├── README.md ├── list.txt └── scan.py /README.md: -------------------------------------------------------------------------------- 1 | # Admin-Scanner 2 | #### ***Website Admin Panel Finder*** 3 | 4 | ## How To Install? ***(Linux/pc)*** 5 | 6 | * sudo apt install python3 7 | 8 | * sudo apt install python3-pip 9 | 10 | * sudo apt install git 11 | 12 | * git clone https://github.com/alienwhatever/Admin-Scanner.git 13 | 14 | * cd Admin-Scanner 15 | 16 | 17 | ## How to Install? ***(Termux/Android)*** 18 | 19 | * pkg update && pkg upgrade 20 | 21 | * pkg install python3 22 | 23 | * pkg install git 24 | 25 | * git clone https://github.com/alienwhatever/Admin-Scanner.git 26 | 27 | * cd Admin-Scanner 28 | 29 | ## Usage 30 | ``` 31 | author: alienwhatever 32 | credit github.com/bdblackhat for list.txt 33 | orginal-source-of-list.txt - https://github.com/bdblackhat/admin-panel-finder/blob/master/link.txt 34 | 35 | This tool is for educational and testing purposes only 36 | I am not responsible for what you do with this tool 37 | 38 | Usages: 39 | 40 | -site - Website to scan 41 | 42 | --proxy - - Scan admin panel using proxy server 43 | 44 | --t - Time delay for a thread to scan (To prevent from getting HTTP 508) 45 | 46 | --w - custom wordlist 47 | 48 | Example: 49 | ./scan.py -site example.com 50 | ./scan.py -site example.com --t 1 51 | ./scan.py -site example.com example2.com 52 | ./scan.py -site example.com --w /custom/wordlist/list.txt 53 | ./scan.py --proxy http-1.2.3.4:8080 -site example.com 54 | 55 | ``` 56 | 57 | 58 | -------------------------------------------------------------------------------- /list.txt: -------------------------------------------------------------------------------- 1 | admin.php 2 | admin.html 3 | index.php 4 | login.php 5 | login.html 6 | administrator 7 | admin 8 | adminpanel 9 | cpanel 10 | login 11 | wp-login.php 12 | administrator 13 | admins 14 | logins 15 | admin.asp 16 | login.asp 17 | adm/ 18 | admin/ 19 | admin/account.html 20 | admin/login.html 21 | admin/login.htm 22 | admin/controlpanel.html 23 | admin/controlpanel.htm 24 | admin/adminLogin.html 25 | admin/adminLogin.htm 26 | admin.htm 27 | admin.html 28 | adminitem/ 29 | adminitems/ 30 | administrator/ 31 | administrator/login.%EXT% 32 | administrator.%EXT% 33 | administration/ 34 | administration.%EXT% 35 | adminLogin/ 36 | adminlogin.%EXT% 37 | admin_area/admin.%EXT% 38 | admin_area/ 39 | admin_area/login.%EXT% 40 | manager/ 41 | superuser/ 42 | superuser.%EXT% 43 | access/ 44 | access.%EXT% 45 | sysadm/ 46 | sysadm.%EXT% 47 | superman/ 48 | supervisor/ 49 | panel.%EXT% 50 | control/ 51 | control.%EXT% 52 | member/ 53 | member.%EXT% 54 | members/ 55 | user/ 56 | user.%EXT% 57 | cp/ 58 | uvpanel/ 59 | manage/ 60 | manage.%EXT% 61 | management/ 62 | management.%EXT% 63 | signin/ 64 | signin.%EXT% 65 | log-in/ 66 | log-in.%EXT% 67 | log_in/ 68 | log_in.%EXT% 69 | sign_in/ 70 | sign_in.%EXT% 71 | sign-in/ 72 | sign-in.%EXT% 73 | users/ 74 | users.%EXT% 75 | accounts/ 76 | accounts.%EXT% 77 | bb-admin/login.%EXT% 78 | bb-admin/admin.%EXT% 79 | bb-admin/admin.html 80 | administrator/account.%EXT% 81 | relogin.htm 82 | relogin.html 83 | check.%EXT% 84 | relogin.%EXT% 85 | blog/wp-login.%EXT% 86 | user/admin.%EXT% 87 | users/admin.%EXT% 88 | registration/ 89 | processlogin.%EXT% 90 | checklogin.%EXT% 91 | checkuser.%EXT% 92 | checkadmin.%EXT% 93 | isadmin.%EXT% 94 | authenticate.%EXT% 95 | authentication.%EXT% 96 | auth.%EXT% 97 | authuser.%EXT% 98 | authadmin.%EXT% 99 | cp.%EXT% 100 | modelsearch/login.%EXT% 101 | moderator.%EXT% 102 | moderator/ 103 | controlpanel/ 104 | controlpanel.