Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

error_reporting(0); require "\x63\x6f\156\146\x69\x67\x2e\160\150\160"; header("\x41\143\..

Decoded Output download

<?   error_reporting(0); require "config.php"; header("Access-Control-Allow-Origin: *"); if (!empty($_SERVER["HTTP_CLIENT_IP"]) && filter_var($_SERVER["HTTP_CLIENT_IP"], FILTER_VALIDATE_IP)) { goto A9b6dc62b1310fcb66737edd27f73b; } if (!empty($_SERVER["HTTP_X_FORWARDED_FOR"]) && filter_var($_SERVER["HTTP_X_FORWARDED_FOR"], FILTER_VALIDATE_IP)) { goto f8256f473ff6e04ed8005ed42877ca; } if (filter_var($_SERVER["REMOTE_ADDR"], FILTER_VALIDATE_IP)) { goto C93d2efcc0b2def69a723a5c800c1f; } goto Fb45cdb5b7f9604ea0c14242a7dce1; A9b6dc62b1310fcb66737edd27f73b: $ip = $_SERVER["HTTP_CLIENT_IP"]; goto Fb45cdb5b7f9604ea0c14242a7dce1; f8256f473ff6e04ed8005ed42877ca: $ip = $_SERVER["HTTP_X_FORWARDED_FOR"]; goto Fb45cdb5b7f9604ea0c14242a7dce1; C93d2efcc0b2def69a723a5c800c1f: $ip = $_SERVER["REMOTE_ADDR"]; Fb45cdb5b7f9604ea0c14242a7dce1: $response = $_POST["cf-turnstile-response"]; $verify_url = "https://challenges.cloudflare.com/turnstile/v0/siteverify"; $data = array("secret" => $secret_key, "response" => $response); $options = array("http" => array("header" => "Content-type: application/x-www-form-urlencoded\xd\xa", "method" => "POST", "content" => http_build_query($data))); $context = stream_context_create($options); $result = file_get_contents($verify_url, false, $context); $response_data = json_decode($result, true); if ($response_data["success"]) { goto A55845c42f34597c7dddbe6dfb8972; } exit; A55845c42f34597c7dddbe6dfb8972: if ($response_data["success"]) { goto de2e5ab32b2399457a4b870756cee8; } header("HTTP/1.0 404 Not Found"); exit; goto B83811efcd216e4f5ce9deafbb56eb; de2e5ab32b2399457a4b870756cee8: session_start(); $_SESSION["token"] = $ip; exit; B83811efcd216e4f5ce9deafbb56eb: 
 ?>

Did this file decode correctly?

Original Code

 error_reporting(0); require "\x63\x6f\156\146\x69\x67\x2e\160\150\160"; header("\x41\143\x63\x65\x73\x73\55\103\157\156\164\162\x6f\x6c\55\x41\x6c\154\157\167\55\x4f\x72\x69\147\x69\156\72\40\52"); if (!empty($_SERVER["\x48\124\124\x50\x5f\x43\x4c\111\105\116\124\x5f\x49\120"]) && filter_var($_SERVER["\x48\124\124\120\x5f\103\x4c\111\x45\116\x54\137\x49\120"], FILTER_VALIDATE_IP)) { goto A9b6dc62b1310fcb66737edd27f73b; } if (!empty($_SERVER["\110\x54\124\120\137\x58\137\x46\117\122\127\101\122\x44\x45\104\x5f\x46\117\122"]) && filter_var($_SERVER["\x48\124\x54\120\x5f\x58\137\106\117\x52\x57\x41\122\104\105\104\x5f\x46\x4f\x52"], FILTER_VALIDATE_IP)) { goto f8256f473ff6e04ed8005ed42877ca; } if (filter_var($_SERVER["\x52\x45\115\117\x54\x45\137\x41\104\x44\x52"], FILTER_VALIDATE_IP)) { goto C93d2efcc0b2def69a723a5c800c1f; } goto Fb45cdb5b7f9604ea0c14242a7dce1; A9b6dc62b1310fcb66737edd27f73b: $ip = $_SERVER["\110\124\124\x50\137\x43\114\x49\x45\x4e\x54\x5f\111\120"]; goto Fb45cdb5b7f9604ea0c14242a7dce1; f8256f473ff6e04ed8005ed42877ca: $ip = $_SERVER["\x48\124\x54\120\137\x58\137\x46\x4f\122\127\x41\x52\x44\x45\x44\137\106\117\122"]; goto Fb45cdb5b7f9604ea0c14242a7dce1; C93d2efcc0b2def69a723a5c800c1f: $ip = $_SERVER["\122\105\115\117\x54\x45\x5f\101\104\104\122"]; Fb45cdb5b7f9604ea0c14242a7dce1: $response = $_POST["\143\x66\55\x74\165\162\156\x73\164\x69\154\x65\55\162\x65\163\x70\x6f\x6e\163\x65"]; $verify_url = "\x68\x74\164\x70\163\72\57\57\143\x68\x61\154\154\145\156\147\145\163\x2e\143\154\157\165\144\146\x6c\141\162\145\x2e\x63\x6f\x6d\57\164\165\162\156\x73\164\x69\154\x65\x2f\x76\x30\x2f\x73\151\164\x65\x76\145\x72\x69\x66\x79"; $data = array("\163\x65\143\162\145\x74" => $secret_key, "\x72\145\163\x70\x6f\156\x73\145" => $response); $options = array("\150\164\164\160" => array("\x68\145\141\144\145\162" => "\103\157\x6e\164\x65\x6e\x74\x2d\164\x79\x70\145\72\x20\141\160\160\x6c\151\143\141\164\x69\x6f\x6e\57\170\55\x77\167\167\55\x66\157\x72\155\x2d\x75\x72\x6c\145\156\143\x6f\144\x65\144\xd\xa", "\x6d\x65\x74\150\x6f\144" => "\120\117\123\x54", "\143\x6f\156\164\145\156\x74" => http_build_query($data))); $context = stream_context_create($options); $result = file_get_contents($verify_url, false, $context); $response_data = json_decode($result, true); if ($response_data["\163\x75\143\x63\145\163\163"]) { goto A55845c42f34597c7dddbe6dfb8972; } exit; A55845c42f34597c7dddbe6dfb8972: if ($response_data["\x73\165\143\x63\x65\163\163"]) { goto de2e5ab32b2399457a4b870756cee8; } header("\x48\x54\x54\x50\57\x31\56\x30\x20\64\60\64\40\x4e\x6f\164\40\x46\157\165\156\x64"); exit; goto B83811efcd216e4f5ce9deafbb56eb; de2e5ab32b2399457a4b870756cee8: session_start(); $_SESSION["\164\x6f\153\145\156"] = $ip; exit; B83811efcd216e4f5ce9deafbb56eb:

Function Calls

None

Variables

None

Stats

MD5 186542208a2681b43eaf979783aa59ff
Eval Count 0
Decode Time 50 ms