Embedded Files
<!DOCTYPE html>
<!DOCTYPE html>
<html lang="pt-BR">
<html lang="pt-BR">
<head>
<head>
<meta charset="UTF-8" />
<meta charset="UTF-8" />
<title>Pesquisa por Palavra-Chave — WebForce</title>
<title>Pesquisa por Palavra-Chave — WebForce</title>
<style>
<style>
/* estilo geral */
/* estilo geral */
:root{
:root{
--bg:#0b0b0b;
--bg:#0b0b0b;
--panel:#021002;
--panel:#021002;
--accent:#00ff6a;
--accent:#00ff6a;
--muted:#66ffa0;
--muted:#66ffa0;
--text:#dfeee0;
--text:#dfeee0;
}
}
html,body{height:100%; margin:0;}
html,body{height:100%; margin:0;}
body {
body {
font-family: Arial, sans-serif;
font-family: Arial, sans-serif;
padding: 2rem;
padding: 2rem;
background: var(--bg);
background: var(--bg);
color: var(--text);
color: var(--text);
box-sizing: border-box;
box-sizing: border-box;
}
}
.container{
.container{
max-width: 900px;
max-width: 900px;
margin: 0 auto;
margin: 0 auto;
}
}
label { display:block; margin-top:8px; color:#cfeed8; font-size:14px; }
label { display:block; margin-top:8px; color:#cfeed8; font-size:14px; }
input, button {
input, button {
margin: 0.5rem 0;
margin: 0.5rem 0;
padding: 0.5rem;
padding: 0.5rem;
width: 100%;
width: 100%;
max-width: 420px;
max-width: 420px;
box-sizing: border-box;
box-sizing: border-box;
border-radius:6px;
border-radius:6px;
border:1px solid #2b2b2b;
border:1px solid #2b2b2b;
background:#141414;
background:#141414;
color:var(--text);
color:var(--text);
font-size:14px;
font-size:14px;
}
}
button { cursor:pointer; }
button { cursor:pointer; }
h2 { color:#9fffb4; margin:0 0 8px 0; }
h2 { color:#9fffb4; margin:0 0 8px 0; }
.top-row { display:flex; gap:12px; align-items:flex-end; flex-wrap:wrap; margin-bottom:12px; }
.top-row { display:flex; gap:12px; align-items:flex-end; flex-wrap:wrap; margin-bottom:12px; }
.top-row > * { flex: 1 1 220px; }
.top-row > * { flex: 1 1 220px; }
/* painel / terminal (INTEGRADO: sem fixed) */
/* painel / terminal (INTEGRADO: sem fixed) */
#hacker-frame {
#hacker-frame {
position: relative;
position: relative;
margin-top: 22px;
margin-top: 22px;
width: 100%;
width: 100%;
background: linear-gradient(180deg, var(--panel) 0%, rgba(0,0,0,0.88) 100%);
background: linear-gradient(180deg, var(--panel) 0%, rgba(0,0,0,0.88) 100%);
color: var(--accent);
color: var(--accent);
border: 1px solid rgba(0,255,106,0.12);
border: 1px solid rgba(0,255,106,0.12);
font-family: "Courier New", monospace;
font-family: "Courier New", monospace;
font-size: 13px;
font-size: 13px;
box-shadow: 0 6px 26px rgba(0,0,0,0.7);
box-shadow: 0 6px 26px rgba(0,0,0,0.7);
padding: 12px;
padding: 12px;
border-radius: 8px;
border-radius: 8px;
}
}
#hacker-frame h3 { margin:0 0 8px 0; font-size:15px; color:#9affb8; }
#hacker-frame h3 { margin:0 0 8px 0; font-size:15px; color:#9affb8; }
.terminal {
.terminal {
background: rgba(0,0,0,0.18);
background: rgba(0,0,0,0.18);
padding: 8px;
padding: 8px;
height: 160px;
height: 160px;
overflow: auto;
overflow: auto;
border: 1px solid #003300;
border: 1px solid #003300;
color: var(--accent);
color: var(--accent);
line-height: 1.25;
line-height: 1.25;
font-size: 12px;
font-size: 12px;
border-radius:4px;
border-radius:4px;
}
}
.hacker-row { display:flex; gap:6px; margin-top:8px; align-items:center; flex-wrap:wrap; }
.hacker-row { display:flex; gap:6px; margin-top:8px; align-items:center; flex-wrap:wrap; }
.hacker-row input[type="text"] { flex:1; padding:8px; background:#021; color:#9affb8; border:1px solid #004400; border-radius:6px; min-width:160px; }
.hacker-row input[type="text"] { flex:1; padding:8px; background:#021; color:#9affb8; border:1px solid #004400; border-radius:6px; min-width:160px; }
.hacker-row button { padding:8px 10px; background:#002a00; color:var(--accent); border:1px solid #004400; border-radius:6px; }
.hacker-row button { padding:8px 10px; background:#002a00; color:var(--accent); border:1px solid #004400; border-radius:6px; }
.controls { display:flex; gap:12px; margin-top:10px; align-items:center; flex-wrap:wrap; }
.controls { display:flex; gap:12px; margin-top:10px; align-items:center; flex-wrap:wrap; }
.muted { color:var(--muted); opacity:0.8; font-size:12px; }
.muted { color:var(--muted); opacity:0.8; font-size:12px; }
.tiny { font-size:12px; color:#7effc3; display:flex; gap:6px; align-items:center; }
.tiny { font-size:12px; color:#7effc3; display:flex; gap:6px; align-items:center; }
.query-list { margin-top:8px; max-height:220px; overflow:auto; border:1px dashed rgba(0,255,100,0.06); padding:8px; background:rgba(0,0,0,0.12); border-radius:6px; }
.query-list { margin-top:8px; max-height:220px; overflow:auto; border:1px dashed rgba(0,255,100,0.06); padding:8px; background:rgba(0,0,0,0.12); border-radius:6px; }
.query-item { padding:6px 4px; border-bottom:1px dashed rgba(0,255,100,0.03); display:flex; justify-content:space-between; gap:8px; align-items:center; }