%EXT% 105 | admincontrol.%EXT% 106 | adminpanel.%EXT% 107 | fileadmin/ 108 | fileadmin.%EXT% 109 | sysadmin.%EXT% 110 | admin1.%EXT% 111 | admin1.html 112 | admin1.htm 113 | admin2.%EXT% 114 | admin2.html 115 | yonetim.%EXT% 116 | yonetim.html 117 | yonetici.%EXT% 118 | yonetici.html 119 | phpmyadmin/ 120 | myadmin/ 121 | ur-admin.%EXT% 122 | ur-admin/ 123 | Server.%EXT% 124 | Server/ 125 | wp-admin/ 126 | administr8.%EXT% 127 | administr8/ 128 | webadmin/ 129 | webadmin.%EXT% 130 | administratie/ 131 | admins/ 132 | admins.%EXT% 133 | administrivia/ 134 | Database_Administration/ 135 | useradmin/ 136 | sysadmins/ 137 | sysadmins/ 138 | admin1/ 139 | system-administration/ 140 | administrators/ 141 | pgadmin/ 142 | directadmin/ 143 | staradmin/ 144 | ServerAdministrator/ 145 | SysAdmin/ 146 | administer/ 147 | LiveUser_Admin/ 148 | sys-admin/ 149 | typo3/ 150 | panel/ 151 | cpanel/ 152 | cpanel_file/ 153 | platz_login/ 154 | rcLogin/ 155 | blogindex/ 156 | formslogin/ 157 | autologin/ 158 | manuallogin/ 159 | simpleLogin/ 160 | loginflat/ 161 | utility_login/ 162 | showlogin/ 163 | memlogin/ 164 | login-redirect/ 165 | sub-login/ 166 | wp-login/ 167 | login1/ 168 | dir-login/ 169 | login_db/ 170 | xlogin/ 171 | smblogin/ 172 | customer_login/ 173 | UserLogin/ 174 | login-us/ 175 | acct_login/ 176 | bigadmin/ 177 | project-admins/ 178 | phppgadmin/ 179 | pureadmin/ 180 | sql-admin/ 181 | radmind/ 182 | openvpnadmin/ 183 | wizmysqladmin/ 184 | vadmind/ 185 | ezsqliteadmin/ 186 | hpwebjetadmin/ 187 | newsadmin/ 188 | adminpro/ 189 | Lotus_Domino_Admin/ 190 | bbadmin/ 191 | vmailadmin/ 192 | Indy_admin/ 193 | ccp14admin/ 194 | irc-macadmin/ 195 | banneradmin/ 196 | sshadmin/ 197 | phpldapadmin/ 198 | macadmin/ 199 | administratoraccounts/ 200 | admin4_account/ 201 | admin4_colon/ 202 | radmind-1/ 203 | Super-Admin/ 204 | AdminTools/ 205 | cmsadmin/ 206 | SysAdmin2/ 207 | globes_admin/ 208 | cadmins/ 209 | phpSQLiteAdmin/ 210 | navSiteAdmin/ 211 | server_admin_small/ 212 | logo_sysadmin/ 213 | power_user/ 214 | system_administration/ 215 | ss_vms_admin_sm/ 216 | bb-admin/ 217 | panel-administracion/ 218 | instadmin/ 219 | memberadmin/ 220 | administratorlogin/ 221 | adm.%EXT% 222 | admin_login.%EXT% 223 | panel-administracion/login.%EXT% 224 | pages/admin/admin-login.%EXT% 225 | pages/admin/ 226 | acceso.%EXT% 227 | admincp/login.%EXT% 228 | admincp/ 229 | adminarea/ 230 | admincontrol/ 231 | affiliate.%EXT% 232 | adm_auth.%EXT% 233 | memberadmin.%EXT% 234 | administratorlogin.%EXT% 235 | modules/admin/ 236 | administrators.%EXT% 237 | siteadmin/ 238 | siteadmin.%EXT% 239 | adminsite/ 240 | kpanel/ 241 | vorod/ 242 | vorod.%EXT% 243 | vorud/ 244 | vorud.%EXT% 245 | adminpanel/ 246 | PSUser/ 247 | secure/ 248 | webmaster/ 249 | webmaster.%EXT% 250 | autologin.%EXT% 251 | userlogin.%EXT% 252 | admin_area.%EXT% 253 | cmsadmin.%EXT% 254 | security/ 255 | usr/ 256 | root/ 257 | secret/ 258 | admin/login.%EXT% 259 | admin/adminLogin.%EXT% 260 | moderator.php 261 | moderator.html 262 | moderator/login.%EXT% 263 | moderator/admin.%EXT% 264 | yonetici.%EXT% 265 | 0admin/ 266 | 0manager/ 267 | aadmin/ 268 | cgi-bin/login%EXT% 269 | login1%EXT% 270 | login_admin/ 271 | login_admin%EXT% 272 | login_out/ 273 | login_out%EXT% 274 | login_user%EXT% 275 | loginerror/ 276 | loginok/ 277 | loginsave/ 278 | loginsuper/ 279 | loginsuper%EXT% 280 | login%EXT% 281 | logout/ 282 | logout%EXT% 283 | secrets/ 284 | super1/ 285 | super1%EXT% 286 | super_index%EXT% 287 | super_login%EXT% 288 | supermanager%EXT% 289 | superman%EXT% 290 | superuser%EXT% 291 | supervise/ 292 | supervise/Login%EXT% 293 | super%EXT% 294 | -------------------------------------------------------------------------------- /scan.