Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- /*
- ~ Text Based login
- ~ Coded By InjectioN
- */
- session_start();
- function login()
- {
- ?>
- <html>
- <center>
- <u><h1>Login</h1></u>
- <br />
- <form name = "login" action = "" method = "POST" />
- Username :
- <br />
- <input type = "text" name = "username" />
- <br />
- Password :
- <br />
- <input type = "password" name = "password" />
- <br />
- <input type = "submit" value = "Login" />
- <br />
- <br />
- Would you like to be a user?
- <br />
- Check the box below to sign up.
- <br />
- <input type = "checkbox" name = "register" value = "true" />
- </form>
- </center>
- </form>
- </html>
- <?php
- }
- if(!isset($_COOKIE['SkipAlert']))
- {
- echo '<script language = "javascript">alert("Please, When Finished Viewing This Site Use The Logout Button. Thank You - Admin. P.S - This Will Be And Is The Only Alert Box On This Site, If You See Another, Exit And Notify Me Immediately.");</script>';
- }
- include('./page/login.php');
- $numberset = range(1, 1000);
- $rand_key = array_rand($numberset, 3);
- $numberONE = $numberset[$rand_key[0]];
- $numberTWO = $numberset[$rand_key[1]];
- $numberTHREE = $numberset[$rand_key[2]];
- $random_number = $numberONE.$numberTWO.$numberTHREE;
- $stringset1 = range('A', 'Z');
- $stringset = $stringset1;
- $rand_key = array_rand($stringset, 10);
- $letterONE = $stringset[$rand_key[0]];
- $letterTWO = $stringset[$rand_key[1]];
- $letterTHREE = $stringset[$rand_key[2]];
- $letterFOUR = $stringset[$rand_key[3]];
- $letterFIVE = $stringset[$rand_key[4]];
- $letterSIX = $stringset[$rand_key[5]];
- $letterSEVEN = $stringset[$rand_key[6]];
- $letterEIGHT = $stringset[$rand_key[7]];
- $letterNINE = $stringset[$rand_key[8]];
- $letterTEN = $stringset[$rand_key[9]];
- $random_string = $letterONE.$letterTWO.$letterFIVE.$letterFOUR.$letterTHREE.$letterSEVEN.$letterSIX.$letterEIGHT.$letterNINE.$letterTEN;
- $random = md5($random_number.$random_string);
- date_default_timezone_set('Europe/London');
- $date = date('d/m/Y h:i:s a', time());
- if(isset($_SESSION['login']) && isset($_SESSION['fingerprint']) && $_SESSION['login'] == $_SESSION['fingerprint'] . $_SERVER['REMOTE_ADDR'])
- {
- header('Location: MY_SERVER');
- }
- elseif(isset($_POST['username']) && !empty($_POST['username']) && isset($_POST['password']) && !empty($_POST['password']))
- {
- include("C:\wamp\db\logins.php");
- if(isset($_POST['register']) && ($_POST['register']=='true'))
- {
- $unique = true;
- foreach($logins as $username=>$password)
- {
- if($_POST['username'] == $username)
- {
- $unique = false;
- login();
- echo '<p><br /><center><font color="red">Sorry, username is already taken, Please enter a new one.</font></p>';
- break;
- }
- }
- if($unique)
- {
- $fileread = fopen("C:\wamp\db\logins.php","r")or die("can't open file");
- $text = fread($fileread, filesize("C:\wamp\db\logins.php"));
- fclose($fileread);
- $username=htmlentities($_POST['username']);
- $password=htmlentities(md5($_POST['password']));
- $newText='$logins["' . $username . '"]="' . $password . '";' . "\r\n" . '?>';
- $filewrite = fopen("C:\wamp\db\logins.php","w");
- $toWrite= str_ireplace ('?>', $newText, $text);
- fwrite($filewrite, $toWrite);
- $fp = fopen('C:/wamp/logs/user_online.txt', 'a+');
- fwrite($fp, $_POST['username'] . "\r\n");
- fclose($fp);
- $_SESSION['username'] = $username;
- $_SESSION['fingerprint'] = $random . $username;
- $_SESSION['login'] = $_SESSION['fingerprint'] . $_SERVER['REMOTE_ADDR'];
- header('Location: MY_SERVER');
- }
- }
- else
- {
- foreach($logins as $username=>$password)
- {
