projeler.php?id=4
Url found -> http://www.adanafikirplatformu.org/content.php?id=1
Url found -> https://mesutd.com/php-ile-mysql-veritabanina-baglanip-veri-ekleme-silme-duzenleme-ve-listeleme
Url found -> http://dogaci.com.tr/urun.php?id=61
Url found -> http://xerte.eba.gov.tr/play.php?template_id=41
Url found -> https://javpet.com.tr/page.php?id=1
Url found -> http://ibonundunyasi.blogspot.com/2016/05/sql-acgn-bulma-manuel.html
Url found -> https://w3resource.com/php/function-reference/mysqli_insert_id.php
Url found -> http://www.acyt.com.tr/page.php?id=17
Url found -> https://www.yazilimekip.com/php-ile-mysql-de-bir-tabloda-bulunan-en-son-kaydin-id-degerini-almak.html
Url found -> https://www.visualscope.com/seo-friendly-urls.html
Url found -> https://eksisozluk.com/?q=php+ide
Url found -> https://www.plus2net.com/php_tutorial/variables2.php
Url found -> https://www.jdcaravan.com/store.php?id=1
Url found -> http://limitsizbilgi.com/html-multi-input-post-php-foreach-coklu-input-gonderme-ve-kaydetme.html
Url found -> http://limitsizbilgi.com/html-multi-input-post-php-foreach-coklu-input-gonderme-ve-kaydetme.html
Url found -> https://firatyildiz.net/php-pdo-mysql-ile-login-giris-sayfasi-yapimi/
Url found -> https://dev.mysql.com/doc/apis-php/en/apis-php-mysqli.insert-id.html
Url found -> https://dwar.gen.tr/clan_info.php?clan_id=2051_1
Url found -> http://www.ugurkanerez.com/detay.php?id=332
Url found -> https://wiki.jriver.com/index.php/Id
Url found -> http://www.tdb.org.tr/tdb/v2/altsayfa_goster.php?id=14&yer_id=6
Url found -> https://www.ofisimo.com/blogdetay-php-ile-html-tasarim-parcalama-221.html
Url found -> https://www.orthphoto.net/user.php?id=1
Url found -> https://quizzzat.com/content.php?id=52
Url found -> https://kulekci.net/php-the-right-way/
Url found -> https://www.formget.com/login-form-in-php/
Url found -> https://www.mobilhanem.com/php-ile-rest-api-hazirlama-ders-2/
Url found -> http://www.ramona.com.tr/katalog.php?id=2
Url found -> https://www.freelancer.com/job-search/php-id-shop/
Url found -> http://getid3.sourceforge.net/
Url found -> https://taksimplatformu.com/haberdetay.php?id=143
Url found -> https://kb.wisc.edu/page.php?id=15141
Url found -> https://mashailalqasr.com/eng/products.php?catid=1
Url found -> http://kod.gen.tr/php-ayni-sayfada-post-islemi/
Results are saved to project directory!

<<<<<<<<<<           𝗪𝗘𝗟𝗖𝗢𝗠𝗘 𝗧𝗢 𝗫𝗖𝗧𝗥 𝗧𝗢𝗢𝗟𝗦            >>>>>>>>>>

   1) Dork Finder
   2) Admin Panel Finder
   3) Cms Finder
   4) Ip History
   5) Reverse Ip
   6) Page Viewer
   7) Proxy Finder
   8) Read Me
   9) Settings
   0) EXIT
    Main menu | Choose:


2) Admin Panel Finder
Now let’s move to the 2nd option in the tool which is Admin Panel Finder in this the developer also gave the option to change the wordlist to enhance the possibility of finding the exact Admin/Login page.

More …

Identifying Hidden SSID


Hidding your SSID will come in best practice but it’s not a full prove security measure, an attacker can easily send a de-auth packet and Identify the hidden SSID of the AP.

Setting up the environment
1
Now open airodum and analyse
2
As you can see the SSID is not showing any name
let’s anylyze that perticular AP
3
4
Now keep analysing the AP untill any new client join it, or if there is any clinet already you can just send de-auth packet and when the clinet will try to re-join the AP, we will get the SSID.
5

More …

Understand and Cracking WPA/WPA2(Enterprise)


WPA2-Enterprise has been around since 2004 and is still considered the gold standard for wireless network security, delivering over-the-air encryption and a high level of security. But don’t think that it’s gotten any easier to deploy in that time. Regardless of whether you are deploying it for the first time or a seasoned expert, there are always unique challenges ready to give you a headache.
First we need to setup our environment for which we will use Hostapd tool, which will create a fake radius server and also host the rouge AP.

More …