1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

[GET] Cloaker Script 2013

Discussion in 'Cloaking and Content Generators' started by TZ2011, Jan 11, 2013.

Thread Status:
Not open for further replies.
  1. TZ2011

    TZ2011 Senior Member

    Joined:
    Jun 26, 2011
    Messages:
    832
    Likes Received:
    863
    Occupation:
    Cleaning servers
    I see around here is circulating very old version of the script for redirecting bots and visitors, used mostly for Twitter. I made my version of the script, heavily updated, added some functions etc so it can be used to protect money sites from more traffic sources. It is all packed in one standalone file.

    This is free version of the cloaker script, updated yesterday.

    Script - "Hacker" Version

    Updates:
    - Added no-cache headers (I am still getting google crawler hits from domains where script was active 2 days back in April 2012, this will prevent caching)
    - Added mobile recognition, optional usage (if you don't want to redirect mobile users, switch true to false)
    - Added option to rotate multi links for bots, mobile sites/offers and money sites
    - IP recognition - It works with ranges (123.123.123.0-123.123.123.255) and CIDR (123.123.123.0/24)
    - Updated list of crawlers, bots and IP's from various forums and sites for tracking bots, botnets, malware domains etc
    - logging of UA's, IP's, HOST's and Referrers
    - Logs separated in 3 files: regular desktop visitors, mobile visitors and bots/ip's - much easier to see number of real visitors
    - Logs can be sent every X hours to hotmail or gmail, after sending they will be removed from server (you can disable logs if you don't need them)
    - Script can erase itself after X hours or days from the server (optional, if you are doing some funny stuff with xss, rfi etc)
    - OPTIONAL - index.php have his own links for rotating, it is not necessary to use this file, its up to you.



    Download:
    Code:
    http://www.mediafire.com/?0crx6w7bw8ssoqs
    Virus Total
    Code:
    https://www.virustotal.com/file/ef61760281575194d1709139e83d11b7aaf88387292fa228b5a70173c43e1aa5/analysis/1357917824/
    SHA256: ef61760281575194d1709139e83d11b7aaf88387292fa228b5a70173c43e1aa5
    File name: CloakScript2013_www.imbuster.net.zip
    Detection ratio: 0 / 46
    Analysis date: 2013-01-11 15:23:44 UTC ( 0 minutes ago )
     
    • Thanks Thanks x 64
    Last edited: Jan 11, 2013
  2. SnowWar

    SnowWar Power Member

    Joined:
    Mar 3, 2012
    Messages:
    595
    Likes Received:
    48
    Occupation:
    Pure student :p
    This is nice overall. Going to hit it.
     
  3. tompots

    tompots Elite Member Premium Member

    Joined:
    Dec 11, 2011
    Messages:
    4,352
    Likes Received:
    3,955
    Gender:
    Male
    Occupation:
    Full Time Bot Developer
    Location:
    Professional Botters
    Home Page:
  4. TZ2011

    TZ2011 Senior Member

    Joined:
    Jun 26, 2011
    Messages:
    832
    Likes Received:
    863
    Occupation:
    Cleaning servers
    - Upload script to your FTP server
    - Rename script to something convinient, like go.php or visit.php
    - Send traffic to script - www.yourdomain.com/go.php
    Script will separate traffic - bots and current ip's in filter will go to safe sites, real visitors to your money sites.
    - This should be used with throwaway domains if most of your traffic is from Twitter, they are banning domains after a while.
    - It is very easy to update script with your own ip's and bots, just add them or remove what you think it is not necessary to block.
    - Time of sending logs to email can be changed - instead of currently 6 hours you can use 1 hour, 2 hours, 45 minutes or whatever.

    -This can be used like basic firewall, protection from known botnet/malware spreaders/spam etc ip ranges and networks. Bunch of them is already in this script but additional research on security sites and implementing into ip filter can make this script your main protection before scanners or whatever even come to your main sites.

    - Also keep in mind that current script , for some specific reasons, is not allowing search engines to visit and cashe the script. If you are driving legitimate traffic to it, you need to remove google, yahoo, ask, teoma, duckduckgo, baidu etc from the list of bots.
     
    • Thanks Thanks x 12
    Last edited: Jan 12, 2013
  5. iglow

    iglow Elite Member

    Joined:
    Feb 20, 2009
    Messages:
    2,081
    Likes Received:
    856
    Home Page:
    ddint test yet but just from seeing what u listed as 'what it does' it sounds totally leet.
    great share the way igl00 likes it!
     
    • Thanks Thanks x 1
    Last edited: Jan 12, 2013
  6. tompots

    tompots Elite Member Premium Member

    Joined:
    Dec 11, 2011
    Messages:
    4,352
    Likes Received:
    3,955
    Gender:
    Male
    Occupation:
    Full Time Bot Developer
    Location:
    Professional Botters
    Home Page:
    Thanks for shedding some lite on the subject for me.
     