.query-item { padding:6px 4px; border-bottom:1px dashed rgba(0,255,100,0.03); display:flex; justify-content:space-between; gap:8px; align-items:center; }
.query-item:last-child { border-bottom:0; }
.query-item:last-child { border-bottom:0; }
.qtext { color:#baffc1; font-size:13px; flex:1; word-break:break-word; padding-right:8px; }
.qtext { color:#baffc1; font-size:13px; flex:1; word-break:break-word; padding-right:8px; }
.qbtn { background:#003300; color:#bfffd3; border:1px solid #006600; padding:6px 8px; border-radius:6px; cursor:pointer; margin-left:6px; font-size:13px; }
.qbtn { background:#003300; color:#bfffd3; border:1px solid #006600; padding:6px 8px; border-radius:6px; cursor:pointer; margin-left:6px; font-size:13px; }
.footer-actions { display:flex; gap:8px; margin-top:8px; flex-wrap:wrap; }
.footer-actions { display:flex; gap:8px; margin-top:8px; flex-wrap:wrap; }
@keyframes scan { 0% { background-position: 0 0; } 100% { background-position: 0 160px; } }
@keyframes scan { 0% { background-position: 0 0; } 100% { background-position: 0 160px; } }
#hacker-frame::before{
#hacker-frame::before{
content:"";
content:"";
position:absolute;
position:absolute;
left:0; right:0; top:0; bottom:0;
left:0; right:0; top:0; bottom:0;
background-image: linear-gradient(0deg, rgba(0,255,120,0.02) 1px, transparent 1px);
background-image: linear-gradient(0deg, rgba(0,255,120,0.02) 1px, transparent 1px);
background-size: 100% 8px;
background-size: 100% 8px;
pointer-events:none;
pointer-events:none;
animation: scan 16s linear infinite;
animation: scan 16s linear infinite;
border-radius:8px;
border-radius:8px;
z-index:0;
z-index:0;
mix-blend-mode:overlay;
mix-blend-mode:overlay;
}
}
/* responsividade */
/* responsividade */
@media (max-width:700px){
@media (max-width:700px){
.top-row { flex-direction:column; align-items:stretch; }
.top-row { flex-direction:column; align-items:stretch; }
input,button { max-width:100%; }
input,button { max-width:100%; }
}
}
</style>
</style>
</head>
</head>
<body>
<body>
<div class="container">
<div class="container">
<h2>Pesquisar Documentos Relacionados</h2>
<h2>Pesquisar Documentos Relacionados</h2>
<div class="top-row">
<div class="top-row">
<div>
<div>
<label for="baseUrl">Link Pai:</label>
<label for="baseUrl">Link Pai:</label>
<input type="url" id="baseUrl" placeholder="Ex: https://exemplo.com.br" />
<input type="url" id="baseUrl" placeholder="Ex: https://exemplo.com.br" />
</div>
</div>
<div>
<div>
<label for="keyword">Palavra-Chave:</label>
<label for="keyword">Palavra-Chave:</label>
<input type="text" id="keyword" placeholder="Ex: relatório financeiro" />
<input type="text" id="keyword" placeholder="Ex: relatório financeiro" />
</div>
</div>
<div style="min-width:120px;">
<div style="min-width:120px;">
<label style="visibility:hidden">btn</label>
<label style="visibility:hidden">btn</label>
<button onclick="pesquisar()">Pesquisar</button>
<button onclick="pesquisar()">Pesquisar</button>
</div>
</div>
</div>
</div>
<!-- painel hacker INTEGRADO abaixo da pesquisa -->
<!-- painel hacker INTEGRADO abaixo da pesquisa -->
<div id="hacker-frame" aria-hidden="false">
<div id="hacker-frame" aria-hidden="false">
<h3>Terminal — WebForce (modo seguro)</h3>
<h3>Terminal — WebForce (modo seguro)</h3>
<div class="terminal" id="hacker-terminal" role="log" aria-live="polite"></div>
<div class="terminal" id="hacker-terminal" role="log" aria-live="polite"></div>
<div class="hacker-row">
<div class="hacker-row">
<input id="hf-seed" type="text" placeholder="lista de palavras-chave, separadas por ;" value="relatório;planilha;financeiro;contrato" />
<input id="hf-seed" type="text" placeholder="lista de palavras-chave, separadas por ;" value="relatório;planilha;financeiro;contrato" />
<button id="hf-generate">Gerar</button>
<button id="hf-generate">Gerar</button>
</div>
</div>
<div class="controls">
<div class="controls">
<label class="tiny"><input id="hf-open-tabs" type="checkbox"/> Abrir abas</label>
<label class="tiny"><input id="hf-open-tabs" type="checkbox"/> Abrir abas</label>
<label class="tiny"><input id="hf-simulate" type="checkbox" checked/> Simular</label>
<label class="tiny"><input id="hf-simulate" type="checkbox" checked/> Simular</label>
<label class="tiny"><input id="hf-include-common" type="checkbox" checked/> Incluir variações comuns</label>
<label class="tiny"><input id="hf-include-common" type="checkbox" checked/> Incluir variações comuns</label>
<button id="hf-run" style="flex:1; min-width:160px;">Executar (seguro)</button>
<button id="hf-run" style="flex:1; min-width:160px;">Executar (seguro)</button>
</div>
</div>
<div class="muted" style="margin-top:8px">
<div class="muted" style="margin-top:8px">
Variações incluídas: site:, "frase exata", intitle:, inurl:, intext:, filetype:, ext:, OR, -exclusões, AROUND(n). Uso responsável.
Variações incluídas: site:, "frase exata", intitle:, inurl:, intext:, filetype:, ext:, OR, -exclusões, AROUND(n). Uso responsável.
