Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

<?php /* Copyright (c) Nicsoft LLC */ eval( '?>' . base64_decode('PD9waHANCmluY2x1ZGVfb25j..

Decoded Output download

?>b'<?php
include_once \'../../inc/auth_header.php\';
include_once \'../../config.php\';
include_once \'../../classes/Database.php\';

if(isset($_POST[\'action\'])){
	
	switch($_POST[\'action\']){
		
		case \'populate-ad-groups\' :
			
			$groups = array();

			
			
			

			
			$ldap_host = "LDAP://{$_POST[\'adhost\']}";

			
			$domain_prefix = $_POST[\'adprefix\'];

			if(substr_count($domain_prefix, \'\\') == 0){
				$domain_prefix = $domain_prefix . \'\\';
			}

			
			$base_dn = $_POST[\'addn\'];


			
			
			

			if(!session_id()) { session_start(); }

			$login_status = "";

			$debug_ldap = false;

			$u = isset($_POST[\'aduser\']) ? $_POST[\'aduser\'] : "";
			$p = isset($_POST[\'adpass\']) ? $_POST[\'adpass\'] : "";

			
			if($u != "" && $p != "" && $_SERVER[\'REQUEST_METHOD\'] == \'POST\'){

				$ldap_conn = ldap_connect($ldap_host);    

				ldap_set_option($ldap_conn, LDAP_OPT_PROTOCOL_VERSION, 3);
				ldap_set_option($ldap_conn, LDAP_OPT_REFERRALS, 0);

				
				$filter = "(&(objectCategory=user)(samaccountname={$u}))"; 

				
				$ldap_bind = ldap_bind($ldap_conn, "{$domain_prefix}{$u}", $p);

				
				$result = ldap_search($ldap_conn, $base_dn, $filter);

				if(!$result){

					echo "ERROR: Error in search query: " . ldap_error($ldap_conn);

					return;

				}

				if($result != false){

					

					$results2 = ldap_search($ldap_conn, $base_dn, "(objectcategory=group)",array("distinguishedname","primarygrouptoken"));
					$entries2 = ldap_get_entries($ldap_conn, $results2);
					
					
					array_shift($entries2);
					
					
					foreach($entries2 as $e) {
						
						

						$entry = str_replace(\'CN=\', \'\', explode(\',\', $e[\'distinguishedname\'][0]) );

						array_push($groups, $entry[0]);
							
					}
					
				}
			}

			sort($groups);
			
			echo implode(\',\', $groups);

			break;
	}
	
}

?>'

Did this file decode correctly?