- if(isset($_POST['username']) && ($_POST['username'] == $username) && isset($_POST['password']) && (md5($_POST['password']) == $password))
- {
- $_SESSION['username'] = $username;
- $_SESSION['fingerprint'] = $random . $username;
- $_SESSION['login'] = $_SESSION['fingerprint'] . $_SERVER['REMOTE_ADDR'];
- header('Location: MY_SERVER');
- $file = "C:/wamp/logs/user_online.txt";
- $fp = fopen($file,"r");
- $users = fread($fp, filesize($file));
- fclose($fp);
- $users = explode("\n", str_replace(array("\r", "\0"),"", $users));
- foreach($users as $user)
- {
- if($user == $username)
- {
- $fileread = fopen('C:/wamp/logs/user_online.txt', 'r')or die('can\'t open file!');
- $users = fread($fileread, filesize('C:/wamp/logs/user_online.txt'));
- fclose($fileread);
- $filewrite = fopen('c:/wamp/logs/user_online.txt', 'w');
- $towrite = str_replace($username . "\r\n", '', $users);
- fwrite($filewrite, $towrite);
- }
- }
- $fp = fopen('C:/wamp/logs/user_online.txt', 'a+');
- fwrite($fp, $_POST['username'] . "\r\n");
- fclose($fp);
- }
- }
- if(isset($_POST['username']) && isset($_POST['password']) && !isset($_SESSION['login']))
- {
- login();
- echo '<p><font color="red">The user/pass combonation didn\'t match, please try again.</p></font>';
- $_SESSION['attempt'] = $_POST['username'];
- if($_SESSION['attempt'] != 'Admin' && isset($_SERVER['HTTP_REFERER']))
- {
- $Name = htmlentities($_SESSION['attempt'], ENT_QUOTES, "UTF-8");
- $IP = htmlentities($_SERVER['REMOTE_ADDR'], ENT_QUOTES, "UTF-8");
- $Referer = htmlentities($_SERVER['HTTP_REFERER'], ENT_QUOTES, "UTF-8");
- $UserAgent = htmlentities($_SERVER['HTTP_USER_AGENT'], ENT_QUOTES, "UTF-8");
- $RemotePort = htmlentities($_SERVER['REMOTE_PORT'], ENT_QUOTES, "UTF-8");
- $URI = htmlentities($_SERVER['REQUEST_URI'], ENT_QUOTES, "UTF-8");
- $message = $date . ' --- LOGIN ATTEMPT!!!! ---' . "$Name - " . 'IP - ' . $IP . ' Referer - ' . $Referer . ' UserAgent - ' . $UserAgent . ' Remote Port - ' . $RemotePort . ' URI - ' . $URI . "\r\n";
- $fp = fopen('C:/wamp/logs/USER_INFO.txt', 'a+');
- fwrite($fp, $message);
- fclose($fp);
- }
- elseif($_SESSION['attempt'] != 'Admin' && !isset($_SERVER['HTPP_REFERER']))
- {
- $Name = htmlentities($_SESSION['attempt'], ENT_QUOTES, "UTF-8");
- $IP = htmlentities($_SERVER['REMOTE_ADDR'], ENT_QUOTES, "UTF-8");
- $Referer = 'Not Set';
- $UserAgent = htmlentities($_SERVER['HTTP_USER_AGENT'], ENT_QUOTES, "UTF-8");
- $RemotePort = htmlentities($_SERVER['REMOTE_PORT'], ENT_QUOTES, "UTF-8");
- $URI = htmlentities($_SERVER['REQUEST_URI'], ENT_QUOTES, "UTF-8");
- $message = $date . ' --- LOGIN ATTEMPT!!! --- ' . "$Name - " . 'IP - ' . $IP . ' Referer - ' . $Referer . ' UserAgent - ' . $UserAgent . ' Remote Port - ' . $RemotePort . ' URI - ' . $URI . "\r\n";
- $fp = fopen('C:/wamp/logs/USER_INFO.txt', 'a+');
- fwrite($fp, $message);
- fclose($fp);
- }
- elseif($_SESSION['attempt'] == 'Admin')
- {
- $Name = htmlentities($_SESSION['attempt'], ENT_QUOTES, "UTF-8");
- $IP = htmlentities($_SERVER['REMOTE_ADDR'], ENT_QUOTES, "UTF-8");
- $UserAgent = htmlentities($_SERVER['HTTP_USER_AGENT'], ENT_QUOTES, "UTF-8");
- $RemotePort = htmlentities($_SERVER['REMOTE_PORT'], ENT_QUOTES, "UTF-8");
- $URI = htmlentities($_SERVER['REQUEST_URI'], ENT_QUOTES, "UTF-8");
- $message = $date . ' --- ' . 'SOMEONE TRIED TO LOG IN AS ADMIN !!!!!!!! ---' . 'IP - ' . $IP . ' UserAgent - ' . $UserAgent . ' Remote Port - ' . $RemotePort . ' URI - ' . $URI . "\r\n";
- $fp = fopen('C:/wamp/logs/USER_INFO.txt', 'a+');
- fwrite($fp, $message);
- fclose($fp);
- }
- }
- }
- }
- else
- {
- login();
- }
- ?>
- </center>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement