· 6 years ago · Nov 21, 2019, 01:34 PM
1<?php
2for ($i=0;$i<=1;$i++){
3$api_key="MASUKAN API KEY DARI ANTI-CAPCHA";
4$password='Qwerty123@';
5$cookie=get_cookie();
6$capcha = capcha($api_key);
7$nama = gen_nama();
8$domain=array("tempmail.win","spambox.xyz");
9$email=str_replace(' ', '', strtolower($nama.''.mt_rand(0,999).'@'.$domain[mt_rand(0,1)]));
10$ktp='5204'.mt_rand(1,9).''.mt_rand(1,8).''.mt_rand(1,6).'1128900'.mt_rand(0,9).''.mt_rand(0,9);
11$csrf=get_between($cookie, 'decide_csrf" value="', '" /><input');
12$session=get_between($cookie, 'Set-Cookie: decide_session=', '; path=/;');
13$device_id=get_between($cookie, 'Set-Cookie: deviceId=', '; Max-Age=');
14$post_data=post_data($device_id,$session,$nama,$ktp,$email,$capcha,$csrf,$password);
15echo "Mendaftarkan ".$email."|".$password." = ";
16$status=get_between($post_data, '"message":"', '","');
17if ($status == 'success'){
18echo "Sukses\n";
19$simpan =fopen('result.txt', 'a');
20fwrite($simpan, "|".$email."=".$password."\n");
21}
22else{
23echo "Gagal (".get_between($post_data, '"message":"', '","').")\n";
24}}
25function get_cookie(){
26$c = curl_init("https://www.marlboro.id/auth/register");
27 curl_setopt($c, CURLOPT_FOLLOWLOCATION, true);
28 curl_setopt($c, CURLOPT_SSL_VERIFYPEER, false);
29 curl_setopt($c, CURLOPT_SSL_VERIFYHOST, 0);
30 curl_setopt($c, CURLOPT_MAXREDIRS, 15);
31 curl_setopt($c, CURLOPT_TIMEOUT, 30);
32 curl_setopt($c, CURLOPT_ENCODING, "");
33 curl_setopt($c, CURLOPT_CUSTOMREQUEST, "GET");
34 curl_setopt($c, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_1);
35 curl_setopt($c, CURLOPT_RETURNTRANSFER, 1);
36 curl_setopt($c, CURLOPT_HEADER, true);
37 $response = curl_exec($c);
38 return $response;
39}
40
41function gen_nama(){
42$c = curl_init("https://randomuser.me/api/?inc=name&nat=us");
43 curl_setopt($c, CURLOPT_FOLLOWLOCATION, true);
44 curl_setopt($c, CURLOPT_SSL_VERIFYPEER, false);
45 curl_setopt($c, CURLOPT_SSL_VERIFYHOST, 0);
46 curl_setopt($c, CURLOPT_MAXREDIRS, 15);
47 curl_setopt($c, CURLOPT_TIMEOUT, 30);
48 curl_setopt($c, CURLOPT_ENCODING, "");
49 curl_setopt($c, CURLOPT_CUSTOMREQUEST, "GET");
50 curl_setopt($c, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_1);
51 curl_setopt($c, CURLOPT_RETURNTRANSFER, 1);
52 curl_setopt($c, CURLOPT_HEADER, true);
53 $response = curl_exec($c);
54 $f=get_between($response, '"first":"', '"');
55 $l=get_between($response, '"last":"', '"');
56 return $f.' '.$l;
57}
58 function capcha($api_key){
59$c = curl_init("https://www.servandos.us/index.php?key=".$api_key);
60 curl_setopt($c, CURLOPT_FOLLOWLOCATION, true);
61 curl_setopt($c, CURLOPT_SSL_VERIFYPEER, false);
62 curl_setopt($c, CURLOPT_SSL_VERIFYHOST, 0);
63 curl_setopt($c, CURLOPT_ENCODING, "");
64 curl_setopt($c, CURLOPT_CUSTOMREQUEST, "GET");
65 curl_setopt($c, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_1);
66 curl_setopt($c, CURLOPT_RETURNTRANSFER, 1);
67 curl_setopt($c, CURLOPT_HEADER, true);
68 $response = curl_exec($c);
69 $capcha=get_between($response, 'token result: ', '}');
70 return $capcha;
71}
72
73function post_data($device_id,$session,$nama,$ktp,$email,$capcha,$csrf,$password){
74$header = array();
75$header[] = "Host: www.marlboro.id";
76$header[] = "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Firefox/68.0";
77$header[] = "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8";
78$header[] = "Accept-Language: en-US,en;q=0.5";
79$header[] = "Accept: application/json";
80$header[] = "Accept-Encoding: gzip, deflate, br";
81$header[] = "DNT: 1";
82$header[] = "Connection: keep-alive";
83$header[] = "Upgrade-Insecure-Requests: 1";
84$header[] = 'Cookie: deviceId='.$device_id.'; decide_session='.$session.'; insdrSV=1; scs=%7B%22t%22%3A1%7D; ins-gaSSId=fdc5ea30-c439-e8e4-e41e-9a1e27d707bf_1567371798; ins-mig-done=1; _p1K4r_=true; pikar_redirect=true';
85$c = curl_init("https://www.marlboro.id/auth/register/");
86 curl_setopt($c, CURLOPT_FOLLOWLOCATION, true);
87 curl_setopt($c, CURLOPT_SSL_VERIFYPEER, false);;
88 curl_setopt($c, CURLOPT_POSTFIELDS, 'name='.$nama.'&ktp_number='.$ktp.'&email='.$email.'&password='.$password.'&ref_email=&t_and_c=on&g-recaptcha-response='.$capcha.'&decide_csrf='.$csrf.'&ref_uri=/¶m=&sitekey=6LfFZpEUAAAAAAOeeFUdj-v_pUMb28yoq6SyjBta');
89 curl_setopt($c, CURLOPT_POST, true);
90 curl_setopt($c, CURLOPT_ENCODING, "");
91 curl_setopt($c, CURLOPT_SSL_VERIFYHOST, 0);
92 curl_setopt($c, CURLOPT_RETURNTRANSFER, 1);
93 curl_setopt($c, CURLOPT_HEADER, true);
94 curl_setopt($c, CURLOPT_HTTPHEADER, $header);
95 $response = curl_exec($c);
96 $httpcode = curl_getinfo($c);
97 if (!$httpcode)
98 return false;
99 else {
100 $header = substr($response, 0, curl_getinfo($c, CURLINFO_HEADER_SIZE));
101 $body = substr($response, curl_getinfo($c, CURLINFO_HEADER_SIZE));
102 }
103 $json = json_decode($body, true);
104
105 return $response;
106}
107function get_between($string, $start, $end)
108 {
109 $string = " ".$string;
110 $ini = strpos($string,$start);
111 if ($ini == 0) return "";
112 $ini += strlen($start);
113 $len = strpos($string,$end,$ini) - $ini;
114 return substr($string,$ini,$len);
115 }