    • Thanks Thanks x 1
  7. z3zim4

    z3zim4 Newbie

    Joined:
    Oct 28, 2008
    Messages:
    42
    Likes Received:
    10
    Location:
    Here
    Great! Maybe I should try how this work with google/bing (don't redirect bots at all, redirect humans to money site) :D
     
  8. TZ2011

    TZ2011 Senior Member

    Joined:
    Jun 26, 2011
    Messages:
    832
    Likes Received:
    863
    Occupation:
    Cleaning servers
    Yes, you should try. Instead of collecting thousands of their ip's and checking their efficiency, you can simply block them with user agent and host blocking (not in this version)

    Traffic from bing is blocked with 'bingbot', 'msnbot' and 'msrbot', for google currently I have blocked 'googlebot','googlealerts','google web preview', but adding more general name 'google' to the list would block other google crawlers and services - AdsBot-Google, AppEngine-Google, Google-Feedfetcher, Mediapartners-Google (adsense) etc

    Keep in mind that those are bots that they are legally presenting in their user agent strings. If they want to check something really shady they work with manual reviewers, loading your pages from different browsers, with different ua's, from some ip's not registered officially like their ranges.
     
  9. dontedro

    dontedro BANNED BANNED

    Joined:
    Jan 16, 2011
    Messages:
    182
    Likes Received:
    35
    Will try this on facebook ads, Hope to be ok and not to have some problems there
     
  10. TZ2011

    TZ2011 Senior Member

    Joined:
    Jun 26, 2011
    Messages:
    832
    Likes Received:
    863
    Occupation:
    Cleaning servers
    Not sure do you want to block something specific from facebook ads but script is tailored mostly for twitter, so for other traffic sources I recommend that first few days you send traffic through the script on totally whitehat pages and see which user agents/bots and hosts are logged, and later to decide what to add in filters and what you need to pass through.
     
    • Thanks Thanks x 1
  11. skibio

    skibio Registered Member

    Joined:
    Apr 27, 2008
    Messages:
    94
    Likes Received:
    4
    Hey nice script adn work like charm but i want something like that when i send some links via emails can someone point me how to do link like that :
    HTML:
    http://website.com/btysev319120-512490008i4/--IHIQHT---1066538-ia2l/---412696---7776209-yjlt/513983/4312/1000-007-2_5-13/1000/your.html
     
  12. TZ2011

    TZ2011 Senior Member

    Joined:
    Jun 26, 2011
    Messages:
    832
    Likes Received:
    863
    Occupation:
    Cleaning servers
    Don't understand your question. But link that you posted is basically website.com/folder name/folder name/folder name/folder name/folder name/folder name/folder name/your.html
     
  13. skibio

    skibio Registered Member

    Joined:
    Apr 27, 2008
    Messages:
    94
    Likes Received:
    4
    hey, here is another example, sometimes i receive in my email box CPA offers Cloaked like that >>

    HTML:
    http://website.com/378078/172325826/V2RXblxyQ3RGdUdySnhOYFFpXG1aaEZoW2xUZFNr3023s1o714n1185172
    How can i do something like that?
     
  14. TZ2011

    TZ2011 Senior Member

    Joined:
    Jun 26, 2011
    Messages:
    832
    Likes Received:
    863
    Occupation:
    Cleaning servers
    Look, this script is doing redirects for specific traffic coming from specific places, your links are not connected with this type of script at all
     
    Last edited: Jan 13, 2013
  15. FaKeeRa

    FaKeeRa Newbie

    Joined:
    May 30, 2009
    Messages:
    12
    Likes Received:
    0
    thanks
     
  16. lazaraus

    lazaraus Newbie

    Joined:
    Jan 27, 2008
    Messages:
    3
    Likes Received:
    1
    Recently my affiliate discovered the traffic i was sending was coming from a redirect URL[through a cloaked site].Redirects are against their terms of service and now my sales and commissions are a big 0.I s there any way i can trick them into thinking my traffic is coming directly from my referral URL?
     
  17. nemessis

    nemessis Newbie

    Joined:
    Apr 3, 2010
    Messages:
    35
    Likes Received:
    1
    Will try and report back. Cheers bud
     
  18. TZ2011

    TZ2011 Senior Member

    Joined:
    Jun 26, 2011
    Messages:
    832
    Likes Received:
    863
    Occupation:
    Cleaning servers
  19. timmon

    timmon Newbie

    Joined:
    Sep 11, 2012
    Messages:
    27
    Likes Received:
    2
    Occupation:
    Web-programmer PHP,.NET
    Location:
    Russia
    Home Page:
    Traffic Direction System (TDS) - this type of programm redirect user by different affiliate urls. Filter users by ip (geoip), user agent, browser languages and etc. and redirect to different urls. For the bots view page, or 403 forbitten.
     
  20. TZ2011

    TZ2011 Senior Member

    Joined:
    Jun 26, 2011
    Messages:
    832
    Likes Received:
    863
    Occupation:
    Cleaning servers
    Cloaker - Redirector Script updated - added redirecting of hosts (bad hosts from various blacklists, cloud servers etc) and added rotating of time in past to vary footprints - on every connection different date is set

    Download:

    Code:
    https://www.box.com/s/yg3cut2ipnm5xvdzwzfl

    Scan:

    Code:
    https://www.virustotal.com/file/719451eb8cbcfd315a2f979e6634ad2183b1a14f2d948caff92bc149c624fbda/analysis/1360733496/
    SHA256: 719451eb8cbcfd315a2f979e6634ad2183b1a14f2d948caff92bc149c624fbda
    File name: Cloaker-Redirector Script 2013 - update 6.2.2013.zip
    Detection ratio: 0 / 45
    Analysis date: 2013-02-13 05:31:36 UTC ( 1 minute ago )
     
    • Thanks Thanks x 4
Thread Status:
Not open for further replies.