</div>
</div>
<div class="query-list" id="hf-queries" aria-live="polite"></div>
<div class="query-list" id="hf-queries" aria-live="polite"></div>
<div class="footer-actions">
<div class="footer-actions">
<button id="hf-export" class="qbtn">Exportar .txt</button>
<button id="hf-export" class="qbtn">Exportar .txt</button>
<button id="hf-clear" class="qbtn">Limpar</button>
<button id="hf-clear" class="qbtn">Limpar</button>
</div>
</div>
</div>
</div>
<!-- fim painel -->
<!-- fim painel -->
</div>
</div>
<script>
<script>
// Função original única: monta site:domínio + keyword e abre pesquisa no Google
// Função original única: monta site:domínio + keyword e abre pesquisa no Google
function pesquisar() {
function pesquisar() {
const baseUrl = document.getElementById("baseUrl").value.trim();
const baseUrl = document.getElementById("baseUrl").value.trim();
const keyword = document.getElementById("keyword").value.trim();
const keyword = document.getElementById("keyword").value.trim();
if (!baseUrl || !keyword) {
if (!baseUrl || !keyword) {
alert("Por favor, preencha ambos os campos.");
alert("Por favor, preencha ambos os campos.");
return;
return;
}
}
try {
try {
const urlObj = new URL(baseUrl);
const urlObj = new URL(baseUrl);
const domain = urlObj.hostname;
const domain = urlObj.hostname;
const googleQuery = encodeURIComponent(`site:${domain} ${keyword}`);
const googleQuery = encodeURIComponent(`site:${domain} ${keyword}`);
const googleUrl = `https://www.google.com/search?q=${googleQuery}`;
const googleUrl = `https://www.google.com/search?q=${googleQuery}`;
window.open(googleUrl, "_blank");
window.open(googleUrl, "_blank");
} catch (error) {
} catch (error) {
alert("URL inválida. Por favor, verifique o formato.");
alert("URL inválida. Por favor, verifique o formato.");
}
}
}
}
(function(){
(function(){
const term = document.getElementById('hacker-terminal');
const term = document.getElementById('hacker-terminal');
const seed = document.getElementById('hf-seed');
const seed = document.getElementById('hf-seed');
const btnGen = document.getElementById('hf-generate');
const btnGen = document.getElementById('hf-generate');
const btnRun = document.getElementById('hf-run');
const btnRun = document.getElementById('hf-run');
const openTabsCheckbox = document.getElementById('hf-open-tabs');
const openTabsCheckbox = document.getElementById('hf-open-tabs');
const simulateCheckbox = document.getElementById('hf-simulate');
const simulateCheckbox = document.getElementById('hf-simulate');
const includeCommon = document.getElementById('hf-include-common');
const includeCommon = document.getElementById('hf-include-common');
const qlist = document.getElementById('hf-queries');
const qlist = document.getElementById('hf-queries');
const btnExport = document.getElementById('hf-export');
const btnExport = document.getElementById('hf-export');
const btnClear = document.getElementById('hf-clear');
const btnClear = document.getElementById('hf-clear');
function logLine(text){
function logLine(text){
const p = document.createElement('div');
const p = document.createElement('div');
p.textContent = text;
p.textContent = text;
term.appendChild(p);
term.appendChild(p);
term.scrollTop = term.scrollHeight;
term.scrollTop = term.scrollHeight;
}
}
function clearQueriesDisplay(){ qlist.innerHTML = ''; }
function clearQueriesDisplay(){ qlist.innerHTML = ''; }
function gerarQueriesFor(keyword, sitePrefix) {
function gerarQueriesFor(keyword, sitePrefix) {
const k = keyword.trim();
const k = keyword.trim();
if (!k) return [];
if (!k) return [];
const q = [];
const q = [];
// Básicas
// Básicas
q.push(sitePrefix + k);
q.push(sitePrefix + k);
q.push(sitePrefix + `"${k}"`);
q.push(sitePrefix + `"${k}"`);
q.push(sitePrefix + k + ' arquivo OR pdf');
q.push(sitePrefix + k + ' arquivo OR pdf');
q.push(sitePrefix + 'filetype:pdf "' + k + '"');
q.push(sitePrefix + 'filetype:pdf "' + k + '"');
q.push(sitePrefix + 'intitle:"' + k + '"');
q.push(sitePrefix + 'intitle:"' + k + '"');
q.push(sitePrefix + 'inurl:' + k);
q.push(sitePrefix + 'inurl:' + k);
q.push(sitePrefix + 'intext:"' + k + '"');
q.push(sitePrefix + 'intext:"' + k + '"');
// Avançadas / combinadas
// Avançadas / combinadas
q.push(sitePrefix + '"' + k + '" filetype:pdf OR filetype:doc OR filetype:xls');
q.push(sitePrefix + '"' + k + '" filetype:pdf OR filetype:doc OR filetype:xls');
q.push(sitePrefix + 'intitle:"' + k + '" filetype:pdf');
q.push(sitePrefix + 'intitle:"' + k + '" filetype:pdf');
q.push(sitePrefix + 'inurl:"' + k + '" filetype:pdf');
q.push(sitePrefix + 'inurl:"' + k + '" filetype:pdf');
q.push(sitePrefix + '"' + k + '" -site:facebook.com -site:twitter.com');
q.push(sitePrefix + '"' + k + '" -site:facebook.com -site:twitter.com');
q.push(sitePrefix + '"' + k + '" OR "' + k + ' resumo"');
q.push(sitePrefix + '"' + k + '" OR "' + k + ' resumo"');
q.push(sitePrefix + '"' + k + '" AROUND(5) "relatório"');
q.push(sitePrefix + '"' + k + '" AROUND(5) "relatório"');
// Extensões e filtros
// Extensões e filtros
q.push(sitePrefix + k + ' ext:pdf');
q.push(sitePrefix + k + ' ext:pdf');
q.push(sitePrefix + k + ' ext:xls OR ext:xlsx OR ext:csv');
q.push(sitePrefix + k + ' ext:xls OR ext:xlsx OR ext:csv');
// Informativos
// Informativos
if (sitePrefix) {
if (sitePrefix) {
const host = sitePrefix.replace(/^site:/,'').trim();
const host = sitePrefix.replace(/^site:/,'').trim();
q.push('cache:' + host);
q.push('cache:' + host);
q.push('related:' + host);
q.push('related:' + host);
}
}
q.push(sitePrefix + '"' + k + '" -site:linkedin.com -site:youtube.com');
q.push(sitePrefix + '"' + k + '" -site:linkedin.com -site:youtube.com');
return Array.from(new Set(q.filter(Boolean)));
return Array.from(new Set(q.filter(Boolean)));
}
}
function renderQueries(queries){
function renderQueries(queries){
clearQueriesDisplay();
clearQueriesDisplay();
queries.forEach((q, idx) => {
queries.forEach((q, idx) => {
const div = document.createElement('div');
const div = document.createElement('div');
div.className = 'query-item';
div.className = 'query-item';
const span = document.createElement('div');
const span = document.createElement('div');
span.className = 'qtext';
span.className = 'qtext';
span.textContent = q;
span.textContent = q;
const btnWrap = document.createElement('div');
const btnWrap = document.createElement('div');
const openBtn = document.createElement('button');
const openBtn = document.createElement('button');
openBtn.className = 'qbtn';
openBtn.className = 'qbtn';
openBtn.textContent = 'Abrir';
openBtn.textContent = 'Abrir';
openBtn.title = 'Abrir no Google';
openBtn.title = 'Abrir no Google';
openBtn.onclick = () => {
openBtn.onclick = () => {
const url = 'https://www.google.com/search?q=' + encodeURIComponent(q);
const url = 'https://www.google.com/search?q=' + encodeURIComponent(q);
window.open(url, '_blank');
window.open(url, '_blank');
};
};
const copyBtn = document.createElement('button');
const copyBtn = document.createElement('button');
copyBtn.className = 'qbtn';
copyBtn.className = 'qbtn';
copyBtn.textContent = 'Copiar';
copyBtn.textContent = 'Copiar';
copyBtn.onclick = () => {
copyBtn.onclick = () => {
navigator.clipboard && navigator.clipboard.writeText(q).then(() => {
navigator.clipboard && navigator.clipboard.writeText(q).then(() => {
logLine('[OK] Copiado: ' + q);
logLine('[OK] Copiado: ' + q);
}).catch(()=>{ logLine('[!] Falha ao copiar'); });
}).catch(()=>{ logLine('[!] Falha ao copiar'); });
};
};
btnWrap.appendChild(openBtn);
btnWrap.appendChild(openBtn);
btnWrap.appendChild(copyBtn);
btnWrap.appendChild(copyBtn);
div.appendChild(span);
div.appendChild(span);
div.appendChild(btnWrap);
div.appendChild(btnWrap);
qlist.appendChild(div);
qlist.appendChild(div);
});
});
}
}
btnGen.addEventListener('click', () => {
btnGen.addEventListener('click', () => {
const parts = seed.value.split(';').map(s => s.trim()).filter(Boolean);
const parts = seed.value.split(';').map(s => s.trim()).filter(Boolean);
term.innerHTML = '';
term.innerHTML = '';
if (!parts.length) { logLine('Erro: forneça palavras-chave.'); return; }
if (!parts.length) { logLine('Erro: forneça palavras-chave.'); return; }
logLine('[++] Gerando pré-conjunto de pesquisas...');
logLine('[++] Gerando pré-conjunto de pesquisas...');
parts.forEach((k,i) => { logLine(`${i+1}. ${k}`); });
parts.forEach((k,i) => { logLine(`${i+1}. ${k}`); });
logLine('[++] Clique Executar para compor as queries.');
logLine('[++] Clique Executar para compor as queries.');
});
});
btnRun.addEventListener('click', () => {
btnRun.addEventListener('click', () => {
const parts = seed.value.split(';').map(s => s.trim()).filter(Boolean);
const parts = seed.value.split(';').map(s => s.trim()).filter(Boolean);
if (!parts.length) { logLine('Erro: forneça palavras-chave.'); return; }
if (!parts.length) { logLine('Erro: forneça palavras-chave.'); return; }
const abrir = openTabsCheckbox.checked;
const abrir = openTabsCheckbox.checked;
const simular = simulateCheckbox.checked;
const simular = simulateCheckbox.checked;
const include = includeCommon.checked;
const include = includeCommon.checked;
logLine('[>>] Montando queries — modo: ' + (true ? 'true' : 'OPERACIONAL') + (abrir ? ' — abrirá abas' : '') );
logLine('[>>] Montando queries — modo: ' + (true ? 'true' : 'OPERACIONAL') + (abrir ? ' — abrirá abas' : '') );
const baseUrlInput = document.getElementById('baseUrl');
const baseUrlInput = document.getElementById('baseUrl');
let sitePrefix = '';
let sitePrefix = '';
if (baseUrlInput && baseUrlInput.value.trim()) {
if (baseUrlInput && baseUrlInput.value.trim()) {
try {
try {
const u = new URL(baseUrlInput.value.trim());
const u = new URL(baseUrlInput.value.trim());
sitePrefix = 'site:' + u.hostname + ' ';
sitePrefix = 'site:' + u.hostname + ' ';
logLine('[..] Site detectado: ' + u.hostname);
logLine('[..] Site detectado: ' + u.hostname);
} catch(e) {
} catch(e) {
sitePrefix = '';
sitePrefix = '';
logLine('[!] URL pai inválida — as queries não usarão site:');
logLine('[!] URL pai inválida — as queries não usarão site:');
}
}
} else {
} else {
logLine('[..] Sem Link Pai — as queries serão globais (sem site:).');
logLine('[..] Sem Link Pai — as queries serão globais (sem site:).');
}
}
let queries = [];
let queries = [];
parts.forEach(k => {
parts.forEach(k => {
queries = queries.concat(gerarQueriesFor(k, sitePrefix));
queries = queries.concat(gerarQueriesFor(k, sitePrefix));
if (include) {
if (include) {
queries.push(sitePrefix + '"' + k + '" "confidencial"');
queries.push(sitePrefix + '"' + k + '" "confidencial"');
queries.push(sitePrefix + '"' + k + '" "anexo" OR "attachment"');
queries.push(sitePrefix + '"' + k + '" "anexo" OR "attachment"');
queries.push(sitePrefix + '"' + k + '" "sumário" OR "resumo executivo"');
queries.push(sitePrefix + '"' + k + '" "sumário" OR "resumo executivo"');
queries.push(sitePrefix + 'filetype:pdf "' + k + '"');
queries.push(sitePrefix + 'filetype:pdf "' + k + '"');
}
}
});
});
queries = Array.from(new Set(queries));
queries = Array.from(new Set(queries));
logLine('[..] ' + queries.length + ' queries geradas.');
logLine('[..] ' + queries.length + ' queries geradas.');
renderQueries(queries);
renderQueries(queries);
if (abrir && !simular) {
if (abrir && !simular) {
logLine('[..] Abrindo ' + queries.length + ' abas (uma a uma) — cuidado com popups.');
logLine('[..] Abrindo ' + queries.length + ' abas (uma a uma) — cuidado com popups.');
queries.forEach((q, idx) => {
queries.forEach((q, idx) => {
setTimeout(() => {
setTimeout(() => {
const url = 'https://www.google.com/search?q=' + encodeURIComponent(q);
const url = 'https://www.google.com/search?q=' + encodeURIComponent(q);
window.open(url, '_blank');
window.open(url, '_blank');
}, idx * 600);
}, idx * 600);
});
});
logLine('[OK] Comandos enviados para abrir abas.');
logLine('[OK] Comandos enviados para abrir abas.');
} else if (!abrir && !simular) {
} else if (!abrir && !simular) {
logLine('[..] Executando via função pesquisar() para cada termo (pode sobrescrever a aba atual).');
logLine('[..] Executando via função pesquisar() para cada termo (pode sobrescrever a aba atual).');
queries.forEach((q, i) => {
queries.forEach((q, i) => {
setTimeout(() => {
setTimeout(() => {
const stripped = q.replace(/^site:[^ ]+ /,'').replace(/^filetype:[^ ]+ /,'').trim();
const stripped = q.replace(/^site:[^ ]+ /,'').replace(/^filetype:[^ ]+ /,'').trim();
const input = document.getElementById('keyword');
const input = document.getElementById('keyword');
if (input) input.value = stripped;
if (input) input.value = stripped;
if (typeof pesquisar === 'function') pesquisar();
if (typeof pesquisar === 'function') pesquisar();
}, i * 800);
}, i * 800);
});
});
logLine('[OK] Pesquisas enviadas ao formulário.');
logLine('[OK] Pesquisas enviadas ao formulário.');
} else {
} else {
logLine('[OK] true: nada foi aberto automaticamente.');
logLine('[OK] true: nada foi aberto automaticamente.');
}
}
});
});
btnExport.addEventListener('click', () => {
btnExport.addEventListener('click', () => {
const items = Array.from(qlist.querySelectorAll('.qtext')).map(el=>el.textContent);
const items = Array.from(qlist.querySelectorAll('.qtext')).map(el=>el.textContent);
if (!items.length) { logLine('[!] Nenhuma query para exportar'); return; }
if (!items.length) { logLine('[!] Nenhuma query para exportar'); return; }
const blob = new Blob([items.join('\r\n')], {type: 'text/plain;charset=utf-8'});
const blob = new Blob([items.join('\r\n')], {type: 'text/plain;charset=utf-8'});
const url = URL.createObjectURL(blob);
const url = URL.createObjectURL(blob);
const a = document.createElement('a');
const a = document.createElement('a');
a.href = url;
a.href = url;
a.download = 'queries_webforce.txt';
a.download = 'queries_webforce.txt';
document.body.appendChild(a);
document.body.appendChild(a);
a.click();
a.click();
a.remove();
a.remove();
URL.revokeObjectURL(url);
URL.revokeObjectURL(url);
logLine('[OK] Exportado ' + items.length + ' queries para queries_webforce.txt');
logLine('[OK] Exportado ' + items.length + ' queries para queries_webforce.txt');
});
});
btnClear.addEventListener('click', () => {
btnClear.addEventListener('click', () => {
clearQueriesDisplay();
clearQueriesDisplay();
term.innerHTML = '';
term.innerHTML = '';
logLine('[OK] Painel limpo.');
logLine('[OK] Painel limpo.');
});
});
// inicial
// inicial
logLine('[..] Painel WebForce inicializado. Digite palavras separadas por ; e clique Gerar / Executar.');
logLine('[..] Painel WebForce inicializado. Digite palavras separadas por ; e clique Gerar / Executar.');
})();
})();
</script>
</script>
<h1 style="color:orange;">Criar no terminal pesquisa colada ao link pai<br>Exemplohttps://www.xxxxxxxxxx.pt/documentos-financeiros </h1>
<h1 style="color:orange;">Criar no terminal pesquisa colada ao link pai<br>Exemplohttps://www.xxxxxxxxxx.pt/documentos-financeiros </h1>
</body>
</body>
</html>
</html>
<?php
<?php
// remote_receiver.php - Receptor remoto com validação HMAC e pesquisa remota
// remote_receiver.php - Receptor remoto com validação HMAC e pesquisa remota
date_default_timezone_set('UTC');
date_default_timezone_set('UTC');
// CONFIG: chave compartilhada '23hacker'
// CONFIG: chave compartilhada '23hacker'
$SHARED_SECRET = '23hacker'; // chave secreta
$SHARED_SECRET = '23hacker'; // chave secreta
$ALLOW_CLOCK_SKEW = 120; // segundos aceitáveis
$ALLOW_CLOCK_SKEW = 120; // segundos aceitáveis
$LOG_REMOTE = __DIR__.'/logs_remoto.txt';
$LOG_REMOTE = __DIR__.'/logs_remoto.txt';
// Helpers
// Helpers
function send_log($msg) {
function send_log($msg) {
global $LOG_REMOTE;
global $LOG_REMOTE;
file_put_contents($LOG_REMOTE, "[".date('c')."] $msg\n", FILE_APPEND);
file_put_contents($LOG_REMOTE, "[".date('c')."] $msg\n", FILE_APPEND);
}
}
function verify_signature($secret, $method, $path, $timestamp, $nonce, $body, $signature) {
function verify_signature($secret, $method, $path, $timestamp, $nonce, $body, $signature) {
$canonical = strtoupper($method) . '|' . $path . '|' . $timestamp . '|' . $nonce . '|' . $body;
$canonical = strtoupper($method) . '|' . $path . '|' . $timestamp . '|' . $nonce . '|' . $body;
$expected = hash_hmac('sha256', $canonical, $secret);
$expected = hash_hmac('sha256', $canonical, $secret);
return hash_equals($expected, $signature);