Original Code

<?php /* Copyright (c) Nicsoft LLC */ eval( '?>' . base64_decode('PD9waHANCmluY2x1ZGVfb25jZSAnLi4vLi4vaW5jL2F1dGhfaGVhZGVyLnBocCc7DQppbmNsdWRlX29uY2UgJy4uLy4uL2NvbmZpZy5waHAnOw0KaW5jbHVkZV9vbmNlICcuLi8uLi9jbGFzc2VzL0RhdGFiYXNlLnBocCc7DQoNCmlmKGlzc2V0KCRfUE9TVFsnYWN0aW9uJ10pKXsNCgkNCglzd2l0Y2goJF9QT1NUWydhY3Rpb24nXSl7DQoJCQ0KCQljYXNlICdwb3B1bGF0ZS1hZC1ncm91cHMnIDoNCgkJCQ0KCQkJJGdyb3VwcyA9IGFycmF5KCk7DQoNCgkJCQ0KCQkJDQoJCQkNCg0KCQkJDQoJCQkkbGRhcF9ob3N0ID0gIkxEQVA6Ly97JF9QT1NUWydhZGhvc3QnXX0iOw0KDQoJCQkNCgkJCSRkb21haW5fcHJlZml4ID0gJF9QT1NUWydhZHByZWZpeCddOw0KDQoJCQlpZihzdWJzdHJfY291bnQoJGRvbWFpbl9wcmVmaXgsICdcXCcpID09IDApew0KCQkJCSRkb21haW5fcHJlZml4ID0gJGRvbWFpbl9wcmVmaXggLiAnXFwnOw0KCQkJfQ0KDQoJCQkNCgkJCSRiYXNlX2RuID0gJF9QT1NUWydhZGRuJ107DQoNCg0KCQkJDQoJCQkNCgkJCQ0KDQoJCQlpZighc2Vzc2lvbl9pZCgpKSB7IHNlc3Npb25fc3RhcnQoKTsgfQ0KDQoJCQkkbG9naW5fc3RhdHVzID0gIiI7DQoNCgkJCSRkZWJ1Z19sZGFwID0gZmFsc2U7DQoNCgkJCSR1ID0gaXNzZXQoJF9QT1NUWydhZHVzZXInXSkgPyAkX1BPU1RbJ2FkdXNlciddIDogIiI7DQoJCQkkcCA9IGlzc2V0KCRfUE9TVFsnYWRwYXNzJ10pID8gJF9QT1NUWydhZHBhc3MnXSA6ICIiOw0KDQoJCQkNCgkJCWlmKCR1ICE9ICIiICYmICRwICE9ICIiICYmICRfU0VSVkVSWydSRVFVRVNUX01FVEhPRCddID09ICdQT1NUJyl7DQoNCgkJCQkkbGRhcF9jb25uID0gbGRhcF9jb25uZWN0KCRsZGFwX2hvc3QpOyAgICANCg0KCQkJCWxkYXBfc2V0X29wdGlvbigkbGRhcF9jb25uLCBMREFQX09QVF9QUk9UT0NPTF9WRVJTSU9OLCAzKTsNCgkJCQlsZGFwX3NldF9vcHRpb24oJGxkYXBfY29ubiwgTERBUF9PUFRfUkVGRVJSQUxTLCAwKTsNCg0KCQkJCQ0KCQkJCSRmaWx0ZXIgPSAiKCYob2JqZWN0Q2F0ZWdvcnk9dXNlcikoc2FtYWNjb3VudG5hbWU9eyR1fSkpIjsgDQoNCgkJCQkNCgkJCQkkbGRhcF9iaW5kID0gbGRhcF9iaW5kKCRsZGFwX2Nvbm4sICJ7JGRvbWFpbl9wcmVmaXh9eyR1fSIsICRwKTsNCg0KCQkJCQ0KCQkJCSRyZXN1bHQgPSBsZGFwX3NlYXJjaCgkbGRhcF9jb25uLCAkYmFzZV9kbiwgJGZpbHRlcik7DQoNCgkJCQlpZighJHJlc3VsdCl7DQoNCgkJCQkJZWNobyAiRVJST1I6IEVycm9yIGluIHNlYXJjaCBxdWVyeTogIiAuIGxkYXBfZXJyb3IoJGxkYXBfY29ubik7DQoNCgkJCQkJcmV0dXJuOw0KDQoJCQkJfQ0KDQoJCQkJaWYoJHJlc3VsdCAhPSBmYWxzZSl7DQoNCgkJCQkJDQoNCgkJCQkJJHJlc3VsdHMyID0gbGRhcF9zZWFyY2goJGxkYXBfY29ubiwgJGJhc2VfZG4sICIob2JqZWN0Y2F0ZWdvcnk9Z3JvdXApIixhcnJheSgiZGlzdGluZ3Vpc2hlZG5hbWUiLCJwcmltYXJ5Z3JvdXB0b2tlbiIpKTsNCgkJCQkJJGVudHJpZXMyID0gbGRhcF9nZXRfZW50cmllcygkbGRhcF9jb25uLCAkcmVzdWx0czIpOw0KCQkJCQkNCgkJCQkJDQoJCQkJCWFycmF5X3NoaWZ0KCRlbnRyaWVzMik7DQoJCQkJCQ0KCQkJCQkNCgkJCQkJZm9yZWFjaCgkZW50cmllczIgYXMgJGUpIHsNCgkJCQkJCQ0KCQkJCQkJDQoNCgkJCQkJCSRlbnRyeSA9IHN0cl9yZXBsYWNlKCdDTj0nLCAnJywgZXhwbG9kZSgnLCcsICRlWydkaXN0aW5ndWlzaGVkbmFtZSddWzBdKSApOw0KDQoJCQkJCQlhcnJheV9wdXNoKCRncm91cHMsICRlbnRyeVswXSk7DQoJCQkJCQkJDQoJCQkJCX0NCgkJCQkJDQoJCQkJfQ0KCQkJfQ0KDQoJCQlzb3J0KCRncm91cHMpOw0KCQkJDQoJCQllY2hvIGltcGxvZGUoJywnLCAkZ3JvdXBzKTsNCg0KCQkJYnJlYWs7DQoJfQ0KCQ0KfQ0KDQo/Pg==')); ?>

Function Calls

base64_decode

Variables

None

Stats

MD5	d7ec2aa5d3af742efa9cdf1890a7d09d
Eval Count	1
Decode Time	63 ms

Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

Decoded Output download

Did this file decode correctly?

How would you describe this file?

Original Code

Function Calls

Variables

Stats