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python3 2 | 3 | from threading import Lock, Thread 4 | from requests import get 5 | from requests.exceptions import ConnectionError as fail 6 | from requests.exceptions import MissingSchema as noschema 7 | from queue import Queue 8 | from time import sleep 9 | from sys import argv 10 | 11 | 12 | proxy_enable = False 13 | 14 | 15 | msg = """ 16 | author: alienwhatever 17 | credit github.com/bdblackhat for list.txt 18 | orginal-source-of-list.txt - https://github.com/bdblackhat/admin-panel-finder/blob/master/link.txt 19 | 20 | This tool is for educational and testing purposes only 21 | I am not responsible for what you do with this tool 22 | """ 23 | 24 | msg 25 | 26 | # show usage to user 27 | if len(argv) == 1: 28 | print (msg) 29 | print ('Usages:') 30 | print (""" 31 | -site - Website to scan 32 | 33 | --proxy - - Scan admin panel using proxy server 34 | 35 | --t - Time delay for a thread to scan (To prevent from getting HTTP 508) 36 | 37 | --w - custom wordlist 38 | 39 | Example: 40 | ./{0} -site http://example.com 41 | ./{0} -site https://example.com --t 1 42 | ./{0} -site http://example.com example2.com 43 | ./{0} -site https://example.com --w /custom/wordlist/list.txt 44 | ./{0} --proxy http-1.2.3.4:8080 -site http://example.com 45 | """.format(argv[0])) 46 | exit() 47 | 48 | else: 49 | delay = 0 50 | file_to_open = 'list.txt' 51 | if '--proxy' in argv[1:]: 52 | proxy_enable = True 53 | proxyprotocol, proxyserver = argv[argv.index('--proxy')+1].split('-') 54 | print ('Using Proxy - True') 55 | 56 | if '--t' in argv[1:]: 57 | delay = int(argv[argv.index('--t')+1]) 58 | 59 | if '-site' not in argv[1:]: 60 | print ('Which site you wanna scan!!!!') 61 | exit() 62 | 63 | if '-site' in argv[1:]: 64 | check = argv[argv.index('-site')+2:] 65 | websites_to_scan = argv[argv.index('-site')+1:] 66 | for i in check: 67 | if i[:2] == '--' or i[:1] == '-': 68 | websites_to_scan = argv[argv.index('-site')+1] 69 | 70 | if '--w' in argv[1:]: 71 | file_to_open = argv[argv.index('--w')+1] 72 | # used threading things # 73 | # Lock 74 | # Thread 75 | print_lock = Lock() 76 | q = Queue() 77 | # run thread function using Queue and Thread() 78 | def thread(website): 79 | worker = q.get() 80 | try: 81 | if proxy_enable: 82 | r = get('{}{}'.format(website, worker), proxies={proxyprotocol: proxyserver}, allow_redirects=True) 83 | if not proxy_enable: 84 | r = get('{}{}'.format(website, worker)) 85 | 86 | if r.ok: 87 | print (' [Status-code - {}] Success: '.format(r.status_code), worker) 88 | 89 | except fail: 90 | print ('Connection Error') 91 | 92 | except noschema: 93 | print ('ERROR ERROR ERROR ERROR ERROR') 94 | print ('ERROR: Where is URL Scheme!!!!!!! example: https://example.com or http://example.com not exmple.com') 95 | exit() 96 | 97 | 98 | print (msg) 99 | if type(websites_to_scan) is str: 100 | websites_to_scan = [websites_to_scan] 101 | 102 | for website in websites_to_scan: 103 | if website[-1] != '/': 104 | website = website + '/' 105 | # put admin panel urls to queue 106 | with open(file_to_open, 'r') as f: 107 | for line in f: 108 | q.put(line.strip().encode().decode('utf-8')) 109 | # create thread and run till Queue is empty 110 | print ('Result for {}:'.format(website)) 111 | while not q.empty(): 112 | t = Thread(target=thread, args=(website,), daemon=True) 113 | t.start() 114 | sleep(delay) 115 | t.join() 116 | print('\n') 117 | --------------------------------------------------------------------------------