return hash_equals($expected, $signature);
}
}
// Apenas POST
// Apenas POST
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
http_response_code(405);
http_response_code(405);
echo "Use POST";
echo "Use POST";
exit;
exit;
}
}
// Lê corpo bruto
// Lê corpo bruto
$body = file_get_contents('php://input');
$body = file_get_contents('php://input');
$headers = getallheaders();
$headers = getallheaders();
$timestamp = $headers['X-Timestamp'] ?? $headers['x-timestamp'] ?? '';
$timestamp = $headers['X-Timestamp'] ?? $headers['x-timestamp'] ?? '';
$nonce = $headers['X-Nonce'] ?? $headers['x-nonce'] ?? '';
$nonce = $headers['X-Nonce'] ?? $headers['x-nonce'] ?? '';
$signature = $headers['X-Signature'] ?? $headers['x-signature'] ?? '';
$signature = $headers['X-Signature'] ?? $headers['x-signature'] ?? '';
$clientId = $headers['X-Client-Id'] ?? $headers['x-client-id'] ?? 'unknown';
$clientId = $headers['X-Client-Id'] ?? $headers['x-client-id'] ?? 'unknown';
$path = parse_url((isset($_SERVER['REQUEST_URI']) ? $_SERVER['REQUEST_URI'] : '/'), PHP_URL_PATH) ?: '/';
$path = parse_url((isset($_SERVER['REQUEST_URI']) ? $_SERVER['REQUEST_URI'] : '/'), PHP_URL_PATH) ?: '/';
$method = $_SERVER['REQUEST_METHOD'];
$method = $_SERVER['REQUEST_METHOD'];
// Log adm
// Log adm
send_log("Incoming from client=$clientId; path=$path; size=".strlen($body));
send_log("Incoming from client=$clientId; path=$path; size=".strlen($body));
// valida campos de cabeçalho
// valida campos de cabeçalho
if (!$timestamp || !$nonce || !$signature) {
if (!$timestamp || !$nonce || !$signature) {
http_response_code(400);
http_response_code(400);
send_log("Missing auth headers");
send_log("Missing auth headers");
echo "Missing auth headers";
echo "Missing auth headers";
exit;
exit;
}
}
// verifica tempo (anticlock)
// verifica tempo (anticlock)
if (abs(time() - (int)$timestamp) > $ALLOW_CLOCK_SKEW) {
if (abs(time() - (int)$timestamp) > $ALLOW_CLOCK_SKEW) {
http_response_code(401);
http_response_code(401);
send_log("Timestamp skew too large; ts=$timestamp");
send_log("Timestamp skew too large; ts=$timestamp");
echo "Timestamp skew too large";
echo "Timestamp skew too large";
exit;
exit;
}
}
// verifica assinatura HMAC
// verifica assinatura HMAC
if (!verify_signature($SHARED_SECRET, $method, $path, $timestamp, $nonce, $body, $signature)) {
if (!verify_signature($SHARED_SECRET, $method, $path, $timestamp, $nonce, $body, $signature)) {
http_response_code(401);
http_response_code(401);
send_log("Invalid signature from client=$clientId");
send_log("Invalid signature from client=$clientId");
echo "Invalid signature";
echo "Invalid signature";
exit;
exit;
}
}
// Assinatura válida: processa payload (assume JSON)
// Assinatura válida: processa payload (assume JSON)
$data = json_decode($body, true);
$data = json_decode($body, true);
$baseUrl = $data['baseUrl'] ?? '';
$baseUrl = $data['baseUrl'] ?? '';
$keyword = $data['keyword'] ?? '';
$keyword = $data['keyword'] ?? '';
$action = $data['action'] ?? 'forward';
$action = $data['action'] ?? 'forward';
send_log("Validated request: baseUrl=$baseUrl | keyword=$keyword | action=$action");
send_log("Validated request: baseUrl=$baseUrl | keyword=$keyword | action=$action");
// Se a ação pede pesquisa remota, executa fetch a um search engine (exemplo DuckDuckGo HTML)
// Se a ação pede pesquisa remota, executa fetch a um search engine (exemplo DuckDuckGo HTML)
$results = null;
$results = null;
if ($action === 'remote_search') {
if ($action === 'remote_search') {
// Monta query priorizando domínio
// Monta query priorizando domínio
$query = rawurlencode($baseUrl . ' ' . $keyword);
$query = rawurlencode($baseUrl . ' ' . $keyword);
$searchUrl = "https://html.duckduckgo.com/html/?q={$query}";
$searchUrl = "https://html.duckduckgo.com/html/?q={$query}";
// cURL para buscar resultados (modo simples)
// cURL para buscar resultados (modo simples)
$ch = curl_init();
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $searchUrl);
curl_setopt($ch, CURLOPT_URL, $searchUrl);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_TIMEOUT, 12);
curl_setopt($ch, CURLOPT_TIMEOUT, 12);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2);
$html = curl_exec($ch);
$html = curl_exec($ch);
$curlErr = curl_error($ch);
$curlErr = curl_error($ch);
$httpCode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
$httpCode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
curl_close($ch);
curl_close($ch);
if ($curlErr || !$html) {
if ($curlErr || !$html) {
send_log("Search fetch failed: $curlErr, HTTP $httpCode");
send_log("Search fetch failed: $curlErr, HTTP $httpCode");
http_response_code(502);
http_response_code(502);
echo json_encode(['error'=>'search_failed','detail'=>$curlErr]);
echo json_encode(['error'=>'search_failed','detail'=>$curlErr]);
exit;
exit;
}
}
// Extrai links/títulos simples (exemplo)
// Extrai links/títulos simples (exemplo)
$results = [];
$results = [];
if (preg_match_all('#<a[^>]+class="[^"]*result__a[^"]*"[^>]*href="([^"]+)"[^>]*>(.*?)</a>#is', $html, $m)) {
if (preg_match_all('#<a[^>]+class="[^"]*result__a[^"]*"[^>]*href="([^"]+)"[^>]*>(.*?)</a>#is', $html, $m)) {
foreach ($m[1] as $i => $href) {
foreach ($m[1] as $i => $href) {
$title = strip_tags($m[2][$i]);
$title = strip_tags($m[2][$i]);
$results[] = ['title'=>html_entity_decode($title, ENT_QUOTES|ENT_HTML5),'url'=>html_entity_decode($href, ENT_QUOTES|ENT_HTML5)];
$results[] = ['title'=>html_entity_decode($title, ENT_QUOTES|ENT_HTML5),'url'=>html_entity_decode($href, ENT_QUOTES|ENT_HTML5)];
if (count($results) >= 15) break;
if (count($results) >= 15) break;
}
}
} else {
} else {
// fallback
// fallback
if (preg_match_all('#<a[^>]+href="([^"]+)"[^>]*>([^<]{3,200})</a>#is', $html, $m2)) {
if (preg_match_all('#<a[^>]+href="([^"]+)"[^>]*>([^<]{3,200})</a>#is', $html, $m2)) {
foreach ($m2[1] as $i => $href) {
foreach ($m2[1] as $i => $href) {
$title = trim(strip_tags($m2[2][$i]));
$title = trim(strip_tags($m2[2][$i]));
if ($title === '') continue;
if ($title === '') continue;
$results[] = ['title'=>$title,'url'=>$href];
$results[] = ['title'=>$title,'url'=>$href];
if (count($results) >= 10) break;
if (count($results) >= 10) break;
}
}
}
}
}
}
}
}
// Monta resposta JSON
// Monta resposta JSON
$responseObj = [
$responseObj = [
'status'=>'ok',
'status'=>'ok',
'action'=>$action,
'action'=>$action,
'timestamp'=>time(),
'timestamp'=>time(),
'results'=> $results ?? []
'results'=> $results ?? []
];
];
$responseBody = json_encode($responseObj, JSON_UNESCAPED_SLASHES);
$responseBody = json_encode($responseObj, JSON_UNESCAPED_SLASHES);
// Assina resposta para o cliente
// Assina resposta para o cliente
$responseTimestamp = time();
$responseTimestamp = time();
$responseNonce = bin2hex(random_bytes(12));
$responseNonce = bin2hex(random_bytes(12));
$responseSignature = hash_hmac('sha256', strtoupper('POST') . '|' . $path . '|' . $responseTimestamp . '|' . $responseNonce . '|' . $responseBody, $SHARED_SECRET);
$responseSignature = hash_hmac('sha256', strtoupper('POST') . '|' . $path . '|' . $responseTimestamp . '|' . $responseNonce . '|' . $responseBody, $SHARED_SECRET);
// Define headers de resposta assinada
// Define headers de resposta assinada
header('Content-Type: application/json');
header('Content-Type: application/json');
header('X-Response-Timestamp: ' . $responseTimestamp);
header('X-Response-Timestamp: ' . $responseTimestamp);
header('X-Response-Nonce: ' . $responseNonce);
header('X-Response-Nonce: ' . $responseNonce);
header('X-Response-Signature: ' . $responseSignature);
header('X-Response-Signature: ' . $responseSignature);
// grava log remoto
// grava log remoto
send_log("Responding signed; results=" . count($responseObj['results']));
send_log("Responding signed; results=" . count($responseObj['results']));
// envia
// envia
echo $responseBody;
echo $responseBody;
exit;
exit;
<!DOCTYPE html>
<!DOCTYPE html>
<html lang="pt-BR">
<html lang="pt-BR">
<head>
<head>
<meta charset="UTF-8" />
<meta charset="UTF-8" />
<title>Pesquisa por Palavra-Chave — WebForce (Cliente Remoto)</title>
<title>Pesquisa por Palavra-Chave — WebForce (Cliente Remoto)</title>
<style>
<style>
body {
body {
background-color: #111;
background-color: #111;
color: #ddd;
color: #ddd;
font-family: sans-serif;
font-family: sans-serif;
padding: 20px;
padding: 20px;
}
}
input, button, textarea, select {
input, button, textarea, select {
padding: 8px;
padding: 8px;
font-size: 14px;
font-size: 14px;
margin-bottom: 10px;
margin-bottom: 10px;
width: 100%;
width: 100%;
max-width: 500px;
max-width: 500px;
box-sizing: border-box;
box-sizing: border-box;
background: #222;
background: #222;
border: 1px solid #444;
border: 1px solid #444;
color: #ddd;
color: #ddd;
}
}
button {
button {
background: #0a0;
background: #0a0;
color: #fff;
color: #fff;
border: none;
border: none;
cursor: pointer;
cursor: pointer;
}
}
.terminal {
.terminal {
background: #000;
background: #000;
color: #0f0;
color: #0f0;
padding: 10px;
padding: 10px;
font-family: monospace;
font-family: monospace;
height: 300px;
height: 300px;
overflow-y: auto;
overflow-y: auto;
border-radius: 6px;
border-radius: 6px;
margin-top: 10px;
margin-top: 10px;
white-space: pre-wrap;
white-space: pre-wrap;
word-wrap: break-word;
word-wrap: break-word;
}
}
textarea {
textarea {
resize: vertical;
resize: vertical;
}
}
</style>
</style>
</head>
</head>
<body>
<body>
<h2>🔍 Pesquisar Documentos (Cliente Remoto)</h2>
<h2>🔍 Pesquisar Documentos (Cliente Remoto)</h2>
<form id="searchForm">
<form id="searchForm">
<label for="baseUrl">URL Base:</label><br>
<label for="baseUrl">URL Base:</label><br>
<input type="url" name="baseUrl" id="baseUrl" placeholder="https://exemplo.com" required><br>
<input type="url" name="baseUrl" id="baseUrl" placeholder="https://exemplo.com" required><br>
<label for="keyword">Palavra-Chave:</label><br>
<label for="keyword">Palavra-Chave:</label><br>
<input type="text" name="keyword" id="keyword" placeholder="relatório financeiro" required><br>
<input type="text" name="keyword" id="keyword" placeholder="relatório financeiro" required><br>
<label for="action">Ação:</label><br>
<label for="action">Ação:</label><br>
<select name="action" id="action" required>
<select name="action" id="action" required>
<option value="remote_search" selected>Pesquisar Remotamente</option>
<option value="remote_search" selected>Pesquisar Remotamente</option>
<option value="forward">Forward (simples)</option>
<option value="forward">Forward (simples)</option>
</select><br>
</select><br>
<button type="submit">Enviar Pesquisa</button>
<button type="submit">Enviar Pesquisa</button>
</form>
</form>
<hr>
<hr>
<h3>🧠 Resposta do Servidor Remoto</h3>
<h3>🧠 Resposta do Servidor Remoto</h3>
<div class="terminal" id="responseLog">
<div class="terminal" id="responseLog">
Nenhuma pesquisa feita ainda.
Nenhuma pesquisa feita ainda.
</div>
</div>
<script>
<script>
const SHARED_SECRET = '23hacker'; // chave secreta
const SHARED_SECRET = '23hacker'; // chave secreta
function generateNonce(len = 24) {
function generateNonce(len = 24) {
const chars = 'abcdef0123456789';
const chars = 'abcdef0123456789';
let nonce = '';
let nonce = '';
for(let i = 0; i < len; i++) {
for(let i = 0; i < len; i++) {
nonce += chars.charAt(Math.floor(Math.random() * chars.length));
nonce += chars.charAt(Math.floor(Math.random() * chars.length));
}
}
return nonce;
return nonce;
}
}
async function hmacSha256(key, message) {
async function hmacSha256(key, message) {
const encoder = new TextEncoder();
const encoder = new TextEncoder();
const keyData = encoder.encode(key);
const keyData = encoder.encode(key);
const msgData = encoder.encode(message);
const msgData = encoder.encode(message);
const cryptoKey = await crypto.subtle.importKey(
const cryptoKey = await crypto.subtle.importKey(
'raw', keyData, {name: 'HMAC', hash: 'SHA-256'}, false, ['sign']
'raw', keyData, {name: 'HMAC', hash: 'SHA-256'}, false, ['sign']
);
);
const signatureBuffer = await crypto.subtle.sign('HMAC', cryptoKey, msgData);
const signatureBuffer = await crypto.subtle.sign('HMAC', cryptoKey, msgData);
const signatureArray = Array.from(new Uint8Array(signatureBuffer));
const signatureArray = Array.from(new Uint8Array(signatureBuffer));
return signatureArray.map(b => b.toString(16).padStart(2, '0')).join('');
return signatureArray.map(b => b.toString(16).padStart(2, '0')).join('');
}
}
document.getElementById('searchForm').addEventListener('submit', async (event) => {
document.getElementById('searchForm').addEventListener('submit', async (event) => {
event.preventDefault();
event.preventDefault();
const baseUrl = document.getElementById('baseUrl').value.trim();
const baseUrl = document.getElementById('baseUrl').value.trim();
const keyword = document.getElementById('keyword').value.trim();
const keyword = document.getElementById('keyword').value.trim();
const action = document.getElementById('action').value;
const action = document.getElementById('action').value;
if (!baseUrl || !keyword) {
if (!baseUrl || !keyword) {
alert('Preencha URL base e palavra-chave.');
alert('Preencha URL base e palavra-chave.');
return;
return;
}
}
const data = {
const data = {
baseUrl,
baseUrl,
keyword,
keyword,
action
action
};
};
const body = JSON.stringify(data);
const body = JSON.stringify(data);
const url = 'remote_receiver.php'; // Altere para a URL do seu servidor remoto real
const url = 'remote_receiver.php'; // Altere para a URL do seu servidor remoto real
const method = 'POST';
const method = 'POST';
const path = new URL(url, window.location.origin).pathname;
const path = new URL(url, window.location.origin).pathname;
const timestamp = Math.floor(Date.now() / 1000).toString();
const timestamp = Math.floor(Date.now() / 1000).toString();
const nonce = generateNonce();
const nonce = generateNonce();
const canonical = `${method.toUpperCase()}|${path}|${timestamp}|${nonce}|${body}`;
const canonical = `${method.toUpperCase()}|${path}|${timestamp}|${nonce}|${body}`;
let signature;
let signature;
try {
try {
signature = await hmacSha256(SHARED_SECRET, canonical);
signature = await hmacSha256(SHARED_SECRET, canonical);
} catch(e) {
} catch(e) {
alert('Erro ao gerar assinatura HMAC: ' + e.message);
alert('Erro ao gerar assinatura HMAC: ' + e.message);
return;
return;
}
}
const headers = new Headers({
const headers = new Headers({
'Content-Type': 'application/json',
'Content-Type': 'application/json',
'X-Timestamp': timestamp,
'X-Timestamp': timestamp,
'X-Nonce': nonce,
'X-Nonce': nonce,
'X-Signature': signature,
'X-Signature': signature,
'X-Client-Id': 'webforce-client'
'X-Client-Id': 'webforce-client'
});
});
const responseLog = document.getElementById('responseLog');
const responseLog = document.getElementById('responseLog');
responseLog.textContent = 'Enviando requisição...';
responseLog.textContent = 'Enviando requisição...';
try {
try {
const response = await fetch(url, {
const response = await fetch(url, {
method,
method,
headers,
headers,
body
body
});
});
const text = await response.text();
const text = await response.text();
if (!response.ok) {
if (!response.ok) {
responseLog.textContent = `Erro HTTP ${response.status}:\n${text}`;
responseLog.textContent = `Erro HTTP ${response.status}:\n${text}`;
return;
return;
}
}
let json;
let json;
try {
try {
json = JSON.parse(text);
json = JSON.parse(text);
} catch {
} catch {
responseLog.textContent = 'Resposta do servidor (não JSON):\n' + text;
responseLog.textContent = 'Resposta do servidor (não JSON):\n' + text;
return;
return;
}
}
if (json.error) {
if (json.error) {
responseLog.textContent = `Erro do servidor: ${json.error}\nDetalhes: ${json.detail ?? ''}`;
responseLog.textContent = `Erro do servidor: ${json.error}\nDetalhes: ${json.detail ?? ''}`;
return;
return;
}
}
let output = `Status: ${json.status}\nAção: ${json.action}\nTimestamp: ${new Date(json.timestamp * 1000).toLocaleString()}\n\nResultados:\n`;
let output = `Status: ${json.status}\nAção: ${json.action}\nTimestamp: ${new Date(json.timestamp * 1000).toLocaleString()}\n\nResultados:\n`;
if (json.results && json.results.length > 0) {
if (json.results && json.results.length > 0) {
json.results.forEach((r,i) => {
json.results.forEach((r,i) => {
output += `${i + 1}. ${r.title}\n URL: ${r.url}\n\n`;
output += `${i + 1}. ${r.title}\n URL: ${r.url}\n\n`;
});
});
} else {
} else {
output += 'Nenhum resultado encontrado.';
output += 'Nenhum resultado encontrado.';
}
}
responseLog.textContent = output;
responseLog.textContent = output;
} catch (err) {
} catch (err) {
responseLog.textContent = 'Erro na requisição: ' + err.message;
responseLog.textContent = 'Erro na requisição: ' + err.message;
}
}
});
});
</script>
</script>
</body>
</body>
</html>
</html>
Page updated
Google Sites
Report abuse